last executing test programs:

33m41.941607867s ago: executing program 32 (id=41):
r0 = socket$packet(0x11, 0x2, 0x300)
getpgrp(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
write$cgroup_pid(0xffffffffffffffff, &(0x7f00000003c0), 0xffffffa0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4040}, 0x840)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf83, 0x3}, 0x1c)

33m35.6872469s ago: executing program 33 (id=45):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000200)=0x1000000000005)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$igmp6(0xa, 0x3, 0x2)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r3}, &(0x7f0000bbdffc)=<r4=>0x0)
timer_settime(r4, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r5, 0x0, r6, 0x0, 0x1, 0x0)

33m25.188038395s ago: executing program 34 (id=54):
syz_genetlink_get_family_id$netlbl_mgmt(0x0, 0xffffffffffffffff)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x6, 0x1, 0x7, 0x7fffffff}]})
prctl$PR_SET_MM_MAP(0x23, 0xe, 0x0, 0x0)
io_uring_setup(0x7, 0x0)
socket$inet(0x2, 0x2, 0x1)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x8}, 0x18)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0x7fffffffff, 0x1}, 0x0, 0x0, 0x0, 0x0)

33m9.217329505s ago: executing program 35 (id=64):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xa00008, &(0x7f0000000140)={[{@debug}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@noblock_validity}]}, 0x1, 0x7ad, &(0x7f00000007c0)="$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")
r0 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x800001000088}, 0x0)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x5, &(0x7f0000000040)=0x29)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x80000, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
fcntl$setstatus(r5, 0x4, 0x40800)
connect$inet(r5, &(0x7f0000000080)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000040)='sit0\x00', 0x10)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r6, 0x2000009)
sendfile(r5, r6, 0x0, 0x7ffff004)

32m57.041957509s ago: executing program 36 (id=77):
socket$inet6(0xa, 0x802, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sendmsg$key(r0, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x2, 0x2, 0x0, 0x2, 0xc, 0x0, 0x0, 0x0, [@sadb_key={0x2, 0x8, 0x8, 0x0, "fd"}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0xa0000000}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xff}}}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @empty}}]}, 0x60}, 0x1, 0x7}, 0x0)

30m25.151003851s ago: executing program 37 (id=164):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x11, 0x4, &(0x7f00000001c0)=@framed={{0x18, 0x2, 0x0, 0x0, 0x40}, [@func={0x85, 0x0, 0x1, 0x0, 0x5}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x48)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000003900)=[{&(0x7f0000000500)=ANY=[@ANYBLOB="2c0000001e000907000000000000000007"], 0x2c}], 0x1}, 0x40000)

30m8.45675046s ago: executing program 38 (id=181):
socket$inet6_sctp(0xa, 0x5, 0x84)
syz_usb_connect(0x5, 0x2d, &(0x7f0000000140)={{0x12, 0x1, 0x201, 0x24, 0xc4, 0xf0, 0x20, 0x7c4, 0xa109, 0xbaa6, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0xc, 0x0, 0xbf, [{{0x9, 0x4, 0xa5, 0x2, 0x0, 0x2e, 0x55, 0xbe, 0x0, [@uac_control={{0xa, 0x24, 0x1, 0x9, 0x1}}]}}]}}]}}, &(0x7f00000001c0)={0x0, 0x0, 0x5, &(0x7f0000000180)={0x5, 0xf, 0x5}, 0x2, [{0x0, &(0x7f0000000480)=ANY=[]}, {0x0, &(0x7f00000002c0)=ANY=[]}]})
futex_waitv(0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f0000000140), 0x3, 0x0, 0x0, &(0x7f0000000000)=0x200, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/bus/input/devices\x00', 0x0, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_io_uring_setup(0x892, &(0x7f0000000140)={0x0, 0xaee2, 0x20000, 0x0, 0x27}, &(0x7f0000000200)=<r5=>0x0, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock2(&(0x7f0000658000/0x4000)=nil, 0x4000, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
fsopen(&(0x7f0000000240)='afs\x00', 0x0)
syz_open_dev$amidi(&(0x7f00000006c0), 0x3e0, 0x123e81)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="640000000206030004000000000000000000000005000100070000000900020073797a30000000001400078005001500040000000800124000000000050005000a000000050004000000000015000300686173683a69702c706f72742c6e6574"], 0x64}}, 0x10000)
fchmodat(0xffffffffffffff9c, 0x0, 0x166)
socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$video4linux(0x0, 0xffff, 0x161742)
sendmsg$IPSET_CMD_FLUSH(r6, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x2c, 0x4, 0x6, 0x5, 0x0, 0x0, {0x2, 0x0, 0x1}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000)
syz_io_uring_submit(r5, 0x0, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x85c3}})
sendmsg$IPSET_CMD_DESTROY(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="280000000306"], 0x28}, 0x1, 0x0, 0x0, 0x4044001}, 0x20000004)
ioctl$KDGKBMETA(r1, 0x4b62, &(0x7f0000000100))
read$FUSE(r0, &(0x7f0000001280)={0x2020}, 0x2020)

30m5.168401725s ago: executing program 39 (id=183):
socket$inet6_mptcp(0xa, 0x1, 0x106)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f00000001c0)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
sched_setscheduler(r1, 0x2, &(0x7f0000000080)=0x9)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000180)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @any, 0x0, 0x1}, 0xe)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000040)={0x44, 0x2, 0x6, 0x3, 0x0, 0x0, {0xd}, [@IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x44}}, 0x0)
sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, 0x7, 0x6, 0x801, 0x0, 0x0, {0x5, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24000840}, 0x4800)
sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x0, 0x400c800)
removexattr(0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x2042, 0x0)
ioctl$AUTOFS_IOC_FAIL(r5, 0x4c80, 0xfffff)

28m18.320323326s ago: executing program 40 (id=267):
pipe(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x4, &(0x7f0000000100)=0xfffe, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f0000000240)="3d4077e50823a7746c0ee30dd0afdfb5ff2a258d495dc9d2c2a2", 0x1a}], 0x1, 0x0)
recvmmsg(r3, &(0x7f0000001440)=[{{&(0x7f0000000280)=@un=@abs, 0x0, &(0x7f0000001400)=[{&(0x7f0000001480)=""/1}, {&(0x7f0000000300)=""/102}, {&(0x7f0000000380)=""/4096}, {&(0x7f0000001380)=""/111}]}}], 0x700, 0x40002002, 0x0)
write$binfmt_misc(r2, &(0x7f0000000040), 0xffc1)
setsockopt$sock_int(r3, 0x1, 0x10, &(0x7f0000000180)=0x55b7, 0x4)
splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)

28m11.000445153s ago: executing program 41 (id=277):
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='ns\x00')
utimensat(r0, &(0x7f0000000040)='./mnt\x00', 0x0, 0x0)

28m5.309706303s ago: executing program 42 (id=285):
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff})
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x4ffe4, 0x0)

27m30.278696135s ago: executing program 43 (id=310):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1008413, &(0x7f0000000700)={[{@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0xa280}}, {@barrier}]}, 0x40, 0x52b, &(0x7f0000019100)="$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")
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
getsockopt$sock_int(0xffffffffffffffff, 0x1, 0x6, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
syz_clone3(0x0, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r2, &(0x7f0000000280)={0x2, 0x0, @remote}, 0x10)
r3 = getpgrp(0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000040)=0x5)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r5 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r5, 0x1, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r7, 0x2000000, 0xd, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b9", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000002100), 0x280449c, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}})
write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000740)=ANY=[@ANYBLOB="2a0000000600000000000000000000000100000000020000000000000020000001"], 0x2a)

27m22.616183314s ago: executing program 44 (id=318):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000180)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(md5)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000c00)=[{{&(0x7f0000000200)=@sco={0x1f, @fixed}, 0x80, 0x0}, 0x8}], 0x1, 0x10001, 0x0)
r4 = io_uring_setup(0x3eae, &(0x7f0000000080)={0x0, 0x6d33, 0x1000, 0x0, 0x4000000})
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)

27m12.88802888s ago: executing program 45 (id=335):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x1210090, &(0x7f0000001800), 0x1, 0x59e, &(0x7f0000001840)="$eJzs3U9oHGUbAPBnZrNN/+T70g8+QaWHokKF0k3SP1o9tVexUOhB8KJhsw0lm2zJJtqEgOm9iD2ISi/1pgePigcP4sWjVy+KZ6HYoND0oCuTnU3TdFM3McmW7O8Hs/u+M7P7vO/MPm92hplsAD3raPaQRjwTEReTiME1y/oiX3i0ud7y0kL5/tJCOYlG49JvSSQRcW9podxaP8mfD0XEYkQ8HRHfFSOOp6tvua9VqM/NT4xWq5XpvD40M3l1qD43f+LK5Oh4ZbwyderlV86cPX1m5OTI2ubeb6ytFTfX1xs/33z/xg+v3b75+RdHFssfjiZxLgbyZWv7sZ2a26QY59bNP70Twboo6XYD2JJCnudZKj0Vg1HIs76dxtrBoX9XmgfsoEZ/RGPVmiLQAxJJDz2q9T0gO/5tTbv5/ePO+eYBSBZ3eWmh/F604vc1z03E/pVjk4O/Jw8dmWTHm4d3s6HsSYvXI2K4r+/Rz3+Sf/62bng7GsiO+vZ8c0c9uv/T1fEn2ow/A61zp/9Sa/xbzse/5TbxCxuMfxc7jPHnm798smH86/3xbNv4yWr8pE38NCLe7jD+rTe+PrvRssanEceiffyW5PHnh4cuX6lWhpuPbWN8c+zIqxv3P+LgBvGb52z3rzRkbf/35W1KO+z/V99/+dziY+K/+Pzj93+77X8gIj7oMP7/7n32+kbL7lxP7mbfAja7/5Moxu0O47907uhPedFZQwAAAAAAAAAA2EbpyrVsSVpaLadpqdS8h/f/cTCt1uozxy/XZqfGmte8HY5i2rrSarBZT7L6SH49bqt+cl39VCEPWDiwUi+Va9WxLvcdAAAAAAAAAAAAAAAAAAAAnhSH1t3//0dh5f7/9T9XDexVG//kN7DXyX/oXQ/nf9K1dgC7z99/6FkN+Q+9S/5D75L/0LvkP/Qu+Q+9S/5D79pc/hd3rB0AAAAAAAAAAAAAAAAAAAAAAAAAALDHXLxwIZsa95cWyll9rG9udqL2zomxSn2iNDlbLpVr01dL47XaeLVSKtcm/+n9klrt6nBMzV4bmqnUZ4bqc/NvTdZmp1q/KVrxz0MBAAAAAAAAAAAAAAAAAADgUQMrU5KWIorNepqWShH/iYjDSSSXr1QrwxHx34j4sVDsz+oj3W40AAAAAAAAAAAAAAAAAAAA7DH1ufmJ0Wq1Mr1zhb481A6G6LzQt5mVI2Jxe5uRveOmX1XMN2CXN93eKBSejM/hk1/o4qAEAAAAAAAAAAAAAAAAAAA96sFNv52+4q+dbRAAAAAAAAAAAAAAAAAAAAD0pPTXJCKy6djgCwPrl+5LlgsrzxHx7q1LH10bnZmZHsnm312dP/NxPv9kN9oPdKqVp2lEZHkMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPFCfm58YrVYr01ss9HewTrf7CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALAVfwcAAP//0zPOVg==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0)
pwrite64(r0, &(0x7f0000000100)="c6", 0x1, 0x8000)
write$P9_RCREATE(r0, &(0x7f0000000040)={0x18, 0x73, 0x2, {{0x40, 0x2, 0x8}, 0x9}}, 0x18)

27m5.31369832s ago: executing program 46 (id=347):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r0, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00')
unlinkat(r0, &(0x7f0000000000)='./file1\x00', 0x0)
open(&(0x7f0000000040)='./bus\x00', 0x64842, 0x0)

27m1.342414077s ago: executing program 47 (id=356):
r0 = syz_usb_connect(0x0, 0x48, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000022546940fa0ae803d0990102030109023600010000000009047500038cbb2a0009050a001000010000090588"], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f00000008c0)={0x24, &(0x7f0000000340)={0x0, 0xd}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

26m51.178774159s ago: executing program 48 (id=365):
r0 = socket$netlink(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_SAVE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x28, 0x8, 0x6, 0x5, 0x0, 0x0, {0xa}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x24004090}, 0x0)

26m28.062203876s ago: executing program 49 (id=376):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="01000000040000"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x100}, 0x18)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="38000000031401002cbd7000fcdbdf250900020073797a32000000000800410073697700140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x810)

26m22.572473242s ago: executing program 50 (id=394):
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r0, 0x29, 0xd0, 0x0, 0x0)

26m19.519755225s ago: executing program 51 (id=407):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_usb_connect(0x2, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="120100004106cd40cd062a011bd50000000109022400010000800009040bfd023377610009050702000481400609058703"], 0x0)
socket$kcm(0x29, 0x2, 0x0)

26m14.90624236s ago: executing program 52 (id=416):
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, 0x0)
write$FUSE_NOTIFY_RESEND(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
getsockname$packet(r1, &(0x7f0000000600)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r2, @ANYBLOB="f5ff0f00252155b21c0012000c000100626f6e64000000000c0002000800010001"], 0x3c}}, 0x40000)
r3 = socket(0x10, 0x803, 0x0)
r4 = socket(0x10, 0x803, 0x2)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r4)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="3c0000001000010400ee", @ANYRES32=r6, @ANYRES16=r5], 0x3c}, 0x1, 0x0, 0x0, 0x40020c1}, 0x0)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$sock_inet6_SIOCSIFADDR(r7, 0x8916, &(0x7f0000000180)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x2d, r6})
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3c00000010000305000000000007000000000000", @ANYRES32=0x0, @ANYBLOB="0000000006100000140012800b00010062726964676500000400028008000a00", @ANYRES32=r2], 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x440b0)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4004)

24m31.462463114s ago: executing program 53 (id=506):
syz_mount_image$ext4(&(0x7f0000000480)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x8400, &(0x7f00000000c0), 0xfc, 0x574, &(0x7f0000000e40)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)
fsetxattr(r0, &(0x7f0000000000)=@known='security.selinux\x00', &(0x7f0000000080)='@\x00', 0x7c8, 0x0)

23m14.704629008s ago: executing program 54 (id=666):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000740)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0xf0, 0x0, 0x0}, 0x400}], 0x0, 0x0, 0x0})

22m47.158572639s ago: executing program 55 (id=733):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
socket(0x10, 0x3, 0x0)
socket$pppoe(0x18, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xb, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0xfffffffc}, [@printk={@llu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3ff}}]}, &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
io_uring_setup(0xaaf, &(0x7f0000000100)={0x0, 0x1692, 0x1000, 0x3, 0x3e3})
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x13, 0x2})
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYRES8=r0], 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='L', 0x1, 0x7ffffffe)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r1, &(0x7f0000000000), 0xd)

22m46.170489425s ago: executing program 56 (id=737):
syz_clone3(&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000240)=[0x0], 0x1}, 0x58)

22m16.5869963s ago: executing program 57 (id=789):
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(0xffffffffffffffff, 0x80489439, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000000280)={0xa, 0x4e22, 0x9, @loopback, 0x6}, 0x1c)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000080)=0x40, 0x4)
connect$inet6(r3, &(0x7f0000000140)={0xa, 0x4e22, 0x23, @loopback, 0x23}, 0x1c)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0)
syz_clone(0xa4384211, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0xe8344400, 0x0, 0x0, 0x0, 0x0, 0x0)

20m44.326872605s ago: executing program 58 (id=929):
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
getpid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000400)=@framed={{}, [@printk={@llx, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x2d}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r2, &(0x7f0000000100), 0x10)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]})
close_range(r3, 0xffffffffffffffff, 0x0)

20m29.297705647s ago: executing program 59 (id=928):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_mreq(r1, 0x0, 0x23, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7f, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r6}, 0x18)
sendmsg$can_bcm(0xffffffffffffffff, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getsockopt$bt_BT_RCVMTU(r0, 0x11, 0xd, 0x0, 0x0)

19m45.689195899s ago: executing program 60 (id=984):
r0 = io_uring_setup(0x10aa, &(0x7f00000000c0)={0x0, 0x861e, 0x40, 0x0, 0x40})
r1 = syz_io_uring_setup(0x31c1, &(0x7f00000001c0)={0x0, 0x3fea, 0x20, 0x4, 0x0, 0x0, r0}, &(0x7f0000000040), 0x0)
syz_io_uring_setup(0x756d, &(0x7f0000000840)={0x0, 0xb8da, 0x186a, 0x0, 0xffffffff, 0x0, r1}, 0x0, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x41341)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb4e02000)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)

19m11.496946742s ago: executing program 61 (id=1044):
r0 = syz_open_dev$evdev(&(0x7f0000000580), 0x1, 0x8800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r1 = getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
socket$nl_xfrm(0x10, 0x3, 0x6)
ptrace$poke(0x4, r1, 0x0, 0x7)
connect$unix(r2, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000009c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x810, &(0x7f00000018c0)=ANY=[], 0xfd, 0x1501, &(0x7f00000002c0)="$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")
ioctl$UFFDIO_ZEROPAGE(0xffffffffffffffff, 0xc020aa04, &(0x7f0000000000)={{&(0x7f0000ffc000/0x1000)=nil, 0x1000}, 0x1})
r7 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4(r7, 0x0, 0x40000000, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
ioctl$EVIOCGSW(r0, 0x8040451b, 0xfffffffffffffffe)

19m5.161308107s ago: executing program 62 (id=1051):
init_module(&(0x7f0000000b00)=ANY=[], 0x78, 0x0)

18m58.559973001s ago: executing program 63 (id=1060):
syz_io_uring_setup(0x132a, &(0x7f0000000000)={0x0, 0x5042, 0x40, 0x1, 0x3df}, 0x0, 0x0)
syz_open_dev$I2C(&(0x7f0000000040), 0x0, 0x80)
socket$nl_generic(0x10, 0x3, 0x10)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$netlink(0x10, 0x3, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="540000001000010400000000000000ffff000000", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e00140002800800010008000000060002000100000008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n'], 0x54}, 0x1, 0x0, 0x0, 0x40814}, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

18m40.756736559s ago: executing program 64 (id=1071):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100), 0x1, 0x522, &(0x7f00000006c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r1 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
read$FUSE(r1, &(0x7f0000000480)={0x2020, 0x0, 0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
fchown(r0, r2, r3)
lchown(&(0x7f0000000080)='./file0\x00', 0x0, r3)

18m31.065883255s ago: executing program 65 (id=1083):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000400)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='attr/exec\x00')
writev(r2, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000080)='=', 0x1}], 0x2)

18m26.186461279s ago: executing program 66 (id=1091):
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x0, @void}, 0x10)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xc)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000700)={0x1, 0x0, [{0x11000, 0x0, 0x0}]})
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000002c0)={0x1, r1})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
syz_mount_image$iso9660(&(0x7f0000000500), &(0x7f0000000040)='./file1\x00', 0x0, &(0x7f0000000000)=ANY=[], 0x1, 0x610, &(0x7f0000001140)="$eJzs3V1vHFcdx/Hf+AE/IIUKUBWFND1NiuRIqbO7bhytejWdPWsP2d1ZzYwr+4YqataV5U0jpSBh3zS+oIAAccEr4JYbLrhHiBsk3ktBXAFSxaJ5stfrfXDjp1B9P6t2zp45c87/zIzmZLzzIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIMerlUplRw2/tbFpRvNqYdAcM7+o7+6xyZh2JSf5T/Pzup5lXf/u0ezXk//d1s3s203NJ5N57X/z9dfe+87MVLH8mIAuyoJ01Oyne/u7j7vdzvNRpacuK6yrsWYfKQr8prtmjR8Fprq6Wrq/Xo9M3W/YaCuKbdN4oXXjIDRL3l1TrlZXjF3eCjZaazW3YYvMh+9USqVV89PFbHu37v9gOfLW/UbDb62lZZLZSZmHyY74yI9NbN2mMds73c7KqOAO8u2UFCr35R/bgoWkUGVSdyulSqVcrlTKqw+qDx6WSjMnMkoDdKLEley0eIWc5+EbOJOpfPxXQ75a2tCmzNCPp5pCBWqOmJ8rxv/v37ejmvznXjY9HP+LUf76UZkbSsf/W9m3W6PG/xGxfOXPXFJ9nv5vr9c7xTLXvpfFtqd97eqxuuqqo+fnFVHf57UzLl84/8iM1mTVkq9IgXw15aY5Js8xqmpVqyrpQ62rrkhGdflqyCrSliLFsuke5SmUlatfKlAooyV5uiujsqqqakVGVsvaUqANtbSmmty0lm3tpOt9ZVz/i0Ll0xSq9Gf/5XihCeP/AuM/Jus7FH559gM4cAa9YvwHAAAAAABfW0761/fk/H9Wb6Sput+wpasOCwAAAAAAnKP0l/+byWQ2Sb0h5xTn/71vXU5wAAAAAADgXDjpPXaOpEW9maWKO6FG/hFg6nJDBAAAAAAAZ5T+/n8rmaTPXntTzuTzf+UXCwAAAAAAgP8PPx/1jP0/p7mOo6g95/zpHwrDWeegvfm289RNZrhPp7PlpgdrjOs3nGt5JelkdSb/5tmbTv70y8OHYH6RT7b74nCGPevXGQjgh0UNQwL4TZEcCEC/0lvZjLeeZNMnxZyslcW637DLXtB4ryzXTeLYjH/8yc5PlHb/F63mTF7xR8+6c0ctHjzNH6B44jmK6cpwNGRl6Efp8xbSey6GPt14Nr0RI2930dH2TrdT6t8A+WUYJ67GGL0B9LluZ2Vu50/aXzze//mkzfJy2vtrU7Ed6H0SRbbc287Tg2SJCT0fFcWdrMydpTvZ5CiKZK2mUVTGRrFTLVZ9tgpeal2MjuJwXayMj6LbWUm3yEG2F7xEFABwVbYnjELOyYE/P7wtDFY15ii3PelNPoOj+6R/XrzIvyWtzBezPtdSlli6kR5YZxZ08oheOjyiJx0YckTPxti0npca3X5/4h1Io8bYpN1fH7ZbTtv9XRK3RrYbNSqO5rKVWPwI8/jjzsedTyqVldXSu6XSg4pm027kk7j+2z8w9gAABkx+x87EEs676Vl1MnP4WfW3Dy8pWNZHeqaunuheerdBesXB/PSQWhf7LkO4N+GsdbHvDS/3Rp7V/avnSH9/J+93R5UxZY/X67xYuYQtAQDA5bndNw7rJcf/e4Pn3TdGjc/JWD7+7Lh/LAcAABfDhl84i/HPnDD02x+Wq9WyG69bEwbeIxP6tTVr/FZsQ2/dba1Z0w6DOPCCRpL4wK/ZyEQb7XYQxqYehKYdRP5m+uZ3k7/6PbJNtxX7XtRuWDeyxgtasevFpuZHnmlvvN/wo3UbpgtHbev5dd9zYz9omelgI/TssjGRtX0F/ZptxTt1P0m2TDv0m264ZT4IGhtNa2o28kK/HQdZhUVbfqsehM202uWrXtkAALwiPt3b333c7XaeX2DiqvsIAACO+wqj9NylBAQAAAAAAAAAAAAAAAAAAAAAAE443Z18X/bO4UbAOQ3kPLvImw6HJ/7411N1ee7SA7u6xL97mVclnr393c8k5Tm9z9S/20zpb+8nu+2FtT49ZNYLSVnOf3qvxPo5deIbe/u7C6deqnFNOsq56iMTgIv2vwAAAP//bdlHnA==")
setxattr$trusted_overlay_upper(0x0, &(0x7f0000000140), &(0x7f0000001400)=ANY=[], 0x835, 0x0)

18m19.493259386s ago: executing program 67 (id=1099):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mlock(&(0x7f00001b5000/0x400000)=nil, 0x400000)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="190000000400000008000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)
preadv(0xffffffffffffffff, 0x0, 0x0, 0xa3, 0xd)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f00000002c0)='blkio.throttle.write_iops_device\x00', 0x2, 0x0)
sendfile(r5, r5, &(0x7f0000000100)=0x1, 0x9)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001a00)={&(0x7f0000001840)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x5, [@enum64={0x2, 0x0, 0x0, 0x13, 0x1, 0x8}]}, {0x0, [0x30, 0x5f, 0x20]}}, 0x0, 0x29, 0x0, 0x1}, 0x28)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000240)={'wg1\x00', 0x1812})
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f00000005c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x3d0, 0x0, 0x0, 0xffffff6a, 0x0, 0x0, 0x340, 0x258, 0x258, 0x340, 0x258, 0x3, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00', @local, [], [], 'wg2\x00', 'macvlan1\x00', {}, {}, 0x11}, 0x0, 0xd8, 0x140, 0x0, {}, [@common=@inet=@l2tp={{0x30}, {0x0, 0x0, 0x0, 0x0, 0x9}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz1\x00'}}}, {{@uncond, 0x0, 0x180, 0x1c0, 0x0, {}, [@common=@srh1={{0x90}, {0x0, 0x0, 0x0, 0x0, 0x0, @mcast2, @empty, @private2}}, @common=@dst={{0x48}}]}, @common=@inet=@TCPOPTSTRIP={0x40}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x430)

18m15.722015916s ago: executing program 68 (id=1109):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x40800, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
setresuid(0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000001600)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe50}, 0x48)
r3 = socket$inet6(0xa, 0x80001, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x40305829, &(0x7f0000000000)={0x17c04, 0xffffffffffffffff, 0x0, 0xc73f, 0x81, 0x1})
setsockopt$inet6_MCAST_JOIN_GROUP(r3, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88)
r4 = socket$can_raw(0x1d, 0x3, 0x1)
gettid()
timer_settime(0x0, 0x0, 0x0, 0x0)
read(r4, &(0x7f00000027c0)=""/4073, 0xfe9)

18m7.386259573s ago: executing program 69 (id=1118):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16ac646d06929c22, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYRES32], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r1 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRES8], 0x0)
syz_usb_disconnect(r1)

17m49.593547668s ago: executing program 70 (id=1126):
r0 = openat(0xffffffffffffff9c, 0x0, 0x40042, 0x0)
syz_fuse_handle_req(r0, 0x0, 0x0, &(0x7f0000000400)={&(0x7f00000002c0)={0x50, 0xffffffffffffff8c, 0x0, {0x7, 0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffbfff, 0x1, 0x1}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r4}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000810018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10)
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, &(0x7f0000000640)='./file1\x00', 0x2)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000240), 0x3af4701e)

17m42.328581546s ago: executing program 71 (id=1141):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'macsec0\x00', <r1=>0x0})
r2 = gettid()
syz_clone(0x42164000, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000058000000030a0102000000000000000001000000090003803d2175fbe782c2002c00048008000240172af2e40800014000000003080002401c791e7108000240423930ce08000140000000030900010073797a300000000088000000060a010400000000000000000100000008000b40000000001400048010000180"], 0x122}}, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="3c00000010000304f9ffbffffedbdf", @ANYRES32=r1, @ANYRES32=r2], 0x3c}, 0x1, 0x0, 0x0, 0x4802}, 0x42850)

17m31.845356403s ago: executing program 72 (id=1152):
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff})
close(r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
close(r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r2, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)={0x2c, r4, 0x1, 0x0, 0x0, {0x23}, [@ETHTOOL_A_PAUSE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}]}]}, 0x2c}}, 0x0)

17m31.688574709s ago: executing program 73 (id=1135):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="09000000040000"], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x44, 0x86}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r4}, 0x10)
r5 = socket(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r6)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r7, @ANYBLOB="01000000010000001c0012000c00010062726964"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x48, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x8, 0x527}}]}}]}, 0x48}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)=@newtfilter={0x5c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x19f}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_IPSET={0x10, 0x1, 0x0, 0x0, {{0x1, 0x8, 0x7}, {0x2, 0x6, 0x4}}}]}]}]}}, @TCA_CHAIN={0x8, 0xb, 0x6}]}, 0x5c}}, 0x0)

16m50.355346444s ago: executing program 74 (id=1212):
socket$nl_route(0x10, 0x3, 0x0)
creat(&(0x7f00000002c0)='./file0\x00', 0x12)
socket$kcm(0x2, 0x3, 0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
socket$kcm(0x11, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
socket$inet6(0xa, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000a80))
socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x14, 0x2})
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYRES32, @ANYRES16=0x0, @ANYRES8=r0], 0x1c}, 0x1, 0x0, 0x0, 0x20000844}, 0x48885)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='L', 0x1, 0x7ffffffe)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r1, &(0x7f0000000000), 0xd)

16m44.619265469s ago: executing program 8 (id=1221):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x0, 0x0}, &(0x7f0000000100)=0x10)
setsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000040), 0x4)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000180)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x989, 0x0, 0x10}, 0x9c)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000240)={0x1, 0x80, 0x3, 0xf, 0x6, 0xff, 0x28, 0xd5, 0xb, 0xd, 0xf8, 0x5, 0x5, 0x9}, 0xe)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000000)={0x0, 0x0, 0x20}, 0xc)
sendmmsg$inet6(r0, &(0x7f0000003f00)=[{{0x0, 0xf, &(0x7f0000000300)=[{&(0x7f0000000140)="a2", 0x1a058}], 0x1}}], 0x1, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000640)="627819d151", 0x5}], 0x1)

16m44.433591536s ago: executing program 8 (id=1222):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_ABSBIT(r0, 0x40045567, 0x0)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3)
write$uinput_user_dev(r0, &(0x7f0000002440)={'syz1\x00', {}, 0x31, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x400000, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fc], [0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0xffffffff, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x8, 0x7fffffff], [0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x1ff, 0x10, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, 0xff, 0xffffff48, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0xffffffff, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x6, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0xfffffffe, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x9, 0xfffffffe, 0x0, 0x0, 0x0, 0x6, 0x0, 0xfffffffe, 0x0, 0x2]}, 0x45c)
ioctl$UI_DEV_CREATE(r0, 0x5501)
write$uinput_user_dev(r0, &(0x7f0000000080)={'syz1\x00', {0x1, 0xe, 0x5, 0xe4fa}, 0x2, [0x2, 0x9, 0x3, 0x7, 0x7, 0x8, 0x0, 0x5, 0x3, 0x3, 0x101, 0x70, 0x81, 0x7, 0x6, 0x3, 0xe, 0x875, 0x6, 0x6, 0x3, 0x6, 0xb, 0x7, 0x4, 0x7ff, 0xa0, 0x80000000, 0x0, 0xfffffffc, 0xea16, 0x7, 0x11fe, 0x2, 0x642, 0x7, 0x1, 0xbe, 0x31, 0x407c1912, 0x18000000, 0x6, 0xedb1, 0x7, 0x7, 0x1, 0xd7e, 0xffffff36, 0x3, 0x7fffffff, 0xa, 0xffffffff, 0x92, 0xb7, 0x6, 0x7fffffff, 0x9, 0x2, 0x6, 0x3, 0x10000, 0x6, 0x7, 0xf19], [0x27, 0x0, 0x6, 0x9, 0x7, 0x2e6bbd38, 0x1, 0x0, 0x4, 0x7, 0x2, 0x8, 0xf22, 0x7230, 0x9, 0x0, 0xa8b, 0x36, 0x101, 0xa, 0x400, 0x8000, 0x8, 0xffff, 0xe, 0x3, 0x1000, 0xfffffd23, 0x4e, 0x5, 0x10001, 0x1, 0x7, 0x8, 0x5, 0x6808, 0x5, 0x5, 0x58ffede2, 0xdef, 0x7, 0x5, 0x1, 0x3, 0x18, 0xa9, 0x60c2, 0x0, 0xd5, 0xee6, 0x1, 0x5, 0x80000000, 0x0, 0x0, 0xf, 0x2, 0x80003e, 0xc436, 0x0, 0x5, 0xdd, 0x4, 0x100], [0x5, 0x8, 0x5, 0x0, 0x9, 0x2, 0x7, 0x6, 0x4, 0x0, 0xffffffff, 0xff, 0xfffffffc, 0xfd, 0xa373, 0xf7, 0x9, 0x6, 0x1, 0x8, 0x9, 0x3, 0x2, 0x4, 0x4e, 0x8000, 0x46, 0x4, 0x4, 0x0, 0x64, 0x80000000, 0x5, 0xa48, 0x5, 0x200, 0x4, 0xfffffffd, 0x7fff, 0x3, 0x2, 0xb, 0x9, 0xffffffff, 0x0, 0x2, 0x2e, 0x1000, 0x3, 0xec35, 0x0, 0x2e81, 0x0, 0x5, 0x4, 0x9, 0x81, 0xee7, 0x6, 0x7, 0x5, 0x9, 0x3, 0x8], [0x1ff, 0x2, 0x5, 0x8, 0x6, 0x5, 0xe00000, 0x800, 0xc1, 0x6, 0x4, 0x1, 0x5, 0x9, 0x9b, 0x6, 0xfffff801, 0xfffffff6, 0x4, 0xfffff49d, 0x4, 0x0, 0x100, 0x3, 0x9, 0x2, 0x5db8, 0x0, 0x6, 0xe, 0x2, 0x6, 0x5, 0x9, 0x5, 0x2f4, 0x9, 0x4, 0xffff0000, 0x7, 0x1, 0xdc7a, 0xe8, 0x8, 0x42000, 0x9, 0x2, 0xb, 0x1, 0xa, 0x6, 0x0, 0x6, 0x6, 0x80000001, 0x1, 0x9, 0x34, 0x6, 0xfffffffe, 0x6, 0xae, 0x1, 0x9]}, 0x45c)

