x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{0x1, 0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r2}, &(0x7f0000000100), &(0x7f0000000140)=r1}, 0x20) setuid(0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) (async) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{0x1}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20) (async) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r2}, &(0x7f0000000100), &(0x7f0000000140)=r1}, 0x20) (async) setuid(0x0) (async) 08:48:26 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0xf5ffffff00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2317.009446][T17628] FAULT_INJECTION: forcing a failure. [ 2317.009446][T17628] name failslab, interval 1, probability 0, space 0, times 0 [ 2317.022524][T17628] CPU: 1 PID: 17628 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2317.032673][T17628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2317.042562][T17628] Call Trace: [ 2317.045687][T17628] [ 2317.048465][T17628] dump_stack_lvl+0x151/0x1b7 [ 2317.053065][T17628] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2317.058535][T17628] dump_stack+0x15/0x17 [ 2317.062527][T17628] should_fail+0x3c6/0x510 [ 2317.066780][T17628] __should_failslab+0xa4/0xe0 [ 2317.071386][T17628] should_failslab+0x9/0x20 [ 2317.075717][T17628] slab_pre_alloc_hook+0x37/0xd0 [ 2317.080493][T17628] __kmalloc+0x6d/0x270 [ 2317.084570][T17628] ? kvmalloc_node+0x1f0/0x4d0 [ 2317.089174][T17628] kvmalloc_node+0x1f0/0x4d0 [ 2317.093599][T17628] ? vm_mmap+0xb0/0xb0 [ 2317.097504][T17628] ? __kasan_kmalloc+0x9/0x10 [ 2317.102016][T17628] ? kmem_cache_alloc_trace+0x115/0x210 [ 2317.107485][T17628] ? alloc_fdtable+0xaf/0x2a0 [ 2317.111996][T17628] alloc_fdtable+0x163/0x2a0 [ 2317.116424][T17628] dup_fd+0x759/0xb00 [ 2317.120241][T17628] ? avc_has_perm+0x16f/0x260 [ 2317.124760][T17628] copy_files+0xe6/0x200 [ 2317.128837][T17628] ? perf_event_attrs+0x30/0x30 [ 2317.133536][T17628] ? dup_task_struct+0xc60/0xc60 [ 2317.138409][T17628] ? security_task_alloc+0xf9/0x130 [ 2317.143440][T17628] copy_process+0x1080/0x3290 [ 2317.147959][T17628] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2317.152901][T17628] ? copy_clone_args_from_user+0x744/0x830 [ 2317.158546][T17628] kernel_clone+0x21e/0x9e0 [ 2317.162884][T17628] ? __delayed_free_task+0x20/0x20 [ 2317.167831][T17628] ? create_io_thread+0x1e0/0x1e0 [ 2317.172695][T17628] __x64_sys_clone3+0x376/0x3a0 [ 2317.177379][T17628] ? __ia32_sys_clone+0x290/0x290 [ 2317.182239][T17628] ? fput+0x1a/0x20 [ 2317.185886][T17628] ? debug_smp_processor_id+0x17/0x20 [ 2317.191092][T17628] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2317.196994][T17628] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2317.202463][T17628] do_syscall_64+0x3d/0xb0 [ 2317.206722][T17628] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2317.212441][T17628] RIP: 0033:0x7fe6f3145da9 [ 2317.216716][T17628] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2317.236137][T17628] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2317.244388][T17628] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2317.252199][T17628] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 08:48:26 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0xfbffffff00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:26 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0xff0f010000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:26 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = socket(0x10, 0x803, 0x0) r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000800)={0x1b, 0x0, 0x0, 0x7, 0x0, r2, 0x20, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x2}, 0x48) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@bloom_filter={0x1e, 0x6, 0x40, 0x4, 0x20, r2, 0xfffffffa, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1, 0x0, 0x3c}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x8, 0x1c, &(0x7f0000000640)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x4}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [@ldst={0x1, 0x2, 0x0, 0x7, 0xa, 0xc}, @map_fd={0x18, 0x8, 0x1, 0x0, r2}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x8001}, @func, @call={0x85, 0x0, 0x0, 0x93}, @call={0x85, 0x0, 0x0, 0xce}, @tail_call={{0x18, 0x2, 0x1, 0x0, r2}}, @exit], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000002c0)='GPL\x00', 0x6, 0xae, &(0x7f0000000740)=""/174, 0x41100, 0x78, '\x00', 0x0, 0xa, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x3, 0x1}, 0x8, 0x10, &(0x7f00000005c0)={0x3, 0x10, 0x0, 0x9}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x3, &(0x7f0000000900)=[r0, r0, r0, r2, r4, r5], &(0x7f0000000940)=[{0x4, 0x5, 0xe, 0x1}, {0x0, 0x3, 0x10, 0xa}, {0x3, 0x2, 0x4, 0x5}], 0x10, 0x1ff}, 0x90) r6 = socket(0x10, 0x803, 0x3) r7 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r6, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80004000000000000000000", @ANYRES32=r8, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)=@ipv6_newaddr={0x40, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r8}, [@IFA_LOCAL={0x14, 0x2, @ipv4}, @IFA_CACHEINFO={0x14, 0x6, {0x0, 0xffffffff}}]}, 0x40}}, 0x0) r9 = openat$bsg(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000280)={0x5, 0x0}, 0x8) bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x1b, 0x8, &(0x7f0000000000)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}}]}, &(0x7f0000000080)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', r8, 0x21, r9, 0x8, &(0x7f0000000100)={0x0, 0x4}, 0x8, 0x10, &(0x7f0000000140)={0x3, 0x5, 0xffff7f20, 0x200}, 0x10, r10}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) setuid(0x0) [ 2317.260005][T17628] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2317.267814][T17628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2317.275628][T17628] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2317.283441][T17628] [ 2317.299029][T17630] loop2: detected capacity change from 0 to 128 08:48:26 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0xffffffffa002a000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:26 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = socket(0x10, 0x803, 0x0) (async) r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000800)={0x1b, 0x0, 0x0, 0x7, 0x0, r2, 0x20, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x2}, 0x48) (async) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@bloom_filter={0x1e, 0x6, 0x40, 0x4, 0x20, r2, 0xfffffffa, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1, 0x0, 0x3c}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x8, 0x1c, &(0x7f0000000640)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x4}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [@ldst={0x1, 0x2, 0x0, 0x7, 0xa, 0xc}, @map_fd={0x18, 0x8, 0x1, 0x0, r2}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x8001}, @func, @call={0x85, 0x0, 0x0, 0x93}, @call={0x85, 0x0, 0x0, 0xce}, @tail_call={{0x18, 0x2, 0x1, 0x0, r2}}, @exit], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000002c0)='GPL\x00', 0x6, 0xae, &(0x7f0000000740)=""/174, 0x41100, 0x78, '\x00', 0x0, 0xa, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x3, 0x1}, 0x8, 0x10, &(0x7f00000005c0)={0x3, 0x10, 0x0, 0x9}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x3, &(0x7f0000000900)=[r0, r0, r0, r2, r4, r5], &(0x7f0000000940)=[{0x4, 0x5, 0xe, 0x1}, {0x0, 0x3, 0x10, 0xa}, {0x3, 0x2, 0x4, 0x5}], 0x10, 0x1ff}, 0x90) (async) r6 = socket(0x10, 0x803, 0x3) (async) r7 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) (async) getsockname$packet(r6, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80004000000000000000000", @ANYRES32=r8, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) (async) sendmsg$nl_route(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)=@ipv6_newaddr={0x40, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r8}, [@IFA_LOCAL={0x14, 0x2, @ipv4}, @IFA_CACHEINFO={0x14, 0x6, {0x0, 0xffffffff}}]}, 0x40}}, 0x0) (async) r9 = openat$bsg(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000280)={0x5, 0x0}, 0x8) bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x1b, 0x8, &(0x7f0000000000)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}}]}, &(0x7f0000000080)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', r8, 0x21, r9, 0x8, &(0x7f0000000100)={0x0, 0x4}, 0x8, 0x10, &(0x7f0000000140)={0x3, 0x5, 0xffff7f20, 0x200}, 0x10, r10}, 0x90) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) (async) setuid(0x0) 08:48:26 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2317.334610][T17643] netlink: 'syz-executor.3': attribute type 2 has an invalid length. 08:48:26 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 23) [ 2317.377345][T17649] netlink: 'syz-executor.3': attribute type 2 has an invalid length. [ 2317.414459][T17656] FAULT_INJECTION: forcing a failure. [ 2317.414459][T17656] name failslab, interval 1, probability 0, space 0, times 0 [ 2317.429663][T17656] CPU: 0 PID: 17656 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2317.439882][T17656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2317.449725][T17656] Call Trace: [ 2317.452928][T17656] [ 2317.456263][T17656] dump_stack_lvl+0x151/0x1b7 [ 2317.461540][T17656] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2317.466997][T17656] dump_stack+0x15/0x17 [ 2317.471089][T17656] should_fail+0x3c6/0x510 [ 2317.475336][T17656] __should_failslab+0xa4/0xe0 [ 2317.479929][T17656] ? copy_sighand+0x54/0x250 [ 2317.484344][T17656] should_failslab+0x9/0x20 [ 2317.488687][T17656] slab_pre_alloc_hook+0x37/0xd0 [ 2317.493461][T17656] ? copy_sighand+0x54/0x250 [ 2317.497971][T17656] kmem_cache_alloc+0x44/0x200 [ 2317.502573][T17656] copy_sighand+0x54/0x250 [ 2317.506825][T17656] copy_process+0x10d6/0x3290 [ 2317.511341][T17656] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2317.516288][T17656] ? copy_clone_args_from_user+0x744/0x830 [ 2317.521928][T17656] kernel_clone+0x21e/0x9e0 [ 2317.526352][T17656] ? __delayed_free_task+0x20/0x20 [ 2317.531302][T17656] ? create_io_thread+0x1e0/0x1e0 [ 2317.536162][T17656] __x64_sys_clone3+0x376/0x3a0 [ 2317.540851][T17656] ? __ia32_sys_clone+0x290/0x290 [ 2317.545799][T17656] ? fput+0x1a/0x20 [ 2317.549449][T17656] ? debug_smp_processor_id+0x17/0x20 [ 2317.554651][T17656] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2317.560552][T17656] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2317.566018][T17656] do_syscall_64+0x3d/0xb0 [ 2317.570271][T17656] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2317.575997][T17656] RIP: 0033:0x7fe6f3145da9 [ 2317.580257][T17656] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2317.599695][T17656] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2317.607939][T17656] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2317.615756][T17656] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2317.623562][T17656] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2317.631373][T17656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2317.639185][T17656] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2317.647038][T17656] 08:48:27 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = open(0x0, 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f000000df80)) fstat(r0, &(0x7f000000dfc0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() statx(r0, &(0x7f000000e180)='./file0\x00', 0x1000, 0x80, &(0x7f000000e1c0)) r2 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="ca42ad87b11bb3b2507e03129a435e7c99104f0cd507000000046f9445631055f28a4e6777e97047e5807db4996b10208d04454ea654888bf754956945961677b348d33478b3d8f70eac439f502bea81070bba59ccec17e7d182ea9fdfde2b94e826d24492db7f8983925947dc2b357943622c9feaa43512f4afed56e4010e2543166dfc76b6668c1ccb960ebeb21ae5eaaa01a65f105a20fdcdb5c20c2245eecbd4e49cbb07060000003674c0a6397ca594873755027deb77b094a29545f674e5a44c597f0473f49684719c9445839a59a09e1c1361d72b8a1dd163eecd03bd218ba880482b173bef3f91cbd40796bdeb13d63c1eadecb3dfe83f1d88b8b7fb053eed7e742bfff269a5c16070aa8b51d4538811d4de1d198d2fdcfa404fc9e6df202578e962544794e77c2425f73fcd3d0cd1d4ff004ec0754e946adff5e93ffc586126de12ee3a2b1e347cbf598c20648bf702511dd953cfd9eef7b0cf148a63cca032a3f5c2247efc16857ad98255693a11149dde8fed62623d07d357b0c1251f9c4f7492c9e5000000001c2485258e4a9f46a454427a1cdb84782846052b20554446e9b9b6d45be858bf97e390544b8e54d32db951f89f86bd455af5174c9edcd7bd4e5448cc3c2b7a5b07c20b369ba5effd8334a4b597daa76b65dece5249d08f5b66dd8c3cd9aab9fcffff5577502dc33d51ed2a25c3640cd073b7d51d12266c6079622281358c96043413eeb5938648ac8b3f8b4d38ef5331499b828a6579d5048ed27ea04e2e070f2ba16433bf79a7af308fa86e765081df9163e034dcb6505ea7890693156414a8b0d5fceb38ffe232dafc93ce08e1fbb2000000000025fb6d6cd068b59d26d3835002ec4c6700bba9e73ffe3ee7aad4834800000000000000000000d7ce5719e9a80531cc154ae62236435abb4981d2183d7b8fc26fac5484b1393d7e8d4dfb9bdcdf37c0d74e6e787888f71a28396f49a4b95f46d12ae1010c0e3185929e39dc3cee5ba6f6434199f686be319d4794efc589166434ddeda1feedd8539030f54fd0da371eec53b41fae2fd04bcac127c759", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r3 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r3}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000200)) 08:48:27 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x2}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:27 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = socket(0x10, 0x803, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000800)={0x1b, 0x0, 0x0, 0x7, 0x0, r2, 0x20, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x2}, 0x48) (async) r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000800)={0x1b, 0x0, 0x0, 0x7, 0x0, r2, 0x20, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x2}, 0x48) bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@bloom_filter={0x1e, 0x6, 0x40, 0x4, 0x20, r2, 0xfffffffa, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1, 0x0, 0x3c}, 0x48) (async) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@bloom_filter={0x1e, 0x6, 0x40, 0x4, 0x20, r2, 0xfffffffa, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1, 0x0, 0x3c}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x8, 0x1c, &(0x7f0000000640)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x4}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [@ldst={0x1, 0x2, 0x0, 0x7, 0xa, 0xc}, @map_fd={0x18, 0x8, 0x1, 0x0, r2}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x8001}, @func, @call={0x85, 0x0, 0x0, 0x93}, @call={0x85, 0x0, 0x0, 0xce}, @tail_call={{0x18, 0x2, 0x1, 0x0, r2}}, @exit], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000002c0)='GPL\x00', 0x6, 0xae, &(0x7f0000000740)=""/174, 0x41100, 0x78, '\x00', 0x0, 0xa, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x3, 0x1}, 0x8, 0x10, &(0x7f00000005c0)={0x3, 0x10, 0x0, 0x9}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x3, &(0x7f0000000900)=[r0, r0, r0, r2, r4, r5], &(0x7f0000000940)=[{0x4, 0x5, 0xe, 0x1}, {0x0, 0x3, 0x10, 0xa}, {0x3, 0x2, 0x4, 0x5}], 0x10, 0x1ff}, 0x90) r6 = socket(0x10, 0x803, 0x3) r7 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r6, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80004000000000000000000", @ANYRES32=r8, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) (async) sendmsg$nl_route(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80004000000000000000000", @ANYRES32=r8, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)=@ipv6_newaddr={0x40, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r8}, [@IFA_LOCAL={0x14, 0x2, @ipv4}, @IFA_CACHEINFO={0x14, 0x6, {0x0, 0xffffffff}}]}, 0x40}}, 0x0) r9 = openat$bsg(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000280)={0x5, 0x0}, 0x8) bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x1b, 0x8, &(0x7f0000000000)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}}]}, &(0x7f0000000080)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', r8, 0x21, r9, 0x8, &(0x7f0000000100)={0x0, 0x4}, 0x8, 0x10, &(0x7f0000000140)={0x3, 0x5, 0xffff7f20, 0x200}, 0x10, r10}, 0x90) (async) bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x1b, 0x8, &(0x7f0000000000)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}}]}, &(0x7f0000000080)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', r8, 0x21, r9, 0x8, &(0x7f0000000100)={0x0, 0x4}, 0x8, 0x10, &(0x7f0000000140)={0x3, 0x5, 0xffff7f20, 0x200}, 0x10, r10}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) setuid(0x0) 08:48:27 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 24) 08:48:27 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x7}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2317.711883][T17667] FAULT_INJECTION: forcing a failure. [ 2317.711883][T17667] name failslab, interval 1, probability 0, space 0, times 0 [ 2317.726909][T17667] CPU: 0 PID: 17667 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2317.732526][T17664] netlink: 'syz-executor.3': attribute type 2 has an invalid length. [ 2317.737157][T17667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2317.737171][T17667] Call Trace: [ 2317.737183][T17667] [ 2317.737191][T17667] dump_stack_lvl+0x151/0x1b7 [ 2317.737215][T17667] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2317.770836][T17667] dump_stack+0x15/0x17 [ 2317.774821][T17667] should_fail+0x3c6/0x510 [ 2317.779086][T17667] __should_failslab+0xa4/0xe0 [ 2317.783676][T17667] ? copy_sighand+0x54/0x250 [ 2317.788100][T17667] should_failslab+0x9/0x20 [ 2317.792441][T17667] slab_pre_alloc_hook+0x37/0xd0 [ 2317.797215][T17667] ? copy_sighand+0x54/0x250 [ 2317.801641][T17667] kmem_cache_alloc+0x44/0x200 [ 2317.806249][T17667] copy_sighand+0x54/0x250 [ 2317.810497][T17667] copy_process+0x10d6/0x3290 [ 2317.815022][T17667] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2317.819954][T17667] ? copy_clone_args_from_user+0x744/0x830 [ 2317.825597][T17667] kernel_clone+0x21e/0x9e0 [ 2317.829936][T17667] ? __delayed_free_task+0x20/0x20 [ 2317.834883][T17667] ? create_io_thread+0x1e0/0x1e0 [ 2317.839747][T17667] __x64_sys_clone3+0x376/0x3a0 [ 2317.844515][T17667] ? __ia32_sys_clone+0x290/0x290 [ 2317.849663][T17667] ? fput+0x1a/0x20 [ 2317.853284][T17667] ? debug_smp_processor_id+0x17/0x20 [ 2317.858489][T17667] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2317.864492][T17667] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2317.870910][T17667] do_syscall_64+0x3d/0xb0 [ 2317.875181][T17667] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2317.880883][T17667] RIP: 0033:0x7fe6f3145da9 [ 2317.885138][T17667] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2317.904586][T17667] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 08:48:27 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 25) 08:48:27 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x8}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2317.912826][T17667] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2317.920636][T17667] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2317.928444][T17667] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2317.936256][T17667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2317.944067][T17667] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2317.951885][T17667] 08:48:27 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000280)={0x1b, 0x0, 0x0, 0x2, 0x0, r0, 0x2857a52e, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x4}, 0x48) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r2, 0x0) ftruncate(r2, 0x100) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000002700050000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x8f, &(0x7f00000002c0)=""/143}, 0x80) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10) r5 = dup2(r3, r4) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r5}, 0x10) r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) getdents(r6, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1b, 0x13, &(0x7f00000003c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x3}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@map_fd={0x18, 0x6, 0x1, 0x0, r0}, @jmp={0x5, 0x1, 0x1, 0x0, 0x8, 0xfffffffffffffff0, 0x8}, @generic={0x81, 0x0, 0xf, 0x7ff, 0xd}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000300)='syzkaller\x00', 0xffffff01, 0x6a, &(0x7f0000000680)=""/106, 0xc3100, 0x38, '\x00', 0x0, 0x11, r2, 0x8, &(0x7f0000000700)={0x3, 0x4}, 0x8, 0x10, &(0x7f0000000740)={0x0, 0x8, 0xd2b3, 0x80000001}, 0x10, 0x0, r5, 0x6, &(0x7f0000000780)=[r0, r0, r0, r0, r0, r0, r6, r0, r0], &(0x7f00000007c0)=[{0x2, 0x3, 0xf, 0x8}, {0x3, 0x2, 0x1, 0xa}, {0x1, 0x1, 0x10, 0x1}, {0x3, 0x2, 0xf, 0x3}, {0x5, 0x40, 0xd, 0xa}, {0x2, 0x1, 0xc, 0xb}], 0x10, 0x9}, 0x90) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) r9 = socket$nl_route(0x10, 0x3, 0x0) r10 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', 0x0}) sendmsg$nl_route(r9, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001380)=@dellinkprop={0x20, 0x6d, 0xe21, 0x0, 0x0, {0x0, 0x0, 0x0, r11}}, 0x20}}, 0x0) r12 = socket$netlink(0x10, 0x3, 0xe) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000940)={0x0, r4, 0x0, 0x4, &(0x7f0000000900)='+\'}\x00', 0x0}, 0x30) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000980)={@cgroup=r5, r5, 0x11, 0x2000, 0x0, @prog_id=r14}, 0x20) r15 = dup(r13) getsockname$packet(r15, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) sendmsg$nl_route(r12, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b80)=ANY=[@ANYBLOB="ec0000001000010800"/20, @ANYRES32=r16, @ANYBLOB="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"], 0xec}}, 0x0) sendmsg$ETHTOOL_MSG_FEATURES_SET(r7, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, r8, 0x10, 0x70bd2c, 0x25dfdbfe, {}, [@ETHTOOL_A_FEATURES_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r16}]}]}, 0x28}}, 0x20004800) r17 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000009c0)=ANY=[@ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r17}, 0x10) setuid(0x0) 08:48:27 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x9}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2317.985627][T17676] loop0: detected capacity change from 0 to 128 [ 2317.995852][T17680] FAULT_INJECTION: forcing a failure. [ 2317.995852][T17680] name failslab, interval 1, probability 0, space 0, times 0 [ 2318.010954][T17680] CPU: 0 PID: 17680 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2318.021110][T17680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2318.031011][T17680] Call Trace: 08:48:27 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0xf}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2318.034216][T17680] [ 2318.036989][T17680] dump_stack_lvl+0x151/0x1b7 [ 2318.041511][T17680] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2318.046974][T17680] dump_stack+0x15/0x17 [ 2318.050964][T17680] should_fail+0x3c6/0x510 [ 2318.055220][T17680] __should_failslab+0xa4/0xe0 [ 2318.059814][T17680] ? vm_area_dup+0x26/0x230 [ 2318.064153][T17680] should_failslab+0x9/0x20 [ 2318.068498][T17680] slab_pre_alloc_hook+0x37/0xd0 [ 2318.073272][T17680] ? vm_area_dup+0x26/0x230 [ 2318.077630][T17680] kmem_cache_alloc+0x44/0x200 [ 2318.082210][T17680] vm_area_dup+0x26/0x230 [ 2318.086381][T17680] copy_mm+0x9a1/0x13e0 [ 2318.090373][T17680] ? copy_signal+0x610/0x610 [ 2318.094792][T17680] ? __init_rwsem+0xd6/0x1c0 [ 2318.099226][T17680] ? copy_signal+0x4e3/0x610 [ 2318.103657][T17680] copy_process+0x1149/0x3290 [ 2318.108165][T17680] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2318.113109][T17680] ? copy_clone_args_from_user+0x744/0x830 [ 2318.118753][T17680] kernel_clone+0x21e/0x9e0 [ 2318.123095][T17680] ? __delayed_free_task+0x20/0x20 [ 2318.128036][T17680] ? create_io_thread+0x1e0/0x1e0 08:48:27 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2318.132902][T17680] __x64_sys_clone3+0x376/0x3a0 [ 2318.137589][T17680] ? __ia32_sys_clone+0x290/0x290 [ 2318.142451][T17680] ? fput+0x1a/0x20 [ 2318.146098][T17680] ? debug_smp_processor_id+0x17/0x20 [ 2318.151297][T17680] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2318.157545][T17680] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2318.163121][T17680] do_syscall_64+0x3d/0xb0 [ 2318.167356][T17680] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2318.173084][T17680] RIP: 0033:0x7fe6f3145da9 08:48:27 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x70}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2318.177340][T17680] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2318.196780][T17680] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2318.205110][T17680] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2318.212921][T17680] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2318.220877][T17680] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2318.228686][T17680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 08:48:27 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x700}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:27 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = open(0x0, 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f000000df80)) fstat(r0, &(0x7f000000dfc0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() statx(r0, &(0x7f000000e180)='./file0\x00', 0x1000, 0x80, &(0x7f000000e1c0)) r2 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$eJzs3d9rXFkdAPDvvclk0zZrZlVkXXB3cVfSRTuTbNxtEGkriD4V1PoeYzIJIZNMyExqE4qm+AcIIir45JMvgn+AIP0TRCjou6gooq0+aq/MzI02yUwyNZNMd/L5wMk95/76nnPJnLl37uHeAC6sNyPiVkSMRMQ7ETGZz0/zNN8s7LXXe/L4/mIzJZFld/6WRJLP299XszwaEVfam8R4RHztyxHfTI7Gre/sri1Uq5WtvFxurG+W6zu711bXF1YqK5WN2dmZ9+euz703N53lTtXOYkTc+OKffvi9n33pxq8+863fz//l6reb1fr8x9r1jojFUwXoor3vQutY7Gseo62zCDYAI3l7CiODrgkAAL1onuN/OCI+2Tr/n4yR1tkcAAAAMEyymxPxryQiAwAAAIZWGhETkaSlfCzARKRpqdQew/vRuJxWa/XGp5dr2xtLzWURxSiky6vVynQ+VrgYhaRZnsnH2O6X3z1Uno2IVyLiB5OXWuXSYq26NOgfPwAAAOCCuPLGwev/f06mrTwAAAAwZIpdCwAAAMCwcMkPAAAAw8/1PwAAAAy1r9y+3UzZ/nu8l+7ubK/V7l5bqtTXSuvbi6XF2tZmaaVWW2k9s2/9pP1Va7XNz8bG9r1yo1JvlOs7u/Prte2NxvzqgVdgAwAAAOfolTce/i6JiL3PXWqlyJ8DCHDAHwddAaCfRgZdAWBgRgddAWBgCieuoYeAYZecsLzr4J1f978uAADA2Zj6+NH7/2P5spN/GwA+yIz1AYCLx909uLgKRgDChfeh9uSlbstPf/8/y567UgAAQF9NtFKSlvJ7gRORpqVSxMut1wIUkuXVamU6vz747WThpWZ5prVlcuKYYQAAAAAAAAAAAAAAAAAAAAAAAACgLcuSyAAAAIChFpH+OWk9zT9iavLtiYO/Dhx669dP7vzo3kKjsTUTMZb8fbI5aywiGj/O57+beSUAAAAAvADa1+n5dGbQtQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABg2Dx5fH9xP51n3L9+ISKKneKPxnhrOh6FiLj8jyRGn9kuiYiRPsTfexARr3aKn8TTLMuKeS06xb90xvGLrUPTOX4aEVf6EB8usofN/udWp89fGm+2pp0/f6N5Oq3u/V/63/5vpEv/83KPMV579Ity1/gPIl4b7dz/7MdP2vGTOBT/rR7jf+Pru7vdlmU/jZjq+P2THIhVbqxvlus7u9dW1xdWKiuVjdnZmffnrs+9NzddXl6tVvK/HWN8/xO/fHpc+y93iV882P4jx//tHtv/70f3Hn+knS10in/1rc7fv692iZ/m332fyvPN5VP7+b12/lmv//w3rx/X/qUu7R8/of1Xe2z/O1/97h96XBUAOAf1nd21hWq1snVMZryHdc45c/PFqIZMvzLZd9r/j6fbzyk3P5LJTrP5aPShGmPP8Tntb2aQvRIAAHAW/nfSP+iaAAAAAAAAAAAAAAAAAAAAwMX1fz4hbDwiel75cMy9wTQVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBY/wkAAP//E77WGg==") r3 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r3}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000200)) 08:48:27 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x900}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:27 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000280)={0x1b, 0x0, 0x0, 0x2, 0x0, r0, 0x2857a52e, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x4}, 0x48) (async) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r2, 0x0) (async) ftruncate(r2, 0x100) (async) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000002700050000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x8f, &(0x7f00000002c0)=""/143}, 0x80) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10) r5 = dup2(r3, r4) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r5}, 0x10) (async, rerun: 32) r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) (rerun: 32) getdents(r6, 0x0, 0x0) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1b, 0x13, &(0x7f00000003c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x3}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@map_fd={0x18, 0x6, 0x1, 0x0, r0}, @jmp={0x5, 0x1, 0x1, 0x0, 0x8, 0xfffffffffffffff0, 0x8}, @generic={0x81, 0x0, 0xf, 0x7ff, 0xd}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000300)='syzkaller\x00', 0xffffff01, 0x6a, &(0x7f0000000680)=""/106, 0xc3100, 0x38, '\x00', 0x0, 0x11, r2, 0x8, &(0x7f0000000700)={0x3, 0x4}, 0x8, 0x10, &(0x7f0000000740)={0x0, 0x8, 0xd2b3, 0x80000001}, 0x10, 0x0, r5, 0x6, &(0x7f0000000780)=[r0, r0, r0, r0, r0, r0, r6, r0, r0], &(0x7f00000007c0)=[{0x2, 0x3, 0xf, 0x8}, {0x3, 0x2, 0x1, 0xa}, {0x1, 0x1, 0x10, 0x1}, {0x3, 0x2, 0xf, 0x3}, {0x5, 0x40, 0xd, 0xa}, {0x2, 0x1, 0xc, 0xb}], 0x10, 0x9}, 0x90) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) r7 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64) r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) (rerun: 64) r9 = socket$nl_route(0x10, 0x3, 0x0) (async) r10 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', 0x0}) sendmsg$nl_route(r9, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001380)=@dellinkprop={0x20, 0x6d, 0xe21, 0x0, 0x0, {0x0, 0x0, 0x0, r11}}, 0x20}}, 0x0) r12 = socket$netlink(0x10, 0x3, 0xe) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) (async, rerun: 64) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000940)={0x0, r4, 0x0, 0x4, &(0x7f0000000900)='+\'}\x00', 0x0}, 0x30) (rerun: 64) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000980)={@cgroup=r5, r5, 0x11, 0x2000, 0x0, @prog_id=r14}, 0x20) r15 = dup(r13) getsockname$packet(r15, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) sendmsg$nl_route(r12, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b80)=ANY=[@ANYBLOB="ec0000001000010800"/20, @ANYRES32=r16, @ANYBLOB="0000000000000000cc001a801800028014000700fe8000000000000000000000000000aa300002802c00018003000000000000000800000000000000040000000000000008000000000000000800000000000000180002801400018008000d000000000008000d000000000018000a8014000700ff02000000000000000000000000000100000700ff02000000000000000000000000000100000700fe8000000000000000000000000000002800028024000180080000000000000008000000000000000800000000000000080000000000000004001c0000000a80000007002001d6f47ba5c6963a1e3db0992ba200000000000000000000000000000000080000000000000008000000000000000700fe80000000000000000000000000000000000700ff02000000000000000000000000000100000000000000000000000000000000000700fc01000000000000000000000000000000000800000000f1374ff86ac82270d48eef91c3d0be14bdd69c10f29bc595b6668ba4bff4e3b1942537f09f23e10aabbe32486fdc3f2a59e75be1c219390fc8e34e953c7a27859e722ef746a8f60d9b3d861c2e2a910000000000f21ec8cf898a7141c2c2da2cc5f4e9181a3c3d58fca3a6fc907a0e945415e153caaf2c0a939599afd67ac16ec29cab5c50c39d46f3887dbb79bbe4ab18d92c4b9f750b2461585fed7a66cf0928ac011bb139a9e74f1d055af10c396fdc16d7ad6914c7e1a73e55d6cf1e62502f62ba70d7f27a37396ac72a857d736d4b87035c6234336332124b59507f6297690f9b6d8c68dc8a3a005b586b4fd236433717e3a796ad72e7cabed8bf1e9d6e8010e5018a4cddce6c71b244f6bc45d7de54d32e58fa04b319dc07f684e8c08dfd39cd04ff60193a5d7390fe9896c33f96a3e37b979a2c"], 0xec}}, 0x0) (async) sendmsg$ETHTOOL_MSG_FEATURES_SET(r7, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, r8, 0x10, 0x70bd2c, 0x25dfdbfe, {}, [@ETHTOOL_A_FEATURES_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r16}]}]}, 0x28}}, 0x20004800) r17 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000009c0)=ANY=[@ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r17}, 0x10) (async) setuid(0x0) 08:48:27 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 26) 08:48:27 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0xf00}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2318.236582][T17680] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2318.244409][T17680] 08:48:27 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x1100}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2318.291656][T17702] FAULT_INJECTION: forcing a failure. [ 2318.291656][T17702] name failslab, interval 1, probability 0, space 0, times 0 [ 2318.305455][T17704] loop0: detected capacity change from 0 to 128 [ 2318.324280][T17702] CPU: 1 PID: 17702 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2318.334628][T17702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2318.344466][T17702] Call Trace: [ 2318.347684][T17702] [ 2318.350459][T17702] dump_stack_lvl+0x151/0x1b7 [ 2318.354985][T17702] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2318.360434][T17702] ? avc_denied+0x1b0/0x1b0 [ 2318.364769][T17702] dump_stack+0x15/0x17 [ 2318.368763][T17702] should_fail+0x3c6/0x510 [ 2318.373017][T17702] __should_failslab+0xa4/0xe0 [ 2318.377614][T17702] ? vm_area_dup+0x26/0x230 [ 2318.381953][T17702] should_failslab+0x9/0x20 [ 2318.386290][T17702] slab_pre_alloc_hook+0x37/0xd0 [ 2318.391069][T17702] ? vm_area_dup+0x26/0x230 [ 2318.395406][T17702] kmem_cache_alloc+0x44/0x200 [ 2318.400003][T17702] vm_area_dup+0x26/0x230 [ 2318.404170][T17702] copy_mm+0x9a1/0x13e0 [ 2318.408174][T17702] ? copy_signal+0x610/0x610 [ 2318.412588][T17702] ? __init_rwsem+0xd6/0x1c0 [ 2318.417015][T17702] ? copy_signal+0x4e3/0x610 [ 2318.421444][T17702] copy_process+0x1149/0x3290 [ 2318.425955][T17702] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2318.430902][T17702] ? copy_clone_args_from_user+0x744/0x830 [ 2318.436543][T17702] kernel_clone+0x21e/0x9e0 [ 2318.440881][T17702] ? __delayed_free_task+0x20/0x20 [ 2318.445830][T17702] ? create_io_thread+0x1e0/0x1e0 [ 2318.450692][T17702] __x64_sys_clone3+0x376/0x3a0 [ 2318.455377][T17702] ? __ia32_sys_clone+0x290/0x290 [ 2318.460238][T17702] ? fput+0x1a/0x20 [ 2318.463881][T17702] ? debug_smp_processor_id+0x17/0x20 [ 2318.469091][T17702] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2318.474991][T17702] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2318.480460][T17702] do_syscall_64+0x3d/0xb0 [ 2318.484711][T17702] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2318.490532][T17702] RIP: 0033:0x7fe6f3145da9 [ 2318.494782][T17702] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2318.514225][T17702] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2318.522468][T17702] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2318.530452][T17702] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 08:48:28 executing program 2: syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$eJzs3F9IU38Yx/HHPz/1Z+hGRFBQPeVNRRzcrgMdoRENjHJhCcExz2rstI2dsZqEWxB400U3/buuIEIQoosgELvoKpTwrovuvPMiu0oiOjGnudnUMnWS79fF9rDn+zl8z58dtu9g08fvXouGHSNspqS6oUqq2yUns1XilWpZkJMj10fe7zt34eLpQDDYcVa1M9Dt86tq84HR3pvDh8ZSO86/bH5dL+PeS9Mz/qnx3eN7pr93X404GnE0Fk+pqX3xeMrssy3tv+9EDdUztmU6lkZijpUs6YfteCKRUTPW39SYSFqOo2Yso1Ero6m4ppIZNa+YkZgahqFNjYKVDacfBZbvhp7Puq7MpN65bn1OXNfNv9iwidNDhc2df9ctOv93Kj0lbKKim3qDiD2UDqVDhedCPxCWiNhiSat45JvkrxH38Yg7d6nkH2/4R4KTR9++UVWvDNrZ+Xw2HaopzfvEI95CpqBQd54Kdvi0oDT/nzQW5/3ikV3l8/6y+To53FKUN8Qjk5clLrZMjB78MtU19GAhP+hTPdEVXJL/X/oXD9OzzxU6PwAAAAAAAAAArIWhP5VdvzfyA24PqGrTkn4hX+73gaXr861l1+drZW9tZfcdAAAAAIDtwskMRE3btpJ/WeS/yq/Hdv694smt3x+8v3PlMS1tNRPtH3KJrbBff1B87dkS0ygtZH71abXBNev8TlksPq3Ldqrm57f8mJO9H1+sup26X47PcsY2/q4EAAAAYCMsfuhvk2z4VTrbc+xepecEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB2s4a/HJt4WK6l+WLn03KtSu8jAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADASn4EAAD//xAR0Ao=") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() r0 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r0, @ANYRESHEX=r0, @ANYRESOCT, @ANYBLOB="ca42ad87b11bb3b2507e03129a435e7c99104f0cd507000000046f9445631055f28a4e6777e97047e5807db4996b10208d04454ea654888bf754956945961677b348d33478b3d8f70eac439f502bea81070bba59ccec17e7d182ea9fdfde2b94e826d24492db7f8983925947dc2b357943622c9feaa43512f4afed56e4010e2543166dfc76b6668c1ccb960ebeb21ae5eaaa01a65f105a20fdcdb5c20c2245eecbd4e49cbb07060000003674c0a6397ca594873755027deb77b094a29545f674e5a44c597f0473f49684719c9445839a59a09e1c1361d72b8a1dd163eecd03bd218ba880482b173bef3f91cbd40796bdeb13d63c1eadecb3dfe83f1d88b8b7fb053eed7e742bfff269a5c16070aa8b51d4538811d4de1d198d2fdcfa404fc9e6df202578e962544794e77c2425f73fcd3d0cd1d4ff004ec0754e946adff5e93ffc586126de12ee3a2b1e347cbf598c20648bf702511dd953cfd9eef7b0cf148a63cca032a3f5c2247efc16857ad98255693a11149dde8fed62623d07d357b0c1251f9c4f7492c9e5000000001c2485258e4a9f46a454427a1cdb84782846052b20554446e9b9b6d45be858bf97e390544b8e54d32db951f89f86bd455af5174c9edcd7bd4e5448cc3c2b7a5b07c20b369ba5effd8334a4b597daa76b65dece5249d08f5b66dd8c3cd9aab9fcffff5577502dc33d51ed2a25c3640cd073b7d51d12266c6079622281358c96043413eeb5938648ac8b3f8b4d38ef5331499b828a6579d5048ed27ea04e2e070f2ba16433bf79a7af308fa86e765081df9163e034dcb6505ea7890693156414a8b0d5fceb38ffe232dafc93ce08e1fbb2000000000025fb6d6cd068b59d26d3835002ec4c6700bba9e73ffe3ee7aad4834800000000000000000000d7ce5719e9a80531cc154ae62236435abb4981d2183d7b8fc26fac5484b1393d7e8d4dfb9bdcdf37c0d74e6e787888f71a28396f49a4b95f46d12ae1010c0e3185929e39dc3cee5ba6f6434199f686be319d4794efc589166434ddeda1feedd8539030f54fd0da371eec53b41fae2fd04bcac127c759", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r1 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r1}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200)) 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x1f00}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:28 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 27) 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x2000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:28 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000280)={0x1b, 0x0, 0x0, 0x2, 0x0, r0, 0x2857a52e, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x4}, 0x48) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r2, 0x0) (async, rerun: 32) ftruncate(r2, 0x100) (async, rerun: 32) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000002700050000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x8f, &(0x7f00000002c0)=""/143}, 0x80) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10) r5 = dup2(r3, r4) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r5}, 0x10) (async) r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) getdents(r6, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1b, 0x13, &(0x7f00000003c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x3}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@map_fd={0x18, 0x6, 0x1, 0x0, r0}, @jmp={0x5, 0x1, 0x1, 0x0, 0x8, 0xfffffffffffffff0, 0x8}, @generic={0x81, 0x0, 0xf, 0x7ff, 0xd}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000300)='syzkaller\x00', 0xffffff01, 0x6a, &(0x7f0000000680)=""/106, 0xc3100, 0x38, '\x00', 0x0, 0x11, r2, 0x8, &(0x7f0000000700)={0x3, 0x4}, 0x8, 0x10, &(0x7f0000000740)={0x0, 0x8, 0xd2b3, 0x80000001}, 0x10, 0x0, r5, 0x6, &(0x7f0000000780)=[r0, r0, r0, r0, r0, r0, r6, r0, r0], &(0x7f00000007c0)=[{0x2, 0x3, 0xf, 0x8}, {0x3, 0x2, 0x1, 0xa}, {0x1, 0x1, 0x10, 0x1}, {0x3, 0x2, 0xf, 0x3}, {0x5, 0x40, 0xd, 0xa}, {0x2, 0x1, 0xc, 0xb}], 0x10, 0x9}, 0x90) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r7 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64) r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) (async, rerun: 64) r9 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 64) r10 = socket$packet(0x11, 0x3, 0x300) (rerun: 64) ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', 0x0}) sendmsg$nl_route(r9, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001380)=@dellinkprop={0x20, 0x6d, 0xe21, 0x0, 0x0, {0x0, 0x0, 0x0, r11}}, 0x20}}, 0x0) r12 = socket$netlink(0x10, 0x3, 0xe) (async) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000940)={0x0, r4, 0x0, 0x4, &(0x7f0000000900)='+\'}\x00', 0x0}, 0x30) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000980)={@cgroup=r5, r5, 0x11, 0x2000, 0x0, @prog_id=r14}, 0x20) (async) r15 = dup(r13) getsockname$packet(r15, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) sendmsg$nl_route(r12, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b80)=ANY=[@ANYBLOB="ec0000001000010800"/20, @ANYRES32=r16, @ANYBLOB="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"], 0xec}}, 0x0) sendmsg$ETHTOOL_MSG_FEATURES_SET(r7, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, r8, 0x10, 0x70bd2c, 0x25dfdbfe, {}, [@ETHTOOL_A_FEATURES_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r16}]}]}, 0x28}}, 0x20004800) (async) r17 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000009c0)=ANY=[@ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r17}, 0x10) (async) setuid(0x0) [ 2318.538268][T17702] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2318.546080][T17702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2318.553891][T17702] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2318.561702][T17702] [ 2318.599190][T17716] loop2: detected capacity change from 0 to 128 [ 2318.611276][T17720] FAULT_INJECTION: forcing a failure. [ 2318.611276][T17720] name failslab, interval 1, probability 0, space 0, times 0 [ 2318.629437][T17720] CPU: 0 PID: 17720 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2318.639597][T17720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2318.649495][T17720] Call Trace: [ 2318.652625][T17720] [ 2318.655393][T17720] dump_stack_lvl+0x151/0x1b7 [ 2318.659908][T17720] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2318.665374][T17720] dump_stack+0x15/0x17 [ 2318.669366][T17720] should_fail+0x3c6/0x510 [ 2318.673618][T17720] __should_failslab+0xa4/0xe0 [ 2318.678237][T17720] should_failslab+0x9/0x20 [ 2318.682560][T17720] slab_pre_alloc_hook+0x37/0xd0 [ 2318.687330][T17720] kmem_cache_alloc_trace+0x48/0x210 [ 2318.692452][T17720] ? mm_init+0x39a/0x970 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x4000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x7000}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2318.696532][T17720] mm_init+0x39a/0x970 [ 2318.700455][T17720] copy_mm+0x1e3/0x13e0 [ 2318.704433][T17720] ? _raw_spin_lock+0xa4/0x1b0 [ 2318.709032][T17720] ? copy_signal+0x610/0x610 [ 2318.713455][T17720] ? __kasan_check_write+0x14/0x20 [ 2318.718405][T17720] ? __init_rwsem+0xd6/0x1c0 [ 2318.722830][T17720] ? copy_signal+0x4e3/0x610 [ 2318.727254][T17720] copy_process+0x1149/0x3290 [ 2318.731775][T17720] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2318.736716][T17720] ? copy_clone_args_from_user+0x744/0x830 [ 2318.742361][T17720] kernel_clone+0x21e/0x9e0 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x10fff}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x20010}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x20200}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x80000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x101000}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2318.746698][T17720] ? __delayed_free_task+0x20/0x20 [ 2318.751648][T17720] ? create_io_thread+0x1e0/0x1e0 [ 2318.756509][T17720] __x64_sys_clone3+0x376/0x3a0 [ 2318.761194][T17720] ? __ia32_sys_clone+0x290/0x290 [ 2318.766056][T17720] ? fput+0x1a/0x20 [ 2318.769701][T17720] ? debug_smp_processor_id+0x17/0x20 [ 2318.774905][T17720] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2318.780810][T17720] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2318.786277][T17720] do_syscall_64+0x3d/0xb0 [ 2318.790531][T17720] entry_SYSCALL_64_after_hwframe+0x61/0xcb 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x200000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x700000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0xa002a0}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0xf0ff1f}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x1000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2318.796257][T17720] RIP: 0033:0x7fe6f3145da9 [ 2318.800521][T17720] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2318.820039][T17720] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2318.828287][T17720] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2318.836099][T17720] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x2000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x7000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:28 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$eJzs3F9IU38Yx/HHPz/1Z+hGRFBQPeVNRRzcrgMdoRENjHJhCcExz2rstI2dsZqEWxB400U3/buuIEIQoosgELvoKpTwrovuvPMiu0oiOjGnudnUMnWS79fF9rDn+zl8z58dtu9g08fvXouGHSNspqS6oUqq2yUns1XilWpZkJMj10fe7zt34eLpQDDYcVa1M9Dt86tq84HR3pvDh8ZSO86/bH5dL+PeS9Mz/qnx3eN7pr93X404GnE0Fk+pqX3xeMrssy3tv+9EDdUztmU6lkZijpUs6YfteCKRUTPW39SYSFqOo2Yso1Ero6m4ppIZNa+YkZgahqFNjYKVDacfBZbvhp7Puq7MpN65bn1OXNfNv9iwidNDhc2df9ctOv93Kj0lbKKim3qDiD2UDqVDhedCPxCWiNhiSat45JvkrxH38Yg7d6nkH2/4R4KTR9++UVWvDNrZ+Xw2HaopzfvEI95CpqBQd54Kdvi0oDT/nzQW5/3ikV3l8/6y+To53FKUN8Qjk5clLrZMjB78MtU19GAhP+hTPdEVXJL/X/oXD9OzzxU6PwAAAAAAAAAArIWhP5VdvzfyA24PqGrTkn4hX+73gaXr861l1+drZW9tZfcdAAAAAIDtwskMRE3btpJ/WeS/yq/Hdv694smt3x+8v3PlMS1tNRPtH3KJrbBff1B87dkS0ygtZH71abXBNev8TlksPq3Ldqrm57f8mJO9H1+sup26X47PcsY2/q4EAAAAYCMsfuhvk2z4VTrbc+xepecEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB2s4a/HJt4WK6l+WLn03KtSu8jAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADASn4EAAD//xAR0Ao=") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = open(0x0, 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f000000df80)) fstat(r0, &(0x7f000000dfc0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() statx(r0, &(0x7f000000e180)='./file0\x00', 0x1000, 0x80, &(0x7f000000e1c0)) r2 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r3 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r3}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000200)) 08:48:28 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 28) [ 2318.843965][T17720] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2318.851718][T17720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2318.859627][T17720] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2318.867865][T17720] [ 2318.893869][T17754] FAULT_INJECTION: forcing a failure. [ 2318.893869][T17754] name failslab, interval 1, probability 0, space 0, times 0 [ 2318.906560][T17754] CPU: 0 PID: 17754 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2318.916714][T17754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2318.926608][T17754] Call Trace: [ 2318.929734][T17754] [ 2318.932509][T17754] dump_stack_lvl+0x151/0x1b7 [ 2318.937023][T17754] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2318.942494][T17754] dump_stack+0x15/0x17 [ 2318.946479][T17754] should_fail+0x3c6/0x510 [ 2318.950733][T17754] __should_failslab+0xa4/0xe0 [ 2318.955338][T17754] ? anon_vma_clone+0x9a/0x500 [ 2318.959939][T17754] should_failslab+0x9/0x20 [ 2318.964273][T17754] slab_pre_alloc_hook+0x37/0xd0 [ 2318.969047][T17754] ? anon_vma_clone+0x9a/0x500 [ 2318.973643][T17754] kmem_cache_alloc+0x44/0x200 [ 2318.978243][T17754] anon_vma_clone+0x9a/0x500 [ 2318.982675][T17754] anon_vma_fork+0x91/0x4e0 [ 2318.987023][T17754] ? anon_vma_name+0x4c/0x70 [ 2318.991449][T17754] ? vm_area_dup+0x17a/0x230 [ 2318.995863][T17754] copy_mm+0xa3a/0x13e0 [ 2318.999859][T17754] ? copy_signal+0x610/0x610 [ 2319.004279][T17754] ? __init_rwsem+0xd6/0x1c0 [ 2319.008710][T17754] ? copy_signal+0x4e3/0x610 [ 2319.013226][T17754] copy_process+0x1149/0x3290 [ 2319.017738][T17754] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2319.022683][T17754] ? copy_clone_args_from_user+0x744/0x830 [ 2319.028325][T17754] kernel_clone+0x21e/0x9e0 [ 2319.032663][T17754] ? __delayed_free_task+0x20/0x20 [ 2319.037701][T17754] ? create_io_thread+0x1e0/0x1e0 [ 2319.042563][T17754] __x64_sys_clone3+0x376/0x3a0 [ 2319.047246][T17754] ? __ia32_sys_clone+0x290/0x290 [ 2319.052105][T17754] ? fput+0x1a/0x20 [ 2319.055757][T17754] ? debug_smp_processor_id+0x17/0x20 [ 2319.061047][T17754] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2319.067080][T17754] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2319.072536][T17754] do_syscall_64+0x3d/0xb0 [ 2319.076785][T17754] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2319.082525][T17754] RIP: 0033:0x7fe6f3145da9 [ 2319.086766][T17754] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2319.106210][T17754] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2319.114455][T17754] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2319.122262][T17754] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2319.130182][T17754] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x8000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:28 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000280)={r1, 0xe0, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x9, 0x9, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xb1, &(0x7f0000000140)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f00000001c0), &(0x7f0000000200), 0x8, 0x1e, 0x8, 0x8, &(0x7f0000000240)}}, 0x10) r5 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) r6 = openat$incfs(r5, &(0x7f00000002c0)='.pending_reads\x00', 0x40400, 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r8, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff"], 0x15) r9 = dup(r8) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {'wfdno', 0x3d, r9}}) write$FUSE_BMAP(r9, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r9, &(0x7f0000000540)=ANY=[@ANYBLOB="a8"], 0xa8) write$FUSE_DIRENTPLUS(r9, &(0x7f0000000900)=ANY=[@ANYBLOB="a800000000000000", @ANYRES64=0x0, @ANYBLOB="00000000000000000000000000e129643444126c169d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000900000000000000000000000000000000000000000000003bb8421cd2a9ab540121ece9", @ANYRES32=0xee00, @ANYRES32=0x0, @ANYBLOB='\x00'/36], 0xa8) write$FUSE_BMAP(r9, &(0x7f00000000c0)={0x18}, 0x18) write$FUSE_INIT(r9, &(0x7f00000001c0)={0x50}, 0x50) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {'wfdno', 0x3d, r9}}) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xa, 0xe, &(0x7f0000000580)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7}, [@btf_id={0x18, 0x2, 0x3, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x53}, @ldst={0x1, 0x0, 0x6, 0x9, 0xcfba6c460a893fe5, 0x0, 0xfffffffffffffff4}, @map_val={0x18, 0xa, 0x2, 0x0, r6, 0x0, 0x0, 0x0, 0x8001}, @map_fd={0x18, 0x9, 0x1, 0x0, r9}, @ldst={0x3, 0x0, 0x1, 0x1, 0x1, 0xfffffffffffffffe, 0x10}, @exit, @alu={0x4, 0x0, 0x8, 0x4, 0x1, 0xfffffffffffffff4, 0x4}]}, &(0x7f0000000440)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41000, 0x61, '\x00', 0x0, 0x21, r5, 0x8, &(0x7f0000000600)={0x1, 0x2}, 0x8, 0x10, &(0x7f0000000740)={0x2, 0x7, 0xa0, 0xffffff00}, 0x10, r4, r5, 0x8, &(0x7f0000000780)=[r1, r1, r5], &(0x7f00000007c0)=[{0x1, 0x2, 0xe, 0x5}, {0x2, 0x5, 0x5}, {0x5, 0x1, 0x4, 0x4}, {0x4, 0x3, 0xf, 0x9}, {0x3, 0x5, 0x6, 0xb}, {0x4, 0x3, 0x2, 0x8}, {0x3, 0x1, 0xb, 0x2}, {0x0, 0x3, 0xa, 0x7}], 0x10, 0x7}, 0x90) fcntl$setlease(r5, 0x400, 0x0) r10 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xd, 0x18, &(0x7f00000003c0)=ANY=[@ANYRESHEX=r3, @ANYRES64=r5, @ANYRES64=r2, @ANYRESHEX=r2, @ANYRES16=r2, @ANYRES8=r1, @ANYRESOCT=r0], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', r3, 0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r10}, 0x10) setuid(0x0) 08:48:28 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 29) 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x9000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2319.137991][T17754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2319.145803][T17754] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2319.153617][T17754] [ 2319.172753][T17760] loop0: detected capacity change from 0 to 128 08:48:28 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000280)={r1, 0xe0, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x9, 0x9, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xb1, &(0x7f0000000140)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f00000001c0), &(0x7f0000000200), 0x8, 0x1e, 0x8, 0x8, &(0x7f0000000240)}}, 0x10) (async) r5 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) r6 = openat$incfs(r5, &(0x7f00000002c0)='.pending_reads\x00', 0x40400, 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r8, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff"], 0x15) (async) r9 = dup(r8) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {'wfdno', 0x3d, r9}}) (async) write$FUSE_BMAP(r9, &(0x7f0000000100)={0x18}, 0x18) (async) write$FUSE_DIRENTPLUS(r9, &(0x7f0000000540)=ANY=[@ANYBLOB="a8"], 0xa8) write$FUSE_DIRENTPLUS(r9, &(0x7f0000000900)=ANY=[@ANYBLOB="a800000000000000", @ANYRES64=0x0, @ANYBLOB="00000000000000000000000000e129643444126c169d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000900000000000000000000000000000000000000000000003bb8421cd2a9ab540121ece9", @ANYRES32=0xee00, @ANYRES32=0x0, @ANYBLOB='\x00'/36], 0xa8) write$FUSE_BMAP(r9, &(0x7f00000000c0)={0x18}, 0x18) write$FUSE_INIT(r9, &(0x7f00000001c0)={0x50}, 0x50) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {'wfdno', 0x3d, r9}}) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xa, 0xe, &(0x7f0000000580)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7}, [@btf_id={0x18, 0x2, 0x3, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x53}, @ldst={0x1, 0x0, 0x6, 0x9, 0xcfba6c460a893fe5, 0x0, 0xfffffffffffffff4}, @map_val={0x18, 0xa, 0x2, 0x0, r6, 0x0, 0x0, 0x0, 0x8001}, @map_fd={0x18, 0x9, 0x1, 0x0, r9}, @ldst={0x3, 0x0, 0x1, 0x1, 0x1, 0xfffffffffffffffe, 0x10}, @exit, @alu={0x4, 0x0, 0x8, 0x4, 0x1, 0xfffffffffffffff4, 0x4}]}, &(0x7f0000000440)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41000, 0x61, '\x00', 0x0, 0x21, r5, 0x8, &(0x7f0000000600)={0x1, 0x2}, 0x8, 0x10, &(0x7f0000000740)={0x2, 0x7, 0xa0, 0xffffff00}, 0x10, r4, r5, 0x8, &(0x7f0000000780)=[r1, r1, r5], &(0x7f00000007c0)=[{0x1, 0x2, 0xe, 0x5}, {0x2, 0x5, 0x5}, {0x5, 0x1, 0x4, 0x4}, {0x4, 0x3, 0xf, 0x9}, {0x3, 0x5, 0x6, 0xb}, {0x4, 0x3, 0x2, 0x8}, {0x3, 0x1, 0xb, 0x2}, {0x0, 0x3, 0xa, 0x7}], 0x10, 0x7}, 0x90) fcntl$setlease(r5, 0x400, 0x0) r10 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xd, 0x18, &(0x7f00000003c0)=ANY=[@ANYRESHEX=r3, @ANYRES64=r5, @ANYRES64=r2, @ANYRESHEX=r2, @ANYRES16=r2, @ANYRES8=r1, @ANYRESOCT=r0], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', r3, 0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r10}, 0x10) setuid(0x0) 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0xf000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:28 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000280)={r1, 0xe0, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x9, 0x9, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xb1, &(0x7f0000000140)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f00000001c0), &(0x7f0000000200), 0x8, 0x1e, 0x8, 0x8, &(0x7f0000000240)}}, 0x10) (async, rerun: 32) r5 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) (rerun: 32) r6 = openat$incfs(r5, &(0x7f00000002c0)='.pending_reads\x00', 0x40400, 0x0) (async) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r8, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff"], 0x15) (async, rerun: 32) r9 = dup(r8) (rerun: 32) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {'wfdno', 0x3d, r9}}) write$FUSE_BMAP(r9, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r9, &(0x7f0000000540)=ANY=[@ANYBLOB="a8"], 0xa8) write$FUSE_DIRENTPLUS(r9, &(0x7f0000000900)=ANY=[@ANYBLOB="a800000000000000", @ANYRES64=0x0, @ANYBLOB="00000000000000000000000000e129643444126c169d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000900000000000000000000000000000000000000000000003bb8421cd2a9ab540121ece9", @ANYRES32=0xee00, @ANYRES32=0x0, @ANYBLOB='\x00'/36], 0xa8) write$FUSE_BMAP(r9, &(0x7f00000000c0)={0x18}, 0x18) (async, rerun: 64) write$FUSE_INIT(r9, &(0x7f00000001c0)={0x50}, 0x50) (async, rerun: 64) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {'wfdno', 0x3d, r9}}) (async, rerun: 32) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xa, 0xe, &(0x7f0000000580)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7}, [@btf_id={0x18, 0x2, 0x3, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x53}, @ldst={0x1, 0x0, 0x6, 0x9, 0xcfba6c460a893fe5, 0x0, 0xfffffffffffffff4}, @map_val={0x18, 0xa, 0x2, 0x0, r6, 0x0, 0x0, 0x0, 0x8001}, @map_fd={0x18, 0x9, 0x1, 0x0, r9}, @ldst={0x3, 0x0, 0x1, 0x1, 0x1, 0xfffffffffffffffe, 0x10}, @exit, @alu={0x4, 0x0, 0x8, 0x4, 0x1, 0xfffffffffffffff4, 0x4}]}, &(0x7f0000000440)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41000, 0x61, '\x00', 0x0, 0x21, r5, 0x8, &(0x7f0000000600)={0x1, 0x2}, 0x8, 0x10, &(0x7f0000000740)={0x2, 0x7, 0xa0, 0xffffff00}, 0x10, r4, r5, 0x8, &(0x7f0000000780)=[r1, r1, r5], &(0x7f00000007c0)=[{0x1, 0x2, 0xe, 0x5}, {0x2, 0x5, 0x5}, {0x5, 0x1, 0x4, 0x4}, {0x4, 0x3, 0xf, 0x9}, {0x3, 0x5, 0x6, 0xb}, {0x4, 0x3, 0x2, 0x8}, {0x3, 0x1, 0xb, 0x2}, {0x0, 0x3, 0xa, 0x7}], 0x10, 0x7}, 0x90) (rerun: 32) fcntl$setlease(r5, 0x400, 0x0) (async) r10 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xd, 0x18, &(0x7f00000003c0)=ANY=[@ANYRESHEX=r3, @ANYRES64=r5, @ANYRES64=r2, @ANYRESHEX=r2, @ANYRES16=r2, @ANYRES8=r1, @ANYRESOCT=r0], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', r3, 0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r10}, 0x10) (async) setuid(0x0) [ 2319.200400][T17765] FAULT_INJECTION: forcing a failure. [ 2319.200400][T17765] name failslab, interval 1, probability 0, space 0, times 0 [ 2319.235906][T17765] CPU: 1 PID: 17765 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2319.246061][T17765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2319.256039][T17765] Call Trace: [ 2319.259171][T17765] [ 2319.261956][T17765] dump_stack_lvl+0x151/0x1b7 [ 2319.266458][T17765] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2319.271929][T17765] ? __alloc_pages+0x27e/0x8f0 [ 2319.276530][T17765] dump_stack+0x15/0x17 [ 2319.280516][T17765] should_fail+0x3c6/0x510 [ 2319.284769][T17765] __should_failslab+0xa4/0xe0 [ 2319.289368][T17765] ? vm_area_dup+0x26/0x230 [ 2319.293706][T17765] should_failslab+0x9/0x20 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x10000200}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x11000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:28 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = creat(&(0x7f0000000100)='./file0\x00', 0x100) r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000280)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1, 0x3}, 0x48) r5 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)=@o_path={&(0x7f0000000300)='./file0\x00', 