last executing test programs:

10m57.219268404s ago: executing program 2 (id=2145):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c3"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x6, 0x0)
setsockopt$inet6_buf(r2, 0x29, 0x39, &(0x7f0000e86000)="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", 0x118)

10m57.122427586s ago: executing program 2 (id=2148):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
execve(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
unshare(0x44040000)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x2, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=@framed={{0x18, 0x8, 0x0, 0x0, 0xffd0}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x0}, @generic={0x66, 0x8}, @initr0, @exit, @alu={0x6, 0x0, 0x3, 0xa, 0x0, 0x2}, @printk={@x, {}, {}, {}, {}, {0x5, 0x0, 0xb, 0xa}}]}, &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000200)={r6, r5}, 0xc)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c30000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
request_key(&(0x7f0000000040)='user\x00', &(0x7f0000000080)={'syz', 0x0}, &(0x7f0000000140)='\\\\@[*#)\x00', 0xfffffffffffffffe)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x8, 0x0)
r9 = openat$selinux_create(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
fcntl$getown(r9, 0x9)
unshare(0x60000400)

10m56.245396248s ago: executing program 2 (id=2153):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000181100003532fd81c7e64086c8a271f870478fc812d3921051fa7db4d86b4e21ed35b9e53d5a3eb4971a84b2376cb32f15827a6fe476034f0fae2cb32973279c95c157c3e3dbaa88d8b287dbef8ffaabc0859820b8ba9849119e6a29d37cc8e5372780bfda264350252a43ad9d000000000000000000c5cddaf6e5fee4302ae6f2736192f6cd323a370d29a5d2fc204785a56a33d42ebe93d4232c5fd82ac43b5b82cc11cd9330f38e348457c5dc22dcd51900f3d0ac210d4abf6576d834b8763038b0ffc9ec5e3803abc0a415d8a798f53d3b109ab9b66588c5b2214a78763bf3dbe2ffd737e9f4983edffc2433348ec451a6e08649a18a0659a01d", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000013c0)={0x8, <r2=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000001280)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000638973d160a5747b0e37ef1d22f34388ee375dd658c869a6419d6381013f269676e099412bdd253039f7b4bf883295111e7eb9fa767f9d84853d0530dc80e879b940d2568a31973754d899ba504bfa3cc6cd841eaebd71fce22c87ca6d66503891aaa9670443a507609f359dc210a99c77bbdd636026d5a78a634ba50d51dd3564cd8cbd2681569bb03a346262acede7e5483b2f7f577d7ac4724b332ab6dc50deacdaa2cbfa161635ce2f2cb61971f57e1e80a9bb793b48d69107bc4ed66991cec9095cba4a3ba5e5a9df84328d05bcf2439c9be20feeefafbf9ff00d7f394e", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r3, 0x0, 0xfffffffffffffffc}, 0x18)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000001140)={0x1}, 0x8)
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000100)={@in6={{0xa, 0x4e24, 0x0, @loopback, 0x1}}, 0x0, 0x0, 0x2, 0x0, "10baa70a93289349d889de25b87376f64276337642b890d33cb5b592e66e0900000000000000e1b3871b7ef6619db5b2a94edb6f73ea08b02aa3b47debd38b6d889a8c986b33eb49c3157f1f370dfd67"}, 0xd8)
r4 = socket(0x10, 0x3, 0x0)
sendmmsg$inet(r4, &(0x7f0000000380)=[{{&(0x7f0000000200)={0x2, 0x4e24, @private=0xa010102}, 0x7, &(0x7f0000000340)=[{&(0x7f00000002c0)="4533518e23a4ab142f47801437cab99d4c4c1f76d69aa705ec2117a3f5808ff2e1c1f3aadffbb521c234644546582c4f3ddae45374326918871ecb6e8dadb6cb28cbb5a901892f271456", 0x4a}, {&(0x7f0000000240)=':', 0x1}], 0x2, &(0x7f0000000400)=[@ip_ttl={{0x14, 0x0, 0x2, 0x1}}, @ip_ttl={{0x14, 0x0, 0x2, 0x9}}, @ip_ttl={{0x14, 0x0, 0x2, 0x8}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x4671}}], 0x60}}], 0x1, 0x20000000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000011c0)={0x11, 0xd, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000050000001842000006000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100dd0000000007010000f8ffffffb702000008000000b70300000400000085000000060000009500000000000000"], &(0x7f0000000400)='GPL\x00', 0x4, 0x3b, &(0x7f0000001080)=""/59, 0x41000, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000010c0)={0x2, 0x5}, 0x8, 0x10, &(0x7f0000001100)={0x3, 0xc, 0x8, 0x3}, 0x10, 0x0, 0x0, 0x2, &(0x7f0000001140), &(0x7f0000001180)=[{0x4, 0x4, 0x8, 0xd}, {0x3, 0x5, 0x10, 0x4}], 0x10, 0x6, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)