16m44.154575614s ago: executing program 8 (id=1223):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x27f}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000500000000040000cd00000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

16m43.894759799s ago: executing program 8 (id=1224):
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000001380)='./file1\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="636865636b706f696e743d64697361626c652c6261636b67726f756e645f67633d73796e632c61636c2c616c6c6f635f6d6f64653d72657573652c696e6c696e655f78617474722c6e6f666c7573685f6d657267652c6d6f64653d6c66732c6e6f757365725f78617474722c636865636b706f696e743d64697361626c652c757365725f78617474722c6673796e635f6d6f64653d7374726963742c6167655f657874656e745f63616368652c646973636172642c6e6f696e6c696e655f64656e7472792c008bfb3c1e4b1b12ae77c937da8858"], 0x1, 0x5505, &(0x7f0000002480)="$eJzs3E1rY9UbAPAn7XTe//Mv4sLdXBiEFiZh0nlBd6PO4At2KKMuXGmapCEzSW5p0rR25cKluPCbiIIrl34GF67diQvFnaDknlud+gJC08ZOfz+4ee45OXnuc8Iw8NxbEsCptZj9/GMlrsSFiJiPiMsRxXmlPAp3U3guIq5GxNwTR6Wc/33ibERcjIgrk+QpZ6V869Pr42u3f3jjp6++OXfm0mdffju7XQOz9nxE9DfT+U4/xbyT4qNyvjHuFrF/a1zG9Eb/cTnOU9xprxcZdhr76xpFvNlJ6/PN7eEkbvQazUnsdDeK+c1BuuBw3NnPU3zgUWOrGLfa60XsDvMidvZSXbt76f+2veEo5WmV+T4o0sdotB/TfHu3nfaz+biIzcGonE9581Z7dxLHZSwvF8281yrqWD/MN/3f9mZ3sL2bjdtbw24+yG7X6i/U6neq9a281R61b1Ub/dadW9lSpzdZVh21G/27nTzv9Nq1Zt5fzpY6zWa1Xs+W7rXXu41BVq/XbtZuVG8vl2fXs1cfvJP1WtnSJL7cHWyPur1htpFvZekTy9lK7eaLy9m1evbW6lq29vD+/dW1t9+79+6Dl1Zff6Vc9JeysqWVGysr1fqN6kp9+RTt/6Oy6CnuHw6lMusCAE4e/T8wC0fX/289jDj6/j/0/1Nxovrf097/H8H+4VD0/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAp9Z3C5+/VpwspvGlcv5/5dQz5bgSEXMR8evfmI+zB3LOl3kW/mH9wp9q+LoSRYbJNc6Vx8WIuFsev/z/qL8FAAAAeHp98eHVT1K3nl4WZ10QxyndtJm7/P6U8lUiYmHx+yllm5u8PDulZMW/7zOxO6VsxQ2s81NKlm65nZlWtn9l/kA4/0SopDB3rOUAAADH4mAncLxdCAAAAMfp41kXwGxUYv9R5v6z4OIv7/94IHjhwAgAAAA4gSqzLgAAAAA4ckX/7/f/AAAA4OmWfv8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAfmPnfm4TB6I4AD8bvLD/tGi1921lb1DGlrDHPUYUkCYoIAfSQhqgBnJLCRFEeBwCEYdIHttK9H2SMxnL/HiD4DAz0gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF26r9aL26vf121zdvt28owGAAAAuGRbrRf1P7PU/9rc/97c+tn0i4goI+LS3H0Un84yR01O9fL8zenz1asa7iLqhMN7TJrrS0T8aa7HH11/CgAAAPBxbZareZqtpz+zoQuiT2nRpvz2N1NeERHV7CFTWnnI+5UprP5+j+N/prR6AWuaKSwtuY1zpb1J/XM/rtpNT5oiNeXFlx2LzDZ2AACgR6Ozpt9ZCAAAAH36N3QBDKOI563M41bgJDXN9t7nsx4AAADwDhVDFwAAAAB0rp7/93T+3975fwAAADCMdP4fAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXdpW68VmuZq3zdnt28kzGgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHhif95RIATCIAz2ru9M5v6HlQZNTU2qQPj4G4MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIA3v/vL/4mpcSaZe20sPY8ka6fG1qmxd24c/WF8/RoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIv9eUmBEAiCKJgz/nfS9z+sJOgZRIiAhkcVtWgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4It+98v/ialxJpk7bSwdjyRrV42tq8beg8bRg/H2bwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIud+3mNo4oDAP5mZmdrq+IaZQ8RUfCgF7vd1tbexIMSPPgnCCHd1titP9ocbCliLt4k515EjyKCEm/9H3JOIJd4y2EPETwrMzuTnfwA118zm+TzgTfvu8Mw7/tmIeQ77yUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACURm9P4iQ7dMZxXJzb3Hu4lPVbh/rM47Xt+axlcVRn0ifDi9UPUbe5RAAAADg7krK+DyHspOsLWR938vo/La/Jav5vnx7HZT1/uO4v+7L2z9ovP+8+vz9QZzxOdtOby8PBpaOptP6/Wc62Z/7yilb+5PN3L0n+hcTvrT43SvPnGX29sfFOOw/P1ZEtAPBPXCz7Iih/H8r6fpOJAXBmtCqFd1n/J51mcwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACow2g1PFnGUQhhvjWJM1t7D5eO6x+vbc+X7dqjR2vhy8k9s1ukIYSby8PBpVpnM9vu3X9we3E4HNytP3gphNDU6G8V07/9wRQXh9DI8xH8R0FcfNmzks/JCBr8oQQAwKmUFi2r63fS9YXsXDQXwh/fHaz/X63EYcr6f/fDa5vVsar1f7+2Gc6+3sqdT3v37j94ffnO4q3BrcHHb1zuv9m/cv3q1eu9/F1JzxsTAAAA/p120ar1fzx3dP3/QiUOU9b/n33T/6I6VqL+P9Zk0a/pTAAAAM62Z1/+/bfomPNRux0+X1xZudsfH/c/Xx4fG0j1bztXtGr9n8w1nRUAAABQh9FqdGD9/0YlDlOu/z/1/Qs/Vu+ZhBDOF+v/F5c+Gd6obzozrY4/J256jgAAADTrfNGq6/9pvv8/3t/yEIcQXntlHBf/BnCq+j9596sfqmNV9/9fqW+KMynujp9H3ndDaHWbzggAAIDT7ImiZcX+r+n6wkc/XXi/bf8/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQN3+DAAA//962D6S")
creat(&(0x7f0000001980)='./bus\x00', 0x10c)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x400, 0x0, 0x0, 0x1, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000000000000c00002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x42)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r1, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc2}})

16m43.355391918s ago: executing program 75 (id=1225):
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb007}, 0x4)

16m42.641465257s ago: executing program 8 (id=1227):
r0 = getpid()
syz_mount_image$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x21000, 0x0, 0x0, 0x0, 0x0)
mount$bind(0x0, 0x0, 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000340)='./file0/../file0\x00', &(0x7f0000000280)='./file0/file0\x00', 0x0, 0xb101e, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
r1 = syz_pidfd_open(r0, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r2, 0x29, 0x36, &(0x7f0000000040)=ANY=[], 0x8)
sendmmsg$inet6(r2, 0x0, 0x0, 0x4400c800)
setns(r1, 0x24020000)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x2a05404, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

16m41.380454396s ago: executing program 8 (id=1228):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x400c84, &(0x7f0000000340), 0x1, 0x789, &(0x7f0000000fc0)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f00000000c0)='./bus\x00', 0x2c600, 0x0, 0xbe, 0x0, &(0x7f00000007c0))
chdir(&(0x7f0000000140)='./bus\x00')
r0 = creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x9)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'dvmrp1\x00'})
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
ioctl$sock_ipv6_tunnel_SIOCDEL6RD(r0, 0x89fa, &(0x7f0000000080)={'sit0\x00', &(0x7f0000000040)={@mcast2, @dev={0xac, 0x14, 0x14, 0x11}, 0x19, 0x20}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000640)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
r7 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r7, 0x6, 0x0, 0x0, 0x0)
r8 = fsmount(r7, 0x0, 0x0)
r9 = openat$cgroup_subtree(r8, 0x0, 0x2, 0x0)
write$cgroup_subtree(r9, &(0x7f00000001c0)={[{0x2b, 'cpu'}]}, 0x5)
getdents64(r1, &(0x7f0000000f80)=""/4096, 0x1000)

16m40.597191303s ago: executing program 76 (id=1228):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x400c84, &(0x7f0000000340), 0x1, 0x789, &(0x7f0000000fc0)="$eJzs3c1rXFUbAPDnTpKmTfu+iSBo3RgQNFA6MTW2CgoVFyJYKOjadphMQ80kUzKT0oSALSK4EVRcCLrpyoUfdefWj63+Fy7EUjUtVlxI5E5m0kkzk07SZCaa3w9u5px77+ScZ879ODPncm8Ae9Zw+icTcTgi3ksiBmvzk4joq6Z6I06urHd7aTGfTkksL7/6W1Jd59bSYj4a3pM6WMs8HBHfvR1xJLO+3PL8wlSuWCzM1vKjlekLo+X5haPnp3OThcnCzPGx8fFjJ54+cXz7Yv3jx4VD199/6YkvT/711kPX3v0+iZNxqLasMY4te35tdjiGa59JX/oRrvHifRe2uyTdrgBbku6aPSt7eRyOweippgCA/7I3I2IZANhjEud/ANhj6r8D3FpazNen7v4i0Vk3XoiI/Svx18c3V5b01sbs9lfHQQduJWtGRpKIGNqG8ocj4pOvX/88nWK7xiEB2nD5SkScHRpef/xP1l2zsFlPbrBsX+11+K75aflGoKEzvkn7P8806/9lVvs/0aT/099k392KZvt/EnF5dcaBbShkAzc+jXiu4dq22w3x1wz11HL/q/b5+pJz54uF9Nj2/4gYib7+ND+2QRkjN/++2WpZY//v9w/e+CwtP329s0bml97+te+ZyFVy9xNzoxtXIh7pbRZ/str+SYv+7+k2y3j52Xc+brUsjT+Ntz6ti7/a/jt3Rli+GvF40/a/c0VbsuH1iaPVzWG0vlE08dVPHw20Kr+x/dMpLb/+XaAT0vYf2Dj+oaTxes3y5sv44ergt62W3Tv+5tv/vuS1arrej7iUq1RmxyL2Ja+sn3/sznsv5R6tpVbWT+Mfeaz5/r/R9p9+JzzbZvy913/9Yuvx76w0/olNtf/mE9duT/W0Kr+99h+vpkZqc9o5/rVbwfv57AAAAAAAAAAAAAAAAAAAAAAAAACgXZmIOBRJJruazmSy2ZVneD8YA5liqVw5cq40NzMR1WdlD0Vfpn6ry8GG+6GO1e6HX88fuyv/VEQ8EBEf9h9I6vdRnOhy7AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABQd7DF8/9TP/d3u3YAwI7Z3+0KAAAd5/wPAHuP8z8A7D3tnf97drweAEDn+P4PAHuP8z8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA77PSpU+m0/OfSYj7NT1ycn5sqXTw6UShPZafn8tl8afZCdrJUmiwWsvnS9L3+X7FUujAeM3OXRiuFcmW0PL9wZro0N1M5c346N1k4U+jrSFQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsDnl+YWpXLFYmJXYQmJ5d1Sj+4me2ua0W+rT0USyO6qxzYkuH5gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/iX+CQAA//8vWSHt")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f00000000c0)='./bus\x00', 0x2c600, 0x0, 0xbe, 0x0, &(0x7f00000007c0))
chdir(&(0x7f0000000140)='./bus\x00')
r0 = creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x9)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'dvmrp1\x00'})
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
ioctl$sock_ipv6_tunnel_SIOCDEL6RD(r0, 0x89fa, &(0x7f0000000080)={'sit0\x00', &(0x7f0000000040)={@mcast2, @dev={0xac, 0x14, 0x14, 0x11}, 0x19, 0x20}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000640)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
r7 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r7, 0x6, 0x0, 0x0, 0x0)
r8 = fsmount(r7, 0x0, 0x0)
r9 = openat$cgroup_subtree(r8, 0x0, 0x2, 0x0)
write$cgroup_subtree(r9, &(0x7f00000001c0)={[{0x2b, 'cpu'}]}, 0x5)
getdents64(r1, &(0x7f0000000f80)=""/4096, 0x1000)

13m49.188647001s ago: executing program 1 (id=1567):
syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2d}, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x2, 0x0, 0xfe, 0x6, 0x0, @private=0xa010102, @local, {[@rr={0x7, 0x3, 0xb8}]}}, {{0x4, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x0, 0xfffa}}}}}}, 0x0)

13m48.874602903s ago: executing program 1 (id=1570):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuset.effective_mems\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x5, &(0x7f0000000040)={0x2, 0x4, 0x6, 0x2, 0xffffffffffffffff})

13m46.460367742s ago: executing program 1 (id=1575):
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xf, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000700000001000100090000000100", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/24], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000b00)=@base={0x6, 0x4, 0x70be, 0x5c, 0x0, 0xffffffffffffffff, 0x30, '\x00', 0x0, 0xffffffffffffffff, 0x180, 0x2}, 0x48)
sched_setscheduler(0x0, 0x1, 0x0)
getpid()
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x874, 0x4)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000580)={'filter\x00', 0x104, 0x4, 0x3f0, 0x0, 0x1f8, 0x1f8, 0x308, 0x308, 0x308, 0x4, 0x0, {[{{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @rand_addr, @rand_addr, 0x8}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x1, {0x0, 0x5}}}, {{@arp={@remote, @private, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'team_slave_0\x00', 'pimreg\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@multicast, @mac=@random="8249ca4ee4e7", @remote, @broadcast, 0x2}}}], {{'\x00', 0xc0, 0xe8}, {0x28, '\x00', 0x2}}}}, 0x440)

13m45.266202567s ago: executing program 1 (id=1580):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x2d)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f00000005c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x2b0, 0x0, 0x18c, 0x203, 0x320, 0x19030000, 0x410, 0x2e0, 0x2e0, 0x410, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0xa8, 0xf0}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x2, 'syz0\x00', {0x8001}}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0xb, 'syz0\x00', {0x6c8}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x310)

13m35.778203309s ago: executing program 1 (id=1608):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x8000000000002)
sched_setscheduler(r0, 0x2, &(0x7f0000000240)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x50)
openat$procfs(0xffffffffffffff9c, &(0x7f0000001300)='/proc/timer_list\x00', 0x0, 0x0)
r3 = socket$unix(0x1, 0x5, 0x0)
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000100)={'vcan0\x00'})
sendmsg$can_bcm(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="0100000003ece1e40ad8871461ab0800", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=r3, @ANYBLOB="3bf81bb9f9"], 0x20000600}, 0x1, 0x0, 0x0, 0x40004}, 0x0)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000004000/0x4000)=nil)
sendmsg$can_bcm(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[], 0x4640}, 0x2, 0x0, 0x0, 0x8084}, 0x4004)

13m34.120468949s ago: executing program 1 (id=1612):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r2 = gettid()
mknod(&(0x7f0000000180)='./file0\x00', 0x1ffa, 0x0)
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x40)

13m18.561372264s ago: executing program 77 (id=1612):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r2 = gettid()
mknod(&(0x7f0000000180)='./file0\x00', 0x1ffa, 0x0)
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x40)

12m47.756769592s ago: executing program 6 (id=1697):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(0xffffffffffffffff, 0xc1105518, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x0, 'syz0\x00', 0x3}, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x3, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffffffe, 0x8000000000000000, 0x0, 0xfffffffffffffffe, 0x8, 0x0, 0x4, 0xfffffffffffffffd, 0x0, 0xf3, 0x0, 0x400000000005, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x6, 0x6, 0x0, 0x14, 0x0, 0x0, 0x7, 0x0, 0x0, 0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3486, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x4, 0x800000, 0x0, 0x101, 0x0, 0xd721, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x79a2, 0x0, 0xe, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4a44e74b]})
r1 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000300)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000100)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f0000000880)=""/99, &(0x7f0000000800)=""/90})
read$msr(0xffffffffffffffff, 0x0, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0xfffffffe)

12m47.187577695s ago: executing program 6 (id=1699):
syz_mount_image$vfat(&(0x7f0000000380), &(0x7f0000000e80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4000, &(0x7f00000000c0)=ANY=[@ANYBLOB='uni_xlate=0,iocharset=ep866,errors=continue,utf8=0,shortname=mixed,shortname=win95,nonumtail=0,uni_xlate=1,iocharset=cp857,shortname=mixed,utf8=1,uni_xlate=0,shortname=win95,codepage=936,utf8=1,utf8=0,\x00'], 0xfd, 0x2a8, &(0x7f0000000580)="$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")
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'bridge0\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00', {0xff}, {}, 0x0, 0x0, 0x0, 0x4b}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0xfffffffe, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400"], 0x64}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./bus\x00', 0xc0ed4041, &(0x7f0000000240)={[{@noblock_validity}, {@abort}, {@acl}, {@resuid}, {@lazytime}, {@nodiscard}]}, 0xfe, 0x472, &(0x7f0000001140)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000180)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x200800, &(0x7f0000000080)=ANY=[@ANYBLOB=',iocharset=iso8859-2,errors=remount-ro,errors=continue,\x00', @ANYBLOB='iocharset=iso8859-6,umask=00000000000000000000011,allow_utime=000000000000\x00\x00\x00\x00\x00\x00\x00\x00350,discard,errors=continue,discard,uid=', @ANYRESHEX=0x0, @ANYRESDEC], 0x1, 0x1528, &(0x7f0000001f80)="$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")
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x101042, 0x40)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340))
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa04, &(0x7f0000000000)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1, 0x2})
r5 = socket$inet6(0xa, 0x3, 0x100)
connect$inet6(r5, &(0x7f0000000180)={0xa, 0x3, 0x3, @dev={0xfe, 0x80, '\x00', 0xd}, 0x9}, 0x1c)
sendmsg(r5, &(0x7f00000000c0)={0x0, 0x33, &(0x7f0000000100)=[{&(0x7f0000000000)=',', 0x584}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

12m44.459825948s ago: executing program 6 (id=1703):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r0}, 0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x3, 0x4, &(0x7f0000000200)=@framed={{0x18, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ed1}, [@call={0x85, 0x0, 0x0, 0x2e}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000480)={r1, 0x0, 0xe, 0x0, &(0x7f0000000100)="b34715ecd04550d3abc89b6f7bec", 0x0, 0xfffdfffc, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

12m43.353599785s ago: executing program 6 (id=1710):
r0 = syz_open_dev$vbi(&(0x7f0000000880), 0x0, 0x2)
setregid(0xee00, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
ioctl$VIDIOC_G_CTRL(r0, 0xc008561b, &(0x7f0000000100)={0x98f905, 0xb335})

12m42.964142397s ago: executing program 6 (id=1713):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000018000007b8af0ff00000000bfa100000000000007010000f8ffffffbf"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000080)={0x49de, 0x0, 0x0, 0xbfff, 0x0, "ec28a144f13d7607"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0x44)

12m41.639168555s ago: executing program 6 (id=1716):
bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0xffffffffffffffa8, &(0x7f0000000000)=0x1002)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
write$P9_RVERSION(0xffffffffffffffff, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x15)
capset(&(0x7f0000000080)={0x20071026}, 0x0)
syslog(0x4, &(0x7f0000000000)=""/19, 0xb12288e90d7c8384)
r5 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00'})

12m26.118139054s ago: executing program 78 (id=1716):
bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0xffffffffffffffa8, &(0x7f0000000000)=0x1002)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
write$P9_RVERSION(0xffffffffffffffff, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x15)
capset(&(0x7f0000000080)={0x20071026}, 0x0)
syslog(0x4, &(0x7f0000000000)=""/19, 0xb12288e90d7c8384)
r5 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00'})

9m29.346510952s ago: executing program 2 (id=2359):
syz_mount_image$vfat(&(0x7f0000000380), &(0x7f0000000e80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4000, &(0x7f00000000c0)=ANY=[@ANYBLOB='uni_xlate=0,iocharset=ep866,errors=continue,utf8=0,shortname=mixed,shortname=win95,nonumtail=0,uni_xlate=1,iocharset=cp857,shortname=mixed,utf8=1,uni_xlate=0,shortname=win95,codepage=936,utf8=1,utf8=0,\x00'], 0xfd, 0x2a8, &(0x7f0000000580)="$eJzs3c9qK1UcB/DfpGkSdZEsXInigC5cXW7vE6RIL1zMSslCXah4b0GaILRQ8A/GrgRXblz6BILQnS/hxjfwAQR3dlE4MslMk9Q07UDT+ufz2fT0nPOd8zuTaUsXOfnw5fHB0zz2T778LTqdLBr96MdZFr1oROXrWNL/LgCAf7OzlOKPNFMnl0VEZ3NlAQAbVPvv/+nGSwIANuydd997a3cw2Hs7zzvxePzN8bD4z774Ohvf3Y9PYhTP4mF04zwiXZi1H6eUJs280IvXx5PjYZEcf/BLef3d3yOm+Z3oRm/atZx/MtjbyWcW8pOijufL9ftF/lF048UV6z8Z7D1akY9hK954baH+B9GNXz+OT2MUT6dFzPNf7eT5m+n7P794vyivyGeT42F7Om8ubd3xSwMAAAAAAAAAAAAAAAAAAAAAwH/Yg/LsnHZMz+8pusrzd7bOi2+2I6/0ls/nmeWz6kKXzgeapPihOl/nYZ7nqZw4zzfjpWY072fXAAAAAAAAAAAAAAAAAAAA8M9y9NnnBx+NRs8Ob6VRnQZQva2//nVOp6n+Qs+rsT7Vnq/VKJtrloitak4WsbaeYhO3dFuuazx3Vc0//lT3gp3r52wXa3VucRfVy73QE1VPtvoeti8md6qH5OeqJ6WUWnHD1VtXDaVaj19r5VC39t1ovTBtTNbMieyqwr59Zf5zWQ5ll3fRWrrPS43tsrEQv/Rs1Hqe//67InNaBwAAAAAAAAAAAAAAAAAAbNT8Tb8rBk/WRhupvbGyAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBOzT//v0ZjUoZvMLkVh0f3vEUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+B/4KAAD//+KpXP8=")
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'bridge0\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00', {0xff}, {}, 0x0, 0x0, 0x0, 0x4b}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0xfffffffe, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400"], 0x64}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./bus\x00', 0xc0ed4041, &(0x7f0000000240)={[{@noblock_validity}, {@abort}, {@acl}, {@resuid}, {@lazytime}, {@nodiscard}]}, 0xfe, 0x472, &(0x7f0000001140)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000180)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x200800, &(0x7f0000000080)=ANY=[@ANYBLOB=',iocharset=iso8859-2,errors=remount-ro,errors=continue,\x00', @ANYBLOB='iocharset=iso8859-6,umask=00000000000000000000011,allow_utime=000000000000\x00\x00\x00\x00\x00\x00\x00\x00350,discard,errors=continue,discard,uid=', @ANYRESHEX=0x0, @ANYRESDEC], 0x1, 0x1528, &(0x7f0000001f80)="$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")
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340))
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0x0, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa04, &(0x7f0000000000)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1, 0x2})
r4 = socket$inet6(0xa, 0x3, 0x100)
connect$inet6(r4, &(0x7f0000000180)={0xa, 0x3, 0x3, @dev={0xfe, 0x80, '\x00', 0xd}, 0x9}, 0x1c)
sendmsg(r4, &(0x7f00000000c0)={0x0, 0x33, &(0x7f0000000100)=[{&(0x7f0000000000)=',', 0x584}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

9m26.86070797s ago: executing program 2 (id=2364):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file2\x00', 0x1018ed8, &(0x7f0000000300)={[{@norecovery}, {@noload}, {@mblk_io_submit}, {@noload}, {@discard}, {@norecovery}, {@grpquota}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x6, 0x67b, &(0x7f0000001300)="$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")
creat(&(0x7f0000000040)='./bus\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000005bc0)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000140)={0x0, 0x2, 0x6, 0x7e9, 0x2000000000, 0x2000000000002, 0x3, 0x100000000003, 0x7ffd})

9m24.761514766s ago: executing program 2 (id=2374):
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x5c399000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
getpid()
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x20, 0x10, 0x701, 0x70bd2a, 0x0, {0xa}, [@typed={0xc, 0x2, 0x0, 0x0, @str='nl80211\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

9m22.578949747s ago: executing program 2 (id=2378):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280), 0x0, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount$bind(&(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x12f451, 0x0)

9m22.094387954s ago: executing program 2 (id=2384):
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_user\x00', 0x26e1, 0x0)
close(r0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="120000000d0000"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000140)=r0}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{r2, <r3=>0xffffffffffffffff}, &(0x7f00000004c0), &(0x7f0000000400)=r0}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000002c0)={r3, &(0x7f0000000000), &(0x7f0000000500)=""/216}, 0x20)

9m21.202699014s ago: executing program 2 (id=2388):
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f00000000c0))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGPROP(r2, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$PPPIOCSFLAGS1(r2, 0x4004743a, &(0x7f0000000300))
ioctl$PPPIOCGCHAN(r0, 0x80047437, &(0x7f0000001f00))
sendmmsg(r0, &(0x7f0000007180)=[{{0x0, 0x0, &(0x7f0000000100)=[{0x0}, {0x0}, {&(0x7f0000000080)="adf72db7944827", 0x7}], 0x3}}], 0x1, 0x10014)

9m19.775457154s ago: executing program 79 (id=2388):
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f00000000c0))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGPROP(r2, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$PPPIOCSFLAGS1(r2, 0x4004743a, &(0x7f0000000300))
ioctl$PPPIOCGCHAN(r0, 0x80047437, &(0x7f0000001f00))
sendmmsg(r0, &(0x7f0000007180)=[{{0x0, 0x0, &(0x7f0000000100)=[{0x0}, {0x0}, {&(0x7f0000000080)="adf72db7944827", 0x7}], 0x3}}], 0x1, 0x10014)

5m14.420996871s ago: executing program 3 (id=3391):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x446, &(0x7f0000000480)={[{@orlov}, {@journal_dev={'journal_dev', 0x3d, 0x1045}}, {@errors_continue}, {@noquota}, {@data_err_ignore}, {@noblock_validity}, {@delalloc}, {@noauto_da_alloc}, {@orlov}, {@user_xattr}, {@nodioread_nolock}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x80000000000001}}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r0, 0x0, 0xb7d4, 0x1001f0)
socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(0x0, 0x0, 0x0)
read$msr(r3, &(0x7f0000032680)=""/102400, 0x19000)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup\x00', 0x0, 0x80)
open_by_handle_at(r4, &(0x7f00000006c0)=ANY=[@ANYBLOB="1400000001f70e337e3369cd0000000600000000008800070000000000000001747dc0cdea57d36cdb8a4b98373a01000100f591277199e6241e012201ca3c51083f72095b84d76a80255660625ff1eee4588a773e9b3753ca310168194bdd69f0d68c028886c0f340f637d9ef04a9618db765a40aad7cf254d48cd55b0ebd88c2d6718073"], 0x0)
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_opts(r5, 0x29, 0x37, 0x0, 0x0)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x5}, 0x1c)
syz_pidfd_open(r1, 0x0)
sendmmsg$inet6(r5, 0x0, 0x0, 0x48)
io_setup(0x3, 0x0)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000380)={r6, r6}, 0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
fallocate(r0, 0x3, 0x4, 0x11600)

5m13.462991142s ago: executing program 3 (id=3393):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r2, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
r3 = openat$yama_ptrace_scope(0xffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$F2FS_IOC_RESIZE_FS(r3, 0x4008f510, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x20, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0xd0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0xffd}, 0x2a, 0x0)
r7 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0x5ba8, 0xfffffffffffffffd)
keyctl$read(0xb, r7, &(0x7f0000000240)=""/112, 0x349b7f55)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000e00)=[@acquire], 0x0, 0x0, 0x0})
prlimit64(0x0, 0x7, &(0x7f0000000ec0), 0x0)

5m10.556369558s ago: executing program 3 (id=3400):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r2, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
r3 = openat$yama_ptrace_scope(0xffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$F2FS_IOC_RESIZE_FS(r3, 0x4008f510, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x20, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0xd0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0xffd}, 0x2a, 0x0)
r7 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0x5ba8, 0xfffffffffffffffd)
keyctl$read(0xb, r7, &(0x7f0000000240)=""/112, 0x349b7f55)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000e00)=[@acquire], 0x0, 0x0, 0x0})
prlimit64(0x0, 0x7, &(0x7f0000000ec0), 0x0)

5m6.46252246s ago: executing program 3 (id=3402):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = dup(r0)
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r2, 0x40000000af01, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000340))
r4 = dup(r3)
ioctl$VHOST_NET_SET_BACKEND(r2, 0x4008af30, &(0x7f0000000000)={0x1, r4})
ioctl$VHOST_SET_FEATURES(r2, 0x4008af00, &(0x7f00000001c0)=0x304008000)
ioctl$VHOST_NET_SET_BACKEND(r2, 0x4008af30, &(0x7f00000003c0)={0x1, r1})
syz_genetlink_get_family_id$batadv(&(0x7f0000000180), 0xffffffffffffffff)

5m5.690381777s ago: executing program 3 (id=3409):
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x200, 0x0)
close(r0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
ioctl$MEDIA_IOC_DEVICE_INFO(0xffffffffffffffff, 0xc1007c00, &(0x7f0000000480))
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
r2 = syz_open_dev$video4linux(&(0x7f0000000000), 0x7, 0x8000)
ioctl$VIDIOC_SUBDEV_G_SELECTION(r2, 0xc040563d, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, {0x2, 0x0, 0x40000000, 0x9}})
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
r4 = syz_io_uring_setup(0x1238, &(0x7f0000000380)={0x0, 0x80fd, 0x80, 0x2, 0xab9}, &(0x7f0000000080), &(0x7f0000000200))
io_uring_register$IORING_REGISTER_PROBE(r4, 0x8, 0x0, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r5 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r5, 0x1, 0x0)
pipe2(&(0x7f00000000c0), 0x84800)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
futex(0x0, 0x800000000009, 0x0, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r7 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000140), 0x82084, 0x0)
ioctl$TCSETSF2(r7, 0x402c542d, &(0x7f0000000100)={0xfffffffc, 0x100e7, 0x0, 0x2, 0x7, "ea7106000000000000000002000000000100", 0x0, 0x10000fff})
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000180)=0x2)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0)