0x0, 0x8, r2}, 0x18) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000640)=@bpf_tracing={0x1a, 0x17, &(0x7f0000000000)=@raw=[@map_fd={0x18, 0x7, 0x1, 0x0, r0}, @exit, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7fff}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}, @tail_call, @map_fd={0x18, 0xb, 0x1, 0x0, r0}], &(0x7f00000000c0)='GPL\x00', 0xb6, 0x0, 0x0, 0x40e00, 0x9, '\x00', 0x0, 0x19, r3, 0x8, &(0x7f0000000140)={0x4, 0x3}, 0x8, 0x10, &(0x7f0000000180)={0x1, 0xb, 0x1, 0x2}, 0x10, 0x4340, r2, 0x4, &(0x7f0000000400)=[r1, r0, r1, r1, r2, r4, r5, r0, r0], &(0x7f0000000440)=[{0x1, 0x4, 0xe, 0x7}, {0x2, 0x1, 0x2, 0xb}, {0x2, 0x3, 0x10}, {0x3, 0x5, 0xb, 0xa}], 0x10, 0xffff}, 0x90) r6 = syz_open_dev$tty20(0xc, 0x4, 0x0) close_range(r6, r5, 0x2) setuid(0x0) [ 2319.298046][T17765] slab_pre_alloc_hook+0x37/0xd0 [ 2319.302831][T17765] ? vm_area_dup+0x26/0x230 [ 2319.307163][T17765] kmem_cache_alloc+0x44/0x200 [ 2319.311765][T17765] vm_area_dup+0x26/0x230 [ 2319.315931][T17765] copy_mm+0x9a1/0x13e0 [ 2319.319919][T17765] ? copy_signal+0x610/0x610 [ 2319.324342][T17765] ? __init_rwsem+0xd6/0x1c0 [ 2319.328773][T17765] ? copy_signal+0x4e3/0x610 [ 2319.333301][T17765] copy_process+0x1149/0x3290 [ 2319.337818][T17765] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2319.342850][T17765] ? copy_clone_args_from_user+0x744/0x830 [ 2319.348488][T17765] kernel_clone+0x21e/0x9e0 [ 2319.352826][T17765] ? __delayed_free_task+0x20/0x20 [ 2319.357771][T17765] ? create_io_thread+0x1e0/0x1e0 [ 2319.362719][T17765] __x64_sys_clone3+0x376/0x3a0 [ 2319.367406][T17765] ? __ia32_sys_clone+0x290/0x290 [ 2319.372357][T17765] ? fput+0x1a/0x20 [ 2319.376029][T17765] ? debug_smp_processor_id+0x17/0x20 [ 2319.381208][T17765] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2319.387113][T17765] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2319.392580][T17765] do_syscall_64+0x3d/0xb0 [ 2319.396833][T17765] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2319.402562][T17765] RIP: 0033:0x7fe6f3145da9 [ 2319.406816][T17765] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2319.426255][T17765] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2319.434520][T17765] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2319.442322][T17765] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 08:48:28 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x1f000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2319.450208][T17765] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2319.458020][T17765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2319.465921][T17765] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2319.473737][T17765] 08:48:29 executing program 2: syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() r0 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r0, @ANYRESHEX=r0, @ANYRESOCT, @ANYBLOB="ca42ad87b11bb3b2507e03129a435e7c99104f0cd507000000046f9445631055f28a4e6777e97047e5807db4996b10208d04454ea654888bf754956945961677b348d33478b3d8f70eac439f502bea81070bba59ccec17e7d182ea9fdfde2b94e826d24492db7f8983925947dc2b357943622c9feaa43512f4afed56e4010e2543166dfc76b6668c1ccb960ebeb21ae5eaaa01a65f105a20fdcdb5c20c2245eecbd4e49cbb07060000003674c0a6397ca594873755027deb77b094a29545f674e5a44c597f0473f49684719c9445839a59a09e1c1361d72b8a1dd163eecd03bd218ba880482b173bef3f91cbd40796bdeb13d63c1eadecb3dfe83f1d88b8b7fb053eed7e742bfff269a5c16070aa8b51d4538811d4de1d198d2fdcfa404fc9e6df202578e962544794e77c2425f73fcd3d0cd1d4ff004ec0754e946adff5e93ffc586126de12ee3a2b1e347cbf598c20648bf702511dd953cfd9eef7b0cf148a63cca032a3f5c2247efc16857ad98255693a11149dde8fed62623d07d357b0c1251f9c4f7492c9e5000000001c2485258e4a9f46a454427a1cdb84782846052b20554446e9b9b6d45be858bf97e390544b8e54d32db951f89f86bd455af5174c9edcd7bd4e5448cc3c2b7a5b07c20b369ba5effd8334a4b597daa76b65dece5249d08f5b66dd8c3cd9aab9fcffff5577502dc33d51ed2a25c3640cd073b7d51d12266c6079622281358c96043413eeb5938648ac8b3f8b4d38ef5331499b828a6579d5048ed27ea04e2e070f2ba16433bf79a7af308fa86e765081df9163e034dcb6505ea7890693156414a8b0d5fceb38ffe232dafc93ce08e1fbb2000000000025fb6d6cd068b59d26d3835002ec4c6700bba9e73ffe3ee7aad4834800000000000000000000d7ce5719e9a80531cc154ae62236435abb4981d2183d7b8fc26fac5484b1393d7e8d4dfb9bdcdf37c0d74e6e787888f71a28396f49a4b95f46d12ae1010c0e3185929e39dc3cee5ba6f6434199f686be319d4794efc589166434ddeda1feedd8539030f54fd0da371eec53b41fae2fd04bcac127c759", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r1 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r1}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200)) 08:48:29 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x1ffff000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:29 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) (async) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = creat(&(0x7f0000000100)='./file0\x00', 0x100) r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000280)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1, 0x3}, 0x48) r5 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)=@o_path={&(0x7f0000000300)='./file0\x00', 0x0, 0x8, r2}, 0x18) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000640)=@bpf_tracing={0x1a, 0x17, &(0x7f0000000000)=@raw=[@map_fd={0x18, 0x7, 0x1, 0x0, r0}, @exit, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7fff}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}, @tail_call, @map_fd={0x18, 0xb, 0x1, 0x0, r0}], &(0x7f00000000c0)='GPL\x00', 0xb6, 0x0, 0x0, 0x40e00, 0x9, '\x00', 0x0, 0x19, r3, 0x8, &(0x7f0000000140)={0x4, 0x3}, 0x8, 0x10, &(0x7f0000000180)={0x1, 0xb, 0x1, 0x2}, 0x10, 0x4340, r2, 0x4, &(0x7f0000000400)=[r1, r0, r1, r1, r2, r4, r5, r0, r0], &(0x7f0000000440)=[{0x1, 0x4, 0xe, 0x7}, {0x2, 0x1, 0x2, 0xb}, {0x2, 0x3, 0x10}, {0x3, 0x5, 0xb, 0xa}], 0x10, 0xffff}, 0x90) r6 = syz_open_dev$tty20(0xc, 0x4, 0x0) close_range(r6, r5, 0x2) (async) setuid(0x0) 08:48:29 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 30) 08:48:29 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x20000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:29 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x40000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:29 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = open(0x0, 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f000000df80)) fstat(r0, &(0x7f000000dfc0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() statx(r0, &(0x7f000000e180)='./file0\x00', 0x1000, 0x80, &(0x7f000000e1c0)) r2 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="ca42ad87b11bb3b2507e03129a435e7c99104f0cd507000000046f9445631055f28a4e6777e97047e5807db4996b10208d04454ea654888bf754956945961677b348d33478b3d8f70eac439f502bea81070bba59ccec17e7d182ea9fdfde2b94e826d24492db7f8983925947dc2b357943622c9feaa43512f4afed56e4010e2543166dfc76b6668c1ccb960ebeb21ae5eaaa01a65f105a20fdcdb5c20c2245eecbd4e49cbb07060000003674c0a6397ca594873755027deb77b094a29545f674e5a44c597f0473f49684719c9445839a59a09e1c1361d72b8a1dd163eecd03bd218ba880482b173bef3f91cbd40796bdeb13d63c1eadecb3dfe83f1d88b8b7fb053eed7e742bfff269a5c16070aa8b51d4538811d4de1d198d2fdcfa404fc9e6df202578e962544794e77c2425f73fcd3d0cd1d4ff004ec0754e946adff5e93ffc586126de12ee3a2b1e347cbf598c20648bf702511dd953cfd9eef7b0cf148a63cca032a3f5c2247efc16857ad98255693a11149dde8fed62623d07d357b0c1251f9c4f7492c9e5000000001c2485258e4a9f46a454427a1cdb84782846052b20554446e9b9b6d45be858bf97e390544b8e54d32db951f89f86bd455af5174c9edcd7bd4e5448cc3c2b7a5b07c20b369ba5effd8334a4b597daa76b65dece5249d08f5b66dd8c3cd9aab9fcffff5577502dc33d51ed2a25c3640cd073b7d51d12266c6079622281358c96043413eeb5938648ac8b3f8b4d38ef5331499b828a6579d5048ed27ea04e2e070f2ba16433bf79a7af308fa86e765081df9163e034dcb6505ea7890693156414a8b0d5fceb38ffe232dafc93ce08e1fbb2000000000025fb6d6cd068b59d26d3835002ec4c6700bba9e73ffe3ee7aad4834800000000000000000000d7ce5719e9a80531cc154ae62236435abb4981d2183d7b8fc26fac5484b1393d7e8d4dfb9bdcdf37c0d74e6e787888f71a28396f49a4b95f46d12ae1010c0e3185929e39dc3cee5ba6f6434199f686be319d4794efc589166434ddeda1feedd8539030f54fd0da371eec53b41fae2fd04bcac127c759", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r3 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r3}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200)) 08:48:29 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = creat(&(0x7f0000000100)='./file0\x00', 0x100) r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000280)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1, 0x3}, 0x48) r5 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)=@o_path={&(0x7f0000000300)='./file0\x00', 0x0, 0x8, r2}, 0x18) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000640)=@bpf_tracing={0x1a, 0x17, &(0x7f0000000000)=@raw=[@map_fd={0x18, 0x7, 0x1, 0x0, r0}, @exit, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7fff}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}, @tail_call, @map_fd={0x18, 0xb, 0x1, 0x0, r0}], &(0x7f00000000c0)='GPL\x00', 0xb6, 0x0, 0x0, 0x40e00, 0x9, '\x00', 0x0, 0x19, r3, 0x8, &(0x7f0000000140)={0x4, 0x3}, 0x8, 0x10, &(0x7f0000000180)={0x1, 0xb, 0x1, 0x2}, 0x10, 0x4340, r2, 0x4, &(0x7f0000000400)=[r1, r0, r1, r1, r2, r4, r5, r0, r0], &(0x7f0000000440)=[{0x1, 0x4, 0xe, 0x7}, {0x2, 0x1, 0x2, 0xb}, {0x2, 0x3, 0x10}, {0x3, 0x5, 0xb, 0xa}], 0x10, 0xffff}, 0x90) r6 = syz_open_dev$tty20(0xc, 0x4, 0x0) close_range(r6, r5, 0x2) setuid(0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) creat(&(0x7f0000000100)='./file0\x00', 0x100) (async) bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000280)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1, 0x3}, 0x48) (async) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)=@o_path={&(0x7f0000000300)='./file0\x00', 0x0, 0x8, r2}, 0x18) (async) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000640)=@bpf_tracing={0x1a, 0x17, &(0x7f0000000000)=@raw=[@map_fd={0x18, 0x7, 0x1, 0x0, r0}, @exit, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7fff}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}, @tail_call, @map_fd={0x18, 0xb, 0x1, 0x0, r0}], &(0x7f00000000c0)='GPL\x00', 0xb6, 0x0, 0x0, 0x40e00, 0x9, '\x00', 0x0, 0x19, r3, 0x8, &(0x7f0000000140)={0x4, 0x3}, 0x8, 0x10, &(0x7f0000000180)={0x1, 0xb, 0x1, 0x2}, 0x10, 0x4340, r2, 0x4, &(0x7f0000000400)=[r1, r0, r1, r1, r2, r4, r5, r0, r0], &(0x7f0000000440)=[{0x1, 0x4, 0xe, 0x7}, {0x2, 0x1, 0x2, 0xb}, {0x2, 0x3, 0x10}, {0x3, 0x5, 0xb, 0xa}], 0x10, 0xffff}, 0x90) (async) syz_open_dev$tty20(0xc, 0x4, 0x0) (async) close_range(r6, r5, 0x2) (async) setuid(0x0) (async) [ 2319.568457][T17792] FAULT_INJECTION: forcing a failure. [ 2319.568457][T17792] name failslab, interval 1, probability 0, space 0, times 0 [ 2319.604480][T17792] CPU: 1 PID: 17792 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2319.614652][T17792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2319.624544][T17792] Call Trace: [ 2319.627665][T17792] [ 2319.630443][T17792] dump_stack_lvl+0x151/0x1b7 [ 2319.634999][T17792] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2319.640420][T17792] ? avc_denied+0x1b0/0x1b0 [ 2319.644759][T17792] dump_stack+0x15/0x17 [ 2319.648753][T17792] should_fail+0x3c6/0x510 [ 2319.653005][T17792] __should_failslab+0xa4/0xe0 [ 2319.657606][T17792] ? vm_area_dup+0x26/0x230 [ 2319.661945][T17792] should_failslab+0x9/0x20 [ 2319.666292][T17792] slab_pre_alloc_hook+0x37/0xd0 [ 2319.671057][T17792] ? vm_area_dup+0x26/0x230 [ 2319.675396][T17792] kmem_cache_alloc+0x44/0x200 [ 2319.679996][T17792] vm_area_dup+0x26/0x230 [ 2319.684165][T17792] copy_mm+0x9a1/0x13e0 [ 2319.688244][T17792] ? copy_signal+0x610/0x610 [ 2319.692669][T17792] ? __init_rwsem+0xd6/0x1c0 [ 2319.697095][T17792] ? copy_signal+0x4e3/0x610 [ 2319.701522][T17792] copy_process+0x1149/0x3290 [ 2319.706046][T17792] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2319.710984][T17792] ? copy_clone_args_from_user+0x744/0x830 [ 2319.716626][T17792] kernel_clone+0x21e/0x9e0 [ 2319.720972][T17792] ? __delayed_free_task+0x20/0x20 [ 2319.726084][T17792] ? create_io_thread+0x1e0/0x1e0 [ 2319.730951][T17792] __x64_sys_clone3+0x376/0x3a0 [ 2319.735630][T17792] ? __ia32_sys_clone+0x290/0x290 [ 2319.740493][T17792] ? fput+0x1a/0x20 [ 2319.744136][T17792] ? debug_smp_processor_id+0x17/0x20 [ 2319.749344][T17792] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2319.755249][T17792] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2319.760715][T17792] do_syscall_64+0x3d/0xb0 [ 2319.764967][T17792] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2319.770694][T17792] RIP: 0033:0x7fe6f3145da9 [ 2319.774950][T17792] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2319.794649][T17792] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2319.802895][T17792] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2319.810706][T17792] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 08:48:29 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 31) 08:48:29 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0xa002a000}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2319.818520][T17792] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2319.826416][T17792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2319.834319][T17792] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2319.842126][T17792] [ 2319.846338][T17803] loop2: detected capacity change from 0 to 128 08:48:29 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0xf5ffffff}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:29 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) r3 = socket$inet6(0xa, 0x2, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(r4, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000a40)=@newlink={0x3c, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r5, 0x4048b}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r5}]}}}]}, 0x3c}}, 0x0) sendmmsg$inet(r3, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @remote}, 0x20000050, 0x0, 0x0, &(0x7f00000004c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @empty}}}], 0x20}}], 0x1, 0x0) r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000780)={&(0x7f0000000580)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x7, [@struct={0xf, 0x1, 0x0, 0x4, 0x1, 0xfffffffa, [{0x9, 0x5, 0xfffffffa}]}, @const={0x7, 0x0, 0x0, 0xa, 0x5}]}, {0x0, [0x5f, 0x61, 0x61, 0x30, 0x30]}}, &(0x7f0000000700)=""/91, 0x43, 0x5b, 0x0, 0x2}, 0x20) r7 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x0, 0x0) readlinkat(r7, &(0x7f0000000040)='./file0\x00', &(0x7f0000000180)=""/233, 0xe9) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000840)={0xffffffffffffffff, 0x1, 0x8, 0xe3}) r9 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000008c0)=@o_path={&(0x7f0000000880)='./file0\x00', 0x0, 0x10, r0}, 0x18) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000940)={0x11, 0x3, &(0x7f0000000400)=@raw=[@alu={0x7, 0x1, 0x1, 0x4, 0x8, 0x1, 0x10}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffc}, @alu={0x4, 0x1, 0x6, 0x0, 0x7, 0xfffffffffffffff8, 0xfffffffffffffff0}], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x48, '\x00', r5, 0x0, r6, 0x8, &(0x7f00000007c0)={0x9, 0x3}, 0x8, 0x10, &(0x7f0000000800)={0x4, 0x0, 0x1, 0x5935}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000900)=[r0, r1, r7, r1, r1, r8, r9, r1], 0x0, 0x10, 0x65}, 0x90) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r10, 0x0, r13, 0x0, 0x800008ec0, 0x0) write(r13, &(0x7f0000000280)='f', 0x1) dup3(r11, r12, 0x0) r14 = dup2(r12, r13) write$binfmt_elf64(r14, &(0x7f0000000300)=ANY=[], 0x78) r15 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000280), 0x4) r16 = syz_btf_id_by_name$bpf_lsm(&(0x7f0000000300)='bpf_lsm_cred_alloc_blank\x00') bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x10, 0x8, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0xfffffffb}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r14}}]}, &(0x7f0000000080)='syzkaller\x00', 0x9, 0x83, &(0x7f00000000c0)=""/131, 0x40f00, 0x0, '\x00', 0x0, 0x3, r15, 0x8, 0x0, 0x0, 0x10, &(0x7f00000002c0)={0x5, 0x8, 0x0, 0x7fffffff}, 0x10, r16, 0xffffffffffffffff, 0x0, &(0x7f00000003c0)=[r0], 0x0, 0x10, 0x5}, 0x90) setuid(0x0) [ 2319.870526][T17818] FAULT_INJECTION: forcing a failure. [ 2319.870526][T17818] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2319.895353][T17818] CPU: 1 PID: 17818 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2319.905524][T17818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2319.906726][T17822] loop0: detected capacity change from 0 to 128 [ 2319.915416][T17818] Call Trace: [ 2319.915430][T17818] [ 2319.915438][T17818] dump_stack_lvl+0x151/0x1b7 [ 2319.915465][T17818] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2319.937379][T17818] dump_stack+0x15/0x17 [ 2319.941364][T17818] should_fail+0x3c6/0x510 [ 2319.945614][T17818] should_fail_alloc_page+0x5a/0x80 [ 2319.950652][T17818] prepare_alloc_pages+0x15c/0x700 [ 2319.955597][T17818] ? __alloc_pages_bulk+0xe40/0xe40 [ 2319.960631][T17818] __alloc_pages+0x18c/0x8f0 [ 2319.965054][T17818] ? prep_new_page+0x110/0x110 [ 2319.969664][T17818] get_zeroed_page+0x1b/0x40 [ 2319.974080][T17818] __pud_alloc+0x8b/0x260 [ 2319.978247][T17818] ? stack_trace_snprint+0xf0/0xf0 [ 2319.983196][T17818] ? do_handle_mm_fault+0x2330/0x2330 [ 2319.988401][T17818] ? __stack_depot_save+0x34/0x470 [ 2319.993346][T17818] ? anon_vma_clone+0x9a/0x500 [ 2319.997950][T17818] copy_page_range+0x2bcf/0x2f90 [ 2320.002721][T17818] ? __kasan_slab_alloc+0xb1/0xe0 [ 2320.007579][T17818] ? slab_post_alloc_hook+0x53/0x2c0 [ 2320.012703][T17818] ? copy_mm+0xa3a/0x13e0 [ 2320.016956][T17818] ? copy_process+0x1149/0x3290 [ 2320.021641][T17818] ? kernel_clone+0x21e/0x9e0 [ 2320.026156][T17818] ? __x64_sys_clone3+0x376/0x3a0 [ 2320.031015][T17818] ? do_syscall_64+0x3d/0xb0 [ 2320.035442][T17818] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2320.041351][T17818] ? pfn_valid+0x1e0/0x1e0 [ 2320.045598][T17818] ? rwsem_write_trylock+0x15b/0x290 [ 2320.050718][T17818] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 2320.056969][T17818] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 2320.062522][T17818] ? __rb_insert_augmented+0x5de/0x610 [ 2320.067829][T17818] copy_mm+0xc7e/0x13e0 [ 2320.071838][T17818] ? copy_signal+0x610/0x610 [ 2320.076234][T17818] ? __init_rwsem+0xd6/0x1c0 [ 2320.080661][T17818] ? copy_signal+0x4e3/0x610 [ 2320.085090][T17818] copy_process+0x1149/0x3290 [ 2320.089604][T17818] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2320.094551][T17818] ? copy_clone_args_from_user+0x744/0x830 [ 2320.100190][T17818] kernel_clone+0x21e/0x9e0 [ 2320.104618][T17818] ? __delayed_free_task+0x20/0x20 [ 2320.109565][T17818] ? create_io_thread+0x1e0/0x1e0 [ 2320.114427][T17818] __x64_sys_clone3+0x376/0x3a0 [ 2320.119131][T17818] ? __ia32_sys_clone+0x290/0x290 [ 2320.124059][T17818] ? fput+0x1a/0x20 [ 2320.127705][T17818] ? debug_smp_processor_id+0x17/0x20 [ 2320.132909][T17818] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2320.138814][T17818] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2320.144281][T17818] do_syscall_64+0x3d/0xb0 [ 2320.148534][T17818] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2320.154261][T17818] RIP: 0033:0x7fe6f3145da9 [ 2320.158516][T17818] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2320.177956][T17818] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2320.186202][T17818] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2320.194014][T17818] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2320.201831][T17818] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2320.209634][T17818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 08:48:29 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0xfbffffff}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:29 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0xff0f0100}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:29 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 32) 08:48:29 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0xfffffff5}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2320.217532][T17818] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2320.225351][T17818] 08:48:29 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0xfffffffb}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2320.291756][T17830] FAULT_INJECTION: forcing a failure. [ 2320.291756][T17830] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2320.315719][T17830] CPU: 0 PID: 17830 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2320.325884][T17830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2320.335782][T17830] Call Trace: [ 2320.338905][T17830] [ 2320.341678][T17830] dump_stack_lvl+0x151/0x1b7 [ 2320.346197][T17830] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2320.351668][T17830] dump_stack+0x15/0x17 [ 2320.355660][T17830] should_fail+0x3c6/0x510 [ 2320.359911][T17830] should_fail_alloc_page+0x5a/0x80 [ 2320.365032][T17830] prepare_alloc_pages+0x15c/0x700 [ 2320.369976][T17830] ? __alloc_pages_bulk+0xe40/0xe40 [ 2320.375016][T17830] __alloc_pages+0x18c/0x8f0 [ 2320.379439][T17830] ? prep_new_page+0x110/0x110 [ 2320.384041][T17830] get_zeroed_page+0x1b/0x40 08:48:29 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0xffffffff}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:29 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2, 0x0, 0x0}, 0x58) [ 2320.388461][T17830] __pud_alloc+0x8b/0x260 [ 2320.392631][T17830] ? stack_trace_snprint+0xf0/0xf0 [ 2320.397575][T17830] ? do_handle_mm_fault+0x2330/0x2330 [ 2320.402787][T17830] ? __stack_depot_save+0x34/0x470 [ 2320.407731][T17830] ? anon_vma_clone+0x9a/0x500 [ 2320.412334][T17830] copy_page_range+0x2bcf/0x2f90 [ 2320.417103][T17830] ? __kasan_slab_alloc+0xb1/0xe0 [ 2320.421968][T17830] ? slab_post_alloc_hook+0x53/0x2c0 [ 2320.427100][T17830] ? copy_mm+0xa3a/0x13e0 [ 2320.431249][T17830] ? copy_process+0x1149/0x3290 [ 2320.435945][T17830] ? kernel_clone+0x21e/0x9e0 [ 2320.440456][T17830] ? __x64_sys_clone3+0x376/0x3a0 [ 2320.445318][T17830] ? do_syscall_64+0x3d/0xb0 [ 2320.449740][T17830] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2320.455653][T17830] ? pfn_valid+0x1e0/0x1e0 [ 2320.459913][T17830] ? rwsem_write_trylock+0x15b/0x290 [ 2320.465014][T17830] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 2320.471259][T17830] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 2320.476813][T17830] ? __rb_insert_augmented+0x5de/0x610 [ 2320.482108][T17830] copy_mm+0xc7e/0x13e0 [ 2320.486101][T17830] ? copy_signal+0x610/0x610 [ 2320.490524][T17830] ? __init_rwsem+0xd6/0x1c0 [ 2320.494954][T17830] ? copy_signal+0x4e3/0x610 [ 2320.499999][T17830] copy_process+0x1149/0x3290 [ 2320.504517][T17830] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2320.509446][T17830] ? copy_clone_args_from_user+0x744/0x830 [ 2320.515097][T17830] kernel_clone+0x21e/0x9e0 [ 2320.519429][T17830] ? __delayed_free_task+0x20/0x20 [ 2320.524373][T17830] ? create_io_thread+0x1e0/0x1e0 [ 2320.529236][T17830] __x64_sys_clone3+0x376/0x3a0 [ 2320.533922][T17830] ? __ia32_sys_clone+0x290/0x290 [ 2320.538783][T17830] ? bpf_trace_run2+0xf1/0x210 [ 2320.543381][T17830] ? fput+0x1a/0x20 [ 2320.547049][T17830] ? __bpf_trace_sys_enter+0x62/0x70 [ 2320.552162][T17830] ? syscall_enter_from_user_mode+0x14d/0x1b0 [ 2320.558054][T17830] do_syscall_64+0x3d/0xb0 [ 2320.562305][T17830] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2320.568033][T17830] RIP: 0033:0x7fe6f3145da9 [ 2320.572285][T17830] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x7, 0x0, 0x0}, 0x58) 08:48:30 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 33) [ 2320.591728][T17830] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2320.600143][T17830] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2320.607955][T17830] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2320.615775][T17830] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2320.623670][T17830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2320.631476][T17830] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2320.639290][T17830] 08:48:30 executing program 3: bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) (async) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) r3 = socket$inet6(0xa, 0x2, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(r4, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000a40)=@newlink={0x3c, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r5, 0x4048b}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r5}]}}}]}, 0x3c}}, 0x0) sendmmsg$inet(r3, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @remote}, 0x20000050, 0x0, 0x0, &(0x7f00000004c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @empty}}}], 0x20}}], 0x1, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000780)={&(0x7f0000000580)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x7, [@struct={0xf, 0x1, 0x0, 0x4, 0x1, 0xfffffffa, [{0x9, 0x5, 0xfffffffa}]}, @const={0x7, 0x0, 0x0, 0xa, 0x5}]}, {0x0, [0x5f, 0x61, 0x61, 0x30, 0x30]}}, &(0x7f0000000700)=""/91, 0x43, 0x5b, 0x0, 0x2}, 0x20) (async) r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000780)={&(0x7f0000000580)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x7, [@struct={0xf, 0x1, 0x0, 0x4, 0x1, 0xfffffffa, [{0x9, 0x5, 0xfffffffa}]}, @const={0x7, 0x0, 0x0, 0xa, 0x5}]}, {0x0, [0x5f, 0x61, 0x61, 0x30, 0x30]}}, &(0x7f0000000700)=""/91, 0x43, 0x5b, 0x0, 0x2}, 0x20) openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x0, 0x0) (async) r7 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x0, 0x0) readlinkat(r7, &(0x7f0000000040)='./file0\x00', &(0x7f0000000180)=""/233, 0xe9) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000840)={0xffffffffffffffff, 0x1, 0x8, 0xe3}) bpf$OBJ_GET_MAP(0x7, &(0x7f00000008c0)=@o_path={&(0x7f0000000880)='./file0\x00', 0x0, 0x10, r0}, 0x18) (async) r9 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000008c0)=@o_path={&(0x7f0000000880)='./file0\x00', 0x0, 0x10, r0}, 0x18) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000940)={0x11, 0x3, &(0x7f0000000400)=@raw=[@alu={0x7, 0x1, 0x1, 0x4, 0x8, 0x1, 0x10}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffc}, @alu={0x4, 0x1, 0x6, 0x0, 0x7, 0xfffffffffffffff8, 0xfffffffffffffff0}], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x48, '\x00', r5, 0x0, r6, 0x8, &(0x7f00000007c0)={0x9, 0x3}, 0x8, 0x10, &(0x7f0000000800)={0x4, 0x0, 0x1, 0x5935}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000900)=[r0, r1, r7, r1, r1, r8, r9, r1], 0x0, 0x10, 0x65}, 0x90) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000200)) (async) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r10, 0x0, r13, 0x0, 0x800008ec0, 0x0) write(r13, &(0x7f0000000280)='f', 0x1) dup3(r11, r12, 0x0) (async) dup3(r11, r12, 0x0) r14 = dup2(r12, r13) write$binfmt_elf64(r14, &(0x7f0000000300)=ANY=[], 0x78) (async) write$binfmt_elf64(r14, &(0x7f0000000300)=ANY=[], 0x78) r15 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000280), 0x4) syz_btf_id_by_name$bpf_lsm(&(0x7f0000000300)='bpf_lsm_cred_alloc_blank\x00') (async) r16 = syz_btf_id_by_name$bpf_lsm(&(0x7f0000000300)='bpf_lsm_cred_alloc_blank\x00') bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x10, 0x8, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0xfffffffb}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r14}}]}, &(0x7f0000000080)='syzkaller\x00', 0x9, 0x83, &(0x7f00000000c0)=""/131, 0x40f00, 0x0, '\x00', 0x0, 0x3, r15, 0x8, 0x0, 0x0, 0x10, &(0x7f00000002c0)={0x5, 0x8, 0x0, 0x7fffffff}, 0x10, r16, 0xffffffffffffffff, 0x0, &(0x7f00000003c0)=[r0], 0x0, 0x10, 0x5}, 0x90) setuid(0x0) 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8, 0x0, 0x0}, 0x58) 08:48:30 executing program 2: syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() r0 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r0, @ANYRESHEX=r0, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r1 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r1}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200)) [ 2320.676160][T17848] FAULT_INJECTION: forcing a failure. [ 2320.676160][T17848] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2320.702130][T17848] CPU: 0 PID: 17848 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2320.712381][T17848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2320.722272][T17848] Call Trace: 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x9, 0x0, 0x0}, 0x58) 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf, 0x0, 0x0}, 0x58) 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11, 0x0, 0x0}, 0x58) [ 2320.725398][T17848] [ 2320.728175][T17848] dump_stack_lvl+0x151/0x1b7 [ 2320.732688][T17848] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2320.738157][T17848] dump_stack+0x15/0x17 [ 2320.742151][T17848] should_fail+0x3c6/0x510 [ 2320.746401][T17848] should_fail_alloc_page+0x5a/0x80 [ 2320.751437][T17848] prepare_alloc_pages+0x15c/0x700 [ 2320.756382][T17848] ? __alloc_pages_bulk+0xe40/0xe40 [ 2320.761414][T17848] __alloc_pages+0x18c/0x8f0 [ 2320.765842][T17848] ? prep_new_page+0x110/0x110 [ 2320.770441][T17848] ? __alloc_pages+0x27e/0x8f0 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x70, 0x0, 0x0}, 0x58) 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x700, 0x0, 0x0}, 0x58) [ 2320.775044][T17848] ? __kasan_check_write+0x14/0x20 [ 2320.779989][T17848] ? _raw_spin_lock+0xa4/0x1b0 [ 2320.784600][T17848] pte_alloc_one+0x73/0x1b0 [ 2320.788932][T17848] ? pfn_modify_allowed+0x2f0/0x2f0 [ 2320.793962][T17848] ? __pmd_alloc+0x48d/0x550 [ 2320.798390][T17848] __pte_alloc+0x86/0x350 [ 2320.802642][T17848] ? __pud_alloc+0x260/0x260 [ 2320.807064][T17848] ? __pud_alloc+0x213/0x260 [ 2320.811496][T17848] ? free_pgtables+0x280/0x280 [ 2320.816096][T17848] ? do_handle_mm_fault+0x2330/0x2330 [ 2320.821303][T17848] ? __stack_depot_save+0x34/0x470 [ 2320.826247][T17848] ? anon_vma_clone+0x9a/0x500 [ 2320.830850][T17848] copy_page_range+0x28a8/0x2f90 [ 2320.835629][T17848] ? __kasan_slab_alloc+0xb1/0xe0 [ 2320.840493][T17848] ? slab_post_alloc_hook+0x53/0x2c0 [ 2320.845604][T17848] ? kernel_clone+0x21e/0x9e0 [ 2320.850117][T17848] ? do_syscall_64+0x3d/0xb0 [ 2320.854539][T17848] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2320.860456][T17848] ? pfn_valid+0x1e0/0x1e0 [ 2320.864695][T17848] ? rwsem_write_trylock+0x15b/0x290 [ 2320.869818][T17848] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x900, 0x0, 0x0}, 0x58) 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf00, 0x0, 0x0}, 0x58) 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1100, 0x0, 0x0}, 0x58) [ 2320.876271][T17848] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 2320.881829][T17848] ? __rb_insert_augmented+0x5de/0x610 [ 2320.887119][T17848] copy_mm+0xc7e/0x13e0 [ 2320.891116][T17848] ? copy_signal+0x610/0x610 [ 2320.895536][T17848] ? __init_rwsem+0xd6/0x1c0 [ 2320.899965][T17848] ? copy_signal+0x4e3/0x610 [ 2320.904389][T17848] copy_process+0x1149/0x3290 [ 2320.908911][T17848] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2320.913853][T17848] ? copy_clone_args_from_user+0x744/0x830 [ 2320.919496][T17848] kernel_clone+0x21e/0x9e0 [ 2320.923833][T17848] ? __delayed_free_task+0x20/0x20 [ 2320.928782][T17848] ? create_io_thread+0x1e0/0x1e0 [ 2320.933729][T17848] __x64_sys_clone3+0x376/0x3a0 [ 2320.938415][T17848] ? __ia32_sys_clone+0x290/0x290 [ 2320.943275][T17848] ? fput+0x1a/0x20 [ 2320.946917][T17848] ? debug_smp_processor_id+0x17/0x20 [ 2320.952127][T17848] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2320.958029][T17848] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2320.963497][T17848] do_syscall_64+0x3d/0xb0 [ 2320.967747][T17848] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2320.973477][T17848] RIP: 0033:0x7fe6f3145da9 [ 2320.977732][T17848] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2320.997173][T17848] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2321.005415][T17848] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2321.013240][T17848] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1f00, 0x0, 0x0}, 0x58) 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2000, 0x0, 0x0}, 0x58) 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4000, 0x0, 0x0}, 0x58) 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x7000, 0x0, 0x0}, 0x58) 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10fff, 0x0, 0x0}, 0x58) 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20010, 0x0, 0x0}, 0x58) 08:48:30 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = open(0x0, 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f000000df80)) fstat(r0, &(0x7f000000dfc0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() statx(r0, &(0x7f000000e180)='./file0\x00', 0x1000, 0x80, &(0x7f000000e1c0)) r2 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="ca42ad87b11bb3b2507e03129a435e7c99104f0cd507000000046f9445631055f28a4e6777e97047e5807db4996b10208d04454ea654888bf754956945961677b348d33478b3d8f70eac439f502bea81070bba59ccec17e7d182ea9fdfde2b94e826d24492db7f8983925947dc2b357943622c9feaa43512f4afed56e4010e2543166dfc76b6668c1ccb960ebeb21ae5eaaa01a65f105a20fdcdb5c20c2245eecbd4e49cbb07060000003674c0a6397ca594873755027deb77b094a29545f674e5a44c597f0473f49684719c9445839a59a09e1c1361d72b8a1dd163eecd03bd218ba880482b173bef3f91cbd40796bdeb13d63c1eadecb3dfe83f1d88b8b7fb053eed7e742bfff269a5c16070aa8b51d4538811d4de1d198d2fdcfa404fc9e6df202578e962544794e77c2425f73fcd3d0cd1d4ff004ec0754e946adff5e93ffc586126de12ee3a2b1e347cbf598c20648bf702511dd953cfd9eef7b0cf148a63cca032a3f5c2247efc16857ad98255693a11149dde8fed62623d07d357b0c1251f9c4f7492c9e5000000001c2485258e4a9f46a454427a1cdb84782846052b20554446e9b9b6d45be858bf97e390544b8e54d32db951f89f86bd455af5174c9edcd7bd4e5448cc3c2b7a5b07c20b369ba5effd8334a4b597daa76b65dece5249d08f5b66dd8c3cd9aab9fcffff5577502dc33d51ed2a25c3640cd073b7d51d12266c6079622281358c96043413eeb5938648ac8b3f8b4d38ef5331499b828a6579d5048ed27ea04e2e070f2ba16433bf79a7af308fa86e765081df9163e034dcb6505ea7890693156414a8b0d5fceb38ffe232dafc93ce08e1fbb2000000000025fb6d6cd068b59d26d3835002ec4c6700bba9e73ffe3ee7aad4834800000000000000000000d7ce5719e9a80531cc154ae62236435abb4981d2183d7b8fc26fac5484b1393d7e8d4dfb9bdcdf37c0d74e6e787888f71a28396f49a4b95f46d12ae1010c0e3185929e39dc3cee5ba6f6434199f686be319d4794efc589166434ddeda1feedd8539030f54fd0da371eec53b41fae2fd04bcac127c759", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$eJzs3d9rXFkdAPDvvclk0zZrZlVkXXB3cVfSRTuTbNxtEGkriD4V1PoeYzIJIZNMyExqE4qm+AcIIir45JMvgn+AIP0TRCjou6gooq0+aq/MzI02yUwyNZNMd/L5wMk95/76nnPJnLl37uHeAC6sNyPiVkSMRMQ7ETGZz0/zNN8s7LXXe/L4/mIzJZFld/6WRJLP299XszwaEVfam8R4RHztyxHfTI7Gre/sri1Uq5WtvFxurG+W6zu711bXF1YqK5WN2dmZ9+euz703N53lTtXOYkTc+OKffvi9n33pxq8+863fz//l6reb1fr8x9r1jojFUwXoor3vQutY7Gseo62zCDYAI3l7CiODrgkAAL1onuN/OCI+2Tr/n4yR1tkcAAAAMEyymxPxryQiAwAAAIZWGhETkaSlfCzARKRpqdQew/vRuJxWa/XGp5dr2xtLzWURxSiky6vVynQ+VrgYhaRZnsnH2O6X3z1Uno2IVyLiB5OXWuXSYq26NOgfPwAAAOCCuPLGwev/f06mrTwAAAAwZIpdCwAAAMCwcMkPAAAAw8/1PwAAAAy1r9y+3UzZ/nu8l+7ubK/V7l5bqtTXSuvbi6XF2tZmaaVWW2k9s2/9pP1Va7XNz8bG9r1yo1JvlOs7u/Prte2NxvzqgVdgAwAAAOfolTce/i6JiL3PXWqlyJ8DCHDAHwddAaCfRgZdAWBgRgddAWBgCieuoYeAYZecsLzr4J1f978uAADA2Zj6+NH7/2P5spN/GwA+yIz1AYCLx909uLgKRgDChfeh9uSlbstPf/8/y567UgAAQF9NtFKSlvJ7gRORpqVSxMut1wIUkuXVamU6vz747WThpWZ5prVlcuKYYQAAAAAAAAAAAAAAAAAAAAAAAACgLcuSyAAAAIChFpH+OWk9zT9iavLtiYO/Dhx669dP7vzo3kKjsTUTMZb8fbI5aywiGj/O57+beSUAAAAAvADa1+n5dGbQtQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABg2Dx5fH9xP51n3L9+ISKKneKPxnhrOh6FiLj8jyRGn9kuiYiRPsTfexARr3aKn8TTLMuKeS06xb90xvGLrUPTOX4aEVf6EB8usofN/udWp89fGm+2pp0/f6N5Oq3u/V/63/5vpEv/83KPMV579Ity1/gPIl4b7dz/7MdP2vGTOBT/rR7jf+Pru7vdlmU/jZjq+P2THIhVbqxvlus7u9dW1xdWKiuVjdnZmffnrs+9NzddXl6tVvK/HWN8/xO/fHpc+y93iV882P4jx//tHtv/70f3Hn+knS10in/1rc7fv692iZ/m332fyvPN5VP7+b12/lmv//w3rx/X/qUu7R8/of1Xe2z/O1/97h96XBUAOAf1nd21hWq1snVMZryHdc45c/PFqIZMvzLZd9r/j6fbzyk3P5LJTrP5aPShGmPP8Tntb2aQvRIAAHAW/nfSP+iaAAAAAAAAAAAAAAAAAAAAwMX1fz4hbDwiel75cMy9wTQVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBY/wkAAP//E77WGg==") r3 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r3}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200)) 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20200, 0x0, 0x0}, 0x58) 08:48:30 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 34) [ 2321.021040][T17848] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2321.028847][T17848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2321.036654][T17848] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2321.044471][T17848] 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x80000, 0x0, 0x0}, 0x58) [ 2321.080979][T17884] FAULT_INJECTION: forcing a failure. [ 2321.080979][T17884] name failslab, interval 1, probability 0, space 0, times 0 [ 2321.094450][T17888] loop2: detected capacity change from 0 to 128 [ 2321.096310][T17884] CPU: 0 PID: 17884 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2321.110668][T17884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2321.120565][T17884] Call Trace: [ 2321.123686][T17884] [ 2321.126464][T17884] dump_stack_lvl+0x151/0x1b7 [ 2321.130976][T17884] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2321.136440][T17884] dump_stack+0x15/0x17 [ 2321.140433][T17884] should_fail+0x3c6/0x510 [ 2321.144683][T17884] __should_failslab+0xa4/0xe0 [ 2321.149282][T17884] ? vm_area_dup+0x26/0x230 [ 2321.153623][T17884] should_failslab+0x9/0x20 [ 2321.157962][T17884] slab_pre_alloc_hook+0x37/0xd0 [ 2321.162737][T17884] ? vm_area_dup+0x26/0x230 [ 2321.167076][T17884] kmem_cache_alloc+0x44/0x200 [ 2321.171677][T17884] vm_area_dup+0x26/0x230 [ 2321.175842][T17884] copy_mm+0x9a1/0x13e0 [ 2321.179838][T17884] ? copy_signal+0x610/0x610 [ 2321.184259][T17884] ? __init_rwsem+0xd6/0x1c0 [ 2321.188687][T17884] ? copy_signal+0x4e3/0x610 [ 2321.193113][T17884] copy_process+0x1149/0x3290 [ 2321.197630][T17884] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2321.202575][T17884] ? copy_clone_args_from_user+0x744/0x830 [ 2321.208226][T17884] kernel_clone+0x21e/0x9e0 [ 2321.212558][T17884] ? __delayed_free_task+0x20/0x20 [ 2321.217505][T17884] ? create_io_thread+0x1e0/0x1e0 [ 2321.222365][T17884] __x64_sys_clone3+0x376/0x3a0 [ 2321.227136][T17884] ? __ia32_sys_clone+0x290/0x290 [ 2321.231997][T17884] ? bpf_trace_run2+0xf1/0x210 [ 2321.236598][T17884] ? fput+0x1a/0x20 [ 2321.240245][T17884] ? __bpf_trace_sys_enter+0x62/0x70 [ 2321.245366][T17884] ? syscall_enter_from_user_mode+0x14d/0x1b0 [ 2321.251265][T17884] do_syscall_64+0x3d/0xb0 [ 2321.255519][T17884] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2321.261246][T17884] RIP: 0033:0x7fe6f3145da9 [ 2321.265501][T17884] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2321.284940][T17884] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2321.293185][T17884] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2321.300996][T17884] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2321.308807][T17884] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2321.316620][T17884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2321.324442][T17884] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x101000, 0x0, 0x0}, 0x58) [ 2321.332252][T17884] 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x200000, 0x0, 0x0}, 0x58) 08:48:30 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 35) 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x700000, 0x0, 0x0}, 0x58) [ 2321.353701][T17895] loop0: detected capacity change from 0 to 128 [ 2321.392406][T17902] FAULT_INJECTION: forcing a failure. 08:48:30 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xa002a0, 0x0, 0x0}, 0x58) [ 2321.392406][T17902] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2321.410102][T17902] CPU: 1 PID: 17902 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2321.420271][T17902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2321.430168][T17902] Call Trace: [ 2321.433289][T17902] [ 2321.436071][T17902] dump_stack_lvl+0x151/0x1b7 [ 2321.440581][T17902] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2321.446050][T17902] dump_stack+0x15/0x17 [ 2321.450041][T17902] should_fail+0x3c6/0x510 [ 2321.454300][T17902] should_fail_alloc_page+0x5a/0x80 [ 2321.459325][T17902] prepare_alloc_pages+0x15c/0x700 [ 2321.464275][T17902] ? __alloc_pages_bulk+0xe40/0xe40 [ 2321.469302][T17902] __alloc_pages+0x18c/0x8f0 [ 2321.473726][T17902] ? prep_new_page+0x110/0x110 [ 2321.478328][T17902] ? __alloc_pages+0x27e/0x8f0 [ 2321.482927][T17902] ? __kasan_check_write+0x14/0x20 [ 2321.487880][T17902] ? _raw_spin_lock+0xa4/0x1b0 [ 2321.492486][T17902] __pmd_alloc+0xb1/0x550 [ 2321.496646][T17902] ? __pud_alloc+0x260/0x260 [ 2321.501068][T17902] ? __pud_alloc+0x213/0x260 [ 2321.505495][T17902] ? do_handle_mm_fault+0x2330/0x2330 [ 2321.510701][T17902] ? __stack_depot_save+0x34/0x470 [ 2321.515646][T17902] ? anon_vma_clone+0x9a/0x500 [ 2321.520249][T17902] copy_page_range+0x2b3d/0x2f90 [ 2321.525019][T17902] ? __kasan_slab_alloc+0xb1/0xe0 [ 2321.529881][T17902] ? slab_post_alloc_hook+0x53/0x2c0 [ 2321.535004][T17902] ? copy_mm+0xa3a/0x13e0 [ 2321.539167][T17902] ? copy_process+0x1149/0x3290 [ 2321.543853][T17902] ? kernel_clone+0x21e/0x9e0 [ 2321.548369][T17902] ? do_syscall_64+0x3d/0xb0 [ 2321.552793][T17902] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2321.558701][T17902] ? pfn_valid+0x1e0/0x1e0 [ 2321.562950][T17902] ? rwsem_write_trylock+0x15b/0x290 [ 2321.568158][T17902] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 2321.574411][T17902] copy_mm+0xc7e/0x13e0 [ 2321.578402][T17902] ? copy_signal+0x610/0x610 [ 2321.582825][T17902] ? __init_rwsem+0xd6/0x1c0 [ 2321.587251][T17902] ? copy_signal+0x4e3/0x610 [ 2321.591676][T17902] copy_process+0x1149/0x3290 [ 2321.596192][T17902] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2321.601139][T17902] ? copy_clone_args_from_user+0x744/0x830 [ 2321.606780][T17902] kernel_clone+0x21e/0x9e0 [ 2321.611119][T17902] ? __delayed_free_task+0x20/0x20 [ 2321.616066][T17902] ? create_io_thread+0x1e0/0x1e0 [ 2321.620929][T17902] __x64_sys_clone3+0x376/0x3a0 [ 2321.625628][T17902] ? __ia32_sys_clone+0x290/0x290 [ 2321.630478][T17902] ? bpf_trace_run2+0xf1/0x210 [ 2321.635073][T17902] ? fput+0x1a/0x20 [ 2321.638721][T17902] ? __bpf_trace_sys_enter+0x62/0x70 [ 2321.643944][T17902] ? syscall_enter_from_user_mode+0x14d/0x1b0 [ 2321.649830][T17902] do_syscall_64+0x3d/0xb0 [ 2321.654085][T17902] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2321.659814][T17902] RIP: 0033:0x7fe6f3145da9 [ 2321.664114][T17902] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2321.683513][T17902] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2321.691761][T17902] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 08:48:31 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ff1f, 0x0, 0x0}, 0x58) 08:48:31 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1000000, 0x0, 0x0}, 0x58) 08:48:31 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2000000, 0x0, 0x0}, 0x58) 08:48:31 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 36) 08:48:31 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) (async) r3 = socket$inet6(0xa, 0x2, 0x0) (async) r4 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) (async, rerun: 64) getsockname$packet(r4, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) (rerun: 64) sendmsg$nl_route(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000a40)=@newlink={0x3c, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r5, 0x4048b}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r5}]}}}]}, 0x3c}}, 0x0) (async) sendmmsg$inet(r3, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @remote}, 0x20000050, 0x0, 0x0, &(0x7f00000004c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @empty}}}], 0x20}}], 0x1, 0x0) (async) r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000780)={&(0x7f0000000580)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x7, [@struct={0xf, 0x1, 0x0, 0x4, 0x1, 0xfffffffa, [{0x9, 0x5, 0xfffffffa}]}, @const={0x7, 0x0, 0x0, 0xa, 0x5}]}, {0x0, [0x5f, 0x61, 0x61, 0x30, 0x30]}}, &(0x7f0000000700)=""/91, 0x43, 0x5b, 0x0, 0x2}, 0x20) (async) r7 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x0, 0x0) readlinkat(r7, &(0x7f0000000040)='./file0\x00', &(0x7f0000000180)=""/233, 0xe9) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000840)={0xffffffffffffffff, 0x1, 0x8, 0xe3}) (async, rerun: 64) r9 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000008c0)=@o_path={&(0x7f0000000880)='./file0\x00', 0x0, 0x10, r0}, 0x18) (rerun: 64) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000940)={0x11, 0x3, &(0x7f0000000400)=@raw=[@alu={0x7, 0x1, 0x1, 0x4, 0x8, 0x1, 0x10}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffc}, @alu={0x4, 0x1, 0x6, 0x0, 0x7, 0xfffffffffffffff8, 0xfffffffffffffff0}], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x48, '\x00', r5, 0x0, r6, 0x8, &(0x7f00000007c0)={0x9, 0x3}, 0x8, 0x10, &(0x7f0000000800)={0x4, 0x0, 0x1, 0x5935}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000900)=[r0, r1, r7, r1, r1, r8, r9, r1], 0x0, 0x10, 0x65}, 0x90) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) (async) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r10, 0x0, r13, 0x0, 0x800008ec0, 0x0) (async) write(r13, &(0x7f0000000280)='f', 0x1) (async) dup3(r11, r12, 0x0) r14 = dup2(r12, r13) write$binfmt_elf64(r14, &(0x7f0000000300)=ANY=[], 0x78) r15 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000280), 0x4) (async, rerun: 32) r16 = syz_btf_id_by_name$bpf_lsm(&(0x7f0000000300)='bpf_lsm_cred_alloc_blank\x00') (rerun: 32) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x10, 0x8, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0xfffffffb}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r14}}]}, &(0x7f0000000080)='syzkaller\x00', 0x9, 0x83, &(0x7f00000000c0)=""/131, 0x40f00, 0x0, '\x00', 0x0, 0x3, r15, 0x8, 0x0, 0x0, 0x10, &(0x7f00000002c0)={0x5, 0x8, 0x0, 0x7fffffff}, 0x10, r16, 0xffffffffffffffff, 0x0, &(0x7f00000003c0)=[r0], 0x0, 0x10, 0x5}, 0x90) (async) setuid(0x0) [ 2321.699561][T17902] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2321.707385][T17902] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2321.715186][T17902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2321.722997][T17902] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2321.731076][T17902] 08:48:31 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x7000000, 0x0, 0x0}, 0x58) [ 2321.791700][T17912] FAULT_INJECTION: forcing a failure. [ 2321.791700][T17912] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2321.809377][T17912] CPU: 0 PID: 17912 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2321.819548][T17912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2321.829446][T17912] Call Trace: [ 2321.832774][T17912] [ 2321.835561][T17912] dump_stack_lvl+0x151/0x1b7 [ 2321.840063][T17912] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2321.845527][T17912] dump_stack+0x15/0x17 [ 2321.849519][T17912] should_fail+0x3c6/0x510 [ 2321.853771][T17912] should_fail_alloc_page+0x5a/0x80 [ 2321.858805][T17912] prepare_alloc_pages+0x15c/0x700 [ 2321.863753][T17912] ? __alloc_pages_bulk+0xe40/0xe40 [ 2321.868787][T17912] __alloc_pages+0x18c/0x8f0 [ 2321.873214][T17912] ? prep_new_page+0x110/0x110 [ 2321.877812][T17912] ? __alloc_pages+0x27e/0x8f0 [ 2321.882412][T17912] ? __kasan_check_write+0x14/0x20 [ 2321.887359][T17912] ? _raw_spin_lock+0xa4/0x1b0 [ 2321.891983][T17912] pte_alloc_one+0x73/0x1b0 [ 2321.896301][T17912] ? pfn_modify_allowed+0x2f0/0x2f0 [ 2321.901336][T17912] ? __pmd_alloc+0x48d/0x550 [ 2321.905759][T17912] __pte_alloc+0x86/0x350 [ 2321.909926][T17912] ? __pud_alloc+0x260/0x260 [ 2321.914359][T17912] ? __pud_alloc+0x213/0x260 [ 2321.918778][T17912] ? free_pgtables+0x280/0x280 [ 2321.923379][T17912] ? do_handle_mm_fault+0x2330/0x2330 [ 2321.928586][T17912] ? __stack_depot_save+0x34/0x470 [ 2321.933532][T17912] ? anon_vma_clone+0x9a/0x500 [ 2321.938133][T17912] copy_page_range+0x28a8/0x2f90 [ 2321.942906][T17912] ? __kasan_slab_alloc+0xb1/0xe0 [ 2321.947766][T17912] ? slab_post_alloc_hook+0x53/0x2c0 [ 2321.952888][T17912] ? kernel_clone+0x21e/0x9e0 [ 2321.957400][T17912] ? do_syscall_64+0x3d/0xb0 [ 2321.961830][T17912] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2321.967735][T17912] ? pfn_valid+0x1e0/0x1e0 [ 2321.971983][T17912] ? rwsem_write_trylock+0x15b/0x290 [ 2321.977101][T17912] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 2321.983358][T17912] copy_mm+0xc7e/0x13e0 [ 2321.987349][T17912] ? copy_signal+0x610/0x610 [ 2321.991774][T17912] ? __init_rwsem+0xd6/0x1c0 [ 2321.996197][T17912] ? copy_signal+0x4e3/0x610 [ 2322.000623][T17912] copy_process+0x1149/0x3290 [ 2322.005141][T17912] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2322.010084][T17912] ? copy_clone_args_from_user+0x744/0x830 [ 2322.015726][T17912] kernel_clone+0x21e/0x9e0 [ 2322.020065][T17912] ? __delayed_free_task+0x20/0x20 [ 2322.025014][T17912] ? create_io_thread+0x1e0/0x1e0 [ 2322.029875][T17912] __x64_sys_clone3+0x376/0x3a0 [ 2322.034560][T17912] ? __ia32_sys_clone+0x290/0x290 [ 2322.039463][T17912] ? fput+0x1a/0x20 [ 2322.043155][T17912] ? debug_smp_processor_id+0x17/0x20 [ 2322.048359][T17912] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2322.054261][T17912] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2322.059730][T17912] do_syscall_64+0x3d/0xb0 [ 2322.063985][T17912] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2322.069723][T17912] RIP: 0033:0x7fe6f3145da9 [ 2322.073968][T17912] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2322.093927][T17912] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2322.102259][T17912] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2322.110068][T17912] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2322.117880][T17912] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2322.125691][T17912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2322.133503][T17912] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 08:48:31 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r1, &(0x7f0000000000)={0x30002000}) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'batadv0\x00', 0x0}) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000780)=ANY=[@ANYBLOB="1800ffff000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000808500000004000000956fdad71b6e2e64127def076d7fbe95178364e3031952b16a9b3ff363aea5c4e010931bda8352f08d8560621f7e78ef5bc6e9bc97f617c43b0190f4a416737ef8b87a9973790376d66b8a98ac0a591ca11938148507a83338523b7d586a3798a3b45ad03d82586ff89953280523dc2cff3381"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000002c40)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f0000002bc0), &(0x7f0000002c00)='%-5lx \x00'}, 0x20) r5 = openat$incfs(r1, &(0x7f0000002c80)='.log\x00', 0x2080, 0x0) r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000002cc0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x800, '\x00', r2, 0xffffffffffffffff, 0x4, 0x0, 0x5}, 0x48) r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000002d40)={0x1b, 0x0, 0x0, 0x7, 0x0, 0xffffffffffffffff, 0x1, '\x00', r2, 0xffffffffffffffff, 0x1, 0x1, 0x3}, 0x48) r8 = syz_open_dev$vcsu(&(0x7f0000002dc0), 0xbfce, 0x4800) bpf$PROG_LOAD(0x5, &(0x7f0000002ec0)={0x14, 0x10, &(0x7f0000001680)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x9}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@call={0x85, 0x0, 0x0, 0x8a}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001700)='syzkaller\x00', 0x6, 0x41, &(0x7f0000002780)=""/65, 0x41000, 0x20, '\x00', r2, 0x1, 0xffffffffffffffff, 0x8, &(0x7f0000002840)={0x7, 0x2}, 0x8, 0x10, &(0x7f0000002880)={0x3, 0x8, 0xfffffffc, 0x4}, 0x10, 0x0, r3, 0x6, &(0x7f0000002e00)=[0xffffffffffffffff, r4, r5, 0xffffffffffffffff, r6, r7, r8], &(0x7f0000002e40)=[{0x4, 0x4, 0x5, 0x6}, {0x0, 0x5, 0x0, 0xb}, {0x5, 0x4, 0x0, 0x2}, {0x1, 0x1, 0x0, 0x3}, {0x0, 0x2, 0x3, 0xb}, {0x1, 0x1, 0xa, 0xb}], 0x10, 0x2}, 0x90) r9 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$FS_IOC_FSSETXATTR(r9, 0x401c5820, &(0x7f0000000200)={0x20}) fallocate(r9, 0x8, 0x0, 0x8000) r10 = syz_btf_id_by_name$bpf_lsm(&(0x7f0000000300)='bpf_lsm_file_fcntl\x00') r11 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000003c0), 0x4) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{0x1, 0xffffffffffffffff}, &(0x7f0000000400), &(0x7f0000000440)}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000000)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x6}, @map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x80}], &(0x7f0000000080)='GPL\x00', 0x8000, 0x81, &(0x7f00000000c0)=""/129, 0x40f00, 0x8, '\x00', r2, 0x8, r9, 0x8, &(0x7f0000000280)={0x9, 0x1}, 0x8, 0x10, &(0x7f00000002c0)={0x3, 0x1, 0x3, 0x1ff}, 0x10, r10, r11, 0x6, &(0x7f0000000580)=[r12], &(0x7f0000000640)=[{0x2, 0x3, 0xf, 0x2}, {0x4, 0x3, 0x0, 0x6}, {0x0, 0x1, 0x4}, {0x2, 0x2, 0xf}, {0x0, 0x4, 0x6, 0x2}, {0x5, 0x4, 0x0, 0x7}], 0x10, 0x6}, 0x90) r13 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r13}, 0x10) setuid(0x0) 08:48:31 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 37) [ 2322.141328][T17912] [ 2322.181102][T17925] FAULT_INJECTION: forcing a failure. [ 2322.181102][T17925] name failslab, interval 1, probability 0, space 0, times 0 [ 2322.193680][T17925] CPU: 0 PID: 17925 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2322.203826][T17925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2322.213726][T17925] Call Trace: [ 2322.216842][T17925] [ 2322.219620][T17925] dump_stack_lvl+0x151/0x1b7 [ 2322.224136][T17925] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2322.229604][T17925] dump_stack+0x15/0x17 [ 2322.233596][T17925] should_fail+0x3c6/0x510 [ 2322.237849][T17925] __should_failslab+0xa4/0xe0 [ 2322.242447][T17925] ? vm_area_dup+0x26/0x230 [ 2322.246789][T17925] should_failslab+0x9/0x20 [ 2322.251131][T17925] slab_pre_alloc_hook+0x37/0xd0 [ 2322.255903][T17925] ? vm_area_dup+0x26/0x230 [ 2322.260240][T17925] kmem_cache_alloc+0x44/0x200 [ 2322.264841][T17925] vm_area_dup+0x26/0x230 [ 2322.269007][T17925] copy_mm+0x9a1/0x13e0 [ 2322.273003][T17925] ? copy_signal+0x610/0x610 [ 2322.277425][T17925] ? __init_rwsem+0xd6/0x1c0 [ 2322.281852][T17925] ? copy_signal+0x4e3/0x610 [ 2322.286279][T17925] copy_process+0x1149/0x3290 [ 2322.290794][T17925] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2322.295747][T17925] ? copy_clone_args_from_user+0x744/0x830 [ 2322.301393][T17925] kernel_clone+0x21e/0x9e0 [ 2322.305718][T17925] ? __delayed_free_task+0x20/0x20 [ 2322.310671][T17925] ? create_io_thread+0x1e0/0x1e0 [ 2322.315530][T17925] __x64_sys_clone3+0x376/0x3a0 [ 2322.320216][T17925] ? __ia32_sys_clone+0x290/0x290 [ 2322.325069][T17925] ? fput+0x1a/0x20 [ 2322.328724][T17925] ? debug_smp_processor_id+0x17/0x20 [ 2322.334008][T17925] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2322.339912][T17925] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2322.345468][T17925] do_syscall_64+0x3d/0xb0 [ 2322.349727][T17925] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2322.355659][T17925] RIP: 0033:0x7fe6f3145da9 [ 2322.359874][T17925] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2322.379316][T17925] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2322.387563][T17925] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2322.395371][T17925] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2322.403273][T17925] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2322.411083][T17925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2322.418979][T17925] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2322.426798][T17925] 08:48:31 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$eJzs3F9IU38Yx/HHPz/1Z+hGRFBQPeVNRRzcrgMdoRENjHJhCcExz2rstI2dsZqEWxB400U3/buuIEIQoosgELvoKpTwrovuvPMiu0oiOjGnudnUMnWS79fF9rDn+zl8z58dtu9g08fvXouGHSNspqS6oUqq2yUns1XilWpZkJMj10fe7zt34eLpQDDYcVa1M9Dt86tq84HR3pvDh8ZSO86/bH5dL+PeS9Mz/qnx3eN7pr93X404GnE0Fk+pqX3xeMrssy3tv+9EDdUztmU6lkZijpUs6YfteCKRUTPW39SYSFqOo2Yso1Ero6m4ppIZNa+YkZgahqFNjYKVDacfBZbvhp7Puq7MpN65bn1OXNfNv9iwidNDhc2df9ctOv93Kj0lbKKim3qDiD2UDqVDhedCPxCWiNhiSat45JvkrxH38Yg7d6nkH2/4R4KTR9++UVWvDNrZ+Xw2HaopzfvEI95CpqBQd54Kdvi0oDT/nzQW5/3ikV3l8/6y+To53FKUN8Qjk5clLrZMjB78MtU19GAhP+hTPdEVXJL/X/oXD9OzzxU6PwAAAAAAAAAArIWhP5VdvzfyA24PqGrTkn4hX+73gaXr861l1+drZW9tZfcdAAAAAIDtwskMRE3btpJ/WeS/yq/Hdv694smt3x+8v3PlMS1tNRPtH3KJrbBff1B87dkS0ygtZH71abXBNev8TlksPq3Ldqrm57f8mJO9H1+sup26X47PcsY2/q4EAAAAYCMsfuhvk2z4VTrbc+xepecEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB2s4a/HJt4WK6l+WLn03KtSu8jAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADASn4EAAD//xAR0Ao=") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = open(0x0, 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f000000df80)) fstat(r0, &(0x7f000000dfc0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() statx(r0, &(0x7f000000e180)='./file0\x00', 0x1000, 0x80, &(0x7f000000e1c0)) r2 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="ca42ad87b11bb3b2507e03129a435e7c99104f0cd507000000046f9445631055f28a4e6777e97047e5807db4996b10208d04454ea654888bf754956945961677b348d33478b3d8f70eac439f502bea81070bba59ccec17e7d182ea9fdfde2b94e826d24492db7f8983925947dc2b357943622c9feaa43512f4afed56e4010e2543166dfc76b6668c1ccb960ebeb21ae5eaaa01a65f105a20fdcdb5c20c2245eecbd4e49cbb07060000003674c0a6397ca594873755027deb77b094a29545f674e5a44c597f0473f49684719c9445839a59a09e1c1361d72b8a1dd163eecd03bd218ba880482b173bef3f91cbd40796bdeb13d63c1eadecb3dfe83f1d88b8b7fb053eed7e742bfff269a5c16070aa8b51d4538811d4de1d198d2fdcfa404fc9e6df202578e962544794e77c2425f73fcd3d0cd1d4ff004ec0754e946adff5e93ffc586126de12ee3a2b1e347cbf598c20648bf702511dd953cfd9eef7b0cf148a63cca032a3f5c2247efc16857ad98255693a11149dde8fed62623d07d357b0c1251f9c4f7492c9e5000000001c2485258e4a9f46a454427a1cdb84782846052b20554446e9b9b6d45be858bf97e390544b8e54d32db951f89f86bd455af5174c9edcd7bd4e5448cc3c2b7a5b07c20b369ba5effd8334a4b597daa76b65dece5249d08f5b66dd8c3cd9aab9fcffff5577502dc33d51ed2a25c3640cd073b7d51d12266c6079622281358c96043413eeb5938648ac8b3f8b4d38ef5331499b828a6579d5048ed27ea04e2e070f2ba16433bf79a7af308fa86e765081df9163e034dcb6505ea7890693156414a8b0d5fceb38ffe232dafc93ce08e1fbb2000000000025fb6d6cd068b59d26d3835002ec4c6700bba9e73ffe3ee7aad4834800000000000000000000d7ce5719e9a80531cc154ae62236435abb4981d2183d7b8fc26fac5484b1393d7e8d4dfb9bdcdf37c0d74e6e787888f71a28396f49a4b95f46d12ae1010c0e3185929e39dc3cee5ba6f6434199f686be319d4794efc589166434ddeda1feedd8539030f54fd0da371eec53b41fae2fd04bcac127c759", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r3 