10m56.167327638s ago: executing program 2 (id=2154):
r0 = syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4000, &(0x7f0000000300)={[{@nobarrier}, {@barrier_val={'barrier', 0x3d, 0x3ff}}, {@stripe={'stripe', 0x3d, 0x7}}, {@discard}, {@orlov}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@nodiscard}, {@mblk_io_submit}]}, 0xd, 0x5f6, &(0x7f0000000c00)="$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")
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=ANY=[@ANYRES16=r0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000009c00110000000000000000000000000000000000fe8000000000000000000000000000bbac1414210000000000000000000000002001000000000000000000000000000000000000000000000000020000000000000000000000000000000000fe8000000000000000000000000000bb", @ANYRESHEX, @ANYRES8=r1], 0xec}}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000020000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = epoll_create1(0x0)
r4 = socket(0x23, 0x5, 0x0)
listen(r4, 0x3)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000000080)={0x1000000c})
r5 = accept4$packet(0xffffffffffffffff, &(0x7f0000000a40)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000a80)=0x14, 0xc0000)
setsockopt$packet_tx_ring(r5, 0x107, 0xd, &(0x7f0000000ac0)=@req3={0x5, 0x88, 0xffffff77, 0x10000, 0x2, 0x1, 0x4}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x1a, 0x5, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000000000000000000000000001800000001c6e8adfec728a84b412742000000004e0e00009500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x4, 0x27, 0xfffffffffffffffc, 0x0, 0x19, '\x00', 0x0, 0x38, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmmsg$inet(r6, &(0x7f0000000780)=[{{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000580)="15", 0x1}], 0x1, &(0x7f0000000040)=ANY=[], 0xd0}}], 0x1, 0x4c040)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
gettid()
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r8}, 0x10)
r9 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000087556ec68bc14df50000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f28bd42185000000820000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, @void, @value}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r10}, 0x10)
syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff})
sendmsg$inet(r12, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000740)='=q', 0x2}], 0x1}, 0x1)
recvmsg$unix(r11, &(0x7f00000000c0)={0x0, 0xfffffffffffffe21, 0x0, 0x0, 0x0, 0xffffffffffffff64}, 0x200101a2)
close_range(r7, 0xffffffffffffffff, 0x0)

10m55.944350982s ago: executing program 2 (id=2157):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xffd, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r5}, 0x10)
unshare(0x62040200)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000880)=ANY=[@ANYBLOB="6400000000010104000000000000000302000007240001801400018008000100e0000001080002007f0000010c0002800500010000000000240002801400018008000100e0000001080002007f0000010c0002800500010000020000080007"], 0x64}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
ioperm(0x0, 0xab49, 0x7)
socket$unix(0x1, 0x5, 0x0)
syz_usbip_server_init(0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', 0xffffffffffffffff, 0x0, 0x100}, 0x18)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000980)=@raw={'raw\x00', 0x3c1, 0x3, 0x3f0, 0x0, 0xc8, 0x8, 0x1c0, 0x5803, 0x320, 0x2e8, 0x2e8, 0x320, 0x2e8, 0x3, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @multicast1}, @mcast1, [], [], 'erspan0\x00', 'geneve1\x00'}, 0x0, 0x190, 0x1c0, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'kmp\x00', "cfcaf80c672f61cd17ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f34a214e67262c1fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x1}}, @common=@inet=@socket3={{0x28}}]}, @common=@unspec=@CONNMARK={0x30}}, {{@uncond, 0x0, 0xf8, 0x160, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x13}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x450)

10m55.426354989s ago: executing program 2 (id=2164):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000180), 0x1, 0x553, &(0x7f0000001080)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
fallocate(r1, 0x0, 0x0, 0x8000c62)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000220000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pwritev2(r2, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)

10m55.416741779s ago: executing program 32 (id=2164):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000180), 0x1, 0x553, &(0x7f0000001080)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
fallocate(r1, 0x0, 0x0, 0x8000c62)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000220000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pwritev2(r2, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)

10m34.541826531s ago: executing program 0 (id=2350):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x6, 0x0)
setsockopt$inet6_buf(r2, 0x29, 0x39, &(0x7f0000e86000)="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", 0x118)