5m2.31043914s ago: executing program 3 (id=3411):
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x4e01, 0x9, @empty, 0xa}}, 0x0, 0x0, 0x3d, 0x0, "bb02a3c364ca41d6357e544524474004000b42a21d7214bf92494925208a0e2f964e0000c534a6324d6193fcf19b2df3ee818afaa4ff1f56c54dc46d8b6d2ccd008aa0cc1dc2767bbe00"}, 0xd8)
r0 = socket$kcm(0x23, 0x5, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000240)=0x9, 0x4)
listen(r0, 0x800)
accept4(r0, 0x0, 0x0, 0x80000)
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000380)=ANY=[@ANYBLOB="1c0000f500000000000000862dfdff000000"], 0x78)

4m47.045525724s ago: executing program 80 (id=3411):
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x4e01, 0x9, @empty, 0xa}}, 0x0, 0x0, 0x3d, 0x0, "bb02a3c364ca41d6357e544524474004000b42a21d7214bf92494925208a0e2f964e0000c534a6324d6193fcf19b2df3ee818afaa4ff1f56c54dc46d8b6d2ccd008aa0cc1dc2767bbe00"}, 0xd8)
r0 = socket$kcm(0x23, 0x5, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000240)=0x9, 0x4)
listen(r0, 0x800)
accept4(r0, 0x0, 0x0, 0x80000)
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000380)=ANY=[@ANYBLOB="1c0000f500000000000000862dfdff000000"], 0x78)

3m35.293978219s ago: executing program 7 (id=3554):
openat$mice(0xffffffffffffff9c, &(0x7f00000001c0), 0x0)
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
write$uinput_user_dev(r0, 0x0, 0x0)
ioctl$UI_SET_RELBIT(r0, 0x40045566, 0x8)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x2)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x1)
ioctl$UI_DEV_CREATE(r0, 0x5501)

3m34.926817952s ago: executing program 7 (id=3558):
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x200, 0x0)
close(r0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
ioctl$MEDIA_IOC_DEVICE_INFO(0xffffffffffffffff, 0xc1007c00, &(0x7f0000000480))
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
r2 = syz_open_dev$video4linux(&(0x7f0000000000), 0x7, 0x8000)
ioctl$VIDIOC_SUBDEV_G_SELECTION(r2, 0xc040563d, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, {0x2, 0x0, 0x40000000, 0x9}})
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
io_uring_register$IORING_REGISTER_PROBE(0xffffffffffffffff, 0x8, 0x0, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x1, 0x0)
pipe2(&(0x7f00000000c0), 0x84800)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
futex(0x0, 0x800000000009, 0x0, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r6 = openat$sndseq(0xffffffffffffff9c, 0x0, 0xa1300)
r7 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000140), 0x82084, 0x0)
ioctl$TCSETSF2(r7, 0x402c542d, &(0x7f0000000100)={0xfffffffc, 0x100e7, 0x0, 0x2, 0x7, "ea7106000000000000000002000000000100", 0x0, 0x10000fff})
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000180)=0x2)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, 0x0)

3m31.92965411s ago: executing program 7 (id=3560):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r2, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
r3 = openat$yama_ptrace_scope(0xffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$F2FS_IOC_RESIZE_FS(r3, 0x4008f510, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x20, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0xd0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0xffd}, 0x2a, 0x0)
r7 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0x5ba8, 0xfffffffffffffffd)
keyctl$read(0xb, r7, &(0x7f0000000240)=""/112, 0x349b7f55)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a})
prlimit64(0x0, 0x7, &(0x7f0000000ec0), 0x0)

3m21.795012025s ago: executing program 7 (id=3576):
syz_emit_ethernet(0x4a, &(0x7f0000000200)=ANY=[], 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0)
r0 = memfd_create(&(0x7f0000000400)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x92\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\x05\x00\xfd\xbdnC\xec\xf6\x00R\xb8\x83661\x90\x90\x9f\xd3\x15o\x83(v\x890\xa0\x9e0\"\v\xa0h\xb1\xdd\xa3\x16\xca^\'\xf5\x06fPm\xc7\"\xda3\'[<n2A\x1b\xcc.g\"\xbf\xa6\x98=\xb2\xfcj=\xbfCs\f\xcd.\b6\xd8\xf0\xdd\xc7\xb2\xbf_*.c\f\x88t1\xd5N\xa8\x90\xe4q\x96\xcf\x88\xa4\xb0\x8b\x91\x13\x06\xd1\"\x98\xf1\xa5K\xee\xe4\x13\x90\x1cm3\xc9\xad]\xa8\xa2\x05\xf7~<NX\xe5\xd7<\xf0E\xad\xccZ\xb0A\x11\xc9f<\xa6\xde\xba\x1a_a\xe9V\x12\x89\xdf\xe2$\x83\xcc}8\a\xb5\x19,i\xec3T\x99lUd\xd0ni\xaa\x9f2\x1c\x9c\xdd~\x06\xac\xcb\xf8\xbc/|\xeeMk\x16?L\xda\xbe\x9f\xa4\xbb\x1b\x13\xf2\xd2\xd5\xefI\x8a\x00'/350, 0x0)
getresuid(&(0x7f00000005c0), &(0x7f00000000c0)=<r1=>0x0, 0x0)
socket(0x40000000015, 0x5, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0xfffffffffffffeb5)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$int_in(0xffffffffffffffff, 0x5452, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
fsetxattr$security_ima(r0, 0x0, &(0x7f00000002c0)=ANY=[@ANYRES32, @ANYRESHEX, @ANYRES8, @ANYRESDEC, @ANYRESOCT=r1], 0xfe49, 0x0)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f0000000040)={&(0x7f0000000000)=""/5, 0x1c000, 0x800, 0x8, 0x2}, 0x1c)
setsockopt$XDP_TX_RING(r3, 0x11b, 0x3, &(0x7f00000003c0)=0x800, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))

3m19.39449246s ago: executing program 7 (id=3580):
openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x101042, 0x57)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000780)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@nfs_export_on}, {@userxattr}]})
setxattr$trusted_overlay_origin(&(0x7f0000000080)='./file0/file1\x00', &(0x7f00000001c0), 0x0, 0x0, 0x1)
umount2(&(0x7f00000002c0)='./file0\x00', 0x9)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000140), 0x8, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

3m18.034829442s ago: executing program 7 (id=3584):
syz_mount_image$exfat(&(0x7f00000001c0), &(0x7f00000000c0)='./file2\x00', 0x810, &(0x7f00000018c0)=ANY=[], 0xfd, 0x1501, &(0x7f00000002c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
mknod(&(0x7f0000000740)='./file2\x00', 0xc000, 0x7)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000340)={@ipv4={'\x00', '\xff\xff', @multicast2}, 0x9})
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000004c40)={@ipv4={'\x00', '\xff\xff', @multicast2}}, 0x14)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1210090, &(0x7f0000001300)={[{@barrier}, {@nodioread_nolock}, {@noquota}, {@barrier}, {@auto_da_alloc}, {@nodioread_nolock}]}, 0x1, 0x59c, &(0x7f0000001840)="$eJzs3U9oHGUbAPBnZrNN/+T70g++Dz6lh6JChdJN0j9aPbVXsVDoQfCiYbMNJZtsySbahIDpvYg9iEov9aYHj4oHD+LFo1cvimeh2KDQ9KArm51N03S3bmI2W7O/H0z2fWdm93nfmX3e7AwzTAB962j9TxrxVERcTCKGNywbiGzh0cZ6qytLxfsrS8UkarVLvySRRMS9laVic/0kez0UEcsR8f+I+CYfcTxd/8h9zUJ1YXFqvFwuzWb1kbnpqyPVhcUTV6bHJ0uTpZlTL7505uzpM2MnxzY2935tYy2/tb7e+PHmuze+e+X2zU8/O7JcfH88iXMxlC3b2I+d1Ngm+Ti3af7pbgTroaTXDWBbclme11PpfzEcuSzrW6ltHBwGd6V5QBfVBiNq6zYUgT6QSHroU83fAfXj3+a0m78/7pxvHIDU466uLBXfiWb8gca5idi/dmxy8NfkoSOT+vHm4d1sKHvS8vWIGB0YePT7n2Tfv+0b3YkG0lVfn2/sqEf3f7o+/kSL8Weoee70b2qOf6vZ+LfaIn6uzfh3scMYv7/+00dt418fjKdbxk/W4yct4qcR8WaH8W+99uXZdstqH0cci9bxm5LHnx8euXylXBpt/G0Z46tjR15u3/+Ig23iN87Z7l9ryMb+78valHbY/y++/fyZ5cfEf/7Zx+//Vtv/QES812H8/9z75NV2y+5cT+7WfwVsdf8nkY/bHcZ/4dzRH7Kis4YAAAAAAAAAALCD0rVr2ZK0sF5O00KhcQ/vf+NgWq5U545frszPTDSueTsc+bR5pdVwo57U62PZ9bjN+slN9VO5LGDuwFq9UKyUJ3rcdwAAAAAAAAAAAAAAAAAAAHhSHNp0//9vubX7/zc/rhrYq9o/8hvY6+Q/9K+H8z/pWTuA3ef/P/StmvyH/iX/oX/Jf+hf8h/6l/yH/iX/oX/JfwAAAAAAAAAAAAAAAAAAAAAAAAAA6IqLFy7Up9r9laVivT4xsDA/VXnrxESpOlWYni8WipXZq4XJSmWyXCoUK9N/9XlJpXJ1NGbmr43MlapzI9WFxTemK/MzzWeKlvJd7xEAAAAAAAAAAAAAAAAAAAD88wytTUlaiMg36mlaKET8KyIOJ5FcvlIujUbEvyPi+1x+sF4f63WjAQAAAAAAAAAAAAAAAAAAYI+pLixOjZfLpdnuFQayUF0M0XlhYCsrR8Tyzjaj/olbflc+24A93nR7o5B7Mr6HT36hh4MSAAAAAAAAAAAAAAAAAAD0qQc3/Xb6jj+62yAAAAAAAAAAAAAAAAAAAADoS+nPSUTUp2PDzw1tXrovWc2tvUbE27cufXBtfG5udqw+/+76/LkPs/kne9F+oFPNPE0jop7HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwAPVhcWp8XK5NLvNwmAH6/S6jwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADb8WcAAAD//y4WzlE=")
r1 = io_uring_setup(0x5111, &(0x7f0000000100)={0x0, 0x9c54, 0x10, 0x2, 0x1f6})
io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f000000aa80)={0x80002, 0x1000000, 0x0}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r2, 0x0)
pwrite64(r2, &(0x7f0000000100)="c6", 0x1, 0x8000)
write$P9_RCREATE(r2, &(0x7f0000000040)={0x18, 0x73, 0x2, {{0x40, 0x2, 0x8}, 0x9}}, 0x18)

3m2.08711294s ago: executing program 81 (id=3584):
syz_mount_image$exfat(&(0x7f00000001c0), &(0x7f00000000c0)='./file2\x00', 0x810, &(0x7f00000018c0)=ANY=[], 0xfd, 0x1501, &(0x7f00000002c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
mknod(&(0x7f0000000740)='./file2\x00', 0xc000, 0x7)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000340)={@ipv4={'\x00', '\xff\xff', @multicast2}, 0x9})
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000004c40)={@ipv4={'\x00', '\xff\xff', @multicast2}}, 0x14)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1210090, &(0x7f0000001300)={[{@barrier}, {@nodioread_nolock}, {@noquota}, {@barrier}, {@auto_da_alloc}, {@nodioread_nolock}]}, 0x1, 0x59c, &(0x7f0000001840)="$eJzs3U9oHGUbAPBnZrNN/+T70g++Dz6lh6JChdJN0j9aPbVXsVDoQfCiYbMNJZtsySbahIDpvYg9iEov9aYHj4oHD+LFo1cvimeh2KDQ9KArm51N03S3bmI2W7O/H0z2fWdm93nfmX3e7AwzTAB962j9TxrxVERcTCKGNywbiGzh0cZ6qytLxfsrS8UkarVLvySRRMS9laVic/0kez0UEcsR8f+I+CYfcTxd/8h9zUJ1YXFqvFwuzWb1kbnpqyPVhcUTV6bHJ0uTpZlTL7505uzpM2MnxzY2935tYy2/tb7e+PHmuze+e+X2zU8/O7JcfH88iXMxlC3b2I+d1Ngm+Ti3af7pbgTroaTXDWBbclme11PpfzEcuSzrW6ltHBwGd6V5QBfVBiNq6zYUgT6QSHroU83fAfXj3+a0m78/7pxvHIDU466uLBXfiWb8gca5idi/dmxy8NfkoSOT+vHm4d1sKHvS8vWIGB0YePT7n2Tfv+0b3YkG0lVfn2/sqEf3f7o+/kSL8Weoee70b2qOf6vZ+LfaIn6uzfh3scMYv7/+00dt418fjKdbxk/W4yct4qcR8WaH8W+99uXZdstqH0cci9bxm5LHnx8euXylXBpt/G0Z46tjR15u3/+Ig23iN87Z7l9ryMb+78valHbY/y++/fyZ5cfEf/7Zx+//Vtv/QES812H8/9z75NV2y+5cT+7WfwVsdf8nkY/bHcZ/4dzRH7Kis4YAAAAAAAAAALCD0rVr2ZK0sF5O00KhcQ/vf+NgWq5U545frszPTDSueTsc+bR5pdVwo57U62PZ9bjN+slN9VO5LGDuwFq9UKyUJ3rcdwAAAAAAAAAAAAAAAAAAAHhSHNp0//9vubX7/zc/rhrYq9o/8hvY6+Q/9K+H8z/pWTuA3ef/P/StmvyH/iX/oX/Jf+hf8h/6l/yH/iX/oX/JfwAAAAAAAAAAAAAAAAAAAAAAAAAA6IqLFy7Up9r9laVivT4xsDA/VXnrxESpOlWYni8WipXZq4XJSmWyXCoUK9N/9XlJpXJ1NGbmr43MlapzI9WFxTemK/MzzWeKlvJd7xEAAAAAAAAAAAAAAAAAAAD88wytTUlaiMg36mlaKET8KyIOJ5FcvlIujUbEvyPi+1x+sF4f63WjAQAAAAAAAAAAAAAAAAAAYI+pLixOjZfLpdnuFQayUF0M0XlhYCsrR8Tyzjaj/olbflc+24A93nR7o5B7Mr6HT36hh4MSAAAAAAAAAAAAAAAAAAD0qQc3/Xb6jj+62yAAAAAAAAAAAAAAAAAAAADoS+nPSUTUp2PDzw1tXrovWc2tvUbE27cufXBtfG5udqw+/+76/LkPs/kne9F+oFPNPE0jop7HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwAPVhcWp8XK5NLvNwmAH6/S6jwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADb8WcAAAD//y4WzlE=")
r1 = io_uring_setup(0x5111, &(0x7f0000000100)={0x0, 0x9c54, 0x10, 0x2, 0x1f6})
io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f000000aa80)={0x80002, 0x1000000, 0x0}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r2, 0x0)
pwrite64(r2, &(0x7f0000000100)="c6", 0x1, 0x8000)
write$P9_RCREATE(r2, &(0x7f0000000040)={0x18, 0x73, 0x2, {{0x40, 0x2, 0x8}, 0x9}}, 0x18)

2m55.721564035s ago: executing program 4 (id=3615):
syz_emit_ethernet(0x4a, &(0x7f0000000200)=ANY=[], 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0)
r0 = memfd_create(&(0x7f0000000400)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x92\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\x05\x00\xfd\xbdnC\xec\xf6\x00R\xb8\x83661\x90\x90\x9f\xd3\x15o\x83(v\x890\xa0\x9e0\"\v\xa0h\xb1\xdd\xa3\x16\xca^\'\xf5\x06fPm\xc7\"\xda3\'[<n2A\x1b\xcc.g\"\xbf\xa6\x98=\xb2\xfcj=\xbfCs\f\xcd.\b6\xd8\xf0\xdd\xc7\xb2\xbf_*.c\f\x88t1\xd5N\xa8\x90\xe4q\x96\xcf\x88\xa4\xb0\x8b\x91\x13\x06\xd1\"\x98\xf1\xa5K\xee\xe4\x13\x90\x1cm3\xc9\xad]\xa8\xa2\x05\xf7~<NX\xe5\xd7<\xf0E\xad\xccZ\xb0A\x11\xc9f<\xa6\xde\xba\x1a_a\xe9V\x12\x89\xdf\xe2$\x83\xcc}8\a\xb5\x19,i\xec3T\x99lUd\xd0ni\xaa\x9f2\x1c\x9c\xdd~\x06\xac\xcb\xf8\xbc/|\xeeMk\x16?L\xda\xbe\x9f\xa4\xbb\x1b\x13\xf2\xd2\xd5\xefI\x8a\x00'/350, 0x0)
getresuid(&(0x7f00000005c0), &(0x7f00000000c0)=<r1=>0x0, 0x0)
socket(0x40000000015, 0x5, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0xfffffffffffffeb5)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$int_in(0xffffffffffffffff, 0x5452, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
fsetxattr$security_ima(r0, &(0x7f0000000040), &(0x7f00000002c0)=ANY=[@ANYRES32, @ANYRESHEX, @ANYRES8, @ANYRES64=r3, @ANYRESDEC, @ANYRESOCT=r1], 0xfe49, 0x0)
r4 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r4, 0x11b, 0x4, &(0x7f0000000040)={0x0, 0x1c000, 0x800, 0x8, 0x2}, 0x20)
setsockopt$XDP_TX_RING(r4, 0x11b, 0x3, &(0x7f00000003c0)=0x800, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))

2m54.476570616s ago: executing program 4 (id=3617):
syz_emit_ethernet(0x6a, &(0x7f0000000180)={@link_local, @dev, @val={@void}, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f53a04", 0x30, 0x3a, 0x0, @remote, @mcast2, {[], @param_prob={0x2, 0x0, 0x0, 0x500, {0x0, 0x6, "508359", 0x0, 0x0, 0x0, @private1, @private1}}}}}}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32, @ANYBLOB="1f003300d0000000080211000001080211000000505050505050"], 0x3c}}, 0x0)

2m52.206435532s ago: executing program 4 (id=3619):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
syz_mount_image$jfs(&(0x7f0000000080), &(0x7f0000000440)='./file0\x00', 0x0, &(0x7f0000000480)=ANY=[], 0xfd, 0x632a, &(0x7f0000013cc0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0x105042, 0x189)
dup(0xffffffffffffffff)
r1 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec29, 0x0, 0x1, 0x40000337}, &(0x7f0000000dc0)=<r2=>0x0, &(0x7f0000000080)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000600)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)
readv(r0, &(0x7f0000001c80)=[{&(0x7f0000001880)=""/194, 0xc2}], 0x1)

2m50.653342826s ago: executing program 4 (id=3623):
r0 = syz_usb_connect(0x3, 0x2d, &(0x7f0000000040)={{0x12, 0x1, 0x310, 0x11, 0x39, 0x5b, 0x40, 0x5d8, 0x810c, 0x185f, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x6, 0x1, 0xf0, 0x8, [{{0x9, 0x4, 0xc8, 0x8, 0x1, 0x7f, 0xf8, 0xae, 0x4c, [], [{{0x9, 0x5, 0x1, 0x3, 0x200, 0x7, 0x5, 0x6}}]}}]}}]}}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0})
syz_usb_ep_read(r0, 0x1, 0x0, 0x0)
syz_usb_control_io$printer(r0, &(0x7f0000000880)={0x14, 0x0, 0x0}, 0x0)
syz_usb_control_io$printer(r0, &(0x7f0000002900)={0x14, 0x0, &(0x7f00000028c0)={0x0, 0x3, 0x2, @string={0x2}}}, 0x0)

2m44.53726145s ago: executing program 4 (id=3631):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x8)
syz_mount_image$f2fs(&(0x7f00000000c0), &(0x7f0000000040)='./file0\x00', 0x8, &(0x7f0000005880)=ANY=[], 0x1, 0x5512, &(0x7f0000005a00)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r4}, 0x10)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
mremap(&(0x7f00001b6000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000193000/0x4000)=nil)
mkdirat(0xffffffffffffff9c, &(0x7f0000000b80)='./file1\x00', 0x4e)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3004009, 0x0, 0x1, 0x0, 0x0)
chdir(&(0x7f00000005c0)='./bus\x00')
socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x210000000013, &(0x7f00000000c0)=0x8000003, 0x4)

2m38.335392592s ago: executing program 4 (id=3642):
syz_emit_ethernet(0x6a, &(0x7f0000000180)={@link_local, @dev, @val={@void}, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f53a04", 0x30, 0x3a, 0x0, @remote, @mcast2, {[], @param_prob={0x2, 0x0, 0x0, 0x500, {0x0, 0x6, "508359", 0x0, 0x0, 0x0, @private1, @private1}}}}}}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32, @ANYBLOB="1f003300d0000000080211000001080211000000505050505050"], 0x3c}}, 0x0)

2m22.245077239s ago: executing program 82 (id=3642):
syz_emit_ethernet(0x6a, &(0x7f0000000180)={@link_local, @dev, @val={@void}, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f53a04", 0x30, 0x3a, 0x0, @remote, @mcast2, {[], @param_prob={0x2, 0x0, 0x0, 0x500, {0x0, 0x6, "508359", 0x0, 0x0, 0x0, @private1, @private1}}}}}}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32, @ANYBLOB="1f003300d0000000080211000001080211000000505050505050"], 0x3c}}, 0x0)

10.827476628s ago: executing program 9 (id=3838):
socket$nl_route(0x10, 0x3, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd885000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x18)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='pagemap\x00')
pread64(r4, &(0x7f0000001240)=""/102400, 0x19000, 0x1000000300)

9.067382652s ago: executing program 5 (id=3841):
socket(0x2, 0x80805, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000200)={<r4=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x7a, &(0x7f0000000340)={r4, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84)

7.046984486s ago: executing program 5 (id=3844):
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x3e, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x6)
r3 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x80800)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[<r4=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r3, 0xc05064a7, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4})

7.018114669s ago: executing program 0 (id=3845):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
syz_mount_image$jfs(&(0x7f0000000080), &(0x7f0000000440)='./file0\x00', 0x0, &(0x7f0000000480)=ANY=[], 0xfd, 0x632a, &(0x7f0000013cc0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0x105042, 0x189)
dup(0xffffffffffffffff)
r1 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec29, 0x0, 0x1, 0x40000337}, &(0x7f0000000dc0)=<r2=>0x0, &(0x7f0000000080)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, 0x0)
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)
readv(r0, &(0x7f0000001c80)=[{&(0x7f0000001880)=""/194, 0xc2}], 0x1)

5.895317332s ago: executing program 0 (id=3846):
socket(0x2, 0x80805, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000200)={<r4=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x7a, &(0x7f0000000340)={r4, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84)

5.893161485s ago: executing program 5 (id=3847):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r0, 0x0, 0x4004)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee7, 0x8031, 0xffffffffffffffff, 0x3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='net/tcp\x00')
pread64(r3, &(0x7f0000000200)=""/123, 0x9e, 0xc8)

5.342937432s ago: executing program 9 (id=3848):
socket(0x2, 0x80805, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
shutdown(r0, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000200)={<r4=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x7a, &(0x7f0000000340)={r4, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84)

4.237786493s ago: executing program 5 (id=3849):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
gettid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000640), 0xffffffffffffffff)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r4, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x79, 0x4)
bind$inet(r4, 0x0, 0x0)
sendto$inet(r4, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001680)=ANY=[@ANYBLOB="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"], 0x60}, 0x1, 0x0, 0x0, 0x2002c0c4}, 0x0)
sendto$inet(r4, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)
r6 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
getsockopt$netrom_NETROM_T4(r6, 0x103, 0x6, 0x0, &(0x7f0000000200))
preadv2(r6, 0x0, 0x0, 0x0, 0x8, 0x0)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r4, 0x6, 0x23, 0x0, 0x0)

4.180411136s ago: executing program 9 (id=3850):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r3=>0x0)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010026bd70003c02000002000000080001", @ANYRES32=r3], 0x1c}}, 0x0)
writev(r0, &(0x7f0000000040)=[{0x0}, {&(0x7f0000000000)="2004", 0x2}], 0x2)

3.96778512s ago: executing program 0 (id=3851):
socket(0x2, 0x80805, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000200)={<r4=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x7a, &(0x7f0000000340)={r4, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84)

2.737235113s ago: executing program 5 (id=3852):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff85000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="020000000400000007000000020000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000680)=ANY=[@ANYRESDEC=r4, @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_type(r6, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_type(r7, &(0x7f0000000280), 0x9)
r8 = openat$cgroup_procs(r6, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r8, &(0x7f0000000c40), 0x12)
r9 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r10 = openat$cgroup_ro(r9, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r10, &(0x7f0000000200)=0x1, 0x12)

2.682660238s ago: executing program 9 (id=3853):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6)
ptrace$setregset(0x4205, r0, 0x200, &(0x7f0000000100)={0x0})
fsopen(0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r4}, 0x10)
syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x0, 0x2, 0x4}, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000740)={&(0x7f00000003c0)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000070000000400000000000004010000000061002e2e5f0069c29f15d16cb785fbd7f117145372dfbdfa04000000e9de771a574b6c2044f3dfe78b48c4d34e523742fea42e9d6d46dcede804c46dad5e83aacec88aca5c99ffccb15e819aec144603693bbc908f"], 0x0, 0x2b}, 0x28)

2.681681801s ago: executing program 0 (id=3854):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x1, 0x20}, 0xc)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x800, 0x0, 0x0, 0x8a}, 0x9c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x4e23, 0x0, @loopback}}, 0x100, 0x0, 0x0, 0x0, 0x54}, 0x9c)

1.513755128s ago: executing program 5 (id=3855):
syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x4018, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x5, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x0, 0x0, 0x7}}}}}]}}]}}, 0x0)
socket(0x400000000010, 0x3, 0x0)
r0 = io_uring_setup(0x669, &(0x7f0000000380)={0x0, 0x62f2, 0x1, 0x42, 0x181})
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = fsopen(0x0, 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r7 = memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xcda\x9b\x11X\x0e\xa1\xcf\x1a\x98S7\xc9\x00'/47, 0x2)
ftruncate(r7, 0xffff)
fcntl$addseals(r7, 0x409, 0x7)
ioctl$UDMABUF_CREATE(r6, 0x40187542, &(0x7f0000000000)={r7, 0x0, 0x0, 0x8000})
close_range(r0, 0xffffffffffffffff, 0x0)

1.277322504s ago: executing program 9 (id=3856):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
syz_mount_image$jfs(&(0x7f0000000080), &(0x7f0000000440)='./file0\x00', 0x0, &(0x7f0000000480)=ANY=[], 0xfd, 0x632a, &(0x7f0000013cc0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0x105042, 0x189)
dup(0xffffffffffffffff)
r1 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec29, 0x0, 0x1, 0x40000337}, &(0x7f0000000dc0)=<r2=>0x0, &(0x7f0000000080)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, 0x0)
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)
readv(r0, &(0x7f0000001c80)=[{&(0x7f0000001880)=""/194, 0xc2}], 0x1)

1.219013877s ago: executing program 0 (id=3857):
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec85000000750000000400000007"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x5c399000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
getpid()
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x20, 0x10, 0x701, 0x70bd2a, 0x0, {0xa}, [@typed={0xc, 0x2, 0x0, 0x0, @str='nl80211\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

62.280566ms ago: executing program 0 (id=3858):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r0, 0x0, 0x4004)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee7, 0x8031, 0xffffffffffffffff, 0x3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='net/tcp\x00')
pread64(r3, &(0x7f0000000200)=""/123, 0x9e, 0xc8)

0s ago: executing program 9 (id=3859):
r0 = socket(0x2, 0x80805, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
shutdown(r1, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000000280)={0x0, 0x3ff}, 0x8)

kernel console output (not intermixed with test programs):