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r3}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200)) 08:48:31 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000, 0x0, 0x0}, 0x58) 08:48:31 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) (async) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r1, &(0x7f0000000000)={0x30002000}) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'batadv0\x00', 0x0}) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000780)=ANY=[@ANYBLOB="1800ffff000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000808500000004000000956fdad71b6e2e64127def076d7fbe95178364e3031952b16a9b3ff363aea5c4e010931bda8352f08d8560621f7e78ef5bc6e9bc97f617c43b0190f4a416737ef8b87a9973790376d66b8a98ac0a591ca11938148507a83338523b7d586a3798a3b45ad03d82586ff89953280523dc2cff3381"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10) (async) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000002c40)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f0000002bc0), &(0x7f0000002c00)='%-5lx \x00'}, 0x20) (async) r5 = openat$incfs(r1, &(0x7f0000002c80)='.log\x00', 0x2080, 0x0) r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000002cc0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x800, '\x00', r2, 0xffffffffffffffff, 0x4, 0x0, 0x5}, 0x48) (async) r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000002d40)={0x1b, 0x0, 0x0, 0x7, 0x0, 0xffffffffffffffff, 0x1, '\x00', r2, 0xffffffffffffffff, 0x1, 0x1, 0x3}, 0x48) (async) r8 = syz_open_dev$vcsu(&(0x7f0000002dc0), 0xbfce, 0x4800) bpf$PROG_LOAD(0x5, &(0x7f0000002ec0)={0x14, 0x10, &(0x7f0000001680)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x9}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@call={0x85, 0x0, 0x0, 0x8a}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001700)='syzkaller\x00', 0x6, 0x41, &(0x7f0000002780)=""/65, 0x41000, 0x20, '\x00', r2, 0x1, 0xffffffffffffffff, 0x8, &(0x7f0000002840)={0x7, 0x2}, 0x8, 0x10, &(0x7f0000002880)={0x3, 0x8, 0xfffffffc, 0x4}, 0x10, 0x0, r3, 0x6, &(0x7f0000002e00)=[0xffffffffffffffff, r4, r5, 0xffffffffffffffff, r6, r7, r8], &(0x7f0000002e40)=[{0x4, 0x4, 0x5, 0x6}, {0x0, 0x5, 0x0, 0xb}, {0x5, 0x4, 0x0, 0x2}, {0x1, 0x1, 0x0, 0x3}, {0x0, 0x2, 0x3, 0xb}, {0x1, 0x1, 0xa, 0xb}], 0x10, 0x2}, 0x90) (async) r9 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$FS_IOC_FSSETXATTR(r9, 0x401c5820, &(0x7f0000000200)={0x20}) (async) fallocate(r9, 0x8, 0x0, 0x8000) (async, rerun: 64) r10 = syz_btf_id_by_name$bpf_lsm(&(0x7f0000000300)='bpf_lsm_file_fcntl\x00') (rerun: 64) r11 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000003c0), 0x4) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{0x1, 0xffffffffffffffff}, &(0x7f0000000400), &(0x7f0000000440)}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000000)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x6}, @map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x80}], &(0x7f0000000080)='GPL\x00', 0x8000, 0x81, &(0x7f00000000c0)=""/129, 0x40f00, 0x8, '\x00', r2, 0x8, r9, 0x8, &(0x7f0000000280)={0x9, 0x1}, 0x8, 0x10, &(0x7f00000002c0)={0x3, 0x1, 0x3, 0x1ff}, 0x10, r10, r11, 0x6, &(0x7f0000000580)=[r12], &(0x7f0000000640)=[{0x2, 0x3, 0xf, 0x2}, {0x4, 0x3, 0x0, 0x6}, {0x0, 0x1, 0x4}, {0x2, 0x2, 0xf}, {0x0, 0x4, 0x6, 0x2}, {0x5, 0x4, 0x0, 0x7}], 0x10, 0x6}, 0x90) r13 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r13}, 0x10) (async) setuid(0x0) 08:48:31 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 38) 08:48:31 executing program 2: syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() r0 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r0, @ANYRESHEX=r0, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r1 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r1}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200)) 08:48:31 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x9000000, 0x0, 0x0}, 0x58) [ 2322.491098][T17933] loop0: detected capacity change from 0 to 128 [ 2322.495749][T17936] FAULT_INJECTION: forcing a failure. [ 2322.495749][T17936] name failslab, interval 1, probability 0, space 0, times 0 [ 2322.514433][T17936] CPU: 0 PID: 17936 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2322.524601][T17936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2322.534497][T17936] Call Trace: [ 2322.537620][T17936] [ 2322.540405][T17936] dump_stack_lvl+0x151/0x1b7 [ 2322.544916][T17936] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2322.550378][T17936] dump_stack+0x15/0x17 [ 2322.554373][T17936] should_fail+0x3c6/0x510 [ 2322.558624][T17936] __should_failslab+0xa4/0xe0 [ 2322.563222][T17936] ? anon_vma_fork+0x1df/0x4e0 [ 2322.567825][T17936] should_failslab+0x9/0x20 [ 2322.572178][T17936] slab_pre_alloc_hook+0x37/0xd0 [ 2322.576937][T17936] ? anon_vma_fork+0x1df/0x4e0 [ 2322.581536][T17936] kmem_cache_alloc+0x44/0x200 [ 2322.586138][T17936] anon_vma_fork+0x1df/0x4e0 [ 2322.590565][T17936] copy_mm+0xa3a/0x13e0 [ 2322.594558][T17936] ? copy_signal+0x610/0x610 [ 2322.598981][T17936] ? __init_rwsem+0xd6/0x1c0 [ 2322.603410][T17936] ? copy_signal+0x4e3/0x610 [ 2322.607834][T17936] copy_process+0x1149/0x3290 [ 2322.612354][T17936] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2322.617299][T17936] ? copy_clone_args_from_user+0x744/0x830 [ 2322.622937][T17936] kernel_clone+0x21e/0x9e0 [ 2322.627378][T17936] ? __delayed_free_task+0x20/0x20 [ 2322.632324][T17936] ? create_io_thread+0x1e0/0x1e0 [ 2322.637185][T17936] __x64_sys_clone3+0x376/0x3a0 [ 2322.641872][T17936] ? __ia32_sys_clone+0x290/0x290 [ 2322.646990][T17936] ? fput+0x1a/0x20 [ 2322.650629][T17936] ? debug_smp_processor_id+0x17/0x20 [ 2322.655834][T17936] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2322.661736][T17936] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2322.667212][T17936] do_syscall_64+0x3d/0xb0 [ 2322.671465][T17936] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2322.677282][T17936] RIP: 0033:0x7fe6f3145da9 [ 2322.681958][T17936] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2322.701409][T17936] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2322.709646][T17936] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2322.717456][T17936] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2322.725268][T17936] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2322.733084][T17936] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 08:48:32 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf000000, 0x0, 0x0}, 0x58) 08:48:32 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 39) 08:48:32 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10000200, 0x0, 0x0}, 0x58) [ 2322.740889][T17936] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2322.748803][T17936] [ 2322.764615][T17944] loop2: detected capacity change from 0 to 128 08:48:32 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11000000, 0x0, 0x0}, 0x58) 08:48:32 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1f000000, 0x0, 0x0}, 0x58) [ 2322.799514][T17949] FAULT_INJECTION: forcing a failure. [ 2322.799514][T17949] name failslab, interval 1, probability 0, space 0, times 0 [ 2322.831209][T17949] CPU: 1 PID: 17949 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2322.841375][T17949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2322.851272][T17949] Call Trace: [ 2322.854391][T17949] [ 2322.857167][T17949] dump_stack_lvl+0x151/0x1b7 [ 2322.861764][T17949] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2322.867230][T17949] ? avc_denied+0x1b0/0x1b0 [ 2322.871571][T17949] dump_stack+0x15/0x17 [ 2322.875561][T17949] should_fail+0x3c6/0x510 [ 2322.879926][T17949] __should_failslab+0xa4/0xe0 [ 2322.884522][T17949] ? vm_area_dup+0x26/0x230 [ 2322.888863][T17949] should_failslab+0x9/0x20 [ 2322.893200][T17949] slab_pre_alloc_hook+0x37/0xd0 [ 2322.897977][T17949] ? vm_area_dup+0x26/0x230 [ 2322.902311][T17949] kmem_cache_alloc+0x44/0x200 [ 2322.906915][T17949] vm_area_dup+0x26/0x230 [ 2322.911086][T17949] copy_mm+0x9a1/0x13e0 [ 2322.915088][T17949] ? copy_signal+0x610/0x610 [ 2322.919556][T17949] ? __init_rwsem+0xd6/0x1c0 [ 2322.924197][T17949] ? copy_signal+0x4e3/0x610 [ 2322.928620][T17949] copy_process+0x1149/0x3290 [ 2322.933664][T17949] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2322.938600][T17949] ? copy_clone_args_from_user+0x744/0x830 [ 2322.944252][T17949] kernel_clone+0x21e/0x9e0 [ 2322.948580][T17949] ? __delayed_free_task+0x20/0x20 [ 2322.954058][T17949] ? create_io_thread+0x1e0/0x1e0 [ 2322.958910][T17949] __x64_sys_clone3+0x376/0x3a0 [ 2322.963605][T17949] ? __ia32_sys_clone+0x290/0x290 [ 2322.968466][T17949] ? fput+0x1a/0x20 [ 2322.972109][T17949] ? debug_smp_processor_id+0x17/0x20 [ 2322.977313][T17949] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2322.983211][T17949] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2322.988680][T17949] do_syscall_64+0x3d/0xb0 [ 2322.992936][T17949] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2322.998662][T17949] RIP: 0033:0x7fe6f3145da9 [ 2323.002913][T17949] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2323.022356][T17949] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2323.030610][T17949] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2323.038413][T17949] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 08:48:32 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) (async) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r1, &(0x7f0000000000)={0x30002000}) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'batadv0\x00', 0x0}) (async) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000780)=ANY=[@ANYBLOB="1800ffff000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000808500000004000000956fdad71b6e2e64127def076d7fbe95178364e3031952b16a9b3ff363aea5c4e010931bda8352f08d8560621f7e78ef5bc6e9bc97f617c43b0190f4a416737ef8b87a9973790376d66b8a98ac0a591ca11938148507a83338523b7d586a3798a3b45ad03d82586ff89953280523dc2cff3381"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10) (async) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000002c40)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f0000002bc0), &(0x7f0000002c00)='%-5lx \x00'}, 0x20) r5 = openat$incfs(r1, &(0x7f0000002c80)='.log\x00', 0x2080, 0x0) r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000002cc0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x800, '\x00', r2, 0xffffffffffffffff, 0x4, 0x0, 0x5}, 0x48) (async) r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000002d40)={0x1b, 0x0, 0x0, 0x7, 0x0, 0xffffffffffffffff, 0x1, '\x00', r2, 0xffffffffffffffff, 0x1, 0x1, 0x3}, 0x48) r8 = syz_open_dev$vcsu(&(0x7f0000002dc0), 0xbfce, 0x4800) bpf$PROG_LOAD(0x5, &(0x7f0000002ec0)={0x14, 0x10, &(0x7f0000001680)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x9}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@call={0x85, 0x0, 0x0, 0x8a}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001700)='syzkaller\x00', 0x6, 0x41, &(0x7f0000002780)=""/65, 0x41000, 0x20, '\x00', r2, 0x1, 0xffffffffffffffff, 0x8, &(0x7f0000002840)={0x7, 0x2}, 0x8, 0x10, &(0x7f0000002880)={0x3, 0x8, 0xfffffffc, 0x4}, 0x10, 0x0, r3, 0x6, &(0x7f0000002e00)=[0xffffffffffffffff, r4, r5, 0xffffffffffffffff, r6, r7, r8], &(0x7f0000002e40)=[{0x4, 0x4, 0x5, 0x6}, {0x0, 0x5, 0x0, 0xb}, {0x5, 0x4, 0x0, 0x2}, {0x1, 0x1, 0x0, 0x3}, {0x0, 0x2, 0x3, 0xb}, {0x1, 0x1, 0xa, 0xb}], 0x10, 0x2}, 0x90) (async) r9 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$FS_IOC_FSSETXATTR(r9, 0x401c5820, &(0x7f0000000200)={0x20}) (async) fallocate(r9, 0x8, 0x0, 0x8000) (async) r10 = syz_btf_id_by_name$bpf_lsm(&(0x7f0000000300)='bpf_lsm_file_fcntl\x00') r11 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000003c0), 0x4) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{0x1, 0xffffffffffffffff}, &(0x7f0000000400), &(0x7f0000000440)}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000000)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x6}, @map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x80}], &(0x7f0000000080)='GPL\x00', 0x8000, 0x81, &(0x7f00000000c0)=""/129, 0x40f00, 0x8, '\x00', r2, 0x8, r9, 0x8, &(0x7f0000000280)={0x9, 0x1}, 0x8, 0x10, &(0x7f00000002c0)={0x3, 0x1, 0x3, 0x1ff}, 0x10, r10, r11, 0x6, &(0x7f0000000580)=[r12], &(0x7f0000000640)=[{0x2, 0x3, 0xf, 0x2}, {0x4, 0x3, 0x0, 0x6}, {0x0, 0x1, 0x4}, {0x2, 0x2, 0xf}, {0x0, 0x4, 0x6, 0x2}, {0x5, 0x4, 0x0, 0x7}], 0x10, 0x6}, 0x90) (async) r13 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r13}, 0x10) (async) setuid(0x0) 08:48:32 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1ffff000, 0x0, 0x0}, 0x58) 08:48:32 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 40) [ 2323.046222][T17949] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2323.054032][T17949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2323.061845][T17949] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2323.069745][T17949] [ 2323.105482][T17961] FAULT_INJECTION: forcing a failure. [ 2323.105482][T17961] name failslab, interval 1, probability 0, space 0, times 0 [ 2323.121375][T17961] CPU: 0 PID: 17961 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2323.131540][T17961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2323.141447][T17961] Call Trace: [ 2323.144556][T17961] [ 2323.147334][T17961] dump_stack_lvl+0x151/0x1b7 [ 2323.151846][T17961] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2323.157316][T17961] dump_stack+0x15/0x17 [ 2323.161307][T17961] should_fail+0x3c6/0x510 [ 2323.165561][T17961] __should_failslab+0xa4/0xe0 [ 2323.170163][T17961] ? anon_vma_clone+0x9a/0x500 [ 2323.174760][T17961] should_failslab+0x9/0x20 [ 2323.179102][T17961] slab_pre_alloc_hook+0x37/0xd0 [ 2323.183873][T17961] ? anon_vma_clone+0x9a/0x500 [ 2323.188482][T17961] kmem_cache_alloc+0x44/0x200 [ 2323.193262][T17961] anon_vma_clone+0x9a/0x500 [ 2323.197879][T17961] anon_vma_fork+0x91/0x4e0 [ 2323.202226][T17961] ? anon_vma_name+0x4c/0x70 [ 2323.206633][T17961] ? vm_area_dup+0x17a/0x230 [ 2323.211071][T17961] copy_mm+0xa3a/0x13e0 [ 2323.215153][T17961] ? copy_signal+0x610/0x610 [ 2323.219569][T17961] ? __init_rwsem+0xd6/0x1c0 [ 2323.223992][T17961] ? copy_signal+0x4e3/0x610 [ 2323.228422][T17961] copy_process+0x1149/0x3290 [ 2323.232941][T17961] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2323.237881][T17961] ? copy_clone_args_from_user+0x744/0x830 [ 2323.243526][T17961] kernel_clone+0x21e/0x9e0 [ 2323.247861][T17961] ? __delayed_free_task+0x20/0x20 [ 2323.252826][T17961] ? create_io_thread+0x1e0/0x1e0 [ 2323.257670][T17961] __x64_sys_clone3+0x376/0x3a0 [ 2323.262450][T17961] ? __ia32_sys_clone+0x290/0x290 [ 2323.267576][T17961] ? fput+0x1a/0x20 [ 2323.271207][T17961] ? debug_smp_processor_id+0x17/0x20 [ 2323.276412][T17961] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2323.282409][T17961] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2323.287868][T17961] do_syscall_64+0x3d/0xb0 [ 2323.292120][T17961] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2323.297858][T17961] RIP: 0033:0x7fe6f3145da9 [ 2323.302105][T17961] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2323.321559][T17961] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2323.329791][T17961] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2323.337609][T17961] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2323.345409][T17961] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 08:48:32 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20000000, 0x0, 0x0}, 0x58) 08:48:32 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x40000000, 0x0, 0x0}, 0x58) 08:48:32 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xa002a000, 0x0, 0x0}, 0x58) 08:48:32 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a501000000010000202064e5ffffff00002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000001000a50000000800000095f62404351c6b2a8db9e0e25b37fe10"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) setuid(0x0) 08:48:32 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 41) 08:48:32 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf5ffffff, 0x0, 0x0}, 0x58) [ 2323.353222][T17961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2323.361033][T17961] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2323.369023][T17961] 08:48:32 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async, rerun: 32) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a501000000010000202064e5ffffff00002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000001000a50000000800000095f62404351c6b2a8db9e0e25b37fe10"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (rerun: 32) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) setuid(0x0) 08:48:32 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xfbffffff, 0x0, 0x0}, 0x58) [ 2323.422266][T17973] FAULT_INJECTION: forcing a failure. [ 2323.422266][T17973] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2323.444734][T17973] CPU: 1 PID: 17973 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2323.455669][T17973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2323.465581][T17973] Call Trace: [ 2323.468686][T17973] [ 2323.471467][T17973] dump_stack_lvl+0x151/0x1b7 [ 2323.475980][T17973] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2323.481450][T17973] dump_stack+0x15/0x17 [ 2323.485442][T17973] should_fail+0x3c6/0x510 [ 2323.489692][T17973] should_fail_alloc_page+0x5a/0x80 [ 2323.494724][T17973] prepare_alloc_pages+0x15c/0x700 [ 2323.499682][T17973] ? __alloc_pages_bulk+0xe40/0xe40 [ 2323.504709][T17973] __alloc_pages+0x18c/0x8f0 [ 2323.509137][T17973] ? prep_new_page+0x110/0x110 [ 2323.513731][T17973] ? __alloc_pages+0x27e/0x8f0 08:48:32 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xff0f0100, 0x0, 0x0}, 0x58) 08:48:32 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a501000000010000202064e5ffffff00002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000001000a50000000800000095f62404351c6b2a8db9e0e25b37fe10"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) (async) setuid(0x0) 08:48:32 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000640)=ANY=[@ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) setuid(0x0) 08:48:32 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xfffffff5, 0x0, 0x0}, 0x58) 08:48:32 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000640)=ANY=[@ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) setuid(0x0) 08:48:32 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000640)=ANY=[@ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) setuid(0x0) 08:48:32 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xfffffffb, 0x0, 0x0}, 0x58) 08:48:33 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000e00)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f0000000d80), &(0x7f0000000dc0)=r0}, 0x20) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001140)={0xffffffffffffffff, 0xe0, &(0x7f00000014c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000f80)=[0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, &(0x7f0000000fc0)=[0x0], &(0x7f0000001000)=[0x0, 0x0], 0x0, 0x45, &(0x7f0000001040)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f0000001080), &(0x7f00000010c0), 0x8, 0xf6, 0x8, 0x8, &(0x7f0000001100)}}, 0x10) r5 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000001180), 0x4) r6 = syz_open_dev$mouse(&(0x7f0000001700), 0x7ff, 0x0) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000019c0)={0x1, 0x0}, 0x8) bpf$PROG_LOAD(0x5, &(0x7f0000002040)={0x1a, 0x1c, &(0x7f0000001d80)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xba7}, {{0x18, 0x1, 0x1, 0x0, r6}}, {}, [@jmp={0x5, 0x1, 0x5, 0x9, 0x5, 0x4}, @jmp={0x5, 0x1, 0x5, 0x1, 0x7, 0x4, 0xffffffffffffffff}, @map_val={0x18, 0xf, 0x2, 0x0, r6, 0x0, 0x0, 0x0, 0x2}, @exit, @printk={@u, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2}}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001e80)='GPL\x00', 0x9, 0x3, &(0x7f0000001ec0)=""/3, 0x41000, 0x0, '\x00', r3, 0x2e, r6, 0x8, &(0x7f0000001f00)={0x3, 0x5}, 0x8, 0x10, &(0x7f0000001f40)={0x0, 0xf3f6, 0x7f, 0x85840700}, 0x10, r7, 0xffffffffffffffff, 0x5, &(0x7f0000001f80)=[r2], &(0x7f0000001fc0)=[{0x5, 0x5, 0x1, 0x3}, {0x5, 0x1, 0xe, 0xc}, {0x4, 0x1, 0x8, 0x4}, {0x2, 0x1, 0x8, 0xc}, {0x2, 0x5, 0x5, 0x8}], 0x10, 0x5}, 0x90) r8 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001b80)=@bpf_lsm={0x1d, 0x3, &(0x7f0000001a00)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0xfffff156}, @call={0x85, 0x0, 0x0, 0x69}], &(0x7f0000001a40)='syzkaller\x00', 0x8de, 0x5e, &(0x7f0000001a80)=""/94, 0x41100, 0x4, '\x00', r3, 0x1b, r5, 0x8, &(0x7f0000001b00)={0x7, 0x2}, 0x8, 0x10, &(0x7f0000001b40)={0x2, 0xf, 0x0, 0x6}, 0x10, r4, 0x0, 0x0, 0x0, 0x0, 0x10, 0xca}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000001cc0)={0x20, 0x22, &(0x7f0000001740)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x9}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r6}}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @btf_id={0x18, 0x3, 0x3, 0x0, 0x4}, @call={0x85, 0x0, 0x0, 0x8}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}]}, &(0x7f0000001880)='syzkaller\x00', 0x2, 0xb1, &(0x7f00000018c0)=""/177, 0x41100, 0x24, '\x00', r3, 0x35, 0xffffffffffffffff, 0x8, &(0x7f0000001980)={0x8, 0x1}, 0x8, 0x10, 0x0, 0x0, r7, r8, 0x4, &(0x7f0000001c40)=[r1, r0, r1, r1, r0, r2, r0], &(0x7f0000001c80)=[{0x4, 0x3, 0xa, 0xc}, {0x5, 0x2, 0x5, 0x7}, {0x1, 0x2, 0x6, 0x3}, {0x0, 0x5, 0x0, 0x1}], 0x10, 0x7fff}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001640)={0x6, 0x1e, &(0x7f0000000e40)=@raw=[@printk={@li, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x80000000}}, @ldst={0x2, 0x0, 0x1, 0xa, 0xb, 0xfffffffffffffffc, 0x1}, @generic={0x2, 0x5, 0x4, 0x5, 0x400}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xffffffff}}, @printk={@li, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x5}}, @map_idx={0x18, 0x3, 0x5, 0x0, 0x10}, @generic={0x88, 0xc, 0xa, 0x400, 0xd1a}], &(0x7f0000000f40)='GPL\x00', 0xff, 0x0, 0x0, 0x40f00, 0x66, '\x00', r3, 0x25, r5, 0x8, &(0x7f00000015c0)={0x2, 0x2}, 0x8, 0x10, &(0x7f0000001600)={0x2, 0x8, 0xff}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x90) r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000011c0)=ANY=[@ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="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", @ANYRESHEX=r0], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r10 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r9}, 0x10) setuid(0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000080)=r9}, 0x20) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000580)={'syztnl2\x00', &(0x7f00000002c0)={'syztnl2\x00', 0x0, 0xf36cdecf07c7c22, 0x0, 0x3, 0xffff, 0x10, @dev={0xfe, 0x80, '\x00', 0x40}, @private0, 0x10, 0x700, 0x2, 0x3}}) r13 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0) r14 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/module/snd_soc_core', 0xc00, 0x2) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000b00)={0xffffffffffffffff, r10, 0x0, 0x1, &(0x7f0000000200)='\x00', 0x0}, 0x30) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000c40)={@ifindex=r12, 0x13, 0x0, 0x6, &(0x7f0000000b40)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5, 0x0, &(0x7f0000000b80)=[0x0, 0x0], &(0x7f0000000bc0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000c00)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0}, 0x40) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000ac0)={@map=r1, r14, 0x1d, 0x18, 0x0, @link_id=0xffffffffffffffff, r17}, 0x20) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000002100)={@ifindex=r16, r13, 0x8, 0x24, 0x0, @prog_id=r15, r17}, 0x20) ioctl$FS_IOC_SETFLAGS(r13, 0x40086602, &(0x7f0000000380)) pwritev2(r13, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x307e00}], 0x1, 0x1400, 0x0, 0x3) openat$cgroup_ro(r13, &(0x7f0000000440)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x0, 0x0) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000800)={0xffffffffffffffff, 0x20, &(0x7f00000007c0)={&(0x7f0000000640)=""/82, 0x52, 0x0, &(0x7f00000006c0)=""/206, 0xce}}, 0x10) r19 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000840)={0x1b, 0x0, 0x0, 0x6, 0x0, r0, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x1c, 0xe, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x10001}, [@exit, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r11}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @call={0x85, 0x0, 0x0, 0x75}]}, &(0x7f0000000280)='syzkaller\x00', 0x1000, 0x7c, &(0x7f00000003c0)=""/124, 0x40f00, 0x4, '\x00', r12, 0x0, r13, 0x8, 0x0, 0x0, 0x10, &(0x7f00000005c0)={0x1, 0x5, 0x1a, 0x6}, 0x10, r18, 0xffffffffffffffff, 0x4, &(0x7f00000008c0)=[r0, r19], &(0x7f0000000900)=[{0x3, 0x2, 0x3, 0x8}, {0x2, 0x4, 0x6, 0x9}, {0x0, 0x4, 0x3, 0x2}, {0x2, 0x1, 0x3, 0xa}], 0x10, 0x3}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a80)={{r11}, &(0x7f0000000a00), &(0x7f0000000a40)=r14}, 0x20) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r19, 0x89f3, &(0x7f0000000d40)={'ip6gre0\x00', &(0x7f0000000cc0)={'syztnl1\x00', r12, 0x2f, 0x1f, 0x7, 0x687, 0x4, @private1, @mcast2, 0x8000, 0x89, 0x0, 0x4}}) 08:48:33 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x100000800, 0x0, 0x0}, 0x58) [ 2323.518337][T17973] ? __kasan_check_write+0x14/0x20 [ 2323.523282][T17973] ? _raw_spin_lock+0xa4/0x1b0 [ 2323.527879][T17973] pte_alloc_one+0x73/0x1b0 [ 2323.532219][T17973] ? pfn_modify_allowed+0x2f0/0x2f0 [ 2323.537367][T17973] ? __pmd_alloc+0x48d/0x550 [ 2323.541770][T17973] __pte_alloc+0x86/0x350 [ 2323.545934][T17973] ? __pud_alloc+0x260/0x260 [ 2323.550357][T17973] ? __pud_alloc+0x213/0x260 [ 2323.554785][T17973] ? free_pgtables+0x280/0x280 [ 2323.559387][T17973] ? do_handle_mm_fault+0x2330/0x2330 [ 2323.564596][T17973] ? __stack_depot_save+0x34/0x470 08:48:33 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1b0ba1f000, 0x0, 0x0}, 0x58) [ 2323.569540][T17973] ? anon_vma_clone+0x9a/0x500 [ 2323.574140][T17973] copy_page_range+0x28a8/0x2f90 [ 2323.578914][T17973] ? __kasan_slab_alloc+0xb1/0xe0 [ 2323.583778][T17973] ? slab_post_alloc_hook+0x53/0x2c0 [ 2323.588899][T17973] ? kernel_clone+0x21e/0x9e0 [ 2323.593575][T17973] ? do_syscall_64+0x3d/0xb0 [ 2323.598009][T17973] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2323.603928][T17973] ? pfn_valid+0x1e0/0x1e0 [ 2323.608207][T17973] ? rwsem_write_trylock+0x15b/0x290 [ 2323.613287][T17973] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 2323.619530][T17973] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 2323.625083][T17973] ? __rb_insert_augmented+0x5de/0x610 [ 2323.630378][T17973] copy_mm+0xc7e/0x13e0 [ 2323.634370][T17973] ? copy_signal+0x610/0x610 [ 2323.638794][T17973] ? __init_rwsem+0xd6/0x1c0 [ 2323.643221][T17973] ? copy_signal+0x4e3/0x610 [ 2323.647652][T17973] copy_process+0x1149/0x3290 [ 2323.652166][T17973] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2323.657107][T17973] ? copy_clone_args_from_user+0x744/0x830 [ 2323.663281][T17973] kernel_clone+0x21e/0x9e0 [ 2323.667794][T17973] ? __delayed_free_task+0x20/0x20 [ 2323.672745][T17973] ? create_io_thread+0x1e0/0x1e0 [ 2323.677592][T17973] __x64_sys_clone3+0x376/0x3a0 [ 2323.682367][T17973] ? __ia32_sys_clone+0x290/0x290 [ 2323.687341][T17973] ? fput+0x1a/0x20 [ 2323.690972][T17973] ? debug_smp_processor_id+0x17/0x20 [ 2323.696166][T17973] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2323.702069][T17973] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2323.707537][T17973] do_syscall_64+0x3d/0xb0 [ 2323.711787][T17973] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2323.717518][T17973] RIP: 0033:0x7fe6f3145da9 [ 2323.721768][T17973] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2323.741214][T17973] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2323.749455][T17973] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2323.757393][T17973] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2323.765205][T17973] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2323.773010][T17973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2323.780834][T17973] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2323.788918][T17973] 08:48:33 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = open(0x0, 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f000000df80)) fstat(r0, &(0x7f000000dfc0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() statx(r0, &(0x7f000000e180)='./file0\x00', 0x1000, 0x80, &(0x7f000000e1c0)) r2 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="ca42ad87b11bb3b2507e03129a435e7c99104f0cd507000000046f9445631055f28a4e6777e97047e5807db4996b10208d04454ea654888bf754956945961677b348d33478b3d8f70eac439f502bea81070bba59ccec17e7d182ea9fdfde2b94e826d24492db7f8983925947dc2b357943622c9feaa43512f4afed56e4010e2543166dfc76b6668c1ccb960ebeb21ae5eaaa01a65f105a20fdcdb5c20c2245eecbd4e49cbb07060000003674c0a6397ca594873755027deb77b094a29545f674e5a44c597f0473f49684719c9445839a59a09e1c1361d72b8a1dd163eecd03bd218ba880482b173bef3f91cbd40796bdeb13d63c1eadecb3dfe83f1d88b8b7fb053eed7e742bfff269a5c16070aa8b51d4538811d4de1d198d2fdcfa404fc9e6df202578e962544794e77c2425f73fcd3d0cd1d4ff004ec0754e946adff5e93ffc586126de12ee3a2b1e347cbf598c20648bf702511dd953cfd9eef7b0cf148a63cca032a3f5c2247efc16857ad98255693a11149dde8fed62623d07d357b0c1251f9c4f7492c9e5000000001c2485258e4a9f46a454427a1cdb84782846052b20554446e9b9b6d45be858bf97e390544b8e54d32db951f89f86bd455af5174c9edcd7bd4e5448cc3c2b7a5b07c20b369ba5effd8334a4b597daa76b65dece5249d08f5b66dd8c3cd9aab9fcffff5577502dc33d51ed2a25c3640cd073b7d51d12266c6079622281358c96043413eeb5938648ac8b3f8b4d38ef5331499b828a6579d5048ed27ea04e2e070f2ba16433bf79a7af308fa86e765081df9163e034dcb6505ea7890693156414a8b0d5fceb38ffe232dafc93ce08e1fbb2000000000025fb6d6cd068b59d26d3835002ec4c6700bba9e73ffe3ee7aad4834800000000000000000000d7ce5719e9a80531cc154ae62236435abb4981d2183d7b8fc26fac5484b1393d7e8d4dfb9bdcdf37c0d74e6e787888f71a28396f49a4b95f46d12ae1010c0e3185929e39dc3cee5ba6f6434199f686be319d4794efc589166434ddeda1feedd8539030f54fd0da371eec53b41fae2fd04bcac127c759", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$eJzs3d9rXFkdAPDvvclk0zZrZlVkXXB3cVfSRTuTbNxtEGkriD4V1PoeYzIJIZNMyExqE4qm+AcIIir45JMvgn+AIP0TRCjou6gooq0+aq/MzI02yUwyNZNMd/L5wMk95/76nnPJnLl37uHeAC6sNyPiVkSMRMQ7ETGZz0/zNN8s7LXXe/L4/mIzJZFld/6WRJLP299XszwaEVfam8R4RHztyxHfTI7Gre/sri1Uq5WtvFxurG+W6zu711bXF1YqK5WN2dmZ9+euz703N53lTtXOYkTc+OKffvi9n33pxq8+863fz//l6reb1fr8x9r1jojFUwXoor3vQutY7Gseo62zCDYAI3l7CiODrgkAAL1onuN/OCI+2Tr/n4yR1tkcAAAAMEyymxPxryQiAwAAAIZWGhETkaSlfCzARKRpqdQew/vRuJxWa/XGp5dr2xtLzWURxSiky6vVynQ+VrgYhaRZnsnH2O6X3z1Uno2IVyLiB5OXWuXSYq26NOgfPwAAAOCCuPLGwev/f06mrTwAAAAwZIpdCwAAAMCwcMkPAAAAw8/1PwAAAAy1r9y+3UzZ/nu8l+7ubK/V7l5bqtTXSuvbi6XF2tZmaaVWW2k9s2/9pP1Va7XNz8bG9r1yo1JvlOs7u/Prte2NxvzqgVdgAwAAAOfolTce/i6JiL3PXWqlyJ8DCHDAHwddAaCfRgZdAWBgRgddAWBgCieuoYeAYZecsLzr4J1f978uAADA2Zj6+NH7/2P5spN/GwA+yIz1AYCLx909uLgKRgDChfeh9uSlbstPf/8/y567UgAAQF9NtFKSlvJ7gRORpqVSxMut1wIUkuXVamU6vz747WThpWZ5prVlcuKYYQAAAAAAAAAAAAAAAAAAAAAAAACgLcuSyAAAAIChFpH+OWk9zT9iavLtiYO/Dhx669dP7vzo3kKjsTUTMZb8fbI5aywiGj/O57+beSUAAAAAvADa1+n5dGbQtQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABg2Dx5fH9xP51n3L9+ISKKneKPxnhrOh6FiLj8jyRGn9kuiYiRPsTfexARr3aKn8TTLMuKeS06xb90xvGLrUPTOX4aEVf6EB8usofN/udWp89fGm+2pp0/f6N5Oq3u/V/63/5vpEv/83KPMV579Ity1/gPIl4b7dz/7MdP2vGTOBT/rR7jf+Pru7vdlmU/jZjq+P2THIhVbqxvlus7u9dW1xdWKiuVjdnZmffnrs+9NzddXl6tVvK/HWN8/xO/fHpc+y93iV882P4jx//tHtv/70f3Hn+knS10in/1rc7fv692iZ/m332fyvPN5VP7+b12/lmv//w3rx/X/qUu7R8/of1Xe2z/O1/97h96XBUAOAf1nd21hWq1snVMZryHdc45c/PFqIZMvzLZd9r/j6fbzyk3P5LJTrP5aPShGmPP8Tntb2aQvRIAAHAW/nfSP+iaAAAAAAAAAAAAAAAAAAAAwMX1fz4hbDwiel75cMy9wTQVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBY/wkAAP//E77WGg==") r3 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r3}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r4, 0x0, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200)) 08:48:33 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x29e9eb25f000, 0x0, 0x0}, 0x58) 08:48:33 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 42) [ 2323.852834][T18011] FAULT_INJECTION: forcing a failure. [ 2323.852834][T18011] name failslab, interval 1, probability 0, space 0, times 0 [ 2323.865986][T18011] CPU: 0 PID: 18011 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2323.876138][T18011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2323.886929][T18011] Call Trace: [ 2323.890021][T18011] [ 2323.892808][T18011] dump_stack_lvl+0x151/0x1b7 [ 2323.897321][T18011] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2323.902779][T18011] dump_stack+0x15/0x17 [ 2323.906776][T18011] should_fail+0x3c6/0x510 [ 2323.911023][T18011] __should_failslab+0xa4/0xe0 [ 2323.915622][T18011] ? anon_vma_clone+0x9a/0x500 [ 2323.920223][T18011] should_failslab+0x9/0x20 [ 2323.924563][T18011] slab_pre_alloc_hook+0x37/0xd0 [ 2323.929335][T18011] ? anon_vma_clone+0x9a/0x500 [ 2323.933934][T18011] kmem_cache_alloc+0x44/0x200 [ 2323.938538][T18011] anon_vma_clone+0x9a/0x500 [ 2323.942963][T18011] anon_vma_fork+0x91/0x4e0 [ 2323.947302][T18011] ? anon_vma_name+0x4c/0x70 [ 2323.951727][T18011] ? vm_area_dup+0x17a/0x230 [ 2323.956155][T18011] copy_mm+0xa3a/0x13e0 [ 2323.960161][T18011] ? copy_signal+0x610/0x610 [ 2323.964661][T18011] ? __init_rwsem+0xd6/0x1c0 [ 2323.969087][T18011] ? copy_signal+0x4e3/0x610 [ 2323.973599][T18011] copy_process+0x1149/0x3290 [ 2323.978116][T18011] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2323.983061][T18011] ? copy_clone_args_from_user+0x744/0x830 [ 2323.988704][T18011] kernel_clone+0x21e/0x9e0 [ 2323.993041][T18011] ? __delayed_free_task+0x20/0x20 [ 2323.998035][T18011] ? create_io_thread+0x1e0/0x1e0 [ 2324.002850][T18011] __x64_sys_clone3+0x376/0x3a0 [ 2324.007546][T18011] ? __ia32_sys_clone+0x290/0x290 [ 2324.012397][T18011] ? fput+0x1a/0x20 [ 2324.016043][T18011] ? debug_smp_processor_id+0x17/0x20 [ 2324.021250][T18011] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2324.027150][T18011] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2324.032619][T18011] do_syscall_64+0x3d/0xb0 [ 2324.036872][T18011] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2324.042601][T18011] RIP: 0033:0x7fe6f3145da9 [ 2324.046877][T18011] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2324.066382][T18011] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2324.074900][T18011] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2324.082715][T18011] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2324.090517][T18011] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 08:48:33 executing program 2: syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() r0 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r0, @ANYRESHEX=r0, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r1 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r1}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200)) 08:48:33 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x553a28640000, 0x0, 0x0}, 0x58) 08:48:33 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x64283a550000, 0x0, 0x0}, 0x58) 08:48:33 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 43) [ 2324.098337][T18011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2324.106145][T18011] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2324.113965][T18011] 08:48:33 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) (async) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000e00)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f0000000d80), &(0x7f0000000dc0)=r0}, 0x20) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001140)={0xffffffffffffffff, 0xe0, &(0x7f00000014c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000f80)=[0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, &(0x7f0000000fc0)=[0x0], &(0x7f0000001000)=[0x0, 0x0], 0x0, 0x45, &(0x7f0000001040)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f0000001080), &(0x7f00000010c0), 0x8, 0xf6, 0x8, 0x8, &(0x7f0000001100)}}, 0x10) r5 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000001180), 0x4) (async) r6 = syz_open_dev$mouse(&(0x7f0000001700), 0x7ff, 0x0) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000019c0)={0x1, 0x0}, 0x8) bpf$PROG_LOAD(0x5, &(0x7f0000002040)={0x1a, 0x1c, &(0x7f0000001d80)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xba7}, {{0x18, 0x1, 0x1, 0x0, r6}}, {}, [@jmp={0x5, 0x1, 0x5, 0x9, 0x5, 0x4}, @jmp={0x5, 0x1, 0x5, 0x1, 0x7, 0x4, 0xffffffffffffffff}, @map_val={0x18, 0xf, 0x2, 0x0, r6, 0x0, 0x0, 0x0, 0x2}, @exit, @printk={@u, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2}}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001e80)='GPL\x00', 0x9, 0x3, &(0x7f0000001ec0)=""/3, 0x41000, 0x0, '\x00', r3, 0x2e, r6, 0x8, &(0x7f0000001f00)={0x3, 0x5}, 0x8, 0x10, &(0x7f0000001f40)={0x0, 0xf3f6, 0x7f, 0x85840700}, 0x10, r7, 0xffffffffffffffff, 0x5, &(0x7f0000001f80)=[r2], &(0x7f0000001fc0)=[{0x5, 0x5, 0x1, 0x3}, {0x5, 0x1, 0xe, 0xc}, {0x4, 0x1, 0x8, 0x4}, {0x2, 0x1, 0x8, 0xc}, {0x2, 0x5, 0x5, 0x8}], 0x10, 0x5}, 0x90) (async) r8 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001b80)=@bpf_lsm={0x1d, 0x3, &(0x7f0000001a00)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0xfffff156}, @call={0x85, 0x0, 0x0, 0x69}], &(0x7f0000001a40)='syzkaller\x00', 0x8de, 0x5e, &(0x7f0000001a80)=""/94, 0x41100, 0x4, '\x00', r3, 0x1b, r5, 0x8, &(0x7f0000001b00)={0x7, 0x2}, 0x8, 0x10, &(0x7f0000001b40)={0x2, 0xf, 0x0, 0x6}, 0x10, r4, 0x0, 0x0, 0x0, 0x0, 0x10, 0xca}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000001cc0)={0x20, 0x22, &(0x7f0000001740)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x9}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r6}}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @btf_id={0x18, 0x3, 0x3, 0x0, 0x4}, @call={0x85, 0x0, 0x0, 0x8}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}]}, &(0x7f0000001880)='syzkaller\x00', 0x2, 0xb1, &(0x7f00000018c0)=""/177, 0x41100, 0x24, '\x00', r3, 0x35, 0xffffffffffffffff, 0x8, &(0x7f0000001980)={0x8, 0x1}, 0x8, 0x10, 0x0, 0x0, r7, r8, 0x4, &(0x7f0000001c40)=[r1, r0, r1, r1, r0, r2, r0], &(0x7f0000001c80)=[{0x4, 0x3, 0xa, 0xc}, {0x5, 0x2, 0x5, 0x7}, {0x1, 0x2, 0x6, 0x3}, {0x0, 0x5, 0x0, 0x1}], 0x10, 0x7fff}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001640)={0x6, 0x1e, &(0x7f0000000e40)=@raw=[@printk={@li, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x80000000}}, @ldst={0x2, 0x0, 0x1, 0xa, 0xb, 0xfffffffffffffffc, 0x1}, @generic={0x2, 0x5, 0x4, 0x5, 0x400}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xffffffff}}, @printk={@li, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x5}}, @map_idx={0x18, 0x3, 0x5, 0x0, 0x10}, @generic={0x88, 0xc, 0xa, 0x400, 0xd1a}], &(0x7f0000000f40)='GPL\x00', 0xff, 0x0, 0x0, 0x40f00, 0x66, '\x00', r3, 0x25, r5, 0x8, &(0x7f00000015c0)={0x2, 0x2}, 0x8, 0x10, &(0x7f0000001600)={0x2, 0x8, 0xff}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x90) (async) r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000011c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8ad7ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000d0618aeb35ac2616e3a26bfd57a4f48991b992c661181a9f035bf1cf1d7813ad726c2dac661968da1d4f6308e2cafbbc831565fa7f07d946c5772c65074ec27e3fa1bff1ca015aa12783b7a9d21ad80a648cc977822249a934c05b3b80bf5a4d162b6456cb7c3430305be1a892004c49e1fbe85467621d67998a012af5c2be99ccf18ded65d60e2608e858629370f3308f7965478609f6e49807e0fdd713a4834b47d9951540cca6f3de4bfb15e93122ff14ecf2c3af56b14e90dbcf8ef992a77bfa9c1920626e13518569b0c8180ef79785028cb5944ebe99436a4d047a4e21", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200c7293ba000b703000000000000a50000000800000095046f274d9b1b1d2fcf462c5d7e1165e1cc268ba091917336b57c4e2afabf4a71f2a13ebf19593cac4eedcea79accaaa74d5dc79be92f3bd1861ffdf0cce1342bcbfe7af3df725ae7a6e72384399419d03f8139771efd494e70f3d91324ac667a859503ef97e5b5bd802af0afdc7f3e1904ba68ef0c773fa4399bb207a8d406c2eaf6a283bc3ea143ca4dd17c06b2af1039d5154a16b34c33dbf727a940b96d734e06f70d769db1f561aa126ccb01a4eec9ae4b44be54705d7f97a7045d9cbc1f63f5c52cd3f3f2037aec19290b305143033413a95c61467ff8b5ef0083bd2df791b58bdcde60c9e67f6f10c499146adde55b19036e6edcf89ff205070bbe6c79d3d8c6fbb4826e9205fd1a1335fd79344c86c90757e540b7a6a8158ab0d35528a26f690e998e316fc69bedbc2c1dd5b616b020a7abaa823c", @ANYRESHEX=r0], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r10 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r9}, 0x10) (async, rerun: 64) setuid(0x0) (async, rerun: 64) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000080)=r9}, 0x20) (async) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000580)={'syztnl2\x00', &(0x7f00000002c0)={'syztnl2\x00', 0x0, 0xf36cdecf07c7c22, 0x0, 0x3, 0xffff, 0x10, @dev={0xfe, 0x80, '\x00', 0x40}, @private0, 0x10, 0x700, 0x2, 0x3}}) r13 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0) r14 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/module/snd_soc_core', 0xc00, 0x2) (async, rerun: 64) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000b00)={0xffffffffffffffff, r10, 0x0, 0x1, &(0x7f0000000200)='\x00', 0x0}, 0x30) (async, rerun: 64) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000c40)={@ifindex=r12, 0x13, 0x0, 0x6, &(0x7f0000000b40)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5, 0x0, &(0x7f0000000b80)=[0x0, 0x0], &(0x7f0000000bc0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000c00)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0}, 0x40) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000ac0)={@map=r1, r14, 0x1d, 0x18, 0x0, @link_id=0xffffffffffffffff, r17}, 0x20) (async) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000002100)={@ifindex=r16, r13, 0x8, 0x24, 0x0, @prog_id=r15, r17}, 0x20) ioctl$FS_IOC_SETFLAGS(r13, 0x40086602, &(0x7f0000000380)) (async) pwritev2(r13, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x307e00}], 0x1, 0x1400, 0x0, 0x3) (async, rerun: 32) openat$cgroup_ro(r13, &(0x7f0000000440)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x0, 0x0) (async, rerun: 32) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000800)={0xffffffffffffffff, 0x20, &(0x7f00000007c0)={&(0x7f0000000640)=""/82, 0x52, 0x0, &(0x7f00000006c0)=""/206, 0xce}}, 0x10) r19 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000840)={0x1b, 0x0, 0x0, 0x6, 0x0, r0, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x1c, 0xe, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x10001}, [@exit, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r11}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @call={0x85, 0x0, 0x0, 0x75}]}, &(0x7f0000000280)='syzkaller\x00', 0x1000, 0x7c, &(0x7f00000003c0)=""/124, 0x40f00, 0x4, '\x00', r12, 0x0, r13, 0x8, 0x0, 0x0, 0x10, &(0x7f00000005c0)={0x1, 0x5, 0x1a, 0x6}, 0x10, r18, 0xffffffffffffffff, 0x4, &(0x7f00000008c0)=[r0, r19], &(0x7f0000000900)=[{0x3, 0x2, 0x3, 0x8}, {0x2, 0x4, 0x6, 0x9}, {0x0, 0x4, 0x3, 0x2}, {0x2, 0x1, 0x3, 0xa}], 0x10, 0x3}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a80)={{r11}, &(0x7f0000000a00), &(0x7f0000000a40)=r14}, 0x20) (async) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r19, 0x89f3, &(0x7f0000000d40)={'ip6gre0\x00', &(0x7f0000000cc0)={'syztnl1\x00', r12, 0x2f, 0x1f, 0x7, 0x687, 0x4, @private1, @mcast2, 0x8000, 0x89, 0x0, 0x4}}) [ 2324.145641][T18018] FAULT_INJECTION: forcing a failure. [ 2324.145641][T18018] name failslab, interval 1, probability 0, space 0, times 0 [ 2324.159134][T18014] loop0: detected capacity change from 0 to 128 [ 2324.172483][T18021] loop2: detected capacity change from 0 to 128 [ 2324.178825][T18018] CPU: 1 PID: 18018 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2324.188971][T18018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2324.198862][T18018] Call Trace: [ 2324.201982][T18018] [ 2324.204765][T18018] dump_stack_lvl+0x151/0x1b7 [ 2324.209272][T18018] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2324.214743][T18018] dump_stack+0x15/0x17 [ 2324.218736][T18018] should_fail+0x3c6/0x510 [ 2324.222995][T18018] __should_failslab+0xa4/0xe0 [ 2324.227588][T18018] ? anon_vma_fork+0x1df/0x4e0 [ 2324.232188][T18018] should_failslab+0x9/0x20 [ 2324.236525][T18018] slab_pre_alloc_hook+0x37/0xd0 [ 2324.241298][T18018] ? anon_vma_fork+0x1df/0x4e0 [ 2324.245909][T18018] kmem_cache_alloc+0x44/0x200 [ 2324.250676][T18018] anon_vma_fork+0x1df/0x4e0 [ 2324.255102][T18018] copy_mm+0xa3a/0x13e0 [ 2324.259095][T18018] ? copy_signal+0x610/0x610 [ 2324.263519][T18018] ? __init_rwsem+0xd6/0x1c0 [ 2324.267945][T18018] ? copy_signal+0x4e3/0x610 [ 2324.272372][T18018] copy_process+0x1149/0x3290 [ 2324.276890][T18018] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2324.281832][T18018] ? copy_clone_args_from_user+0x744/0x830 [ 2324.287478][T18018] kernel_clone+0x21e/0x9e0 [ 2324.291813][T18018] ? __delayed_free_task+0x20/0x20 [ 2324.296761][T18018] ? create_io_thread+0x1e0/0x1e0 [ 2324.301622][T18018] __x64_sys_clone3+0x376/0x3a0 [ 2324.306310][T18018] ? __ia32_sys_clone+0x290/0x290 [ 2324.311179][T18018] ? fput+0x1a/0x20 [ 2324.314813][T18018] ? debug_smp_processor_id+0x17/0x20 [ 2324.320021][T18018] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2324.325924][T18018] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2324.331412][T18018] do_syscall_64+0x3d/0xb0 [ 2324.335646][T18018] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2324.341469][T18018] RIP: 0033:0x7fe6f3145da9 [ 2324.345808][T18018] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2324.365244][T18018] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2324.373486][T18018] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2324.381382][T18018] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 08:48:33 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2001000000000, 0x0, 0x0}, 0x58) 08:48:33 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2020000000000, 0x0, 0x0}, 0x58) [ 2324.389283][T18018] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2324.397188][T18018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2324.405253][T18018] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2324.413068][T18018] 08:48:33 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 44) 08:48:33 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000000000, 0x0, 0x0}, 0x58) [ 2324.476894][T18032] FAULT_INJECTION: forcing a failure. [ 2324.476894][T18032] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2324.499726][T18032] CPU: 0 PID: 18032 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2324.509900][T18032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2324.519795][T18032] Call Trace: [ 2324.522917][T18032] [ 2324.525694][T18032] dump_stack_lvl+0x151/0x1b7 [ 2324.530209][T18032] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2324.535675][T18032] dump_stack+0x15/0x17 [ 2324.539668][T18032] should_fail+0x3c6/0x510 [ 2324.543922][T18032] should_fail_alloc_page+0x5a/0x80 [ 2324.548954][T18032] prepare_alloc_pages+0x15c/0x700 [ 2324.553904][T18032] ? __alloc_pages_bulk+0xe40/0xe40 [ 2324.558936][T18032] __alloc_pages+0x18c/0x8f0 [ 2324.563449][T18032] ? prep_new_page+0x110/0x110 [ 2324.568057][T18032] get_zeroed_page+0x1b/0x40 [ 2324.572474][T18032] __pud_alloc+0x8b/0x260 [ 2324.576641][T18032] ? stack_trace_snprint+0xf0/0xf0 [ 2324.581588][T18032] ? do_handle_mm_fault+0x2330/0x2330 [ 2324.586797][T18032] ? __stack_depot_save+0x34/0x470 [ 2324.591740][T18032] ? anon_vma_clone+0x9a/0x500 [ 2324.596348][T18032] copy_page_range+0x2bcf/0x2f90 [ 2324.601118][T18032] ? __kasan_slab_alloc+0xb1/0xe0 [ 2324.605978][T18032] ? slab_post_alloc_hook+0x53/0x2c0 [ 2324.611101][T18032] ? copy_mm+0xa3a/0x13e0 [ 2324.615270][T18032] ? copy_process+0x1149/0x3290 [ 2324.619953][T18032] ? kernel_clone+0x21e/0x9e0 [ 2324.624463][T18032] ? __x64_sys_clone3+0x376/0x3a0 [ 2324.629326][T18032] ? do_syscall_64+0x3d/0xb0 [ 2324.633750][T18032] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2324.639797][T18032] ? pfn_valid+0x1e0/0x1e0 [ 2324.644039][T18032] ? rwsem_write_trylock+0x15b/0x290 [ 2324.649159][T18032] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 2324.655408][T18032] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 2324.660973][T18032] ? __rb_insert_augmented+0x5de/0x610 [ 2324.666258][T18032] copy_mm+0xc7e/0x13e0 [ 2324.670255][T18032] ? copy_signal+0x610/0x610 [ 2324.674674][T18032] ? __init_rwsem+0xd6/0x1c0 [ 2324.679108][T18032] ? copy_signal+0x4e3/0x610 [ 2324.683538][T18032] copy_process+0x1149/0x3290 [ 2324.688048][T18032] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2324.692990][T18032] ? copy_clone_args_from_user+0x744/0x830 [ 2324.698629][T18032] kernel_clone+0x21e/0x9e0 [ 2324.702968][T18032] ? __delayed_free_task+0x20/0x20 [ 2324.707914][T18032] ? create_io_thread+0x1e0/0x1e0 [ 2324.712777][T18032] __x64_sys_clone3+0x376/0x3a0 [ 2324.717465][T18032] ? __ia32_sys_clone+0x290/0x290 [ 2324.722332][T18032] ? fput+0x1a/0x20 [ 2324.725967][T18032] ? debug_smp_processor_id+0x17/0x20 [ 2324.731176][T18032] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2324.737084][T18032] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2324.742546][T18032] do_syscall_64+0x3d/0xb0 [ 2324.746798][T18032] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2324.752533][T18032] RIP: 0033:0x7fe6f3145da9 [ 2324.756879][T18032] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 08:48:34 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000001000000, 0x0, 0x0}, 0x58) 08:48:34 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 45) [ 2324.776309][T18032] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2324.784553][T18032] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2324.792362][T18032] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2324.800178][T18032] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2324.807985][T18032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2324.815797][T18032] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2324.823612][T18032] 08:48:34 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10100000000000, 0x0, 0x0}, 0x58) 08:48:34 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20000000000000, 0x0, 0x0}, 0x58) 08:48:34 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x70000000000000, 0x0, 0x0}, 0x58) [ 2324.846157][T18042] FAULT_INJECTION: forcing a failure. [ 2324.846157][T18042] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2324.860020][T18042] CPU: 0 PID: 18042 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2324.870360][T18042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2324.880255][T18042] Call Trace: [ 2324.883380][T18042] [ 2324.886156][T18042] dump_stack_lvl+0x151/0x1b7 [ 2324.890759][T18042] ? io_uring_drop_tctx_refs+0x190/0x190 08:48:34 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xa002a0ffffffff, 0x0, 0x0}, 0x58) 08:48:34 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf025ebe9290000, 0x0, 0x0}, 0x58) [ 2324.896226][T18042] dump_stack+0x15/0x17 [ 2324.900241][T18042] should_fail+0x3c6/0x510 [ 2324.904473][T18042] should_fail_alloc_page+0x5a/0x80 [ 2324.909518][T18042] prepare_alloc_pages+0x15c/0x700 [ 2324.914453][T18042] ? __alloc_pages_bulk+0xe40/0xe40 [ 2324.919487][T18042] __alloc_pages+0x18c/0x8f0 [ 2324.923912][T18042] ? prep_new_page+0x110/0x110 [ 2324.928509][T18042] ? __alloc_pages+0x27e/0x8f0 [ 2324.933144][T18042] ? __kasan_check_write+0x14/0x20 [ 2324.938063][T18042] ? _raw_spin_lock+0xa4/0x1b0 [ 2324.942663][T18042] __pmd_alloc+0xb1/0x550 [ 2324.946827][T18042] ? __pud_alloc+0x260/0x260 [ 2324.951250][T18042] ? __pud_alloc+0x213/0x260 [ 2324.955673][T18042] ? do_handle_mm_fault+0x2330/0x2330 [ 2324.960883][T18042] ? __stack_depot_save+0x34/0x470 [ 2324.965828][T18042] ? anon_vma_clone+0x9a/0x500 [ 2324.970431][T18042] copy_page_range+0x2b3d/0x2f90 [ 2324.975203][T18042] ? __kasan_slab_alloc+0xb1/0xe0 [ 2324.980064][T18042] ? slab_post_alloc_hook+0x53/0x2c0 [ 2324.985184][T18042] ? copy_mm+0xa3a/0x13e0 [ 2324.989348][T18042] ? copy_process+0x1149/0x3290 08:48:34 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = open(0x0, 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f000000df80)) fstat(r0, &(0x7f000000dfc0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() statx(r0, &(0x7f000000e180)='./file0\x00', 0x1000, 0x80, &(0x7f000000e1c0)) r2 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r3 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r3}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r4, 0x0, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200)) 08:48:34 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0a10b1b000000, 0x0, 0x0}, 0x58) [ 2324.994037][T18042] ? kernel_clone+0x21e/0x9e0 [ 2324.998552][T18042] ? do_syscall_64+0x3d/0xb0 [ 2325.002977][T18042] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2325.008977][T18042] ? pfn_valid+0x1e0/0x1e0 [ 2325.013220][T18042] ? rwsem_write_trylock+0x15b/0x290 [ 2325.018341][T18042] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 2325.024586][T18042] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 2325.030143][T18042] ? __rb_insert_augmented+0x5de/0x610 [ 2325.035445][T18042] copy_mm+0xc7e/0x13e0 [ 2325.039436][T18042] ? copy_signal+0x610/0x610 [ 2325.043857][T18042] ? __init_rwsem+0xd6/0x1c0 [ 2325.048281][T18042] ? copy_signal+0x4e3/0x610 [ 2325.052708][T18042] copy_process+0x1149/0x3290 [ 2325.057222][T18042] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2325.062174][T18042] ? copy_clone_args_from_user+0x744/0x830 [ 2325.067815][T18042] kernel_clone+0x21e/0x9e0 [ 2325.072154][T18042] ? __delayed_free_task+0x20/0x20 [ 2325.077100][T18042] ? create_io_thread+0x1e0/0x1e0 [ 2325.081965][T18042] __x64_sys_clone3+0x376/0x3a0 [ 2325.086648][T18042] ? __ia32_sys_clone+0x290/0x290 [ 2325.091509][T18042] ? fput+0x1a/0x20 [ 2325.095152][T18042] ? debug_smp_processor_id+0x17/0x20 [ 2325.100360][T18042] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2325.106259][T18042] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2325.111730][T18042] do_syscall_64+0x3d/0xb0 [ 2325.115981][T18042] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2325.121720][T18042] RIP: 0033:0x7fe6f3145da9 [ 2325.125961][T18042] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 08:48:34 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ff1f00000000, 0x0, 0x0}, 0x58) 08:48:34 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x100000000000000, 0x0, 0x0}, 0x58) 08:48:34 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x200000000000000, 0x0, 0x0}, 0x58) 08:48:34 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x700000000000000, 0x0, 0x0}, 0x58) 08:48:34 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x800000000000000, 0x0, 0x0}, 0x58) 08:48:34 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x900000000000000, 0x0, 0x0}, 0x58) 08:48:34 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf00000000000000, 0x0, 0x0}, 0x58) 08:48:34 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 46) 08:48:34 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) (async) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000e00)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f0000000d80), &(0x7f0000000dc0)=r0}, 0x20) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001140)={0xffffffffffffffff, 0xe0, &(0x7f00000014c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000f80)=[0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, &(0x7f0000000fc0)=[0x0], &(0x7f0000001000)=[0x0, 0x0], 0x0, 0x45, &(0x7f0000001040)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f0000001080), &(0x7f00000010c0), 0x8, 0xf6, 0x8, 0x8, &(0x7f0000001100)}}, 0x10) (async) r5 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000001180), 0x4) r6 = syz_open_dev$mouse(&(0x7f0000001700), 0x7ff, 0x0) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000019c0)={0x1, 0x0}, 0x8) bpf$PROG_LOAD(0x5, &(0x7f0000002040)={0x1a, 0x1c, &(0x7f0000001d80)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xba7}, {{0x18, 0x1, 0x1, 0x0, r6}}, {}, [@jmp={0x5, 0x1, 0x5, 0x9, 0x5, 0x4}, @jmp={0x5, 0x1, 0x5, 0x1, 0x7, 0x4, 0xffffffffffffffff}, @map_val={0x18, 0xf, 0x2, 0x0, r6, 0x0, 0x0, 0x0, 0x2}, @exit, @printk={@u, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2}}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001e80)='GPL\x00', 0x9, 0x3, &(0x7f0000001ec0)=""/3, 0x41000, 0x0, '\x00', r3, 0x2e, r6, 0x8, &(0x7f0000001f00)={0x3, 0x5}, 0x8, 0x10, &(0x7f0000001f40)={0x0, 0xf3f6, 0x7f, 0x85840700}, 0x10, r7, 0xffffffffffffffff, 0x5, &(0x7f0000001f80)=[r2], &(0x7f0000001fc0)=[{0x5, 0x5, 0x1, 0x3}, {0x5, 0x1, 0xe, 0xc}, {0x4, 0x1, 0x8, 0x4}, {0x2, 0x1, 0x8, 0xc}, {0x2, 0x5, 0x5, 0x8}], 0x10, 0x5}, 0x90) (async) r8 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001b80)=@bpf_lsm={0x1d, 0x3, &(0x7f0000001a00)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0xfffff156}, @call={0x85, 0x0, 0x0, 0x69}], &(0x7f0000001a40)='syzkaller\x00', 0x8de, 0x5e, &(0x7f0000001a80)=""/94, 0x41100, 0x4, '\x00', r3, 0x1b, r5, 0x8, &(0x7f0000001b00)={0x7, 0x2}, 0x8, 0x10, &(0x7f0000001b40)={0x2, 0xf, 0x0, 0x6}, 0x10, r4, 0x0, 0x0, 0x0, 0x0, 0x10, 0xca}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000001cc0)={0x20, 0x22, &(0x7f0000001740)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x9}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r6}}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @btf_id={0x18, 0x3, 0x3, 0x0, 0x4}, @call={0x85, 0x0, 0x0, 0x8}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}]}, &(0x7f0000001880)='syzkaller\x00', 0x2, 0xb1, &(0x7f00000018c0)=""/177, 0x41100, 0x24, '\x00', r3, 0x35, 0xffffffffffffffff, 0x8, &(0x7f0000001980)={0x8, 0x1}, 0x8, 0x10, 0x0, 0x0, r7, r8, 0x4, &(0x7f0000001c40)=[r1, r0, r1, r1, r0, r2, r0], &(0x7f0000001c80)=[{0x4, 0x3, 0xa, 0xc}, {0x5, 0x2, 0x5, 0x7}, {0x1, 0x2, 0x6, 0x3}, {0x0, 0x5, 0x0, 0x1}], 