10m34.541118001s ago: executing program 0 (id=2352):
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r1, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xc)
setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000000)={@multicast2, @local, 0x0, 0x1, [@empty]}, 0x14)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2, 0x0, @private, @multicast2}, @timestamp_reply={0x11, 0x0, 0x0, 0xe000, 0x2, 0x2, 0x7f000001}}}}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a300000001f0900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000050a09000000000000000000020000000900010073797a30000000000900030073797a32"], 0x54}}, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r2, &(0x7f0000000200)=@file={0x1, './file0\x00'}, 0x6e)
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', 0x8, &(0x7f0000000d40)={[{@fat=@quiet}, {@dots}, {@fat=@dos1xfloppy}, {@nodots}, {@dots}, {@fat=@tz_utc}, {@dots}, {@fat=@usefree}, {@nodots}, {@dots}, {@nodots}, {@fat=@nfs_stale_rw}, {@nodots}, {@fat=@umask={'umask', 0x3d, 0x9}}, {@fat=@sys_immutable}, {@dots}, {@fat=@tz_utc}, {@dots}, {@dots}, {@nodots}, {@fat=@nfs_nostale_ro}, {@dots}]}, 0xfd, 0x1c1, &(0x7f0000000a80)="$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")

10m34.386129213s ago: executing program 0 (id=2355):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x14)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
truncate(&(0x7f0000000040)='./file0\x00', 0x0)

10m34.094693667s ago: executing program 0 (id=2357):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000180)='./file0\x00', 0x800400, &(0x7f0000000000)=ANY=[], 0xd, 0x282, &(0x7f00000006c0)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
syz_clone(0x800500, 0x0, 0x0, 0x0, 0x0, 0x0)
io_submit(0x0, 0x0, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
move_pages(0x0, 0xffffffffffffffdc, 0x0, 0x0, 0x0, 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000a0000000000000018110000", @ANYRES8=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r3}, 0x10)
setitimer(0x2, 0x0, 0x0)
open(&(0x7f0000000040)='./bus\x00', 0x143142, 0x80)

10m33.358641897s ago: executing program 0 (id=2371):
r0 = openat(0xffffffffffffff9c, 0x0, 0x141842, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r1 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed008e, &(0x7f00000003c0)={[{@jqfmt_vfsold}, {@data_err_abort}, {@debug}, {@noload}, {@mblk_io_submit}, {@commit={'commit', 0x3d, 0x5}}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@grpquota}], [{@hash}, {@smackfsfloor={'smackfsfloor', 0x3d, '['}}, {@fowner_gt}]}, 0xfe, 0x45a, &(0x7f0000000940)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = socket$packet(0x11, 0x3, 0x300)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004", @ANYRES32=0x0, @ANYBLOB="ffffffff00000100"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES8=r1, @ANYBLOB="0000000000000000b702000014000000b7030000010100008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000001c0)='sched_switch\x00', r0, 0x0, 0x40000000}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r6=>0x0}, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext2\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000640)={[], [{@appraise}, {@hash}, {@obj_type={'obj_type', 0x3d, '-(/'}}, {@subj_user={'subj_user', 0x3d, 'fowner>'}}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@euid_lt={'euid<', r6}}]}, 0x2, 0x50b, &(0x7f0000000dc0)="$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")
r7 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480d0000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x404c080)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb007}, 0x4)
r8 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r8, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000300)={'wg0\x00', <r9=>0x0})
sendto$packet(r8, &(0x7f0000000180)="0b03feff4f00021202004788aa96a13bb1000011000088ca1a00", 0x1fffc, 0x0, &(0x7f0000000140)={0x11, 0x0, r9}, 0x14)
chdir(&(0x7f0000000180)='./file0\x00')

10m33.011639351s ago: executing program 0 (id=2376):
ptrace(0x10, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000a80)='kfree\x00', r1, 0x0, 0x68f}, 0x18)
ptrace$getregset(0x4204, 0x0, 0x202, &(0x7f0000000180)={&(0x7f0000000000)=""/16, 0x10})

10m32.942641263s ago: executing program 33 (id=2376):
ptrace(0x10, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000a80)='kfree\x00', r1, 0x0, 0x68f}, 0x18)
ptrace$getregset(0x4204, 0x0, 0x202, &(0x7f0000000180)={&(0x7f0000000000)=""/16, 0x10})