? srso_alias_return_thunk+0x5/0xfbef5
[ 1990.058749][T18325]  ? find_held_lock+0x2b/0x80
[ 1990.058809][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1990.058869][T18325]  f2fs_sync_dirty_inodes+0x2a9/0x960
[ 1990.058948][T18325]  block_operations+0x2b0/0xff0
[ 1990.058999][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1990.059049][T18325]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1990.059113][T18325]  ? finish_task_switch.isra.0+0x8c3/0xbd0
[ 1990.059181][T18325]  ? __pfx_block_operations+0x10/0x10
[ 1990.059233][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1990.059279][T18325]  ? __schedule+0x10b9/0x6150
[ 1990.059390][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1990.059435][T18325]  ? ktime_get+0x200/0x310
[ 1990.059474][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1990.059515][T18325]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1990.059568][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1990.059608][T18325]  ? rcu_is_watching+0x12/0xc0
[ 1990.059648][T18325]  f2fs_write_checkpoint+0x326/0x52f0
[ 1990.059701][T18325]  ? __pfx_try_to_wake_up+0x10/0x10
[ 1990.059759][T18325]  ? f2fs_stop_gc_thread+0x79/0xd0
[ 1990.059819][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1990.059859][T18325]  ? rcu_is_watching+0x12/0xc0
[ 1990.059890][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1990.059931][T18325]  ? kthread_stop+0x272/0x5d0
[ 1990.059976][T18325]  kill_f2fs_super+0x3d0/0x480
[ 1990.060032][T18325]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 1990.060102][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1990.060160][T18325]  deactivate_locked_super+0xc1/0x1a0
[ 1990.060198][T18325]  deactivate_super+0xde/0x100
[ 1990.060236][T18325]  cleanup_mnt+0x225/0x450
[ 1990.060282][T18325]  task_work_run+0x150/0x240
[ 1990.060330][T18325]  ? __pfx_task_work_run+0x10/0x10
[ 1990.060391][T18325]  exit_to_user_mode_loop+0xfb/0x540
[ 1990.060440][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1990.060489][T18325]  do_syscall_64+0x4ee/0xf80
[ 1990.060546][T18325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1990.060581][T18325] RIP: 0033:0x7fc50a790a77
[ 1990.060608][T18325] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 1990.060641][T18325] RSP: 002b:00007fff2ff8aa38 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1990.060673][T18325] RAX: 0000000000000000 RBX: 00007fc50a813d7d RCX: 00007fc50a790a77
[ 1990.060696][T18325] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff2ff8aaf0
[ 1990.060717][T18325] RBP: 00007fff2ff8aaf0 R08: 0000000000000000 R09: 0000000000000000
[ 1990.060739][T18325] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff2ff8bb80
[ 1990.060761][T18325] R13: 00007fc50a813d7d R14: 00000000001e5a04 R15: 00007fff2ff8bbc0
[ 1990.060813][T18325]  </TASK>
[ 1990.061106][T18325] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[ 1990.862176][T22152] loop5: detected capacity change from 0 to 32768
[ 1990.916026][ T1103] team0 (unregistering): Port device team_slave_1 removed
[ 1990.935145][ T5844] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1990.946606][ T5834] Bluetooth: hci5: command 0x1003 tx timeout
[ 1991.202210][ T1103] team0 (unregistering): Port device team_slave_0 removed
[ 1994.459951][T22169] overlayfs: missing 'lowerdir'
[ 1995.229826][T22178] binder: BINDER_SET_CONTEXT_MGR already set
[ 1995.235943][T22178] binder: 22171:22178 ioctl 4018620d 2000000002c0 returned -16
[ 1996.098550][T22179] binder: BINDER_SET_CONTEXT_MGR already set
[ 1996.104628][T22179] binder: 22174:22179 ioctl 4018620d 2000000002c0 returned -16
[ 1998.928856][T22195] binder: BINDER_SET_CONTEXT_MGR already set
[ 1998.935140][T22195] binder: 22192:22195 ioctl 4018620d 2000000002c0 returned -16
[ 2000.022804][T10287] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[ 2000.195221][T10287] usb 1-1: Using ep0 maxpacket: 32
[ 2000.279859][T22203] binder: BINDER_SET_CONTEXT_MGR already set
[ 2000.285995][T22203] binder: 22198:22203 ioctl 4018620d 2000000002c0 returned -16
[ 2001.008268][T10287] usb 1-1: New USB device found, idVendor=041e, idProduct=403c, bcdDevice=cc.d7
[ 2001.037745][T10287] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2001.067125][T10287] usb 1-1: config 0 descriptor??
[ 2001.117956][T10287] gspca_main: sq930x-2.14.0 probing 041e:403c
[ 2001.143123][T21957] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2001.186577][T21957] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2001.301216][T21957] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2001.348888][T10287] gspca_sq930x: reg_r 001f failed -32
[ 2001.364241][T10287] sq930x 1-1:0.0: probe with driver sq930x failed with error -32
[ 2001.673118][T21957] hsr_slave_0: entered promiscuous mode
[ 2001.711312][T21957] hsr_slave_1: entered promiscuous mode
[ 2001.761361][T21957] debugfs: 'hsr0' already exists in 'hsr'
[ 2001.767132][T21957] Cannot create hsr debugfs directory
[ 2001.801529][ T5844] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 2001.811674][ T5844] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 2001.820148][ T5844] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 2001.828438][ T5844] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 2001.837772][ T5844] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 2003.890367][ T5834] Bluetooth: hci5: command tx timeout
[ 2003.927236][ T6060] usb 1-1: USB disconnect, device number 11
[ 2004.561987][T22209] loop9: detected capacity change from 0 to 32768
[ 2004.610062][T22209] XFS (loop9): DAX unsupported by block device. Turning off DAX.
[ 2004.651394][T22209] XFS (loop9): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 2004.703375][T22228] loop4: detected capacity change from 0 to 512
[ 2004.728663][T22209] XFS (loop9): Ending clean mount
[ 2004.869311][T13666] XFS (loop9): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 2005.354646][ T6143] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2006.011224][ T5834] Bluetooth: hci5: command tx timeout
[ 2007.164536][ T6143] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2007.547154][ T6143] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2007.597485][T22211] chnl_net:caif_netlink_parms(): no params data found
[ 2008.062290][ T5834] Bluetooth: hci5: command tx timeout
[ 2008.772433][ T6143] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2010.750067][ T5834] Bluetooth: hci5: command tx timeout
[ 2011.298222][T22211] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2011.315645][T22211] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2011.328111][T22211] bridge_slave_0: entered allmulticast mode
[ 2011.346387][T22211] bridge_slave_0: entered promiscuous mode
[ 2011.415453][T22211] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2011.435376][T22211] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2011.458010][T22211] bridge_slave_1: entered allmulticast mode
[ 2011.479824][T22211] bridge_slave_1: entered promiscuous mode
[ 2011.511120][T22260] loop9: detected capacity change from 0 to 40427
[ 2011.557790][T22260] F2FS-fs (loop9): invalid crc value
[ 2011.570254][T21957] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 2011.698649][T21957] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 2011.732925][ T6143] bridge_slave_1: left allmulticast mode
[ 2011.754103][T22260] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 2011.759508][ T6143] bridge_slave_1: left promiscuous mode
[ 2011.787024][ T6143] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2011.841474][ T6143] bridge_slave_0: left allmulticast mode
[ 2011.847165][ T6143] bridge_slave_0: left promiscuous mode
[ 2011.868097][ T6143] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2011.960652][T22270] loop4: detected capacity change from 0 to 32768
[ 2011.994109][T22270] 
[ 2011.994109][T22270]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2011.994109][T22270] 
[ 2012.035307][T22270] 
[ 2012.035307][T22270]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2012.035307][T22270] 
[ 2012.077950][T22270] 
[ 2012.077950][T22270]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2012.077950][T22270] 
[ 2012.089887][T22270] 
[ 2012.089887][T22270]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2012.089887][T22270] 
[ 2012.102967][T22270] 
[ 2012.102967][T22270]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2012.102967][T22270] 
[ 2012.128092][  T111] 
[ 2012.128092][  T111]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2012.128092][  T111] 
[ 2012.132088][   T31] audit: type=1800 audit(1769931962.848:4659): pid=22270 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.3619" name="file2" dev="loop4" ino=7 res=0 errno=0
[ 2012.155432][T22272] loop0: detected capacity change from 0 to 32768
[ 2012.262748][T22272] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[ 2012.298383][T22272] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 2012.408750][T22272] XFS (loop0): Ending clean mount
[ 2012.550634][ T2961] 
[ 2012.550634][ T2961]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2012.550634][ T2961] 
[ 2012.554423][T18325] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 2012.655106][ T2961] 
[ 2012.655106][ T2961]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2012.655106][ T2961] 
[ 2012.695330][  T111] 
[ 2012.695330][  T111]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2012.695330][  T111] 
[ 2012.747588][T16250] 
[ 2012.747588][T16250]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2012.747588][T16250] 
[ 2012.772514][T16250] 
[ 2012.772514][T16250]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2012.772514][T16250] 
[ 2013.908866][T14416] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[ 2014.228191][ T6143] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2014.266524][ T6143] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2014.278401][ T6143] bond0 (unregistering): Released all slaves
[ 2014.299711][T22211] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2014.310840][T21957] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 2014.340166][T22211] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2014.349693][T21957] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 2014.612569][T22312] binder: BINDER_SET_CONTEXT_MGR already set
[ 2014.618668][T22312] binder: 22299:22312 ioctl 4018620d 2000000002c0 returned -16
[ 2014.628512][T22304] binder: BINDER_SET_CONTEXT_MGR already set
[ 2014.634627][T22304] binder: 22290:22304 ioctl 4018620d 2000000002c0 returned -16
[ 2014.712239][T22311] binder: BINDER_SET_CONTEXT_MGR already set
[ 2014.718343][T22311] binder: 22302:22311 ioctl 4018620d 2000000002c0 returned -16
[ 2015.223696][T22211] team0: Port device team_slave_0 added
[ 2015.231218][T14416] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 2015.238885][T22211] team0: Port device team_slave_1 added
[ 2015.475950][T14416] usb 5-1: config 6 has an invalid interface number: 200 but max is 0
[ 2015.494644][T14416] usb 5-1: config 6 has no interface number 0
[ 2015.510691][T14416] usb 5-1: config 6 interface 200 has no altsetting 0
[ 2015.532420][T22211] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2015.555467][T22211] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2015.581520][T14416] usb 5-1: New USB device found, idVendor=05d8, idProduct=810c, bcdDevice=18.5f
[ 2015.581569][T14416] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2015.581606][T14416] usb 5-1: Product: syz
[ 2015.581634][T14416] usb 5-1: Manufacturer: syz
[ 2015.581662][T14416] usb 5-1: SerialNumber: syz
[ 2015.617103][T22211] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2015.942197][T22211] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2015.951880][T22211] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2015.982553][T22211] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2016.334916][T22324] binder: BINDER_SET_CONTEXT_MGR already set
[ 2016.341123][T22324] binder: 22314:22324 ioctl 4018620d 2000000002c0 returned -16
[ 2018.638540][T14416] dvb-usb: found a 'Artec T14 - USB2.0 DVB-T' in warm state.
[ 2018.656598][T14416] dvb-usb: bulk message failed: -71 (3/0)
[ 2018.688618][T14416] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 2018.699807][T22211] hsr_slave_0: entered promiscuous mode
[ 2018.717912][T22211] hsr_slave_1: entered promiscuous mode
[ 2018.745768][T22211] debugfs: 'hsr0' already exists in 'hsr'
[ 2018.787963][T22211] Cannot create hsr debugfs directory
[ 2018.973663][T14416] dvbdev: DVB: registering new adapter (Artec T14 - USB2.0 DVB-T)
[ 2018.991156][T14416] usb 5-1: media controller created
[ 2019.011058][T14416] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 2019.130186][T22337] binder: BINDER_SET_CONTEXT_MGR already set
[ 2019.136286][T22337] binder: 22329:22337 ioctl 4018620d 2000000002c0 returned -16
[ 2019.914059][T14416] dvb-usb: bulk message failed: -71 (6/0)
[ 2019.950378][T14416] dvb-usb: bulk message failed: -71 (6/0)
[ 2019.964962][T14416] dvb-usb: no frontend was attached by 'Artec T14 - USB2.0 DVB-T'
[ 2019.965407][ T6143] hsr_slave_0: left promiscuous mode
[ 2019.995998][T14416] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.4/usb5/5-1/input/input62
[ 2020.022314][ T5844] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 2020.033714][ T5844] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 2020.042449][ T5844] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 2020.050882][ T5844] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 2020.058587][ T5844] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 2020.093974][ T6143] hsr_slave_1: left promiscuous mode
[ 2020.103732][T14416] dvb-usb: schedule remote query interval to 150 msecs.
[ 2020.110846][T14416] dvb-usb: Artec T14 - USB2.0 DVB-T successfully initialized and connected.
[ 2020.122709][T14416] usb 5-1: USB disconnect, device number 31
[ 2020.138137][ T6143] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2020.145674][ T6143] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2020.189914][ T6143] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2020.214991][ T6143] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2020.492153][T14416] dvb-usb: Artec T14 - USB2.0 DVB-T successfully deinitialized and disconnected.
[ 2020.519601][ T6143] veth1_macvtap: left promiscuous mode
[ 2020.529756][ T6143] veth0_macvtap: left promiscuous mode
[ 2020.543610][ T6143] veth1_vlan: left promiscuous mode
[ 2020.572222][ T6143] veth0_vlan: left promiscuous mode
[ 2021.172579][T22344] loop5: detected capacity change from 0 to 32768
[ 2021.539257][T22334] loop4: detected capacity change from 0 to 40427
[ 2021.549920][T22334] F2FS-fs (loop4): invalid crc value
[ 2022.464408][ T5834] Bluetooth: hci1: command tx timeout
[ 2023.526898][T22334] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 2023.634884][T22371] binder: BINDER_SET_CONTEXT_MGR already set
[ 2023.640954][T22371] binder: 22366:22371 ioctl 4018620d 2000000002c0 returned -16
[ 2024.523280][ T5834] Bluetooth: hci1: command tx timeout
[ 2025.912880][ T5967] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[ 2026.085620][ T5967] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 2026.280371][ T5967] usb 1-1: config 6 has an invalid interface number: 200 but max is 0
[ 2026.526589][T22387] overlayfs: overlapping lowerdir path
[ 2026.626313][T22389] overlayfs: overlapping lowerdir path
[ 2026.633821][ T5834] Bluetooth: hci1: command tx timeout
[ 2026.972553][ T5967] usb 1-1: config 6 has no interface number 0
[ 2026.982616][ T5967] usb 1-1: config 6 interface 200 has no altsetting 0
[ 2027.007669][ T5967] usb 1-1: New USB device found, idVendor=05d8, idProduct=810c, bcdDevice=18.5f
[ 2027.149707][ T5967] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2027.165991][ T5967] usb 1-1: Product: syz
[ 2027.183699][ T5967] usb 1-1: Manufacturer: syz
[ 2027.188327][ T5967] usb 1-1: SerialNumber: syz
[ 2028.705188][ T5834] Bluetooth: hci1: command tx timeout
[ 2030.177882][T22413] loop5: detected capacity change from 0 to 512
[ 2030.194415][ T6143] team0 (unregistering): Port device team_slave_1 removed
[ 2030.329818][ T5967] dvb-usb: found a 'Artec T14 - USB2.0 DVB-T' in warm state.
[ 2030.345740][ T5967] dvb-usb: bulk message failed: -71 (3/0)
[ 2030.379706][ T5967] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 2030.452002][ T5967] dvbdev: DVB: registering new adapter (Artec T14 - USB2.0 DVB-T)
[ 2030.459993][ T5967] usb 1-1: media controller created
[ 2031.217710][ T6221] Bluetooth: hci3: Frame reassembly failed (-84)
[ 2031.243930][ T6221] Bluetooth: hci3: Frame reassembly failed (-84)
[ 2033.450986][ T5844] Bluetooth: hci3: command 0x1003 tx timeout
[ 2033.459515][ T5834] Bluetooth: hci3: Opcode 0x1003 failed: -110
[ 2034.239491][ T5967] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 2036.250590][ T5967] dvb-usb: bulk message failed: -71 (6/0)
[ 2036.263548][ T5967] dvb-usb: bulk message failed: -71 (6/0)
[ 2036.269545][ T5967] dvb-usb: no frontend was attached by 'Artec T14 - USB2.0 DVB-T'
[ 2036.283641][ T5967] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb1/1-1/input/input63
[ 2036.298110][ T5967] dvb-usb: schedule remote query interval to 150 msecs.
[ 2036.306058][ T5967] dvb-usb: Artec T14 - USB2.0 DVB-T successfully initialized and connected.
[ 2036.306506][ T6143] team0 (unregistering): Port device team_slave_0 removed
[ 2036.332704][ T5967] usb 1-1: USB disconnect, device number 12
[ 2036.534740][ T5967] dvb-usb: Artec T14 - USB2.0 DVB-T successfully deinitialized and disconnected.
[ 2038.238204][T22433] overlayfs: overlapping lowerdir path
[ 2038.285821][T22433] overlayfs: overlapping lowerdir path
[ 2039.192640][T22435] loop5: detected capacity change from 0 to 32768
[ 2041.209207][T22440] loop0: detected capacity change from 0 to 40427
[ 2041.230390][T22440] F2FS-fs (loop0): invalid crc value
[ 2041.369542][T22440] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 2041.382140][ T5844] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 2041.392229][ T5844] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 2041.400391][ T5844] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 2041.413043][ T5844] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 2041.420913][ T5844] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 2041.453953][T22440] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 2042.938177][T22467] loop9: detected capacity change from 0 to 512
[ 2042.958041][T22467] EXT4-fs (loop9): DAX unsupported by block device.
[ 2043.034304][T18325] syz-executor: attempt to access beyond end of device
[ 2043.034304][T18325] loop0: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 2043.071490][T18325] CPU: 0 UID: 0 PID: 18325 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2043.071549][T18325] Tainted: [L]=SOFTLOCKUP
[ 2043.071563][T18325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 2043.071587][T18325] Call Trace:
[ 2043.071599][T18325]  <TASK>
[ 2043.071615][T18325]  dump_stack_lvl+0x16c/0x1f0
[ 2043.071679][T18325]  f2fs_handle_critical_error+0x624/0x9f0
[ 2043.071731][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.071779][T18325]  ? f2fs_build_fault_attr+0x53/0x1f0
[ 2043.071853][T18325]  f2fs_write_end_io+0x958/0xcf0
[ 2043.071905][T18325]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 2043.071959][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.072018][T18325]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 2043.072069][T18325]  bio_endio+0x751/0x8a0
[ 2043.072132][T18325]  submit_bio_noacct+0x306/0x1f40
[ 2043.072192][T18325]  __submit_merged_bio+0x33c/0x710
[ 2043.072246][T18325]  __submit_merged_write_cond+0x315/0x3f0
[ 2043.072307][T18325]  f2fs_write_cache_pages+0x2075/0x2570
[ 2043.072395][T18325]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[ 2043.072457][T18325]  ? __lock_acquire+0x436/0x2890
[ 2043.072517][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.072563][T18325]  ? __lock_acquire+0x436/0x2890
[ 2043.072655][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.072745][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.072791][T18325]  ? __lock_acquire+0x436/0x2890
[ 2043.072844][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.072899][T18325]  f2fs_write_data_pages+0x5ac/0x1080
[ 2043.072967][T18325]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2043.073035][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.073093][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.073138][T18325]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2043.073197][T18325]  do_writepages+0x27a/0x600
[ 2043.073248][T18325]  ? __pfx_do_writepages+0x10/0x10
[ 2043.073289][T18325]  ? do_raw_spin_unlock+0x172/0x230
[ 2043.073345][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.073391][T18325]  ? _raw_spin_unlock+0x28/0x50
[ 2043.073451][T18325]  filemap_writeback+0x225/0x2d0
[ 2043.073501][T18325]  ? __pfx_filemap_writeback+0x10/0x10
[ 2043.073610][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.073656][T18325]  ? find_held_lock+0x2b/0x80
[ 2043.073741][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.073802][T18325]  f2fs_sync_dirty_inodes+0x2a9/0x960
[ 2043.073883][T18325]  block_operations+0x2b0/0xff0
[ 2043.073935][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.073981][T18325]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2043.074052][T18325]  ? finish_task_switch.isra.0+0x8c3/0xbd0
[ 2043.074122][T18325]  ? __pfx_block_operations+0x10/0x10
[ 2043.074174][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.074221][T18325]  ? __schedule+0x10b9/0x6150
[ 2043.074335][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.074384][T18325]  ? ktime_get+0x200/0x310
[ 2043.074428][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.074473][T18325]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2043.074533][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.074579][T18325]  ? rcu_is_watching+0x12/0xc0
[ 2043.074623][T18325]  f2fs_write_checkpoint+0x326/0x52f0
[ 2043.074684][T18325]  ? __pfx_try_to_wake_up+0x10/0x10
[ 2043.074750][T18325]  ? f2fs_stop_gc_thread+0x79/0xd0
[ 2043.074815][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.074861][T18325]  ? rcu_is_watching+0x12/0xc0
[ 2043.074896][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.074942][T18325]  ? kthread_stop+0x272/0x5d0
[ 2043.074993][T18325]  kill_f2fs_super+0x3d0/0x480
[ 2043.075057][T18325]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 2043.075134][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.075200][T18325]  deactivate_locked_super+0xc1/0x1a0
[ 2043.075243][T18325]  deactivate_super+0xde/0x100
[ 2043.075285][T18325]  cleanup_mnt+0x225/0x450
[ 2043.075335][T18325]  task_work_run+0x150/0x240
[ 2043.075389][T18325]  ? __pfx_task_work_run+0x10/0x10
[ 2043.075457][T18325]  exit_to_user_mode_loop+0xfb/0x540
[ 2043.075579][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.075635][T18325]  do_syscall_64+0x4ee/0xf80
[ 2043.075700][T18325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2043.075738][T18325] RIP: 0033:0x7fc50a790a77
[ 2043.075769][T18325] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 2043.075808][T18325] RSP: 002b:00007fff2ff8aa38 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 2043.075845][T18325] RAX: 0000000000000000 RBX: 00007fc50a813d7d RCX: 00007fc50a790a77
[ 2043.075871][T18325] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff2ff8aaf0
[ 2043.075896][T18325] RBP: 00007fff2ff8aaf0 R08: 0000000000000000 R09: 0000000000000000
[ 2043.075921][T18325] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff2ff8bb80
[ 2043.075946][T18325] R13: 00007fc50a813d7d R14: 00000000001f2a37 R15: 00007fff2ff8bbc0
[ 2043.076004][T18325]  </TASK>
[ 2043.308085][T18325] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[ 2043.412565][T22345] chnl_net:caif_netlink_parms(): no params data found
[ 2043.441702][T18325] CPU: 1 UID: 0 PID: 18325 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2043.441758][T18325] Tainted: [L]=SOFTLOCKUP
[ 2043.441772][T18325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 2043.441800][T18325] Call Trace:
[ 2043.441813][T18325]  <TASK>
[ 2043.441828][T18325]  dump_stack_lvl+0x16c/0x1f0
[ 2043.441890][T18325]  f2fs_handle_critical_error+0x624/0x9f0
[ 2043.441934][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.441979][T18325]  ? f2fs_build_fault_attr+0x53/0x1f0
[ 2043.442050][T18325]  f2fs_write_end_io+0x958/0xcf0
[ 2043.442100][T18325]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 2043.442152][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.442208][T18325]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 2043.442251][T18325]  bio_endio+0x751/0x8a0
[ 2043.442311][T18325]  submit_bio_noacct+0x306/0x1f40
[ 2043.442368][T18325]  __submit_merged_bio+0x33c/0x710
[ 2043.442420][T18325]  __submit_merged_write_cond+0x315/0x3f0
[ 2043.442478][T18325]  f2fs_write_cache_pages+0x2075/0x2570
[ 2043.442562][T18325]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[ 2043.442621][T18325]  ? __lock_acquire+0x436/0x2890
[ 2043.442679][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.442722][T18325]  ? __lock_acquire+0x436/0x2890
[ 2043.442818][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.442906][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.442949][T18325]  ? __lock_acquire+0x436/0x2890
[ 2043.443001][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.443054][T18325]  f2fs_write_data_pages+0x5ac/0x1080
[ 2043.443118][T18325]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2043.443183][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.443232][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.443276][T18325]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2043.443331][T18325]  do_writepages+0x27a/0x600
[ 2043.443380][T18325]  ? __pfx_do_writepages+0x10/0x10
[ 2043.443419][T18325]  ? do_raw_spin_unlock+0x172/0x230
[ 2043.443472][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.443515][T18325]  ? _raw_spin_unlock+0x28/0x50
[ 2043.443572][T18325]  filemap_writeback+0x225/0x2d0
[ 2043.443619][T18325]  ? __pfx_filemap_writeback+0x10/0x10
[ 2043.443725][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.443769][T18325]  ? find_held_lock+0x2b/0x80
[ 2043.443832][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.443891][T18325]  f2fs_sync_dirty_inodes+0x2a9/0x960
[ 2043.443968][T18325]  block_operations+0x2b0/0xff0
[ 2043.444018][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.444066][T18325]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2043.444128][T18325]  ? finish_task_switch.isra.0+0x8c3/0xbd0
[ 2043.444193][T18325]  ? __pfx_block_operations+0x10/0x10
[ 2043.444243][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.444288][T18325]  ? __schedule+0x10b9/0x6150
[ 2043.444400][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.444447][T18325]  ? ktime_get+0x200/0x310
[ 2043.444488][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.444532][T18325]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2043.444588][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.444631][T18325]  ? rcu_is_watching+0x12/0xc0
[ 2043.444674][T18325]  f2fs_write_checkpoint+0x326/0x52f0
[ 2043.444731][T18325]  ? __pfx_try_to_wake_up+0x10/0x10
[ 2043.444792][T18325]  ? f2fs_stop_gc_thread+0x79/0xd0
[ 2043.444861][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.444904][T18325]  ? rcu_is_watching+0x12/0xc0
[ 2043.444938][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.444981][T18325]  ? kthread_stop+0x272/0x5d0
[ 2043.445030][T18325]  kill_f2fs_super+0x3d0/0x480
[ 2043.445085][T18325]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 2043.445159][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.445222][T18325]  deactivate_locked_super+0xc1/0x1a0
[ 2043.445263][T18325]  deactivate_super+0xde/0x100
[ 2043.445304][T18325]  cleanup_mnt+0x225/0x450
[ 2043.445353][T18325]  task_work_run+0x150/0x240
[ 2043.445404][T18325]  ? __pfx_task_work_run+0x10/0x10
[ 2043.445470][T18325]  exit_to_user_mode_loop+0xfb/0x540
[ 2043.445522][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2043.445573][T18325]  do_syscall_64+0x4ee/0xf80
[ 2043.445635][T18325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2043.445672][T18325] RIP: 0033:0x7fc50a790a77
[ 2043.445705][T18325] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 2043.445742][T18325] RSP: 002b:00007fff2ff8aa38 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 2043.445776][T18325] RAX: 0000000000000000 RBX: 00007fc50a813d7d RCX: 00007fc50a790a77
[ 2043.445806][T18325] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff2ff8aaf0
[ 2043.445829][T18325] RBP: 00007fff2ff8aaf0 R08: 0000000000000000 R09: 0000000000000000
[ 2043.445852][T18325] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff2ff8bb80
[ 2043.445876][T18325] R13: 00007fc50a813d7d R14: 00000000001f2a37 R15: 00007fff2ff8bbc0
[ 2043.445933][T18325]  </TASK>
[ 2043.445947][T18325] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[ 2043.623559][ T5844] Bluetooth: hci3: command tx timeout
[ 2044.897322][T22477] binder: 22476:22477 ioctl 4018620d 0 returned -22
[ 2045.220809][ T6143] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2045.248097][T22454] chnl_net:caif_netlink_parms(): no params data found
[ 2046.139499][ T5834] Bluetooth: hci3: command tx timeout
[ 2046.504040][T22489] binder: BINDER_SET_CONTEXT_MGR already set
[ 2046.510173][T22489] binder: 22482:22489 ioctl 4018620d 2000000002c0 returned -16
[ 2046.525711][ T5844] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 2046.970267][ T5834] Bluetooth: hci6: command 0x1003 tx timeout
[ 2046.985342][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[ 2046.993501][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[ 2047.080129][T22492] binder: 22491:22492 ioctl 4018620d 0 returned -22
[ 2047.387311][ T6143] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2048.255340][ T5834] Bluetooth: hci3: command tx timeout
[ 2048.427498][T22345] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2048.465022][T22345] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2048.488654][T22345] bridge_slave_0: entered allmulticast mode
[ 2048.523976][T22345] bridge_slave_0: entered promiscuous mode
[ 2048.644093][T22345] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2048.675361][T22345] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2048.915344][T22345] bridge_slave_1: entered allmulticast mode
[ 2048.935454][T22345] bridge_slave_1: entered promiscuous mode
[ 2050.291466][ T5834] Bluetooth: hci3: command tx timeout
[ 2051.051500][ T6143] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2051.187647][T22454] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2051.211169][T22454] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2051.257641][T22454] bridge_slave_0: entered allmulticast mode
[ 2051.298345][T22454] bridge_slave_0: entered promiscuous mode
[ 2051.779275][T22454] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2051.788008][T22454] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2051.806261][T22454] bridge_slave_1: entered allmulticast mode
[ 2051.831604][T22454] bridge_slave_1: entered promiscuous mode
[ 2051.912191][ T6143] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2051.958351][T22345] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2052.246554][T22531] netlink: 1363 bytes leftover after parsing attributes in process `syz.5.3674'.
[ 2052.317998][T22345] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2052.435987][T22454] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2052.581907][T22535] loop0: detected capacity change from 0 to 512
[ 2052.616330][T22454] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2052.654340][T22345] team0: Port device team_slave_0 added
[ 2052.660680][T22535] EXT4-fs (loop0): DAX unsupported by block device.
[ 2053.107537][T22543] binder: BINDER_SET_CONTEXT_MGR already set
[ 2053.113741][T22543] binder: 22536:22543 ioctl 4018620d 2000000002c0 returned -16
[ 2054.561819][T22345] team0: Port device team_slave_1 added
[ 2054.803319][T22454] team0: Port device team_slave_0 added
[ 2054.827267][T22211] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 2055.004830][T22454] team0: Port device team_slave_1 added
[ 2055.747851][T22211] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 2056.089382][T22554] loop9: detected capacity change from 0 to 32768
[ 2056.101795][ T5834] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 2056.132692][ T5844] Bluetooth: hci6: command 0x1003 tx timeout
[ 2056.309116][T22554] 
[ 2056.309116][T22554]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2056.309116][T22554] 
[ 2056.576452][T22454] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2056.606339][T22454] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2056.644334][T13666] 
[ 2056.644334][T13666]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2056.644334][T13666] 
[ 2056.718800][T13666] 
[ 2056.718800][T13666]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2056.718800][T13666] 