0x10, 0x7fff}, 0x90) (async) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001640)={0x6, 0x1e, &(0x7f0000000e40)=@raw=[@printk={@li, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x80000000}}, @ldst={0x2, 0x0, 0x1, 0xa, 0xb, 0xfffffffffffffffc, 0x1}, @generic={0x2, 0x5, 0x4, 0x5, 0x400}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xffffffff}}, @printk={@li, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x5}}, @map_idx={0x18, 0x3, 0x5, 0x0, 0x10}, @generic={0x88, 0xc, 0xa, 0x400, 0xd1a}], &(0x7f0000000f40)='GPL\x00', 0xff, 0x0, 0x0, 0x40f00, 0x66, '\x00', r3, 0x25, r5, 0x8, &(0x7f00000015c0)={0x2, 0x2}, 0x8, 0x10, &(0x7f0000001600)={0x2, 0x8, 0xff}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x90) (async) r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000011c0)=ANY=[@ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="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", @ANYRESHEX=r0], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r10 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r9}, 0x10) setuid(0x0) (async) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000080)=r9}, 0x20) (async) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000580)={'syztnl2\x00', &(0x7f00000002c0)={'syztnl2\x00', 0x0, 0xf36cdecf07c7c22, 0x0, 0x3, 0xffff, 0x10, @dev={0xfe, 0x80, '\x00', 0x40}, @private0, 0x10, 0x700, 0x2, 0x3}}) (async) r13 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0) (async) r14 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/module/snd_soc_core', 0xc00, 0x2) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000b00)={0xffffffffffffffff, r10, 0x0, 0x1, &(0x7f0000000200)='\x00', 0x0}, 0x30) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000c40)={@ifindex=r12, 0x13, 0x0, 0x6, &(0x7f0000000b40)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5, 0x0, &(0x7f0000000b80)=[0x0, 0x0], &(0x7f0000000bc0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000c00)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0}, 0x40) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000ac0)={@map=r1, r14, 0x1d, 0x18, 0x0, @link_id=0xffffffffffffffff, r17}, 0x20) (async) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000002100)={@ifindex=r16, r13, 0x8, 0x24, 0x0, @prog_id=r15, r17}, 0x20) (async) ioctl$FS_IOC_SETFLAGS(r13, 0x40086602, &(0x7f0000000380)) (async) pwritev2(r13, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x307e00}], 0x1, 0x1400, 0x0, 0x3) (async) openat$cgroup_ro(r13, &(0x7f0000000440)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x0, 0x0) (async) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000800)={0xffffffffffffffff, 0x20, &(0x7f00000007c0)={&(0x7f0000000640)=""/82, 0x52, 0x0, &(0x7f00000006c0)=""/206, 0xce}}, 0x10) (async) r19 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000840)={0x1b, 0x0, 0x0, 0x6, 0x0, r0, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x1c, 0xe, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x10001}, [@exit, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r11}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @call={0x85, 0x0, 0x0, 0x75}]}, &(0x7f0000000280)='syzkaller\x00', 0x1000, 0x7c, &(0x7f00000003c0)=""/124, 0x40f00, 0x4, '\x00', r12, 0x0, r13, 0x8, 0x0, 0x0, 0x10, &(0x7f00000005c0)={0x1, 0x5, 0x1a, 0x6}, 0x10, r18, 0xffffffffffffffff, 0x4, &(0x7f00000008c0)=[r0, r19], &(0x7f0000000900)=[{0x3, 0x2, 0x3, 0x8}, {0x2, 0x4, 0x6, 0x9}, {0x0, 0x4, 0x3, 0x2}, {0x2, 0x1, 0x3, 0xa}], 0x10, 0x3}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a80)={{r11}, &(0x7f0000000a00), &(0x7f0000000a40)=r14}, 0x20) (async) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r19, 0x89f3, &(0x7f0000000d40)={'ip6gre0\x00', &(0x7f0000000cc0)={'syztnl1\x00', r12, 0x2f, 0x1f, 0x7, 0x687, 0x4, @private1, @mcast2, 0x8000, 0x89, 0x0, 0x4}}) 08:48:34 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1100000000000000, 0x0, 0x0}, 0x58) [ 2325.145421][T18042] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2325.153732][T18042] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2325.161907][T18042] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2325.169712][T18042] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2325.177603][T18042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2325.185417][T18042] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2325.193315][T18042] 08:48:34 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1f00000000000000, 0x0, 0x0}, 0x58) [ 2325.237909][T18075] FAULT_INJECTION: forcing a failure. [ 2325.237909][T18075] name failslab, interval 1, probability 0, space 0, times 0 [ 2325.251656][T18077] loop0: detected capacity change from 0 to 128 [ 2325.266569][T18075] CPU: 0 PID: 18075 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2325.276728][T18075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2325.286708][T18075] Call Trace: [ 2325.289838][T18075] [ 2325.292607][T18075] dump_stack_lvl+0x151/0x1b7 [ 2325.297121][T18075] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2325.302598][T18075] dump_stack+0x15/0x17 [ 2325.306582][T18075] should_fail+0x3c6/0x510 [ 2325.310833][T18075] __should_failslab+0xa4/0xe0 [ 2325.315435][T18075] ? vm_area_dup+0x26/0x230 [ 2325.319779][T18075] should_failslab+0x9/0x20 [ 2325.324140][T18075] slab_pre_alloc_hook+0x37/0xd0 [ 2325.328889][T18075] ? vm_area_dup+0x26/0x230 [ 2325.333229][T18075] kmem_cache_alloc+0x44/0x200 [ 2325.337832][T18075] vm_area_dup+0x26/0x230 [ 2325.341999][T18075] copy_mm+0x9a1/0x13e0 [ 2325.346021][T18075] ? copy_signal+0x610/0x610 [ 2325.350421][T18075] ? __init_rwsem+0xd6/0x1c0 [ 2325.354838][T18075] ? copy_signal+0x4e3/0x610 [ 2325.359273][T18075] copy_process+0x1149/0x3290 [ 2325.363782][T18075] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2325.368730][T18075] ? copy_clone_args_from_user+0x744/0x830 [ 2325.374368][T18075] kernel_clone+0x21e/0x9e0 [ 2325.378715][T18075] ? __delayed_free_task+0x20/0x20 [ 2325.383653][T18075] ? create_io_thread+0x1e0/0x1e0 [ 2325.388514][T18075] __x64_sys_clone3+0x376/0x3a0 [ 2325.393334][T18075] ? __ia32_sys_clone+0x290/0x290 [ 2325.398189][T18075] ? fput+0x1a/0x20 [ 2325.401838][T18075] ? debug_smp_processor_id+0x17/0x20 [ 2325.407041][T18075] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2325.412941][T18075] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2325.418415][T18075] do_syscall_64+0x3d/0xb0 [ 2325.422663][T18075] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2325.428389][T18075] RIP: 0033:0x7fe6f3145da9 [ 2325.432643][T18075] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2325.452169][T18075] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2325.460418][T18075] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2325.468230][T18075] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2325.476038][T18075] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 08:48:34 executing program 2: syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() r0 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r0, @ANYRESHEX=r0, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$eJzs3d9rXFkdAPDvvclk0zZrZlVkXXB3cVfSRTuTbNxtEGkriD4V1PoeYzIJIZNMyExqE4qm+AcIIir45JMvgn+AIP0TRCjou6gooq0+aq/MzI02yUwyNZNMd/L5wMk95/76nnPJnLl37uHeAC6sNyPiVkSMRMQ7ETGZz0/zNN8s7LXXe/L4/mIzJZFld/6WRJLP299XszwaEVfam8R4RHztyxHfTI7Gre/sri1Uq5WtvFxurG+W6zu711bXF1YqK5WN2dmZ9+euz703N53lTtXOYkTc+OKffvi9n33pxq8+863fz//l6reb1fr8x9r1jojFUwXoor3vQutY7Gseo62zCDYAI3l7CiODrgkAAL1onuN/OCI+2Tr/n4yR1tkcAAAAMEyymxPxryQiAwAAAIZWGhETkaSlfCzARKRpqdQew/vRuJxWa/XGp5dr2xtLzWURxSiky6vVynQ+VrgYhaRZnsnH2O6X3z1Uno2IVyLiB5OXWuXSYq26NOgfPwAAAOCCuPLGwev/f06mrTwAAAAwZIpdCwAAAMCwcMkPAAAAw8/1PwAAAAy1r9y+3UzZ/nu8l+7ubK/V7l5bqtTXSuvbi6XF2tZmaaVWW2k9s2/9pP1Va7XNz8bG9r1yo1JvlOs7u/Prte2NxvzqgVdgAwAAAOfolTce/i6JiL3PXWqlyJ8DCHDAHwddAaCfRgZdAWBgRgddAWBgCieuoYeAYZecsLzr4J1f978uAADA2Zj6+NH7/2P5spN/GwA+yIz1AYCLx909uLgKRgDChfeh9uSlbstPf/8/y567UgAAQF9NtFKSlvJ7gRORpqVSxMut1wIUkuXVamU6vz747WThpWZ5prVlcuKYYQAAAAAAAAAAAAAAAAAAAAAAAACgLcuSyAAAAIChFpH+OWk9zT9iavLtiYO/Dhx669dP7vzo3kKjsTUTMZb8fbI5aywiGj/O57+beSUAAAAAvADa1+n5dGbQtQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABg2Dx5fH9xP51n3L9+ISKKneKPxnhrOh6FiLj8jyRGn9kuiYiRPsTfexARr3aKn8TTLMuKeS06xb90xvGLrUPTOX4aEVf6EB8usofN/udWp89fGm+2pp0/f6N5Oq3u/V/63/5vpEv/83KPMV579Ity1/gPIl4b7dz/7MdP2vGTOBT/rR7jf+Pru7vdlmU/jZjq+P2THIhVbqxvlus7u9dW1xdWKiuVjdnZmffnrs+9NzddXl6tVvK/HWN8/xO/fHpc+y93iV882P4jx//tHtv/70f3Hn+knS10in/1rc7fv692iZ/m332fyvPN5VP7+b12/lmv//w3rx/X/qUu7R8/of1Xe2z/O1/97h96XBUAOAf1nd21hWq1snVMZryHdc45c/PFqIZMvzLZd9r/j6fbzyk3P5LJTrP5aPShGmPP8Tntb2aQvRIAAHAW/nfSP+iaAAAAAAAAAAAAAAAAAAAAwMX1fz4hbDwiel75cMy9wTQVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBY/wkAAP//E77WGg==") r1 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r1}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200)) 08:48:34 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2000000000000000, 0x0, 0x0}, 0x58) 08:48:34 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00', 0x0}) r4 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000100)=0xffffffffffffffff, 0x4) r5 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000002c0)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x80f5, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1, 0x2fd}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x19, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffff7, 0x0, 0x0, 0x0, 0x3}, [@alu={0x4, 0x1, 0x6, 0x4, 0x0, 0xfffffffffffffffc, 0x8}]}, &(0x7f0000000080)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41000, 0x4, '\x00', r3, 0xc, r4, 0x8, &(0x7f0000000140)={0x5, 0x3}, 0x8, 0x10, &(0x7f0000000280)={0x1, 0x0, 0x9}, 0x10, 0x0, r2, 0x0, &(0x7f00000003c0)=[r0, r1, r0, r5, r0, r1], 0x0, 0x10, 0x8}, 0x90) setuid(0x0) 08:48:35 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4000000000000000, 0x0, 0x0}, 0x58) 08:48:35 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 47) 08:48:35 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00', 0x0}) r4 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000100)=0xffffffffffffffff, 0x4) r5 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000002c0)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x80f5, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1, 0x2fd}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x19, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffff7, 0x0, 0x0, 0x0, 0x3}, [@alu={0x4, 0x1, 0x6, 0x4, 0x0, 0xfffffffffffffffc, 0x8}]}, &(0x7f0000000080)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41000, 0x4, '\x00', r3, 0xc, r4, 0x8, &(0x7f0000000140)={0x5, 0x3}, 0x8, 0x10, &(0x7f0000000280)={0x1, 0x0, 0x9}, 0x10, 0x0, r2, 0x0, &(0x7f00000003c0)=[r0, r1, r0, r5, r0, r1], 0x0, 0x10, 0x8}, 0x90) setuid(0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) (async) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) (async) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000100)=0xffffffffffffffff, 0x4) (async) bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000002c0)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x80f5, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1, 0x2fd}, 0x48) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x19, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffff7, 0x0, 0x0, 0x0, 0x3}, [@alu={0x4, 0x1, 0x6, 0x4, 0x0, 0xfffffffffffffffc, 0x8}]}, &(0x7f0000000080)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41000, 0x4, '\x00', r3, 0xc, r4, 0x8, &(0x7f0000000140)={0x5, 0x3}, 0x8, 0x10, &(0x7f0000000280)={0x1, 0x0, 0x9}, 0x10, 0x0, r2, 0x0, &(0x7f00000003c0)=[r0, r1, r0, r5, r0, r1], 0x0, 0x10, 0x8}, 0x90) (async) setuid(0x0) (async) 08:48:35 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf5ffffff00000000, 0x0, 0x0}, 0x58) [ 2325.483849][T18075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2325.491662][T18075] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2325.499485][T18075] 08:48:35 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00', 0x0}) r4 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000100)=0xffffffffffffffff, 0x4) bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000002c0)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x80f5, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1, 0x2fd}, 0x48) (async) r5 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000002c0)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x80f5, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1, 0x2fd}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x19, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffff7, 0x0, 0x0, 0x0, 0x3}, [@alu={0x4, 0x1, 0x6, 0x4, 0x0, 0xfffffffffffffffc, 0x8}]}, &(0x7f0000000080)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41000, 0x4, '\x00', r3, 0xc, r4, 0x8, &(0x7f0000000140)={0x5, 0x3}, 0x8, 0x10, &(0x7f0000000280)={0x1, 0x0, 0x9}, 0x10, 0x0, r2, 0x0, &(0x7f00000003c0)=[r0, r1, r0, r5, r0, r1], 0x0, 0x10, 0x8}, 0x90) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x19, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffff7, 0x0, 0x0, 0x0, 0x3}, [@alu={0x4, 0x1, 0x6, 0x4, 0x0, 0xfffffffffffffffc, 0x8}]}, &(0x7f0000000080)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41000, 0x4, '\x00', r3, 0xc, r4, 0x8, &(0x7f0000000140)={0x5, 0x3}, 0x8, 0x10, &(0x7f0000000280)={0x1, 0x0, 0x9}, 0x10, 0x0, r2, 0x0, &(0x7f00000003c0)=[r0, r1, r0, r5, r0, r1], 0x0, 0x10, 0x8}, 0x90) setuid(0x0) (async) setuid(0x0) 08:48:35 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xfbffffff00000000, 0x0, 0x0}, 0x58) [ 2325.546460][T18104] loop2: detected capacity change from 0 to 128 [ 2325.547234][T18105] FAULT_INJECTION: forcing a failure. [ 2325.547234][T18105] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2325.596452][T18105] CPU: 1 PID: 18105 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2325.606613][T18105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2325.616506][T18105] Call Trace: [ 2325.619631][T18105] [ 2325.622408][T18105] dump_stack_lvl+0x151/0x1b7 [ 2325.626922][T18105] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2325.632392][T18105] dump_stack+0x15/0x17 [ 2325.636386][T18105] should_fail+0x3c6/0x510 [ 2325.640636][T18105] should_fail_alloc_page+0x5a/0x80 [ 2325.645667][T18105] prepare_alloc_pages+0x15c/0x700 [ 2325.650617][T18105] ? __alloc_pages_bulk+0xe40/0xe40 [ 2325.655656][T18105] __alloc_pages+0x18c/0x8f0 [ 2325.660077][T18105] ? prep_new_page+0x110/0x110 [ 2325.664674][T18105] ? __alloc_pages+0x27e/0x8f0 [ 2325.669277][T18105] ? __kasan_check_write+0x14/0x20 [ 2325.674233][T18105] ? _raw_spin_lock+0xa4/0x1b0 [ 2325.678829][T18105] pte_alloc_one+0x73/0x1b0 [ 2325.683163][T18105] ? pfn_modify_allowed+0x2f0/0x2f0 [ 2325.688206][T18105] ? __pmd_alloc+0x48d/0x550 [ 2325.692627][T18105] __pte_alloc+0x86/0x350 [ 2325.696792][T18105] ? __pud_alloc+0x260/0x260 [ 2325.701218][T18105] ? __pud_alloc+0x213/0x260 [ 2325.705642][T18105] ? free_pgtables+0x280/0x280 [ 2325.710242][T18105] ? do_handle_mm_fault+0x2330/0x2330 [ 2325.715455][T18105] ? __stack_depot_save+0x34/0x470 [ 2325.720398][T18105] ? anon_vma_clone+0x9a/0x500 [ 2325.724998][T18105] copy_page_range+0x28a8/0x2f90 [ 2325.729943][T18105] ? __kasan_slab_alloc+0xb1/0xe0 [ 2325.734803][T18105] ? slab_post_alloc_hook+0x53/0x2c0 [ 2325.740015][T18105] ? kernel_clone+0x21e/0x9e0 [ 2325.744531][T18105] ? do_syscall_64+0x3d/0xb0 [ 2325.748952][T18105] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2325.754857][T18105] ? pfn_valid+0x1e0/0x1e0 [ 2325.759107][T18105] ? rwsem_write_trylock+0x15b/0x290 [ 2325.764227][T18105] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 2325.770475][T18105] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 2325.776030][T18105] ? __rb_insert_augmented+0x5de/0x610 [ 2325.781339][T18105] copy_mm+0xc7e/0x13e0 [ 2325.785329][T18105] ? copy_signal+0x610/0x610 [ 2325.789744][T18105] ? __init_rwsem+0xd6/0x1c0 [ 2325.794171][T18105] ? copy_signal+0x4e3/0x610 [ 2325.798599][T18105] copy_process+0x1149/0x3290 [ 2325.803114][T18105] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2325.808065][T18105] ? copy_clone_args_from_user+0x744/0x830 [ 2325.813700][T18105] kernel_clone+0x21e/0x9e0 [ 2325.818039][T18105] ? __delayed_free_task+0x20/0x20 [ 2325.822989][T18105] ? create_io_thread+0x1e0/0x1e0 [ 2325.827848][T18105] __x64_sys_clone3+0x376/0x3a0 [ 2325.832533][T18105] ? __ia32_sys_clone+0x290/0x290 [ 2325.837568][T18105] ? bpf_trace_run2+0xf1/0x210 [ 2325.842255][T18105] ? fput+0x1a/0x20 [ 2325.845905][T18105] ? __bpf_trace_sys_enter+0x62/0x70 [ 2325.851019][T18105] ? syscall_enter_from_user_mode+0x14d/0x1b0 [ 2325.856931][T18105] do_syscall_64+0x3d/0xb0 [ 2325.861176][T18105] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2325.866915][T18105] RIP: 0033:0x7fe6f3145da9 [ 2325.871159][T18105] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 08:48:35 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xff0f010000000000, 0x0, 0x0}, 0x58) 08:48:35 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/block/ram4', 0x2001, 0x42) r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000001900)=ANY=[@ANYBLOB="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"], &(0x7f0000001580)=""/178, 0xe3, 0xb2, 0x0, 0x7f}, 0x20) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000001700)={0xffffffffffffffff, 0x20, &(0x7f0000000300)={&(0x7f0000000380)=""/113, 0x71, 0x0, &(0x7f0000001640)=""/156, 0x9c}}, 0x10) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001740)='/proc/timer_list\x00', 0x0, 0x0) r7 = openat$zero(0xffffffffffffff9c, &(0x7f0000001780), 0x210080, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000001840)={0x11, 0x6, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffa, 0x0, 0x0, 0x0, 0x6}, [@map_idx_val={0x18, 0x8, 0x6, 0x0, 0xa, 0x0, 0x0, 0x0, 0xffffffff}, @call={0x85, 0x0, 0x0, 0x75}]}, &(0x7f0000000140)='GPL\x00', 0x6, 0x0, 0x0, 0x40f00, 0x12, '\x00', 0x0, 0x5, r4, 0x8, &(0x7f00000001c0)={0x8, 0x3}, 0x8, 0x10, &(0x7f00000002c0)={0x4, 0xf, 0x4, 0x10000}, 0x10, r5, 0xffffffffffffffff, 0x2, &(0x7f00000017c0)=[r6, r7], &(0x7f0000001800)=[{0x4, 0x1, 0x6, 0x8}, {0x0, 0x5, 0x3, 0xa}]}, 0x90) r8 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000002c0), 0x240000, 0x0) pipe(&(0x7f0000000580)) r9 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000300)={0xffffffffffffffff, 0xfffffffc, 0x18}, 0xc) bpf$PROG_LOAD(0x5, &(0x7f0000001640)={0x2, 0x11, &(0x7f0000000080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x2}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [@map_idx_val={0x18, 0x3, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x4}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000140)='syzkaller\x00', 0x4, 0x1000, &(0x7f0000000640)=""/4096, 0x41100, 0xe, '\x00', 0x0, 0x10, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x6, 0x4}, 0x8, 0x10, 0x0, 0x0, r5, r2, 0x7, &(0x7f00000003c0)=[r1, r8, r9, r1], &(0x7f0000000400)=[{0x5, 0x5, 0x0, 0x9}, {0x3, 0x4, 0xa, 0x7}, {0x0, 0x3, 0xf, 0x6}, {0x0, 0x3, 0x8, 0x8}, {0x3, 0x5, 0xd, 0x2}, {0x1, 0x1, 0xd}, {0x5, 0x2, 0x6, 0xc}], 0x10, 0x4}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) setuid(0x0) [ 2325.890598][T18105] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2325.898857][T18105] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2325.906653][T18105] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2325.914638][T18105] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2325.922451][T18105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2325.930261][T18105] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2325.938163][T18105] 08:48:35 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xffffffffa002a000, 0x0, 0x0}, 0x58) 08:48:35 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x58) 08:48:35 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/block/ram4', 0x2001, 0x42) r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000001900)=ANY=[@ANYBLOB="9feb01001800000000000000c4000000c400000007000000020000000000000700000000070000000000000b030000000000000000000002040000000c00000002000006040000000a0000000500000007000000000001000000000000000003000000000100000004000000050000000000000000000003000000000100000001000000080000000f0000000300010000050000000700000005000000030000000a0000000200f8ff06000000040000000000000a00000000060000000000000b03000000030000000000000b00000000005f5f5f305f0000000000000000000000008a92a262406dd0f46921b40f2bc40f415a71f942819556c20b2013aa6ef896694de8fe1a8cc01e9986"], &(0x7f0000001580)=""/178, 0xe3, 0xb2, 0x0, 0x7f}, 0x20) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000001700)={0xffffffffffffffff, 0x20, &(0x7f0000000300)={&(0x7f0000000380)=""/113, 0x71, 0x0, &(0x7f0000001640)=""/156, 0x9c}}, 0x10) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001740)='/proc/timer_list\x00', 0x0, 0x0) r7 = openat$zero(0xffffffffffffff9c, &(0x7f0000001780), 0x210080, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000001840)={0x11, 0x6, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffa, 0x0, 0x0, 0x0, 0x6}, [@map_idx_val={0x18, 0x8, 0x6, 0x0, 0xa, 0x0, 0x0, 0x0, 0xffffffff}, @call={0x85, 0x0, 0x0, 0x75}]}, &(0x7f0000000140)='GPL\x00', 0x6, 0x0, 0x0, 0x40f00, 0x12, '\x00', 0x0, 0x5, r4, 0x8, &(0x7f00000001c0)={0x8, 0x3}, 0x8, 0x10, &(0x7f00000002c0)={0x4, 0xf, 0x4, 0x10000}, 0x10, r5, 0xffffffffffffffff, 0x2, &(0x7f00000017c0)=[r6, r7], &(0x7f0000001800)=[{0x4, 0x1, 0x6, 0x8}, {0x0, 0x5, 0x3, 0xa}]}, 0x90) r8 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000002c0), 0x240000, 0x0) pipe(&(0x7f0000000580)) r9 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000300)={0xffffffffffffffff, 0xfffffffc, 0x18}, 0xc) bpf$PROG_LOAD(0x5, &(0x7f0000001640)={0x2, 0x11, &(0x7f0000000080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x2}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [@map_idx_val={0x18, 0x3, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x4}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000140)='syzkaller\x00', 0x4, 0x1000, &(0x7f0000000640)=""/4096, 0x41100, 0xe, '\x00', 0x0, 0x10, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x6, 0x4}, 0x8, 0x10, 0x0, 0x0, r5, r2, 0x7, &(0x7f00000003c0)=[r1, r8, r9, r1], &(0x7f0000000400)=[{0x5, 0x5, 0x0, 0x9}, {0x3, 0x4, 0xa, 0x7}, {0x0, 0x3, 0xf, 0x6}, {0x0, 0x3, 0x8, 0x8}, {0x3, 0x5, 0xd, 0x2}, {0x1, 0x1, 0xd}, {0x5, 0x2, 0x6, 0xc}], 0x10, 0x4}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) setuid(0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/block/ram4', 0x2001, 0x42) (async) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000001900)=ANY=[@ANYBLOB="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"], &(0x7f0000001580)=""/178, 0xe3, 0xb2, 0x0, 0x7f}, 0x20) (async) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000001700)={0xffffffffffffffff, 0x20, &(0x7f0000000300)={&(0x7f0000000380)=""/113, 0x71, 0x0, &(0x7f0000001640)=""/156, 0x9c}}, 0x10) (async) openat$procfs(0xffffffffffffff9c, &(0x7f0000001740)='/proc/timer_list\x00', 0x0, 0x0) (async) openat$zero(0xffffffffffffff9c, &(0x7f0000001780), 0x210080, 0x0) (async) bpf$PROG_LOAD(0x5, &(0x7f0000001840)={0x11, 0x6, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffa, 0x0, 0x0, 0x0, 0x6}, [@map_idx_val={0x18, 0x8, 0x6, 0x0, 0xa, 0x0, 0x0, 0x0, 0xffffffff}, @call={0x85, 0x0, 0x0, 0x75}]}, &(0x7f0000000140)='GPL\x00', 0x6, 0x0, 0x0, 0x40f00, 0x12, '\x00', 0x0, 0x5, r4, 0x8, &(0x7f00000001c0)={0x8, 0x3}, 0x8, 0x10, &(0x7f00000002c0)={0x4, 0xf, 0x4, 0x10000}, 0x10, r5, 0xffffffffffffffff, 0x2, &(0x7f00000017c0)=[r6, r7], &(0x7f0000001800)=[{0x4, 0x1, 0x6, 0x8}, {0x0, 0x5, 0x3, 0xa}]}, 0x90) (async) openat$vcsu(0xffffffffffffff9c, &(0x7f00000002c0), 0x240000, 0x0) (async) pipe(&(0x7f0000000580)) (async) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000300)={0xffffffffffffffff, 0xfffffffc, 0x18}, 0xc) (async) bpf$PROG_LOAD(0x5, &(0x7f0000001640)={0x2, 0x11, &(0x7f0000000080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x2}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [@map_idx_val={0x18, 0x3, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x4}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000140)='syzkaller\x00', 0x4, 0x1000, &(0x7f0000000640)=""/4096, 0x41100, 0xe, '\x00', 0x0, 0x10, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x6, 0x4}, 0x8, 0x10, 0x0, 0x0, r5, r2, 0x7, &(0x7f00000003c0)=[r1, r8, r9, r1], &(0x7f0000000400)=[{0x5, 0x5, 0x0, 0x9}, {0x3, 0x4, 0xa, 0x7}, {0x0, 0x3, 0xf, 0x6}, {0x0, 0x3, 0x8, 0x8}, {0x3, 0x5, 0xd, 0x2}, {0x1, 0x1, 0xd}, {0x5, 0x2, 0x6, 0xc}], 0x10, 0x4}, 0x90) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) (async) setuid(0x0) (async) 08:48:35 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x58) 08:48:35 executing program 3: bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) (async) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/block/ram4', 0x2001, 0x42) (async) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/block/ram4', 0x2001, 0x42) r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000001900)=ANY=[@ANYBLOB="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"], &(0x7f0000001580)=""/178, 0xe3, 0xb2, 0x0, 0x7f}, 0x20) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000001700)={0xffffffffffffffff, 0x20, &(0x7f0000000300)={&(0x7f0000000380)=""/113, 0x71, 0x0, &(0x7f0000001640)=""/156, 0x9c}}, 0x10) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001740)='/proc/timer_list\x00', 0x0, 0x0) r7 = openat$zero(0xffffffffffffff9c, &(0x7f0000001780), 0x210080, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000001840)={0x11, 0x6, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffa, 0x0, 0x0, 0x0, 0x6}, [@map_idx_val={0x18, 0x8, 0x6, 0x0, 0xa, 0x0, 0x0, 0x0, 0xffffffff}, @call={0x85, 0x0, 0x0, 0x75}]}, &(0x7f0000000140)='GPL\x00', 0x6, 0x0, 0x0, 0x40f00, 0x12, '\x00', 0x0, 0x5, r4, 0x8, &(0x7f00000001c0)={0x8, 0x3}, 0x8, 0x10, &(0x7f00000002c0)={0x4, 0xf, 0x4, 0x10000}, 0x10, r5, 0xffffffffffffffff, 0x2, &(0x7f00000017c0)=[r6, r7], &(0x7f0000001800)=[{0x4, 0x1, 0x6, 0x8}, {0x0, 0x5, 0x3, 0xa}]}, 0x90) openat$vcsu(0xffffffffffffff9c, &(0x7f00000002c0), 0x240000, 0x0) (async) r8 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000002c0), 0x240000, 0x0) pipe(&(0x7f0000000580)) r9 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000300)={0xffffffffffffffff, 0xfffffffc, 0x18}, 0xc) bpf$PROG_LOAD(0x5, &(0x7f0000001640)={0x2, 0x11, &(0x7f0000000080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x2}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [@map_idx_val={0x18, 0x3, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x4}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000140)='syzkaller\x00', 0x4, 0x1000, &(0x7f0000000640)=""/4096, 0x41100, 0xe, '\x00', 0x0, 0x10, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x6, 0x4}, 0x8, 0x10, 0x0, 0x0, r5, r2, 0x7, &(0x7f00000003c0)=[r1, r8, r9, r1], &(0x7f0000000400)=[{0x5, 0x5, 0x0, 0x9}, {0x3, 0x4, 0xa, 0x7}, {0x0, 0x3, 0xf, 0x6}, {0x0, 0x3, 0x8, 0x8}, {0x3, 0x5, 0xd, 0x2}, {0x1, 0x1, 0xd}, {0x5, 0x2, 0x6, 0xc}], 0x10, 0x4}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) setuid(0x0) (async) setuid(0x0) 08:48:35 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x58) 08:48:35 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x58) 08:48:35 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095", @ANYRES32=r0], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) setuid(0x0) 08:48:35 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 48) 08:48:35 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095", @ANYRES32=r0], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) (async) setuid(0x0) 08:48:35 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = open(0x0, 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f000000df80)) fstat(r0, &(0x7f000000dfc0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() statx(r0, &(0x7f000000e180)='./file0\x00', 0x1000, 0x80, &(0x7f000000e1c0)) r2 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r3 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r3}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r4, 0x0, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200)) 08:48:35 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x58) 08:48:35 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095", @ANYRES32=r0], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) setuid(0x0) 08:48:35 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x58) [ 2326.272576][T18151] FAULT_INJECTION: forcing a failure. [ 2326.272576][T18151] name failslab, interval 1, probability 0, space 0, times 0 [ 2326.290381][T18151] CPU: 0 PID: 18151 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2326.300552][T18151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2326.310448][T18151] Call Trace: [ 2326.313573][T18151] [ 2326.316346][T18151] dump_stack_lvl+0x151/0x1b7 [ 2326.320857][T18151] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2326.326325][T18151] dump_stack+0x15/0x17 [ 2326.330322][T18151] should_fail+0x3c6/0x510 [ 2326.334571][T18151] __should_failslab+0xa4/0xe0 [ 2326.339174][T18151] ? vm_area_dup+0x26/0x230 [ 2326.343511][T18151] should_failslab+0x9/0x20 [ 2326.347850][T18151] slab_pre_alloc_hook+0x37/0xd0 [ 2326.352626][T18151] ? vm_area_dup+0x26/0x230 [ 2326.356965][T18151] kmem_cache_alloc+0x44/0x200 [ 2326.361563][T18151] vm_area_dup+0x26/0x230 [ 2326.365730][T18151] copy_mm+0x9a1/0x13e0 [ 2326.369722][T18151] ? copy_signal+0x610/0x610 [ 2326.374146][T18151] ? __init_rwsem+0xd6/0x1c0 [ 2326.378573][T18151] ? copy_signal+0x4e3/0x610 [ 2326.383002][T18151] copy_process+0x1149/0x3290 [ 2326.387514][T18151] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2326.392460][T18151] ? copy_clone_args_from_user+0x744/0x830 [ 2326.398106][T18151] kernel_clone+0x21e/0x9e0 [ 2326.402445][T18151] ? __delayed_free_task+0x20/0x20 [ 2326.407390][T18151] ? create_io_thread+0x1e0/0x1e0 [ 2326.412261][T18151] __x64_sys_clone3+0x376/0x3a0 [ 2326.416957][T18151] ? __ia32_sys_clone+0x290/0x290 [ 2326.421820][T18151] ? fput+0x1a/0x20 [ 2326.425445][T18151] ? debug_smp_processor_id+0x17/0x20 [ 2326.430652][T18151] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2326.436555][T18151] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2326.442025][T18151] do_syscall_64+0x3d/0xb0 [ 2326.446276][T18151] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2326.452002][T18151] RIP: 0033:0x7fe6f3145da9 [ 2326.456255][T18151] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2326.475699][T18151] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2326.483942][T18151] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2326.491750][T18151] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2326.499561][T18151] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2326.507373][T18151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2326.515186][T18151] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 08:48:36 executing program 3: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{0x1, 0xffffffffffffffff}, &(0x7f0000000000), &(0x7f00000001c0)}, 0x20) getpeername$packet(0xffffffffffffffff, &(0x7f0000000400)={0x11, 0x0, 0x0}, &(0x7f0000000440)=0x14) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_type(r3, &(0x7f0000000000), 0x248800) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000800)={0xffffffffffffffff, 0x20, &(0x7f00000007c0)={&(0x7f0000000640)=""/67, 0x43, 0x0, &(0x7f00000006c0)=""/255, 0xff}}, 0x10) r5 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x141842, 0x0) sendmsg$unix(r5, &(0x7f0000000400)={&(0x7f0000000300)=@abs, 0x6e, &(0x7f00000003c0)=[{0x0}], 0x1, 0x0, 0x0, 0x20000841}, 0x40000) bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x1e, 0x16, &(0x7f0000000240)=@raw=[@generic={0xff, 0x7, 0x6, 0x8000, 0x7}, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0x10, 0x0, 0x0, 0x0, 0x800}, @jmp={0x5, 0x0, 0xa, 0x8, 0x2, 0x0, 0x10}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}}], &(0x7f0000000300)='GPL\x00', 0xffffffff, 0x8c, &(0x7f0000000340)=""/140, 0x40f00, 0x0, '\x00', r2, 0x27, r3, 0x8, &(0x7f0000000580)={0x9, 0x5}, 0x8, 0x10, &(0x7f00000005c0)={0x0, 0xd, 0x80000001, 0x8}, 0x10, r4, r5, 0x5, &(0x7f0000000840)=[r0, r0], &(0x7f0000000880)=[{0x0, 0x4, 0x0, 0x9}, {0x3, 0x3, 0xd, 0x5476a5f0bff8e67}, {0x4, 0x4, 0x6, 0xa}, {0x3, 0x1, 0x5, 0xa}, {0x4, 0x5, 0x5, 0x9}], 0x10, 0x3}, 0x90) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000004000b708000000008af8ff00000000b7080000000000007b8af0ff00050000bfa100000000000007010000f8ffffffbfa40000f0ffffffb7020000000000001823ee0b000000000000000097a48db423edd5005dc9463f494bddd3ef8c240d9d", @ANYRES32, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r6}, 0x10) setuid(0x0) 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x70}, 0x58) [ 2326.523001][T18151] 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x700}, 0x58) 08:48:36 executing program 3: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4) (async) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{0x1, 0xffffffffffffffff}, &(0x7f0000000000), &(0x7f00000001c0)}, 0x20) getpeername$packet(0xffffffffffffffff, &(0x7f0000000400)={0x11, 0x0, 0x0}, &(0x7f0000000440)=0x14) (async) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_type(r3, &(0x7f0000000000), 0x248800) (async) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000800)={0xffffffffffffffff, 0x20, &(0x7f00000007c0)={&(0x7f0000000640)=""/67, 0x43, 0x0, &(0x7f00000006c0)=""/255, 0xff}}, 0x10) (async, rerun: 64) r5 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x141842, 0x0) (rerun: 64) sendmsg$unix(r5, &(0x7f0000000400)={&(0x7f0000000300)=@abs, 0x6e, &(0x7f00000003c0)=[{0x0}], 0x1, 0x0, 0x0, 0x20000841}, 0x40000) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x1e, 0x16, &(0x7f0000000240)=@raw=[@generic={0xff, 0x7, 0x6, 0x8000, 0x7}, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0x10, 0x0, 0x0, 0x0, 0x800}, @jmp={0x5, 0x0, 0xa, 0x8, 0x2, 0x0, 0x10}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}}], &(0x7f0000000300)='GPL\x00', 0xffffffff, 0x8c, &(0x7f0000000340)=""/140, 0x40f00, 0x0, '\x00', r2, 0x27, r3, 0x8, &(0x7f0000000580)={0x9, 0x5}, 0x8, 0x10, &(0x7f00000005c0)={0x0, 0xd, 0x80000001, 0x8}, 0x10, r4, r5, 0x5, &(0x7f0000000840)=[r0, r0], &(0x7f0000000880)=[{0x0, 0x4, 0x0, 0x9}, {0x3, 0x3, 0xd, 0x5476a5f0bff8e67}, {0x4, 0x4, 0x6, 0xa}, {0x3, 0x1, 0x5, 0xa}, {0x4, 0x5, 0x5, 0x9}], 0x10, 0x3}, 0x90) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000004000b708000000008af8ff00000000b7080000000000007b8af0ff00050000bfa100000000000007010000f8ffffffbfa40000f0ffffffb7020000000000001823ee0b000000000000000097a48db423edd5005dc9463f494bddd3ef8c240d9d", @ANYRES32, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r6}, 0x10) (async, rerun: 64) setuid(0x0) (rerun: 64) 08:48:36 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 49) 08:48:36 executing program 3: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4) (async) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{0x1, 0xffffffffffffffff}, &(0x7f0000000000), &(0x7f00000001c0)}, 0x20) getpeername$packet(0xffffffffffffffff, &(0x7f0000000400)={0x11, 0x0, 0x0}, &(0x7f0000000440)=0x14) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_type(r3, &(0x7f0000000000), 0x248800) (async) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000800)={0xffffffffffffffff, 0x20, &(0x7f00000007c0)={&(0x7f0000000640)=""/67, 0x43, 0x0, &(0x7f00000006c0)=""/255, 0xff}}, 0x10) r5 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x141842, 0x0) sendmsg$unix(r5, &(0x7f0000000400)={&(0x7f0000000300)=@abs, 0x6e, &(0x7f00000003c0)=[{0x0}], 0x1, 0x0, 0x0, 0x20000841}, 0x40000) bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x1e, 0x16, &(0x7f0000000240)=@raw=[@generic={0xff, 0x7, 0x6, 0x8000, 0x7}, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0x10, 0x0, 0x0, 0x0, 0x800}, @jmp={0x5, 0x0, 0xa, 0x8, 0x2, 0x0, 0x10}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}}], &(0x7f0000000300)='GPL\x00', 0xffffffff, 0x8c, &(0x7f0000000340)=""/140, 0x40f00, 0x0, '\x00', r2, 0x27, r3, 0x8, &(0x7f0000000580)={0x9, 0x5}, 0x8, 0x10, &(0x7f00000005c0)={0x0, 0xd, 0x80000001, 0x8}, 0x10, r4, r5, 0x5, &(0x7f0000000840)=[r0, r0], &(0x7f0000000880)=[{0x0, 0x4, 0x0, 0x9}, {0x3, 0x3, 0xd, 0x5476a5f0bff8e67}, {0x4, 0x4, 0x6, 0xa}, {0x3, 0x1, 0x5, 0xa}, {0x4, 0x5, 0x5, 0x9}], 0x10, 0x3}, 0x90) (async) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000004000b708000000008af8ff00000000b7080000000000007b8af0ff00050000bfa100000000000007010000f8ffffffbfa40000f0ffffffb7020000000000001823ee0b000000000000000097a48db423edd5005dc9463f494bddd3ef8c240d9d", @ANYRES32, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r6}, 0x10) (async) setuid(0x0) [ 2326.544019][T18157] loop0: detected capacity change from 0 to 128 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x900}, 0x58) [ 2326.600261][T18169] FAULT_INJECTION: forcing a failure. [ 2326.600261][T18169] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2326.619086][T18169] CPU: 0 PID: 18169 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2326.629250][T18169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2326.639145][T18169] Call Trace: [ 2326.642263][T18169] [ 2326.645043][T18169] dump_stack_lvl+0x151/0x1b7 [ 2326.649559][T18169] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2326.655117][T18169] dump_stack+0x15/0x17 [ 2326.659103][T18169] should_fail+0x3c6/0x510 [ 2326.663360][T18169] should_fail_alloc_page+0x5a/0x80 [ 2326.668390][T18169] prepare_alloc_pages+0x15c/0x700 [ 2326.673336][T18169] ? __alloc_pages+0x8f0/0x8f0 [ 2326.677942][T18169] ? __alloc_pages_bulk+0xe40/0xe40 [ 2326.682984][T18169] __alloc_pages+0x18c/0x8f0 [ 2326.687395][T18169] ? prep_new_page+0x110/0x110 [ 2326.691994][T18169] ? 0xffffffffa002a000 [ 2326.695997][T18169] ? is_bpf_text_address+0x172/0x190 [ 2326.701105][T18169] pte_alloc_one+0x73/0x1b0 [ 2326.705445][T18169] ? pfn_modify_allowed+0x2f0/0x2f0 [ 2326.710478][T18169] ? arch_stack_walk+0xf3/0x140 [ 2326.715165][T18169] __pte_alloc+0x86/0x350 [ 2326.719334][T18169] ? free_pgtables+0x280/0x280 [ 2326.723943][T18169] ? _raw_spin_lock+0xa4/0x1b0 [ 2326.728534][T18169] ? __kasan_check_write+0x14/0x20 [ 2326.733482][T18169] copy_page_range+0x28a8/0x2f90 [ 2326.738258][T18169] ? __kasan_slab_alloc+0xb1/0xe0 [ 2326.743122][T18169] ? pfn_valid+0x1e0/0x1e0 [ 2326.747372][T18169] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 2326.752923][T18169] ? __rb_insert_augmented+0x5de/0x610 [ 2326.758222][T18169] copy_mm+0xc7e/0x13e0 [ 2326.762212][T18169] ? copy_signal+0x610/0x610 [ 2326.766634][T18169] ? __init_rwsem+0xd6/0x1c0 [ 2326.771060][T18169] ? copy_signal+0x4e3/0x610 [ 2326.775495][T18169] copy_process+0x1149/0x3290 [ 2326.780020][T18169] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2326.784952][T18169] ? copy_clone_args_from_user+0x744/0x830 [ 2326.790591][T18169] kernel_clone+0x21e/0x9e0 [ 2326.794938][T18169] ? __delayed_free_task+0x20/0x20 [ 2326.799877][T18169] ? create_io_thread+0x1e0/0x1e0 [ 2326.804737][T18169] __x64_sys_clone3+0x376/0x3a0 [ 2326.809425][T18169] ? __ia32_sys_clone+0x290/0x290 [ 2326.814289][T18169] ? fput+0x1a/0x20 [ 2326.817942][T18169] ? debug_smp_processor_id+0x17/0x20 [ 2326.823140][T18169] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2326.829038][T18169] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2326.834508][T18169] do_syscall_64+0x3d/0xb0 [ 2326.838770][T18169] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2326.844489][T18169] RIP: 0033:0x7fe6f3145da9 [ 2326.848743][T18169] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2326.868182][T18169] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2326.876431][T18169] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2326.884239][T18169] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2326.892144][T18169] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 08:48:36 executing program 2: syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() r0 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r0, @ANYRESHEX=r0, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r1 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r1}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200)) 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf00}, 0x58) 08:48:36 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYRES8=r1, @ANYRES16=r1, @ANYRESHEX=r1], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x35, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) setuid(0x0) 08:48:36 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 50) 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1100}, 0x58) [ 2326.899951][T18169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2326.907761][T18169] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2326.915572][T18169] 08:48:36 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYRES8=r1, @ANYRES16=r1, @ANYRESHEX=r1], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x35, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) setuid(0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYRES8=r1, @ANYRES16=r1, @ANYRESHEX=r1], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x35, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) (async) setuid(0x0) (async) 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1f00}, 0x58) 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x58) 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x58) [ 2326.948593][T18183] FAULT_INJECTION: forcing a failure. [ 2326.948593][T18183] name failslab, interval 1, probability 0, space 0, times 0 [ 2326.970217][T18188] loop2: detected capacity change from 0 to 128 [ 2326.974752][T18183] CPU: 0 PID: 18183 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2326.986442][T18183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x7000}, 0x58) 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10fff}, 0x58) 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20010}, 0x58) 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20200}, 0x58) 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x58) [ 2326.996342][T18183] Call Trace: [ 2326.999462][T18183] [ 2327.002323][T18183] dump_stack_lvl+0x151/0x1b7 [ 2327.006839][T18183] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2327.012309][T18183] dump_stack+0x15/0x17 [ 2327.016309][T18183] should_fail+0x3c6/0x510 [ 2327.020554][T18183] __should_failslab+0xa4/0xe0 [ 2327.025152][T18183] ? vm_area_dup+0x26/0x230 [ 2327.029492][T18183] should_failslab+0x9/0x20 [ 2327.033830][T18183] slab_pre_alloc_hook+0x37/0xd0 [ 2327.038606][T18183] ? vm_area_dup+0x26/0x230 [ 2327.042943][T18183] kmem_cache_alloc+0x44/0x200 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x101000}, 0x58) 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x200000}, 0x58) 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x700000}, 0x58) [ 2327.047545][T18183] vm_area_dup+0x26/0x230 [ 2327.051712][T18183] copy_mm+0x9a1/0x13e0 [ 2327.055705][T18183] ? copy_signal+0x610/0x610 [ 2327.060136][T18183] ? __init_rwsem+0xd6/0x1c0 [ 2327.064555][T18183] ? copy_signal+0x4e3/0x610 [ 2327.068982][T18183] copy_process+0x1149/0x3290 [ 2327.073501][T18183] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2327.078443][T18183] ? copy_clone_args_from_user+0x744/0x830 [ 2327.084093][T18183] kernel_clone+0x21e/0x9e0 [ 2327.088424][T18183] ? __delayed_free_task+0x20/0x20 [ 2327.093372][T18183] ? create_io_thread+0x1e0/0x1e0 [ 2327.098233][T18183] __x64_sys_clone3+0x376/0x3a0 [ 2327.102917][T18183] ? __ia32_sys_clone+0x290/0x290 [ 2327.107781][T18183] ? fput+0x1a/0x20 [ 2327.111427][T18183] ? debug_smp_processor_id+0x17/0x20 [ 2327.116632][T18183] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2327.122533][T18183] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2327.128172][T18183] do_syscall_64+0x3d/0xb0 [ 2327.132424][T18183] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2327.138157][T18183] RIP: 0033:0x7fe6f3145da9 [ 2327.142410][T18183] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2327.161846][T18183] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2327.170088][T18183] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2327.177901][T18183] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2327.185713][T18183] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xa002a0}, 0x58) 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf0ff1f}, 0x58) 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x58) 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2000000}, 0x58) [ 2327.193523][T18183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2327.201340][T18183] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2327.209165][T18183] 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x7000000}, 0x58) 08:48:36 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYRES8=r1, @ANYRES16=r1, @ANYRESHEX=r1], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x35, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) (async) setuid(0x0) 08:48:36 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 51) 08:48:36 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = open(0x0, 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f000000df80)) fstat(r0, &(0x7f000000dfc0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() statx(r0, &(0x7f000000e180)='./file0\x00', 0x1000, 0x80, &(0x7f000000e1c0)) r2 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="ca42ad87b11bb3b2507e03129a435e7c99104f0cd507000000046f9445631055f28a4e6777e97047e5807db4996b10208d04454ea654888bf754956945961677b348d33478b3d8f70eac439f502bea81070bba59ccec17e7d182ea9fdfde2b94e826d24492db7f8983925947dc2b357943622c9feaa43512f4afed56e4010e2543166dfc76b6668c1ccb960ebeb21ae5eaaa01a65f105a20fdcdb5c20c2245eecbd4e49cbb07060000003674c0a6397ca594873755027deb77b094a29545f674e5a44c597f0473f49684719c9445839a59a09e1c1361d72b8a1dd163eecd03bd218ba880482b173bef3f91cbd40796bdeb13d63c1eadecb3dfe83f1d88b8b7fb053eed7e742bfff269a5c16070aa8b51d4538811d4de1d198d2fdcfa404fc9e6df202578e962544794e77c2425f73fcd3d0cd1d4ff004ec0754e946adff5e93ffc586126de12ee3a2b1e347cbf598c20648bf702511dd953cfd9eef7b0cf148a63cca032a3f5c2247efc16857ad98255693a11149dde8fed62623d07d357b0c1251f9c4f7492c9e5000000001c2485258e4a9f46a454427a1cdb84782846052b20554446e9b9b6d45be858bf97e390544b8e54d32db951f89f86bd455af5174c9edcd7bd4e5448cc3c2b7a5b07c20b369ba5effd8334a4b597daa76b65dece5249d08f5b66dd8c3cd9aab9fcffff5577502dc33d51ed2a25c3640cd073b7d51d12266c6079622281358c96043413eeb5938648ac8b3f8b4d38ef5331499b828a6579d5048ed27ea04e2e070f2ba16433bf79a7af308fa86e765081df9163e034dcb6505ea7890693156414a8b0d5fceb38ffe232dafc93ce08e1fbb2000000000025fb6d6cd068b59d26d3835002ec4c6700bba9e73ffe3ee7aad4834800000000000000000000d7ce5719e9a80531cc154ae62236435abb4981d2183d7b8fc26fac5484b1393d7e8d4dfb9bdcdf37c0d74e6e787888f71a28396f49a4b95f46d12ae1010c0e3185929e39dc3cee5ba6f6434199f686be319d4794efc589166434ddeda1feedd8539030f54fd0da371eec53b41fae2fd04bcac127c759", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r3 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r3}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r4, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200)) 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000000}, 0x58) 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x9000000}, 0x58) [ 2327.402081][T18228] FAULT_INJECTION: forcing a failure. [ 2327.402081][T18228] name failslab, interval 1, probability 0, space 0, times 0 [ 2327.414670][T18228] CPU: 0 PID: 18228 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2327.424813][T18228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2327.434711][T18228] Call Trace: [ 2327.437830][T18228] [ 2327.440607][T18228] dump_stack_lvl+0x151/0x1b7 [ 2327.445124][T18228] ? io_uring_drop_tctx_refs+0x190/0x190 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf000000}, 0x58) 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10000200}, 0x58) 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x11000000}, 0x58) [ 2327.450594][T18228] dump_stack+0x15/0x17 [ 2327.454583][T18228] should_fail+0x3c6/0x510 [ 2327.458843][T18228] __should_failslab+0xa4/0xe0 [ 2327.463439][T18228] ? anon_vma_fork+0xf7/0x4e0 [ 2327.467951][T18228] should_failslab+0x9/0x20 [ 2327.472287][T18228] slab_pre_alloc_hook+0x37/0xd0 [ 2327.477067][T18228] ? anon_vma_fork+0xf7/0x4e0 [ 2327.481586][T18228] kmem_cache_alloc+0x44/0x200 [ 2327.486260][T18228] anon_vma_fork+0xf7/0x4e0 [ 2327.490602][T18228] ? anon_vma_name+0x4c/0x70 [ 2327.495030][T18228] ? vm_area_dup+0x17a/0x230 08:48:36 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1f000000}, 0x58) 08:48:37 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1ffff000}, 0x58) [ 2327.499457][T18228] copy_mm+0xa3a/0x13e0 [ 2327.503457][T18228] ? copy_signal+0x610/0x610 [ 2327.508044][T18228] ? __init_rwsem+0xd6/0x1c0 [ 2327.512471][T18228] ? copy_signal+0x4e3/0x610 [ 2327.516899][T18228] copy_process+0x1149/0x3290 [ 2327.521421][T18228] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2327.526446][T18228] ? copy_clone_args_from_user+0x744/0x830 [ 2327.532098][T18228] kernel_clone+0x21e/0x9e0 [ 2327.536431][T18228] ? __delayed_free_task+0x20/0x20 [ 2327.541374][T18228] ? create_io_thread+0x1e0/0x1e0 [ 2327.546235][T18228] __x64_sys_clone3+0x376/0x3a0 [ 2327.550924][T18228] ? __ia32_sys_clone+0x290/0x290 [ 2327.555794][T18228] ? fput+0x1a/0x20 [ 2327.559430][T18228] ? debug_smp_processor_id+0x17/0x20 [ 2327.564637][T18228] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2327.570537][T18228] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2327.576002][T18228] do_syscall_64+0x3d/0xb0 [ 2327.580253][T18228] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2327.585980][T18228] RIP: 0033:0x7fe6f3145da9 [ 2327.590235][T18228] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2327.609767][T18228] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2327.618008][T18228] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2327.625819][T18228] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2327.633630][T18228] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2327.641443][T18228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2327.649253][T18228] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2327.657069][T18228] [ 2327.694246][T18246] loop0: detected capacity change from 0 to 128 08:48:37 executing program 2: syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() r0 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r0, @ANYRESHEX=r0, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r1 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r1}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200)) 08:48:37 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20000000}, 0x58) 08:48:37 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f00000005c0), &(0x7f0000000700)}, 0x20) r3 = socket(0x200000100000011, 0x3, 0x0) r4 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$packet(r3, &(0x7f0000000040)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @local}, 0x14) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x1c, 0x6, &(0x7f0000000c00)=ANY=[@ANYBLOB="9108e7047196d56fb9fcc1949cd632f55ac31372be8fe6d6865a18ae6a83847692f4dc24730ed875526b5d6916ef6598a37fd25bd4b88329838eb5818411907ae37ff87991005297c2ef4a1abe7e7cba6b87e5973f203e704ce633767a84c4a664c53d7f69588733e1e5ca7b6f9c6d5d77875d62b31d54904f6e982dd512ea851508a882fa53f79e887b2d66bf82bf885214b5879ca9beb1ca49fc639e89c7ffc78e48519c06d0543c150b4dbf77178dc8df55aeafe31e3c038f221a0f091b6312f3b9756122923052651adcc06802c30abc3230a112fb658e5f927bfa67bd527303eeba8677bdb7c0afc56eeee3578edbeea5d4e3511d70", @ANYRES64=r3, @ANYBLOB="12bdbec0eb57b2238859d2a7f0ada3fdce471d700a549b662f31335b3dfb8c808a0b5b61f009551c848f8b9821086211f66a14a7cce3b58e66ea5b4451b5268afd5d13714c06fa1626b01c2b08a3e44277ea985b5ec4a45f939eda00000000000003fffccd4c6b4eac7c8a88855d2549c37306cda3a85587b417260fc337954fa6cd5d381612d5189e9a1485566ec6c5c4fc372398e6a7ce"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0xe}, 0x90) r7 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000980), 0x4) r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x5, 0x18, &(0x7f0000000780)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7fff}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}}, @exit, @generic={0xff, 0x8, 0x0, 0xd1, 0xfff}, @cb_func={0x18, 0x8, 0x4, 0x0, 0x1}, @map_idx_val={0x18, 0x4, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0x996}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @printk={@lx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x7}}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffb}]}, &(0x7f0000000840)='GPL\x00', 0x6, 0xe2, &(0x7f0000000880)=""/226, 0x0, 0x20, '\x00', r5, 0x2e, r7, 0x8, &(0x7f00000009c0)={0x4, 0x4}, 0x8, 0x10, &(0x7f0000000a00)={0x3, 0x2, 0x6, 0xd8c7}, 0x10, 0x0, 0xffffffffffffffff, 0x9, &(0x7f0000000a40)=[r0, r0, 0xffffffffffffffff], &(0x7f0000000a80)=[{0x5, 0x4, 0x0, 0x7}, {0x1, 0x3, 0x5, 0x1}, {0x3, 0x4, 0x7, 0xa}, {0x0, 0x3, 0x5}, {0x3, 0x3, 0xb, 0x7}, {0x0, 0x2, 0x6, 0x3}, {0x0, 0x1, 0xa, 0xc}, {0x1, 0x2, 0x9, 0xa}, {0x3, 0x5, 0xc, 0xb}], 0x10, 0x3}, 0x90) r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000dc0)=ANY=[@ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) getsockopt$inet6_mreq(r3, 0x29, 0x1c, &(0x7f0000000100)={@ipv4={""/10, ""/2, @private}, 0x0}, &(0x7f0000000140)=0x14) r11 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)=@generic={&(0x7f0000000300)='./file0\x00'}, 0x18) r12 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000400)={0xffffffffffffffff, 0x80000001, 0x18}, 0xc) mount$overlay(0x0, &(0x7f00000001c0)='./file1\x00', &(0x7f0000000f80), 0x1024040, &(0x7f0000000fc0)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@redirect_dir={'redirect_dir', 0x3d, './file0'}}, {@nfs_export_off}, {@index_off}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@index_on}, {@default_permissions}, {@xino_auto}], [{@fscontext={'fscontext', 0x3d, 'sysadm_u'}}, {@smackfsdef={'smackfsdef', 0x3d, '+)'}}, {@audit}, {@audit}]}) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x19, 0xc, &(0x7f0000000080)=@raw=[@printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3f}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @jmp={0x5, 0x1, 0x6, 0xa, 0x1, 0xfffffffffffffffe, 0x10}, @alu={0x7, 0x0, 0x8, 0x2, 0x8, 0x2, 0xfffffffffffffff0}, @exit], &(0x7f0000000000)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x34, '\x00', r10, 0x2f, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x4, 0x5}, 0x8, 0x10, &(0x7f00000002c0)={0x0, 0x0, 0x5, 0x5}, 0x10, 0x0, r9, 0x4, &(0x7f0000000440)=[r11, r0, r12, r0, r1, r1], &(0x7f0000000580)=[{0x5, 0x5, 0xc, 0xb}, {0x5, 0x4, 0x1000005, 0x3}, {0x3, 0x4, 0x7, 0x5}, {0x0, 0x2, 0xf, 0x3}]}, 0x90) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000002400)={r8, 0xe0, &(0x7f0000002300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000002140)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x4, &(0x7f0000002180)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000021c0)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x33, &(0x7f0000002200)=[{}], 0x8, 0x10, &(0x7f0000002240), &(0x7f0000002280), 0x8, 0xf6, 0x8, 0x8, &(0x7f00000022c0)}}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000002540)={0xbcdd6820f54b773c, 0x8, &(0x7f0000001080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x868a, 0x0, 0x0, 0x0, 0x4c}, [@map_fd={0x18, 0xd92a0c60da4f5e0c, 0x1, 0x0, r2}, @map_val={0x18, 0x5, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x1}, @func={0x85, 0x0, 0x1, 0x0, 0x7}]}, &(0x7f00000010c0)='GPL\x00', 0x2f26, 0x1000, &(0x7f0000001100)=""/4096, 0x40f00, 0x61, '\x00', r10, 0x1b, r3, 0x8, &(0x7f0000002100)={0x0, 0xfff}, 0x8, 0x10, 0x0, 0x0, r13, r6, 0xa, &(0x7f0000002440)=[r1], &(0x7f0000002480)=[{0x2, 0x3, 0x6, 0x2}, {0x5, 0x1, 0xd, 0xb}, {0x3, 0x3, 0x6, 0xe}, {0x5, 0x4, 0x7, 0x8}, {0x3, 0x1, 0x1, 0xc}, {0x5, 0x4, 0x6, 0x6}, {0x2, 0x4, 0x9, 0xa}, {0x5, 0x5, 0x5, 0xb}, {0x1, 0x4, 0xb, 0x4}, {0x1, 0x4, 0x10, 0xa}], 0x10, 0x7f}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r9}, 0x10) setuid(0x0) 08:48:37 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 52) 08:48:37 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = open(0x0, 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f000000df80)) fstat(r0, &(0x7f000000dfc0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() statx(r0, &(0x7f000000e180)='./file0\x00', 0x1000, 0x80, &(0x7f000000e1c0)) r2 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r3 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r3}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r4, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200)) [ 2327.841608][T18251] FAULT_INJECTION: forcing a failure. [ 2327.841608][T18251] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2327.855881][ T30] audit: type=1400 audit(1709628517.321:255): avc: denied { getopt } for pid=18247 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 2327.856366][T18251] CPU: 1 PID: 18251 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 08:48:37 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x40000000}, 0x58) 08:48:37 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xa002a000}, 0x58) 08:48:37 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf5ffffff}, 0x58) [ 2327.885897][T18251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2327.895792][T18251] Call Trace: [ 2327.898913][T18251] [ 2327.901701][T18251] dump_stack_lvl+0x151/0x1b7 [ 2327.906212][T18251] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2327.911677][T18251] ? _raw_spin_lock+0xa4/0x1b0 [ 2327.916278][T18251] ? _raw_spin_trylock_bh+0x190/0x190 [ 2327.921572][T18251] ? arch_stack_walk+0xf3/0x140 [ 2327.926254][T18251] dump_stack+0x15/0x17 [ 2327.930247][T18251] should_fail+0x3c6/0x510 [ 2327.934505][T18251] should_fail_alloc_page+0x5a/0x80 08:48:37 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xfbffffff}, 0x58) 08:48:37 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xff0f0100}, 0x58) [ 2327.939538][T18251] prepare_alloc_pages+0x15c/0x700 [ 2327.944479][T18251] ? __kasan_check_write+0x14/0x20 [ 2327.949428][T18251] ? __alloc_pages_bulk+0xe40/0xe40 [ 2327.954462][T18251] ? copy_page_range+0x2d59/0x2f90 [ 2327.959413][T18251] __alloc_pages+0x18c/0x8f0 [ 2327.963846][T18251] ? prep_new_page+0x110/0x110 [ 2327.968449][T18251] new_slab+0x9a/0x4e0 [ 2327.972341][T18251] ___slab_alloc+0x39e/0x830 [ 2327.976773][T18251] ? vm_area_dup+0x26/0x230 [ 2327.981109][T18251] ? vm_area_dup+0x26/0x230 [ 2327.985533][T18251] __slab_alloc+0x4a/0x90 08:48:37 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xfffffff5}, 0x58) 08:48:37 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}, 0x58) [ 2327.989698][T18251] ? vm_area_dup+0x26/0x230 [ 2327.994043][T18251] kmem_cache_alloc+0x134/0x200 [ 2327.998728][T18251] vm_area_dup+0x26/0x230 [ 2328.002897][T18251] copy_mm+0x9a1/0x13e0 [ 2328.006887][T18251] ? copy_signal+0x610/0x610 [ 2328.011312][T18251] ? __init_rwsem+0xd6/0x1c0 [ 2328.015736][T18251] ? copy_signal+0x4e3/0x610 [ 2328.020163][T18251] copy_process+0x1149/0x3290 [ 2328.024677][T18251] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2328.029629][T18251] ? copy_clone_args_from_user+0x744/0x830 [ 2328.035274][T18251] kernel_clone+0x21e/0x9e0 08:48:37 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x100000800}, 0x58) 08:48:37 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1b0ba1f000}, 0x58) [ 2328.039609][T18251] ? __delayed_free_task+0x20/0x20 [ 2328.044552][T18251] ? create_io_thread+0x1e0/0x1e0 [ 2328.049416][T18251] __x64_sys_clone3+0x376/0x3a0 [ 2328.054103][T18251] ? __ia32_sys_clone+0x290/0x290 [ 2328.058963][T18251] ? fput+0x1a/0x20 [ 2328.062606][T18251] ? debug_smp_processor_id+0x17/0x20 [ 2328.067814][T18251] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2328.073715][T18251] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2328.079191][T18251] do_syscall_64+0x3d/0xb0 [ 2328.083439][T18251] entry_SYSCALL_64_after_hwframe+0x61/0xcb 08:48:37 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x29e9eb25f000}, 0x58) 08:48:37 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x553a28640000}, 0x58) [ 2328.089164][T18251] RIP: 0033:0x7fe6f3145da9 [ 2328.093420][T18251] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2328.112861][T18251] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2328.121112][T18251] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2328.128917][T18251] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 08:48:37 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x64283a550000}, 0x58) 08:48:37 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2001000000000}, 0x58) 08:48:37 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2020000000000}, 0x58) 08:48:37 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) (async) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f00000005c0), &(0x7f0000000700)}, 0x20) r3 = socket(0x200000100000011, 0x3, 0x0) (async) r4 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$packet(r3, &(0x7f0000000040)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @local}, 0x14) (async) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x1c, 0x6, &(0x7f0000000c00)=ANY=[@ANYBLOB="9108e7047196d56fb9fcc1949cd632f55ac31372be8fe6d6865a18ae6a83847692f4dc24730ed875526b5d6916ef6598a37fd25bd4b88329838eb5818411907ae37ff87991005297c2ef4a1abe7e7cba6b87e5973f203e704ce633767a84c4a664c53d7f69588733e1e5ca7b6f9c6d5d77875d62b31d54904f6e982dd512ea851508a882fa53f79e887b2d66bf82bf885214b5879ca9beb1ca49fc639e89c7ffc78e48519c06d0543c150b4dbf77178dc8df55aeafe31e3c038f221a0f091b6312f3b9756122923052651adcc06802c30abc3230a112fb658e5f927bfa67bd527303eeba8677bdb7c0afc56eeee3578edbeea5d4e3511d70", @ANYRES64=r3, @ANYBLOB="12bdbec0eb57b2238859d2a7f0ada3fdce471d700a549b662f31335b3dfb8c808a0b5b61f009551c848f8b9821086211f66a14a7cce3b58e66ea5b4451b5268afd5d13714c06fa1626b01c2b08a3e44277ea985b5ec4a45f939eda00000000000003fffccd4c6b4eac7c8a88855d2549c37306cda3a85587b417260fc337954fa6cd5d381612d5189e9a1485566ec6c5c4fc372398e6a7ce"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0xe}, 0x90) r7 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000980), 0x4) r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x5, 0x18, &(0x7f0000000780)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7fff}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}}, @exit, @generic={0xff, 0x8, 0x0, 0xd1, 0xfff}, @cb_func={0x18, 0x8, 0x4, 0x0, 0x1}, @map_idx_val={0x18, 0x4, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0x996}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @printk={@lx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x7}}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffb}]}, &(0x7f0000000840)='GPL\x00', 0x6, 0xe2, &(0x7f0000000880)=""/226, 0x0, 0x20, '\x00', r5, 0x2e, r7, 0x8, &(0x7f00000009c0)={0x4, 0x4}, 0x8, 0x10, &(0x7f0000000a00)={0x3, 0x2, 0x6, 0xd8c7}, 0x10, 0x0, 0xffffffffffffffff, 0x9, &(0x7f0000000a40)=[r0, r0, 0xffffffffffffffff], &(0x7f0000000a80)=[{0x5, 0x4, 0x0, 0x7}, {0x1, 0x3, 0x5, 0x1}, {0x3, 0x4, 0x7, 0xa}, {0x0, 0x3, 0x5}, {0x3, 0x3, 0xb, 0x7}, {0x0, 0x2, 0x6, 0x3}, {0x0, 0x1, 0xa, 0xc}, {0x1, 0x2, 0x9, 0xa}, {0x3, 0x5, 0xc, 0xb}], 0x10, 0x3}, 0x90) (async) r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000dc0)=ANY=[@ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) getsockopt$inet6_mreq(r3, 0x29, 0x1c, &(0x7f0000000100)={@ipv4={""/10, ""/2, @private}, 0x0}, &(0x7f0000000140)=0x14) (async) r11 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)=@generic={&(0x7f0000000300)='./file0\x00'}, 0x18) (async) r12 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000400)={0xffffffffffffffff, 0x80000001, 0x18}, 0xc) (async) mount$overlay(0x0, &(0x7f00000001c0)='./file1\x00', &(0x7f0000000f80), 0x1024040, &(0x7f0000000fc0)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@redirect_dir={'redirect_dir', 0x3d, './file0'}}, {@nfs_export_off}, {@index_off}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@index_on}, {@default_permissions}, {@xino_auto}], [{@fscontext={'fscontext', 0x3d, 'sysadm_u'}}, {@smackfsdef={'smackfsdef', 0x3d, '+)'}}, {@audit}, {@audit}]}) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x19, 0xc, &(0x7f0000000080)=@raw=[@printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3f}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @jmp={0x5, 0x1, 0x6, 0xa, 0x1, 0xfffffffffffffffe, 0x10}, @alu={0x7, 0x0, 0x8, 0x2, 0x8, 0x2, 0xfffffffffffffff0}, @exit], &(0x7f0000000000)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x34, '\x00', r10, 0x2f, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x4, 0x5}, 0x8, 0x10, &(0x7f00000002c0)={0x0, 0x0, 0x5, 0x5}, 0x10, 0x0, r9, 0x4, &(0x7f0000000440)=[r11, r0, r12, r0, r1, r1], &(0x7f0000000580)=[{0x5, 0x5, 0xc, 0xb}, {0x5, 0x4, 0x1000005, 0x3}, {0x3, 0x4, 0x7, 0x5}, {0x0, 0x2, 0xf, 0x3}]}, 0x90) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000002400)={r8, 0xe0, &(0x7f0000002300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000002140)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x4, &(0x7f0000002180)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000021c0)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x33, &(0x7f0000002200)=[{}], 0x8, 0x10, &(0x7f0000002240), &(0x7f0000002280), 0x8, 0xf6, 0x8, 0x8, &(0x7f00000022c0)}}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000002540)={0xbcdd6820f54b773c, 0x8, &(0x7f0000001080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x868a, 0x0, 0x0, 0x0, 0x4c}, [@map_fd={0x18, 0xd92a0c60da4f5e0c, 0x1, 0x0, r2}, @map_val={0x18, 0x5, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x1}, @func={0x85, 0x0, 0x1, 0x0, 0x7}]}, &(0x7f00000010c0)='GPL\x00', 0x2f26, 0x1000, &(0x7f0000001100)=""/4096, 0x40f00, 0x61, '\x00', r10, 0x1b, r3, 0x8, &(0x7f0000002100)={0x0, 0xfff}, 0x8, 0x10, 0x0, 0x0, r13, r6, 0xa, &(0x7f0000002440)=[r1], &(0x7f0000002480)=[{0x2, 0x3, 0x6, 0x2}, {0x5, 0x1, 0xd, 0xb}, {0x3, 0x3, 0x6, 0xe}, {0x5, 0x4, 0x7, 0x8}, {0x3, 0x1, 0x1, 0xc}, {0x5, 0x4, 0x6, 0x6}, {0x2, 0x4, 0x9, 0xa}, {0x5, 0x5, 0x5, 0xb}, {0x1, 0x4, 0xb, 0x4}, {0x1, 0x4, 0x10, 0xa}], 0x10, 0x7f}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r9}, 0x10) setuid(0x0) [ 2328.136722][T18251] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2328.144542][T18251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2328.152352][T18251] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2328.160166][T18251] 08:48:37 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000000000000}, 0x58) 08:48:37 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 53) 08:48:37 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) (async) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f00000005c0), &(0x7f0000000700)}, 0x20) (async) r3 = socket(0x200000100000011, 0x3, 0x0) (async) r4 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$packet(r3, &(0x7f0000000040)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @local}, 0x14) (async, rerun: 64) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x1c, 0x6, &(0x7f0000000c00)=ANY=[@ANYBLOB="9108e7047196d56fb9fcc1949cd632f55ac31372be8fe6d6865a18ae6a83847692f4dc24730ed875526b5d6916ef6598a37fd25bd4b88329838eb5818411907ae37ff87991005297c2ef4a1abe7e7cba6b87e5973f203e704ce633767a84c4a664c53d7f69588733e1e5ca7b6f9c6d5d77875d62b31d54904f6e982dd512ea851508a882fa53f79e887b2d66bf82bf885214b5879ca9beb1ca49fc639e89c7ffc78e48519c06d0543c150b4dbf77178dc8df55aeafe31e3c038f221a0f091b6312f3b9756122923052651adcc06802c30abc3230a112fb658e5f927bfa67bd527303eeba8677bdb7c0afc56eeee3578edbeea5d4e3511d70", @ANYRES64=r3, @ANYBLOB="12bdbec0eb57b2238859d2a7f0ada3fdce471d700a549b662f31335b3dfb8c808a0b5b61f009551c848f8b9821086211f66a14a7cce3b58e66ea5b4451b5268afd5d13714c06fa1626b01c2b08a3e44277ea985b5ec4a45f939eda00000000000003fffccd4c6b4eac7c8a88855d2549c37306cda3a85587b417260fc337954fa6cd5d381612d5189e9a1485566ec6c5c4fc372398e6a7ce"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0xe}, 0x90) (async, rerun: 64) r7 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000980), 0x4) r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x5, 0x18, &(0x7f0000000780)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7fff}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}}, @exit, @generic={0xff, 0x8, 0x0, 0xd1, 0xfff}, @cb_func={0x18, 0x8, 0x4, 0x0, 0x1}, @map_idx_val={0x18, 0x4, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0x996}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @printk={@lx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x7}}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffb}]}, &(0x7f0000000840)='GPL\x00', 0x6, 0xe2, &(0x7f0000000880)=""/226, 0x0, 0x20, '\x00', r5, 0x2e, r7, 0x8, &(0x7f00000009c0)={0x4, 0x4}, 0x8, 0x10, &(0x7f0000000a00)={0x3, 0x2, 0x6, 0xd8c7}, 0x10, 0x0, 0xffffffffffffffff, 0x9, &(0x7f0000000a40)=[r0, r0, 0xffffffffffffffff], &(0x7f0000000a80)=[{0x5, 0x4, 0x0, 0x7}, {0x1, 0x3, 0x5, 0x1}, {0x3, 0x4, 0x7, 0xa}, {0x0, 0x3, 0x5}, {0x3, 0x3, 0xb, 0x7}, {0x0, 0x2, 0x6, 0x3}, {0x0, 0x1, 0xa, 0xc}, {0x1, 0x2, 0x9, 0xa}, {0x3, 0x5, 0xc, 0xb}], 0x10, 0x3}, 0x90) (async) r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000dc0)=ANY=[@ANYBLOB="18000000000000000000000000000065bf312800b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb702000000000000182300000a651e600e6de346fba3e5e09e83cb3e72c680dcd11f5de7d7095debab5da71453cc3b376419efde56df0a1aee5cacb35a53246f790c727815c997c7b562a02f473cb4572548e0118b5980b01f69df0e57f0c0e7d4e09fb7da3a99458b6277204e6e007cd50693d4f91fa347af5408ddcc3fce8e9f9fd2efe5a8cb1d17baaf282c3c727203a25b8cf422422d7c7189f8b81f202a939514a15de750f3d07bcd7f5252adc069ee137285026adde2c9388f793c4cbc2bc9ed407aa83e81f871688e13619f26a1d3429b4612a73f4d295adcfdb91e03b2f69e13f312916e", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) getsockopt$inet6_mreq(r3, 0x29, 0x1c, &(0x7f0000000100)={@ipv4={""/10, ""/2, @private}, 0x0}, &(0x7f0000000140)=0x14) (async, rerun: 32) r11 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)=@generic={&(0x7f0000000300)='./file0\x00'}, 0x18) (async, rerun: 32) r12 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000400)={0xffffffffffffffff, 0x80000001, 0x18}, 0xc) mount$overlay(0x0, &(0x7f00000001c0)='./file1\x00', &(0x7f0000000f80), 0x1024040, &(0x7f0000000fc0)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@redirect_dir={'redirect_dir', 0x3d, './file0'}}, {@nfs_export_off}, {@index_off}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@index_on}, {@default_permissions}, {@xino_auto}], [{@fscontext={'fscontext', 0x3d, 'sysadm_u'}}, {@smackfsdef={'smackfsdef', 0x3d, '+)'}}, {@audit}, {@audit}]}) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x19, 0xc, &(0x7f0000000080)=@raw=[@printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3f}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @jmp={0x5, 0x1, 0x6, 0xa, 0x1, 0xfffffffffffffffe, 0x10}, @alu={0x7, 0x0, 0x8, 0x2, 0x8, 0x2, 0xfffffffffffffff0}, @exit], &(0x7f0000000000)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x34, '\x00', r10, 0x2f, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x4, 0x5}, 0x8, 0x10, &(0x7f00000002c0)={0x0, 0x0, 0x5, 0x5}, 0x10, 0x0, r9, 0x4, &(0x7f0000000440)=[r11, r0, r12, r0, r1, r1], &(0x7f0000000580)=[{0x5, 0x5, 0xc, 0xb}, {0x5, 0x4, 0x1000005, 0x3}, {0x3, 0x4, 0x7, 0x5}, {0x0, 0x2, 0xf, 0x3}]}, 0x90) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000002400)={r8, 0xe0, &(0x7f0000002300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000002140)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x4, &(0x7f0000002180)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000021c0)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x33, &(0x7f0000002200)=[{}], 0x8, 0x10, &(0x7f0000002240), &(0x7f0000002280), 0x8, 0xf6, 0x8, 0x8, &(0x7f00000022c0)}}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000002540)={0xbcdd6820f54b773c, 0x8, &(0x7f0000001080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x868a, 0x0, 0x0, 0x0, 0x4c}, [@map_fd={0x18, 0xd92a0c60da4f5e0c, 0x1, 0x0, r2}, @map_val={0x18, 0x5, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x1}, @func={0x85, 0x0, 0x1, 0x0, 0x7}]}, &(0x7f00000010c0)='GPL\x00', 0x2f26, 0x1000, &(0x7f0000001100)=""/4096, 0x40f00, 0x61, '\x00', r10, 0x1b, r3, 0x8, &(0x7f0000002100)={0x0, 0xfff}, 0x8, 0x10, 0x0, 0x0, r13, r6, 0xa, &(0x7f0000002440)=[r1], &(0x7f0000002480)=[{0x2, 0x3, 0x6, 0x2}, {0x5, 0x1, 0xd, 0xb}, {0x3, 0x3, 0x6, 0xe}, {0x5, 0x4, 0x7, 0x8}, {0x3, 0x1, 0x1, 0xc}, {0x5, 0x4, 0x6, 0x6}, {0x2, 0x4, 0x9, 0xa}, {0x5, 0x5, 0x5, 0xb}, {0x1, 0x4, 0xb, 0x4}, {0x1, 0x4, 0x10, 0xa}], 0x10, 0x7f}, 0x90) (async, rerun: 32) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r9}, 0x10) (async, rerun: 32) setuid(0x0) 08:48:37 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000001000000}, 0x58) 08:48:37 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000e4ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) setuid(0x0) r3 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000140), 0x4) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x20, 0x14, &(0x7f0000000080)=@raw=[@map_fd={0x18, 0x3, 0x1, 0x0, r0}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8001}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}, @alu={0x4, 0x0, 0xc, 0x5, 0x7, 0x18, 0x1}, @cb_func={0x18, 0x6, 0x4, 0x0, 0x5}, @map_fd={0x18, 0x8, 0x1, 0x0, r1}], &(0x7f0000000000)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x7a, '\x00', 0x0, 0x28, r3, 0x8, &(0x7f0000000280)={0xa, 0x1}, 0x8, 0x10, &(0x7f00000002c0)={0x0, 0xc, 0x101, 0x2}, 0x10, 0x0, 0xffffffffffffffff, 0x3, &(0x7f0000000300)=[r1, r0, r0], &(0x7f00000003c0)=[{0x2, 0x3, 0x2, 0x7}, {0x3, 0x4, 0xc, 0x8}, {0x3, 0x1, 0x6, 0x7}], 0x10, 0x1000}, 0x90) [ 2328.191555][T18283] loop0: detected capacity change from 0 to 128 [ 2328.211552][T18293] loop2: detected capacity change from 0 to 128 [ 2328.223368][T18296] FAULT_INJECTION: forcing a failure. [ 2328.223368][T18296] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2328.255727][T18296] CPU: 0 PID: 18296 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2328.265888][T18296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2328.275873][T18296] Call Trace: [ 2328.278999][T18296] [ 2328.281767][T18296] dump_stack_lvl+0x151/0x1b7 [ 2328.286292][T18296] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2328.291749][T18296] dump_stack+0x15/0x17 [ 2328.295751][T18296] should_fail+0x3c6/0x510 [ 2328.299995][T18296] should_fail_alloc_page+0x5a/0x80 [ 2328.305026][T18296] prepare_alloc_pages+0x15c/0x700 [ 2328.309977][T18296] ? __alloc_pages_bulk+0xe40/0xe40 [ 2328.315019][T18296] __alloc_pages+0x18c/0x8f0 [ 2328.319440][T18296] ? prep_new_page+0x110/0x110 [ 2328.324075][T18296] get_zeroed_page+0x1b/0x40 [ 2328.328457][T18296] __pud_alloc+0x8b/0x260 [ 2328.332622][T18296] ? stack_trace_snprint+0xf0/0xf0 [ 2328.337657][T18296] ? do_handle_mm_fault+0x2330/0x2330 [ 2328.342950][T18296] ? __stack_depot_save+0x34/0x470 [ 2328.347898][T18296] ? anon_vma_clone+0x9a/0x500 [ 2328.352500][T18296] copy_page_range+0x2bcf/0x2f90 [ 2328.357281][T18296] ? __kasan_slab_alloc+0xb1/0xe0 [ 2328.362131][T18296] ? slab_post_alloc_hook+0x53/0x2c0 [ 2328.367255][T18296] ? copy_mm+0xa3a/0x13e0 [ 2328.371419][T18296] ? copy_process+0x1149/0x3290 [ 2328.376132][T18296] ? kernel_clone+0x21e/0x9e0 [ 2328.380617][T18296] ? __x64_sys_clone3+0x376/0x3a0 [ 2328.385480][T18296] ? do_syscall_64+0x3d/0xb0 [ 2328.389905][T18296] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2328.395815][T18296] ? pfn_valid+0x1e0/0x1e0 [ 2328.400059][T18296] ? rwsem_write_trylock+0x15b/0x290 [ 2328.405181][T18296] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 2328.411432][T18296] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 2328.416987][T18296] ? __rb_insert_augmented+0x5de/0x610 [ 2328.422280][T18296] copy_mm+0xc7e/0x13e0 [ 2328.426274][T18296] ? copy_signal+0x610/0x610 [ 2328.430715][T18296] ? __init_rwsem+0xd6/0x1c0 [ 2328.435126][T18296] ? copy_signal+0x4e3/0x610 [ 2328.439553][T18296] copy_process+0x1149/0x3290 [ 2328.444076][T18296] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2328.449012][T18296] ? copy_clone_args_from_user+0x744/0x830 [ 2328.454659][T18296] kernel_clone+0x21e/0x9e0 [ 2328.458993][T18296] ? __delayed_free_task+0x20/0x20 [ 2328.463939][T18296] ? create_io_thread+0x1e0/0x1e0 [ 2328.468815][T18296] __x64_sys_clone3+0x376/0x3a0 [ 2328.473493][T18296] ? __ia32_sys_clone+0x290/0x290 [ 2328.478351][T18296] ? fput+0x1a/0x20 [ 2328.481994][T18296] ? debug_smp_processor_id+0x17/0x20 [ 2328.487199][T18296] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2328.493188][T18296] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2328.498658][T18296] do_syscall_64+0x3d/0xb0 [ 2328.502910][T18296] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2328.508637][T18296] RIP: 0033:0x7fe6f3145da9 [ 2328.512894][T18296] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2328.532333][T18296] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2328.540578][T18296] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2328.548400][T18296] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 08:48:38 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10100000000000}, 0x58) 08:48:38 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20000000000000}, 0x58) 08:48:38 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 54) 08:48:38 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000e4ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) setuid(0x0) r3 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000140), 0x4) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x20, 0x14, &(0x7f0000000080)=@raw=[@map_fd={0x18, 0x3, 0x1, 0x0, r0}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8001}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}, @alu={0x4, 0x0, 0xc, 0x5, 0x7, 0x18, 0x1}, @cb_func={0x18, 0x6, 0x4, 0x0, 0x5}, @map_fd={0x18, 0x8, 0x1, 0x0, r1}], &(0x7f0000000000)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x7a, '\x00', 0x0, 0x28, r3, 0x8, &(0x7f0000000280)={0xa, 0x1}, 0x8, 0x10, &(0x7f00000002c0)={0x0, 0xc, 0x101, 0x2}, 0x10, 0x0, 0xffffffffffffffff, 0x3, &(0x7f0000000300)=[r1, r0, r0], &(0x7f00000003c0)=[{0x2, 0x3, 0x2, 0x7}, {0x3, 0x4, 0xc, 0x8}, {0x3, 0x1, 0x6, 0x7}], 0x10, 0x1000}, 0x90) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000e4ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) (async) setuid(0x0) (async) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000140), 0x4) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x20, 0x14, &(0x7f0000000080)=@raw=[@map_fd={0x18, 0x3, 0x1, 0x0, r0}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8001}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}, @alu={0x4, 0x0, 0xc, 0x5, 0x7, 0x18, 0x1}, @cb_func={0x18, 0x6, 0x4, 0x0, 0x5}, @map_fd={0x18, 0x8, 0x1, 0x0, r1}], &(0x7f0000000000)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x7a, '\x00', 0x0, 0x28, r3, 0x8, &(0x7f0000000280)={0xa, 0x1}, 0x8, 0x10, &(0x7f00000002c0)={0x0, 0xc, 0x101, 0x2}, 0x10, 0x0, 0xffffffffffffffff, 0x3, &(0x7f0000000300)=[r1, r0, r0], &(0x7f00000003c0)=[{0x2, 0x3, 0x2, 0x7}, {0x3, 0x4, 0xc, 0x8}, {0x3, 0x1, 0x6, 0x7}], 0x10, 0x1000}, 0x90) (async) [ 2328.556286][T18296] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2328.564188][T18296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2328.572017][T18296] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2328.579814][T18296] 08:48:38 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x70000000000000}, 0x58) 08:48:38 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xa002a0ffffffff}, 0x58) [ 2328.622445][T18314] FAULT_INJECTION: forcing a failure. [ 2328.622445][T18314] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2328.677018][T18314] CPU: 1 PID: 18314 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2328.687190][T18314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2328.697089][T18314] Call Trace: [ 2328.700193][T18314] [ 2328.702972][T18314] dump_stack_lvl+0x151/0x1b7 [ 2328.707486][T18314] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2328.712952][T18314] ? kmem_cache_alloc+0x134/0x200 [ 2328.717813][T18314] dump_stack+0x15/0x17 [ 2328.721804][T18314] should_fail+0x3c6/0x510 [ 2328.726060][T18314] should_fail_alloc_page+0x5a/0x80 [ 2328.731095][T18314] prepare_alloc_pages+0x15c/0x700 [ 2328.736040][T18314] ? __alloc_pages_bulk+0xe40/0xe40 [ 2328.741077][T18314] __alloc_pages+0x18c/0x8f0 [ 2328.745499][T18314] ? prep_new_page+0x110/0x110 [ 2328.750098][T18314] ? __alloc_pages+0x27e/0x8f0 [ 2328.754701][T18314] ? __kasan_check_write+0x14/0x20 [ 2328.759649][T18314] ? _raw_spin_lock+0xa4/0x1b0 [ 2328.764248][T18314] __pmd_alloc+0xb1/0x550 [ 2328.768414][T18314] ? __pud_alloc+0x260/0x260 [ 2328.772841][T18314] ? __pud_alloc+0x213/0x260 [ 2328.777265][T18314] ? do_handle_mm_fault+0x2330/0x2330 [ 2328.782822][T18314] ? __stack_depot_save+0x34/0x470 [ 2328.787768][T18314] ? anon_vma_clone+0x9a/0x500 [ 2328.792368][T18314] copy_page_range+0x2b3d/0x2f90 [ 2328.797145][T18314] ? __kasan_slab_alloc+0xb1/0xe0 [ 2328.802002][T18314] ? slab_post_alloc_hook+0x53/0x2c0 [ 2328.807134][T18314] ? copy_mm+0xa3a/0x13e0 [ 2328.811375][T18314] ? copy_process+0x1149/0x3290 [ 2328.816060][T18314] ? kernel_clone+0x21e/0x9e0 [ 2328.820575][T18314] ? do_syscall_64+0x3d/0xb0 [ 2328.825097][T18314] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2328.831007][T18314] ? pfn_valid+0x1e0/0x1e0 [ 2328.835419][T18314] ? rwsem_write_trylock+0x15b/0x290 [ 2328.840694][T18314] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 2328.846945][T18314] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 2328.852501][T18314] ? __rb_insert_augmented+0x5de/0x610 [ 2328.857789][T18314] copy_mm+0xc7e/0x13e0 [ 2328.861777][T18314] ? copy_signal+0x610/0x610 [ 2328.866200][T18314] ? __init_rwsem+0xd6/0x1c0 [ 2328.870627][T18314] ? copy_signal+0x4e3/0x610 [ 2328.875091][T18314] copy_process+0x1149/0x3290 [ 2328.879572][T18314] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2328.884516][T18314] ? copy_clone_args_from_user+0x744/0x830 [ 2328.890159][T18314] kernel_clone+0x21e/0x9e0 [ 2328.894497][T18314] ? __delayed_free_task+0x20/0x20 [ 2328.899445][T18314] ? create_io_thread+0x1e0/0x1e0 [ 2328.904304][T18314] __x64_sys_clone3+0x376/0x3a0 [ 2328.908994][T18314] ? __ia32_sys_clone+0x290/0x290 [ 2328.913851][T18314] ? fput+0x1a/0x20 [ 2328.917497][T18314] ? debug_smp_processor_id+0x17/0x20 [ 2328.922702][T18314] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2328.928606][T18314] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2328.934074][T18314] do_syscall_64+0x3d/0xb0 [ 2328.938325][T18314] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2328.944052][T18314] RIP: 0033:0x7fe6f3145da9 [ 2328.948306][T18314] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2328.967749][T18314] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 08:48:38 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = open(0x0, 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f000000df80)) fstat(r0, &(0x7f000000dfc0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() statx(r0, &(0x7f000000e180)='./file0\x00', 0x1000, 0x80, &(0x7f000000e1c0)) r2 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r3 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r3}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r4, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200)) [ 2328.975992][T18314] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2328.983804][T18314] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2328.991616][T18314] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2328.999688][T18314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2329.007496][T18314] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2329.015486][T18314] [ 2329.063777][T18332] loop0: detected capacity change from 0 to 128 08:48:38 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 55) 08:48:38 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf025ebe9290000}, 0x58) 08:48:38 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000e4ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000e4ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) setuid(0x0) r3 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000140), 0x4) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x20, 0x14, &(0x7f0000000080)=@raw=[@map_fd={0x18, 0x3, 0x1, 0x0, r0}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8001}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}, @alu={0x4, 0x0, 0xc, 0x5, 0x7, 0x18, 0x1}, @cb_func={0x18, 0x6, 0x4, 0x0, 0x5}, @map_fd={0x18, 0x8, 0x1, 0x0, r1}], &(0x7f0000000000)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x7a, '\x00', 0x0, 0x28, r3, 0x8, &(0x7f0000000280)={0xa, 0x1}, 0x8, 0x10, &(0x7f00000002c0)={0x0, 0xc, 0x101, 0x2}, 0x10, 0x0, 0xffffffffffffffff, 0x3, &(0x7f0000000300)=[r1, r0, r0], &(0x7f00000003c0)=[{0x2, 0x3, 0x2, 0x7}, {0x3, 0x4, 0xc, 0x8}, {0x3, 0x1, 0x6, 0x7}], 0x10, 0x1000}, 0x90) 08:48:38 executing program 2: syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() r0 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r0, @ANYRESHEX=r0, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r1 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r1}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200)) 08:48:38 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = open(0x0, 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f000000df80)) fstat(r0, &(0x7f000000dfc0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() statx(r0, &(0x7f000000e180)='./file0\x00', 0x1000, 0x80, &(0x7f000000e1c0)) r2 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r3 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r3}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r4, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r4, 0x0, 0x0, 0x2, 0x0) r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200)) 08:48:38 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf0a10b1b000000}, 0x58) [ 2329.261345][T18338] FAULT_INJECTION: forcing a failure. [ 2329.261345][T18338] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2329.276431][T18338] CPU: 0 PID: 18338 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2329.277599][T18341] loop0: detected capacity change from 0 to 128 [ 2329.286585][T18338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2329.302559][T18338] Call Trace: [ 2329.305675][T18338] [ 2329.308453][T18338] dump_stack_lvl+0x151/0x1b7 [ 2329.312966][T18338] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2329.318433][T18338] dump_stack+0x15/0x17 [ 2329.322428][T18338] should_fail+0x3c6/0x510 [ 2329.326678][T18338] should_fail_alloc_page+0x5a/0x80 [ 2329.331802][T18338] prepare_alloc_pages+0x15c/0x700 [ 2329.336748][T18338] ? __alloc_pages_bulk+0xe40/0xe40 [ 2329.341790][T18338] __alloc_pages+0x18c/0x8f0 [ 2329.346306][T18338] ? prep_new_page+0x110/0x110 [ 2329.350893][T18338] ? __alloc_pages+0x27e/0x8f0 [ 2329.355493][T18338] ? __kasan_check_write+0x14/0x20 [ 2329.360438][T18338] ? _raw_spin_lock+0xa4/0x1b0 [ 2329.365040][T18338] pte_alloc_one+0x73/0x1b0 [ 2329.369466][T18338] ? pfn_modify_allowed+0x2f0/0x2f0 [ 2329.374500][T18338] ? __pmd_alloc+0x48d/0x550 [ 2329.378927][T18338] __pte_alloc+0x86/0x350 [ 2329.383093][T18338] ? __pud_alloc+0x260/0x260 [ 2329.387517][T18338] ? __pud_alloc+0x213/0x260 [ 2329.391949][T18338] ? free_pgtables+0x280/0x280 [ 2329.396545][T18338] ? do_handle_mm_fault+0x2330/0x2330 [ 2329.401754][T18338] ? __stack_depot_save+0x34/0x470 [ 2329.406700][T18338] ? anon_vma_clone+0x9a/0x500 [ 2329.411314][T18338] copy_page_range+0x28a8/0x2f90 [ 2329.416084][T18338] ? __kasan_slab_alloc+0xb1/0xe0 [ 2329.420934][T18338] ? slab_post_alloc_hook+0x53/0x2c0 [ 2329.426056][T18338] ? kernel_clone+0x21e/0x9e0 [ 2329.430568][T18338] ? do_syscall_64+0x3d/0xb0 [ 2329.434994][T18338] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2329.440988][T18338] ? pfn_valid+0x1e0/0x1e0 [ 2329.445251][T18338] ? rwsem_write_trylock+0x15b/0x290 [ 2329.450359][T18338] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 2329.456614][T18338] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 2329.462285][T18338] ? __rb_insert_augmented+0x5de/0x610 [ 2329.467567][T18338] copy_mm+0xc7e/0x13e0 [ 2329.471572][T18338] ? copy_signal+0x610/0x610 [ 2329.476073][T18338] ? __init_rwsem+0xd6/0x1c0 [ 2329.480499][T18338] ? copy_signal+0x4e3/0x610 [ 2329.484927][T18338] copy_process+0x1149/0x3290 [ 2329.489528][T18338] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2329.494472][T18338] ? copy_clone_args_from_user+0x744/0x830 [ 2329.500121][T18338] kernel_clone+0x21e/0x9e0 [ 2329.504454][T18338] ? __delayed_free_task+0x20/0x20 [ 2329.509399][T18338] ? create_io_thread+0x1e0/0x1e0 [ 2329.514263][T18338] __x64_sys_clone3+0x376/0x3a0 [ 2329.519034][T18338] ? __ia32_sys_clone+0x290/0x290 [ 2329.523897][T18338] ? fput+0x1a/0x20 [ 2329.527543][T18338] ? debug_smp_processor_id+0x17/0x20 [ 2329.532746][T18338] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2329.538649][T18338] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2329.544118][T18338] do_syscall_64+0x3d/0xb0 [ 2329.548372][T18338] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2329.554099][T18338] RIP: 0033:0x7fe6f3145da9 [ 2329.558354][T18338] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2329.577795][T18338] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2329.586038][T18338] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2329.593850][T18338] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2329.601671][T18338] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 08:48:39 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf0ff1f00000000}, 0x58) 08:48:39 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 56) 08:48:39 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'veth0_vlan\x00', 0x0}) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0x20, &(0x7f0000000440)={&(0x7f0000000640)=""/217, 0xd9, 0x0, &(0x7f00000003c0)=""/113, 0x71}}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x16, 0x4, &(0x7f0000000000)=@raw=[@ldst={0x2, 0x2, 0x2, 0x0, 0x0, 0x6, 0xfffffffffffffff0}, @initr0={0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0xfffffffb}, @generic={0xfd, 0x9, 0x9, 0x2, 0x85}], &(0x7f0000000080)='syzkaller\x00', 0x1, 0xb1, &(0x7f00000000c0)=""/177, 0x40f00, 0x2, '\x00', r3, 0x1d, 0xffffffffffffffff, 0x8, &(0x7f00000002c0)={0x6, 0x3}, 0x8, 0x10, &(0x7f0000000300)={0x3, 0x4, 0x0, 0x100}, 0x10, r4, 0xffffffffffffffff, 0x1, &(0x7f00000005c0)=[r1, r0, r0], &(0x7f0000000740)=[{0x2, 0x1, 0x9, 0xc}], 0x10, 0x74}, 0x90) setuid(0x0) 08:48:39 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x100000000000000}, 0x58) [ 2329.609472][T18338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2329.617285][T18338] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2329.625270][T18338] [ 2329.640641][T18345] loop2: detected capacity change from 0 to 128 [ 2329.658055][T18349] FAULT_INJECTION: forcing a failure. [ 2329.658055][T18349] name failslab, interval 1, probability 0, space 0, times 0 [ 2329.679008][T18349] CPU: 0 PID: 18349 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2329.689167][T18349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2329.699064][T18349] Call Trace: [ 2329.702200][T18349] [ 2329.705073][T18349] dump_stack_lvl+0x151/0x1b7 08:48:39 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) (async) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) (async) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'veth0_vlan\x00', 0x0}) (async, rerun: 32) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0x20, &(0x7f0000000440)={&(0x7f0000000640)=""/217, 0xd9, 0x0, &(0x7f00000003c0)=""/113, 0x71}}, 0x10) (rerun: 32) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x16, 0x4, &(0x7f0000000000)=@raw=[@ldst={0x2, 0x2, 0x2, 0x0, 0x0, 0x6, 0xfffffffffffffff0}, @initr0={0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0xfffffffb}, @generic={0xfd, 0x9, 0x9, 0x2, 0x85}], &(0x7f0000000080)='syzkaller\x00', 0x1, 0xb1, &(0x7f00000000c0)=""/177, 0x40f00, 0x2, '\x00', r3, 0x1d, 0xffffffffffffffff, 0x8, &(0x7f00000002c0)={0x6, 0x3}, 0x8, 0x10, &(0x7f0000000300)={0x3, 0x4, 0x0, 0x100}, 0x10, r4, 0xffffffffffffffff, 0x1, &(0x7f00000005c0)=[r1, r0, r0], &(0x7f0000000740)=[{0x2, 0x1, 0x9, 0xc}], 0x10, 0x74}, 0x90) setuid(0x0) [ 2329.709601][T18349] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2329.715083][T18349] dump_stack+0x15/0x17 [ 2329.719043][T18349] should_fail+0x3c6/0x510 [ 2329.723321][T18349] __should_failslab+0xa4/0xe0 [ 2329.727896][T18349] ? vm_area_dup+0x26/0x230 [ 2329.732237][T18349] should_failslab+0x9/0x20 [ 2329.736579][T18349] slab_pre_alloc_hook+0x37/0xd0 [ 2329.741362][T18349] ? vm_area_dup+0x26/0x230 [ 2329.745744][T18349] kmem_cache_alloc+0x44/0x200 [ 2329.750288][T18349] vm_area_dup+0x26/0x230 [ 2329.754455][T18349] copy_mm+0x9a1/0x13e0 [ 2329.758451][T18349] ? copy_signal+0x610/0x610 [ 2329.762871][T18349] ? __init_rwsem+0xd6/0x1c0 [ 2329.767303][T18349] ? copy_signal+0x4e3/0x610 [ 2329.771747][T18349] copy_process+0x1149/0x3290 [ 2329.776255][T18349] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2329.781188][T18349] ? copy_clone_args_from_user+0x744/0x830 [ 2329.786829][T18349] kernel_clone+0x21e/0x9e0 [ 2329.791169][T18349] ? __delayed_free_task+0x20/0x20 [ 2329.796113][T18349] ? create_io_thread+0x1e0/0x1e0 [ 2329.800976][T18349] __x64_sys_clone3+0x376/0x3a0 [ 2329.805662][T18349] ? __ia32_sys_clone+0x290/0x290 [ 2329.810526][T18349] ? fput+0x1a/0x20 [ 2329.814173][T18349] ? debug_smp_processor_id+0x17/0x20 [ 2329.819378][T18349] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2329.825277][T18349] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2329.830746][T18349] do_syscall_64+0x3d/0xb0 [ 2329.835003][T18349] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2329.840728][T18349] RIP: 0033:0x7fe6f3145da9 08:48:39 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) (async) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'veth0_vlan\x00', 0x0}) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0x20, &(0x7f0000000440)={&(0x7f0000000640)=""/217, 0xd9, 0x0, &(0x7f00000003c0)=""/113, 0x71}}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x16, 0x4, &(0x7f0000000000)=@raw=[@ldst={0x2, 0x2, 0x2, 0x0, 0x0, 0x6, 0xfffffffffffffff0}, @initr0={0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0xfffffffb}, @generic={0xfd, 0x9, 0x9, 0x2, 0x85}], &(0x7f0000000080)='syzkaller\x00', 0x1, 0xb1, &(0x7f00000000c0)=""/177, 0x40f00, 0x2, '\x00', r3, 0x1d, 0xffffffffffffffff, 0x8, &(0x7f00000002c0)={0x6, 0x3}, 0x8, 0x10, &(0x7f0000000300)={0x3, 0x4, 0x0, 0x100}, 0x10, r4, 0xffffffffffffffff, 0x1, &(0x7f00000005c0)=[r1, r0, r0], &(0x7f0000000740)=[{0x2, 0x1, 0x9, 0xc}], 0x10, 0x74}, 0x90) setuid(0x0) [ 2329.844981][T18349] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2329.864508][T18349] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2329.872758][T18349] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2329.880566][T18349] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2329.888380][T18349] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2329.896190][T18349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2329.904023][T18349] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 08:48:39 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x200000000000000}, 0x58) 08:48:39 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = open(0x0, 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f000000df80)) fstat(r0, &(0x7f000000dfc0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() statx(r0, &(0x7f000000e180)='./file0\x00', 0x1000, 0x80, &(0x7f000000e1c0)) r2 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r3 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r3}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r4, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r4, 0x0, 0x0, 0x2, 0x0) r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200)) 08:48:39 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 57) 08:48:39 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x700000000000000}, 0x58) [ 2329.911816][T18349] 08:48:39 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x800000000000000}, 0x58) [ 2329.940654][T18369] FAULT_INJECTION: forcing a failure. [ 2329.940654][T18369] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2329.961670][T18369] CPU: 0 PID: 18369 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2329.971837][T18369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2329.981730][T18369] Call Trace: [ 2329.984852][T18369] [ 2329.987655][T18369] dump_stack_lvl+0x151/0x1b7 [ 2329.992142][T18369] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2329.997612][T18369] dump_stack+0x15/0x17 [ 2330.001606][T18369] should_fail+0x3c6/0x510 [ 2330.005855][T18369] should_fail_alloc_page+0x5a/0x80 [ 2330.010892][T18369] prepare_alloc_pages+0x15c/0x700 [ 2330.015953][T18369] ? __alloc_pages+0x8f0/0x8f0 [ 2330.020525][T18369] ? __alloc_pages_bulk+0xe40/0xe40 [ 2330.025557][T18369] ? sched_clock+0x9/0x10 [ 2330.029725][T18369] __alloc_pages+0x18c/0x8f0 [ 2330.034150][T18369] ? prep_new_page+0x110/0x110 [ 2330.038755][T18369] ? 0xffffffffa002a000 [ 2330.042741][T18369] ? is_bpf_text_address+0x172/0x190 [ 2330.047865][T18369] pte_alloc_one+0x73/0x1b0 [ 2330.052202][T18369] ? pfn_modify_allowed+0x2f0/0x2f0 [ 2330.057239][T18369] ? arch_stack_walk+0xf3/0x140 [ 2330.061923][T18369] __pte_alloc+0x86/0x350 [ 2330.066092][T18369] ? free_pgtables+0x280/0x280 [ 2330.070691][T18369] ? _raw_spin_lock+0xa4/0x1b0 [ 2330.075290][T18369] ? __kasan_check_write+0x14/0x20 [ 2330.080239][T18369] copy_page_range+0x28a8/0x2f90 [ 2330.085014][T18369] ? __kasan_slab_alloc+0xb1/0xe0 [ 2330.089891][T18369] ? pfn_valid+0x1e0/0x1e0 [ 2330.094124][T18369] ? rwsem_write_trylock+0x15b/0x290 [ 2330.099258][T18369] copy_mm+0xc7e/0x13e0 [ 2330.103247][T18369] ? copy_signal+0x610/0x610 [ 2330.107667][T18369] ? __init_rwsem+0xd6/0x1c0 [ 2330.112091][T18369] ? copy_signal+0x4e3/0x610 [ 2330.116516][T18369] copy_process+0x1149/0x3290 [ 2330.121036][T18369] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2330.125979][T18369] ? copy_clone_args_from_user+0x744/0x830 [ 2330.131618][T18369] kernel_clone+0x21e/0x9e0 [ 2330.135959][T18369] ? __delayed_free_task+0x20/0x20 [ 2330.140907][T18369] ? create_io_thread+0x1e0/0x1e0 [ 2330.145770][T18369] __x64_sys_clone3+0x376/0x3a0 [ 2330.150454][T18369] ? __ia32_sys_clone+0x290/0x290 [ 2330.155319][T18369] ? fput+0x1a/0x20 [ 2330.158961][T18369] ? debug_smp_processor_id+0x17/0x20 [ 2330.164165][T18369] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2330.170069][T18369] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2330.175537][T18369] do_syscall_64+0x3d/0xb0 [ 2330.179791][T18369] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2330.185518][T18369] RIP: 0033:0x7fe6f3145da9 [ 2330.189772][T18369] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2330.209300][T18369] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2330.217545][T18369] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2330.225616][T18369] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2330.233520][T18369] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 08:48:39 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x900000000000000}, 0x58) 08:48:39 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000000)={0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa40000000000000704ffffb70200000000000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) setuid(0x0) 08:48:39 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 58) 08:48:39 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf00000000000000}, 0x58) 08:48:39 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000000)={0xffffffffffffffff}, 0x4) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa40000000000000704ffffb70200000000000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x90) (async) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa40000000000000704ffffb70200000000000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) setuid(0x0) 08:48:39 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000000)={0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa40000000000000704ffffb70200000000000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) setuid(0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000000)={0xffffffffffffffff}, 0x4) (async) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa40000000000000704ffffb70200000000000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x90) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) (async) setuid(0x0) (async) [ 2330.241333][T18369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2330.249570][T18369] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2330.257411][T18369] [ 2330.265430][T18375] loop0: detected capacity change from 0 to 128 08:48:39 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1100000000000000}, 0x58) [ 2330.313706][T18385] FAULT_INJECTION: forcing a failure. [ 2330.313706][T18385] name failslab, interval 1, probability 0, space 0, times 0 [ 2330.334810][T18385] CPU: 0 PID: 18385 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2330.344971][T18385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2330.354868][T18385] Call Trace: [ 2330.357989][T18385] [ 2330.360765][T18385] dump_stack_lvl+0x151/0x1b7 [ 2330.365280][T18385] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2330.370839][T18385] dump_stack+0x15/0x17 [ 2330.374824][T18385] should_fail+0x3c6/0x510 [ 2330.379080][T18385] __should_failslab+0xa4/0xe0 [ 2330.383678][T18385] ? vm_area_dup+0x26/0x230 [ 2330.388018][T18385] should_failslab+0x9/0x20 [ 2330.392360][T18385] slab_pre_alloc_hook+0x37/0xd0 [ 2330.397137][T18385] ? vm_area_dup+0x26/0x230 [ 2330.401472][T18385] kmem_cache_alloc+0x44/0x200 [ 2330.406074][T18385] vm_area_dup+0x26/0x230 [ 2330.410244][T18385] copy_mm+0x9a1/0x13e0 08:48:39 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1f00000000000000}, 0x58) 08:48:39 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x58) [ 2330.414231][T18385] ? copy_signal+0x610/0x610 [ 2330.418665][T18385] ? __init_rwsem+0xd6/0x1c0 [ 2330.423084][T18385] ? copy_signal+0x4e3/0x610 [ 2330.427514][T18385] copy_process+0x1149/0x3290 [ 2330.432029][T18385] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2330.436969][T18385] ? copy_clone_args_from_user+0x744/0x830 [ 2330.442613][T18385] kernel_clone+0x21e/0x9e0 [ 2330.446951][T18385] ? __delayed_free_task+0x20/0x20 [ 2330.451923][T18385] ? create_io_thread+0x1e0/0x1e0 [ 2330.456769][T18385] __x64_sys_clone3+0x376/0x3a0 08:48:39 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000}, 0x58) 08:48:39 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf5ffffff00000000}, 0x58) [ 2330.461449][T18385] ? __ia32_sys_clone+0x290/0x290 [ 2330.466311][T18385] ? fput+0x1a/0x20 [ 2330.469954][T18385] ? debug_smp_processor_id+0x17/0x20 [ 2330.475166][T18385] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2330.481062][T18385] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2330.486531][T18385] do_syscall_64+0x3d/0xb0 [ 2330.490784][T18385] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2330.496509][T18385] RIP: 0033:0x7fe6f3145da9 08:48:40 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xfbffffff00000000}, 0x58) 08:48:40 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xff0f010000000000}, 0x58) [ 2330.500763][T18385] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2330.520207][T18385] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2330.528452][T18385] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2330.536262][T18385] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2330.544164][T18385] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2330.551973][T18385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 08:48:40 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xffffffffa002a000}, 0x58) 08:48:40 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$eJzs3F9IU38Yx/HHPz/1Z+hGRFBQPeVNRRzcrgMdoRENjHJhCcExz2rstI2dsZqEWxB400U3/buuIEIQoosgELvoKpTwrovuvPMiu0oiOjGnudnUMnWS79fF9rDn+zl8z58dtu9g08fvXouGHSNspqS6oUqq2yUns1XilWpZkJMj10fe7zt34eLpQDDYcVa1M9Dt86tq84HR3pvDh8ZSO86/bH5dL+PeS9Mz/qnx3eN7pr93X404GnE0Fk+pqX3xeMrssy3tv+9EDdUztmU6lkZijpUs6YfteCKRUTPW39SYSFqOo2Yso1Ero6m4ppIZNa+YkZgahqFNjYKVDacfBZbvhp7Puq7MpN65bn1OXNfNv9iwidNDhc2df9ctOv93Kj0lbKKim3qDiD2UDqVDhedCPxCWiNhiSat45JvkrxH38Yg7d6nkH2/4R4KTR9++UVWvDNrZ+Xw2HaopzfvEI95CpqBQd54Kdvi0oDT/nzQW5/3ikV3l8/6y+To53FKUN8Qjk5clLrZMjB78MtU19GAhP+hTPdEVXJL/X/oXD9OzzxU6PwAAAAAAAAAArIWhP5VdvzfyA24PqGrTkn4hX+73gaXr861l1+drZW9tZfcdAAAAAIDtwskMRE3btpJ/WeS/yq/Hdv694smt3x+8v3PlMS1tNRPtH3KJrbBff1B87dkS0ygtZH71abXBNev8TlksPq3Ldqrm57f8mJO9H1+sup26X47PcsY2/q4EAAAAYCMsfuhvk2z4VTrbc+xepecEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB2s4a/HJt4WK6l+WLn03KtSu8jAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADASn4EAAD//xAR0Ao=") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = open(0x0, 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f000000df80)) fstat(r0, &(0x7f000000dfc0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() statx(r0, &(0x7f000000e180)='./file0\x00', 0x1000, 0x80, &(0x7f000000e1c0)) r2 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r3 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r3}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r4, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r4, 0x0, 0x0, 0x2, 0x0) r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200)) 08:48:40 executing program 3: bpf$OBJ_GET_PROG(0x7, &(0x7f0000000080)=@generic={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x18) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES16=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a5e700000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) setuid(0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='cachefiles_ondemand_fd_release\x00', r1}, 0x10) 08:48:40 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x7f3f41101008) 08:48:40 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 59) [ 2330.559781][T18385] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2330.567599][T18385] 08:48:40 executing program 2: syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$eJzs3F9IU38Yx/HHPz/1Z+hGRFBQPeVNRRzcrgMdoRENjHJhCcExz2rstI2dsZqEWxB400U3/buuIEIQoosgELvoKpTwrovuvPMiu0oiOjGnudnUMnWS79fF9rDn+zl8z58dtu9g08fvXouGHSNspqS6oUqq2yUns1XilWpZkJMj10fe7zt34eLpQDDYcVa1M9Dt86tq84HR3pvDh8ZSO86/bH5dL+PeS9Mz/qnx3eN7pr93X404GnE0Fk+pqX3xeMrssy3tv+9EDdUztmU6lkZijpUs6YfteCKRUTPW39SYSFqOo2Yso1Ero6m4ppIZNa+YkZgahqFNjYKVDacfBZbvhp7Puq7MpN65bn1OXNfNv9iwidNDhc2df9ctOv93Kj0lbKKim3qDiD2UDqVDhedCPxCWiNhiSat45JvkrxH38Yg7d6nkH2/4R4KTR9++UVWvDNrZ+Xw2HaopzfvEI95CpqBQd54Kdvi0oDT/nzQW5/3ikV3l8/6y+To53FKUN8Qjk5clLrZMjB78MtU19GAhP+hTPdEVXJL/X/oXD9OzzxU6PwAAAAAAAAAArIWhP5VdvzfyA24PqGrTkn4hX+73gaXr861l1+drZW9tZfcdAAAAAIDtwskMRE3btpJ/WeS/yq/Hdv694smt3x+8v3PlMS1tNRPtH3KJrbBff1B87dkS0ygtZH71abXBNev8TlksPq3Ldqrm57f8mJO9H1+sup26X47PcsY2/q4EAAAAYCMsfuhvk2z4VTrbc+xepecEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB2s4a/HJt4WK6l+WLn03KtSu8jAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADASn4EAAD//xAR0Ao=") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() r0 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r0, @ANYRESHEX=r0, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r1 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r1}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200)) [ 2330.613571][T18417] loop0: detected capacity change from 0 to 128 [ 2330.618225][T18414] FAULT_INJECTION: forcing a failure. [ 2330.618225][T18414] name failslab, interval 1, probability 0, space 0, times 0 [ 2330.644945][T18414] CPU: 0 PID: 18414 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 08:48:40 executing program 3: bpf$OBJ_GET_PROG(0x7, &(0x7f0000000080)=@generic={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x18) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES16=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a5e700000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) setuid(0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='cachefiles_ondemand_fd_release\x00', r1}, 0x10) bpf$OBJ_GET_PROG(0x7, &(0x7f0000000080)=@generic={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x18) (async) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES16=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a5e700000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) (async) setuid(0x0) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='cachefiles_ondemand_fd_release\x00', r1}, 0x10) (async) [ 2330.655106][T18414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2330.665003][T18414] Call Trace: [ 2330.668123][T18414] [ 2330.670900][T18414] dump_stack_lvl+0x151/0x1b7 [ 2330.675414][T18414] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2330.680915][T18414] dump_stack+0x15/0x17 [ 2330.684873][T18414] should_fail+0x3c6/0x510 [ 2330.689125][T18414] __should_failslab+0xa4/0xe0 [ 2330.693812][T18414] ? vm_area_dup+0x26/0x230 [ 2330.698154][T18414] should_failslab+0x9/0x20 [ 2330.702493][T18414] slab_pre_alloc_hook+0x37/0xd0 [ 2330.707269][T18414] ? vm_area_dup+0x26/0x230 08:48:40 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = open(0x0, 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f000000df80)) fstat(r0, &(0x7f000000dfc0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() statx(r0, &(0x7f000000e180)='./file0\x00', 0x1000, 0x80, &(0x7f000000e1c0)) r2 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r3 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r3}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r4, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x0, 0x0) r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200)) 08:48:40 executing program 3: bpf$OBJ_GET_PROG(0x7, &(0x7f0000000080)=@generic={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x18) (async) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES16=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a5e700000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) (async, rerun: 32) setuid(0x0) (async, rerun: 32) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='cachefiles_ondemand_fd_release\x00', r1}, 0x10) [ 2330.711614][T18414] kmem_cache_alloc+0x44/0x200 [ 2330.716205][T18414] vm_area_dup+0x26/0x230 [ 2330.720379][T18414] copy_mm+0x9a1/0x13e0 [ 2330.724372][T18414] ? copy_signal+0x610/0x610 [ 2330.728790][T18414] ? __init_rwsem+0xd6/0x1c0 [ 2330.733218][T18414] ? copy_signal+0x4e3/0x610 [ 2330.737647][T18414] copy_process+0x1149/0x3290 [ 2330.742161][T18414] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2330.747106][T18414] ? copy_clone_args_from_user+0x744/0x830 [ 2330.752749][T18414] kernel_clone+0x21e/0x9e0 [ 2330.757087][T18414] ? __delayed_free_task+0x20/0x20 [ 2330.762032][T18414] ? create_io_thread+0x1e0/0x1e0 [ 2330.766898][T18414] __x64_sys_clone3+0x376/0x3a0 [ 2330.771579][T18414] ? __ia32_sys_clone+0x290/0x290 [ 2330.776439][T18414] ? fput+0x1a/0x20 [ 2330.780089][T18414] ? debug_smp_processor_id+0x17/0x20 [ 2330.785290][T18414] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2330.791197][T18414] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2330.796669][T18414] do_syscall_64+0x3d/0xb0 [ 2330.800918][T18414] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2330.806636][T18414] RIP: 0033:0x7fe6f3145da9 [ 2330.810893][T18414] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2330.830332][T18414] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2330.838578][T18414] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2330.846387][T18414] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2330.854211][T18414] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 08:48:40 executing program 1: r0 = syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) syz_clone3(&(0x7f0000000200)={0x30180aac0, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x21}, &(0x7f00000000c0)=""/45, 0x2d, &(0x7f0000000100)=""/163, &(0x7f00000001c0)=[r0], 0x1}, 0x58) 08:48:40 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 60) [ 2330.862020][T18414] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2330.869823][T18414] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2330.877640][T18414] 08:48:40 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = open(&(0x7f00000000c0)='.