[ 2056.752520][T22454] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2056.791663][T22345] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2056.834820][T22345] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2056.907352][T22345] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2056.957668][T22211] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 2057.244865][T22211] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 2057.287693][T22454] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2057.336682][T22454] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2057.397160][T22454] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2057.429782][T22345] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2057.445460][T22345] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2057.501459][T22345] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2061.124112][T22345] hsr_slave_0: entered promiscuous mode
[ 2061.144885][T22345] hsr_slave_1: entered promiscuous mode
[ 2061.162280][T22345] debugfs: 'hsr0' already exists in 'hsr'
[ 2061.179854][T22345] Cannot create hsr debugfs directory
[ 2062.199899][T22454] hsr_slave_0: entered promiscuous mode
[ 2062.239309][T22454] hsr_slave_1: entered promiscuous mode
[ 2062.250766][T22454] debugfs: 'hsr0' already exists in 'hsr'
[ 2062.256529][T22454] Cannot create hsr debugfs directory
[ 2064.309011][T22605] loop5: detected capacity change from 0 to 512
[ 2064.902304][T15536] Bluetooth: hci7: Frame reassembly failed (-84)
[ 2064.994139][T22028] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 2065.026070][T22028] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 2065.042921][T22028] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 2065.068549][T22028] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 2065.098181][T22028] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 2066.829326][ T5834] Bluetooth: hci7: Opcode 0x1003 failed: -110
[ 2066.837593][T22028] Bluetooth: hci7: command 0x1003 tx timeout
[ 2067.379951][ T5834] Bluetooth: hci6: command tx timeout
[ 2069.648249][ T5834] Bluetooth: hci6: command tx timeout
[ 2071.707615][ T5834] Bluetooth: hci6: command tx timeout
[ 2073.906388][ T5834] Bluetooth: hci6: command tx timeout
[ 2074.977163][ T6143] bridge_slave_1: left allmulticast mode
[ 2074.983207][ T6143] bridge_slave_1: left promiscuous mode
[ 2074.990123][ T6143] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2075.098891][ T6143] bridge_slave_0: left allmulticast mode
[ 2075.176051][ T6143] bridge_slave_0: left promiscuous mode
[ 2075.182861][ T6143] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2078.646987][T22700] binder: BINDER_SET_CONTEXT_MGR already set
[ 2078.653148][T22700] binder: 22693:22700 ioctl 4018620d 2000000002c0 returned -16
[ 2079.712818][T22698] loop0: detected capacity change from 0 to 40427
[ 2079.774670][T22698] F2FS-fs (loop0): invalid crc value
[ 2080.179792][T22028] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 2080.199422][T22028] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 2080.550370][T22028] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 2080.558589][T22028] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 2080.568351][T22028] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 2080.600105][ T6143] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2080.614932][ T6143] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2080.628613][ T6143] bond0 (unregistering): Released all slaves
[ 2082.136764][T22698] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 2082.244887][ T6143] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2082.261185][ T6143] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2082.273106][ T6143] bond0 (unregistering): Released all slaves
[ 2082.309866][T22732] netlink: 1363 bytes leftover after parsing attributes in process `syz.5.3717'.
[ 2082.525796][ T6143] tipc: Left network mode
[ 2082.571151][T22730] loop9: detected capacity change from 0 to 32768
[ 2082.584358][T22028] Bluetooth: hci5: command tx timeout
[ 2082.596403][T22730] 
[ 2082.596403][T22730]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2082.596403][T22730] 
[ 2082.622040][T22730] 
[ 2082.622040][T22730]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2082.622040][T22730] 
[ 2082.632570][T22730] 
[ 2082.632570][T22730]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2082.632570][T22730] 
[ 2082.643188][T22730] 
[ 2082.643188][T22730]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2082.643188][T22730] 
[ 2082.653705][T22730] 
[ 2082.653705][T22730]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2082.653705][T22730] 
[ 2082.664855][   T31] audit: type=1800 audit(1769932033.402:4660): pid=22730 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.3718" name="file2" dev="loop9" ino=7 res=0 errno=0
[ 2082.693169][  T111] 
[ 2082.693169][  T111]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2082.693169][  T111] 
[ 2082.890141][T22711] 
[ 2082.890141][T22711]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2082.890141][T22711] 
[ 2082.910103][T22711] 
[ 2082.910103][T22711]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2082.910103][T22711] 
[ 2082.921426][  T111] 
[ 2082.921426][  T111]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2082.921426][  T111] 
[ 2082.936932][T13666] 
[ 2082.936932][T13666]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2082.936932][T13666] 
[ 2082.961120][T13666] 
[ 2082.961120][T13666]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2082.961120][T13666] 
[ 2083.058552][T22607] chnl_net:caif_netlink_parms(): no params data found
[ 2083.199323][T22737] binder: BINDER_SET_CONTEXT_MGR already set
[ 2083.205482][T22737] binder: 22734:22737 ioctl 4018620d 2000000002c0 returned -16
[ 2084.683396][T22028] Bluetooth: hci5: command tx timeout
[ 2087.723977][T22028] Bluetooth: hci5: command tx timeout
[ 2087.941908][ T6143] hsr_slave_0: left promiscuous mode
[ 2087.973283][ T6143] hsr_slave_1: left promiscuous mode
[ 2087.988568][ T6143] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2088.009064][T22772] loop0: detected capacity change from 0 to 512
[ 2088.022284][ T6143] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2088.032753][ T5967] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[ 2088.033246][ T6143] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2088.049514][T22772] EXT4-fs (loop0): DAX unsupported by block device.
[ 2088.072546][ T6143] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2088.098180][ T6143] hsr_slave_0: left promiscuous mode
[ 2088.192223][ T5967] usb 6-1: device descriptor read/64, error -71
[ 2088.312249][ T6143] hsr_slave_1: left promiscuous mode
[ 2088.318345][ T6143] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2088.333105][ T6143] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2088.540911][ T7807] Bluetooth: hci7: Frame reassembly failed (-84)
[ 2089.027880][ T6143] veth1_macvtap: left promiscuous mode
[ 2089.042003][ T6143] veth0_macvtap: left promiscuous mode
[ 2089.047698][ T6143] veth1_vlan: left promiscuous mode
[ 2089.058988][ T6143] veth0_vlan: left promiscuous mode
[ 2089.091952][ T5967] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[ 2089.221971][ T5967] usb 6-1: device descriptor read/64, error -71
[ 2089.343928][ T5967] usb usb6-port1: attempt power cycle
[ 2091.601330][T22028] Bluetooth: hci7: Opcode 0x1003 failed: -110
[ 2091.614378][T22028] Bluetooth: hci5: command tx timeout
[ 2091.966316][ T6143] team0 (unregistering): Port device team_slave_1 removed
[ 2092.040501][ T6143] team0 (unregistering): Port device team_slave_0 removed
[ 2092.065609][ T6121] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[ 2092.244053][ T6121] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2092.268100][ T6121] usb 1-1: New USB device found, idVendor=0458, idProduct=4018, bcdDevice= 0.00
[ 2092.277357][ T6121] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2092.318573][ T6121] usb 1-1: config 0 descriptor??
[ 2093.602064][T22785] loop9: detected capacity change from 0 to 40427
[ 2093.612204][T22785] F2FS-fs (loop9): invalid crc value
[ 2093.704722][T22785] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 2093.715261][T22785] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[ 2093.736793][ T6143] team0 (unregistering): Port device team_slave_1 removed
[ 2093.792516][ T6143] team0 (unregistering): Port device team_slave_0 removed
[ 2094.349186][T13666] syz-executor: attempt to access beyond end of device
[ 2094.349186][T13666] loop9: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 2094.385789][T13666] CPU: 1 UID: 0 PID: 13666 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2094.385845][T13666] Tainted: [L]=SOFTLOCKUP
[ 2094.385858][T13666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 2094.385879][T13666] Call Trace:
[ 2094.385891][T13666]  <TASK>
[ 2094.385906][T13666]  dump_stack_lvl+0x16c/0x1f0
[ 2094.385969][T13666]  f2fs_handle_critical_error+0x624/0x9f0
[ 2094.386012][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.386056][T13666]  ? f2fs_build_fault_attr+0x53/0x1f0
[ 2094.386131][T13666]  f2fs_write_end_io+0x958/0xcf0
[ 2094.386175][T13666]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 2094.386222][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.386281][T13666]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 2094.386325][T13666]  bio_endio+0x751/0x8a0
[ 2094.386388][T13666]  submit_bio_noacct+0x306/0x1f40
[ 2094.386446][T13666]  __submit_merged_bio+0x33c/0x710
[ 2094.386500][T13666]  __submit_merged_write_cond+0x315/0x3f0
[ 2094.386560][T13666]  f2fs_write_cache_pages+0x2075/0x2570
[ 2094.386647][T13666]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[ 2094.386702][T13666]  ? unwind_next_frame+0x3fe/0x20b0
[ 2094.386755][T13666]  ? exit_to_user_mode_loop+0xfb/0x540
[ 2094.386816][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.386860][T13666]  ? __lock_acquire+0x436/0x2890
[ 2094.386907][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.386958][T13666]  ? arch_stack_walk+0x88/0x100
[ 2094.387031][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.387110][T13666]  ? debug_check_no_obj_freed+0x31f/0x600
[ 2094.387169][T13666]  ? find_held_lock+0x2b/0x80
[ 2094.387273][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.387318][T13666]  ? _raw_spin_unlock+0x28/0x50
[ 2094.387369][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.387414][T13666]  ? free_unref_folios+0x108f/0x1610
[ 2094.387477][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.387533][T13666]  f2fs_write_data_pages+0x5ac/0x1080
[ 2094.387600][T13666]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2094.387667][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.387718][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.387764][T13666]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2094.387821][T13666]  do_writepages+0x27a/0x600
[ 2094.387873][T13666]  ? __pfx_do_writepages+0x10/0x10
[ 2094.387914][T13666]  ? do_raw_spin_unlock+0x172/0x230
[ 2094.387969][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.388014][T13666]  ? _raw_spin_unlock+0x28/0x50
[ 2094.388078][T13666]  filemap_writeback+0x225/0x2d0
[ 2094.388127][T13666]  ? __pfx_filemap_writeback+0x10/0x10
[ 2094.388235][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.388281][T13666]  ? find_held_lock+0x2b/0x80
[ 2094.388342][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.388402][T13666]  f2fs_sync_dirty_inodes+0x2a9/0x960
[ 2094.388482][T13666]  block_operations+0x2b0/0xff0
[ 2094.388552][T13666]  ? __pfx_block_operations+0x10/0x10
[ 2094.388672][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.388722][T13666]  ? ktime_get+0x200/0x310
[ 2094.388765][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.388810][T13666]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2094.388870][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.388915][T13666]  ? rcu_is_watching+0x12/0xc0
[ 2094.388958][T13666]  f2fs_write_checkpoint+0x326/0x52f0
[ 2094.389027][T13666]  ? f2fs_stop_gc_thread+0x79/0xd0
[ 2094.389098][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.389143][T13666]  ? rcu_is_watching+0x12/0xc0
[ 2094.389178][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.389223][T13666]  ? kthread_stop+0x272/0x5d0
[ 2094.389274][T13666]  kill_f2fs_super+0x3d0/0x480
[ 2094.389331][T13666]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 2094.389408][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.389473][T13666]  deactivate_locked_super+0xc1/0x1a0
[ 2094.389516][T13666]  deactivate_super+0xde/0x100
[ 2094.389558][T13666]  cleanup_mnt+0x225/0x450
[ 2094.389609][T13666]  task_work_run+0x150/0x240
[ 2094.389663][T13666]  ? __pfx_task_work_run+0x10/0x10
[ 2094.389731][T13666]  exit_to_user_mode_loop+0xfb/0x540
[ 2094.389785][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.389839][T13666]  do_syscall_64+0x4ee/0xf80
[ 2094.389904][T13666]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2094.389942][T13666] RIP: 0033:0x7f0acab90a77
[ 2094.389972][T13666] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 2094.390012][T13666] RSP: 002b:00007ffc86522c58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 2094.390048][T13666] RAX: 0000000000000000 RBX: 00007f0acac13d7d RCX: 00007f0acab90a77
[ 2094.390079][T13666] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc86522d10
[ 2094.390103][T13666] RBP: 00007ffc86522d10 R08: 0000000000000000 R09: 0000000000000000
[ 2094.390131][T13666] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc86523da0
[ 2094.390157][T13666] R13: 00007f0acac13d7d R14: 00000000001ff635 R15: 00007ffc86523de0
[ 2094.390215][T13666]  </TASK>
[ 2094.948596][T13666] F2FS-fs (loop9): Stopped filesystem due to reason: 3
[ 2094.955926][T13666] CPU: 0 UID: 0 PID: 13666 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2094.955982][T13666] Tainted: [L]=SOFTLOCKUP
[ 2094.955996][T13666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 2094.956024][T13666] Call Trace:
[ 2094.956040][T13666]  <TASK>
[ 2094.956053][T13666]  dump_stack_lvl+0x16c/0x1f0
[ 2094.956117][T13666]  f2fs_handle_critical_error+0x624/0x9f0
[ 2094.956161][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.956207][T13666]  ? f2fs_build_fault_attr+0x53/0x1f0
[ 2094.956277][T13666]  f2fs_write_end_io+0x958/0xcf0
[ 2094.956326][T13666]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 2094.956376][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.956431][T13666]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 2094.956474][T13666]  bio_endio+0x751/0x8a0
[ 2094.956533][T13666]  submit_bio_noacct+0x306/0x1f40
[ 2094.956586][T13666]  __submit_merged_bio+0x33c/0x710
[ 2094.956635][T13666]  __submit_merged_write_cond+0x315/0x3f0
[ 2094.956691][T13666]  f2fs_write_cache_pages+0x2075/0x2570
[ 2094.956769][T13666]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[ 2094.956823][T13666]  ? unwind_next_frame+0x3fe/0x20b0
[ 2094.956873][T13666]  ? exit_to_user_mode_loop+0xfb/0x540
[ 2094.956932][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.956975][T13666]  ? __lock_acquire+0x436/0x2890
[ 2094.957025][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.957070][T13666]  ? arch_stack_walk+0x88/0x100
[ 2094.957137][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.957202][T13666]  ? debug_check_no_obj_freed+0x31f/0x600
[ 2094.957259][T13666]  ? find_held_lock+0x2b/0x80
[ 2094.957353][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.957396][T13666]  ? _raw_spin_unlock+0x28/0x50
[ 2094.957447][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.957490][T13666]  ? free_unref_folios+0x108f/0x1610
[ 2094.957549][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.957602][T13666]  f2fs_write_data_pages+0x5ac/0x1080
[ 2094.957665][T13666]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2094.957728][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.957775][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.957820][T13666]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2094.957874][T13666]  do_writepages+0x27a/0x600
[ 2094.957921][T13666]  ? __pfx_do_writepages+0x10/0x10
[ 2094.957960][T13666]  ? do_raw_spin_unlock+0x172/0x230
[ 2094.958019][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.958063][T13666]  ? _raw_spin_unlock+0x28/0x50
[ 2094.958119][T13666]  filemap_writeback+0x225/0x2d0
[ 2094.958165][T13666]  ? __pfx_filemap_writeback+0x10/0x10
[ 2094.958260][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.958305][T13666]  ? find_held_lock+0x2b/0x80
[ 2094.958363][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.958420][T13666]  f2fs_sync_dirty_inodes+0x2a9/0x960
[ 2094.958494][T13666]  block_operations+0x2b0/0xff0
[ 2094.958560][T13666]  ? __pfx_block_operations+0x10/0x10
[ 2094.958667][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.958715][T13666]  ? ktime_get+0x200/0x310
[ 2094.958758][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.958802][T13666]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2094.958860][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.958905][T13666]  ? rcu_is_watching+0x12/0xc0
[ 2094.958946][T13666]  f2fs_write_checkpoint+0x326/0x52f0
[ 2094.959010][T13666]  ? f2fs_stop_gc_thread+0x79/0xd0
[ 2094.959079][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.959123][T13666]  ? rcu_is_watching+0x12/0xc0
[ 2094.959157][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.959201][T13666]  ? kthread_stop+0x272/0x5d0
[ 2094.959249][T13666]  kill_f2fs_super+0x3d0/0x480
[ 2094.959304][T13666]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 2094.959376][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.959438][T13666]  deactivate_locked_super+0xc1/0x1a0
[ 2094.959478][T13666]  deactivate_super+0xde/0x100
[ 2094.959519][T13666]  cleanup_mnt+0x225/0x450
[ 2094.959567][T13666]  task_work_run+0x150/0x240
[ 2094.959618][T13666]  ? __pfx_task_work_run+0x10/0x10
[ 2094.959682][T13666]  exit_to_user_mode_loop+0xfb/0x540
[ 2094.959735][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2094.959786][T13666]  do_syscall_64+0x4ee/0xf80
[ 2094.959849][T13666]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2094.959886][T13666] RIP: 0033:0x7f0acab90a77
[ 2094.959916][T13666] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 2094.959952][T13666] RSP: 002b:00007ffc86522c58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 2094.959988][T13666] RAX: 0000000000000000 RBX: 00007f0acac13d7d RCX: 00007f0acab90a77
[ 2094.960019][T13666] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc86522d10
[ 2094.960043][T13666] RBP: 00007ffc86522d10 R08: 0000000000000000 R09: 0000000000000000
[ 2094.960067][T13666] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc86523da0
[ 2094.960092][T13666] R13: 00007f0acac13d7d R14: 00000000001ff635 R15: 00007ffc86523de0
[ 2094.960142][T13666]  </TASK>
[ 2095.462455][T22607] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2095.469766][T22607] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2095.477199][T22607] bridge_slave_0: entered allmulticast mode
[ 2095.486738][T22607] bridge_slave_0: entered promiscuous mode
[ 2095.497035][T22607] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2095.504316][T22607] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2095.511633][T22607] bridge_slave_1: entered allmulticast mode
[ 2095.520758][T22607] bridge_slave_1: entered promiscuous mode
[ 2095.572833][ T6121] usbhid 1-1:0.0: can't add hid device: -71
[ 2095.578961][ T6121] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 2095.591245][ T6121] usb 1-1: USB disconnect, device number 13
[ 2095.636882][T13666] F2FS-fs (loop9): Stopped filesystem due to reason: 3
[ 2098.234773][T22803] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3733'.
[ 2099.459550][T22607] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2100.236330][T22607] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2100.252905][T22708] chnl_net:caif_netlink_parms(): no params data found
[ 2100.698577][ T5920] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[ 2100.958414][ T5920] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2101.095681][T22607] team0: Port device team_slave_0 added
[ 2101.121396][T22607] team0: Port device team_slave_1 added
[ 2101.244985][T22454] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 2101.281410][ T5920] usb 1-1: New USB device found, idVendor=0458, idProduct=4018, bcdDevice= 0.00
[ 2101.307973][ T5920] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2101.330333][ T5920] usb 1-1: config 0 descriptor??
[ 2101.335157][T22607] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2101.367955][T22607] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2101.423304][T22607] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2101.544792][T22028] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 2101.554871][T22028] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 2101.563736][T22028] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 2101.571864][T22028] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 2101.580067][T22028] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 2101.612535][T22607] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2101.649174][T22607] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2101.748393][T22607] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2103.641108][ T5834] Bluetooth: hci1: command tx timeout
[ 2104.140508][T22842] loop5: detected capacity change from 0 to 512
[ 2104.343467][T22708] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2104.353695][   T31] audit: type=1804 audit(1769932055.059:4661): pid=22844 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.9.3740" name="/newroot/435/file0" dev="fuse" ino=1 res=1 errno=0
[ 2104.415626][T22708] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2104.461665][T22708] bridge_slave_0: entered allmulticast mode
[ 2104.470594][T22708] bridge_slave_0: entered promiscuous mode
[ 2104.479954][T22708] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2104.487180][T22708] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2105.173073][ T5920] usbhid 1-1:0.0: can't add hid device: -71
[ 2105.214240][T22708] bridge_slave_1: entered allmulticast mode
[ 2105.216991][ T5920] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 2105.245151][ T5920] usb 1-1: USB disconnect, device number 14
[ 2105.251153][T22708] bridge_slave_1: entered promiscuous mode
[ 2105.785533][T22856] overlayfs: failed to resolve './file0': -2
[ 2106.078429][T22860] overlayfs: failed to resolve './file0': -2
[ 2106.138421][ T5834] Bluetooth: hci1: command tx timeout
[ 2106.654650][T22708] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2106.710776][T22708] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2107.671411][T22708] team0: Port device team_slave_0 added
[ 2108.225481][T22880] binder: BINDER_SET_CONTEXT_MGR already set
[ 2108.231577][T22880] binder: 22865:22880 ioctl 4018620d 2000000002c0 returned -16
[ 2108.266808][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[ 2108.273309][ T5834] Bluetooth: hci1: command tx timeout
[ 2108.324783][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[ 2108.688930][ T6176] usb 10-1: new high-speed USB device number 24 using dummy_hcd
[ 2108.935654][T22607] hsr_slave_0: entered promiscuous mode
[ 2108.946763][T22607] hsr_slave_1: entered promiscuous mode
[ 2108.984347][T22607] debugfs: 'hsr0' already exists in 'hsr'
[ 2108.990870][T22607] Cannot create hsr debugfs directory
[ 2108.999135][T22708] team0: Port device team_slave_1 added
[ 2109.067936][ T6176] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2109.084833][ T6176] usb 10-1: New USB device found, idVendor=0458, idProduct=4018, bcdDevice= 0.00
[ 2109.095705][ T6176] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2109.126979][ T6176] usb 10-1: config 0 descriptor??
[ 2109.184113][T22708] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2109.192684][T22708] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2109.220412][T22708] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2109.237799][T14416] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[ 2109.262011][T22708] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2109.269107][T22708] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2109.296178][T22708] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2109.410184][T14416] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2109.421452][T22708] hsr_slave_0: entered promiscuous mode
[ 2109.422620][T22708] hsr_slave_1: entered promiscuous mode
[ 2109.428354][T14416] usb 1-1: New USB device found, idVendor=0458, idProduct=4018, bcdDevice= 0.00
[ 2109.442767][T14416] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2109.461587][T14416] usb 1-1: config 0 descriptor??
[ 2109.497950][T22708] debugfs: 'hsr0' already exists in 'hsr'
[ 2109.504026][T22708] Cannot create hsr debugfs directory
[ 2110.343385][ T6176] usbhid 10-1:0.0: can't add hid device: -71
[ 2110.350544][ T5834] Bluetooth: hci1: command tx timeout
[ 2110.379249][ T6176] usbhid 10-1:0.0: probe with driver usbhid failed with error -71
[ 2110.390989][ T6176] usb 10-1: USB disconnect, device number 24
[ 2110.440642][   T31] audit: type=1804 audit(1769932061.191:4662): pid=22892 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.3750" name="/newroot/485/file0" dev="fuse" ino=1 res=1 errno=0
[ 2110.715527][T22830] chnl_net:caif_netlink_parms(): no params data found
[ 2112.894137][T22932] loop5: detected capacity change from 0 to 512
[ 2112.922433][T14416] usbhid 1-1:0.0: can't add hid device: -71
[ 2112.929894][T14416] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 2112.941164][T14416] usb 1-1: USB disconnect, device number 15
[ 2114.116624][T22941] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3756'.
[ 2118.534356][T22830] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2118.562990][T22830] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2118.570282][T22830] bridge_slave_0: entered allmulticast mode
[ 2118.590742][T22830] bridge_slave_0: entered promiscuous mode
[ 2118.621679][T22830] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2118.640686][T22830] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2118.649290][T22830] bridge_slave_1: entered allmulticast mode
[ 2118.658570][T22830] bridge_slave_1: entered promiscuous mode
[ 2119.034273][T22959] binder: BINDER_SET_CONTEXT_MGR already set
[ 2119.040340][T22959] binder: 22956:22959 ioctl 4018620d 2000000002c0 returned -16
[ 2119.723320][T22830] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2119.748914][T22830] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2120.175183][ T6143] bridge_slave_1: left allmulticast mode
[ 2120.189680][   T31] audit: type=1804 audit(1769932070.934:4663): pid=22963 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.9.3760" name="/newroot/441/file0" dev="fuse" ino=1 res=1 errno=0
[ 2120.212108][ T6143] bridge_slave_1: left promiscuous mode
[ 2120.218280][ T6143] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2120.238930][ T6143] bridge_slave_0: left allmulticast mode
[ 2120.252101][ T6143] bridge_slave_0: left promiscuous mode
[ 2120.268920][ T6143] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2121.417271][ T6143] bridge_slave_1: left allmulticast mode
[ 2121.427291][ T6143] bridge_slave_1: left promiscuous mode
[ 2123.380269][ T6143] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2124.099298][ T6143] bridge_slave_0: left allmulticast mode
[ 2124.136223][ T6143] bridge_slave_0: left promiscuous mode
[ 2124.162962][ T6143] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2124.185342][T22987] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 2124.202226][T22987] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[ 2124.217581][ T6143] bridge_slave_1: left allmulticast mode
[ 2124.233174][ T6143] bridge_slave_1: left promiscuous mode
[ 2124.240199][ T6143] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2124.247473][T22987] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 2124.361990][T14416] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[ 2124.469695][ T6143] bridge_slave_0: left allmulticast mode
[ 2124.523268][ T6143] bridge_slave_0: left promiscuous mode
[ 2124.530147][ T6143] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2124.544086][T22028] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 2125.388509][T22028] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 2125.392007][T14416] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2125.399171][T22028] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 2125.422451][T22028] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 2125.433679][T22028] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 2125.517282][T14416] usb 1-1: New USB device found, idVendor=0458, idProduct=4018, bcdDevice= 0.00
[ 2125.577112][T14416] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2125.681771][T14416] usb 1-1: config 0 descriptor??
[ 2127.794080][T14416] usbhid 1-1:0.0: can't add hid device: -71
[ 2127.808103][T14416] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 2127.817672][ T6143] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2127.830339][T14416] usb 1-1: USB disconnect, device number 16
[ 2128.088639][T22028] Bluetooth: hci3: command tx timeout
[ 2128.440447][ T6143] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2128.484755][ T6143] bond0 (unregistering): Released all slaves
[ 2129.171633][T23019] overlayfs: overlapping lowerdir path
[ 2129.268538][T23020] overlayfs: overlapping lowerdir path
[ 2130.080348][ T6143] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2130.169059][T22028] Bluetooth: hci3: command tx timeout
[ 2130.170112][ T6143] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2130.234038][   T31] audit: type=1804 audit(1769932080.977:4664): pid=23027 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3772" name="/newroot/211/file0" dev="fuse" ino=1 res=1 errno=0
[ 2130.305479][ T6143] bond0 (unregistering): Released all slaves
[ 2130.688710][ T5967] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[ 2130.785932][ T6143] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2130.805085][ T6143] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2130.830201][ T6143] bond0 (unregistering): Released all slaves
[ 2130.861079][ T5967] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2130.875154][T22830] team0: Port device team_slave_0 added
[ 2130.882316][ T5967] usb 1-1: New USB device found, idVendor=0458, idProduct=4018, bcdDevice= 0.00
[ 2130.898118][ T5967] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2130.911442][ T5967] usb 1-1: config 0 descriptor??
[ 2131.002424][T22830] team0: Port device team_slave_1 added
[ 2131.264249][T22830] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2131.290901][T22830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2131.348548][T22830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2131.369216][T22708] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 2131.401623][T22708] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 2131.430616][T22830] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2131.437577][T22830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2131.529190][T22830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2131.562776][ T5967] usbhid 1-1:0.0: can't add hid device: -71
[ 2131.575832][T22708] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 2131.579023][ T5967] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 2131.611404][ T5967] usb 1-1: USB disconnect, device number 17
[ 2131.627706][ T6143] hsr_slave_0: left promiscuous mode
[ 2131.645078][ T6143] hsr_slave_1: left promiscuous mode
[ 2131.679459][ T6143] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2131.699099][ T6143] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2131.729655][ T6143] hsr_slave_0: left promiscuous mode
[ 2131.738478][ T6143] hsr_slave_1: left promiscuous mode
[ 2131.744575][ T6143] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2131.769042][ T6143] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2131.799526][ T6143] hsr_slave_0: left promiscuous mode
[ 2131.818566][ T6143] hsr_slave_1: left promiscuous mode
[ 2131.824879][ T6143] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2131.842922][ T6143] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2131.899072][T23039] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3776'.
[ 2132.939165][T22028] Bluetooth: hci3: command tx timeout
[ 2136.499018][T22028] Bluetooth: hci3: command tx timeout
[ 2136.751391][ T6143] team0 (unregistering): Port device team_slave_1 removed
[ 2136.827155][ T6143] team0 (unregistering): Port device team_slave_0 removed
[ 2139.453436][ T6143] team0 (unregistering): Port device team_slave_1 removed
[ 2139.796601][ T6143] team0 (unregistering): Port device team_slave_0 removed
[ 2141.105469][   T31] audit: type=1804 audit(1769932091.840:4665): pid=23068 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3782" name="/newroot/215/file0" dev="fuse" ino=1 res=1 errno=0
[ 2141.133698][ T5834] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 2141.167497][ T5834] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 2141.319074][T23071] overlayfs: "xino" feature enabled using 3 upper inode bits.
[ 2141.342553][T23071] overlayfs: "xino" feature enabled using 3 upper inode bits.
[ 2141.900217][ T6143] team0 (unregistering): Port device team_slave_1 removed
[ 2141.961147][ T5834] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 2141.986646][ T5834] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 2141.994904][ T5834] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 2142.057765][ T6143] team0 (unregistering): Port device team_slave_0 removed
[ 2142.544184][T23074] loop0: detected capacity change from 0 to 40427