\x00', 0x591002, 0x0) write$FUSE_WRITE(r2, &(0x7f0000000080)={0x18, 0xa00}, 0x18) r3 = socket(0x1, 0x803, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)) r5 = socket(0x10, 0x3, 0x0) read(r0, &(0x7f0000000d80)=""/4096, 0x1000) sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000680)=@newlink={0x6c, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x44, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x34, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_EGRESS_QOS={0x28, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xd0}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0xff}}]}]}}}, @IFLA_LINK={0x8, 0x5, r4}]}, 0x6c}}, 0x0) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000001e40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000240)='kmem_cache_free\x00', r6}, 0x10) r7 = syz_open_procfs(0x0, &(0x7f0000000000)='net/vlan/vlan0\x00') ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, &(0x7f0000002a40)={'team0\x00', 0x0}) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000002dc0)={r7, 0xe0, &(0x7f0000002cc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000002b00)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x4, 0x9, &(0x7f0000002b40)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000002b80)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x43, &(0x7f0000002bc0)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000002c00), &(0x7f0000002c40), 0x8, 0x7c, 0x8, 0x8, &(0x7f0000002c80)}}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000002e40)={0x15, 0x1f, &(0x7f0000002840)=@raw=[@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r7}}, @exit, @printk={@lld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}}, @ldst={0x2, 0x0, 0x4, 0x6, 0x9, 0x80, 0x4}, @initr0={0x18, 0x0, 0x0, 0x0, 0x5f, 0x0, 0x0, 0x0, 0x1}, @cb_func={0x18, 0x6, 0x4, 0x0, 0xfffffffffffffffa}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7f}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r7}}], &(0x7f0000002940)='syzkaller\x00', 0x401, 0x9e, &(0x7f0000002980)=""/158, 0x41100, 0x0, '\x00', r8, 0x18, r7, 0x8, &(0x7f0000002a80)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000002ac0)={0x3, 0x5, 0xffffffc0, 0x2}, 0x10, r9, 0xffffffffffffffff, 0x0, &(0x7f0000002e00)=[r7, r7, r7, r7, r7, r7], 0x0, 0x10, 0xe6}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x1d, 0x17, &(0x7f0000000a80)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x1f}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [@map_fd={0x18, 0xd, 0x1, 0x0, r1}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}, @exit, @alu={0x7, 0x0, 0xa, 0x2, 0x7}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000b40)='GPL\x00', 0x1, 0x7c, &(0x7f0000000b80)=""/124, 0xc2f00, 0x8, '\x00', r4, 0x14, r2, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000c00)={0x2, 0x0, 0xb42, 0x20}, 0x10, r9, r2, 0x6, 0x0, &(0x7f0000000c40)=[{0x5, 0x4, 0xd, 0x8}, {0x4, 0x3, 0x2, 0xb}, {0x3, 0x2, 0x7, 0x3}, {0x2, 0x5, 0xb, 0x9}, {0x3, 0x3, 0xb, 0x3}, {0x2, 0x2, 0x9, 0xb}], 0x10, 0x9}, 0x90) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f0000000280)={@mcast1, 0x0}, &(0x7f00000002c0)=0x14) r11 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000580)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0xa, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x4, 0x5}}]}, {0x0, [0x61, 0x2e, 0x2e, 0x2e, 0x30, 0x2e, 0x61, 0x2e]}}, &(0x7f00000003c0)=""/133, 0x3a, 0x85, 0x1, 0x8}, 0x20) r12 = syz_btf_id_by_name$bpf_lsm(&(0x7f0000000640)='bpf_lsm_secmark_refcount_dec\x00') r13 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x6, 0x14, &(0x7f0000000680)=@raw=[@tail_call, @map_idx={0x18, 0xb, 0x5, 0x0, 0x10}, @ldst={0x2, 0x1, 0x1, 0xb, 0xb, 0x30, 0xfffffffffffffffc}, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfeba}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}], &(0x7f0000000740)='GPL\x00', 0x101, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000780)={0x2, 0x3}, 0x8, 0x10, &(0x7f00000007c0)={0x3, 0xa, 0x7, 0x8}, 0x10, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000800)=[{0x3, 0x4, 0x2, 0xa}]}, 0x90) r14 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x19, 0x4, 0x4, 0x8}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x2, 0x6, &(0x7f0000000180)=@framed={{0x18, 0x2}, [@map_fd={0x18, 0x1, 0x1, 0x0, r14}, @call={0x85, 0x0, 0x0, 0x25}]}, &(0x7f0000000000)='GPL\x00', 0x1, 0xd2, &(0x7f0000000040)=""/210}, 0x21) bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x17, 0x1c, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffd24, 0x0, 0x0, 0x0, 0x9c}, [@call={0x85, 0x0, 0x0, 0x21}, @map_idx={0x18, 0x6, 0x5, 0x0, 0x7}, @alu={0x4, 0x0, 0x3, 0xb, 0xb, 0x1, 0x10}, @map_val={0x18, 0x0, 0x2, 0x0, r1}, @alu={0x7, 0x0, 0x6, 0xa, 0xa, 0x80, 0x10}, @generic={0xa1, 0xa, 0x2, 0xe90e, 0x5}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xdc49}}, @map_fd={0x18, 0x1, 0x1, 0x0, r0}, @tail_call, @generic={0xf7, 0xe, 0x9, 0x8, 0x80}]}, &(0x7f0000000000)='syzkaller\x00', 0x38a, 0x0, 0x0, 0x40f00, 0x41, '\x00', r10, 0x15, r11, 0x8, 0x0, 0x0, 0x10, &(0x7f00000005c0)={0x2, 0x0, 0xdb, 0x8001}, 0x10, r12, r13, 0x6, &(0x7f0000000900)=[r14, r1], &(0x7f0000000940)=[{0x3, 0x5, 0x5, 0xc}, {0x5, 0x4, 0x6, 0x6}, {0x3, 0x4, 0x3, 0xc}, {0x1, 0x3, 0x1, 0x2}, {0x1, 0x1, 0x7, 0x7}, {0x4, 0x5, 0x7, 0x3}], 0x10, 0x2}, 0x90) r15 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r15}, 0x10) setuid(0x0) 08:48:40 executing program 1: r0 = syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) syz_clone3(&(0x7f0000000200)={0x30180aac0, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x21}, &(0x7f00000000c0)=""/45, 0x2d, &(0x7f0000000100)=""/163, &(0x7f00000001c0)=[r0], 0x1}, 0x58) (async) syz_clone3(&(0x7f0000000200)={0x30180aac0, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x21}, &(0x7f00000000c0)=""/45, 0x2d, &(0x7f0000000100)=""/163, &(0x7f00000001c0)=[r0], 0x1}, 0x58) [ 2330.909836][T18436] FAULT_INJECTION: forcing a failure. [ 2330.909836][T18436] name failslab, interval 1, probability 0, space 0, times 0 [ 2330.928124][T18436] CPU: 0 PID: 18436 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2330.938401][T18436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2330.948363][T18436] Call Trace: [ 2330.950621][T18444] loop2: detected capacity change from 0 to 128 [ 2330.951480][T18436] [ 2330.951489][T18436] dump_stack_lvl+0x151/0x1b7 [ 2330.964854][T18436] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2330.970325][T18436] dump_stack+0x15/0x17 [ 2330.974309][T18436] should_fail+0x3c6/0x510 [ 2330.978579][T18436] __should_failslab+0xa4/0xe0 [ 2330.983164][T18436] ? vm_area_dup+0x26/0x230 [ 2330.987500][T18436] should_failslab+0x9/0x20 [ 2330.991842][T18436] slab_pre_alloc_hook+0x37/0xd0 [ 2330.996612][T18436] ? vm_area_dup+0x26/0x230 [ 2331.000957][T18436] kmem_cache_alloc+0x44/0x200 [ 2331.005555][T18436] vm_area_dup+0x26/0x230 [ 2331.009719][T18436] copy_mm+0x9a1/0x13e0 [ 2331.013727][T18436] ? copy_signal+0x610/0x610 [ 2331.018134][T18436] ? __init_rwsem+0xd6/0x1c0 [ 2331.022564][T18436] ? copy_signal+0x4e3/0x610 [ 2331.026988][T18436] copy_process+0x1149/0x3290 [ 2331.031519][T18436] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2331.036455][T18436] ? copy_clone_args_from_user+0x744/0x830 [ 2331.042092][T18436] kernel_clone+0x21e/0x9e0 [ 2331.046864][T18436] ? __delayed_free_task+0x20/0x20 [ 2331.051816][T18436] ? create_io_thread+0x1e0/0x1e0 [ 2331.056682][T18436] __x64_sys_clone3+0x376/0x3a0 [ 2331.061448][T18436] ? __ia32_sys_clone+0x290/0x290 [ 2331.066323][T18436] ? fput+0x1a/0x20 [ 2331.069953][T18436] ? debug_smp_processor_id+0x17/0x20 [ 2331.075171][T18436] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2331.081063][T18436] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2331.086534][T18436] do_syscall_64+0x3d/0xb0 [ 2331.090782][T18436] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2331.096539][T18436] RIP: 0033:0x7fe6f3145da9 [ 2331.100766][T18436] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2331.120476][T18436] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2331.128810][T18436] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2331.136617][T18436] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2331.144429][T18436] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2331.152240][T18436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 08:48:40 executing program 1: r0 = syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) syz_clone3(&(0x7f0000000200)={0x30180aac0, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x21}, &(0x7f00000000c0)=""/45, 0x2d, &(0x7f0000000100)=""/163, &(0x7f00000001c0)=[r0], 0x1}, 0x58) [ 2331.160051][T18436] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2331.167874][T18436] [ 2331.172940][T18443] loop0: detected capacity change from 0 to 128 08:48:40 executing program 1: munlockall() bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x80000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:40 executing program 1: munlockall() bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x80000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) munlockall() (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) (async) syz_clone3(&(0x7f0000009140)={0x80000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (async) 08:48:40 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) (async) r2 = open(&(0x7f00000000c0)='.\x00', 0x591002, 0x0) write$FUSE_WRITE(r2, &(0x7f0000000080)={0x18, 0xa00}, 0x18) r3 = socket(0x1, 0x803, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)) (async) r5 = socket(0x10, 0x3, 0x0) read(r0, &(0x7f0000000d80)=""/4096, 0x1000) (async) sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000680)=@newlink={0x6c, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x44, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x34, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_EGRESS_QOS={0x28, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xd0}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0xff}}]}]}}}, @IFLA_LINK={0x8, 0x5, r4}]}, 0x6c}}, 0x0) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000001e40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000240)='kmem_cache_free\x00', r6}, 0x10) (async) r7 = syz_open_procfs(0x0, &(0x7f0000000000)='net/vlan/vlan0\x00') ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, &(0x7f0000002a40)={'team0\x00', 0x0}) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000002dc0)={r7, 0xe0, &(0x7f0000002cc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000002b00)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x4, 0x9, &(0x7f0000002b40)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000002b80)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x43, &(0x7f0000002bc0)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000002c00), &(0x7f0000002c40), 0x8, 0x7c, 0x8, 0x8, &(0x7f0000002c80)}}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000002e40)={0x15, 0x1f, &(0x7f0000002840)=@raw=[@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r7}}, @exit, @printk={@lld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}}, @ldst={0x2, 0x0, 0x4, 0x6, 0x9, 0x80, 0x4}, @initr0={0x18, 0x0, 0x0, 0x0, 0x5f, 0x0, 0x0, 0x0, 0x1}, @cb_func={0x18, 0x6, 0x4, 0x0, 0xfffffffffffffffa}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7f}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r7}}], &(0x7f0000002940)='syzkaller\x00', 0x401, 0x9e, &(0x7f0000002980)=""/158, 0x41100, 0x0, '\x00', r8, 0x18, r7, 0x8, &(0x7f0000002a80)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000002ac0)={0x3, 0x5, 0xffffffc0, 0x2}, 0x10, r9, 0xffffffffffffffff, 0x0, &(0x7f0000002e00)=[r7, r7, r7, r7, r7, r7], 0x0, 0x10, 0xe6}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x1d, 0x17, &(0x7f0000000a80)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x1f}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [@map_fd={0x18, 0xd, 0x1, 0x0, r1}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}, @exit, @alu={0x7, 0x0, 0xa, 0x2, 0x7}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000b40)='GPL\x00', 0x1, 0x7c, &(0x7f0000000b80)=""/124, 0xc2f00, 0x8, '\x00', r4, 0x14, r2, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000c00)={0x2, 0x0, 0xb42, 0x20}, 0x10, r9, r2, 0x6, 0x0, &(0x7f0000000c40)=[{0x5, 0x4, 0xd, 0x8}, {0x4, 0x3, 0x2, 0xb}, {0x3, 0x2, 0x7, 0x3}, {0x2, 0x5, 0xb, 0x9}, {0x3, 0x3, 0xb, 0x3}, {0x2, 0x2, 0x9, 0xb}], 0x10, 0x9}, 0x90) (async) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f0000000280)={@mcast1, 0x0}, &(0x7f00000002c0)=0x14) (async) r11 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000580)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0xa, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x4, 0x5}}]}, {0x0, [0x61, 0x2e, 0x2e, 0x2e, 0x30, 0x2e, 0x61, 0x2e]}}, &(0x7f00000003c0)=""/133, 0x3a, 0x85, 0x1, 0x8}, 0x20) (async) r12 = syz_btf_id_by_name$bpf_lsm(&(0x7f0000000640)='bpf_lsm_secmark_refcount_dec\x00') r13 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x6, 0x14, &(0x7f0000000680)=@raw=[@tail_call, @map_idx={0x18, 0xb, 0x5, 0x0, 0x10}, @ldst={0x2, 0x1, 0x1, 0xb, 0xb, 0x30, 0xfffffffffffffffc}, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfeba}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}], &(0x7f0000000740)='GPL\x00', 0x101, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000780)={0x2, 0x3}, 0x8, 0x10, &(0x7f00000007c0)={0x3, 0xa, 0x7, 0x8}, 0x10, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000800)=[{0x3, 0x4, 0x2, 0xa}]}, 0x90) (async) r14 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x19, 0x4, 0x4, 0x8}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x2, 0x6, &(0x7f0000000180)=@framed={{0x18, 0x2}, [@map_fd={0x18, 0x1, 0x1, 0x0, r14}, @call={0x85, 0x0, 0x0, 0x25}]}, &(0x7f0000000000)='GPL\x00', 0x1, 0xd2, &(0x7f0000000040)=""/210}, 0x21) (async) bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x17, 0x1c, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffd24, 0x0, 0x0, 0x0, 0x9c}, [@call={0x85, 0x0, 0x0, 0x21}, @map_idx={0x18, 0x6, 0x5, 0x0, 0x7}, @alu={0x4, 0x0, 0x3, 0xb, 0xb, 0x1, 0x10}, @map_val={0x18, 0x0, 0x2, 0x0, r1}, @alu={0x7, 0x0, 0x6, 0xa, 0xa, 0x80, 0x10}, @generic={0xa1, 0xa, 0x2, 0xe90e, 0x5}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xdc49}}, @map_fd={0x18, 0x1, 0x1, 0x0, r0}, @tail_call, @generic={0xf7, 0xe, 0x9, 0x8, 0x80}]}, &(0x7f0000000000)='syzkaller\x00', 0x38a, 0x0, 0x0, 0x40f00, 0x41, '\x00', r10, 0x15, r11, 0x8, 0x0, 0x0, 0x10, &(0x7f00000005c0)={0x2, 0x0, 0xdb, 0x8001}, 0x10, r12, r13, 0x6, &(0x7f0000000900)=[r14, r1], &(0x7f0000000940)=[{0x3, 0x5, 0x5, 0xc}, {0x5, 0x4, 0x6, 0x6}, {0x3, 0x4, 0x3, 0xc}, {0x1, 0x3, 0x1, 0x2}, {0x1, 0x1, 0x7, 0x7}, {0x4, 0x5, 0x7, 0x3}], 0x10, 0x2}, 0x90) (async) r15 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r15}, 0x10) setuid(0x0) 08:48:40 executing program 1: munlockall() (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x80000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:40 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) r0 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000000)='syz1\x00', 0x200002, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58) 08:48:40 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 61) 08:48:40 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) (async, rerun: 64) r2 = open(&(0x7f00000000c0)='.\x00', 0x591002, 0x0) (rerun: 64) write$FUSE_WRITE(r2, &(0x7f0000000080)={0x18, 0xa00}, 0x18) (async) r3 = socket(0x1, 0x803, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)) r5 = socket(0x10, 0x3, 0x0) (async) read(r0, &(0x7f0000000d80)=""/4096, 0x1000) sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000680)=@newlink={0x6c, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x44, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x34, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_EGRESS_QOS={0x28, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xd0}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0xff}}]}]}}}, @IFLA_LINK={0x8, 0x5, r4}]}, 0x6c}}, 0x0) (async) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000001e40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000240)='kmem_cache_free\x00', r6}, 0x10) (async) r7 = syz_open_procfs(0x0, &(0x7f0000000000)='net/vlan/vlan0\x00') ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, &(0x7f0000002a40)={'team0\x00', 0x0}) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000002dc0)={r7, 0xe0, &(0x7f0000002cc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000002b00)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x4, 0x9, &(0x7f0000002b40)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000002b80)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x43, &(0x7f0000002bc0)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000002c00), &(0x7f0000002c40), 0x8, 0x7c, 0x8, 0x8, &(0x7f0000002c80)}}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000002e40)={0x15, 0x1f, &(0x7f0000002840)=@raw=[@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r7}}, @exit, @printk={@lld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}}, @ldst={0x2, 0x0, 0x4, 0x6, 0x9, 0x80, 0x4}, @initr0={0x18, 0x0, 0x0, 0x0, 0x5f, 0x0, 0x0, 0x0, 0x1}, @cb_func={0x18, 0x6, 0x4, 0x0, 0xfffffffffffffffa}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7f}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r7}}], &(0x7f0000002940)='syzkaller\x00', 0x401, 0x9e, &(0x7f0000002980)=""/158, 0x41100, 0x0, '\x00', r8, 0x18, r7, 0x8, &(0x7f0000002a80)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000002ac0)={0x3, 0x5, 0xffffffc0, 0x2}, 0x10, r9, 0xffffffffffffffff, 0x0, &(0x7f0000002e00)=[r7, r7, r7, r7, r7, r7], 0x0, 0x10, 0xe6}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x1d, 0x17, &(0x7f0000000a80)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x1f}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [@map_fd={0x18, 0xd, 0x1, 0x0, r1}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}, @exit, @alu={0x7, 0x0, 0xa, 0x2, 0x7}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000b40)='GPL\x00', 0x1, 0x7c, &(0x7f0000000b80)=""/124, 0xc2f00, 0x8, '\x00', r4, 0x14, r2, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000c00)={0x2, 0x0, 0xb42, 0x20}, 0x10, r9, r2, 0x6, 0x0, &(0x7f0000000c40)=[{0x5, 0x4, 0xd, 0x8}, {0x4, 0x3, 0x2, 0xb}, {0x3, 0x2, 0x7, 0x3}, {0x2, 0x5, 0xb, 0x9}, {0x3, 0x3, 0xb, 0x3}, {0x2, 0x2, 0x9, 0xb}], 0x10, 0x9}, 0x90) (async, rerun: 64) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f0000000280)={@mcast1, 0x0}, &(0x7f00000002c0)=0x14) (rerun: 64) r11 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000580)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0xa, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x4, 0x5}}]}, {0x0, [0x61, 0x2e, 0x2e, 0x2e, 0x30, 0x2e, 0x61, 0x2e]}}, &(0x7f00000003c0)=""/133, 0x3a, 0x85, 0x1, 0x8}, 0x20) (async) r12 = syz_btf_id_by_name$bpf_lsm(&(0x7f0000000640)='bpf_lsm_secmark_refcount_dec\x00') (async, rerun: 32) r13 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x6, 0x14, &(0x7f0000000680)=@raw=[@tail_call, @map_idx={0x18, 0xb, 0x5, 0x0, 0x10}, @ldst={0x2, 0x1, 0x1, 0xb, 0xb, 0x30, 0xfffffffffffffffc}, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfeba}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}], &(0x7f0000000740)='GPL\x00', 0x101, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000780)={0x2, 0x3}, 0x8, 0x10, &(0x7f00000007c0)={0x3, 0xa, 0x7, 0x8}, 0x10, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000800)=[{0x3, 0x4, 0x2, 0xa}]}, 0x90) (rerun: 32) r14 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x19, 0x4, 0x4, 0x8}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x2, 0x6, &(0x7f0000000180)=@framed={{0x18, 0x2}, [@map_fd={0x18, 0x1, 0x1, 0x0, r14}, @call={0x85, 0x0, 0x0, 0x25}]}, &(0x7f0000000000)='GPL\x00', 0x1, 0xd2, &(0x7f0000000040)=""/210}, 0x21) bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x17, 0x1c, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffd24, 0x0, 0x0, 0x0, 0x9c}, [@call={0x85, 0x0, 0x0, 0x21}, @map_idx={0x18, 0x6, 0x5, 0x0, 0x7}, @alu={0x4, 0x0, 0x3, 0xb, 0xb, 0x1, 0x10}, @map_val={0x18, 0x0, 0x2, 0x0, r1}, @alu={0x7, 0x0, 0x6, 0xa, 0xa, 0x80, 0x10}, @generic={0xa1, 0xa, 0x2, 0xe90e, 0x5}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xdc49}}, @map_fd={0x18, 0x1, 0x1, 0x0, r0}, @tail_call, @generic={0xf7, 0xe, 0x9, 0x8, 0x80}]}, &(0x7f0000000000)='syzkaller\x00', 0x38a, 0x0, 0x0, 0x40f00, 0x41, '\x00', r10, 0x15, r11, 0x8, 0x0, 0x0, 0x10, &(0x7f00000005c0)={0x2, 0x0, 0xdb, 0x8001}, 0x10, r12, r13, 0x6, &(0x7f0000000900)=[r14, r1], &(0x7f0000000940)=[{0x3, 0x5, 0x5, 0xc}, {0x5, 0x4, 0x6, 0x6}, {0x3, 0x4, 0x3, 0xc}, {0x1, 0x3, 0x1, 0x2}, {0x1, 0x1, 0x7, 0x7}, {0x4, 0x5, 0x7, 0x3}], 0x10, 0x2}, 0x90) (async) r15 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r15}, 0x10) (async, rerun: 32) setuid(0x0) (rerun: 32) 08:48:40 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) r0 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000000)='syz1\x00', 0x200002, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58) 08:48:40 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) r0 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000000)='syz1\x00', 0x200002, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58) [ 2331.474768][T18485] FAULT_INJECTION: forcing a failure. [ 2331.474768][T18485] name failslab, interval 1, probability 0, space 0, times 0 [ 2331.497074][T18485] CPU: 0 PID: 18485 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2331.507238][T18485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2331.517163][T18485] Call Trace: [ 2331.520253][T18485] 08:48:41 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) sendmmsg$inet(r0, &(0x7f0000000800)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f00000003c0)="3f2224d1df389bdc743ba039df1c04c20c5225143a301732a162f8982513f803fd37e44abcbd53dccaa944659d1b680b66aa97776ebcf7e33c1d1f9e395b7195c571eaff7b8f7933b59a6c678c46df1c21dc42b3e075a647594479992cb74de07136a60d83fc3acc98edfcee6b071bd78bfb1ac9a58665719162e6afcd59d52c05759a22c863c3633e5b8c8ee28125d59076040fd4ee343952040e953a537e56a0eb581ffc80dfc166b78cf7b5119b1f64bc72b1bd08a55c87d87f8dca66788df9250824a1ec50", 0xc7}, {&(0x7f0000000040)="1edbadffeae18533ee1cc9ff9ae9acf147ea7e39c4faa62966", 0x19}, {&(0x7f0000000180)="fd113676d7", 0x5}, {&(0x7f00000004c0)="120aff5569dc9ec8d0928b9ba0473bf8c17d7d8330acbded9ff974bfb4eca4ffc439b352f929d9f2d566a67d0d7f0203f0bb44ab8c00d80382e4c025a3d85281f0d57c85f0f68e1b7eb8e7a2c8f62a8758c484b5114905ceaddc7db2456620a83ff4245b786faa1daaec345d31bb6dcaa5ae9a", 0x73}, {&(0x7f00000001c0)="2d04fad12f29105f8e0adecdac6f035938a64332a5a98b4a3260d5340cf49c18b16a24a68c02015c280795ebac6578f31cb02296ab756cc32c4c052dafa66e", 0x3f}, {&(0x7f0000000640)="898e57be336517706094008af69ad8227b279c1ab95cb14ec2f53d4ef48e5da17a50b2688c8147b07e469f4b26150bb13b05e0609c87ba4d0b80ad9497f1057d020cb87164e26f7f17482d57a746f91e28d49711", 0x54}], 0x6}}], 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4) sendto$inet(r0, &(0x7f00000012c0)="09278a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2331.523032][T18485] dump_stack_lvl+0x151/0x1b7 [ 2331.527547][T18485] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2331.533015][T18485] dump_stack+0x15/0x17 [ 2331.537006][T18485] should_fail+0x3c6/0x510 [ 2331.541258][T18485] __should_failslab+0xa4/0xe0 [ 2331.545859][T18485] ? anon_vma_clone+0x9a/0x500 [ 2331.550484][T18485] should_failslab+0x9/0x20 [ 2331.554795][T18485] slab_pre_alloc_hook+0x37/0xd0 [ 2331.559572][T18485] ? anon_vma_clone+0x9a/0x500 [ 2331.564170][T18485] kmem_cache_alloc+0x44/0x200 [ 2331.568773][T18485] anon_vma_clone+0x9a/0x500 [ 2331.573200][T18485] anon_vma_fork+0x91/0x4e0 [ 2331.577543][T18485] ? anon_vma_name+0x43/0x70 [ 2331.581965][T18485] ? vm_area_dup+0x17a/0x230 [ 2331.586392][T18485] copy_mm+0xa3a/0x13e0 [ 2331.590388][T18485] ? copy_signal+0x610/0x610 [ 2331.594806][T18485] ? __init_rwsem+0xd6/0x1c0 [ 2331.599530][T18485] ? copy_signal+0x4e3/0x610 [ 2331.603923][T18485] copy_process+0x1149/0x3290 [ 2331.608441][T18485] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2331.613388][T18485] ? copy_clone_args_from_user+0x744/0x830 [ 2331.619027][T18485] kernel_clone+0x21e/0x9e0 [ 2331.623371][T18485] ? __delayed_free_task+0x20/0x20 [ 2331.628314][T18485] ? create_io_thread+0x1e0/0x1e0 [ 2331.633176][T18485] __x64_sys_clone3+0x376/0x3a0 [ 2331.637859][T18485] ? __ia32_sys_clone+0x290/0x290 [ 2331.642721][T18485] ? bpf_trace_run2+0xf1/0x210 [ 2331.647317][T18485] ? fput+0x1a/0x20 [ 2331.650987][T18485] ? __bpf_trace_sys_enter+0x62/0x70 [ 2331.656095][T18485] ? syscall_enter_from_user_mode+0x14d/0x1b0 [ 2331.662011][T18485] do_syscall_64+0x3d/0xb0 [ 2331.666243][T18485] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2331.672052][T18485] RIP: 0033:0x7fe6f3145da9 [ 2331.676414][T18485] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2331.695851][T18485] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2331.704082][T18485] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2331.711979][T18485] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 08:48:41 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) (async) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) sendmmsg$inet(r0, &(0x7f0000000800)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f00000003c0)="3f2224d1df389bdc743ba039df1c04c20c5225143a301732a162f8982513f803fd37e44abcbd53dccaa944659d1b680b66aa97776ebcf7e33c1d1f9e395b7195c571eaff7b8f7933b59a6c678c46df1c21dc42b3e075a647594479992cb74de07136a60d83fc3acc98edfcee6b071bd78bfb1ac9a58665719162e6afcd59d52c05759a22c863c3633e5b8c8ee28125d59076040fd4ee343952040e953a537e56a0eb581ffc80dfc166b78cf7b5119b1f64bc72b1bd08a55c87d87f8dca66788df9250824a1ec50", 0xc7}, {&(0x7f0000000040)="1edbadffeae18533ee1cc9ff9ae9acf147ea7e39c4faa62966", 0x19}, {&(0x7f0000000180)="fd113676d7", 0x5}, {&(0x7f00000004c0)="120aff5569dc9ec8d0928b9ba0473bf8c17d7d8330acbded9ff974bfb4eca4ffc439b352f929d9f2d566a67d0d7f0203f0bb44ab8c00d80382e4c025a3d85281f0d57c85f0f68e1b7eb8e7a2c8f62a8758c484b5114905ceaddc7db2456620a83ff4245b786faa1daaec345d31bb6dcaa5ae9a", 0x73}, {&(0x7f00000001c0)="2d04fad12f29105f8e0adecdac6f035938a64332a5a98b4a3260d5340cf49c18b16a24a68c02015c280795ebac6578f31cb02296ab756cc32c4c052dafa66e", 0x3f}, {&(0x7f0000000640)="898e57be336517706094008af69ad8227b279c1ab95cb14ec2f53d4ef48e5da17a50b2688c8147b07e469f4b26150bb13b05e0609c87ba4d0b80ad9497f1057d020cb87164e26f7f17482d57a746f91e28d49711", 0x54}], 0x6}}], 0x1, 0x0) (async) sendmmsg$inet(r0, &(0x7f0000000800)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f00000003c0)="3f2224d1df389bdc743ba039df1c04c20c5225143a301732a162f8982513f803fd37e44abcbd53dccaa944659d1b680b66aa97776ebcf7e33c1d1f9e395b7195c571eaff7b8f7933b59a6c678c46df1c21dc42b3e075a647594479992cb74de07136a60d83fc3acc98edfcee6b071bd78bfb1ac9a58665719162e6afcd59d52c05759a22c863c3633e5b8c8ee28125d59076040fd4ee343952040e953a537e56a0eb581ffc80dfc166b78cf7b5119b1f64bc72b1bd08a55c87d87f8dca66788df9250824a1ec50", 0xc7}, {&(0x7f0000000040)="1edbadffeae18533ee1cc9ff9ae9acf147ea7e39c4faa62966", 0x19}, {&(0x7f0000000180)="fd113676d7", 0x5}, {&(0x7f00000004c0)="120aff5569dc9ec8d0928b9ba0473bf8c17d7d8330acbded9ff974bfb4eca4ffc439b352f929d9f2d566a67d0d7f0203f0bb44ab8c00d80382e4c025a3d85281f0d57c85f0f68e1b7eb8e7a2c8f62a8758c484b5114905ceaddc7db2456620a83ff4245b786faa1daaec345d31bb6dcaa5ae9a", 0x73}, {&(0x7f00000001c0)="2d04fad12f29105f8e0adecdac6f035938a64332a5a98b4a3260d5340cf49c18b16a24a68c02015c280795ebac6578f31cb02296ab756cc32c4c052dafa66e", 0x3f}, {&(0x7f0000000640)="898e57be336517706094008af69ad8227b279c1ab95cb14ec2f53d4ef48e5da17a50b2688c8147b07e469f4b26150bb13b05e0609c87ba4d0b80ad9497f1057d020cb87164e26f7f17482d57a746f91e28d49711", 0x54}], 0x6}}], 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4) sendto$inet(r0, &(0x7f00000012c0)="09278a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:41 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000140)={'syztnl2\x00', &(0x7f00000003c0)=ANY=[@ANYBLOB='syztnl2\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="00200060000000040000081049d500141a9502440c7150ffffffff000000060000"]}) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000880)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, &(0x7f0000000580)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x4, 0x6, &(0x7f00000005c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000640)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xf6, &(0x7f0000000680)=[{}], 0x8, 0x10, &(0x7f00000006c0), &(0x7f0000000700), 0x8, 0xc3, 0x8, 0x8, &(0x7f0000000740)}}, 0x10) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0x9, &(0x7f00000008c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8f48}, [@jmp={0x5, 0x0, 0x8, 0x1, 0x8, 0x100, 0xfffffffffffffff0}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff9}, @map_idx={0x18, 0x5, 0x5, 0x0, 0x8}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff8}, @exit]}, &(0x7f0000000940)='GPL\x00', 0x6, 0x0, 0x0, 0x40f00, 0x41, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000980)={0x0, 0x4}, 0x8, 0x10, &(0x7f00000009c0)={0x0, 0x8, 0x62, 0xffffffff}, 0x10, 0x0, 0x0, 0x6, &(0x7f0000000a00)=[r1], &(0x7f0000000a40)=[{0x5, 0x5, 0x1, 0x3}, {0x4, 0x2, 0x0, 0x1}, {0x1, 0x4, 0xe, 0x8}, {0x1, 0x4, 0x0, 0x8}, {0x0, 0x3, 0x5, 0x7}, {0x4, 0x1, 0x10, 0x3}], 0x10, 0xdf98}, 0x90) r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) r6 = socket$igmp6(0xa, 0x3, 0x2) write(r6, &(0x7f0000002280)="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", 0x1000) ioctl$sock_inet6_SIOCSIFADDR(r6, 0x8916, &(0x7f0000000cc0)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x46, r2}) getdents64(r5, &(0x7f0000001280)=""/4089, 0xff9) bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x1, 0x11, &(0x7f0000000080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x50d0}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@map_fd={0x18, 0x5, 0x1, 0x0, r0}], {{}, {}, {0x85, 0x0, 0x0, 0x1}}}, &(0x7f0000000000)='syzkaller\x00', 0x9, 0x48, &(0x7f0000000280)=""/72, 0x41000, 0x50, '\x00', r2, 0x27, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000000440)={0x3, 0x3, 0xffffffff, 0x1000}, 0x10, r3, r4, 0x3, &(0x7f0000000b80)=[r0, r1, r5], &(0x7f0000000bc0)=[{0x0, 0x4, 0x7, 0xa}, {0x4, 0x1, 0xd, 0x6}, {0x5, 0x3, 0x0, 0x3}], 0x10, 0x3ad}, 0x90) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r7}, 0x10) setuid(0x0) [ 2331.719884][T18485] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2331.727685][T18485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2331.735492][T18485] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2331.743316][T18485] 08:48:41 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000140)={'syztnl2\x00', &(0x7f00000003c0)=ANY=[@ANYBLOB='syztnl2\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="00200060000000040000081049d500141a9502440c7150ffffffff000000060000"]}) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000880)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, &(0x7f0000000580)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x4, 0x6, &(0x7f00000005c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000640)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xf6, &(0x7f0000000680)=[{}], 0x8, 0x10, &(0x7f00000006c0), &(0x7f0000000700), 0x8, 0xc3, 0x8, 0x8, &(0x7f0000000740)}}, 0x10) (async) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0x9, &(0x7f00000008c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8f48}, [@jmp={0x5, 0x0, 0x8, 0x1, 0x8, 0x100, 0xfffffffffffffff0}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff9}, @map_idx={0x18, 0x5, 0x5, 0x0, 0x8}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff8}, @exit]}, &(0x7f0000000940)='GPL\x00', 0x6, 0x0, 0x0, 0x40f00, 0x41, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000980)={0x0, 0x4}, 0x8, 0x10, &(0x7f00000009c0)={0x0, 0x8, 0x62, 0xffffffff}, 0x10, 0x0, 0x0, 0x6, &(0x7f0000000a00)=[r1], &(0x7f0000000a40)=[{0x5, 0x5, 0x1, 0x3}, {0x4, 0x2, 0x0, 0x1}, {0x1, 0x4, 0xe, 0x8}, {0x1, 0x4, 0x0, 0x8}, {0x0, 0x3, 0x5, 0x7}, {0x4, 0x1, 0x10, 0x3}], 0x10, 0xdf98}, 0x90) r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) (async) r6 = socket$igmp6(0xa, 0x3, 0x2) write(r6, &(0x7f0000002280)="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", 0x1000) (async) ioctl$sock_inet6_SIOCSIFADDR(r6, 0x8916, &(0x7f0000000cc0)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x46, r2}) getdents64(r5, &(0x7f0000001280)=""/4089, 0xff9) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x1, 0x11, &(0x7f0000000080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x50d0}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@map_fd={0x18, 0x5, 0x1, 0x0, r0}], {{}, {}, {0x85, 0x0, 0x0, 0x1}}}, &(0x7f0000000000)='syzkaller\x00', 0x9, 0x48, &(0x7f0000000280)=""/72, 0x41000, 0x50, '\x00', r2, 0x27, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000000440)={0x3, 0x3, 0xffffffff, 0x1000}, 0x10, r3, r4, 0x3, &(0x7f0000000b80)=[r0, r1, r5], &(0x7f0000000bc0)=[{0x0, 0x4, 0x7, 0xa}, {0x4, 0x1, 0xd, 0x6}, {0x5, 0x3, 0x0, 0x3}], 0x10, 0x3ad}, 0x90) (async) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r7}, 0x10) (async) setuid(0x0) 08:48:41 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) (async) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) (async) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10) (async) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) (async) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) (async) sendmmsg$inet(r0, &(0x7f0000000800)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f00000003c0)="3f2224d1df389bdc743ba039df1c04c20c5225143a301732a162f8982513f803fd37e44abcbd53dccaa944659d1b680b66aa97776ebcf7e33c1d1f9e395b7195c571eaff7b8f7933b59a6c678c46df1c21dc42b3e075a647594479992cb74de07136a60d83fc3acc98edfcee6b071bd78bfb1ac9a58665719162e6afcd59d52c05759a22c863c3633e5b8c8ee28125d59076040fd4ee343952040e953a537e56a0eb581ffc80dfc166b78cf7b5119b1f64bc72b1bd08a55c87d87f8dca66788df9250824a1ec50", 0xc7}, {&(0x7f0000000040)="1edbadffeae18533ee1cc9ff9ae9acf147ea7e39c4faa62966", 0x19}, {&(0x7f0000000180)="fd113676d7", 0x5}, {&(0x7f00000004c0)="120aff5569dc9ec8d0928b9ba0473bf8c17d7d8330acbded9ff974bfb4eca4ffc439b352f929d9f2d566a67d0d7f0203f0bb44ab8c00d80382e4c025a3d85281f0d57c85f0f68e1b7eb8e7a2c8f62a8758c484b5114905ceaddc7db2456620a83ff4245b786faa1daaec345d31bb6dcaa5ae9a", 0x73}, {&(0x7f00000001c0)="2d04fad12f29105f8e0adecdac6f035938a64332a5a98b4a3260d5340cf49c18b16a24a68c02015c280795ebac6578f31cb02296ab756cc32c4c052dafa66e", 0x3f}, {&(0x7f0000000640)="898e57be336517706094008af69ad8227b279c1ab95cb14ec2f53d4ef48e5da17a50b2688c8147b07e469f4b26150bb13b05e0609c87ba4d0b80ad9497f1057d020cb87164e26f7f17482d57a746f91e28d49711", 0x54}], 0x6}}], 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4) sendto$inet(r0, &(0x7f00000012c0)="09278a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27) (async) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:41 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000140)={'syztnl2\x00', &(0x7f00000003c0)=ANY=[@ANYBLOB='syztnl2\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="00200060000000040000081049d500141a9502440c7150ffffffff000000060000"]}) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000880)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, &(0x7f0000000580)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x4, 0x6, &(0x7f00000005c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000640)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xf6, &(0x7f0000000680)=[{}], 0x8, 0x10, &(0x7f00000006c0), &(0x7f0000000700), 0x8, 0xc3, 0x8, 0x8, &(0x7f0000000740)}}, 0x10) (async) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0x9, &(0x7f00000008c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8f48}, [@jmp={0x5, 0x0, 0x8, 0x1, 0x8, 0x100, 0xfffffffffffffff0}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff9}, @map_idx={0x18, 0x5, 0x5, 0x0, 0x8}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff8}, @exit]}, &(0x7f0000000940)='GPL\x00', 0x6, 0x0, 0x0, 0x40f00, 0x41, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000980)={0x0, 0x4}, 0x8, 0x10, &(0x7f00000009c0)={0x0, 0x8, 0x62, 0xffffffff}, 0x10, 0x0, 0x0, 0x6, &(0x7f0000000a00)=[r1], &(0x7f0000000a40)=[{0x5, 0x5, 0x1, 0x3}, {0x4, 0x2, 0x0, 0x1}, {0x1, 0x4, 0xe, 0x8}, {0x1, 0x4, 0x0, 0x8}, {0x0, 0x3, 0x5, 0x7}, {0x4, 0x1, 0x10, 0x3}], 0x10, 0xdf98}, 0x90) r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) (async) r6 = socket$igmp6(0xa, 0x3, 0x2) write(r6, &(0x7f0000002280)="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", 0x1000) (async) ioctl$sock_inet6_SIOCSIFADDR(r6, 0x8916, &(0x7f0000000cc0)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x46, r2}) (async) getdents64(r5, &(0x7f0000001280)=""/4089, 0xff9) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x1, 0x11, &(0x7f0000000080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x50d0}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@map_fd={0x18, 0x5, 0x1, 0x0, r0}], {{}, {}, {0x85, 0x0, 0x0, 0x1}}}, &(0x7f0000000000)='syzkaller\x00', 0x9, 0x48, &(0x7f0000000280)=""/72, 0x41000, 0x50, '\x00', r2, 0x27, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000000440)={0x3, 0x3, 0xffffffff, 0x1000}, 0x10, r3, r4, 0x3, &(0x7f0000000b80)=[r0, r1, r5], &(0x7f0000000bc0)=[{0x0, 0x4, 0x7, 0xa}, {0x4, 0x1, 0xd, 0x6}, {0x5, 0x3, 0x0, 0x3}], 0x10, 0x3ad}, 0x90) (async) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r7}, 0x10) setuid(0x0) 08:48:41 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = open(0x0, 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f000000df80)) fstat(r0, &(0x7f000000dfc0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() statx(r0, &(0x7f000000e180)='./file0\x00', 0x1000, 0x80, &(0x7f000000e1c0)) r2 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="ca42ad87b11bb3b2507e03129a435e7c99104f0cd507000000046f9445631055f28a4e6777e97047e5807db4996b10208d04454ea654888bf754956945961677b348d33478b3d8f70eac439f502bea81070bba59ccec17e7d182ea9fdfde2b94e826d24492db7f8983925947dc2b357943622c9feaa43512f4afed56e4010e2543166dfc76b6668c1ccb960ebeb21ae5eaaa01a65f105a20fdcdb5c20c2245eecbd4e49cbb07060000003674c0a6397ca594873755027deb77b094a29545f674e5a44c597f0473f49684719c9445839a59a09e1c1361d72b8a1dd163eecd03bd218ba880482b173bef3f91cbd40796bdeb13d63c1eadecb3dfe83f1d88b8b7fb053eed7e742bfff269a5c16070aa8b51d4538811d4de1d198d2fdcfa404fc9e6df202578e962544794e77c2425f73fcd3d0cd1d4ff004ec0754e946adff5e93ffc586126de12ee3a2b1e347cbf598c20648bf702511dd953cfd9eef7b0cf148a63cca032a3f5c2247efc16857ad98255693a11149dde8fed62623d07d357b0c1251f9c4f7492c9e5000000001c2485258e4a9f46a454427a1cdb84782846052b20554446e9b9b6d45be858bf97e390544b8e54d32db951f89f86bd455af5174c9edcd7bd4e5448cc3c2b7a5b07c20b369ba5effd8334a4b597daa76b65dece5249d08f5b66dd8c3cd9aab9fcffff5577502dc33d51ed2a25c3640cd073b7d51d12266c6079622281358c96043413eeb5938648ac8b3f8b4d38ef5331499b828a6579d5048ed27ea04e2e070f2ba16433bf79a7af308fa86e765081df9163e034dcb6505ea7890693156414a8b0d5fceb38ffe232dafc93ce08e1fbb2000000000025fb6d6cd068b59d26d3835002ec4c6700bba9e73ffe3ee7aad4834800000000000000000000d7ce5719e9a80531cc154ae62236435abb4981d2183d7b8fc26fac5484b1393d7e8d4dfb9bdcdf37c0d74e6e787888f71a28396f49a4b95f46d12ae1010c0e3185929e39dc3cee5ba6f6434199f686be319d4794efc589166434ddeda1feedd8539030f54fd0da371eec53b41fae2fd04bcac127c759", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$eJzs3d9rXFkdAPDvvclk0zZrZlVkXXB3cVfSRTuTbNxtEGkriD4V1PoeYzIJIZNMyExqE4qm+AcIIir45JMvgn+AIP0TRCjou6gooq0+aq/MzI02yUwyNZNMd/L5wMk95/76nnPJnLl37uHeAC6sNyPiVkSMRMQ7ETGZz0/zNN8s7LXXe/L4/mIzJZFld/6WRJLP299XszwaEVfam8R4RHztyxHfTI7Gre/sri1Uq5WtvFxurG+W6zu711bXF1YqK5WN2dmZ9+euz703N53lTtXOYkTc+OKffvi9n33pxq8+863fz//l6reb1fr8x9r1jojFUwXoor3vQutY7Gseo62zCDYAI3l7CiODrgkAAL1onuN/OCI+2Tr/n4yR1tkcAAAAMEyymxPxryQiAwAAAIZWGhETkaSlfCzARKRpqdQew/vRuJxWa/XGp5dr2xtLzWURxSiky6vVynQ+VrgYhaRZnsnH2O6X3z1Uno2IVyLiB5OXWuXSYq26NOgfPwAAAOCCuPLGwev/f06mrTwAAAAwZIpdCwAAAMCwcMkPAAAAw8/1PwAAAAy1r9y+3UzZ/nu8l+7ubK/V7l5bqtTXSuvbi6XF2tZmaaVWW2k9s2/9pP1Va7XNz8bG9r1yo1JvlOs7u/Prte2NxvzqgVdgAwAAAOfolTce/i6JiL3PXWqlyJ8DCHDAHwddAaCfRgZdAWBgRgddAWBgCieuoYeAYZecsLzr4J1f978uAADA2Zj6+NH7/2P5spN/GwA+yIz1AYCLx909uLgKRgDChfeh9uSlbstPf/8/y567UgAAQF9NtFKSlvJ7gRORpqVSxMut1wIUkuXVamU6vz747WThpWZ5prVlcuKYYQAAAAAAAAAAAAAAAAAAAAAAAACgLcuSyAAAAIChFpH+OWk9zT9iavLtiYO/Dhx669dP7vzo3kKjsTUTMZb8fbI5aywiGj/O57+beSUAAAAAvADa1+n5dGbQtQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABg2Dx5fH9xP51n3L9+ISKKneKPxnhrOh6FiLj8jyRGn9kuiYiRPsTfexARr3aKn8TTLMuKeS06xb90xvGLrUPTOX4aEVf6EB8usofN/udWp89fGm+2pp0/f6N5Oq3u/V/63/5vpEv/83KPMV579Ity1/gPIl4b7dz/7MdP2vGTOBT/rR7jf+Pru7vdlmU/jZjq+P2THIhVbqxvlus7u9dW1xdWKiuVjdnZmffnrs+9NzddXl6tVvK/HWN8/xO/fHpc+y93iV882P4jx//tHtv/70f3Hn+knS10in/1rc7fv692iZ/m332fyvPN5VP7+b12/lmv//w3rx/X/qUu7R8/of1Xe2z/O1/97h96XBUAOAf1nd21hWq1snVMZryHdc45c/PFqIZMvzLZd9r/j6fbzyk3P5LJTrP5aPShGmPP8Tntb2aQvRIAAHAW/nfSP+iaAAAAAAAAAAAAAAAAAAAAwMX1fz4hbDwiel75cMy9wTQVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBY/wkAAP//E77WGg==") r3 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r3}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r4, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x0, 0x0) r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200)) 08:48:41 executing program 2: syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() r0 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r0, @ANYRESHEX=r0, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r1 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r1}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200)) 08:48:41 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000000)={0x1b, 0x0, 0x0, 0x7ff, 0x0, 0x1, 0x100, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x1}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f0000000080), &(0x7f00000000c0)}, 0x20) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000340)='memory.numa_stat\x00', 0x0, 0x0) r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000400), 0x2b0080, 0x0) r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x5}, 0x48) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r6, &(0x7f0000000200), 0xf000) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000300)={r6, 0x58, &(0x7f0000000400)}, 0x10) sendfile(r6, r5, 0x0, 0x8000000000010) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0) write$binfmt_script(r7, &(0x7f0000000980)=ANY=[@ANYBLOB="cb3d8d4c4da2fcfaa9b46bc9791f9dfe8b8ded72c69a024613db723af165b315e9865cb8a83ca6c9993494610e02d7c60b325b94c3242ff2e1261e4c7258e1b9016c75210dc787941bc284d4078e675a0174c625974beeeaf83983088aa7a28fcf657c2f88e43725b9515544b655544851f3efdc123a163d06a308f5f7f10ced9f9ff8119a"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r7, 0x0) preadv(r7, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffffff000}], 0x5, 0x0, 0x0) r8 = creat(&(0x7f0000000040)='./bus\x00', 0x0) ftruncate(r8, 0x800) lseek(r8, 0x0, 0x2) r9 = open(&(0x7f0000000000)='./bus\x00', 0x125000, 0x0) sendfile(r8, r9, 0x0, 0x1dd00) sendmsg$MPTCP_PM_CMD_DEL_ADDR(r6, &(0x7f0000000940)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000900)={&(0x7f00000008c0)={0x3c, 0x0, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x78}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24004014}, 0x4040010) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000004c0)={0x1, 0xffffffffffffffff}, 0x4) r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0xf, 0x3, 0xffff, 0x8, 0x2, 0x1, 0x101, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x1, 0x5}, 0x48) r12 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) ioctl$FS_IOC_RESVSP(r12, 0x40305828, &(0x7f00000000c0)={0x0, 0x0, 0x4009, 0x7}) newfstatat(0xffffffffffffff9c, &(0x7f0000000700)='./bus\x00', &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x800) quotactl_fd$Q_GETNEXTQUOTA(r10, 0x0, r13, &(0x7f00000007c0)) ioctl$FS_IOC_RESVSP(r12, 0x40305829, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x80000003}) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0xa, 0x19, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000060000241b90755df341a30018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000117340001000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000010000008500000082000000bf91000000000000b7020000000000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000240)='syzkaller\x00', 0xe8, 0xa5, &(0x7f0000000280)=""/165, 0x40f00, 0x5e, '\x00', 0x0, 0x10, r2, 0x8, &(0x7f0000000380)={0x9, 0x1}, 0x8, 0x10, &(0x7f00000003c0)={0x2, 0x8, 0x9, 0x2089}, 0x10, 0x0, r3, 0x6, &(0x7f0000000580)=[r4, r6, r7, r8, r10, r11, r12], &(0x7f00000005c0)=[{0x1, 0x4, 0x2}, {0x1, 0x2, 0xc, 0x3}, {0x3, 0x3, 0xa}, {0x1, 0x2, 0x7, 0x8}, {0x1, 0x5, 0x5, 0x4}, {0x1, 0x1, 0x2, 0xa}], 0x10, 0x5}, 0x90) syz_clone3(&(0x7f0000009140)={0x64044900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:41 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{0x1, 0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000080)}, 0x20) r3 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x25, &(0x7f0000000080)=0x474c, 0x4) bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10) sendmmsg(r3, &(0x7f0000007fc0), 0x2d, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x24}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xfffffe5c) setsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f0000000000)={r5, @private, @dev}, 0xc) r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000001840)=ANY=[@ANYBLOB="9feb010018000000000000003400000034000000090000000700000002000006040000000d0000002000000010000000060000000800000000000009040000638f11f0f940e09b0009000000000000090200000000305f00015f2e000075d27fb811319273341df886467bba212f6565c766bbf6e591abe8b9e6de6d3c1c515ad0c6ef85899850f16a33ef5ec05149a3674d4e36"], &(0x7f0000001640)=""/232, 0x55, 0xe8, 0x0, 0x7}, 0x20) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000580)={0x5, 0x0}, 0x8) bpf$PROG_LOAD(0x5, &(0x7f0000001780)={0x3, 0xc, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x40}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0xffffffff}, @tail_call={{0x18, 0x2, 0x1, 0x0, r2}}, @initr0={0x18, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x7}]}, &(0x7f0000000280)='syzkaller\x00', 0x5, 0x1000, &(0x7f0000000640)=""/4096, 0x40f00, 0x40, '\x00', r5, 0x20, r6, 0x8, &(0x7f0000000400)={0x0, 0x1}, 0x8, 0x10, &(0x7f0000000440)={0x0, 0xa, 0x1, 0x3}, 0x10, r7, r0, 0x1, &(0x7f00000005c0)=[r1, r1], &(0x7f0000001740)=[{0x1, 0x4, 0xa}], 0x10, 0x400}, 0x90) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r9 = signalfd4(r3, &(0x7f00000002c0)={[0x7fffffffffffffff]}, 0x8, 0x800) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r9, 0x6, 0x21, &(0x7f0000000300)="6c0b7bea25c96645a2e5573edd2007ad", 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r8}, 0x10) setuid(0x0) 08:48:41 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) (async) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{0x1, 0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000080)}, 0x20) (async) r3 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x25, &(0x7f0000000080)=0x474c, 0x4) (async) bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10) (async) sendmmsg(r3, &(0x7f0000007fc0), 0x2d, 0x0) (async) r4 = socket(0x10, 0x803, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x24}}, 0x0) (async) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xfffffe5c) setsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f0000000000)={r5, @private, @dev}, 0xc) (async, rerun: 32) r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000001840)=ANY=[@ANYBLOB="9feb010018000000000000003400000034000000090000000700000002000006040000000d0000002000000010000000060000000800000000000009040000638f11f0f940e09b0009000000000000090200000000305f00015f2e000075d27fb811319273341df886467bba212f6565c766bbf6e591abe8b9e6de6d3c1c515ad0c6ef85899850f16a33ef5ec05149a3674d4e36"], &(0x7f0000001640)=""/232, 0x55, 0xe8, 0x0, 0x7}, 0x20) (async, rerun: 32) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000580)={0x5, 0x0}, 0x8) bpf$PROG_LOAD(0x5, &(0x7f0000001780)={0x3, 0xc, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x40}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0xffffffff}, @tail_call={{0x18, 0x2, 0x1, 0x0, r2}}, @initr0={0x18, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x7}]}, &(0x7f0000000280)='syzkaller\x00', 0x5, 0x1000, &(0x7f0000000640)=""/4096, 0x40f00, 0x40, '\x00', r5, 0x20, r6, 0x8, &(0x7f0000000400)={0x0, 0x1}, 0x8, 0x10, &(0x7f0000000440)={0x0, 0xa, 0x1, 0x3}, 0x10, r7, r0, 0x1, &(0x7f00000005c0)=[r1, r1], &(0x7f0000001740)=[{0x1, 0x4, 0xa}], 0x10, 0x400}, 0x90) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) r9 = signalfd4(r3, &(0x7f00000002c0)={[0x7fffffffffffffff]}, 0x8, 0x800) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r9, 0x6, 0x21, &(0x7f0000000300)="6c0b7bea25c96645a2e5573edd2007ad", 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r8}, 0x10) (async) setuid(0x0) [ 2331.884679][T18516] loop2: detected capacity change from 0 to 128 [ 2331.890344][T18517] loop0: detected capacity change from 0 to 128 08:48:41 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{0x1, 0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000080)}, 0x20) r3 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x25, &(0x7f0000000080)=0x474c, 0x4) bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) (async) connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10) sendmmsg(r3, &(0x7f0000007fc0), 0x2d, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x24}}, 0x0) (async, rerun: 64) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xfffffe5c) (rerun: 64) setsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f0000000000)={r5, @private, @dev}, 0xc) (async) r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000001840)=ANY=[@ANYBLOB="9feb010018000000000000003400000034000000090000000700000002000006040000000d0000002000000010000000060000000800000000000009040000638f11f0f940e09b0009000000000000090200000000305f00015f2e000075d27fb811319273341df886467bba212f6565c766bbf6e591abe8b9e6de6d3c1c515ad0c6ef85899850f16a33ef5ec05149a3674d4e36"], &(0x7f0000001640)=""/232, 0x55, 0xe8, 0x0, 0x7}, 0x20) (async, rerun: 64) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000580)={0x5, 0x0}, 0x8) (rerun: 64) bpf$PROG_LOAD(0x5, &(0x7f0000001780)={0x3, 0xc, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x40}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0xffffffff}, @tail_call={{0x18, 0x2, 0x1, 0x0, r2}}, @initr0={0x18, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x7}]}, &(0x7f0000000280)='syzkaller\x00', 0x5, 0x1000, &(0x7f0000000640)=""/4096, 0x40f00, 0x40, '\x00', r5, 0x20, r6, 0x8, &(0x7f0000000400)={0x0, 0x1}, 0x8, 0x10, &(0x7f0000000440)={0x0, 0xa, 0x1, 0x3}, 0x10, r7, r0, 0x1, &(0x7f00000005c0)=[r1, r1], &(0x7f0000001740)=[{0x1, 0x4, 0xa}], 0x10, 0x400}, 0x90) (async) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r9 = signalfd4(r3, &(0x7f00000002c0)={[0x7fffffffffffffff]}, 0x8, 0x800) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r9, 0x6, 0x21, &(0x7f0000000300)="6c0b7bea25c96645a2e5573edd2007ad", 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r8}, 0x10) (async) setuid(0x0) 08:48:41 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 62) 08:48:41 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = socket(0x22, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x12, 0x4, 0x8, 0x2, 0x0, 0x1}, 0x48) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={r3, &(0x7f0000000340), &(0x7f00000001c0)=@tcp=r2}, 0x20) r4 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000012c0)=@o_path={&(0x7f0000001280)='./file0\x00', 0x0, 0x0, r3}, 0x18) r5 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000000)={0xe, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3}, 0x48) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000001200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x49) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) ioctl$FS_IOC_SETFLAGS(r7, 0x40086602, &(0x7f0000000000)=0x2004091) r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r9 = socket$nl_route(0x10, 0x3, 0x0) r10 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r10, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(r10, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) sendmsg$nl_route(r9, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000800)=ANY=[@ANYBLOB="380000001000370400"/20, @ANYRES32=r11, @ANYBLOB="8b040400000000001800128008000100736974000c00028008000100a3faec5dd9f65a3b785c26052ecbf0d1fd294bf310ee837c2c9ca61b3357b19bd22e8b03f674da3ef862fb24433542b4ae4558d891d1bbd38ca56275985a3551d5f4cbe09cffe0fe0837b9236b7981f4a764d11e7b2fbcd4f3334a92098f273f4c493e540b74f436e55182", @ANYRES32=r11, @ANYBLOB="6b13d421733a659542e471c45b4c3f13202861720aa89c2f3ef8497c3cbfcf7f61606256b5d87e0e097e5e77242eaf807481f148e424385c0d896b7c1e80986d62f68f522a389a5800fa6f1656427df9ba8756b87b21d89977decb8bafc224ad7adb43eb0a264586a527c55b242302278b853e96e8861bee11df122165aecbf534e857b62d4924a1f09894b1b4db9a6e8cb53387674f5dd3ebe0208bca9b65787857446f"], 0x38}}, 0x0) sendmsg$inet(r8, &(0x7f0000000640)={&(0x7f0000000440)={0x2, 0x0, @private=0xa010101}, 0x10, &(0x7f0000000500)=[{&(0x7f00000004c0)="9e01", 0xc600}], 0x1, &(0x7f00000005c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r11, @empty, @local}}}], 0x20}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000002300)={'wlan1\x00'}) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000300)={0x3ffffe, 0x0}, 0x8) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1d, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x3}, 0x8, 0x10, &(0x7f0000000000), 0x10, r12}, 0x80) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x5, 0xd, &(0x7f0000000140)=@raw=[@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffff7}}], &(0x7f0000000040)='syzkaller\x00', 0xfff, 0xab, &(0x7f00000001c0)=""/171, 0x40f00, 0x43, '\x00', r11, 0x21, r7, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000280)={0x5, 0xf, 0x1, 0x4}, 0x10, r12, r6, 0x5, &(0x7f00000002c0)=[r7], &(0x7f0000000300)=[{0x3, 0x3, 0x0, 0x9}, {0x0, 0x3, 0x4, 0x4}, {0x1, 0x2, 0x10, 0xb}, {0x5, 0x2, 0xf, 0x1}, {0x3, 0x4, 0x4, 0x1}], 0x10, 0x7}, 0x90) r13 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0) mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x4, 0x13, r13, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000001580)={0x14, 0xc, &(0x7f0000001300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x492c}, [@map_idx={0x18, 0x0, 0x5, 0x0, 0x5}, @cb_func={0x18, 0x6, 0x4, 0x0, 0xfffffffffffffffd}, @tail_call={{0x18, 0x2, 0x1, 0x0, r4}}]}, &(0x7f0000001380)='syzkaller\x00', 0xab9, 0xe3, &(0x7f00000013c0)=""/227, 0x41100, 0x40, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, &(0x7f00000014c0)={0x1, 0x5}, 0x8, 0x10, &(0x7f0000001500)={0x1, 0x1, 0x4, 0xff}, 0x10, r12, r2, 0x0, &(0x7f0000001540)=[r5, r13, r3, r5, r5], 0x0, 0x10, 0xffffcb72}, 0x90) r14 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x40}, [@exit, @tail_call, @call={0x85, 0x0, 0x0, 0x9}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @call={0x85, 0x0, 0x0, 0x3b}]}, &(0x7f0000000140)='GPL\x00', 0x7, 0x8f, &(0x7f00000003c0)=""/143, 0x41000, 0x2a, '\x00', 0x0, 0x2b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000300)={0x5, 0x9, 0x7f, 0x10001}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x3, &(0x7f0000000580)=[r0, r0], &(0x7f00000005c0)=[{0x0, 0x1, 0xe, 0x8}, {0x5, 0x2, 0x8, 0x5}, {0x1, 0x2, 0x1, 0x7}]}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1d, 0x10, &(0x7f0000000080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x82}, {}, {}, [@jmp={0x5, 0x1, 0xb, 0x4, 0x6, 0x100, 0xfffffffffffffff0}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000000)='GPL\x00', 0x2, 0xdc, &(0x7f0000000640)=""/220, 0x41100, 0x1, '\x00', 0x0, 0x16, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000100)={0x2, 0xd, 0x3, 0x2}, 0x10, r12, r14, 0x0, &(0x7f0000000800)=[r1, r0], 0x0, 0x10, 0x80000001}, 0x90) r15 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r15}, 0x10) setuid(0x0) [ 2332.057905][T18535] FAULT_INJECTION: forcing a failure. [ 2332.057905][T18535] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2332.080847][T18535] CPU: 0 PID: 18535 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2332.091011][T18535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2332.100906][T18535] Call Trace: [ 2332.104026][T18535] [ 2332.106812][T18535] dump_stack_lvl+0x151/0x1b7 [ 2332.111316][T18535] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2332.116877][T18535] dump_stack+0x15/0x17 [ 2332.120864][T18535] should_fail+0x3c6/0x510 [ 2332.125120][T18535] should_fail_alloc_page+0x5a/0x80 [ 2332.130151][T18535] prepare_alloc_pages+0x15c/0x700 [ 2332.135101][T18535] ? __alloc_pages+0x8f0/0x8f0 [ 2332.139700][T18535] ? __alloc_pages_bulk+0xe40/0xe40 [ 2332.144819][T18535] ? sched_clock+0x9/0x10 [ 2332.148988][T18535] __alloc_pages+0x18c/0x8f0 [ 2332.153415][T18535] ? prep_new_page+0x110/0x110 [ 2332.158015][T18535] ? 0xffffffffa002a000 [ 2332.162004][T18535] ? is_bpf_text_address+0x172/0x190 [ 2332.167124][T18535] pte_alloc_one+0x73/0x1b0 [ 2332.171466][T18535] ? pfn_modify_allowed+0x2f0/0x2f0 [ 2332.176587][T18535] ? arch_stack_walk+0xf3/0x140 [ 2332.181274][T18535] __pte_alloc+0x86/0x350 [ 2332.185527][T18535] ? free_pgtables+0x280/0x280 [ 2332.190125][T18535] ? _raw_spin_lock+0xa4/0x1b0 [ 2332.195010][T18535] ? __kasan_check_write+0x14/0x20 [ 2332.199937][T18535] copy_page_range+0x28a8/0x2f90 [ 2332.204704][T18535] ? __kasan_slab_alloc+0xb1/0xe0 [ 2332.209570][T18535] ? pfn_valid+0x1e0/0x1e0 [ 2332.213825][T18535] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 2332.219377][T18535] ? __rb_insert_augmented+0x5de/0x610 [ 2332.224674][T18535] copy_mm+0xc7e/0x13e0 [ 2332.228666][T18535] ? copy_signal+0x610/0x610 [ 2332.233522][T18535] ? __init_rwsem+0xd6/0x1c0 [ 2332.237950][T18535] ? copy_signal+0x4e3/0x610 [ 2332.242375][T18535] copy_process+0x1149/0x3290 [ 2332.246892][T18535] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2332.251921][T18535] ? copy_clone_args_from_user+0x744/0x830 [ 2332.257564][T18535] kernel_clone+0x21e/0x9e0 [ 2332.261906][T18535] ? __delayed_free_task+0x20/0x20 [ 2332.266849][T18535] ? create_io_thread+0x1e0/0x1e0 [ 2332.272064][T18535] __x64_sys_clone3+0x376/0x3a0 [ 2332.276836][T18535] ? __ia32_sys_clone+0x290/0x290 [ 2332.281698][T18535] ? fput+0x1a/0x20 [ 2332.285342][T18535] ? debug_smp_processor_id+0x17/0x20 [ 2332.290550][T18535] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2332.296452][T18535] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2332.301919][T18535] do_syscall_64+0x3d/0xb0 [ 2332.306165][T18535] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2332.311903][T18535] RIP: 0033:0x7fe6f3145da9 [ 2332.316150][T18535] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2332.335680][T18535] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2332.343921][T18535] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 08:48:41 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 63) 08:48:41 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) socket(0x22, 0x2, 0x0) (async) r2 = socket(0x22, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x12, 0x4, 0x8, 0x2, 0x0, 0x1}, 0x48) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={r3, &(0x7f0000000340), &(0x7f00000001c0)=@tcp=r2}, 0x20) r4 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000012c0)=@o_path={&(0x7f0000001280)='./file0\x00', 0x0, 0x0, r3}, 0x18) bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000000)={0xe, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3}, 0x48) (async) r5 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000000)={0xe, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000001200)=ANY=[@ANYBLOB="620af8ff0c011021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf9943134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2eed44d69fe32b0142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff90326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583584acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6eada31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f7be748538e23b016015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7c48de61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e4000000000d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb8434503680300383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd574d67ff2a49c4f93c95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38709ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88c3c44b3b7486f979e8a3174b531f573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d0104361c37c61a43b5afd865b60d4cae891b73220f17d25979a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e9611d2e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e64701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad8677907af2851ec30e57166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d93e1fe9c0b4a4a2689217380400a9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a000000000000000000000000000020bd79e41c682139c58ac1deb039a691ad640e12c12fe11d70fe495906f2d5d71778acbd4eee53a3996cb0de84bd2b0504789d60c0f96a53ea44e0b293865aa68df494f87db976e36ad6c06912244d4c883c4aaa60b4a1392ce0b2f2c519663b4652ff871e0f6dfff9f7d34ecf04be0a58c3d53174b67d1886e34b81ad8c60da56acc64739c3acab24aa8d0ac92d465074f915608b1b60a948bad401b1a7fb3627bbe6c45123ed44bfdf8cc143bd1b7a663dc3d0476b8e39becffc429e41f66b1e37ae52aacaff0f1dc8ea70b68c25072e20586b19127d75fa71577f265c5100000000000000000000000000000000000000000000000070a45784f793e88e477e48f7d87acf12a6731eb5350831f500461ed55897f517923c73f731c139464c6383e580ce222a3250dd12ba25f71de8c94f56f418460dff5678c7c3f51ab4ddc29ffdf496bd8c579401c734fd5ac11a1008ce1d63f5b516d92bf5d718b267017b3ecd7200a7db0ef6b3a8e1f22186961f8c86c29b3144aa71d1623f9053dcf2a445c69d0f14b24884e83a94ad02647b8959c4eef7516546040c83e04484d7f2b65456e2da0dcc7f5a9024b8f4d35cbb03da118cb5f25b97894eafca8140fadcac67c5b17efea5a65b9a66cedb68619f2622733254650fe28f8233f40bed514bdfb199bf21cf421f2f70b1a285e86b542947cbaa6e23c3ae82d62e99d20d803bab995faae7389946ac0773194a5c2dcb3b57f6dcc6cb564e1dc7f0499df2b10bb50b470197ea7e8892c6b379c21b026b28e81c18ed4a04332e0060b2d9dd3f8e605124126620d8f2e509f8644fc34f44590bdf7037355143346c1c837247bb20f8383d329b951a8ca525f797138cf6ab4fa7839218d0e08d19de4f7940ced761da3dea423fb2d7f9cfd9786e1560e5180498c13fe0a866dd346b8a8d6ec5291d83dd5c10b60f57a4866923e8d7c489cefa3fbe243f988cbc697c24e4fe3d858dd3feade1ba7dc27a92a6e8dba7c6314fba72ef99e3bf8f98ee09b35c0aff090cc733c32b58d49e20e240ee99f234ea091ffe366f500817c4182a6f8dbbe6073c"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x49) (async) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000001200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x49) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) ioctl$FS_IOC_SETFLAGS(r7, 0x40086602, &(0x7f0000000000)=0x2004091) (async) ioctl$FS_IOC_SETFLAGS(r7, 0x40086602, &(0x7f0000000000)=0x2004091) r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r9 = socket$nl_route(0x10, 0x3, 0x0) r10 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r10, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(r10, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) sendmsg$nl_route(r9, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000800)=ANY=[@ANYBLOB="380000001000370400"/20, @ANYRES32=r11, @ANYBLOB="8b040400000000001800128008000100736974000c00028008000100a3faec5dd9f65a3b785c26052ecbf0d1fd294bf310ee837c2c9ca61b3357b19bd22e8b03f674da3ef862fb24433542b4ae4558d891d1bbd38ca56275985a3551d5f4cbe09cffe0fe0837b9236b7981f4a764d11e7b2fbcd4f3334a92098f273f4c493e540b74f436e55182", @ANYRES32=r11, @ANYBLOB="6b13d421733a659542e471c45b4c3f13202861720aa89c2f3ef8497c3cbfcf7f61606256b5d87e0e097e5e77242eaf807481f148e424385c0d896b7c1e80986d62f68f522a389a5800fa6f1656427df9ba8756b87b21d89977decb8bafc224ad7adb43eb0a264586a527c55b242302278b853e96e8861bee11df122165aecbf534e857b62d4924a1f09894b1b4db9a6e8cb53387674f5dd3ebe0208bca9b65787857446f"], 0x38}}, 0x0) sendmsg$inet(r8, &(0x7f0000000640)={&(0x7f0000000440)={0x2, 0x0, @private=0xa010101}, 0x10, &(0x7f0000000500)=[{&(0x7f00000004c0)="9e01", 0xc600}], 0x1, &(0x7f00000005c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r11, @empty, @local}}}], 0x20}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000002300)={'wlan1\x00'}) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000300)={0x3ffffe}, 0x8) (async) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000300)={0x3ffffe, 0x0}, 0x8) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000026c0)=ANY=[@ANYBLOB="b70200000f0e1709bfa300000000000024020000fffeff7f7a03f0fff8ffffff79a4f0ff00000000b7060000d0b68af1de640200000000007502faff07cd02020404000001007d60b70300000d1000006a0a00fe0000000d8500000026000000b70000000004002995000000000000001da5ad3548ebb63d18db6a1c72821c9b767ac8308fbcd5c5e4a5ad10595ec1956bd8660bf3664148a2c96752fe2bb328dff1aa503b8de7ab9a780001000000000000d4bf20c2bd152d814f01f2cd539e030b0000000000007f4182f32333b08e6e497640000000aea5cac0ceafdb9a2eeb02a1f5104d16ddb64960d84d91004cd5817e0b7f005e6ee7a39e2f0b5a18ed786b783ab1321ea5e82ae5ba2c42a5e23ea6253d5df768d0cb9f35e4f41a62d79b4c03e53466fa4f22d8c19f958e8b34de3535e7dacf1b13f7e851ec843c2288a2e7ff949a7a48ce18799ee53de177a81ea67a8f84538a9a311c754e5ab59a43f56d2085786e7ec07d78917f7169f006f3f5c95177fbd0b14b36259e2905ef911785c88a16aae46084d676d8ef8aa6ecc2d34a442bc098f4fcc96623b7c373b0ef04d55b846b094b0d6c7a75a76d445e0dcdf72c7ef97e08512ef5987b6e09a6a7caffff0000141f65e7d9ebe3be70c4364333af9a9d91c3e41ac37a63f85afd254479c12f7c84fa5df32b70a80cce69cf30d3d67d84ccf3f9db9b2ff72f3ce0d7ce76fd967d0736690111de2ddc4acdb52a9ef100bbf76063d3f6ffffb73d70e9c3d7b90aecf48eb19767e00b75041739952fe87fde27ce01893f54ec0ea8e792414f639bc9ce1fea3f6ac0d7025759d4b45577c205c70631e8ad585951950e851250540593e61860b69a521f4e210b6494e3c52d927195737945cc03d5668483151710de246420a1b6c55b73876a6ed7f58bde38b44ab13d980c894ed90d9338923789a1edcd8043fe87919088383268324a25df14010c8e1b49b0400e4f6f767ee30ea3aad2c6d6b8c97c00eaa00ff9bc46e1cfecbdc0e4ffac53e8f76c8b556306b409d04544d3a7edd4d447d2fb431e226ae182b8dcc86fe09b404a0b7c723d3b19c3dc382fa91fb0fb8f9f3f13296bb1758b24aad0922091d49e2bc408a5a37d2fe7a60b903d2d9fe9c151cafcc8dc389671c2d08b6e2641500568445b00cee4585af04fa69e0380be0d66649dcf3bf8a9066e596119109ea8b308ff070000aab1c95bb22cedd913b22dcaa197ccc34586dc50bd9f4628ebe757bae30b356521df06f98eee1eb9db2425b7fec0708e9595cb57f97052fc4158250ccecfb47ea8faf509593fadc7eafb613313b052397af1ede94d87590ce90a0a7579766f7ec4fcd3cb0b1a8c531724d5ef6b334803cedaa9cedf16dc3af6c9eb0dcca5303eed6689ea910900785f61278dde47e6672e93a314a5f60e7b682bf0cacde21f6090f4fb311afd7f8b48f3f0d8c66449d8687dcf2d0f76668b2b9bf8b32b518e01ffb985f8054d37959c529e99b7daf32acfed749d516d014cef5f98126324e202badc1e5c20d69e576a770000000000005addc0103756b894418e4591c624a9b2ccabbfb888d413d923b0c901973cd7c9d197d6d8e64787c4d397f57a15b6e0b4212b6cb55b9c207bbe84f483b15f45b9a1d3af087047c568aef1d8559c6146bb93026ebfc0bb5ec10b6290dc757a4903a88fb2c035f9349b59085cf91b8b775152786118a1020000fc19928ccb713ff09e179c308fbe9bc543dcf43f731074d96ef2447a2a4af5ca0c39e7ca2e801e57560a55e9cfa095cf3f74398219ad10e5e9d26631c2f1db3a2882f6e130a79517a88de7596429a20793e12616aa32b3e720c6521fbe933321adde8ca7dd99c0a0125ff8c18119a6926083f4a2c008a9f2a29e30823bf0ec3639cadaf9be9608358e1e5ab17eea477b1754f78f45468c9568471647f8bc03d11811ac6eec1741ceb39a3ecd9e3c325fcabbab3d12f6a759f7ce11dafa387a8077db8a2230d2014a57bc8dd47741270000008000000000b2eebd5e1626cab98499328ff024a240199993433ceb5be20427a32df7047d63010dfc6a461517ad48ff64042e84c85c899fd11c6320a8d8fc0e78c1aaa152d567f91dd943f62d167fed1b605965a5c2b32d094a461a990000000000000000000000000000000000000000000200000000000000000000b385c644a4a170e6dc9e9e546bfa049d025b319abd87fd85482b43db5d6c2cb6a204d45f88dd4140c8edb598a36e21ad132bf6b88c99c56633b01813fc5cd7d048469a966bbfb300fd772cbadf0cf26899bfd15e7d9408026a92f13f11d1c9832259b2f97227f84a3bb96253717a177ac091d0f4632f638b09a0307ff31729857f6fb7dac17ed09e6fe9f19e481a3f77cead663f42456e080952636515c758f5047b2148944133a692ef20a1778088c42094903d6ece2497b99fc745c420b035ff7961484a0f62a2d957ae2e47ff1ea8a059f2d03bf9c3e8d2b16ab409de762522f6008de48bb70b698c5c9867437ac3127fad4bd699acaad78a5f66c7fc7d46e048082a0af61e6b052e473ed26b032a070ea10e985703b292c7336112b1f35c3b069363869dce725d8da75dcec76dc591c052feecee18c64c4600a0bc3d4945d4b918865bbf52f732a500689cbd9a84d07846417796f2a85e7a41d27d64b10f8e970469cf495b4a1b4ea8b5322f78e9f3048351b550c59a634b47981420081ea4da18b9d318fa001ce660b28bbcf3c1a8893d130b26d25e491f478ae4f95f71ea8897b34c55f1678b8453f08a5ae1b3b4d8c83053c57637a98ef57e5fa51971eba5e287e9910cba734336703defc13fe1659b157e5d9de7bfb929e715ed1a9a505a04a8d8474482295afbb9de90de2e918522cac2d5b5ac09d1fdc4fd7c6393a684ad7234ecb65d0008000000000000560ad146e8b9e9cd9b050edb1f6735c90a76b1ba4dbdee34d0b6750f25ba7251944ada77665573460056351d009a568c782f4438ecba9bee47f25286300e83bd1853070100010000000000b86e7f21e39a1af3d070abef94bc0827db0046dcb7d63bf64bf801f33e3196b522c83635440100d096153373337b981a99f63f600f90647703f0640f6594dd9f26436024a1f90f174769bad5a283271e6d7f49dec90a05bd771dd0502dc2170ccf98ade27e858ebca7d7fa00000000ae1bc4246ae316c6af10bf02088b4bb2ac89c96e58578dc50eddbf01ece3cb8a363ecbeb8198997115d7151f691a2a755d8233e006dd38ed5ba350bd6aad3bf6f5108083f0100f8a20666e92ec7254ce7284159057be455d16134d65ce69c4b906b76427224b69750b779d81eb6e37e1db62b1788ff918433787f8026ef5c518113d4841b5ca4dbe8d4afff527513a2efc8403be48e494b3bfeede33b1deefd9d902e8dc868f30161c2cd13621b0a20362181186ff8cf4c8d58d74822f92554287ee157e9f1597c3e2e238f382a91bf48b4de88363c841bd7a8cddae334429ccf45bd3d434d9ecf74634ffc9539010f0d36e672b9d668cc6762c0b25e4a527fb4d184ba84498b1367e4b31faf75f1b3dcecfd80c57015d8cd16171507add30833865fc1a42780e9d57bb14a6ebea4018d26e18747546fc7a4a619753fd9bea132058eb90f9b80549473eea2fb9bc43d38d8719a1cca094bd933ceef87a3ec0c2ac70d5f843425100950000009e000000000008000018779600b1f2ae5ed34f5b7e77278f7ded9f030000719e1a97a9e97f002e050000009f95a59418f612dfa87c654043da1a59c3c43c7884ab65d4b34984afe30c67179c4f5a3ba0e491f2b942b754a3c0d5b878c4ad63591c3fc7d3a4d4296d4bab0a88e55ff9c2536654bb2f83e8015fac21611968ce582698938c9a331a97c087b71ffb4c3a599e08fa0607e50300f7ff00d03bf057b408c86a1165bd9a1bdbf3dff88c9b2173a75d5fc82dce6d8a3f297231e33588d7cf183109c1118d94a41d48f8efcf193ff26908accba23f1ec1cff64a1b912ededeb080f9a241e07709e6dd6a3a7e18200c9e80b9634e6f0c4d000000000000000000000000000000005e50e77d04fcf8931ad07b38a39957e6b3a3c909000000e9d694e483e848fe0d00ee7c7d6cc30932a9575aa8808d10a4963560250bb4e60e88c726f63662cb143daf4b9ebd0774998a59fbb42dc35f12452cca456a12b7d15cf3ce7ea350e9510e96527cde622998683e65b235c284543ca32436f9e705dff00f08df1115175628a327876dea291480c2dde8a59df1f3571f9fcb7ddd1856eed2b502965038af0d56e49e0e2e9cb06b2927b2eec3f42fa0e4d0f2e25104805f386d460e212c27ac7bafe6a0078f86b83f5d0948ff9f1e0257338ae58457fb27b29430cc9ac6a33ea11b88ae8bc95dffa293aa6903a12ad6d47f89b28a25a7ec2fce6691549990f93d1f02e1b619813699303b6b126098bd7aa06e7f00c89f11a410518d181cbfb9bdb9160af19f1fc456b5fc4f099814631024b734c0cd8843c5cb124a21092e6cdd8aa2f4d3f93e92c6d850898890d9449e3f499af92be74ba8ba792800abbd99d6288dece7513c50ba0c3a318cf56fb973bab87214415078857d18032ab5adb8d4bf32405cc5f63eba7e60bcd0098fd7957943b3c4cf13de4e049e06ad7ebc236d1088c99d35f40555364ff86cab4542261999bccd3269e51d10900a1c05696b47ff33a159abce6bb1d69193bd01f59f1d3f431b4e0868db623cb8375baa50785b8fcd37ce4c52abe43c1e3368735022e7cc7a9b397b19b32adc91444f519ad33f7f2680e3cf7ecd3cfc67816eb66b1faa78dd8e3f7e233b6048c53813e6b508dfc713583d8ef8f9cfff5cdae59aa7aca654b1740c90eb71ca000000000002000000000000000000000000000000faa53c07b5f590ee4c8bfbd828972bb7bbc8ed7ae23bf3bca7eb378ba0e912b150dde95dafe80ee043a1d640bd60fdfbe4a2d2aa0607b026f78417471e6ea0d1e86b309b29d0dae2d2c9c730ac21cc2a6213596a784a09775f86a9e6d5b6c7b3c5d10177a873edb693fdf9b1e11005a1ce41d04a2ad3f5d25a1595e7609849033d2e86ac682f2f0cde376f50a88a3ab5e83f56e43a07641b82c077fa1479b79e85c71a9c00000000000000078ce7c4ab383dac0325fa7f4ffb201c479265272febf3d529aa3d9ffb08e4dbc8842fbda4d38c4cf584ccf207e5373231fdb1f7888049370800845004e16a26b06b635f740492c303da988ab41b2ac3d9e9074590475678260f205532235444e991d7d63e52aa28964fb727db39091e5efee76e3d61b34d191895b7d49600a3536c7506df587256999d8094e6346eb781c0e212020d89242ac467aa803fa4140093fe17c4d15e3b4dd931b0db633e0162786e4388b7b61c1426d678305379f7fc9ada18a722aed9a3781d6d373598ae96ab34909981681c75d1f823647fed2bd858a86ecf4b5c32d2f63ca6268ed97eb79ff8d3ccb24f111cf6f9179a8cbedaebe04172b3bc54dffa34e065facf9eafdbff22bddc89faff0f9ed96221bcab5a06391cca36a09c92e8704751190cff32be999a410993554fdae0e7cb6540763ef7c2c84c53b5608bbbb806248a2aedc22c7282bf7c0c40de0aadf6e49758cb7e293ed96c111dcefb0e469f4fa25069488ba12686e87756f7ba8483aceb040688242a010cfed0662d8e4f746e6abf0426c13e81cddf1bd87f6c02a0eb14beccfd91cfb22af4fd91b9a03dd4639d859da8a3643c4b7aa82c77854e6fa9eacff3297b4a09b76ad912ab7792f040e0ddd205d1a199fa6fba6fc55de37c24889adc6fb48f8c3efa2cd99d912b0d7d78a1e56bcb13dc7197ac3a035f432fd2e39b57a42f9c942bef7d1bf4c03ed5e56a56823168fa46a9d85153686408b9357f671f53"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1d, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x3}, 0x8, 0x10, &(0x7f0000000000), 0x10, r12}, 0x80) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x5, 0xd, &(0x7f0000000140)=@raw=[@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffff7}}], &(0x7f0000000040)='syzkaller\x00', 0xfff, 0xab, &(0x7f00000001c0)=""/171, 0x40f00, 0x43, '\x00', r11, 0x21, r7, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000280)={0x5, 0xf, 0x1, 0x4}, 0x10, r12, r6, 0x5, &(0x7f00000002c0)=[r7], &(0x7f0000000300)=[{0x3, 0x3, 0x0, 0x9}, {0x0, 0x3, 0x4, 0x4}, {0x1, 0x2, 0x10, 0xb}, {0x5, 0x2, 0xf, 0x1}, {0x3, 0x4, 0x4, 0x1}], 0x10, 0x7}, 0x90) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x5, 0xd, &(0x7f0000000140)=@raw=[@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffff7}}], &(0x7f0000000040)='syzkaller\x00', 0xfff, 0xab, &(0x7f00000001c0)=""/171, 0x40f00, 0x43, '\x00', r11, 0x21, r7, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000280)={0x5, 0xf, 0x1, 0x4}, 0x10, r12, r6, 0x5, &(0x7f00000002c0)=[r7], &(0x7f0000000300)=[{0x3, 0x3, 0x0, 0x9}, {0x0, 0x3, 0x4, 0x4}, {0x1, 0x2, 0x10, 0xb}, {0x5, 0x2, 0xf, 0x1}, {0x3, 0x4, 0x4, 0x1}], 0x10, 0x7}, 0x90) r13 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0) mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x4, 0x13, r13, 0x0) (async) mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x4, 0x13, r13, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000001580)={0x14, 0xc, &(0x7f0000001300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x492c}, [@map_idx={0x18, 0x0, 0x5, 0x0, 0x5}, @cb_func={0x18, 0x6, 0x4, 0x0, 0xfffffffffffffffd}, @tail_call={{0x18, 0x2, 0x1, 0x0, r4}}]}, &(0x7f0000001380)='syzkaller\x00', 0xab9, 0xe3, &(0x7f00000013c0)=""/227, 0x41100, 0x40, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, &(0x7f00000014c0)={0x1, 0x5}, 0x8, 0x10, &(0x7f0000001500)={0x1, 0x1, 0x4, 0xff}, 0x10, r12, r2, 0x0, &(0x7f0000001540)=[r5, r13, r3, r5, r5], 0x0, 0x10, 0xffffcb72}, 0x90) (async) bpf$PROG_LOAD(0x5, &(0x7f0000001580)={0x14, 0xc, &(0x7f0000001300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x492c}, [@map_idx={0x18, 0x0, 0x5, 0x0, 0x5}, @cb_func={0x18, 0x6, 0x4, 0x0, 0xfffffffffffffffd}, @tail_call={{0x18, 0x2, 0x1, 0x0, r4}}]}, &(0x7f0000001380)='syzkaller\x00', 0xab9, 0xe3, &(0x7f00000013c0)=""/227, 0x41100, 0x40, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, &(0x7f00000014c0)={0x1, 0x5}, 0x8, 0x10, &(0x7f0000001500)={0x1, 0x1, 0x4, 0xff}, 0x10, r12, r2, 0x0, &(0x7f0000001540)=[r5, r13, r3, r5, r5], 0x0, 0x10, 0xffffcb72}, 0x90) r14 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x40}, [@exit, @tail_call, @call={0x85, 0x0, 0x0, 0x9}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @call={0x85, 0x0, 0x0, 0x3b}]}, &(0x7f0000000140)='GPL\x00', 0x7, 0x8f, &(0x7f00000003c0)=""/143, 0x41000, 0x2a, '\x00', 0x0, 0x2b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000300)={0x5, 0x9, 0x7f, 0x10001}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x3, &(0x7f0000000580)=[r0, r0], &(0x7f00000005c0)=[{0x0, 0x1, 0xe, 0x8}, {0x5, 0x2, 0x8, 0x5}, {0x1, 0x2, 0x1, 0x7}]}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1d, 0x10, &(0x7f0000000080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x82}, {}, {}, [@jmp={0x5, 0x1, 0xb, 0x4, 0x6, 0x100, 0xfffffffffffffff0}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000000)='GPL\x00', 0x2, 0xdc, &(0x7f0000000640)=""/220, 0x41100, 0x1, '\x00', 0x0, 0x16, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000100)={0x2, 0xd, 0x3, 0x2}, 0x10, r12, r14, 0x0, &(0x7f0000000800)=[r1, r0], 0x0, 0x10, 0x80000001}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) r15 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r15}, 0x10) setuid(0x0) [ 2332.351736][T18535] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2332.359548][T18535] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2332.367360][T18535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2332.375168][T18535] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2332.382986][T18535] [ 2332.653133][T18545] FAULT_INJECTION: forcing a failure. [ 2332.653133][T18545] name failslab, interval 1, probability 0, space 0, times 0 [ 2332.666091][T18545] CPU: 1 PID: 18545 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2332.676244][T18545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2332.686312][T18545] Call Trace: [ 2332.689438][T18545] [ 2332.692214][T18545] dump_stack_lvl+0x151/0x1b7 [ 2332.696813][T18545] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2332.702287][T18545] dump_stack+0x15/0x17 [ 2332.706274][T18545] should_fail+0x3c6/0x510 [ 2332.710524][T18545] __should_failslab+0xa4/0xe0 [ 2332.715126][T18545] ? vm_area_dup+0x26/0x230 [ 2332.719467][T18545] should_failslab+0x9/0x20 [ 2332.723806][T18545] slab_pre_alloc_hook+0x37/0xd0 [ 2332.728581][T18545] ? vm_area_dup+0x26/0x230 [ 2332.732918][T18545] kmem_cache_alloc+0x44/0x200 [ 2332.737521][T18545] vm_area_dup+0x26/0x230 [ 2332.741687][T18545] copy_mm+0x9a1/0x13e0 [ 2332.745685][T18545] ? copy_signal+0x610/0x610 [ 2332.750104][T18545] ? __init_rwsem+0xd6/0x1c0 [ 2332.754532][T18545] ? copy_signal+0x4e3/0x610 [ 2332.758965][T18545] copy_process+0x1149/0x3290 [ 2332.763476][T18545] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2332.768416][T18545] ? copy_clone_args_from_user+0x744/0x830 [ 2332.774061][T18545] kernel_clone+0x21e/0x9e0 [ 2332.778571][T18545] ? __delayed_free_task+0x20/0x20 [ 2332.783529][T18545] ? create_io_thread+0x1e0/0x1e0 [ 2332.788381][T18545] __x64_sys_clone3+0x376/0x3a0 [ 2332.793070][T18545] ? __ia32_sys_clone+0x290/0x290 [ 2332.797929][T18545] ? fput+0x1a/0x20 [ 2332.801572][T18545] ? debug_smp_processor_id+0x17/0x20 [ 2332.806779][T18545] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2332.812687][T18545] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2332.818151][T18545] do_syscall_64+0x3d/0xb0 [ 2332.822442][T18545] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2332.828223][T18545] RIP: 0033:0x7fe6f3145da9 [ 2332.832471][T18545] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 08:48:42 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 64) [ 2332.851999][T18545] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2332.860252][T18545] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2332.868149][T18545] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2332.875960][T18545] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2332.884040][T18545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2332.891854][T18545] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2332.899668][T18545] 08:48:42 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000000)={0x1b, 0x0, 0x0, 0x7ff, 0x0, 0x1, 0x100, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x1}, 0x48) (async) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f0000000080), &(0x7f00000000c0)}, 0x20) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000340)='memory.numa_stat\x00', 0x0, 0x0) r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000400), 0x2b0080, 0x0) r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x5}, 0x48) (async) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r6, &(0x7f0000000200), 0xf000) (async) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000300)={r6, 0x58, &(0x7f0000000400)}, 0x10) (async) sendfile(r6, r5, 0x0, 0x8000000000010) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0) write$binfmt_script(r7, &(0x7f0000000980)=ANY=[@ANYBLOB="cb3d8d4c4da2fcfaa9b46bc9791f9dfe8b8ded72c69a024613db723af165b315e9865cb8a83ca6c9993494610e02d7c60b325b94c3242ff2e1261e4c7258e1b9016c75210dc787941bc284d4078e675a0174c625974beeeaf83983088aa7a28fcf657c2f88e43725b9515544b655544851f3efdc123a163d06a308f5f7f10ced9f9ff8119a"], 0x208e24b) (async) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r7, 0x0) preadv(r7, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffffff000}], 0x5, 0x0, 0x0) (async) r8 = creat(&(0x7f0000000040)='./bus\x00', 0x0) ftruncate(r8, 0x800) (async) lseek(r8, 0x0, 0x2) (async) r9 = open(&(0x7f0000000000)='./bus\x00', 0x125000, 0x0) sendfile(r8, r9, 0x0, 0x1dd00) (async) sendmsg$MPTCP_PM_CMD_DEL_ADDR(r6, &(0x7f0000000940)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000900)={&(0x7f00000008c0)={0x3c, 0x0, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x78}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24004014}, 0x4040010) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000004c0)={0x1, 0xffffffffffffffff}, 0x4) (async) r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0xf, 0x3, 0xffff, 0x8, 0x2, 0x1, 0x101, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x1, 0x5}, 0x48) r12 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) ioctl$FS_IOC_RESVSP(r12, 0x40305828, &(0x7f00000000c0)={0x0, 0x0, 0x4009, 0x7}) (async) newfstatat(0xffffffffffffff9c, &(0x7f0000000700)='./bus\x00', &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x800) quotactl_fd$Q_GETNEXTQUOTA(r10, 0x0, r13, &(0x7f00000007c0)) (async) ioctl$FS_IOC_RESVSP(r12, 0x40305829, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x80000003}) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0xa, 0x19, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000060000241b90755df341a30018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000117340001000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000010000008500000082000000bf91000000000000b7020000000000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000240)='syzkaller\x00', 0xe8, 0xa5, &(0x7f0000000280)=""/165, 0x40f00, 0x5e, '\x00', 0x0, 0x10, r2, 0x8, &(0x7f0000000380)={0x9, 0x1}, 0x8, 0x10, &(0x7f00000003c0)={0x2, 0x8, 0x9, 0x2089}, 0x10, 0x0, r3, 0x6, &(0x7f0000000580)=[r4, r6, r7, r8, r10, r11, r12], &(0x7f00000005c0)=[{0x1, 0x4, 0x2}, {0x1, 0x2, 0xc, 0x3}, {0x3, 0x3, 0xa}, {0x1, 0x2, 0x7, 0x8}, {0x1, 0x5, 0x5, 0x4}, {0x1, 0x1, 0x2, 0xa}], 0x10, 0x5}, 0x90) syz_clone3(&(0x7f0000009140)={0x64044900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:42 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = open(0x0, 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f000000df80)) fstat(r0, &(0x7f000000dfc0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() statx(r0, &(0x7f000000e180)='./file0\x00', 0x1000, 0x80, &(0x7f000000e1c0)) r2 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$eJzs3d9rXFkdAPDvvclk0zZrZlVkXXB3cVfSRTuTbNxtEGkriD4V1PoeYzIJIZNMyExqE4qm+AcIIir45JMvgn+AIP0TRCjou6gooq0+aq/MzI02yUwyNZNMd/L5wMk95/76nnPJnLl37uHeAC6sNyPiVkSMRMQ7ETGZz0/zNN8s7LXXe/L4/mIzJZFld/6WRJLP299XszwaEVfam8R4RHztyxHfTI7Gre/sri1Uq5WtvFxurG+W6zu711bXF1YqK5WN2dmZ9+euz703N53lTtXOYkTc+OKffvi9n33pxq8+863fz//l6reb1fr8x9r1jojFUwXoor3vQutY7Gseo62zCDYAI3l7CiODrgkAAL1onuN/OCI+2Tr/n4yR1tkcAAAAMEyymxPxryQiAwAAAIZWGhETkaSlfCzARKRpqdQew/vRuJxWa/XGp5dr2xtLzWURxSiky6vVynQ+VrgYhaRZnsnH2O6X3z1Uno2IVyLiB5OXWuXSYq26NOgfPwAAAOCCuPLGwev/f06mrTwAAAAwZIpdCwAAAMCwcMkPAAAAw8/1PwAAAAy1r9y+3UzZ/nu8l+7ubK/V7l5bqtTXSuvbi6XF2tZmaaVWW2k9s2/9pP1Va7XNz8bG9r1yo1JvlOs7u/Prte2NxvzqgVdgAwAAAOfolTce/i6JiL3PXWqlyJ8DCHDAHwddAaCfRgZdAWBgRgddAWBgCieuoYeAYZecsLzr4J1f978uAADA2Zj6+NH7/2P5spN/GwA+yIz1AYCLx909uLgKRgDChfeh9uSlbstPf/8/y567UgAAQF9NtFKSlvJ7gRORpqVSxMut1wIUkuXVamU6vz747WThpWZ5prVlcuKYYQAAAAAAAAAAAAAAAAAAAAAAAACgLcuSyAAAAIChFpH+OWk9zT9iavLtiYO/Dhx669dP7vzo3kKjsTUTMZb8fbI5aywiGj/O57+beSUAAAAAvADa1+n5dGbQtQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABg2Dx5fH9xP51n3L9+ISKKneKPxnhrOh6FiLj8jyRGn9kuiYiRPsTfexARr3aKn8TTLMuKeS06xb90xvGLrUPTOX4aEVf6EB8usofN/udWp89fGm+2pp0/f6N5Oq3u/V/63/5vpEv/83KPMV579Ity1/gPIl4b7dz/7MdP2vGTOBT/rR7jf+Pru7vdlmU/jZjq+P2THIhVbqxvlus7u9dW1xdWKiuVjdnZmffnrs+9NzddXl6tVvK/HWN8/xO/fHpc+y93iV882P4jx//tHtv/70f3Hn+knS10in/1rc7fv692iZ/m332fyvPN5VP7+b12/lmv//w3rx/X/qUu7R8/of1Xe2z/O1/97h96XBUAOAf1nd21hWq1snVMZryHdc45c/PFqIZMvzLZd9r/j6fbzyk3P5LJTrP5aPShGmPP8Tntb2aQvRIAAHAW/nfSP+iaAAAAAAAAAAAAAAAAAAAAwMX1fz4hbDwiel75cMy9wTQVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBY/wkAAP//E77WGg==") r3 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r3}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r4, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x0, 0x0) r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200)) 08:48:42 executing program 2: syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() r0 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r0, @ANYRESHEX=r0, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$eJzs3d9rXFkdAPDvvclk0zZrZlVkXXB3cVfSRTuTbNxtEGkriD4V1PoeYzIJIZNMyExqE4qm+AcIIir45JMvgn+AIP0TRCjou6gooq0+aq/MzI02yUwyNZNMd/L5wMk95/76nnPJnLl37uHeAC6sNyPiVkSMRMQ7ETGZz0/zNN8s7LXXe/L4/mIzJZFld/6WRJLP299XszwaEVfam8R4RHztyxHfTI7Gre/sri1Uq5WtvFxurG+W6zu711bXF1YqK5WN2dmZ9+euz703N53lTtXOYkTc+OKffvi9n33pxq8+863fz//l6reb1fr8x9r1jojFUwXoor3vQutY7Gseo62zCDYAI3l7CiODrgkAAL1onuN/OCI+2Tr/n4yR1tkcAAAAMEyymxPxryQiAwAAAIZWGhETkaSlfCzARKRpqdQew/vRuJxWa/XGp5dr2xtLzWURxSiky6vVynQ+VrgYhaRZnsnH2O6X3z1Uno2IVyLiB5OXWuXSYq26NOgfPwAAAOCCuPLGwev/f06mrTwAAAAwZIpdCwAAAMCwcMkPAAAAw8/1PwAAAAy1r9y+3UzZ/nu8l+7ubK/V7l5bqtTXSuvbi6XF2tZmaaVWW2k9s2/9pP1Va7XNz8bG9r1yo1JvlOs7u/Prte2NxvzqgVdgAwAAAOfolTce/i6JiL3PXWqlyJ8DCHDAHwddAaCfRgZdAWBgRgddAWBgCieuoYeAYZecsLzr4J1f978uAADA2Zj6+NH7/2P5spN/GwA+yIz1AYCLx909uLgKRgDChfeh9uSlbstPf/8/y567UgAAQF9NtFKSlvJ7gRORpqVSxMut1wIUkuXVamU6vz747WThpWZ5prVlcuKYYQAAAAAAAAAAAAAAAAAAAAAAAACgLcuSyAAAAIChFpH+OWk9zT9iavLtiYO/Dhx669dP7vzo3kKjsTUTMZb8fbI5aywiGj/O57+beSUAAAAAvADa1+n5dGbQtQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABg2Dx5fH9xP51n3L9+ISKKneKPxnhrOh6FiLj8jyRGn9kuiYiRPsTfexARr3aKn8TTLMuKeS06xb90xvGLrUPTOX4aEVf6EB8usofN/udWp89fGm+2pp0/f6N5Oq3u/V/63/5vpEv/83KPMV579Ity1/gPIl4b7dz/7MdP2vGTOBT/rR7jf+Pru7vdlmU/jZjq+P2THIhVbqxvlus7u9dW1xdWKiuVjdnZmffnrs+9NzddXl6tVvK/HWN8/xO/fHpc+y93iV882P4jx//tHtv/70f3Hn+knS10in/1rc7fv692iZ/m332fyvPN5VP7+b12/lmv//w3rx/X/qUu7R8/of1Xe2z/O1/97h96XBUAOAf1nd21hWq1snVMZryHdc45c/PFqIZMvzLZd9r/j6fbzyk3P5LJTrP5aPShGmPP8Tntb2aQvRIAAHAW/nfSP+iaAAAAAAAAAAAAAAAAAAAAwMX1fz4hbDwiel75cMy9wTQVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBY/wkAAP//E77WGg==") r1 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r1}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200)) [ 2333.008678][T18551] FAULT_INJECTION: forcing a failure. [ 2333.008678][T18551] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2333.021970][T18551] CPU: 1 PID: 18551 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2333.032204][T18551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2333.042118][T18551] Call Trace: [ 2333.045220][T18551] [ 2333.047997][T18551] dump_stack_lvl+0x151/0x1b7 [ 2333.052516][T18551] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2333.057983][T18551] dump_stack+0x15/0x17 [ 2333.061973][T18551] should_fail+0x3c6/0x510 [ 2333.066226][T18551] should_fail_alloc_page+0x5a/0x80 [ 2333.071301][T18551] prepare_alloc_pages+0x15c/0x700 [ 2333.076208][T18551] ? __alloc_pages+0x8f0/0x8f0 [ 2333.080809][T18551] ? __alloc_pages_bulk+0xe40/0xe40 [ 2333.085849][T18551] __alloc_pages+0x18c/0x8f0 [ 2333.090267][T18551] ? prep_new_page+0x110/0x110 [ 2333.094870][T18551] ? 0xffffffffa002817c [ 2333.098855][T18551] ? is_bpf_text_address+0x172/0x190 [ 2333.103975][T18551] pte_alloc_one+0x73/0x1b0 [ 2333.108315][T18551] ? pfn_modify_allowed+0x2f0/0x2f0 [ 2333.113346][T18551] ? arch_stack_walk+0xf3/0x140 [ 2333.118034][T18551] __pte_alloc+0x86/0x350 [ 2333.122201][T18551] ? free_pgtables+0x280/0x280 [ 2333.126828][T18551] ? _raw_spin_lock+0xa4/0x1b0 [ 2333.131400][T18551] ? __kasan_check_write+0x14/0x20 [ 2333.136352][T18551] copy_page_range+0x28a8/0x2f90 [ 2333.141126][T18551] ? __kasan_slab_alloc+0xb1/0xe0 [ 2333.145987][T18551] ? pfn_valid+0x1e0/0x1e0 [ 2333.150243][T18551] ? vma_gap_callbacks_rotate+0x1b7/0x210 [ 2333.155791][T18551] ? __rb_insert_augmented+0x5de/0x610 [ 2333.161087][T18551] copy_mm+0xc7e/0x13e0 [ 2333.165077][T18551] ? copy_signal+0x610/0x610 [ 2333.169502][T18551] ? __init_rwsem+0xd6/0x1c0 [ 2333.173929][T18551] ? copy_signal+0x4e3/0x610 [ 2333.178357][T18551] copy_process+0x1149/0x3290 [ 2333.182872][T18551] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2333.187815][T18551] ? copy_clone_args_from_user+0x744/0x830 [ 2333.193457][T18551] kernel_clone+0x21e/0x9e0 [ 2333.197796][T18551] ? __delayed_free_task+0x20/0x20 [ 2333.202742][T18551] ? create_io_thread+0x1e0/0x1e0 [ 2333.207613][T18551] __x64_sys_clone3+0x376/0x3a0 [ 2333.212297][T18551] ? __ia32_sys_clone+0x290/0x290 [ 2333.217156][T18551] ? fput+0x1a/0x20 [ 2333.220801][T18551] ? debug_smp_processor_id+0x17/0x20 [ 2333.226008][T18551] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2333.231907][T18551] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2333.237374][T18551] do_syscall_64+0x3d/0xb0 [ 2333.241636][T18551] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2333.247529][T18551] RIP: 0033:0x7fe6f3145da9 [ 2333.251797][T18551] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2333.271225][T18551] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2333.279467][T18551] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2333.287380][T18551] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2333.295187][T18551] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 08:48:42 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 65) [ 2333.303081][T18551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2333.310895][T18551] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2333.318803][T18551] [ 2333.363336][T18563] FAULT_INJECTION: forcing a failure. [ 2333.363336][T18563] name failslab, interval 1, probability 0, space 0, times 0 [ 2333.366761][T18566] loop0: detected capacity change from 0 to 128 [ 2333.377053][T18565] loop2: detected capacity change from 0 to 128 [ 2333.401259][T18563] CPU: 1 PID: 18563 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 08:48:42 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000000)={0x1b, 0x0, 0x0, 0x7ff, 0x0, 0x1, 0x100, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x1}, 0x48) (async) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f0000000080), &(0x7f00000000c0)}, 0x20) (async) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000340)='memory.numa_stat\x00', 0x0, 0x0) (async) r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000400), 0x2b0080, 0x0) (async) r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x5}, 0x48) (async) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r6, &(0x7f0000000200), 0xf000) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000300)={r6, 0x58, &(0x7f0000000400)}, 0x10) (async) sendfile(r6, r5, 0x0, 0x8000000000010) (async) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0) write$binfmt_script(r7, &(0x7f0000000980)=ANY=[@ANYBLOB="cb3d8d4c4da2fcfaa9b46bc9791f9dfe8b8ded72c69a024613db723af165b315e9865cb8a83ca6c9993494610e02d7c60b325b94c3242ff2e1261e4c7258e1b9016c75210dc787941bc284d4078e675a0174c625974beeeaf83983088aa7a28fcf657c2f88e43725b9515544b655544851f3efdc123a163d06a308f5f7f10ced9f9ff8119a"], 0x208e24b) (async) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r7, 0x0) (async) preadv(r7, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffffff000}], 0x5, 0x0, 0x0) (async) r8 = creat(&(0x7f0000000040)='./bus\x00', 0x0) ftruncate(r8, 0x800) (async) lseek(r8, 0x0, 0x2) (async) r9 = open(&(0x7f0000000000)='./bus\x00', 0x125000, 0x0) sendfile(r8, r9, 0x0, 0x1dd00) (async) sendmsg$MPTCP_PM_CMD_DEL_ADDR(r6, &(0x7f0000000940)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000900)={&(0x7f00000008c0)={0x3c, 0x0, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x78}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24004014}, 0x4040010) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000004c0)={0x1, 0xffffffffffffffff}, 0x4) (async) r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0xf, 0x3, 0xffff, 0x8, 0x2, 0x1, 0x101, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x1, 0x5}, 0x48) (async) r12 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) ioctl$FS_IOC_RESVSP(r12, 0x40305828, &(0x7f00000000c0)={0x0, 0x0, 0x4009, 0x7}) (async) newfstatat(0xffffffffffffff9c, &(0x7f0000000700)='./bus\x00', &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x800) quotactl_fd$Q_GETNEXTQUOTA(r10, 0x0, r13, &(0x7f00000007c0)) ioctl$FS_IOC_RESVSP(r12, 0x40305829, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x80000003}) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0xa, 0x19, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000060000241b90755df341a30018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000117340001000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000010000008500000082000000bf91000000000000b7020000000000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000240)='syzkaller\x00', 0xe8, 0xa5, &(0x7f0000000280)=""/165, 0x40f00, 0x5e, '\x00', 0x0, 0x10, r2, 0x8, &(0x7f0000000380)={0x9, 0x1}, 0x8, 0x10, &(0x7f00000003c0)={0x2, 0x8, 0x9, 0x2089}, 0x10, 0x0, r3, 0x6, &(0x7f0000000580)=[r4, r6, r7, r8, r10, r11, r12], &(0x7f00000005c0)=[{0x1, 0x4, 0x2}, {0x1, 0x2, 0xc, 0x3}, {0x3, 0x3, 0xa}, {0x1, 0x2, 0x7, 0x8}, {0x1, 0x5, 0x5, 0x4}, {0x1, 0x1, 0x2, 0xa}], 0x10, 0x5}, 0x90) (async) syz_clone3(&(0x7f0000009140)={0x64044900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2333.411419][T18563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2333.421318][T18563] Call Trace: [ 2333.424439][T18563] [ 2333.427212][T18563] dump_stack_lvl+0x151/0x1b7 [ 2333.431729][T18563] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2333.437193][T18563] dump_stack+0x15/0x17 [ 2333.441185][T18563] should_fail+0x3c6/0x510 [ 2333.445441][T18563] __should_failslab+0xa4/0xe0 [ 2333.450037][T18563] ? vm_area_dup+0x26/0x230 [ 2333.454387][T18563] should_failslab+0x9/0x20 [ 2333.458717][T18563] slab_pre_alloc_hook+0x37/0xd0 08:48:42 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x109440, 0x0) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x67) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x541c, &(0x7f0000000080)) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2333.463490][T18563] ? vm_area_dup+0x26/0x230 [ 2333.467916][T18563] kmem_cache_alloc+0x44/0x200 [ 2333.472519][T18563] vm_area_dup+0x26/0x230 [ 2333.476681][T18563] copy_mm+0x9a1/0x13e0 [ 2333.480679][T18563] ? copy_signal+0x610/0x610 [ 2333.485101][T18563] ? __init_rwsem+0xd6/0x1c0 [ 2333.489532][T18563] ? copy_signal+0x4e3/0x610 [ 2333.493957][T18563] copy_process+0x1149/0x3290 [ 2333.498475][T18563] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2333.503416][T18563] ? copy_clone_args_from_user+0x744/0x830 [ 2333.509060][T18563] kernel_clone+0x21e/0x9e0 08:48:42 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x109440, 0x0) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x67) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) (async) ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x541c, &(0x7f0000000080)) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2333.513395][T18563] ? __delayed_free_task+0x20/0x20 [ 2333.518345][T18563] ? create_io_thread+0x1e0/0x1e0 [ 2333.523209][T18563] __x64_sys_clone3+0x376/0x3a0 [ 2333.527890][T18563] ? __ia32_sys_clone+0x290/0x290 [ 2333.532750][T18563] ? fput+0x1a/0x20 [ 2333.536395][T18563] ? debug_smp_processor_id+0x17/0x20 [ 2333.541603][T18563] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2333.547513][T18563] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2333.552969][T18563] do_syscall_64+0x3d/0xb0 [ 2333.557220][T18563] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2333.562950][T18563] RIP: 0033:0x7fe6f3145da9 [ 2333.567206][T18563] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2333.586652][T18563] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2333.594896][T18563] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2333.602715][T18563] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 08:48:43 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = socket(0x22, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x12, 0x4, 0x8, 0x2, 0x0, 0x1}, 0x48) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={r3, &(0x7f0000000340), &(0x7f00000001c0)=@tcp=r2}, 0x20) (async) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={r3, &(0x7f0000000340), &(0x7f00000001c0)=@tcp=r2}, 0x20) r4 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000012c0)=@o_path={&(0x7f0000001280)='./file0\x00', 0x0, 0x0, r3}, 0x18) bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000000)={0xe, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3}, 0x48) (async) r5 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000000)={0xe, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3}, 0x48) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000001200)=ANY=[@ANYBLOB="620af8ff0c011021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf9943134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2eed44d69fe32b0142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff90326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583584acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6eada31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f7be748538e23b016015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7c48de61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e4000000000d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb8434503680300383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd574d67ff2a49c4f93c95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38709ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88c3c44b3b7486f979e8a3174b531f573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d0104361c37c61a43b5afd865b60d4cae891b73220f17d25979a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e9611d2e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e64701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad8677907af2851ec30e57166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d93e1fe9c0b4a4a2689217380400a9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a000000000000000000000000000020bd79e41c682139c58ac1deb039a691ad640e12c12fe11d70fe495906f2d5d71778acbd4eee53a3996cb0de84bd2b0504789d60c0f96a53ea44e0b293865aa68df494f87db976e36ad6c06912244d4c883c4aaa60b4a1392ce0b2f2c519663b4652ff871e0f6dfff9f7d34ecf04be0a58c3d53174b67d1886e34b81ad8c60da56acc64739c3acab24aa8d0ac92d465074f915608b1b60a948bad401b1a7fb3627bbe6c45123ed44bfdf8cc143bd1b7a663dc3d0476b8e39becffc429e41f66b1e37ae52aacaff0f1dc8ea70b68c25072e20586b19127d75fa71577f265c5100000000000000000000000000000000000000000000000070a45784f793e88e477e48f7d87acf12a6731eb5350831f500461ed55897f517923c73f731c139464c6383e580ce222a3250dd12ba25f71de8c94f56f418460dff5678c7c3f51ab4ddc29ffdf496bd8c579401c734fd5ac11a1008ce1d63f5b516d92bf5d718b267017b3ecd7200a7db0ef6b3a8e1f22186961f8c86c29b3144aa71d1623f9053dcf2a445c69d0f14b24884e83a94ad02647b8959c4eef7516546040c83e04484d7f2b65456e2da0dcc7f5a9024b8f4d35cbb03da118cb5f25b97894eafca8140fadcac67c5b17efea5a65b9a66cedb68619f2622733254650fe28f8233f40bed514bdfb199bf21cf421f2f70b1a285e86b542947cbaa6e23c3ae82d62e99d20d803bab995faae7389946ac0773194a5c2dcb3b57f6dcc6cb564e1dc7f0499df2b10bb50b470197ea7e8892c6b379c21b026b28e81c18ed4a04332e0060b2d9dd3f8e605124126620d8f2e509f8644fc34f44590bdf7037355143346c1c837247bb20f8383d329b951a8ca525f797138cf6ab4fa7839218d0e08d19de4f7940ced761da3dea423fb2d7f9cfd9786e1560e5180498c13fe0a866dd346b8a8d6ec5291d83dd5c10b60f57a4866923e8d7c489cefa3fbe243f988cbc697c24e4fe3d858dd3feade1ba7dc27a92a6e8dba7c6314fba72ef99e3bf8f98ee09b35c0aff090cc733c32b58d49e20e240ee99f234ea091ffe366f500817c4182a6f8dbbe6073c"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x49) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) ioctl$FS_IOC_SETFLAGS(r7, 0x40086602, &(0x7f0000000000)=0x2004091) (async) ioctl$FS_IOC_SETFLAGS(r7, 0x40086602, &(0x7f0000000000)=0x2004091) socket$inet_icmp_raw(0x2, 0x3, 0x1) (async) r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1) socket$nl_route(0x10, 0x3, 0x0) (async) r9 = socket$nl_route(0x10, 0x3, 0x0) r10 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r10, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(r10, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) sendmsg$nl_route(r9, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000800)=ANY=[@ANYBLOB="380000001000370400"/20, @ANYRES32=r11, @ANYBLOB="8b040400000000001800128008000100736974000c00028008000100a3faec5dd9f65a3b785c26052ecbf0d1fd294bf310ee837c2c9ca61b3357b19bd22e8b03f674da3ef862fb24433542b4ae4558d891d1bbd38ca56275985a3551d5f4cbe09cffe0fe0837b9236b7981f4a764d11e7b2fbcd4f3334a92098f273f4c493e540b74f436e55182", @ANYRES32=r11, @ANYBLOB="6b13d421733a659542e471c45b4c3f13202861720aa89c2f3ef8497c3cbfcf7f61606256b5d87e0e097e5e77242eaf807481f148e424385c0d896b7c1e80986d62f68f522a389a5800fa6f1656427df9ba8756b87b21d89977decb8bafc224ad7adb43eb0a264586a527c55b242302278b853e96e8861bee11df122165aecbf534e857b62d4924a1f09894b1b4db9a6e8cb53387674f5dd3ebe0208bca9b65787857446f"], 0x38}}, 0x0) sendmsg$inet(r8, &(0x7f0000000640)={&(0x7f0000000440)={0x2, 0x0, @private=0xa010101}, 0x10, &(0x7f0000000500)=[{&(0x7f00000004c0)="9e01", 0xc600}], 0x1, &(0x7f00000005c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r11, @empty, @local}}}], 0x20}, 0x0) (async) sendmsg$inet(r8, &(0x7f0000000640)={&(0x7f0000000440)={0x2, 0x0, @private=0xa010101}, 0x10, &(0x7f0000000500)=[{&(0x7f00000004c0)="9e01", 0xc600}], 0x1, &(0x7f00000005c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r11, @empty, @local}}}], 0x20}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000002300)={'wlan1\x00'}) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000300)={0x3ffffe, 0x0}, 0x8) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1d, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x3}, 0x8, 0x10, &(0x7f0000000000), 0x10, r12}, 0x80) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1d, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x3}, 0x8, 0x10, &(0x7f0000000000), 0x10, r12}, 0x80) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x5, 0xd, &(0x7f0000000140)=@raw=[@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffff7}}], &(0x7f0000000040)='syzkaller\x00', 0xfff, 0xab, &(0x7f00000001c0)=""/171, 0x40f00, 0x43, '\x00', r11, 0x21, r7, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000280)={0x5, 0xf, 0x1, 0x4}, 0x10, r12, r6, 0x5, &(0x7f00000002c0)=[r7], &(0x7f0000000300)=[{0x3, 0x3, 0x0, 0x9}, {0x0, 0x3, 0x4, 0x4}, {0x1, 0x2, 0x10, 0xb}, {0x5, 0x2, 0xf, 0x1}, {0x3, 0x4, 0x4, 0x1}], 0x10, 0x7}, 0x90) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x5, 0xd, &(0x7f0000000140)=@raw=[@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffff7}}], &(0x7f0000000040)='syzkaller\x00', 0xfff, 0xab, &(0x7f00000001c0)=""/171, 0x40f00, 0x43, '\x00', r11, 0x21, r7, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000280)={0x5, 0xf, 0x1, 0x4}, 0x10, r12, r6, 0x5, &(0x7f00000002c0)=[r7], &(0x7f0000000300)=[{0x3, 0x3, 0x0, 0x9}, {0x0, 0x3, 0x4, 0x4}, {0x1, 0x2, 0x10, 0xb}, {0x5, 0x2, 0xf, 0x1}, {0x3, 0x4, 0x4, 0x1}], 0x10, 0x7}, 0x90) r13 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0) mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x4, 0x13, r13, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000001580)={0x14, 0xc, &(0x7f0000001300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x492c}, [@map_idx={0x18, 0x0, 0x5, 0x0, 0x5}, @cb_func={0x18, 0x6, 0x4, 0x0, 0xfffffffffffffffd}, @tail_call={{0x18, 0x2, 0x1, 0x0, r4}}]}, &(0x7f0000001380)='syzkaller\x00', 0xab9, 0xe3, &(0x7f00000013c0)=""/227, 0x41100, 0x40, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, &(0x7f00000014c0)={0x1, 0x5}, 0x8, 0x10, &(0x7f0000001500)={0x1, 0x1, 0x4, 0xff}, 0x10, r12, r2, 0x0, &(0x7f0000001540)=[r5, r13, r3, r5, r5], 0x0, 0x10, 0xffffcb72}, 0x90) r14 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x40}, [@exit, @tail_call, @call={0x85, 0x0, 0x0, 0x9}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @call={0x85, 0x0, 0x0, 0x3b}]}, &(0x7f0000000140)='GPL\x00', 0x7, 0x8f, &(0x7f00000003c0)=""/143, 0x41000, 0x2a, '\x00', 0x0, 0x2b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000300)={0x5, 0x9, 0x7f, 0x10001}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x3, &(0x7f0000000580)=[r0, r0], &(0x7f00000005c0)=[{0x0, 0x1, 0xe, 0x8}, {0x5, 0x2, 0x8, 0x5}, {0x1, 0x2, 0x1, 0x7}]}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1d, 0x10, &(0x7f0000000080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x82}, {}, {}, [@jmp={0x5, 0x1, 0xb, 0x4, 0x6, 0x100, 0xfffffffffffffff0}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000000)='GPL\x00', 0x2, 0xdc, &(0x7f0000000640)=""/220, 0x41100, 0x1, '\x00', 0x0, 0x16, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000100)={0x2, 0xd, 0x3, 0x2}, 0x10, r12, r14, 0x0, &(0x7f0000000800)=[r1, r0], 0x0, 0x10, 0x80000001}, 0x90) r15 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r15}, 0x10) setuid(0x0) (async) setuid(0x0) 08:48:43 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x109440, 0x0) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x67) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) (async) ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x541c, &(0x7f0000000080)) (async) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:43 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 66) [ 2333.610514][T18563] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2333.618335][T18563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2333.626137][T18563] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2333.633961][T18563] [ 2333.774234][T18585] FAULT_INJECTION: forcing a failure. [ 2333.774234][T18585] name failslab, interval 1, probability 0, space 0, times 0 [ 2333.787564][T18585] CPU: 0 PID: 18585 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2333.797719][T18585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2333.807617][T18585] Call Trace: [ 2333.810737][T18585] [ 2333.813510][T18585] dump_stack_lvl+0x151/0x1b7 [ 2333.818031][T18585] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2333.823496][T18585] dump_stack+0x15/0x17 [ 2333.827486][T18585] should_fail+0x3c6/0x510 [ 2333.831735][T18585] __should_failslab+0xa4/0xe0 [ 2333.836333][T18585] ? anon_vma_fork+0x1df/0x4e0 [ 2333.840935][T18585] should_failslab+0x9/0x20 [ 2333.845272][T18585] slab_pre_alloc_hook+0x37/0xd0 [ 2333.850047][T18585] ? anon_vma_fork+0x1df/0x4e0 [ 2333.854646][T18585] kmem_cache_alloc+0x44/0x200 [ 2333.859249][T18585] anon_vma_fork+0x1df/0x4e0 [ 2333.863791][T18585] copy_mm+0xa3a/0x13e0 [ 2333.867785][T18585] ? copy_signal+0x610/0x610 [ 2333.872333][T18585] ? __init_rwsem+0xd6/0x1c0 [ 2333.876819][T18585] ? copy_signal+0x4e3/0x610 [ 2333.881244][T18585] copy_process+0x1149/0x3290 [ 2333.885758][T18585] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2333.890702][T18585] ? copy_clone_args_from_user+0x744/0x830 [ 2333.896345][T18585] kernel_clone+0x21e/0x9e0 [ 2333.900687][T18585] ? __delayed_free_task+0x20/0x20 [ 2333.905646][T18585] ? create_io_thread+0x1e0/0x1e0 [ 2333.910505][T18585] __x64_sys_clone3+0x376/0x3a0 [ 2333.915300][T18585] ? __ia32_sys_clone+0x290/0x290 [ 2333.920315][T18585] ? __schedule+0xcd4/0x1590 [ 2333.924748][T18585] ? __kasan_check_write+0x14/0x20 [ 2333.929697][T18585] ? __kasan_check_read+0x11/0x20 [ 2333.934639][T18585] ? exit_to_user_mode_prepare+0x7e/0xa0 [ 2333.940109][T18585] do_syscall_64+0x3d/0xb0 [ 2333.944366][T18585] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2333.950086][T18585] RIP: 0033:0x7fe6f3145da9 [ 2333.954340][T18585] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 08:48:43 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={0xffffffffffffffff, 0x200, 0x81, 0x4a7f310f}) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0)={0x1}, 0x4) r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000100)={0x3, 0x4, 0x4, 0xa, 0x0, r0, 0x5, '\x00', 0x0, r0, 0x9, 0x1, 0x5}, 0x48) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000200)={'batadv0\x00', 0x0}) r3 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000006c0)=@generic={&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x8}, 0x18) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x20, 0x14, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000002000000000000000300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b70300000000000f8500000083000000bf090000000000005509010000000000950000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000000c000000b700000000000000bf91000000000000b7020000010000008500000085000000b7000000000000009500000000000000"], &(0x7f00000001c0)='syzkaller\x00', 0x6, 0x45, &(0x7f0000000480)=""/69, 0xea7f2f6ed32b2a60, 0x52, '\x00', r2, 0xe, r0, 0x8, &(0x7f0000000500)={0xa, 0x5}, 0x8, 0x10, &(0x7f0000000540)={0x5, 0xa, 0x2000000, 0x113d}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x4, &(0x7f0000000700)=[r3], &(0x7f0000000740)=[{0x3, 0x3, 0x1, 0x2}, {0x5, 0x5, 0x4, 0x7a3d5c2bfd7e2ce5}, {0x1, 0x1, 0x10, 0x4}, {0x1, 0x1, 0x3, 0x2}], 0x10, 0x401}, 0x90) syz_clone3(&(0x7f0000000240)={0x0, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x41}, &(0x7f0000000300)=""/191, 0xbf, &(0x7f00000002c0)=""/25, &(0x7f00000001c0), 0x3d, {r0}}, 0x58) 08:48:43 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 67) 08:48:43 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) (async) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={0xffffffffffffffff, 0x200, 0x81, 0x4a7f310f}) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0)={0x1}, 0x4) (async) r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000100)={0x3, 0x4, 0x4, 0xa, 0x0, r0, 0x5, '\x00', 0x0, r0, 0x9, 0x1, 0x5}, 0x48) (async) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000200)={'batadv0\x00', 0x0}) (async) r3 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000006c0)=@generic={&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x8}, 0x18) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x20, 0x14, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000002000000000000000300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b70300000000000f8500000083000000bf090000000000005509010000000000950000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000000c000000b700000000000000bf91000000000000b7020000010000008500000085000000b7000000000000009500000000000000"], &(0x7f00000001c0)='syzkaller\x00', 0x6, 0x45, &(0x7f0000000480)=""/69, 0xea7f2f6ed32b2a60, 0x52, '\x00', r2, 0xe, r0, 0x8, &(0x7f0000000500)={0xa, 0x5}, 0x8, 0x10, &(0x7f0000000540)={0x5, 0xa, 0x2000000, 0x113d}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x4, &(0x7f0000000700)=[r3], &(0x7f0000000740)=[{0x3, 0x3, 0x1, 0x2}, {0x5, 0x5, 0x4, 0x7a3d5c2bfd7e2ce5}, {0x1, 0x1, 0x10, 0x4}, {0x1, 0x1, 0x3, 0x2}], 0x10, 0x401}, 0x90) syz_clone3(&(0x7f0000000240)={0x0, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x41}, &(0x7f0000000300)=""/191, 0xbf, &(0x7f00000002c0)=""/25, &(0x7f00000001c0), 0x3d, {r0}}, 0x58) [ 2333.973787][T18585] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2333.982025][T18585] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2333.989837][T18585] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2333.997739][T18585] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2334.005634][T18585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2334.013533][T18585] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2334.021349][T18585] 08:48:43 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) (async) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={0xffffffffffffffff, 0x200, 0x81, 0x4a7f310f}) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0)={0x1}, 0x4) (async, rerun: 32) r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000100)={0x3, 0x4, 0x4, 0xa, 0x0, r0, 0x5, '\x00', 0x0, r0, 0x9, 0x1, 0x5}, 0x48) (rerun: 32) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000200)={'batadv0\x00', 0x0}) r3 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000006c0)=@generic={&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x8}, 0x18) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x20, 0x14, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000002000000000000000300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b70300000000000f8500000083000000bf090000000000005509010000000000950000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000000c000000b700000000000000bf91000000000000b7020000010000008500000085000000b7000000000000009500000000000000"], &(0x7f00000001c0)='syzkaller\x00', 0x6, 0x45, &(0x7f0000000480)=""/69, 0xea7f2f6ed32b2a60, 0x52, '\x00', r2, 0xe, r0, 0x8, &(0x7f0000000500)={0xa, 0x5}, 0x8, 0x10, &(0x7f0000000540)={0x5, 0xa, 0x2000000, 0x113d}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x4, &(0x7f0000000700)=[r3], &(0x7f0000000740)=[{0x3, 0x3, 0x1, 0x2}, {0x5, 0x5, 0x4, 0x7a3d5c2bfd7e2ce5}, {0x1, 0x1, 0x10, 0x4}, {0x1, 0x1, 0x3, 0x2}], 0x10, 0x401}, 0x90) syz_clone3(&(0x7f0000000240)={0x0, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x41}, &(0x7f0000000300)=""/191, 0xbf, &(0x7f00000002c0)=""/25, &(0x7f00000001c0), 0x3d, {r0}}, 0x58) 08:48:43 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0xfffffffffffffeaa) 08:48:43 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) syz_clone3(&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0xfffffffffffffeaa) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) (async) syz_clone3(&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0xfffffffffffffeaa) (async) [ 2334.056378][T18607] FAULT_INJECTION: forcing a failure. [ 2334.056378][T18607] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2334.070303][T18607] CPU: 1 PID: 18607 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2334.080461][T18607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2334.090360][T18607] Call Trace: [ 2334.093482][T18607] [ 2334.096259][T18607] dump_stack_lvl+0x151/0x1b7 [ 2334.100773][T18607] ? io_uring_drop_tctx_refs+0x190/0x190 08:48:43 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) (async) syz_clone3(&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0xfffffffffffffeaa) [ 2334.106242][T18607] dump_stack+0x15/0x17 [ 2334.110256][T18607] should_fail+0x3c6/0x510 [ 2334.114483][T18607] should_fail_alloc_page+0x5a/0x80 [ 2334.119618][T18607] prepare_alloc_pages+0x15c/0x700 [ 2334.124553][T18607] ? __alloc_pages+0x8f0/0x8f0 [ 2334.129160][T18607] ? __alloc_pages_bulk+0xe40/0xe40 [ 2334.134188][T18607] __alloc_pages+0x18c/0x8f0 [ 2334.138612][T18607] ? prep_new_page+0x110/0x110 [ 2334.143210][T18607] ? 