[ 2142.568504][T23074] F2FS-fs (loop0): invalid crc value
[ 2142.574814][T22708] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 2142.829431][T23074] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 2142.882443][T23074] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 2143.461149][T22830] hsr_slave_0: entered promiscuous mode
[ 2143.478056][T22830] hsr_slave_1: entered promiscuous mode
[ 2143.493939][T22830] debugfs: 'hsr0' already exists in 'hsr'
[ 2143.504256][T22830] Cannot create hsr debugfs directory
[ 2143.660744][T23092] binder: BINDER_SET_CONTEXT_MGR already set
[ 2143.666832][T23092] binder: 23084:23092 ioctl 4018620d 2000000002c0 returned -16
[ 2144.195842][T18325] syz-executor: attempt to access beyond end of device
[ 2144.195842][T18325] loop0: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 2144.214532][T22028] Bluetooth: hci7: command tx timeout
[ 2144.274594][T18325] CPU: 1 UID: 0 PID: 18325 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2144.274652][T18325] Tainted: [L]=SOFTLOCKUP
[ 2144.274665][T18325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 2144.274688][T18325] Call Trace:
[ 2144.274701][T18325]  <TASK>
[ 2144.274715][T18325]  dump_stack_lvl+0x16c/0x1f0
[ 2144.274779][T18325]  f2fs_handle_critical_error+0x624/0x9f0
[ 2144.274824][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.274875][T18325]  ? f2fs_build_fault_attr+0x53/0x1f0
[ 2144.274947][T18325]  f2fs_write_end_io+0x958/0xcf0
[ 2144.274998][T18325]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 2144.275050][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.275106][T18325]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 2144.275150][T18325]  bio_endio+0x751/0x8a0
[ 2144.275211][T18325]  submit_bio_noacct+0x306/0x1f40
[ 2144.275268][T18325]  __submit_merged_bio+0x33c/0x710
[ 2144.275320][T18325]  __submit_merged_write_cond+0x315/0x3f0
[ 2144.275379][T18325]  f2fs_write_cache_pages+0x2075/0x2570
[ 2144.275465][T18325]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[ 2144.275526][T18325]  ? __lock_acquire+0x436/0x2890
[ 2144.275584][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.275628][T18325]  ? __lock_acquire+0x436/0x2890
[ 2144.275719][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.275806][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.275850][T18325]  ? rcu_is_watching+0x12/0xc0
[ 2144.275891][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.275935][T18325]  ? mod_memcg_lruvec_state+0x381/0x5f0
[ 2144.276002][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.276055][T18325]  f2fs_write_data_pages+0x5ac/0x1080
[ 2144.276120][T18325]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2144.276185][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.276235][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.276279][T18325]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2144.276336][T18325]  do_writepages+0x27a/0x600
[ 2144.276387][T18325]  ? __pfx_do_writepages+0x10/0x10
[ 2144.276427][T18325]  ? do_raw_spin_unlock+0x172/0x230
[ 2144.276481][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.276526][T18325]  ? _raw_spin_unlock+0x28/0x50
[ 2144.276583][T18325]  filemap_writeback+0x225/0x2d0
[ 2144.276631][T18325]  ? __pfx_filemap_writeback+0x10/0x10
[ 2144.276738][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.276782][T18325]  ? find_held_lock+0x2b/0x80
[ 2144.276843][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.276908][T18325]  f2fs_sync_dirty_inodes+0x2a9/0x960
[ 2144.276985][T18325]  block_operations+0x2b0/0xff0
[ 2144.277044][T18325]  ? finish_task_switch.isra.0+0x207/0xbd0
[ 2144.277111][T18325]  ? __pfx_block_operations+0x10/0x10
[ 2144.277162][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.277209][T18325]  ? __schedule+0x10b9/0x6150
[ 2144.277321][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.277370][T18325]  ? ktime_get+0x200/0x310
[ 2144.277412][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.277458][T18325]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2144.277516][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.277560][T18325]  ? rcu_is_watching+0x12/0xc0
[ 2144.277602][T18325]  f2fs_write_checkpoint+0x326/0x52f0
[ 2144.277660][T18325]  ? __pfx_try_to_wake_up+0x10/0x10
[ 2144.277723][T18325]  ? f2fs_stop_gc_thread+0x79/0xd0
[ 2144.277787][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.277831][T18325]  ? rcu_is_watching+0x12/0xc0
[ 2144.277870][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.277914][T18325]  ? kthread_stop+0x272/0x5d0
[ 2144.277964][T18325]  kill_f2fs_super+0x3d0/0x480
[ 2144.278020][T18325]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 2144.278095][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.278158][T18325]  deactivate_locked_super+0xc1/0x1a0
[ 2144.278200][T18325]  deactivate_super+0xde/0x100
[ 2144.278242][T18325]  cleanup_mnt+0x225/0x450
[ 2144.278291][T18325]  task_work_run+0x150/0x240
[ 2144.278344][T18325]  ? __pfx_task_work_run+0x10/0x10
[ 2144.278412][T18325]  exit_to_user_mode_loop+0xfb/0x540
[ 2144.278466][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.278518][T18325]  do_syscall_64+0x4ee/0xf80
[ 2144.278582][T18325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2144.278620][T18325] RIP: 0033:0x7fc50a790a77
[ 2144.278650][T18325] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 2144.278687][T18325] RSP: 002b:00007fff2ff8aa38 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 2144.278722][T18325] RAX: 0000000000000000 RBX: 00007fc50a813d7d RCX: 00007fc50a790a77
[ 2144.278748][T18325] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff2ff8aaf0
[ 2144.278772][T18325] RBP: 00007fff2ff8aaf0 R08: 0000000000000000 R09: 0000000000000000
[ 2144.278795][T18325] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff2ff8bb80
[ 2144.278820][T18325] R13: 00007fc50a813d7d R14: 000000000020b6a4 R15: 00007fff2ff8bbc0
[ 2144.278882][T18325]  </TASK>
[ 2144.759189][T18325] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[ 2144.774764][T18325] CPU: 0 UID: 0 PID: 18325 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2144.774820][T18325] Tainted: [L]=SOFTLOCKUP
[ 2144.774834][T18325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 2144.774857][T18325] Call Trace:
[ 2144.774867][T18325]  <TASK>
[ 2144.774882][T18325]  dump_stack_lvl+0x16c/0x1f0
[ 2144.774947][T18325]  f2fs_handle_critical_error+0x624/0x9f0
[ 2144.774993][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.775040][T18325]  ? f2fs_build_fault_attr+0x53/0x1f0
[ 2144.775119][T18325]  f2fs_write_end_io+0x958/0xcf0
[ 2144.775169][T18325]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 2144.775220][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.775276][T18325]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 2144.775320][T18325]  bio_endio+0x751/0x8a0
[ 2144.775381][T18325]  submit_bio_noacct+0x306/0x1f40
[ 2144.775436][T18325]  __submit_merged_bio+0x33c/0x710
[ 2144.775487][T18325]  __submit_merged_write_cond+0x315/0x3f0
[ 2144.775544][T18325]  f2fs_write_cache_pages+0x2075/0x2570
[ 2144.775624][T18325]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[ 2144.775689][T18325]  ? __lock_acquire+0x436/0x2890
[ 2144.775746][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.775792][T18325]  ? __lock_acquire+0x436/0x2890
[ 2144.775875][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.775958][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.776004][T18325]  ? rcu_is_watching+0x12/0xc0
[ 2144.776039][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.776084][T18325]  ? mod_memcg_lruvec_state+0x381/0x5f0
[ 2144.776157][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.776211][T18325]  f2fs_write_data_pages+0x5ac/0x1080
[ 2144.776275][T18325]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2144.776340][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.776390][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.776435][T18325]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2144.776492][T18325]  do_writepages+0x27a/0x600
[ 2144.776540][T18325]  ? __pfx_do_writepages+0x10/0x10
[ 2144.776581][T18325]  ? do_raw_spin_unlock+0x172/0x230
[ 2144.776635][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.776681][T18325]  ? _raw_spin_unlock+0x28/0x50
[ 2144.776739][T18325]  filemap_writeback+0x225/0x2d0
[ 2144.776786][T18325]  ? __pfx_filemap_writeback+0x10/0x10
[ 2144.776883][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.776929][T18325]  ? find_held_lock+0x2b/0x80
[ 2144.776989][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.777048][T18325]  f2fs_sync_dirty_inodes+0x2a9/0x960
[ 2144.777128][T18325]  block_operations+0x2b0/0xff0
[ 2144.777189][T18325]  ? finish_task_switch.isra.0+0x207/0xbd0
[ 2144.777257][T18325]  ? __pfx_block_operations+0x10/0x10
[ 2144.777309][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.777356][T18325]  ? __schedule+0x10b9/0x6150
[ 2144.777460][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.777509][T18325]  ? ktime_get+0x200/0x310
[ 2144.777552][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.777597][T18325]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2144.777657][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.777703][T18325]  ? rcu_is_watching+0x12/0xc0
[ 2144.777744][T18325]  f2fs_write_checkpoint+0x326/0x52f0
[ 2144.777803][T18325]  ? __pfx_try_to_wake_up+0x10/0x10
[ 2144.777866][T18325]  ? f2fs_stop_gc_thread+0x79/0xd0
[ 2144.777930][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.777976][T18325]  ? rcu_is_watching+0x12/0xc0
[ 2144.778010][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.778055][T18325]  ? kthread_stop+0x272/0x5d0
[ 2144.778109][T18325]  kill_f2fs_super+0x3d0/0x480
[ 2144.778166][T18325]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 2144.778240][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.778301][T18325]  deactivate_locked_super+0xc1/0x1a0
[ 2144.778343][T18325]  deactivate_super+0xde/0x100
[ 2144.778384][T18325]  cleanup_mnt+0x225/0x450
[ 2144.778434][T18325]  task_work_run+0x150/0x240
[ 2144.778485][T18325]  ? __pfx_task_work_run+0x10/0x10
[ 2144.778550][T18325]  exit_to_user_mode_loop+0xfb/0x540
[ 2144.778607][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2144.778659][T18325]  do_syscall_64+0x4ee/0xf80
[ 2144.778728][T18325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2144.778767][T18325] RIP: 0033:0x7fc50a790a77
[ 2144.778796][T18325] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 2144.778834][T18325] RSP: 002b:00007fff2ff8aa38 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 2144.778870][T18325] RAX: 0000000000000000 RBX: 00007fc50a813d7d RCX: 00007fc50a790a77
[ 2144.778895][T18325] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff2ff8aaf0
[ 2144.778920][T18325] RBP: 00007fff2ff8aaf0 R08: 0000000000000000 R09: 0000000000000000
[ 2144.778944][T18325] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff2ff8bb80
[ 2144.778969][T18325] R13: 00007fc50a813d7d R14: 000000000020b6a4 R15: 00007fff2ff8bbc0
[ 2144.779021][T18325]  </TASK>
[ 2144.779035][T18325] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[ 2145.406336][T23100] binder: BINDER_SET_CONTEXT_MGR already set
[ 2145.412362][T23100] binder: 23087:23100 ioctl 4018620d 2000000002c0 returned -16
[ 2146.255531][T22028] Bluetooth: hci7: command tx timeout
[ 2146.330777][T23065] chnl_net:caif_netlink_parms(): no params data found
[ 2147.787570][T23119] binder: BINDER_SET_CONTEXT_MGR already set
[ 2147.793674][T23119] binder: 23115:23119 ioctl 4018620d 2000000002c0 returned -16
[ 2148.474623][T22028] Bluetooth: hci7: command tx timeout
[ 2148.619721][T22992] chnl_net:caif_netlink_parms(): no params data found
[ 2148.813585][   T31] audit: type=1804 audit(1769932099.563:4666): pid=23121 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3793" name="/newroot/218/file0" dev="fuse" ino=1 res=1 errno=0
[ 2148.929571][T23065] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2148.937170][T23065] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2148.945948][T23065] bridge_slave_0: entered allmulticast mode
[ 2148.954796][T23065] bridge_slave_0: entered promiscuous mode
[ 2148.984471][T23065] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2148.992083][T23065] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2149.001339][T23065] bridge_slave_1: entered allmulticast mode
[ 2149.010123][T23065] bridge_slave_1: entered promiscuous mode
[ 2149.322721][T23133] overlayfs: "xino" feature enabled using 3 upper inode bits.
[ 2149.338465][T23133] overlayfs: "xino" feature enabled using 3 upper inode bits.
[ 2149.999526][T23136] binder: BINDER_SET_CONTEXT_MGR already set
[ 2150.005632][T23136] binder: 23122:23136 ioctl 4018620d 2000000002c0 returned -16
[ 2150.383759][T23065] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2150.486015][T23140] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3796'.
[ 2150.495955][T22028] Bluetooth: hci7: command tx timeout
[ 2150.618078][T23065] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2151.104362][T22992] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2151.134938][T22992] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2151.142937][T22992] bridge_slave_0: entered allmulticast mode
[ 2151.167141][T22992] bridge_slave_0: entered promiscuous mode
[ 2151.177661][T22992] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2151.196252][T22992] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2151.204610][T22992] bridge_slave_1: entered allmulticast mode
[ 2151.213323][T22992] bridge_slave_1: entered promiscuous mode
[ 2151.223596][T23065] team0: Port device team_slave_0 added
[ 2151.294975][T23065] team0: Port device team_slave_1 added
[ 2151.397137][T22992] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2151.445654][T23144] loop0: detected capacity change from 0 to 40427
[ 2151.497471][T23144] F2FS-fs (loop0): invalid crc value
[ 2151.505327][T22992] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2152.156017][T23144] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 2152.188486][T23144] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 2152.211905][T23065] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2152.241818][T23065] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2152.492056][T23157] binder: BINDER_SET_CONTEXT_MGR already set
[ 2152.524181][T23157] binder: 23152:23157 ioctl 4018620d 2000000002c0 returned -16
[ 2152.584693][T23065] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2153.012366][T18325] syz-executor: attempt to access beyond end of device
[ 2153.012366][T18325] loop0: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 2153.036123][T23065] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2153.066696][T18325] CPU: 0 UID: 0 PID: 18325 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2153.066755][T18325] Tainted: [L]=SOFTLOCKUP
[ 2153.066768][T18325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 2153.066791][T18325] Call Trace:
[ 2153.066804][T18325]  <TASK>
[ 2153.066818][T18325]  dump_stack_lvl+0x16c/0x1f0
[ 2153.066888][T18325]  f2fs_handle_critical_error+0x624/0x9f0
[ 2153.066933][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.066979][T18325]  ? f2fs_build_fault_attr+0x53/0x1f0
[ 2153.067052][T18325]  f2fs_write_end_io+0x958/0xcf0
[ 2153.067102][T18325]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 2153.067155][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.067211][T18325]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 2153.067254][T18325]  bio_endio+0x751/0x8a0
[ 2153.067315][T18325]  submit_bio_noacct+0x306/0x1f40
[ 2153.067372][T18325]  __submit_merged_bio+0x33c/0x710
[ 2153.067424][T18325]  __submit_merged_write_cond+0x315/0x3f0
[ 2153.067483][T18325]  f2fs_write_cache_pages+0x2075/0x2570
[ 2153.067567][T18325]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[ 2153.067628][T18325]  ? __lock_acquire+0x436/0x2890
[ 2153.067685][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.067730][T18325]  ? __lock_acquire+0x436/0x2890
[ 2153.067819][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.067913][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.067957][T18325]  ? __lock_acquire+0x436/0x2890
[ 2153.068008][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.068062][T18325]  f2fs_write_data_pages+0x5ac/0x1080
[ 2153.068127][T18325]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2153.068193][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.068242][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.068286][T18325]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2153.068342][T18325]  do_writepages+0x27a/0x600
[ 2153.068393][T18325]  ? __pfx_do_writepages+0x10/0x10
[ 2153.068432][T18325]  ? do_raw_spin_unlock+0x172/0x230
[ 2153.068485][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.068529][T18325]  ? _raw_spin_unlock+0x28/0x50
[ 2153.068586][T18325]  filemap_writeback+0x225/0x2d0
[ 2153.068633][T18325]  ? __pfx_filemap_writeback+0x10/0x10
[ 2153.068739][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.068784][T18325]  ? find_held_lock+0x2b/0x80
[ 2153.068844][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.068908][T18325]  f2fs_sync_dirty_inodes+0x2a9/0x960
[ 2153.068987][T18325]  block_operations+0x2b0/0xff0
[ 2153.069037][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.069082][T18325]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2153.069144][T18325]  ? finish_task_switch.isra.0+0x8c3/0xbd0
[ 2153.069210][T18325]  ? __pfx_block_operations+0x10/0x10
[ 2153.069261][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.069306][T18325]  ? __schedule+0x10b9/0x6150
[ 2153.069417][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.069466][T18325]  ? ktime_get+0x200/0x310
[ 2153.069507][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.069551][T18325]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2153.069608][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.069652][T18325]  ? rcu_is_watching+0x12/0xc0
[ 2153.069695][T18325]  f2fs_write_checkpoint+0x326/0x52f0
[ 2153.069754][T18325]  ? __pfx_try_to_wake_up+0x10/0x10
[ 2153.069817][T18325]  ? f2fs_stop_gc_thread+0x79/0xd0
[ 2153.069887][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.069931][T18325]  ? rcu_is_watching+0x12/0xc0
[ 2153.069964][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.070009][T18325]  ? kthread_stop+0x272/0x5d0
[ 2153.070057][T18325]  kill_f2fs_super+0x3d0/0x480
[ 2153.070113][T18325]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 2153.070188][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.070251][T18325]  deactivate_locked_super+0xc1/0x1a0
[ 2153.070292][T18325]  deactivate_super+0xde/0x100
[ 2153.070334][T18325]  cleanup_mnt+0x225/0x450
[ 2153.070383][T18325]  task_work_run+0x150/0x240
[ 2153.070434][T18325]  ? __pfx_task_work_run+0x10/0x10
[ 2153.070500][T18325]  exit_to_user_mode_loop+0xfb/0x540
[ 2153.070553][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.070607][T18325]  do_syscall_64+0x4ee/0xf80
[ 2153.070670][T18325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2153.070708][T18325] RIP: 0033:0x7fc50a790a77
[ 2153.070738][T18325] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 2153.070775][T18325] RSP: 002b:00007fff2ff8aa38 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 2153.070810][T18325] RAX: 0000000000000000 RBX: 00007fc50a813d7d RCX: 00007fc50a790a77
[ 2153.070834][T18325] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff2ff8aaf0
[ 2153.070863][T18325] RBP: 00007fff2ff8aaf0 R08: 0000000000000000 R09: 0000000000000000
[ 2153.070887][T18325] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff2ff8bb80
[ 2153.070911][T18325] R13: 00007fc50a813d7d R14: 000000000020da7e R15: 00007fff2ff8bbc0
[ 2153.070967][T18325]  </TASK>
[ 2153.070982][T18325] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[ 2153.161772][T23065] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2153.170016][T18325] CPU: 0 UID: 0 PID: 18325 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2153.170070][T18325] Tainted: [L]=SOFTLOCKUP
[ 2153.170084][T18325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 2153.170106][T18325] Call Trace:
[ 2153.170119][T18325]  <TASK>
[ 2153.170133][T18325]  dump_stack_lvl+0x16c/0x1f0
[ 2153.170194][T18325]  f2fs_handle_critical_error+0x624/0x9f0
[ 2153.170237][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.170282][T18325]  ? f2fs_build_fault_attr+0x53/0x1f0
[ 2153.170352][T18325]  f2fs_write_end_io+0x958/0xcf0
[ 2153.170402][T18325]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 2153.170452][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.170508][T18325]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 2153.170550][T18325]  bio_endio+0x751/0x8a0
[ 2153.170610][T18325]  submit_bio_noacct+0x306/0x1f40
[ 2153.170667][T18325]  __submit_merged_bio+0x33c/0x710
[ 2153.170718][T18325]  __submit_merged_write_cond+0x315/0x3f0
[ 2153.170776][T18325]  f2fs_write_cache_pages+0x2075/0x2570
[ 2153.170866][T18325]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[ 2153.170925][T18325]  ? __lock_acquire+0x436/0x2890
[ 2153.170983][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.171026][T18325]  ? __lock_acquire+0x436/0x2890
[ 2153.171115][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.171202][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.171245][T18325]  ? __lock_acquire+0x436/0x2890
[ 2153.171295][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.171348][T18325]  f2fs_write_data_pages+0x5ac/0x1080
[ 2153.171412][T18325]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2153.171477][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.171526][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.171569][T18325]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2153.171624][T18325]  do_writepages+0x27a/0x600
[ 2153.171678][T18325]  ? __pfx_do_writepages+0x10/0x10
[ 2153.171716][T18325]  ? do_raw_spin_unlock+0x172/0x230
[ 2153.171769][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.171812][T18325]  ? _raw_spin_unlock+0x28/0x50
[ 2153.171874][T18325]  filemap_writeback+0x225/0x2d0
[ 2153.171921][T18325]  ? __pfx_filemap_writeback+0x10/0x10
[ 2153.172027][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.172070][T18325]  ? find_held_lock+0x2b/0x80
[ 2153.172128][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.172186][T18325]  f2fs_sync_dirty_inodes+0x2a9/0x960
[ 2153.172263][T18325]  block_operations+0x2b0/0xff0
[ 2153.172313][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.172356][T18325]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2153.172417][T18325]  ? finish_task_switch.isra.0+0x8c3/0xbd0
[ 2153.172483][T18325]  ? __pfx_block_operations+0x10/0x10
[ 2153.172533][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.172577][T18325]  ? __schedule+0x10b9/0x6150
[ 2153.172689][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.172736][T18325]  ? ktime_get+0x200/0x310
[ 2153.172778][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.172823][T18325]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2153.172885][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.172930][T18325]  ? rcu_is_watching+0x12/0xc0
[ 2153.172973][T18325]  f2fs_write_checkpoint+0x326/0x52f0
[ 2153.173032][T18325]  ? __pfx_try_to_wake_up+0x10/0x10
[ 2153.173095][T18325]  ? f2fs_stop_gc_thread+0x79/0xd0
[ 2153.173157][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.173200][T18325]  ? rcu_is_watching+0x12/0xc0
[ 2153.173234][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.173277][T18325]  ? kthread_stop+0x272/0x5d0
[ 2153.173326][T18325]  kill_f2fs_super+0x3d0/0x480
[ 2153.173382][T18325]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 2153.173456][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.173518][T18325]  deactivate_locked_super+0xc1/0x1a0
[ 2153.173559][T18325]  deactivate_super+0xde/0x100
[ 2153.173600][T18325]  cleanup_mnt+0x225/0x450
[ 2153.173650][T18325]  task_work_run+0x150/0x240
[ 2153.173700][T18325]  ? __pfx_task_work_run+0x10/0x10
[ 2153.173787][T18325]  exit_to_user_mode_loop+0xfb/0x540
[ 2153.173840][T18325]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2153.173896][T18325]  do_syscall_64+0x4ee/0xf80
[ 2153.173959][T18325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2153.173996][T18325] RIP: 0033:0x7fc50a790a77
[ 2153.174027][T18325] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 2153.174064][T18325] RSP: 002b:00007fff2ff8aa38 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 2153.174099][T18325] RAX: 0000000000000000 RBX: 00007fc50a813d7d RCX: 00007fc50a790a77
[ 2153.174123][T18325] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff2ff8aaf0
[ 2153.174147][T18325] RBP: 00007fff2ff8aaf0 R08: 0000000000000000 R09: 0000000000000000
[ 2153.174171][T18325] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff2ff8bb80
[ 2153.174195][T18325] R13: 00007fc50a813d7d R14: 000000000020da7e R15: 00007fff2ff8bbc0
[ 2153.174251][T18325]  </TASK>
[ 2153.174897][T18325] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[ 2153.181717][T23065] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2153.767788][T23161] loop9: detected capacity change from 0 to 32768
[ 2154.079076][ T5967] usb 6-1: new high-speed USB device number 27 using dummy_hcd
[ 2154.104780][T23161] 
[ 2154.104780][T23161]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2154.104780][T23161] 
[ 2154.119331][T23161] 
[ 2154.119331][T23161]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2154.119331][T23161] 
[ 2154.129834][T23161] 
[ 2154.129834][T23161]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2154.129834][T23161] 
[ 2154.141142][T23161] 
[ 2154.141142][T23161]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2154.141142][T23161] 
[ 2154.151622][T23161] 
[ 2154.151622][T23161]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2154.151622][T23161] 
[ 2154.164185][   T31] audit: type=1800 audit(1769932104.924:4667): pid=23161 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.3803" name="file2" dev="loop9" ino=7 res=0 errno=0
[ 2154.185826][  T111] 
[ 2154.185826][  T111]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2154.185826][  T111] 
[ 2154.245634][ T5967] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2154.263111][ T5967] usb 6-1: New USB device found, idVendor=0458, idProduct=4018, bcdDevice= 0.00
[ 2154.272674][ T5967] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2154.285762][ T5967] usb 6-1: config 0 descriptor??
[ 2154.315258][ T9759] 
[ 2154.315258][ T9759]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2154.315258][ T9759] 
[ 2154.329500][ T9759] 
[ 2154.329500][ T9759]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2154.329500][ T9759] 
[ 2154.332828][T22992] team0: Port device team_slave_0 added
[ 2154.344373][T13666] 
[ 2154.344373][T13666]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2154.344373][T13666] 
[ 2154.362170][  T112] 
[ 2154.362170][  T112]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2154.362170][  T112] 
[ 2154.368331][T22992] team0: Port device team_slave_1 added
[ 2154.373606][T13666] 
[ 2154.373606][T13666]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2154.373606][T13666] 
[ 2154.445997][T22830] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 2154.459269][T22992] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2154.467223][T22992] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2154.505825][T22992] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2154.612483][T22830] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 2154.633407][T22992] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2154.648904][T22992] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2154.947509][ T5967] usbhid 6-1:0.0: can't add hid device: -71
[ 2154.953647][ T5967] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[ 2154.978549][ T5967] usb 6-1: USB disconnect, device number 27
[ 2155.541518][T22992] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2156.726781][T22830] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 2156.794910][T23065] hsr_slave_0: entered promiscuous mode
[ 2156.921320][T23182] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3808'.
[ 2157.013304][   T31] audit: type=1804 audit(1769932107.625:4668): pid=23179 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.3806" name="/newroot/505/file0" dev="fuse" ino=1 res=1 errno=0
[ 2157.036618][T23065] hsr_slave_1: entered promiscuous mode
[ 2157.043383][T23065] debugfs: 'hsr0' already exists in 'hsr'
[ 2157.049130][T23065] Cannot create hsr debugfs directory
[ 2157.072827][T22830] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 2157.828775][T22992] hsr_slave_0: entered promiscuous mode
[ 2157.836663][T22992] hsr_slave_1: entered promiscuous mode
[ 2157.844636][T22992] debugfs: 'hsr0' already exists in 'hsr'
[ 2157.850490][T22992] Cannot create hsr debugfs directory
[ 2158.003615][T23195] overlayfs: missing 'lowerdir'
[ 2159.739801][ T6176] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[ 2159.913956][ T6176] usb 1-1: Using ep0 maxpacket: 32
[ 2159.929086][ T6176] usb 1-1: no configurations
[ 2159.958142][ T6176] usb 1-1: can't read configurations, error -22
[ 2160.023182][T22830] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2160.116010][T22830] 8021q: adding VLAN 0 to HW filter on device team0
[ 2160.134252][ T6176] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[ 2160.213437][ T6243] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2160.220676][ T6243] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2160.307142][ T7807] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2160.314386][ T7807] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2160.363827][T22830] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 2160.374674][T22830] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2160.458396][ T6176] usb 1-1: Using ep0 maxpacket: 32
[ 2160.465190][ T6176] usb 1-1: no configurations
[ 2160.480695][ T6176] usb 1-1: can't read configurations, error -22
[ 2160.490529][ T6176] usb usb1-port1: attempt power cycle
[ 2160.612032][ T6143] bridge_slave_1: left allmulticast mode
[ 2160.617755][ T6143] bridge_slave_1: left promiscuous mode
[ 2160.635751][ T6143] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2160.651227][ T6143] bridge_slave_0: left allmulticast mode
[ 2160.656906][ T6143] bridge_slave_0: left promiscuous mode
[ 2160.663256][ T6143] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2160.677279][ T6143] bridge_slave_1: left allmulticast mode
[ 2160.683136][ T6143] bridge_slave_1: left promiscuous mode
[ 2160.688977][ T6143] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2160.702138][ T6143] bridge_slave_0: left allmulticast mode
[ 2160.707927][ T6143] bridge_slave_0: left promiscuous mode
[ 2160.717309][ T6143] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2160.949533][ T6176] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[ 2160.957836][ T6143] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2160.973015][ T6176] usb 1-1: Using ep0 maxpacket: 32
[ 2160.989755][ T6143] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2161.238557][ T6143] bond0 (unregistering): Released all slaves
[ 2161.689277][ T6176] usb 1-1: no configurations
[ 2161.694746][ T6176] usb 1-1: can't read configurations, error -22
[ 2161.916692][T23223] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3818'.
[ 2162.032610][ T6176] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[ 2162.061095][ T5834] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 2162.073078][ T5834] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 2162.083058][ T6176] usb 1-1: Using ep0 maxpacket: 32
[ 2162.083451][ T6143] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2162.088596][ T5834] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 2162.112947][ T6176] usb 1-1: no configurations
[ 2162.117847][ T6176] usb 1-1: can't read configurations, error -22
[ 2162.128064][ T6176] usb usb1-port1: unable to enumerate USB device
[ 2162.749931][ T5834] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 2162.758188][ T5834] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 2162.787084][ T6143] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2162.804761][ T6143] bond0 (unregistering): Released all slaves
[ 2162.932011][T23065] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 2162.965785][   T31] audit: type=1804 audit(1769932113.727:4669): pid=23230 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3819" name="/newroot/227/file0" dev="fuse" ino=1 res=1 errno=0
[ 2162.990710][T23065] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 2163.015335][T23065] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 2163.391110][T23237] trusted_key: encrypted_key: insufficient parameters specified
[ 2163.426390][T23237] binder: BINDER_SET_CONTEXT_MGR already set
[ 2163.432498][T23237] binder: 23232:23237 ioctl 4018620d 2000000002c0 returned -16
[ 2164.402963][T23065] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 2164.837653][ T5834] Bluetooth: hci5: command tx timeout
[ 2165.112532][T23250] overlayfs: "xino" feature enabled using 3 upper inode bits.
[ 2165.122861][T23250] overlayfs: "xino" feature enabled using 3 upper inode bits.
[ 2166.054114][ T6143] hsr_slave_0: left promiscuous mode
[ 2166.098003][ T6143] hsr_slave_1: left promiscuous mode
[ 2166.109447][ T6143] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2166.167374][ T6143] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2166.227808][ T6143] hsr_slave_0: left promiscuous mode