0xffffffffa0028970 [ 2334.147218][T18607] ? is_bpf_text_address+0x172/0x190 [ 2334.152327][T18607] pte_alloc_one+0x73/0x1b0 08:48:43 executing program 1: r0 = open(&(0x7f0000000100)='./file0\x00', 0x460c2, 0x0) write(r0, &(0x7f00000003c0)="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", 0x304) connect$pptp(r0, &(0x7f0000000000)={0x18, 0x2, {0x2, @local}}, 0x1e) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x61) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2334.156685][T18607] ? pfn_modify_allowed+0x2f0/0x2f0 [ 2334.161705][T18607] ? arch_stack_walk+0xf3/0x140 [ 2334.166389][T18607] __pte_alloc+0x86/0x350 [ 2334.170552][T18607] ? free_pgtables+0x280/0x280 [ 2334.175145][T18607] ? _raw_spin_lock+0xa4/0x1b0 [ 2334.179754][T18607] ? __kasan_check_write+0x14/0x20 [ 2334.184696][T18607] copy_page_range+0x28a8/0x2f90 [ 2334.189469][T18607] ? __kasan_slab_alloc+0xb1/0xe0 [ 2334.194331][T18607] ? pfn_valid+0x1e0/0x1e0 [ 2334.198587][T18607] ? vma_gap_callbacks_rotate+0x1e2/0x210 08:48:43 executing program 1: r0 = open(&(0x7f0000000100)='./file0\x00', 0x460c2, 0x0) write(r0, &(0x7f00000003c0)="34fd98aa1d0e7adec937a5f331a75f487934f50242a0751944936972896c29a5068c8ecba1aa0a4e2a631b5180e1fbde79f4502dc4c4a1fba9dcd9ed83e639aefa1b87631c33d1a92cb0c0035676ddfeb0fe7984d7519b0f839d497fc9d64ef14d1de22220ff2623df4950134b9fb734a52adad95f131cce3672a9d7d7b400d2c62810b5f20351639330948107bf8d4534a03ac389455c54d8eb4d609b3e858b7213b38eb01f0eeaba3739ae927916e28da6a79a3fd5e32d30ab30bf959d4596e5ffbff6789a650b9e7d248d1ba849012336a4f3ef8fab07a8f5b81bb0bc45b2174538315ca12b7c723b2157562564a8a1f19d28179f8c565448e0e921b8c3e6fc4adaafa8b929ad077f633325b6a6e33ddf55a3f71a586cabb5883e03e19315f946b277858593a7367e232202fe9ad656c6768a1517da7f0498b48cb078e929fb11db0cc551f754bffc4859dd89a396915cc809b07d448573098409ea21371056f67ef4114ec10547f498d24513fe594308bf022868ad25e85bba811942fdc45161a1a8a7fe00d5c6b05ed7954f631bbd12a5c9a5cfa5965e0595de608b04ebe02b3fcbf3b9f57807a1a7ad8528992e2ec65949da2f4a0478dfd3ae52639c15d8aeaa351da6d393b58c772168fae604d097fef4d6b9360eb169a0b0ee70cdc298490ccee68698f61b3b63b1f51011bc8f0400000000000000f670124a1c6ed18335d63412090995ae449c622d4b5c0c92d9645416eef6e1d2704ff42865421528f78382d9b6ac1fb23be34c1b89ec56d9edf30c3f3922be69d7a0db0312e975e55c40408c852ac19ec66fdebbd73363cc0fc3a5721917e593312d55cfd7282b43456d1632b6de56d4e798f68cfd9ee70aa2fda78fe455e7a629f63295376da13d7f203551f671e00ac4a9771a5680eaf7618aaf149e5922acfcdbfb15afc661033904a10df4d7421508153901d4cc088ae881d3455ccab23a7b32393f5685fd928165988b1970d88bd12a2b0caef3d33fcb121891941047fd1042f05a49daceb26e4b12096e67d83627d8fbc7a03137cf002aa208c578b5903ee9d5580b52822bcaf800", 0x304) connect$pptp(r0, &(0x7f0000000000)={0x18, 0x2, {0x2, @local}}, 0x1e) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x61) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (async) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:43 executing program 1: r0 = open(&(0x7f0000000100)='./file0\x00', 0x460c2, 0x0) write(r0, &(0x7f00000003c0)="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", 0x304) connect$pptp(r0, &(0x7f0000000000)={0x18, 0x2, {0x2, @local}}, 0x1e) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x61) (async) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2334.204139][T18607] ? __rb_insert_augmented+0x5de/0x610 [ 2334.209444][T18607] copy_mm+0xc7e/0x13e0 [ 2334.213436][T18607] ? copy_signal+0x610/0x610 [ 2334.217854][T18607] ? __init_rwsem+0xd6/0x1c0 [ 2334.222288][T18607] ? copy_signal+0x4e3/0x610 [ 2334.226707][T18607] copy_process+0x1149/0x3290 [ 2334.231258][T18607] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2334.236259][T18607] ? copy_clone_args_from_user+0x744/0x830 [ 2334.241906][T18607] kernel_clone+0x21e/0x9e0 [ 2334.246238][T18607] ? __delayed_free_task+0x20/0x20 [ 2334.251189][T18607] ? create_io_thread+0x1e0/0x1e0 08:48:43 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) r0 = syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = getpgrp(r0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000240)=0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000280)=0x0) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) splice(r6, 0x0, r5, 0x0, 0x6, 0x0) writev(r5, &(0x7f0000000040)=[{&(0x7f0000000000)='5', 0xfdef}], 0x1) getsockopt$bt_BT_DEFER_SETUP(r4, 0x112, 0x7, &(0x7f0000000100)=0x1, &(0x7f0000000140)=0x4) writev(r5, &(0x7f00000013c0)=[{&(0x7f00000001c0)="f3", 0x1}], 0x1) dup3(r6, r5, 0x0) sendmsg$IPSET_CMD_CREATE(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)={0x14, 0x2, 0x6, 0x301}, 0x14}}, 0x0) syz_clone3(&(0x7f0000000300)={0x800100, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x2b}, &(0x7f0000000400)=""/143, 0x8f, &(0x7f0000000180)=""/135, &(0x7f00000002c0)=[r0, r1, r2, r3, r0, r0], 0x6, {r5}}, 0x58) [ 2334.256047][T18607] __x64_sys_clone3+0x376/0x3a0 [ 2334.260739][T18607] ? __ia32_sys_clone+0x290/0x290 [ 2334.265690][T18607] ? fput+0x1a/0x20 [ 2334.269380][T18607] ? debug_smp_processor_id+0x17/0x20 [ 2334.274534][T18607] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2334.280434][T18607] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2334.285903][T18607] do_syscall_64+0x3d/0xb0 [ 2334.290160][T18607] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2334.295463][ T30] audit: type=1400 audit(1709628523.761:256): avc: denied { read } for pid=18636 comm="syz-executor.1" path="socket:[162751]" dev="sockfs" ino=162751 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 2334.295875][T18607] RIP: 0033:0x7fe6f3145da9 [ 2334.295901][T18607] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2334.344761][T18607] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 08:48:43 executing program 3: bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x208301, 0x0) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0x18, &(0x7f00000001c0)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) setuid(0x0) 08:48:43 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 68) [ 2334.353075][T18607] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2334.360892][T18607] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2334.368732][T18607] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2334.376507][T18607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2334.384339][T18607] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2334.392138][T18607] 08:48:43 executing program 2: syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() r0 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r0, @ANYRESHEX=r0, @ANYRESOCT, @ANYBLOB="ca42ad87b11bb3b2507e03129a435e7c99104f0cd507000000046f9445631055f28a4e6777e97047e5807db4996b10208d04454ea654888bf754956945961677b348d33478b3d8f70eac439f502bea81070bba59ccec17e7d182ea9fdfde2b94e826d24492db7f8983925947dc2b357943622c9feaa43512f4afed56e4010e2543166dfc76b6668c1ccb960ebeb21ae5eaaa01a65f105a20fdcdb5c20c2245eecbd4e49cbb07060000003674c0a6397ca594873755027deb77b094a29545f674e5a44c597f0473f49684719c9445839a59a09e1c1361d72b8a1dd163eecd03bd218ba880482b173bef3f91cbd40796bdeb13d63c1eadecb3dfe83f1d88b8b7fb053eed7e742bfff269a5c16070aa8b51d4538811d4de1d198d2fdcfa404fc9e6df202578e962544794e77c2425f73fcd3d0cd1d4ff004ec0754e946adff5e93ffc586126de12ee3a2b1e347cbf598c20648bf702511dd953cfd9eef7b0cf148a63cca032a3f5c2247efc16857ad98255693a11149dde8fed62623d07d357b0c1251f9c4f7492c9e5000000001c2485258e4a9f46a454427a1cdb84782846052b20554446e9b9b6d45be858bf97e390544b8e54d32db951f89f86bd455af5174c9edcd7bd4e5448cc3c2b7a5b07c20b369ba5effd8334a4b597daa76b65dece5249d08f5b66dd8c3cd9aab9fcffff5577502dc33d51ed2a25c3640cd073b7d51d12266c6079622281358c96043413eeb5938648ac8b3f8b4d38ef5331499b828a6579d5048ed27ea04e2e070f2ba16433bf79a7af308fa86e765081df9163e034dcb6505ea7890693156414a8b0d5fceb38ffe232dafc93ce08e1fbb2000000000025fb6d6cd068b59d26d3835002ec4c6700bba9e73ffe3ee7aad4834800000000000000000000d7ce5719e9a80531cc154ae62236435abb4981d2183d7b8fc26fac5484b1393d7e8d4dfb9bdcdf37c0d74e6e787888f71a28396f49a4b95f46d12ae1010c0e3185929e39dc3cee5ba6f6434199f686be319d4794efc589166434ddeda1feedd8539030f54fd0da371eec53b41fae2fd04bcac127c759", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r1 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r1}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200)) 08:48:43 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = open(0x0, 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f000000df80)) fstat(r0, &(0x7f000000dfc0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() statx(r0, &(0x7f000000e180)='./file0\x00', 0x1000, 0x80, &(0x7f000000e1c0)) r2 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r3 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r3}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r4, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = syz_open_dev$usbfs(0x0, 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200)) 08:48:43 executing program 3: bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) (async) r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x208301, 0x0) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async, rerun: 64) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0x18, &(0x7f00000001c0)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe2}, 0x90) (rerun: 64) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) (async) setuid(0x0) 08:48:43 executing program 3: bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x208301, 0x0) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0x18, &(0x7f00000001c0)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) setuid(0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) (async) openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x208301, 0x0) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0x18, &(0x7f00000001c0)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe2}, 0x90) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) (async) setuid(0x0) (async) 08:48:44 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = gettid() bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000100)={r1, 0x0, 0x25, 0x0, @val=@uprobe_multi={&(0x7f0000000640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000000)=[0x1, 0x100000000, 0x7, 0x1, 0x2, 0x7], &(0x7f0000000080)=[0x2], 0x1ff, 0x6, 0x0, r2}}, 0x40) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) setuid(0x0) [ 2334.472683][T18648] FAULT_INJECTION: forcing a failure. [ 2334.472683][T18648] name failslab, interval 1, probability 0, space 0, times 0 [ 2334.488332][T18648] CPU: 1 PID: 18648 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2334.498594][T18648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2334.508478][T18648] Call Trace: [ 2334.512038][T18648] [ 2334.514812][T18648] dump_stack_lvl+0x151/0x1b7 [ 2334.519326][T18648] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2334.523793][T18659] loop0: detected capacity change from 0 to 128 [ 2334.524787][T18648] ? avc_denied+0x1b0/0x1b0 [ 2334.524816][T18648] dump_stack+0x15/0x17 [ 2334.539200][T18648] should_fail+0x3c6/0x510 [ 2334.543541][T18648] __should_failslab+0xa4/0xe0 [ 2334.548135][T18648] ? vm_area_dup+0x26/0x230 [ 2334.552472][T18648] should_failslab+0x9/0x20 [ 2334.556812][T18648] slab_pre_alloc_hook+0x37/0xd0 [ 2334.561590][T18648] ? vm_area_dup+0x26/0x230 [ 2334.565925][T18648] kmem_cache_alloc+0x44/0x200 [ 2334.570526][T18648] vm_area_dup+0x26/0x230 [ 2334.574690][T18648] copy_mm+0x9a1/0x13e0 [ 2334.578825][T18648] ? copy_signal+0x610/0x610 [ 2334.583256][T18648] ? __init_rwsem+0xd6/0x1c0 [ 2334.591413][T18648] ? copy_signal+0x4e3/0x610 [ 2334.595841][T18648] copy_process+0x1149/0x3290 [ 2334.600351][T18648] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2334.605295][T18648] ? copy_clone_args_from_user+0x744/0x830 [ 2334.610935][T18648] kernel_clone+0x21e/0x9e0 [ 2334.615294][T18648] ? __delayed_free_task+0x20/0x20 [ 2334.620221][T18648] ? create_io_thread+0x1e0/0x1e0 [ 2334.625081][T18648] __x64_sys_clone3+0x376/0x3a0 [ 2334.629769][T18648] ? __ia32_sys_clone+0x290/0x290 [ 2334.634740][T18648] ? fput+0x1a/0x20 [ 2334.638376][T18648] ? debug_smp_processor_id+0x17/0x20 [ 2334.643581][T18648] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2334.649484][T18648] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2334.654950][T18648] do_syscall_64+0x3d/0xb0 [ 2334.659209][T18648] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2334.664932][T18648] RIP: 0033:0x7fe6f3145da9 [ 2334.669190][T18648] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2334.688714][T18648] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2334.696957][T18648] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2334.704769][T18648] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2334.712579][T18648] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 08:48:44 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) gettid() (async) r2 = gettid() bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000100)={r1, 0x0, 0x25, 0x0, @val=@uprobe_multi={&(0x7f0000000640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000000)=[0x1, 0x100000000, 0x7, 0x1, 0x2, 0x7], &(0x7f0000000080)=[0x2], 0x1ff, 0x6, 0x0, r2}}, 0x40) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) setuid(0x0) 08:48:44 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 69) 08:48:44 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = gettid() bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000100)={r1, 0x0, 0x25, 0x0, @val=@uprobe_multi={&(0x7f0000000640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000000)=[0x1, 0x100000000, 0x7, 0x1, 0x2, 0x7], &(0x7f0000000080)=[0x2], 0x1ff, 0x6, 0x0, r2}}, 0x40) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) setuid(0x0) [ 2334.720391][T18648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2334.728202][T18648] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2334.736017][T18648] [ 2334.741747][T18663] loop2: detected capacity change from 0 to 128 [ 2334.773541][T18668] FAULT_INJECTION: forcing a failure. [ 2334.773541][T18668] name failslab, interval 1, probability 0, space 0, times 0 [ 2334.786081][T18668] CPU: 1 PID: 18668 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2334.796302][T18668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2334.806196][T18668] Call Trace: [ 2334.809320][T18668] [ 2334.812098][T18668] dump_stack_lvl+0x151/0x1b7 [ 2334.816609][T18668] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2334.822253][T18668] dump_stack+0x15/0x17 [ 2334.826332][T18668] should_fail+0x3c6/0x510 [ 2334.830585][T18668] __should_failslab+0xa4/0xe0 [ 2334.835185][T18668] ? vm_area_dup+0x26/0x230 [ 2334.839627][T18668] should_failslab+0x9/0x20 [ 2334.843958][T18668] slab_pre_alloc_hook+0x37/0xd0 [ 2334.848994][T18668] ? vm_area_dup+0x26/0x230 [ 2334.853331][T18668] kmem_cache_alloc+0x44/0x200 [ 2334.857931][T18668] vm_area_dup+0x26/0x230 [ 2334.862099][T18668] copy_mm+0x9a1/0x13e0 [ 2334.866093][T18668] ? copy_signal+0x610/0x610 [ 2334.870518][T18668] ? __init_rwsem+0xd6/0x1c0 [ 2334.874943][T18668] ? copy_signal+0x4e3/0x610 [ 2334.879368][T18668] copy_process+0x1149/0x3290 [ 2334.883884][T18668] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2334.888928][T18668] ? copy_clone_args_from_user+0x744/0x830 [ 2334.894579][T18668] kernel_clone+0x21e/0x9e0 [ 2334.898899][T18668] ? __delayed_free_task+0x20/0x20 [ 2334.903846][T18668] ? create_io_thread+0x1e0/0x1e0 [ 2334.908706][T18668] __x64_sys_clone3+0x376/0x3a0 [ 2334.913391][T18668] ? __ia32_sys_clone+0x290/0x290 [ 2334.918255][T18668] ? fput+0x1a/0x20 [ 2334.921985][T18668] ? debug_smp_processor_id+0x17/0x20 [ 2334.927191][T18668] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2334.933221][T18668] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2334.938683][T18668] do_syscall_64+0x3d/0xb0 [ 2334.942935][T18668] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2334.948661][T18668] RIP: 0033:0x7fe6f3145da9 [ 2334.952914][T18668] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 08:48:44 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 70) 08:48:44 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000007000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffff00a5000000080000009500"/89], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='cq_schedule\x00', r1}, 0x10) r2 = signalfd4(r1, &(0x7f0000000000)={[0x5]}, 0x8, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='qgroup_num_dirty_extents\x00', r2}, 0x10) setuid(0x0) [ 2334.972357][T18668] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2334.980600][T18668] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2334.988410][T18668] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2334.996223][T18668] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2335.004035][T18668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2335.011849][T18668] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2335.019748][T18668] [ 2335.052614][T18673] FAULT_INJECTION: forcing a failure. [ 2335.052614][T18673] name failslab, interval 1, probability 0, space 0, times 0 [ 2335.076096][T18673] CPU: 0 PID: 18673 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2335.086357][T18673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2335.096257][T18673] Call Trace: [ 2335.099374][T18673] [ 2335.102146][T18673] dump_stack_lvl+0x151/0x1b7 [ 2335.106659][T18673] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2335.112146][T18673] dump_stack+0x15/0x17 [ 2335.116121][T18673] should_fail+0x3c6/0x510 [ 2335.120374][T18673] __should_failslab+0xa4/0xe0 [ 2335.124974][T18673] ? vm_area_dup+0x26/0x230 [ 2335.129314][T18673] should_failslab+0x9/0x20 [ 2335.133654][T18673] slab_pre_alloc_hook+0x37/0xd0 [ 2335.138442][T18673] ? vm_area_dup+0x26/0x230 [ 2335.142883][T18673] kmem_cache_alloc+0x44/0x200 [ 2335.147463][T18673] vm_area_dup+0x26/0x230 [ 2335.151620][T18673] copy_mm+0x9a1/0x13e0 [ 2335.155621][T18673] ? copy_signal+0x610/0x610 [ 2335.160132][T18673] ? __init_rwsem+0xd6/0x1c0 [ 2335.164825][T18673] ? copy_signal+0x4e3/0x610 [ 2335.169245][T18673] copy_process+0x1149/0x3290 [ 2335.173760][T18673] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2335.178810][T18673] ? copy_clone_args_from_user+0x744/0x830 [ 2335.184452][T18673] kernel_clone+0x21e/0x9e0 [ 2335.188792][T18673] ? __delayed_free_task+0x20/0x20 [ 2335.193750][T18673] ? create_io_thread+0x1e0/0x1e0 [ 2335.198615][T18673] __x64_sys_clone3+0x376/0x3a0 [ 2335.203286][T18673] ? __ia32_sys_clone+0x290/0x290 [ 2335.208244][T18673] ? fput+0x1a/0x20 [ 2335.211877][T18673] ? debug_smp_processor_id+0x17/0x20 [ 2335.217088][T18673] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2335.222978][T18673] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2335.228448][T18673] do_syscall_64+0x3d/0xb0 [ 2335.232705][T18673] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2335.238427][T18673] RIP: 0033:0x7fe6f3145da9 [ 2335.242692][T18673] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2335.262127][T18673] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2335.270380][T18673] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2335.278181][T18673] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2335.285996][T18673] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2335.293808][T18673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 08:48:44 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000007000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffff00a5000000080000009500"/89], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='cq_schedule\x00', r1}, 0x10) r2 = signalfd4(r1, &(0x7f0000000000)={[0x5]}, 0x8, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='qgroup_num_dirty_extents\x00', r2}, 0x10) setuid(0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000007000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffff00a5000000080000009500"/89], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='cq_schedule\x00', r1}, 0x10) (async) signalfd4(r1, &(0x7f0000000000)={[0x5]}, 0x8, 0x0) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='qgroup_num_dirty_extents\x00', r2}, 0x10) (async) setuid(0x0) (async) 08:48:44 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) r0 = syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = getpgrp(r0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000240)) (async) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000240)=0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000280)=0x0) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) (async) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) splice(r6, 0x0, r5, 0x0, 0x6, 0x0) writev(r5, &(0x7f0000000040)=[{&(0x7f0000000000)='5', 0xfdef}], 0x1) getsockopt$bt_BT_DEFER_SETUP(r4, 0x112, 0x7, &(0x7f0000000100)=0x1, &(0x7f0000000140)=0x4) writev(r5, &(0x7f00000013c0)=[{&(0x7f00000001c0)="f3", 0x1}], 0x1) dup3(r6, r5, 0x0) sendmsg$IPSET_CMD_CREATE(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)={0x14, 0x2, 0x6, 0x301}, 0x14}}, 0x0) (async) sendmsg$IPSET_CMD_CREATE(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)={0x14, 0x2, 0x6, 0x301}, 0x14}}, 0x0) syz_clone3(&(0x7f0000000300)={0x800100, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x2b}, &(0x7f0000000400)=""/143, 0x8f, &(0x7f0000000180)=""/135, &(0x7f00000002c0)=[r0, r1, r2, r3, r0, r0], 0x6, {r5}}, 0x58) (async) syz_clone3(&(0x7f0000000300)={0x800100, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x2b}, &(0x7f0000000400)=""/143, 0x8f, &(0x7f0000000180)=""/135, &(0x7f00000002c0)=[r0, r1, r2, r3, r0, r0], 0x6, {r5}}, 0x58) 08:48:44 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000007000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffff00a5000000080000009500"/89], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='cq_schedule\x00', r1}, 0x10) r2 = signalfd4(r1, &(0x7f0000000000)={[0x5]}, 0x8, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='qgroup_num_dirty_extents\x00', r2}, 0x10) (async) setuid(0x0) 08:48:44 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 71) [ 2335.301616][T18673] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2335.309431][T18673] [ 2335.343795][T18691] FAULT_INJECTION: forcing a failure. 08:48:44 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x2, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=@ipv6_newaddr={0x40, 0x14, 0x1, 0x0, 0x0, {0xa, 0x20, 0x0, 0x0, r3}, [@IFA_ADDRESS={0x14, 0x1, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x0, 0x9}}]}, 0x40}}, 0x0) r4 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000100)=0xffffffffffffffff, 0x4) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f0000000000)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x65, 0x0, 0x0, 0x0, 0x6e4b4555}, @generic={0xff, 0x3, 0x3, 0x0, 0x6}], &(0x7f0000000080)='GPL\x00', 0x56c5, 0x0, &(0x7f00000000c0), 0x40f00, 0x70, '\x00', r3, 0x0, r4, 0x8, &(0x7f0000000140)={0x1, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, &(0x7f0000000280)=[{0x3, 0x1, 0xd, 0x7}, {0x1, 0x1, 0xb, 0x3}, {0x4, 0x2, 0x0, 0x9}, {0x2, 0x1, 0x9, 0x4}, {0x0, 0x4, 0xdd}, {0x2, 0x2, 0x9, 0x6}, {0x2, 0x3, 0x3, 0x7}, {0x5, 0x4, 0xa}], 0x10, 0x20000}, 0x90) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r5}, 0x10) setuid(0x0) [ 2335.343795][T18691] name failslab, interval 1, probability 0, space 0, times 0 [ 2335.367270][T18691] CPU: 1 PID: 18691 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2335.373941][T18695] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2335.377526][T18691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2335.377545][T18691] Call Trace: [ 2335.377551][T18691] [ 2335.377558][T18691] dump_stack_lvl+0x151/0x1b7 [ 2335.377584][T18691] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2335.377604][T18691] dump_stack+0x15/0x17 [ 2335.377619][T18691] should_fail+0x3c6/0x510 [ 2335.377640][T18691] __should_failslab+0xa4/0xe0 [ 2335.377659][T18691] ? vm_area_dup+0x26/0x230 [ 2335.429596][T18691] should_failslab+0x9/0x20 [ 2335.433940][T18691] slab_pre_alloc_hook+0x37/0xd0 [ 2335.438705][T18691] ? vm_area_dup+0x26/0x230 [ 2335.443043][T18691] kmem_cache_alloc+0x44/0x200 [ 2335.447647][T18691] vm_area_dup+0x26/0x230 [ 2335.451811][T18691] copy_mm+0x9a1/0x13e0 [ 2335.455844][T18691] ? copy_signal+0x610/0x610 [ 2335.460318][T18691] ? __init_rwsem+0xd6/0x1c0 [ 2335.464915][T18691] ? copy_signal+0x4e3/0x610 [ 2335.469345][T18691] copy_process+0x1149/0x3290 [ 2335.473860][T18691] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2335.478804][T18691] ? copy_clone_args_from_user+0x744/0x830 [ 2335.484618][T18691] kernel_clone+0x21e/0x9e0 [ 2335.488959][T18691] ? __delayed_free_task+0x20/0x20 [ 2335.493905][T18691] ? create_io_thread+0x1e0/0x1e0 [ 2335.498769][T18691] __x64_sys_clone3+0x376/0x3a0 [ 2335.503451][T18691] ? __ia32_sys_clone+0x290/0x290 [ 2335.508313][T18691] ? fput+0x1a/0x20 [ 2335.511959][T18691] ? debug_smp_processor_id+0x17/0x20 [ 2335.517168][T18691] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2335.523068][T18691] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2335.528534][T18691] do_syscall_64+0x3d/0xb0 [ 2335.532788][T18691] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2335.538516][T18691] RIP: 0033:0x7fe6f3145da9 [ 2335.542771][T18691] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2335.562212][T18691] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2335.570456][T18691] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2335.578266][T18691] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2335.586266][T18691] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2335.594063][T18691] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 08:48:45 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 72) 08:48:45 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) r1 = socket$nl_route(0x10, 0x3, 0x0) (async) r2 = socket(0x10, 0x2, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async) sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=@ipv6_newaddr={0x40, 0x14, 0x1, 0x0, 0x0, {0xa, 0x20, 0x0, 0x0, r3}, [@IFA_ADDRESS={0x14, 0x1, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x0, 0x9}}]}, 0x40}}, 0x0) (async) r4 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000100)=0xffffffffffffffff, 0x4) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f0000000000)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x65, 0x0, 0x0, 0x0, 0x6e4b4555}, @generic={0xff, 0x3, 0x3, 0x0, 0x6}], &(0x7f0000000080)='GPL\x00', 0x56c5, 0x0, &(0x7f00000000c0), 0x40f00, 0x70, '\x00', r3, 0x0, r4, 0x8, &(0x7f0000000140)={0x1, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, &(0x7f0000000280)=[{0x3, 0x1, 0xd, 0x7}, {0x1, 0x1, 0xb, 0x3}, {0x4, 0x2, 0x0, 0x9}, {0x2, 0x1, 0x9, 0x4}, {0x0, 0x4, 0xdd}, {0x2, 0x2, 0x9, 0x6}, {0x2, 0x3, 0x3, 0x7}, {0x5, 0x4, 0xa}], 0x10, 0x20000}, 0x90) (async) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r5}, 0x10) (async) setuid(0x0) [ 2335.601875][T18691] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2335.609688][T18691] [ 2335.643141][T18699] FAULT_INJECTION: forcing a failure. [ 2335.643141][T18699] name failslab, interval 1, probability 0, space 0, times 0 [ 2335.657928][T18699] CPU: 0 PID: 18699 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2335.668081][T18699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2335.678057][T18699] Call Trace: [ 2335.681278][T18699] [ 2335.684054][T18699] dump_stack_lvl+0x151/0x1b7 [ 2335.688905][T18699] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2335.694296][T18699] dump_stack+0x15/0x17 [ 2335.698286][T18699] should_fail+0x3c6/0x510 [ 2335.702541][T18699] __should_failslab+0xa4/0xe0 [ 2335.707142][T18699] ? anon_vma_fork+0xf7/0x4e0 [ 2335.711679][T18699] should_failslab+0x9/0x20 [ 2335.715992][T18699] slab_pre_alloc_hook+0x37/0xd0 [ 2335.720778][T18699] ? anon_vma_fork+0xf7/0x4e0 [ 2335.725284][T18699] kmem_cache_alloc+0x44/0x200 [ 2335.729885][T18699] anon_vma_fork+0xf7/0x4e0 [ 2335.734225][T18699] ? anon_vma_name+0x43/0x70 [ 2335.738649][T18699] ? vm_area_dup+0x17a/0x230 [ 2335.743072][T18699] copy_mm+0xa3a/0x13e0 [ 2335.747070][T18699] ? copy_signal+0x610/0x610 [ 2335.751494][T18699] ? __init_rwsem+0xd6/0x1c0 [ 2335.755920][T18699] ? copy_signal+0x4e3/0x610 [ 2335.760346][T18699] copy_process+0x1149/0x3290 [ 2335.764861][T18699] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2335.769816][T18699] ? copy_clone_args_from_user+0x744/0x830 [ 2335.775448][T18699] kernel_clone+0x21e/0x9e0 [ 2335.779787][T18699] ? __delayed_free_task+0x20/0x20 [ 2335.784735][T18699] ? create_io_thread+0x1e0/0x1e0 [ 2335.789597][T18699] __x64_sys_clone3+0x376/0x3a0 [ 2335.794281][T18699] ? __ia32_sys_clone+0x290/0x290 [ 2335.799151][T18699] ? fput+0x1a/0x20 [ 2335.802792][T18699] ? debug_smp_processor_id+0x17/0x20 [ 2335.808094][T18699] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2335.813992][T18699] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2335.819454][T18699] do_syscall_64+0x3d/0xb0 [ 2335.823706][T18699] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2335.829432][T18699] RIP: 0033:0x7fe6f3145da9 [ 2335.833691][T18699] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 08:48:45 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = open(0x0, 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f000000df80)) fstat(r0, &(0x7f000000dfc0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() statx(r0, &(0x7f000000e180)='./file0\x00', 0x1000, 0x80, &(0x7f000000e1c0)) r2 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r3 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r3}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r4, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = syz_open_dev$usbfs(0x0, 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200)) 08:48:45 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 73) 08:48:45 executing program 2: syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f000000e040)={{{@in6=@local, @in6}}, {{@in=@private}, 0x0, @in6=@remote}}, &(0x7f000000e140)=0xe8) getgid() r0 = getegid() syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYRES8=r0, @ANYRESHEX=r0, @ANYRESOCT, @ANYBLOB="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", @ANYRES64], 0x0, 0x4f6, &(0x7f00000007c0)="$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") r1 = geteuid() mount$9p_xen(&(0x7f0000000240), &(0x7f00000002c0)='./bus\x00', &(0x7f0000000400), 0x0, &(0x7f0000000540)={'trans=xen,', {[{@privport}, {@noextend}, {@access_uid={'access', 0x3d, r1}}, {@afid={'afid', 0x3d, 0xafe5}}, {@noextend}, {@msize={'msize', 0x3d, 0xc8}}], [{@subj_user}, {@obj_role={'obj_role', 0x3d, '/dev/null\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x101301) ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200)) [ 2335.853141][T18699] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2335.861375][T18699] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2335.869184][T18699] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2335.876994][T18699] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2335.884809][T18699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2335.892617][T18699] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2335.900433][T18699] 08:48:45 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) r1 = socket$nl_route(0x10, 0x3, 0x0) (async) r2 = socket(0x10, 0x2, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=@ipv6_newaddr={0x40, 0x14, 0x1, 0x0, 0x0, {0xa, 0x20, 0x0, 0x0, r3}, [@IFA_ADDRESS={0x14, 0x1, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x0, 0x9}}]}, 0x40}}, 0x0) (async) r4 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000100)=0xffffffffffffffff, 0x4) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f0000000000)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x65, 0x0, 0x0, 0x0, 0x6e4b4555}, @generic={0xff, 0x3, 0x3, 0x0, 0x6}], &(0x7f0000000080)='GPL\x00', 0x56c5, 0x0, &(0x7f00000000c0), 0x40f00, 0x70, '\x00', r3, 0x0, r4, 0x8, &(0x7f0000000140)={0x1, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, &(0x7f0000000280)=[{0x3, 0x1, 0xd, 0x7}, {0x1, 0x1, 0xb, 0x3}, {0x4, 0x2, 0x0, 0x9}, {0x2, 0x1, 0x9, 0x4}, {0x0, 0x4, 0xdd}, {0x2, 0x2, 0x9, 0x6}, {0x2, 0x3, 0x3, 0x7}, {0x5, 0x4, 0xa}], 0x10, 0x20000}, 0x90) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r5}, 0x10) (async) setuid(0x0) 08:48:45 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000000), 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000b7080000000000007b8ae2efbec90000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb702000000000000182300000a9fb3ee83407e87fe14d41fe03f84215d828cbd92a1310e4380a05cd52c4681d842d0c13cf54e6fad59f63ce3", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) setuid(0x0) [ 2335.934687][T18708] FAULT_INJECTION: forcing a failure. [ 2335.934687][T18708] name failslab, interval 1, probability 0, space 0, times 0 [ 2335.960364][T18717] loop0: detected capacity change from 0 to 128 [ 2335.968212][T18714] loop2: detected capacity change from 0 to 128 08:48:45 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) r1 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000000), 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000b7080000000000007b8ae2efbec90000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb702000000000000182300000a9fb3ee83407e87fe14d41fe03f84215d828cbd92a1310e4380a05cd52c4681d842d0c13cf54e6fad59f63ce3", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) (async) setuid(0x0) 08:48:45 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000000), 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000b7080000000000007b8ae2efbec90000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb702000000000000182300000a9fb3ee83407e87fe14d41fe03f84215d828cbd92a1310e4380a05cd52c4681d842d0c13cf54e6fad59f63ce3", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) setuid(0x0) 08:48:45 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1b, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYRESDEC=r1], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) r3 = dup(r2) r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f00000003c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x78, 0x78, 0x5, [@volatile={0x9, 0x0, 0x0, 0x9, 0x2}, @union={0x7, 0x4, 0x0, 0x5, 0x1, 0xfffff801, [{0x0, 0x4, 0x8001}, {0x7, 0x4, 0x7fff}, {0x10, 0x2, 0x3}, {0xa, 0x3}]}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x1, 0x3, 0x7}}, @volatile={0x0, 0x0, 0x0, 0x9, 0x1}, @fwd={0x9}]}, {0x0, [0x2e, 0x61, 0x30]}}, &(0x7f00000002c0)=""/51, 0x95, 0x33, 0x0, 0x8}, 0x20) r5 = openat$incfs(0xffffffffffffffff, &(0x7f0000000640)='.log\x00', 0x1c241, 0xd0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000740)=@bpf_ext={0x1c, 0xd, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x2}, [@jmp={0x5, 0x0, 0x9, 0x3, 0x71464aaf469311fe, 0x20, 0x1}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8000}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}]}, &(0x7f0000000000)='GPL\x00', 0x5, 0xf6, &(0x7f00000001c0)=""/246, 0x0, 0x28, '\x00', 0x0, 0x0, r4, 0x8, &(0x7f0000000580)={0x7, 0x4}, 0x8, 0x10, &(0x7f00000005c0)={0x5, 0x10, 0x4, 0x1bfae023}, 0x10, 0x2790, r2, 0x5, &(0x7f0000000680)=[r0, r5, r1], &(0x7f00000006c0)=[{0x3, 0x3, 0xb, 0x2}, {0x0, 0x2, 0x1, 0x8}, {0x0, 0x5, 0xb, 0x5}, {0x5, 0x1, 0x6, 0x1}, {0x0, 0x4, 0x8, 0xc}], 0x10, 0x7b6e}, 0x90) setuid(0x0) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000a40)={r3, 0x20, &(0x7f0000000a00)={&(0x7f0000000940)=""/5, 0x5, 0x0, &(0x7f0000000980)=""/127, 0x7f}}, 0x10) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000b00)={{r0, 0xffffffffffffffff}, &(0x7f0000000a80), &(0x7f0000000ac0)='%-5lx \x00'}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0xc, 0x14, &(0x7f0000000800)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x8}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [@map_idx={0x18, 0x5, 0x5, 0x0, 0x10}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @exit, @generic={0xa0, 0x9, 0x4, 0x7, 0x8}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f00000008c0)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0xb, r3, 0x8, &(0x7f0000000900)={0x9, 0x3}, 0x8, 0x10, 0x0, 0x0, r6, r5, 0x5, &(0x7f0000000b40)=[r5, r1, r1, r0, r7, 0x1, r1], &(0x7f0000000b80)=[{0x1, 0x1, 0xc, 0x5}, {0x5, 0x3, 0x5, 0xb}, {0x3, 0x2, 0x879, 0xb}, {0x0, 0x4, 0x7, 0xc}, {0x5, 0x2, 0x9}], 0x10, 0x9}, 0x90) [ 2335.976596][T18708] CPU: 0 PID: 18708 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2335.986761][T18708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2335.997176][T18708] Call Trace: [ 2336.000289][T18708] [ 2336.003065][T18708] dump_stack_lvl+0x151/0x1b7 [ 2336.007582][T18708] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2336.013062][T18708] dump_stack+0x15/0x17 [ 2336.017040][T18708] should_fail+0x3c6/0x510 [ 2336.021301][T18708] __should_failslab+0xa4/0xe0 [ 2336.025897][T18708] ? anon_vma_fork+0x1df/0x4e0 [ 2336.030493][T18708] should_failslab+0x9/0x20 [ 2336.034831][T18708] slab_pre_alloc_hook+0x37/0xd0 [ 2336.039605][T18708] ? anon_vma_fork+0x1df/0x4e0 [ 2336.044207][T18708] kmem_cache_alloc+0x44/0x200 [ 2336.048808][T18708] anon_vma_fork+0x1df/0x4e0 [ 2336.053237][T18708] copy_mm+0xa3a/0x13e0 [ 2336.057229][T18708] ? copy_signal+0x610/0x610 [ 2336.061663][T18708] ? __init_rwsem+0xd6/0x1c0 [ 2336.066077][T18708] ? copy_signal+0x4e3/0x610 [ 2336.070507][T18708] copy_process+0x1149/0x3290 [ 2336.075019][T18708] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2336.079965][T18708] ? copy_clone_args_from_user+0x744/0x830 [ 2336.085613][T18708] kernel_clone+0x21e/0x9e0 [ 2336.089952][T18708] ? __delayed_free_task+0x20/0x20 [ 2336.094893][T18708] ? create_io_thread+0x1e0/0x1e0 [ 2336.099756][T18708] __x64_sys_clone3+0x376/0x3a0 [ 2336.104439][T18708] ? __ia32_sys_clone+0x290/0x290 [ 2336.109305][T18708] ? fput+0x1a/0x20 [ 2336.112945][T18708] ? debug_smp_processor_id+0x17/0x20 [ 2336.118161][T18708] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2336.124061][T18708] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2336.129524][T18708] do_syscall_64+0x3d/0xb0 [ 2336.133773][T18708] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2336.139501][T18708] RIP: 0033:0x7fe6f3145da9 [ 2336.143757][T18708] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2336.163215][T18708] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2336.171526][T18708] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 08:48:45 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) r0 = syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = getpgrp(r0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000240)=0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000280)=0x0) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) splice(r6, 0x0, r5, 0x0, 0x6, 0x0) writev(r5, &(0x7f0000000040)=[{&(0x7f0000000000)='5', 0xfdef}], 0x1) getsockopt$bt_BT_DEFER_SETUP(r4, 0x112, 0x7, &(0x7f0000000100)=0x1, &(0x7f0000000140)=0x4) writev(r5, &(0x7f00000013c0)=[{&(0x7f00000001c0)="f3", 0x1}], 0x1) dup3(r6, r5, 0x0) sendmsg$IPSET_CMD_CREATE(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)={0x14, 0x2, 0x6, 0x301}, 0x14}}, 0x0) syz_clone3(&(0x7f0000000300)={0x800100, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x2b}, &(0x7f0000000400)=""/143, 0x8f, &(0x7f0000000180)=""/135, &(0x7f00000002c0)=[r0, r1, r2, r3, r0, r0], 0x6, {r5}}, 0x58) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) (async) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (async) getpgrp(r0) (async) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000240)) (async) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000280)) (async) pipe2(&(0x7f0000000080), 0x0) (async) socket$nl_netfilter(0x10, 0x3, 0xc) (async) splice(r6, 0x0, r5, 0x0, 0x6, 0x0) (async) writev(r5, &(0x7f0000000040)=[{&(0x7f0000000000)='5', 0xfdef}], 0x1) (async) getsockopt$bt_BT_DEFER_SETUP(r4, 0x112, 0x7, &(0x7f0000000100)=0x1, &(0x7f0000000140)=0x4) (async) writev(r5, &(0x7f00000013c0)=[{&(0x7f00000001c0)="f3", 0x1}], 0x1) (async) dup3(r6, r5, 0x0) (async) sendmsg$IPSET_CMD_CREATE(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)={0x14, 0x2, 0x6, 0x301}, 0x14}}, 0x0) (async) syz_clone3(&(0x7f0000000300)={0x800100, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x2b}, &(0x7f0000000400)=""/143, 0x8f, &(0x7f0000000180)=""/135, &(0x7f00000002c0)=[r0, r1, r2, r3, r0, r0], 0x6, {r5}}, 0x58) (async) 08:48:45 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 74) 08:48:45 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1b, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYRESDEC=r1], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) r3 = dup(r2) r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f00000003c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x78, 0x78, 0x5, [@volatile={0x9, 0x0, 0x0, 0x9, 0x2}, @union={0x7, 0x4, 0x0, 0x5, 0x1, 0xfffff801, [{0x0, 0x4, 0x8001}, {0x7, 0x4, 0x7fff}, {0x10, 0x2, 0x3}, {0xa, 0x3}]}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x1, 0x3, 0x7}}, @volatile={0x0, 0x0, 0x0, 0x9, 0x1}, @fwd={0x9}]}, {0x0, [0x2e, 0x61, 0x30]}}, &(0x7f00000002c0)=""/51, 0x95, 0x33, 0x0, 0x8}, 0x20) (async) r5 = openat$incfs(0xffffffffffffffff, &(0x7f0000000640)='.log\x00', 0x1c241, 0xd0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000740)=@bpf_ext={0x1c, 0xd, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x2}, [@jmp={0x5, 0x0, 0x9, 0x3, 0x71464aaf469311fe, 0x20, 0x1}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8000}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}]}, &(0x7f0000000000)='GPL\x00', 0x5, 0xf6, &(0x7f00000001c0)=""/246, 0x0, 0x28, '\x00', 0x0, 0x0, r4, 0x8, &(0x7f0000000580)={0x7, 0x4}, 0x8, 0x10, &(0x7f00000005c0)={0x5, 0x10, 0x4, 0x1bfae023}, 0x10, 0x2790, r2, 0x5, &(0x7f0000000680)=[r0, r5, r1], &(0x7f00000006c0)=[{0x3, 0x3, 0xb, 0x2}, {0x0, 0x2, 0x1, 0x8}, {0x0, 0x5, 0xb, 0x5}, {0x5, 0x1, 0x6, 0x1}, {0x0, 0x4, 0x8, 0xc}], 0x10, 0x7b6e}, 0x90) (async) setuid(0x0) (async) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000a40)={r3, 0x20, &(0x7f0000000a00)={&(0x7f0000000940)=""/5, 0x5, 0x0, &(0x7f0000000980)=""/127, 0x7f}}, 0x10) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000b00)={{r0, 0xffffffffffffffff}, &(0x7f0000000a80), &(0x7f0000000ac0)='%-5lx \x00'}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0xc, 0x14, &(0x7f0000000800)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x8}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [@map_idx={0x18, 0x5, 0x5, 0x0, 0x10}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @exit, @generic={0xa0, 0x9, 0x4, 0x7, 0x8}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f00000008c0)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0xb, r3, 0x8, &(0x7f0000000900)={0x9, 0x3}, 0x8, 0x10, 0x0, 0x0, r6, r5, 0x5, &(0x7f0000000b40)=[r5, r1, r1, r0, r7, 0x1, r1], &(0x7f0000000b80)=[{0x1, 0x1, 0xc, 0x5}, {0x5, 0x3, 0x5, 0xb}, {0x3, 0x2, 0x879, 0xb}, {0x0, 0x4, 0x7, 0xc}, {0x5, 0x2, 0x9}], 0x10, 0x9}, 0x90) [ 2336.179336][T18708] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2336.187149][T18708] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2336.194959][T18708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2336.202770][T18708] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2336.210587][T18708] 08:48:45 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1b, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYRESDEC=r1], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10) (async) r3 = dup(r2) (async) r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f00000003c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x78, 0x78, 0x5, [@volatile={0x9, 0x0, 0x0, 0x9, 0x2}, @union={0x7, 0x4, 0x0, 0x5, 0x1, 0xfffff801, [{0x0, 0x4, 0x8001}, {0x7, 0x4, 0x7fff}, {0x10, 0x2, 0x3}, {0xa, 0x3}]}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x1, 0x3, 0x7}}, @volatile={0x0, 0x0, 0x0, 0x9, 0x1}, @fwd={0x9}]}, {0x0, [0x2e, 0x61, 0x30]}}, &(0x7f00000002c0)=""/51, 0x95, 0x33, 0x0, 0x8}, 0x20) (async) r5 = openat$incfs(0xffffffffffffffff, &(0x7f0000000640)='.log\x00', 0x1c241, 0xd0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000740)=@bpf_ext={0x1c, 0xd, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x2}, [@jmp={0x5, 0x0, 0x9, 0x3, 0x71464aaf469311fe, 0x20, 0x1}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8000}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}]}, &(0x7f0000000000)='GPL\x00', 0x5, 0xf6, &(0x7f00000001c0)=""/246, 0x0, 0x28, '\x00', 0x0, 0x0, r4, 0x8, &(0x7f0000000580)={0x7, 0x4}, 0x8, 0x10, &(0x7f00000005c0)={0x5, 0x10, 0x4, 0x1bfae023}, 0x10, 0x2790, r2, 0x5, &(0x7f0000000680)=[r0, r5, r1], &(0x7f00000006c0)=[{0x3, 0x3, 0xb, 0x2}, {0x0, 0x2, 0x1, 0x8}, {0x0, 0x5, 0xb, 0x5}, {0x5, 0x1, 0x6, 0x1}, {0x0, 0x4, 0x8, 0xc}], 0x10, 0x7b6e}, 0x90) (async) setuid(0x0) (async) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000a40)={r3, 0x20, &(0x7f0000000a00)={&(0x7f0000000940)=""/5, 0x5, 0x0, &(0x7f0000000980)=""/127, 0x7f}}, 0x10) (async) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000b00)={{r0, 0xffffffffffffffff}, &(0x7f0000000a80), &(0x7f0000000ac0)='%-5lx \x00'}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0xc, 0x14, &(0x7f0000000800)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x8}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [@map_idx={0x18, 0x5, 0x5, 0x0, 0x10}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @exit, @generic={0xa0, 0x9, 0x4, 0x7, 0x8}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f00000008c0)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0xb, r3, 0x8, &(0x7f0000000900)={0x9, 0x3}, 0x8, 0x10, 0x0, 0x0, r6, r5, 0x5, &(0x7f0000000b40)=[r5, r1, r1, r0, r7, 0x1, r1], &(0x7f0000000b80)=[{0x1, 0x1, 0xc, 0x5}, {0x5, 0x3, 0x5, 0xb}, {0x3, 0x2, 0x879, 0xb}, {0x0, 0x4, 0x7, 0xc}, {0x5, 0x2, 0x9}], 0x10, 0x9}, 0x90) [ 2336.263771][T18736] FAULT_INJECTION: forcing a failure. [ 2336.263771][T18736] name failslab, interval 1, probability 0, space 0, times 0 [ 2336.281033][T18736] CPU: 0 PID: 18736 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2336.291198][T18736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2336.301092][T18736] Call Trace: [ 2336.304209][T18736] [ 2336.306984][T18736] dump_stack_lvl+0x151/0x1b7 [ 2336.311507][T18736] ? io_uring_drop_tctx_refs+0x190/0x190 [ 2336.316966][T18736] ? avc_denied+0x1b0/0x1b0 [ 2336.321309][T18736] dump_stack+0x15/0x17 [ 2336.325302][T18736] should_fail+0x3c6/0x510 [ 2336.329558][T18736] __should_failslab+0xa4/0xe0 [ 2336.334155][T18736] ? vm_area_dup+0x26/0x230 [ 2336.338492][T18736] should_failslab+0x9/0x20 [ 2336.342830][T18736] slab_pre_alloc_hook+0x37/0xd0 [ 2336.347600][T18736] ? vm_area_dup+0x26/0x230 [ 2336.351941][T18736] kmem_cache_alloc+0x44/0x200 [ 2336.356545][T18736] vm_area_dup+0x26/0x230 [ 2336.360710][T18736] copy_mm+0x9a1/0x13e0 [ 2336.364813][T18736] ? copy_signal+0x610/0x610 [ 2336.369229][T18736] ? __init_rwsem+0xd6/0x1c0 [ 2336.373660][T18736] ? copy_signal+0x4e3/0x610 [ 2336.378081][T18736] copy_process+0x1149/0x3290 [ 2336.382597][T18736] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2336.387541][T18736] ? copy_clone_args_from_user+0x744/0x830 [ 2336.393198][T18736] kernel_clone+0x21e/0x9e0 [ 2336.397525][T18736] ? __delayed_free_task+0x20/0x20 [ 2336.402486][T18736] ? create_io_thread+0x1e0/0x1e0 [ 2336.407332][T18736] __x64_sys_clone3+0x376/0x3a0 08:48:45 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) r0 = open(&(0x7f0000000100)='./file0\x00', 0x101000, 0x0) openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0) r1 = accept4(r0, &(0x7f0000000400)=@rc={0x1f, @fixed}, &(0x7f0000000200)=0x80, 0x0) write$P9_RREADDIR(r0, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], 0x122) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000180)={@remote, 0x0}, &(0x7f00000001c0)=0x14) r3 = syz_btf_id_by_name$bpf_lsm(&(0x7f0000000240)='bpf_lsm_path_unlink\x00') r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000003000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x10) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x8, 0x663, 0xe0, 0xae70, 0x1118, 0xffffffffffffffff, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5, 0x4}, 0x48) r6 = openat$incfs(0xffffffffffffffff, &(0x7f0000000300)='.pending_reads\x00', 0x210000, 0x30) r7 = creat(&(0x7f0000000300)='./file0\x00', 0x0) fallocate(r7, 0x0, 0x0, 0x4103fe) fcntl$setlease(r1, 0x400, 0x1) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4) r9 = openat(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', 0x400020, 0x180) r10 = socket$vsock_stream(0x28, 0x1, 0x0) dup3(r7, r10, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x10, 0x1e, &(0x7f0000000000)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x7}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6cb}}, @btf_id={0x18, 0xb, 0x3, 0x0, 0x4}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x1b, &(0x7f0000000140)=""/27, 0x0, 0x1, '\x00', r2, 0x18, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x2, 0x5}, 0x8, 0x10, 0x0, 0x0, r3, r4, 0x5, &(0x7f00000003c0)=[r5, r6, 0x1, r7, r8, r9], &(0x7f0000000400)=[{0x3, 0x2, 0xd, 0x2}, {0x1, 0x3, 0xc, 0x9}, {0x0, 0x3, 0xa, 0x7}, {0x0, 0x3, 0x8, 0x5}, {0x4, 0x3, 0xe, 0xb}], 0x10, 0x80000000}, 0x90) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 2336.412021][T18736] ? __ia32_sys_clone+0x290/0x290 [ 2336.416879][T18736] ? fput+0x1a/0x20 [ 2336.420523][T18736] ? debug_smp_processor_id+0x17/0x20 [ 2336.425736][T18736] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2336.431636][T18736] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2336.437102][T18736] do_syscall_64+0x3d/0xb0 [ 2336.441365][T18736] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2336.447089][T18736] RIP: 0033:0x7fe6f3145da9 [ 2336.451342][T18736] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2336.470784][T18736] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2336.479027][T18736] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2336.486838][T18736] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2336.494742][T18736] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2336.502550][T18736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 08:48:46 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ff07000000000000000000182300008874e5c933db9631b100"/116, @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) setuid(0x0) 08:48:46 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ff07000000000000000000182300008874e5c933db9631b100"/116, @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) setuid(0x0) (async) setuid(0x0) 08:48:46 executing program 4: syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 75) 08:48:46 executing program 1: bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) r0 = open(&(0x7f0000000100)='./file0\x00', 0x101000, 0x0) openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0) accept4(r0, &(0x7f0000000400)=@rc={0x1f, @fixed}, &(0x7f0000000200)=0x80, 0x0) (async) r1 = accept4(r0, &(0x7f0000000400)=@rc={0x1f, @fixed}, &(0x7f0000000200)=0x80, 0x0) write$P9_RREADDIR(r0, &(0x7f0000000540)=ANY=[@ANYBLOB="22012000290200d6f1b404400000000001000000000000ff00000000000000005307002e2f66696c23075d80bd2ccdba43dc5165302001b40000020000000000000008000000004000008007002e2f66696c653008040000006e53fabf0000000004000000000000000107002e2f66696c65302104000054c26719000000000007000000005ac325430706002f66696c65302004000000080000000000000020000003100000000707022e2f66696c65300281050000040000000000000000000100000006000000000000003f07002e696c13c3653004010900000000000000000000a5080000000000000b07002e2f66690000140003000087f03fd7e677b7bad7cc00070000000000000003000000000000000207002e2f66696c653087e0cc788107b7f231654e6dde3778657b2bcc5749679afe76a75a1a3a157272c6be9c6e4fc9ea28b1173c0011137accd9cd5c9126c48de33a1058ddc295300283081f81da52b56a69a3345455d7ac6782b98b3470ee3a5125252e16c5fa8ccc8775ac54dc0475c0fe0db9429afe1f463d708f307042c95ba396fa318530fed04e701785c77993837e40bfd2fc11ef021a674d06aff9edea3ed035c63da0a069111ea33d028a778b2dbaccb35207a7f5e2c6986d5d6755baf1e347ef8d4df2228a2124492c590d0b86e07def91f9554a787ec6c780ba39bea3be351075d45e021a75cdf81de75d171305f730eaf9885def99ff6ac7182b0000000000000080ba6c2b1f0929f9281dcd62953e92122ebad0131ca47e5f7a8d6465d103df66969b012539d62eb3694d736e39663bda778c4a6adadcd2a3fdc7b915d8c05b89277e95b3589aab05000000000002000000a8ea628e52095599959b40fd5693bd23aeba4b5d0400b24bf615c9f5aebe18d7cc179ede259a1a1a3ae50718f19ddb656273c62a6f15cc9fee8e9c73db42a2a21770fe1a10b1115242e5e7416b20000000ef55b4537c1a3403b3f6e84b1c2eb735e11c680805f8c6f82ec385f9c35acd3257a0be9128a0587076f2bade40664d548846669d23d5009bf2540ace81630000000000000000000100000000818a6ac8f8e4f99fc42995592c448cb2d254efbed304e5ec7d765c41669f800684fc4ccd21d6825c12bc1c858c16ed578056a114478ef9af9a58519f9909006603ea76179fff0af0000002137107dece31781a63af67c7d31dadc29197d5f3890a9d849ce8708debe4c55a2b1205d0aee53d59931f5ba109e94189b5b2d3e199d5f844756f8747ed19d6945a76be8fe44eba8fadef30e2bc4473a99a85bd410932b3b68ce94f8bfdffcd0cae37042991e62063a4db81f848b32d2eb5f8e91637f56a79285911e645d4a266571a693114395730f852787de0d1e3f76fc4f9ef88e2be103af74967a9e4d6c3c4ae50e28922702a5493a30e5ba3cdb1763927c7336b016c2d2242d20672577acbd431f983a47d37f10f6bf9e073de28aad93f275ad77114c37e36412971e98e59d1ec35e627e31b22a01f23a9869c560b5c619977334c142d443f7025b4b2aaa142c2ad56fa969438c8e54d0db2a876177cd2e5ae9d961f250a28f6f1fa8a78a2f9261f1136778c1a2d22b382dd361acffa11abcadffd0a3da8da7c8077d43f4084267f885832c8d6d39e4347e64188ec25da2b7cb25088a8f71adb61de2bc81bc16a92ec9d6a9f344744934c3596aae72957f90a5dd96f5ae47ed114d95188266a843021727aabc32694a66dc10e8212c1d7cddb4d7e65003d76877c29eeb35cf7ded08a9f33c057f5f16b052fcc0d45b1b52d530621016c19466f4c7ce917168326dc24063efafea668c0d4af9309021b36a8e0fca0482f25ecd78a8d521b66da42e7ce33796a1eb18f54ecd5bb93c4ed01f65b77b5ee6a8133d775b79f0324c80000000000000000000000000000000b034008f960b8c913bb23d0d33f0f278aff0b16bc717140ef410095db313be8e20e8a55c12ae35a7de91569d5c3c1a90a51ed5f2df8fd1d50e3ce15a97df4bbc469105c12ef65c8ea8f4db2b0708547451373bf52441066ef8e0d1f909a05aed903848c9529e7bdcc5e52d0a5f0ca919b12f2a3be71f525c8a6ae36623c6c166bd91ddc4773ec9188af4110099fceea8afec2d5a381b1e8402ad72bed4472c078fdf76cebefbace5f434177cf906e1f04a057312b17691cd6711c615e43f894771d4cb62d9b23c757da818fddf93bbbcc2058d80f1e4681b841023b6bec2431038b3ffa27aea3b71d3a56a4f00a516d0bef3a4a044ff1a415b5525d529a8e65b89018b1cfd3ae2e1d405dcc74a32081abfcd33cf6eaa52823e3084b6eb8d7697c0ad8dc6e91b5cbf574e0ec484c34c1b89869d68de77f3240fe4cfa239f1299bd0c5b620ed6bb13de93be9e7c58511afb266aa13e62ac3065ddc78a7037040770f4279983d77c03de44b1f79766603fccb334a820b42fb33ab3de776788a0bdaabcf4e833000000"], 0x122) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000180)={@remote, 0x0}, &(0x7f00000001c0)=0x14) r3 = syz_btf_id_by_name$bpf_lsm(&(0x7f0000000240)='bpf_lsm_path_unlink\x00') bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000003000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000003000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x10) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x8, 0x663, 0xe0, 0xae70, 0x1118, 0xffffffffffffffff, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5, 0x4}, 0x48) r6 = openat$incfs(0xffffffffffffffff, &(0x7f0000000300)='.pending_reads\x00', 0x210000, 0x30) creat(&(0x7f0000000300)='./file0\x00', 0x0) (async) r7 = creat(&(0x7f0000000300)='./file0\x00', 0x0) fallocate(r7, 0x0, 0x0, 0x4103fe) fcntl$setlease(r1, 0x400, 0x1) (async) fcntl$setlease(r1, 0x400, 0x1) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4) r9 = openat(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', 0x400020, 0x180) r10 = socket$vsock_stream(0x28, 0x1, 0x0) dup3(r7, r10, 0x0) (async) dup3(r7, r10, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x10, 0x1e, &(0x7f0000000000)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x7}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6cb}}, @btf_id={0x18, 0xb, 0x3, 0x0, 0x4}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x1b, &(0x7f0000000140)=""/27, 0x0, 0x1, '\x00', r2, 0x18, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x2, 0x5}, 0x8, 0x10, 0x0, 0x0, r3, r4, 0x5, &(0x7f00000003c0)=[r5, r6, 0x1, r7, r8, r9], &(0x7f0000000400)=[{0x3, 0x2, 0xd, 0x2}, {0x1, 0x3, 0xc, 0x9}, {0x0, 0x3, 0xa, 0x7}, {0x0, 0x3, 0x8, 0x5}, {0x4, 0x3, 0xe, 0xb}], 0x10, 0x80000000}, 0x90) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (async) syz_clone3(&(0x7f0000009140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:48:46 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ff07000000000000000000182300008874e5c933db9631b100"/116, @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) setuid(0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) (async) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ff07000000000000000000182300008874e5c933db9631b100"/116, @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) (async) setuid(0x0) (async) [ 2336.510365][T18736] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2336.518175][T18736] [ 2336.572271][T18772] general protection fault, probably for non-canonical address 0xe1700d7d20000001: 0000 [#1] PREEMPT SMP KASAN [ 2336.583900][T18772] KASAN: maybe wild-memory-access in range [0x0b808be900000008-0x0b808be90000000f] [ 2336.593015][T18772] CPU: 1 PID: 18772 Comm: syz-executor.4 Not tainted 5.15.148-syzkaller-00718-g993bed180178 #0 [ 2336.603171][T18772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 2336.613074][T18772] RIP: 0010:__rb_insert_augmented+0x91/0x610 [ 2336.618871][T18772] Code: 00 74 08 4c 89 ef e8 5e 0b 2b ff 49 8b 45 00 a8 01 0f 85 60 05 00 00 48 89 5d a0 48 89 45 c0 48 8d 58 08 49 89 de 49 c1 ee 03 <43> 80 3c 26 00 74 08 48 89 df e8 30 0b 2b ff 48 89 d8 48 8b 1b 4c [ 2336.638311][T18772] RSP: 0018:ffffc90000ba7858 EFLAGS: 00010202 [ 2336.644214][T18772] RAX: 0b808be900000000 RBX: 0b808be900000008 RCX: dffffc0000000000 [ 2336.652458][T18772] RDX: ffffffff81a50880 RSI: ffff8881091f3208 RDI: ffff88812d9cb058 [ 2336.660274][T18772] RBP: ffffc90000ba78c0 R08: dffffc0000000000 R09: ffff88812d9cb060 [ 2336.668080][T18772] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 2336.675979][T18772] R13: ffff88810b8ec994 R14: 0170117d20000001 R15: ffff88811a7cd620 [ 2336.683804][T18772] FS: 00007fe6f1ec76c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 2336.692559][T18772] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2336.699083][T18772] CR2: 0000000000000000 CR3: 0000000116f00000 CR4: 00000000003506a0 [ 2336.706900][T18772] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2336.714704][T18772] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2336.722513][T18772] Call Trace: [ 2336.725637][T18772] [ 2336.728414][T18772] ? __die_body+0x62/0xb0 [ 2336.732585][T18772] ? die_addr+0x9f/0xd0 [ 2336.736570][T18772] ? exc_general_protection+0x311/0x4b0 [ 2336.741956][T18772] ? asm_exc_general_protection+0x27/0x30 [ 2336.747509][T18772] ? anon_vma_interval_tree_iter_next+0x390/0x390 [ 2336.753766][T18772] ? __rb_insert_augmented+0x91/0x610 [ 2336.758970][T18772] ? anon_vma_interval_tree_iter_next+0x390/0x390 [ 2336.765216][T18772] vma_interval_tree_insert_after+0x2be/0x2d0 [ 2336.771119][T18772] copy_mm+0xba2/0x13e0 [ 2336.775110][T18772] ? copy_signal+0x610/0x610 [ 2336.779708][T18772] ? __init_rwsem+0xd6/0x1c0 [ 2336.784132][T18772] ? copy_signal+0x4e3/0x610 [ 2336.788561][T18772] copy_process+0x1149/0x3290 [ 2336.793076][T18772] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 2336.798022][T18772] ? copy_clone_args_from_user+0x744/0x830 [ 2336.803671][T18772] kernel_clone+0x21e/0x9e0 [ 2336.808004][T18772] ? __delayed_free_task+0x20/0x20 [ 2336.812951][T18772] ? create_io_thread+0x1e0/0x1e0 [ 2336.817810][T18772] __x64_sys_clone3+0x376/0x3a0 [ 2336.822495][T18772] ? __ia32_sys_clone+0x290/0x290 [ 2336.827364][T18772] ? fput+0x1a/0x20 [ 2336.831003][T18772] ? debug_smp_processor_id+0x17/0x20 [ 2336.836208][T18772] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 2336.842112][T18772] ? exit_to_user_mode_prepare+0x39/0xa0 [ 2336.847578][T18772] do_syscall_64+0x3d/0xb0 [ 2336.851832][T18772] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 2336.857561][T18772] RIP: 0033:0x7fe6f3145da9 [ 2336.861816][T18772] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 2336.881363][T18772] RSP: 002b:00007fe6f1ec6f98 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 2336.889587][T18772] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe6f3145da9 [ 2336.897399][T18772] RDX: 00007fe6f1ec6fb0 RSI: 0000000000000058 RDI: 00007fe6f1ec6fb0 [ 2336.905210][T18772] RBP: 00007fe6f1ec7120 R08: 0000000000000000 R09: 0000000000000058 [ 2336.913020][T18772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2336.920918][T18772] R13: 000000000000000b R14: 00007fe6f3273f80 R15: 00007fffeccde358 [ 2336.928735][T18772] [ 2336.931592][T18772] Modules linked in: [ 2336.936094][T18772] ---[ end trace 65b5e40865961777 ]--- [ 2336.944725][T18772] RIP: 0010:__rb_insert_augmented+0x91/0x610 [ 2336.952077][T18772] Code: 00 74 08 4c 89 ef e8 5e 0b 2b ff 49 8b 45 00 a8 01 0f 85 60 05 00 00 48 89 5d a0 48 89 45 c0 48 8d 58 08 49 89 de 49 c1 ee 03 <43> 80 3c 26 00 74 08 48 89 df e8 30 0b 2b ff 48 89 d8 48 8b 1b 4c [ 2336.971824][T18772] RSP: 0018:ffffc90000ba7858 EFLAGS: 00010202 [ 2336.978045][T18772] RAX: 0b808be900000000 RBX: 0b808be900000008 RCX: dffffc0000000000 [ 2336.985911][T18772] RDX: ffffffff81a50880 RSI: ffff8881091f3208 RDI: ffff88812d9cb058 [ 2336.994061][T18772] RBP: ffffc90000ba78c0 R08: dffffc0000000000 R09: ffff88812d9cb060 [ 2337.001940][T18772] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 2337.009766][T18772] R13: ffff88810b8ec994 R14: 0170117d20000001 R15: ffff88811a7cd620 [ 2337.017555][T18772] FS: 00007fe6f1ec76c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 2337.026284][T18772] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2337.032743][T18772] CR2: 0000000000000000 CR3: 0000000116f00000 CR4: 00000000003506a0 [ 2337.040579][T18772] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2337.048317][T18772] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2337.056105][T18772] Kernel panic - not syncing: Fatal exception [ 2337.062173][T18772] Kernel Offset: disabled [ 2337.066300][T18772] Rebooting in 86400 seconds..