[ 2166.244432][ T6143] hsr_slave_1: left promiscuous mode
[ 2166.271098][ T6143] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2166.436336][ T6143] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2167.527452][T22028] Bluetooth: hci5: command tx timeout
[ 2167.719482][ T6143] team0 (unregistering): Port device team_slave_1 removed
[ 2167.771057][ T6143] team0 (unregistering): Port device team_slave_0 removed
[ 2167.897329][ T6176] usb 6-1: new high-speed USB device number 28 using dummy_hcd
[ 2168.077329][ T6176] usb 6-1: Using ep0 maxpacket: 32
[ 2168.103936][ T6176] usb 6-1: no configurations
[ 2168.136756][ T6176] usb 6-1: can't read configurations, error -22
[ 2168.377952][ T6176] usb 6-1: new high-speed USB device number 29 using dummy_hcd
[ 2168.642001][ T6176] usb 6-1: Using ep0 maxpacket: 32
[ 2168.651954][ T6176] usb 6-1: no configurations
[ 2168.666625][ T6176] usb 6-1: can't read configurations, error -22
[ 2168.693833][ T6176] usb usb6-port1: attempt power cycle
[ 2168.775496][ T6143] team0 (unregistering): Port device team_slave_1 removed
[ 2168.820694][ T6143] team0 (unregistering): Port device team_slave_0 removed
[ 2169.317062][ T6176] usb 6-1: new high-speed USB device number 30 using dummy_hcd
[ 2169.454999][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[ 2169.472013][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[ 2169.522545][ T6176] usb 6-1: Using ep0 maxpacket: 32
[ 2169.619704][ T5834] Bluetooth: hci5: command tx timeout
[ 2169.645317][ T6176] usb 6-1: no configurations
[ 2169.666643][ T6176] usb 6-1: can't read configurations, error -22
[ 2169.816770][ T6176] usb 6-1: new high-speed USB device number 31 using dummy_hcd
[ 2169.866004][ T6176] usb 6-1: Using ep0 maxpacket: 32
[ 2169.875249][ T6176] usb 6-1: no configurations
[ 2169.902886][ T6176] usb 6-1: can't read configurations, error -22
[ 2169.929989][ T6176] usb usb6-port1: unable to enumerate USB device
[ 2169.938426][T23285] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3831'.
[ 2170.473653][T22992] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 2170.515207][T23290] loop0: detected capacity change from 0 to 32768
[ 2170.520137][T22992] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 2170.528105][T23290] 
[ 2170.528105][T23290]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2170.528105][T23290] 
[ 2170.549669][T23290] 
[ 2170.549669][T23290]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2170.549669][T23290] 
[ 2170.562336][T23290] 
[ 2170.562336][T23290]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2170.562336][T23290] 
[ 2170.572872][T23290] 
[ 2170.572872][T23290]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2170.572872][T23290] 
[ 2170.584223][T23290] 
[ 2170.584223][T23290]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2170.584223][T23290] 
[ 2170.595662][  T111] 
[ 2170.595662][  T111]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2170.595662][  T111] 
[ 2170.597567][   T31] audit: type=1800 audit(1769932121.369:4670): pid=23290 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3834" name="file2" dev="loop0" ino=7 res=0 errno=0
[ 2170.650646][T22992] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 2170.732811][   T60] 
[ 2170.732811][   T60]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2170.732811][   T60] 
[ 2170.738076][T22992] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 2170.776457][   T60] 
[ 2170.776457][   T60]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2170.776457][   T60] 
[ 2170.803746][T23065] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2170.817181][T18325] 
[ 2170.817181][T18325]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2170.817181][T18325] 
[ 2170.859086][  T111] 
[ 2170.859086][  T111]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2170.859086][  T111] 
[ 2170.916670][T18325] 
[ 2170.916670][T18325]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2170.916670][T18325] 
[ 2170.973718][T23225] chnl_net:caif_netlink_parms(): no params data found
[ 2171.109134][T23288] loop9: detected capacity change from 0 to 40427
[ 2171.149512][T23288] F2FS-fs (loop9): invalid crc value
[ 2171.381283][T23065] 8021q: adding VLAN 0 to HW filter on device team0
[ 2171.408212][T23288] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 2171.433706][T23288] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[ 2171.588991][ T1103] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2171.596208][ T1103] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2171.951618][ T5834] Bluetooth: hci5: command tx timeout
[ 2172.376630][T23225] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2172.383810][T23225] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2172.426573][T23225] bridge_slave_0: entered allmulticast mode
[ 2172.434581][T23225] bridge_slave_0: entered promiscuous mode
[ 2172.440940][T13666] syz-executor: attempt to access beyond end of device
[ 2172.440940][T13666] loop9: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 2172.481050][T22917] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2172.488282][T22917] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2172.506142][T13666] CPU: 0 UID: 0 PID: 13666 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2172.506199][T13666] Tainted: [L]=SOFTLOCKUP
[ 2172.506213][T13666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 2172.506235][T13666] Call Trace:
[ 2172.506248][T13666]  <TASK>
[ 2172.506263][T13666]  dump_stack_lvl+0x16c/0x1f0
[ 2172.506329][T13666]  f2fs_handle_critical_error+0x624/0x9f0
[ 2172.506374][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.506421][T13666]  ? f2fs_build_fault_attr+0x53/0x1f0
[ 2172.506495][T13666]  f2fs_write_end_io+0x958/0xcf0
[ 2172.506546][T13666]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 2172.506599][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.506657][T13666]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 2172.506700][T13666]  bio_endio+0x751/0x8a0
[ 2172.506767][T13666]  submit_bio_noacct+0x306/0x1f40
[ 2172.506825][T13666]  __submit_merged_bio+0x33c/0x710
[ 2172.506877][T13666]  __submit_merged_write_cond+0x315/0x3f0
[ 2172.506938][T13666]  f2fs_write_cache_pages+0x2075/0x2570
[ 2172.507023][T13666]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[ 2172.507084][T13666]  ? __lock_acquire+0x436/0x2890
[ 2172.507147][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.507192][T13666]  ? __lock_acquire+0x436/0x2890
[ 2172.507285][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.507389][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.507443][T13666]  f2fs_write_data_pages+0x5ac/0x1080
[ 2172.507509][T13666]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2172.507575][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.507626][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.507671][T13666]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2172.507728][T13666]  do_writepages+0x27a/0x600
[ 2172.507779][T13666]  ? __pfx_do_writepages+0x10/0x10
[ 2172.507819][T13666]  ? do_raw_spin_unlock+0x172/0x230
[ 2172.507873][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.507918][T13666]  ? _raw_spin_unlock+0x28/0x50
[ 2172.507977][T13666]  filemap_writeback+0x225/0x2d0
[ 2172.508025][T13666]  ? __pfx_filemap_writeback+0x10/0x10
[ 2172.508138][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.508183][T13666]  ? find_held_lock+0x2b/0x80
[ 2172.508244][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.508305][T13666]  f2fs_sync_dirty_inodes+0x2a9/0x960
[ 2172.508385][T13666]  block_operations+0x2b0/0xff0
[ 2172.508454][T13666]  ? __pfx_block_operations+0x10/0x10
[ 2172.508574][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.508623][T13666]  ? ktime_get+0x200/0x310
[ 2172.508666][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.508711][T13666]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2172.508769][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.508814][T13666]  ? rcu_is_watching+0x12/0xc0
[ 2172.508857][T13666]  f2fs_write_checkpoint+0x326/0x52f0
[ 2172.508923][T13666]  ? f2fs_stop_gc_thread+0x79/0xd0
[ 2172.508989][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.509033][T13666]  ? rcu_is_watching+0x12/0xc0
[ 2172.509067][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.509112][T13666]  ? kthread_stop+0x272/0x5d0
[ 2172.509169][T13666]  kill_f2fs_super+0x3d0/0x480
[ 2172.509225][T13666]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 2172.509303][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.509367][T13666]  deactivate_locked_super+0xc1/0x1a0
[ 2172.509410][T13666]  deactivate_super+0xde/0x100
[ 2172.509452][T13666]  cleanup_mnt+0x225/0x450
[ 2172.509502][T13666]  task_work_run+0x150/0x240
[ 2172.509555][T13666]  ? __pfx_task_work_run+0x10/0x10
[ 2172.509622][T13666]  exit_to_user_mode_loop+0xfb/0x540
[ 2172.509676][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.509729][T13666]  do_syscall_64+0x4ee/0xf80
[ 2172.509793][T13666]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2172.509831][T13666] RIP: 0033:0x7f0acab90a77
[ 2172.509860][T13666] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 2172.509897][T13666] RSP: 002b:00007ffc86522c58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 2172.509932][T13666] RAX: 0000000000000000 RBX: 00007f0acac13d7d RCX: 00007f0acab90a77
[ 2172.509956][T13666] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc86522d10
[ 2172.509980][T13666] RBP: 00007ffc86522d10 R08: 0000000000000000 R09: 0000000000000000
[ 2172.510003][T13666] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc86523da0
[ 2172.510028][T13666] R13: 00007f0acac13d7d R14: 0000000000212680 R15: 00007ffc86523de0
[ 2172.510085][T13666]  </TASK>
[ 2172.512246][T13666] F2FS-fs (loop9): Stopped filesystem due to reason: 3
[ 2172.634520][T23318] overlayfs: missing 'workdir'
[ 2172.648764][T23225] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2172.756509][T13666] CPU: 1 UID: 0 PID: 13666 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2172.756563][T13666] Tainted: [L]=SOFTLOCKUP
[ 2172.756576][T13666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 2172.756599][T13666] Call Trace:
[ 2172.756612][T13666]  <TASK>
[ 2172.756626][T13666]  dump_stack_lvl+0x16c/0x1f0
[ 2172.756688][T13666]  f2fs_handle_critical_error+0x624/0x9f0
[ 2172.756731][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.756777][T13666]  ? f2fs_build_fault_attr+0x53/0x1f0
[ 2172.756845][T13666]  f2fs_write_end_io+0x958/0xcf0
[ 2172.756894][T13666]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 2172.756944][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.756998][T13666]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 2172.757041][T13666]  bio_endio+0x751/0x8a0
[ 2172.757100][T13666]  submit_bio_noacct+0x306/0x1f40
[ 2172.757160][T13666]  __submit_merged_bio+0x33c/0x710
[ 2172.757209][T13666]  __submit_merged_write_cond+0x315/0x3f0
[ 2172.757265][T13666]  f2fs_write_cache_pages+0x2075/0x2570
[ 2172.757343][T13666]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[ 2172.757401][T13666]  ? __lock_acquire+0x436/0x2890
[ 2172.757455][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.757498][T13666]  ? __lock_acquire+0x436/0x2890
[ 2172.757580][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.757671][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.757723][T13666]  f2fs_write_data_pages+0x5ac/0x1080
[ 2172.757785][T13666]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2172.757846][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.757894][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.757937][T13666]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2172.757991][T13666]  do_writepages+0x27a/0x600
[ 2172.758040][T13666]  ? __pfx_do_writepages+0x10/0x10
[ 2172.758078][T13666]  ? do_raw_spin_unlock+0x172/0x230
[ 2172.758136][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.758179][T13666]  ? _raw_spin_unlock+0x28/0x50
[ 2172.758234][T13666]  filemap_writeback+0x225/0x2d0
[ 2172.758280][T13666]  ? __pfx_filemap_writeback+0x10/0x10
[ 2172.758375][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.758418][T13666]  ? find_held_lock+0x2b/0x80
[ 2172.758476][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.758531][T13666]  f2fs_sync_dirty_inodes+0x2a9/0x960
[ 2172.758604][T13666]  block_operations+0x2b0/0xff0
[ 2172.758668][T13666]  ? __pfx_block_operations+0x10/0x10
[ 2172.758773][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.758820][T13666]  ? ktime_get+0x200/0x310
[ 2172.758861][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.758905][T13666]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2172.758962][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.759005][T13666]  ? rcu_is_watching+0x12/0xc0
[ 2172.759045][T13666]  f2fs_write_checkpoint+0x326/0x52f0
[ 2172.759109][T13666]  ? f2fs_stop_gc_thread+0x79/0xd0
[ 2172.759176][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.759218][T13666]  ? rcu_is_watching+0x12/0xc0
[ 2172.759252][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.759295][T13666]  ? kthread_stop+0x272/0x5d0
[ 2172.759342][T13666]  kill_f2fs_super+0x3d0/0x480
[ 2172.759396][T13666]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 2172.759467][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.759526][T13666]  deactivate_locked_super+0xc1/0x1a0
[ 2172.759565][T13666]  deactivate_super+0xde/0x100
[ 2172.759605][T13666]  cleanup_mnt+0x225/0x450
[ 2172.759652][T13666]  task_work_run+0x150/0x240
[ 2172.759702][T13666]  ? __pfx_task_work_run+0x10/0x10
[ 2172.759765][T13666]  exit_to_user_mode_loop+0xfb/0x540
[ 2172.759818][T13666]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2172.759868][T13666]  do_syscall_64+0x4ee/0xf80
[ 2172.759929][T13666]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2172.759965][T13666] RIP: 0033:0x7f0acab90a77
[ 2172.759995][T13666] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 2172.760030][T13666] RSP: 002b:00007ffc86522c58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 2172.760064][T13666] RAX: 0000000000000000 RBX: 00007f0acac13d7d RCX: 00007f0acab90a77
[ 2172.760089][T13666] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc86522d10
[ 2172.760117][T13666] RBP: 00007ffc86522d10 R08: 0000000000000000 R09: 0000000000000000
[ 2172.760141][T13666] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc86523da0
[ 2172.760165][T13666] R13: 00007f0acac13d7d R14: 0000000000212680 R15: 00007ffc86523de0
[ 2172.760216][T13666]  </TASK>
[ 2172.760230][T13666] F2FS-fs (loop9): Stopped filesystem due to reason: 3
[ 2172.763281][T23225] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2173.459093][T23225] bridge_slave_1: entered allmulticast mode
[ 2173.467178][T23225] bridge_slave_1: entered promiscuous mode
[ 2174.091069][T23225] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2174.160220][T23225] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2176.059046][T23225] team0: Port device team_slave_0 added
[ 2176.126787][T23225] team0: Port device team_slave_1 added
[ 2176.522457][T23340] loop0: detected capacity change from 0 to 32768
[ 2176.562967][T23340] 
[ 2176.562967][T23340]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2176.562967][T23340] 
[ 2176.579156][T23340] 
[ 2176.579156][T23340]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2176.579156][T23340] 
[ 2176.589938][T23340] 
[ 2176.589938][T23340]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2176.589938][T23340] 
[ 2176.600436][T23340] 
[ 2176.600436][T23340]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2176.600436][T23340] 
[ 2176.610907][T23340] 
[ 2176.610907][T23340]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2176.610907][T23340] 
[ 2176.718228][   T31] audit: type=1800 audit(1769932127.391:4671): pid=23340 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3845" name="file2" dev="loop0" ino=7 res=0 errno=0
[ 2176.746911][  T112] 
[ 2176.746911][  T112]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2176.746911][  T112] 
[ 2177.206752][T22992] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2177.291027][T22878] 
[ 2177.291027][T22878]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2177.291027][T22878] 
[ 2177.314536][T22878] 
[ 2177.314536][T22878]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2177.314536][T22878] 
[ 2177.321657][T23225] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2177.334879][T18325] 
[ 2177.334879][T18325]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2177.334879][T18325] 
[ 2177.354561][T23225] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2177.411151][  T111] 
[ 2177.411151][  T111]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2177.411151][  T111] 
[ 2177.473938][T18325] 
[ 2177.473938][T18325]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2177.473938][T18325] 
[ 2177.505534][T23225] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2177.620115][T23225] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2177.671621][T23225] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2177.763179][T23225] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2177.931109][T22992] 8021q: adding VLAN 0 to HW filter on device team0
[ 2179.230841][T22762] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2179.238107][T22762] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2179.278293][T22762] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2179.285500][T22762] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2180.438419][T23225] hsr_slave_0: entered promiscuous mode
[ 2180.445794][T23225] hsr_slave_1: entered promiscuous mode
[ 2180.453123][T23225] debugfs: 'hsr0' already exists in 'hsr'
[ 2180.523283][T23225] Cannot create hsr debugfs directory
[ 2182.000158][T23065] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2182.328273][ T6143] bridge_slave_1: left allmulticast mode
[ 2182.334727][ T6143] bridge_slave_1: left promiscuous mode
[ 2182.340666][ T6143] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2182.351568][ T6143] bridge_slave_0: left allmulticast mode
[ 2182.362467][T23396] loop9: detected capacity change from 0 to 32768
[ 2182.379514][ T6143] bridge_slave_0: left promiscuous mode
[ 2182.514100][T23396] 
[ 2182.514100][T23396]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2182.514100][T23396] 
[ 2182.571606][T14539] usb 6-1: new high-speed USB device number 32 using dummy_hcd
[ 2182.682107][ T6143] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2182.722056][T23396] 
[ 2182.722056][T23396]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2182.722056][T23396] 
[ 2182.732699][T23396] 
[ 2182.732699][T23396]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2182.732699][T23396] 
[ 2182.743653][T23396] 
[ 2182.743653][T23396]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2182.743653][T23396] 
[ 2182.754333][T23396] 
[ 2182.754333][T23396]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2182.754333][T23396] 
[ 2182.858247][  T111] 
[ 2182.858247][  T111]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2182.858247][  T111] 
[ 2182.883234][   T31] audit: type=1800 audit(1769932133.543:4672): pid=23396 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.3856" name="file2" dev="loop9" ino=7 res=0 errno=0
[ 2183.135107][T14539] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2183.164662][T14539] usb 6-1: New USB device found, idVendor=0458, idProduct=4018, bcdDevice= 0.00
[ 2183.193201][ T9759] 
[ 2183.193201][ T9759]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2183.193201][ T9759] 
[ 2183.200177][T14539] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2183.213811][ T9759] 
[ 2183.213811][ T9759]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2183.213811][ T9759] 
[ 2183.240614][T13666] 
[ 2183.240614][T13666]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2183.240614][T13666] 
[ 2183.245961][T14539] usb 6-1: config 0 descriptor??
[ 2183.255448][T13666] 
[ 2183.255448][T13666]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 2183.255448][T13666] 
[ 2183.279479][  T112] ==================================================================
[ 2183.287556][  T112] BUG: KASAN: slab-use-after-free in __mutex_lock+0x1a24/0x1ca0
[ 2183.295202][  T112] Read of size 8 at addr ffff888077486108 by task jfsCommit/112
[ 2183.302842][  T112] 
[ 2183.305177][  T112] CPU: 0 UID: 0 PID: 112 Comm: jfsCommit Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2183.305233][  T112] Tainted: [L]=SOFTLOCKUP
[ 2183.305249][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 2183.305274][  T112] Call Trace:
[ 2183.305286][  T112]  <TASK>
[ 2183.305301][  T112]  dump_stack_lvl+0x116/0x1f0
[ 2183.305364][  T112]  print_report+0xcd/0x630
[ 2183.305406][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2183.305454][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2183.305501][  T112]  ? __phys_addr+0xe8/0x180
[ 2183.305540][  T112]  ? __mutex_lock+0x1a24/0x1ca0
[ 2183.305574][  T112]  kasan_report+0xe0/0x110
[ 2183.305619][  T112]  ? __mutex_lock+0x1a24/0x1ca0
[ 2183.305660][  T112]  __mutex_lock+0x1a24/0x1ca0
[ 2183.305695][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2183.305743][  T112]  ? jfs_syncpt+0x2a/0xa0
[ 2183.305796][  T112]  ? __pfx___mutex_lock+0x10/0x10
[ 2183.305835][  T112]  ? do_raw_spin_lock+0x12c/0x2b0
[ 2183.305895][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2183.305942][  T112]  ? find_held_lock+0x2b/0x80
[ 2183.306004][  T112]  ? jfs_syncpt+0x2a/0xa0
[ 2183.306050][  T112]  jfs_syncpt+0x2a/0xa0
[ 2183.306098][  T112]  txEnd+0x30a/0x5a0
[ 2183.306154][  T112]  jfs_lazycommit+0x783/0xb30
[ 2183.306213][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 2183.306269][  T112]  ? __pfx_default_wake_function+0x10/0x10
[ 2183.306332][  T112]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2183.306392][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2183.306439][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2183.306486][  T112]  ? __kthread_parkme+0x19e/0x250
[ 2183.306524][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 2183.306579][  T112]  kthread+0x3c5/0x780
[ 2183.306623][  T112]  ? __pfx_kthread+0x10/0x10
[ 2183.306670][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2183.306716][  T112]  ? rcu_is_watching+0x12/0xc0
[ 2183.306754][  T112]  ? __pfx_kthread+0x10/0x10
[ 2183.306800][  T112]  ret_from_fork+0x983/0xb10
[ 2183.306843][  T112]  ? __pfx_ret_from_fork+0x10/0x10
[ 2183.306887][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2183.306934][  T112]  ? __switch_to+0x7af/0x10d0
[ 2183.306986][  T112]  ? __pfx_kthread+0x10/0x10
[ 2183.307032][  T112]  ret_from_fork_asm+0x1a/0x30
[ 2183.307104][  T112]  </TASK>
[ 2183.307118][  T112] 
[ 2183.524377][  T112] Allocated by task 23396:
[ 2183.528789][  T112]  kasan_save_stack+0x33/0x60
[ 2183.533480][  T112]  kasan_save_track+0x14/0x30
[ 2183.538168][  T112]  __kasan_kmalloc+0xaa/0xb0
[ 2183.542760][  T112]  lmLogOpen+0x571/0x13c0
[ 2183.547107][  T112]  jfs_mount_rw+0x2e9/0x6f0
[ 2183.551705][  T112]  jfs_fill_super+0xc46/0x1040
[ 2183.556489][  T112]  get_tree_bdev_flags+0x38c/0x620
[ 2183.561608][  T112]  vfs_get_tree+0x8e/0x330
[ 2183.566048][  T112]  path_mount+0x7bf/0x23a0
[ 2183.570487][  T112]  __x64_sys_mount+0x293/0x310
[ 2183.575359][  T112]  do_syscall_64+0xcd/0xf80
[ 2183.579885][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2183.585778][  T112] 
[ 2183.588090][  T112] Freed by task 13666:
[ 2183.592148][  T112]  kasan_save_stack+0x33/0x60
[ 2183.596827][  T112]  kasan_save_track+0x14/0x30
[ 2183.601505][  T112]  kasan_save_free_info+0x3b/0x60
[ 2183.606547][  T112]  __kasan_slab_free+0x5f/0x80
[ 2183.611312][  T112]  kfree+0x2f8/0x6e0
[ 2183.615216][  T112]  lmLogClose+0x585/0x710
[ 2183.619554][  T112]  jfs_umount+0x2f0/0x440
[ 2183.623889][  T112]  jfs_put_super+0x88/0x1d0
[ 2183.628410][  T112]  generic_shutdown_super+0x156/0x390
[ 2183.633801][  T112]  kill_block_super+0x3b/0x90
[ 2183.638499][  T112]  deactivate_locked_super+0xc1/0x1a0
[ 2183.643876][  T112]  deactivate_super+0xde/0x100
[ 2183.648641][  T112]  cleanup_mnt+0x225/0x450
[ 2183.653062][  T112]  task_work_run+0x150/0x240
[ 2183.657668][  T112]  exit_to_user_mode_loop+0xfb/0x540
[ 2183.662968][  T112]  do_syscall_64+0x4ee/0xf80
[ 2183.667578][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2183.673471][  T112] 
[ 2183.675784][  T112] The buggy address belongs to the object at ffff888077486000
[ 2183.675784][  T112]  which belongs to the cache kmalloc-1k of size 1024
[ 2183.689836][  T112] The buggy address is located 264 bytes inside of
[ 2183.689836][  T112]  freed 1024-byte region [ffff888077486000, ffff888077486400)
[ 2183.703726][  T112] 
[ 2183.706046][  T112] The buggy address belongs to the physical page:
[ 2183.712464][  T112] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x77480
[ 2183.721245][  T112] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 2183.729747][  T112] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 2183.737298][  T112] page_type: f5(slab)
[ 2183.741284][  T112] raw: 00fff00000000040 ffff88813ff26dc0 dead000000000100 dead000000000122
[ 2183.749874][  T112] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 2183.758464][  T112] head: 00fff00000000040 ffff88813ff26dc0 dead000000000100 dead000000000122
[ 2183.767137][  T112] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 2183.775810][  T112] head: 00fff00000000003 ffffea0001dd2001 00000000ffffffff 00000000ffffffff
[ 2183.784488][  T112] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[ 2183.793153][  T112] page dumped because: kasan: bad access detected
[ 2183.799558][  T112] page_owner tracks the page as allocated
[ 2183.805348][  T112] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 0, tgid 0 (swapper/0), ts 134688032396, free_ts 134483492053
[ 2183.824124][  T112]  post_alloc_hook+0x1af/0x220
[ 2183.828912][  T112]  get_page_from_freelist+0xd0b/0x31a0
[ 2183.834391][  T112]  __alloc_frozen_pages_noprof+0x25f/0x2430
[ 2183.840408][  T112]  alloc_pages_mpol+0x1fb/0x550
[ 2183.845268][  T112]  new_slab+0x2c3/0x430
[ 2183.849438][  T112]  ___slab_alloc+0xe18/0x1c90
[ 2183.854130][  T112]  __slab_alloc.constprop.0+0x63/0x110
[ 2183.859606][  T112]  __kmalloc_noprof+0x4fc/0x910
[ 2183.864470][  T112]  ieee802_11_parse_elems_full+0x1db/0x3780
[ 2183.870380][  T112]  ieee80211_inform_bss+0x15a/0x1150
[ 2183.875675][  T112]  cfg80211_inform_single_bss_data+0x8e9/0x1d30
[ 2183.881940][  T112]  cfg80211_inform_bss_data+0x22b/0x3be0
[ 2183.887594][  T112]  cfg80211_inform_bss_frame_data+0x26f/0x720
[ 2183.893685][  T112]  ieee80211_bss_info_update+0x310/0xab0
[ 2183.899334][  T112]  ieee80211_scan_rx+0x4cf/0xb30
[ 2183.904280][  T112]  ieee80211_rx_list+0x1c40/0x2ed0
[ 2183.909494][  T112] page last free pid 6072 tgid 6072 stack trace:
[ 2183.915813][  T112]  __free_frozen_pages+0x7df/0x1170
[ 2183.921027][  T112]  __put_partials+0x130/0x170
[ 2183.925719][  T112]  qlist_free_all+0x4c/0xf0
[ 2183.930249][  T112]  kasan_quarantine_reduce+0x195/0x1e0
[ 2183.935713][  T112]  __kasan_slab_alloc+0x69/0x90
[ 2183.940573][  T112]  kmem_cache_alloc_noprof+0x25e/0x770
[ 2183.946060][  T112]  jbd2__journal_start+0x193/0x6a0
[ 2183.951209][  T112]  __ext4_journal_start_sb+0x195/0x640
[ 2183.956672][  T112]  ext4_dirty_inode+0xa1/0x130
[ 2183.961452][  T112]  __mark_inode_dirty+0x1f7/0x1670
[ 2183.966572][  T112]  generic_update_time+0xcf/0xf0
[ 2183.971530][  T112]  file_update_time_flags+0x410/0x520
[ 2183.976922][  T112]  ext4_page_mkwrite+0x33d/0x1880
[ 2183.982478][  T112]  do_page_mkwrite+0x174/0x380
[ 2183.987266][  T112]  do_fault+0x3fc/0x1ad0
[ 2183.991515][  T112]  __handle_mm_fault+0x1919/0x2bb0
[ 2183.996653][  T112] 
[ 2183.998968][  T112] Memory state around the buggy address:
[ 2184.004591][  T112]  ffff888077486000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2184.012650][  T112]  ffff888077486080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2184.020796][  T112] >ffff888077486100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2184.028850][  T112]                       ^
[ 2184.033173][  T112]  ffff888077486180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2184.041242][  T112]  ffff888077486200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2184.049302][  T112] ==================================================================
[ 2184.057677][  T112] Disabling lock debugging due to kernel taint
[ 2184.065234][  T112] ==================================================================
[ 2184.073309][  T112] BUG: KASAN: slab-use-after-free in do_raw_spin_lock+0x26f/0x2b0
[ 2184.081153][  T112] Read of size 4 at addr ffff8880774860c4 by task jfsCommit/112
[ 2184.088794][  T112] 
[ 2184.091131][  T112] CPU: 0 UID: 0 PID: 112 Comm: jfsCommit Tainted: G    B        L      syzkaller #0 PREEMPT(full) 
[ 2184.091192][  T112] Tainted: [B]=BAD_PAGE, [L]=SOFTLOCKUP
[ 2184.091208][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 2184.091231][  T112] Call Trace:
[ 2184.091244][  T112]  <TASK>
[ 2184.091258][  T112]  dump_stack_lvl+0x116/0x1f0
[ 2184.091320][  T112]  print_report+0xcd/0x630
[ 2184.091362][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2184.091409][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2184.091454][  T112]  ? __phys_addr+0xe8/0x180
[ 2184.091492][  T112]  ? do_raw_spin_lock+0x26f/0x2b0
[ 2184.091544][  T112]  kasan_report+0xe0/0x110
[ 2184.091587][  T112]  ? do_raw_spin_lock+0x26f/0x2b0
[ 2184.091645][  T112]  do_raw_spin_lock+0x26f/0x2b0
[ 2184.091696][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2184.091742][  T112]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 2184.091794][  T112]  ? lock_acquire+0x2cd/0x330
[ 2184.091838][  T112]  ? __mutex_lock+0x1a24/0x1ca0
[ 2184.091877][  T112]  _raw_spin_lock_irqsave+0x42/0x60
[ 2184.091929][  T112]  ? __mutex_lock+0xca5/0x1ca0
[ 2184.091962][  T112]  __mutex_lock+0xca5/0x1ca0
[ 2184.091998][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2184.092044][  T112]  ? jfs_syncpt+0x2a/0xa0
[ 2184.092094][  T112]  ? __pfx___mutex_lock+0x10/0x10
[ 2184.092135][  T112]  ? do_raw_spin_lock+0x12c/0x2b0
[ 2184.092191][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2184.092236][  T112]  ? find_held_lock+0x2b/0x80
[ 2184.092297][  T112]  ? jfs_syncpt+0x2a/0xa0
[ 2184.092341][  T112]  jfs_syncpt+0x2a/0xa0
[ 2184.092387][  T112]  txEnd+0x30a/0x5a0
[ 2184.092437][  T112]  jfs_lazycommit+0x783/0xb30
[ 2184.092494][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 2184.092550][  T112]  ? __pfx_default_wake_function+0x10/0x10
[ 2184.092612][  T112]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2184.092669][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2184.092716][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2184.092761][  T112]  ? __kthread_parkme+0x19e/0x250
[ 2184.092799][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 2184.092851][  T112]  kthread+0x3c5/0x780
[ 2184.092894][  T112]  ? __pfx_kthread+0x10/0x10
[ 2184.092938][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2184.092984][  T112]  ? rcu_is_watching+0x12/0xc0
[ 2184.093019][  T112]  ? __pfx_kthread+0x10/0x10
[ 2184.093064][  T112]  ret_from_fork+0x983/0xb10
[ 2184.093105][  T112]  ? __pfx_ret_from_fork+0x10/0x10
[ 2184.093154][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2184.093200][  T112]  ? __switch_to+0x7af/0x10d0
[ 2184.093250][  T112]  ? __pfx_kthread+0x10/0x10
[ 2184.093296][  T112]  ret_from_fork_asm+0x1a/0x30
[ 2184.093365][  T112]  </TASK>
[ 2184.093378][  T112] 
[ 2184.347629][  T112] Allocated by task 23396:
[ 2184.352031][  T112]  kasan_save_stack+0x33/0x60
[ 2184.356711][  T112]  kasan_save_track+0x14/0x30
[ 2184.361475][  T112]  __kasan_kmalloc+0xaa/0xb0
[ 2184.366061][  T112]  lmLogOpen+0x571/0x13c0
[ 2184.370405][  T112]  jfs_mount_rw+0x2e9/0x6f0
[ 2184.374913][  T112]  jfs_fill_super+0xc46/0x1040
[ 2184.379698][  T112]  get_tree_bdev_flags+0x38c/0x620
[ 2184.384815][  T112]  vfs_get_tree+0x8e/0x330
[ 2184.389251][  T112]  path_mount+0x7bf/0x23a0
[ 2184.393683][  T112]  __x64_sys_mount+0x293/0x310
[ 2184.398467][  T112]  do_syscall_64+0xcd/0xf80
[ 2184.402989][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2184.408886][  T112] 
[ 2184.411197][  T112] Freed by task 13666:
[ 2184.415250][  T112]  kasan_save_stack+0x33/0x60
[ 2184.419927][  T112]  kasan_save_track+0x14/0x30
[ 2184.424605][  T112]  kasan_save_free_info+0x3b/0x60
[ 2184.429645][  T112]  __kasan_slab_free+0x5f/0x80
[ 2184.434407][  T112]  kfree+0x2f8/0x6e0
[ 2184.438314][  T112]  lmLogClose+0x585/0x710
[ 2184.442653][  T112]  jfs_umount+0x2f0/0x440
[ 2184.446987][  T112]  jfs_put_super+0x88/0x1d0
[ 2184.451508][  T112]  generic_shutdown_super+0x156/0x390
[ 2184.456901][  T112]  kill_block_super+0x3b/0x90
[ 2184.461599][  T112]  deactivate_locked_super+0xc1/0x1a0
[ 2184.466976][  T112]  deactivate_super+0xde/0x100
[ 2184.471739][  T112]  cleanup_mnt+0x225/0x450
[ 2184.476160][  T112]  task_work_run+0x150/0x240
[ 2184.480763][  T112]  exit_to_user_mode_loop+0xfb/0x540
[ 2184.486062][  T112]  do_syscall_64+0x4ee/0xf80
[ 2184.490678][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2184.496569][  T112] 
[ 2184.498889][  T112] The buggy address belongs to the object at ffff888077486000
[ 2184.498889][  T112]  which belongs to the cache kmalloc-1k of size 1024
[ 2184.512938][  T112] The buggy address is located 196 bytes inside of
[ 2184.512938][  T112]  freed 1024-byte region [ffff888077486000, ffff888077486400)
[ 2184.526822][  T112] 
[ 2184.529139][  T112] The buggy address belongs to the physical page:
[ 2184.535536][  T112] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x77480
[ 2184.544304][  T112] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 2184.552887][  T112] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 2184.560428][  T112] page_type: f5(slab)
[ 2184.564408][  T112] raw: 00fff00000000040 ffff88813ff26dc0 dead000000000100 dead000000000122
[ 2184.572993][  T112] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 2184.581593][  T112] head: 00fff00000000040 ffff88813ff26dc0 dead000000000100 dead000000000122
[ 2184.590269][  T112] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 2184.599033][  T112] head: 00fff00000000003 ffffea0001dd2001 00000000ffffffff 00000000ffffffff
[ 2184.607706][  T112] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[ 2184.616366][  T112] page dumped because: kasan: bad access detected
[ 2184.622780][  T112] page_owner tracks the page as allocated
[ 2184.628493][  T112] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 0, tgid 0 (swapper/0), ts 134688032396, free_ts 134483492053
[ 2184.647181][  T112]  post_alloc_hook+0x1af/0x220
[ 2184.651970][  T112]  get_page_from_freelist+0xd0b/0x31a0
[ 2184.657448][  T112]  __alloc_frozen_pages_noprof+0x25f/0x2430
[ 2184.663364][  T112]  alloc_pages_mpol+0x1fb/0x550
[ 2184.668223][  T112]  new_slab+0x2c3/0x430
[ 2184.672394][  T112]  ___slab_alloc+0xe18/0x1c90
[ 2184.677086][  T112]  __slab_alloc.constprop.0+0x63/0x110
[ 2184.682595][  T112]  __kmalloc_noprof+0x4fc/0x910
[ 2184.687463][  T112]  ieee802_11_parse_elems_full+0x1db/0x3780
[ 2184.693373][  T112]  ieee80211_inform_bss+0x15a/0x1150
[ 2184.698673][  T112]  cfg80211_inform_single_bss_data+0x8e9/0x1d30
[ 2184.704942][  T112]  cfg80211_inform_bss_data+0x22b/0x3be0
[ 2184.710595][  T112]  cfg80211_inform_bss_frame_data+0x26f/0x720
[ 2184.716684][  T112]  ieee80211_bss_info_update+0x310/0xab0
[ 2184.722325][  T112]  ieee80211_scan_rx+0x4cf/0xb30
[ 2184.727272][  T112]  ieee80211_rx_list+0x1c40/0x2ed0
[ 2184.732394][  T112] page last free pid 6072 tgid 6072 stack trace:
[ 2184.738708][  T112]  __free_frozen_pages+0x7df/0x1170
[ 2184.743921][  T112]  __put_partials+0x130/0x170
[ 2184.748632][  T112]  qlist_free_all+0x4c/0xf0
[ 2184.753181][  T112]  kasan_quarantine_reduce+0x195/0x1e0
[ 2184.758642][  T112]  __kasan_slab_alloc+0x69/0x90
[ 2184.763500][  T112]  kmem_cache_alloc_noprof+0x25e/0x770
[ 2184.768979][  T112]  jbd2__journal_start+0x193/0x6a0
[ 2184.774108][  T112]  __ext4_journal_start_sb+0x195/0x640
[ 2184.779588][  T112]  ext4_dirty_inode+0xa1/0x130
[ 2184.784358][  T112]  __mark_inode_dirty+0x1f7/0x1670
[ 2184.789476][  T112]  generic_update_time+0xcf/0xf0
[ 2184.794432][  T112]  file_update_time_flags+0x410/0x520
[ 2184.799828][  T112]  ext4_page_mkwrite+0x33d/0x1880
[ 2184.804864][  T112]  do_page_mkwrite+0x174/0x380
[ 2184.809656][  T112]  do_fault+0x3fc/0x1ad0
[ 2184.813906][  T112]  __handle_mm_fault+0x1919/0x2bb0
[ 2184.819031][  T112] 
[ 2184.821340][  T112] Memory state around the buggy address:
[ 2184.826963][  T112]  ffff888077485f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 2184.835028][  T112]  ffff888077486000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2184.843091][  T112] >ffff888077486080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2184.851149][  T112]                                            ^
[ 2184.857294][  T112]  ffff888077486100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2184.865351][  T112]  ffff888077486180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2184.873465][  T112] ==================================================================
[ 2184.881693][  T112] ==================================================================
[ 2184.889746][  T112] BUG: KASAN: slab-use-after-free in do_raw_spin_lock+0x27f/0x2b0
[ 2184.897664][  T112] Read of size 8 at addr ffff8880774860d0 by task jfsCommit/112
[ 2184.905380][  T112] 
[ 2184.907710][  T112] CPU: 0 UID: 0 PID: 112 Comm: jfsCommit Tainted: G    B        L      syzkaller #0 PREEMPT(full) 
[ 2184.907764][  T112] Tainted: [B]=BAD_PAGE, [L]=SOFTLOCKUP
[ 2184.907780][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 2184.907802][  T112] Call Trace:
[ 2184.907816][  T112]  <TASK>
[ 2184.907830][  T112]  dump_stack_lvl+0x116/0x1f0
[ 2184.907887][  T112]  print_report+0xcd/0x630
[ 2184.907925][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2184.907968][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2184.908009][  T112]  ? __phys_addr+0xe8/0x180
[ 2184.908043][  T112]  ? do_raw_spin_lock+0x27f/0x2b0
[ 2184.908091][  T112]  kasan_report+0xe0/0x110
[ 2184.908135][  T112]  ? do_raw_spin_lock+0x27f/0x2b0
[ 2184.908188][  T112]  do_raw_spin_lock+0x27f/0x2b0
[ 2184.908235][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2184.908278][  T112]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 2184.908325][  T112]  ? lock_acquire+0x2cd/0x330
[ 2184.908365][  T112]  ? __mutex_lock+0x1a24/0x1ca0
[ 2184.908400][  T112]  _raw_spin_lock_irqsave+0x42/0x60
[ 2184.908448][  T112]  ? __mutex_lock+0xca5/0x1ca0
[ 2184.908478][  T112]  __mutex_lock+0xca5/0x1ca0
[ 2184.908509][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2184.908551][  T112]  ? jfs_syncpt+0x2a/0xa0
[ 2184.908598][  T112]  ? __pfx___mutex_lock+0x10/0x10
[ 2184.908632][  T112]  ? do_raw_spin_lock+0x12c/0x2b0
[ 2184.908684][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2184.908725][  T112]  ? find_held_lock+0x2b/0x80
[ 2184.908781][  T112]  ? jfs_syncpt+0x2a/0xa0
[ 2184.908821][  T112]  jfs_syncpt+0x2a/0xa0
[ 2184.908864][  T112]  txEnd+0x30a/0x5a0
[ 2184.908909][  T112]  jfs_lazycommit+0x783/0xb30
[ 2184.908962][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 2184.909012][  T112]  ? __pfx_default_wake_function+0x10/0x10
[ 2184.909068][  T112]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2184.909130][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2184.909172][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2184.909214][  T112]  ? __kthread_parkme+0x19e/0x250
[ 2184.909247][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 2184.909296][  T112]  kthread+0x3c5/0x780
[ 2184.909337][  T112]  ? __pfx_kthread+0x10/0x10
[ 2184.909377][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2184.909418][  T112]  ? rcu_is_watching+0x12/0xc0
[ 2184.909450][  T112]  ? __pfx_kthread+0x10/0x10
[ 2184.909491][  T112]  ret_from_fork+0x983/0xb10
[ 2184.909529][  T112]  ? __pfx_ret_from_fork+0x10/0x10
[ 2184.909568][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2184.909609][  T112]  ? __switch_to+0x7af/0x10d0
[ 2184.909655][  T112]  ? __pfx_kthread+0x10/0x10
[ 2184.909696][  T112]  ret_from_fork_asm+0x1a/0x30
[ 2184.909759][  T112]  </TASK>
[ 2184.909771][  T112] 
[ 2185.163743][  T112] Allocated by task 23396:
[ 2185.168152][  T112]  kasan_save_stack+0x33/0x60
[ 2185.172837][  T112]  kasan_save_track+0x14/0x30
[ 2185.177517][  T112]  __kasan_kmalloc+0xaa/0xb0
[ 2185.182111][  T112]  lmLogOpen+0x571/0x13c0
[ 2185.186456][  T112]  jfs_mount_rw+0x2e9/0x6f0
[ 2185.190966][  T112]  jfs_fill_super+0xc46/0x1040
[ 2185.195755][  T112]  get_tree_bdev_flags+0x38c/0x620
[ 2185.201137][  T112]  vfs_get_tree+0x8e/0x330
[ 2185.205583][  T112]  path_mount+0x7bf/0x23a0
[ 2185.210016][  T112]  __x64_sys_mount+0x293/0x310
[ 2185.214886][  T112]  do_syscall_64+0xcd/0xf80
[ 2185.219409][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2185.225306][  T112] 
[ 2185.227882][  T112] Freed by task 13666:
[ 2185.231935][  T112]  kasan_save_stack+0x33/0x60
[ 2185.236622][  T112]  kasan_save_track+0x14/0x30
[ 2185.241299][  T112]  kasan_save_free_info+0x3b/0x60
[ 2185.246340][  T112]  __kasan_slab_free+0x5f/0x80
[ 2185.251105][  T112]  kfree+0x2f8/0x6e0
[ 2185.255017][  T112]  lmLogClose+0x585/0x710
[ 2185.259361][  T112]  jfs_umount+0x2f0/0x440
[ 2185.263692][  T112]  jfs_put_super+0x88/0x1d0
[ 2185.268213][  T112]  generic_shutdown_super+0x156/0x390
[ 2185.273607][  T112]  kill_block_super+0x3b/0x90
[ 2185.278303][  T112]  deactivate_locked_super+0xc1/0x1a0
[ 2185.283673][  T112]  deactivate_super+0xde/0x100
[ 2185.288436][  T112]  cleanup_mnt+0x225/0x450
[ 2185.292857][  T112]  task_work_run+0x150/0x240
[ 2185.297455][  T112]  exit_to_user_mode_loop+0xfb/0x540
[ 2185.302790][  T112]  do_syscall_64+0x4ee/0xf80
[ 2185.307402][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2185.313295][  T112] 
[ 2185.315605][  T112] The buggy address belongs to the object at ffff888077486000
[ 2185.315605][  T112]  which belongs to the cache kmalloc-1k of size 1024
[ 2185.329653][  T112] The buggy address is located 208 bytes inside of
[ 2185.329653][  T112]  freed 1024-byte region [ffff888077486000, ffff888077486400)
[ 2185.343535][  T112] 
[ 2185.345848][  T112] The buggy address belongs to the physical page:
[ 2185.352243][  T112] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x77480
[ 2185.360999][  T112] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 2185.369494][  T112] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 2185.377034][  T112] page_type: f5(slab)
[ 2185.381016][  T112] raw: 00fff00000000040 ffff88813ff26dc0 dead000000000100 dead000000000122
[ 2185.389599][  T112] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 2185.398183][  T112] head: 00fff00000000040 ffff88813ff26dc0 dead000000000100 dead000000000122
[ 2185.406854][  T112] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 2185.415526][  T112] head: 00fff00000000003 ffffea0001dd2001 00000000ffffffff 00000000ffffffff
[ 2185.424204][  T112] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[ 2185.432868][  T112] page dumped because: kasan: bad access detected
[ 2185.439268][  T112] page_owner tracks the page as allocated
[ 2185.444971][  T112] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 0, tgid 0 (swapper/0), ts 134688032396, free_ts 134483492053
[ 2185.463657][  T112]  post_alloc_hook+0x1af/0x220
[ 2185.468531][  T112]  get_page_from_freelist+0xd0b/0x31a0
[ 2185.474008][  T112]  __alloc_frozen_pages_noprof+0x25f/0x2430
[ 2185.479922][  T112]  alloc_pages_mpol+0x1fb/0x550
[ 2185.484777][  T112]  new_slab+0x2c3/0x430
[ 2185.488945][  T112]  ___slab_alloc+0xe18/0x1c90
[ 2185.493632][  T112]  __slab_alloc.constprop.0+0x63/0x110
[ 2185.499110][  T112]  __kmalloc_noprof+0x4fc/0x910
[ 2185.503982][  T112]  ieee802_11_parse_elems_full+0x1db/0x3780
[ 2185.509893][  T112]  ieee80211_inform_bss+0x15a/0x1150
[ 2185.515184][  T112]  cfg80211_inform_single_bss_data+0x8e9/0x1d30
[ 2185.521535][  T112]  cfg80211_inform_bss_data+0x22b/0x3be0
[ 2185.527187][  T112]  cfg80211_inform_bss_frame_data+0x26f/0x720
[ 2185.533384][  T112]  ieee80211_bss_info_update+0x310/0xab0
[ 2185.539027][  T112]  ieee80211_scan_rx+0x4cf/0xb30
[ 2185.543970][  T112]  ieee80211_rx_list+0x1c40/0x2ed0
[ 2185.549100][  T112] page last free pid 6072 tgid 6072 stack trace:
[ 2185.555421][  T112]  __free_frozen_pages+0x7df/0x1170
[ 2185.560633][  T112]  __put_partials+0x130/0x170
[ 2185.565347][  T112]  qlist_free_all+0x4c/0xf0
[ 2185.569880][  T112]  kasan_quarantine_reduce+0x195/0x1e0
[ 2185.575341][  T112]  __kasan_slab_alloc+0x69/0x90
[ 2185.580205][  T112]  kmem_cache_alloc_noprof+0x25e/0x770
[ 2185.585771][  T112]  jbd2__journal_start+0x193/0x6a0
[ 2185.590902][  T112]  __ext4_journal_start_sb+0x195/0x640
[ 2185.596381][  T112]  ext4_dirty_inode+0xa1/0x130
[ 2185.601154][  T112]  __mark_inode_dirty+0x1f7/0x1670
[ 2185.606268][  T112]  generic_update_time+0xcf/0xf0
[ 2185.611224][  T112]  file_update_time_flags+0x410/0x520
[ 2185.616616][  T112]  ext4_page_mkwrite+0x33d/0x1880
[ 2185.621650][  T112]  do_page_mkwrite+0x174/0x380
[ 2185.626433][  T112]  do_fault+0x3fc/0x1ad0
[ 2185.630684][  T112]  __handle_mm_fault+0x1919/0x2bb0
[ 2185.635815][  T112] 
[ 2185.638132][  T112] Memory state around the buggy address:
[ 2185.643755][  T112]  ffff888077485f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 2185.651815][  T112]  ffff888077486000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2185.659880][  T112] >ffff888077486080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2185.667932][  T112]                                                  ^
[ 2185.674593][  T112]  ffff888077486100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2185.682650][  T112]  ffff888077486180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2185.690787][  T112] ==================================================================
[ 2185.698838][  T112] ==================================================================
[ 2185.706979][  T112] BUG: KASAN: slab-use-after-free in do_raw_spin_lock+0x265/0x2b0
[ 2185.714826][  T112] Read of size 4 at addr ffff8880774860c8 by task jfsCommit/112
[ 2185.722456][  T112] 
[ 2185.724782][  T112] CPU: 0 UID: 0 PID: 112 Comm: jfsCommit Tainted: G    B        L      syzkaller #0 PREEMPT(full) 
[ 2185.724834][  T112] Tainted: [B]=BAD_PAGE, [L]=SOFTLOCKUP
[ 2185.724848][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 2185.724869][  T112] Call Trace:
[ 2185.724928][  T112]  <TASK>
[ 2185.724948][  T112]  dump_stack_lvl+0x116/0x1f0
[ 2185.725030][  T112]  print_report+0xcd/0x630
[ 2185.725084][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2185.725165][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2185.725226][  T112]  ? __phys_addr+0xe8/0x180
[ 2185.725271][  T112]  ? do_raw_spin_lock+0x265/0x2b0
[ 2185.725329][  T112]  kasan_report+0xe0/0x110
[ 2185.725377][  T112]  ? do_raw_spin_lock+0x265/0x2b0
[ 2185.725442][  T112]  do_raw_spin_lock+0x265/0x2b0
[ 2185.725500][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2185.725552][  T112]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 2185.725611][  T112]  ? lock_acquire+0x2cd/0x330
[ 2185.725660][  T112]  ? __mutex_lock+0x1a24/0x1ca0
[ 2185.725704][  T112]  _raw_spin_lock_irqsave+0x42/0x60
[ 2185.725762][  T112]  ? __mutex_lock+0xca5/0x1ca0
[ 2185.725799][  T112]  __mutex_lock+0xca5/0x1ca0
[ 2185.725837][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2185.725888][  T112]  ? jfs_syncpt+0x2a/0xa0
[ 2185.725945][  T112]  ? __pfx___mutex_lock+0x10/0x10
[ 2185.725987][  T112]  ? do_raw_spin_lock+0x12c/0x2b0
[ 2185.726051][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2185.726102][  T112]  ? find_held_lock+0x2b/0x80
[ 2185.726179][  T112]  ? jfs_syncpt+0x2a/0xa0
[ 2185.726232][  T112]  jfs_syncpt+0x2a/0xa0
[ 2185.726283][  T112]  txEnd+0x30a/0x5a0
[ 2185.726335][  T112]  jfs_lazycommit+0x783/0xb30
[ 2185.726398][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 2185.726457][  T112]  ? __pfx_default_wake_function+0x10/0x10
[ 2185.726523][  T112]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2185.726586][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2185.726636][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2185.726685][  T112]  ? __kthread_parkme+0x19e/0x250
[ 2185.726724][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 2185.726781][  T112]  kthread+0x3c5/0x780
[ 2185.726828][  T112]  ? __pfx_kthread+0x10/0x10
[ 2185.726877][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2185.726926][  T112]  ? rcu_is_watching+0x12/0xc0
[ 2185.726963][  T112]  ? __pfx_kthread+0x10/0x10
[ 2185.727012][  T112]  ret_from_fork+0x983/0xb10
[ 2185.727056][  T112]  ? __pfx_ret_from_fork+0x10/0x10
[ 2185.727103][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2185.727156][  T112]  ? __switch_to+0x7af/0x10d0
[ 2185.727209][  T112]  ? __pfx_kthread+0x10/0x10
[ 2185.727256][  T112]  ret_from_fork_asm+0x1a/0x30
[ 2185.727318][  T112]  </TASK>
[ 2185.727330][  T112] 
[ 2185.981244][  T112] Allocated by task 23396:
[ 2185.985656][  T112]  kasan_save_stack+0x33/0x60
[ 2185.990345][  T112]  kasan_save_track+0x14/0x30
[ 2185.995035][  T112]  __kasan_kmalloc+0xaa/0xb0
[ 2185.999626][  T112]  lmLogOpen+0x571/0x13c0
[ 2186.003975][  T112]  jfs_mount_rw+0x2e9/0x6f0
[ 2186.008489][  T112]  jfs_fill_super+0xc46/0x1040
[ 2186.013285][  T112]  get_tree_bdev_flags+0x38c/0x620
[ 2186.018401][  T112]  vfs_get_tree+0x8e/0x330
[ 2186.022839][  T112]  path_mount+0x7bf/0x23a0
[ 2186.027279][  T112]  __x64_sys_mount+0x293/0x310
[ 2186.032061][  T112]  do_syscall_64+0xcd/0xf80
[ 2186.036584][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2186.042482][  T112] 
[ 2186.044796][  T112] Freed by task 13666:
[ 2186.048852][  T112]  kasan_save_stack+0x33/0x60
[ 2186.053547][  T112]  kasan_save_track+0x14/0x30
[ 2186.058226][  T112]  kasan_save_free_info+0x3b/0x60
[ 2186.063360][  T112]  __kasan_slab_free+0x5f/0x80
[ 2186.068911][  T112]  kfree+0x2f8/0x6e0
[ 2186.072825][  T112]  lmLogClose+0x585/0x710
[ 2186.077178][  T112]  jfs_umount+0x2f0/0x440
[ 2186.081514][  T112]  jfs_put_super+0x88/0x1d0
[ 2186.086073][  T112]  generic_shutdown_super+0x156/0x390
[ 2186.091640][  T112]  kill_block_super+0x3b/0x90
[ 2186.096337][  T112]  deactivate_locked_super+0xc1/0x1a0
[ 2186.101706][  T112]  deactivate_super+0xde/0x100
[ 2186.106481][  T112]  cleanup_mnt+0x225/0x450
[ 2186.110943][  T112]  task_work_run+0x150/0x240
[ 2186.115543][  T112]  exit_to_user_mode_loop+0xfb/0x540
[ 2186.120860][  T112]  do_syscall_64+0x4ee/0xf80
[ 2186.125480][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2186.131379][  T112] 
[ 2186.133691][  T112] The buggy address belongs to the object at ffff888077486000
[ 2186.133691][  T112]  which belongs to the cache kmalloc-1k of size 1024
[ 2186.147746][  T112] The buggy address is located 200 bytes inside of
[ 2186.147746][  T112]  freed 1024-byte region [ffff888077486000, ffff888077486400)
[ 2186.161647][  T112] 
[ 2186.163961][  T112] The buggy address belongs to the physical page:
[ 2186.170359][  T112] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x77480
[ 2186.179120][  T112] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 2186.187705][  T112] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 2186.195253][  T112] page_type: f5(slab)
[ 2186.199326][  T112] raw: 00fff00000000040 ffff88813ff26dc0 dead000000000100 dead000000000122
[ 2186.207913][  T112] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 2186.216502][  T112] head: 00fff00000000040 ffff88813ff26dc0 dead000000000100 dead000000000122
[ 2186.225187][  T112] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 2186.234125][  T112] head: 00fff00000000003 ffffea0001dd2001 00000000ffffffff 00000000ffffffff
[ 2186.242799][  T112] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[ 2186.251459][  T112] page dumped because: kasan: bad access detected
[ 2186.257862][  T112] page_owner tracks the page as allocated
[ 2186.263569][  T112] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 0, tgid 0 (swapper/0), ts 134688032396, free_ts 134483492053
[ 2186.282339][  T112]  post_alloc_hook+0x1af/0x220
[ 2186.287129][  T112]  get_page_from_freelist+0xd0b/0x31a0
[ 2186.292607][  T112]  __alloc_frozen_pages_noprof+0x25f/0x2430
[ 2186.298522][  T112]  alloc_pages_mpol+0x1fb/0x550
[ 2186.303381][  T112]  new_slab+0x2c3/0x430
[ 2186.307553][  T112]  ___slab_alloc+0xe18/0x1c90
[ 2186.312243][  T112]  __slab_alloc.constprop.0+0x63/0x110
[ 2186.317717][  T112]  __kmalloc_noprof+0x4fc/0x910
[ 2186.322584][  T112]  ieee802_11_parse_elems_full+0x1db/0x3780
[ 2186.328583][  T112]  ieee80211_inform_bss+0x15a/0x1150
[ 2186.333881][  T112]  cfg80211_inform_single_bss_data+0x8e9/0x1d30
[ 2186.340148][  T112]  cfg80211_inform_bss_data+0x22b/0x3be0
[ 2186.345894][  T112]  cfg80211_inform_bss_frame_data+0x26f/0x720
[ 2186.351986][  T112]  ieee80211_bss_info_update+0x310/0xab0
[ 2186.357626][  T112]  ieee80211_scan_rx+0x4cf/0xb30
[ 2186.362573][  T112]  ieee80211_rx_list+0x1c40/0x2ed0
[ 2186.367704][  T112] page last free pid 6072 tgid 6072 stack trace:
[ 2186.374029][  T112]  __free_frozen_pages+0x7df/0x1170
[ 2186.379247][  T112]  __put_partials+0x130/0x170
[ 2186.383942][  T112]  qlist_free_all+0x4c/0xf0
[ 2186.388470][  T112]  kasan_quarantine_reduce+0x195/0x1e0
[ 2186.393932][  T112]  __kasan_slab_alloc+0x69/0x90
[ 2186.398788][  T112]  kmem_cache_alloc_noprof+0x25e/0x770
[ 2186.404264][  T112]  jbd2__journal_start+0x193/0x6a0
[ 2186.409409][  T112]  __ext4_journal_start_sb+0x195/0x640
[ 2186.414876][  T112]  ext4_dirty_inode+0xa1/0x130
[ 2186.419649][  T112]  __mark_inode_dirty+0x1f7/0x1670
[ 2186.424764][  T112]  generic_update_time+0xcf/0xf0
[ 2186.429725][  T112]  file_update_time_flags+0x410/0x520
[ 2186.435121][  T112]  ext4_page_mkwrite+0x33d/0x1880
[ 2186.440243][  T112]  do_page_mkwrite+0x174/0x380
[ 2186.445030][  T112]  do_fault+0x3fc/0x1ad0
[ 2186.449302][  T112]  __handle_mm_fault+0x1919/0x2bb0
[ 2186.454440][  T112] 
[ 2186.456751][  T112] Memory state around the buggy address:
[ 2186.462377][  T112]  ffff888077485f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 2186.470436][  T112]  ffff888077486000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2186.478490][  T112] >ffff888077486080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2186.486545][  T112]                                               ^
[ 2186.493039][  T112]  ffff888077486100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2186.501102][  T112]  ffff888077486180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2186.509156][  T112] ==================================================================
[ 2186.517314][  T112] ==================================================================
[ 2186.525363][  T112] BUG: KASAN: slab-use-after-free in do_raw_spin_lock+0x11d/0x2b0
[ 2186.533280][  T112] Write of size 4 at addr ffff8880774860c0 by task jfsCommit/112
[ 2186.540993][  T112] 
[ 2186.543313][  T112] CPU: 0 UID: 0 PID: 112 Comm: jfsCommit Tainted: G    B        L      syzkaller #0 PREEMPT(full) 
[ 2186.543364][  T112] Tainted: [B]=BAD_PAGE, [L]=SOFTLOCKUP
[ 2186.543378][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 2186.543400][  T112] Call Trace:
[ 2186.543414][  T112]  <TASK>
[ 2186.543427][  T112]  dump_stack_lvl+0x116/0x1f0
[ 2186.543483][  T112]  print_report+0xcd/0x630
[ 2186.543520][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2186.543563][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2186.543604][  T112]  ? __phys_addr+0xe8/0x180
[ 2186.543638][  T112]  ? do_raw_spin_lock+0x11d/0x2b0
[ 2186.543685][  T112]  kasan_report+0xe0/0x110
[ 2186.543723][  T112]  ? do_raw_spin_lock+0x11d/0x2b0
[ 2186.543775][  T112]  kasan_check_range+0x100/0x1b0
[ 2186.543822][  T112]  do_raw_spin_lock+0x11d/0x2b0
[ 2186.543873][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2186.543915][  T112]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 2186.543962][  T112]  ? lock_acquire+0x2cd/0x330
[ 2186.544001][  T112]  ? __mutex_lock+0x1a24/0x1ca0
[ 2186.544036][  T112]  _raw_spin_lock_irqsave+0x42/0x60
[ 2186.544082][  T112]  ? __mutex_lock+0xca5/0x1ca0
[ 2186.544112][  T112]  __mutex_lock+0xca5/0x1ca0
[ 2186.544143][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2186.544185][  T112]  ? jfs_syncpt+0x2a/0xa0
[ 2186.544231][  T112]  ? __pfx___mutex_lock+0x10/0x10
[ 2186.544265][  T112]  ? do_raw_spin_lock+0x12c/0x2b0
[ 2186.544316][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2186.544356][  T112]  ? find_held_lock+0x2b/0x80
[ 2186.544412][  T112]  ? jfs_syncpt+0x2a/0xa0
[ 2186.544451][  T112]  jfs_syncpt+0x2a/0xa0
[ 2186.544494][  T112]  txEnd+0x30a/0x5a0
[ 2186.544538][  T112]  jfs_lazycommit+0x783/0xb30
[ 2186.544590][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 2186.544639][  T112]  ? __pfx_default_wake_function+0x10/0x10
[ 2186.544696][  T112]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2186.544748][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2186.544790][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2186.544830][  T112]  ? __kthread_parkme+0x19e/0x250
[ 2186.544872][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 2186.544919][  T112]  kthread+0x3c5/0x780
[ 2186.544960][  T112]  ? __pfx_kthread+0x10/0x10
[ 2186.545000][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2186.545041][  T112]  ? rcu_is_watching+0x12/0xc0
[ 2186.545073][  T112]  ? __pfx_kthread+0x10/0x10
[ 2186.545113][  T112]  ret_from_fork+0x983/0xb10
[ 2186.545151][  T112]  ? __pfx_ret_from_fork+0x10/0x10
[ 2186.545190][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2186.545231][  T112]  ? __switch_to+0x7af/0x10d0
[ 2186.545275][  T112]  ? __pfx_kthread+0x10/0x10
[ 2186.545316][  T112]  ret_from_fork_asm+0x1a/0x30
[ 2186.545378][  T112]  </TASK>
[ 2186.545390][  T112] 
[ 2186.804281][  T112] Allocated by task 23396:
[ 2186.808794][  T112]  kasan_save_stack+0x33/0x60
[ 2186.813477][  T112]  kasan_save_track+0x14/0x30
[ 2186.818161][  T112]  __kasan_kmalloc+0xaa/0xb0
[ 2186.822751][  T112]  lmLogOpen+0x571/0x13c0
[ 2186.827089][  T112]  jfs_mount_rw+0x2e9/0x6f0
[ 2186.831597][  T112]  jfs_fill_super+0xc46/0x1040
[ 2186.836386][  T112]  get_tree_bdev_flags+0x38c/0x620
[ 2186.841501][  T112]  vfs_get_tree+0x8e/0x330
[ 2186.845938][  T112]  path_mount+0x7bf/0x23a0
[ 2186.850366][  T112]  __x64_sys_mount+0x293/0x310
[ 2186.855147][  T112]  do_syscall_64+0xcd/0xf80
[ 2186.859817][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2186.865722][  T112] 
[ 2186.868060][  T112] Freed by task 13666:
[ 2186.872116][  T112]  kasan_save_stack+0x33/0x60
[ 2186.876799][  T112]  kasan_save_track+0x14/0x30
[ 2186.881480][  T112]  kasan_save_free_info+0x3b/0x60
[ 2186.886535][  T112]  __kasan_slab_free+0x5f/0x80
[ 2186.891306][  T112]  kfree+0x2f8/0x6e0
[ 2186.895306][  T112]  lmLogClose+0x585/0x710
[ 2186.899650][  T112]  jfs_umount+0x2f0/0x440
[ 2186.903990][  T112]  jfs_put_super+0x88/0x1d0
[ 2186.908954][  T112]  generic_shutdown_super+0x156/0x390
[ 2186.914357][  T112]  kill_block_super+0x3b/0x90
[ 2186.919060][  T112]  deactivate_locked_super+0xc1/0x1a0
[ 2186.924441][  T112]  deactivate_super+0xde/0x100
[ 2186.929211][  T112]  cleanup_mnt+0x225/0x450
[ 2186.933723][  T112]  task_work_run+0x150/0x240
[ 2186.938340][  T112]  exit_to_user_mode_loop+0xfb/0x540
[ 2186.943644][  T112]  do_syscall_64+0x4ee/0xf80
[ 2186.948258][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2186.954155][  T112] 
[ 2186.956476][  T112] The buggy address belongs to the object at ffff888077486000
[ 2186.956476][  T112]  which belongs to the cache kmalloc-1k of size 1024
[ 2186.970528][  T112] The buggy address is located 192 bytes inside of
[ 2186.970528][  T112]  freed 1024-byte region [ffff888077486000, ffff888077486400)
[ 2186.984682][  T112] 
[ 2186.986997][  T112] The buggy address belongs to the physical page:
[ 2186.993398][  T112] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x77480
[ 2187.002163][  T112] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 2187.010659][  T112] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 2187.018202][  T112] page_type: f5(slab)
[ 2187.022189][  T112] raw: 00fff00000000040 ffff88813ff26dc0 dead000000000100 dead000000000122
[ 2187.030780][  T112] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 2187.039460][  T112] head: 00fff00000000040 ffff88813ff26dc0 dead000000000100 dead000000000122
[ 2187.048139][  T112] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 2187.056903][  T112] head: 00fff00000000003 ffffea0001dd2001 00000000ffffffff 00000000ffffffff
[ 2187.067057][  T112] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[ 2187.075724][  T112] page dumped because: kasan: bad access detected
[ 2187.082131][  T112] page_owner tracks the page as allocated
[ 2187.087837][  T112] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 0, tgid 0 (swapper/0), ts 134688032396, free_ts 134483492053
[ 2187.106526][  T112]  post_alloc_hook+0x1af/0x220
[ 2187.111320][  T112]  get_page_from_freelist+0xd0b/0x31a0
[ 2187.116827][  T112]  __alloc_frozen_pages_noprof+0x25f/0x2430
[ 2187.122747][  T112]  alloc_pages_mpol+0x1fb/0x550
[ 2187.127612][  T112]  new_slab+0x2c3/0x430
[ 2187.131855][  T112]  ___slab_alloc+0xe18/0x1c90
[ 2187.136550][  T112]  __slab_alloc.constprop.0+0x63/0x110
[ 2187.142128][  T112]  __kmalloc_noprof+0x4fc/0x910
[ 2187.147083][  T112]  ieee802_11_parse_elems_full+0x1db/0x3780
[ 2187.152996][  T112]  ieee80211_inform_bss+0x15a/0x1150
[ 2187.158290][  T112]  cfg80211_inform_single_bss_data+0x8e9/0x1d30
[ 2187.164551][  T112]  cfg80211_inform_bss_data+0x22b/0x3be0
[ 2187.170201][  T112]  cfg80211_inform_bss_frame_data+0x26f/0x720
[ 2187.176296][  T112]  ieee80211_bss_info_update+0x310/0xab0
[ 2187.181943][  T112]  ieee80211_scan_rx+0x4cf/0xb30
[ 2187.186898][  T112]  ieee80211_rx_list+0x1c40/0x2ed0
[ 2187.192023][  T112] page last free pid 6072 tgid 6072 stack trace:
[ 2187.198344][  T112]  __free_frozen_pages+0x7df/0x1170
[ 2187.203557][  T112]  __put_partials+0x130/0x170
[ 2187.208256][  T112]  qlist_free_all+0x4c/0xf0
[ 2187.212827][  T112]  kasan_quarantine_reduce+0x195/0x1e0
[ 2187.218311][  T112]  __kasan_slab_alloc+0x69/0x90
[ 2187.223184][  T112]  kmem_cache_alloc_noprof+0x25e/0x770
[ 2187.228686][  T112]  jbd2__journal_start+0x193/0x6a0
[ 2187.233824][  T112]  __ext4_journal_start_sb+0x195/0x640
[ 2187.239289][  T112]  ext4_dirty_inode+0xa1/0x130
[ 2187.244069][  T112]  __mark_inode_dirty+0x1f7/0x1670
[ 2187.249301][  T112]  generic_update_time+0xcf/0xf0
[ 2187.254262][  T112]  file_update_time_flags+0x410/0x520
[ 2187.259661][  T112]  ext4_page_mkwrite+0x33d/0x1880
[ 2187.264699][  T112]  do_page_mkwrite+0x174/0x380
[ 2187.269488][  T112]  do_fault+0x3fc/0x1ad0
[ 2187.273736][  T112]  __handle_mm_fault+0x1919/0x2bb0
[ 2187.278886][  T112] 
[ 2187.281196][  T112] Memory state around the buggy address:
[ 2187.286989][  T112]  ffff888077485f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 2187.295052][  T112]  ffff888077486000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2187.303118][  T112] >ffff888077486080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2187.311174][  T112]                                            ^
[ 2187.317326][  T112]  ffff888077486100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2187.325832][  T112]  ffff888077486180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2187.333889][  T112] ==================================================================
[ 2187.341946][  T112] Kernel panic - not syncing: kasan.fault=panic_on_write set ...
[ 2187.349668][  T112] CPU: 0 UID: 0 PID: 112 Comm: jfsCommit Tainted: G    B        L      syzkaller #0 PREEMPT(full) 
[ 2187.360360][  T112] Tainted: [B]=BAD_PAGE, [L]=SOFTLOCKUP
[ 2187.365892][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 2187.375949][  T112] Call Trace:
[ 2187.379230][  T112]  <TASK>
[ 2187.382161][  T112]  dump_stack_lvl+0x3d/0x1f0
[ 2187.386874][  T112]  vpanic+0x640/0x6f0
[ 2187.390870][  T112]  panic+0xca/0xd0
[ 2187.394606][  T112]  ? __pfx_panic+0x10/0x10
[ 2187.399035][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2187.404681][  T112]  ? rcu_is_watching+0x12/0xc0
[ 2187.409450][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2187.415097][  T112]  ? lock_release+0x201/0x2d0
[ 2187.419807][  T112]  ? print_report+0x2bd/0x630
[ 2187.424506][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2187.430165][  T112]  end_report+0x13f/0x160
[ 2187.434507][  T112]  kasan_report+0xee/0x110
[ 2187.438936][  T112]  ? do_raw_spin_lock+0x11d/0x2b0
[ 2187.443986][  T112]  kasan_check_range+0x100/0x1b0
[ 2187.448944][  T112]  do_raw_spin_lock+0x11d/0x2b0
[ 2187.453819][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2187.459468][  T112]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 2187.464855][  T112]  ? lock_acquire+0x2cd/0x330
[ 2187.469558][  T112]  ? __mutex_lock+0x1a24/0x1ca0
[ 2187.474416][  T112]  _raw_spin_lock_irqsave+0x42/0x60
[ 2187.479635][  T112]  ? __mutex_lock+0xca5/0x1ca0
[ 2187.484400][  T112]  __mutex_lock+0xca5/0x1ca0
[ 2187.488991][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2187.494636][  T112]  ? jfs_syncpt+0x2a/0xa0
[ 2187.498983][  T112]  ? __pfx___mutex_lock+0x10/0x10
[ 2187.504012][  T112]  ? do_raw_spin_lock+0x12c/0x2b0
[ 2187.509058][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2187.514703][  T112]  ? find_held_lock+0x2b/0x80
[ 2187.519409][  T112]  ? jfs_syncpt+0x2a/0xa0
[ 2187.523837][  T112]  jfs_syncpt+0x2a/0xa0
[ 2187.528016][  T112]  txEnd+0x30a/0x5a0
[ 2187.531935][  T112]  jfs_lazycommit+0x783/0xb30
[ 2187.536634][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 2187.542027][  T112]  ? __pfx_default_wake_function+0x10/0x10
[ 2187.547864][  T112]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2187.553359][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2187.559013][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2187.564662][  T112]  ? __kthread_parkme+0x19e/0x250
[ 2187.569693][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 2187.574916][  T112]  kthread+0x3c5/0x780
[ 2187.579000][  T112]  ? __pfx_kthread+0x10/0x10
[ 2187.583600][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2187.589328][  T112]  ? rcu_is_watching+0x12/0xc0
[ 2187.594098][  T112]  ? __pfx_kthread+0x10/0x10
[ 2187.598709][  T112]  ret_from_fork+0x983/0xb10
[ 2187.603311][  T112]  ? __pfx_ret_from_fork+0x10/0x10
[ 2187.608436][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 2187.614081][  T112]  ? __switch_to+0x7af/0x10d0
[ 2187.618780][  T112]  ? __pfx_kthread+0x10/0x10
[ 2187.623385][  T112]  ret_from_fork_asm+0x1a/0x30
[ 2187.628189][  T112]  </TASK>
[ 2187.631556][  T112] Kernel Offset: disabled
[ 2187.635887][  T112] Rebooting in 86400 seconds..