10m26.777959216s ago: executing program 6 (id=2378):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000040000000900000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000f9ffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10)
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x1200, 0x0, 0x3)

10m26.413549131s ago: executing program 6 (id=2418):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
iopl(0x3)
bpf$OBJ_PIN_MAP(0x6, 0x0, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
setresgid(0x0, 0xffffffffffffffff, 0x0)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r2 = socket(0x10, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000740)=ANY=[@ANYBLOB="60000000100039042cbd7000eaffffff000003e4", @ANYRES32=r3, @ANYBLOB="001100000000000040001280080001007369740034000280050009002900000008000200ac1414bb08000c0000000100"], 0x60}, 0x1, 0x0, 0x0, 0x8000}, 0x4040)

10m26.050840346s ago: executing program 6 (id=2420):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r1, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}], 0x48}, 0x0)

10m21.942430261s ago: executing program 6 (id=2453):
r0 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
poll(0x0, 0x0, 0xffffffffffbffff8)
ioctl$TCSETA(0xffffffffffffffff, 0x5406, &(0x7f0000000000)={0x81, 0x2, 0x2, 0x0, 0xc, "a42e1b3ea4ed0cb3"})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f00000006c0)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r2}, 0x10)
tkill(r0, 0x13)

10m21.942210491s ago: executing program 34 (id=2453):
r0 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
poll(0x0, 0x0, 0xffffffffffbffff8)
ioctl$TCSETA(0xffffffffffffffff, 0x5406, &(0x7f0000000000)={0x81, 0x2, 0x2, 0x0, 0xc, "a42e1b3ea4ed0cb3"})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f00000006c0)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r2}, 0x10)
tkill(r0, 0x13)

3.711588951s ago: executing program 4 (id=7748):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002080)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffd98, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
madvise(&(0x7f0000800000/0x800000)=nil, 0x800002, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$ITER_CREATE(0xb, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x68, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2, 0x7b74, 0x0, 0x0, 0x0, 0xf}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x8)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, 0x0, 0x1)

2.839053572s ago: executing program 4 (id=7756):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000012c0)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e24}, 0x1c)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000280)=@req={0xed8a, 0x7, 0x4, 0x9}, 0x10)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
r1 = fcntl$dupfd(r0, 0x0, r0)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0xd, 0x4, &(0x7f0000000000)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xb, 0x14, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0xffff, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x476e, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='kfree\x00', r2, 0x0, 0x7fffffffffffffff}, 0x18)
request_key(&(0x7f00000001c0)='asymmetric\x00', &(0x7f0000000240)={'syz', 0x0}, &(0x7f00000003c0)='\x00', 0xfffffffffffffffd)
sendmsg$IPVS_CMD_GET_CONFIG(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[], 0x14}}, 0x0)
r3 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r3, 0x10d, 0xad, &(0x7f0000000200), &(0x7f0000000100)=0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000100)=@ccm_128={{0x303}, "27c6ffe2057b6525", "e1315727ee1c2c5d189aa83c29a48200", "9c24c403", "1f7400000000000e"}, 0x28)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
chown(&(0x7f0000000180)='./file0\x00', 0x0, 0xee01)
lsetxattr$system_posix_acl(&(0x7f0000000800)='./file0\x00', 0x0, 0x0, 0x24, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='block_bio_remap\x00', r4}, 0x10)
quotactl$Q_SYNC(0xffffffff80000102, 0xf5, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000100)='syscall\x00')
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000340)=0x14)
socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800"/12], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x62, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)

2.627605535s ago: executing program 4 (id=7759):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@ipv6_delrule={0x30, 0x18, 0x1, 0x0, 0x0, {0xa, 0x20, 0x0, 0x0, 0x0, 0x3, 0x0, 0x8}, [@FRA_DST={0x14, 0x7, @ipv4={'\x00', '\xff\xff', @local}}]}, 0x30}}, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r1, 0x8922, &(0x7f0000000440)={'syz_tun\x00', 0x101})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x1, r2}, 0x38)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r3, 0x0, 0x2}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
syz_read_part_table(0x4086, &(0x7f00000040c0)="$eJzszz9K9EAcBuB3/2QTlo9PxNJCtLIS7WxsPIDdXmA7Owv7VY8jHkC8keAJbCKZBGVRO0WR5yl+8zLzJsOEH/f40eZ1klnz6Tf3y7vNTJNZksOkK04v/pejtrfa6Y6OUs2bcf4luXz/l8XtFz4DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4zdrX9PS22fRLVeZkrT9JRslVkuV2Wyc5HifdmpvJ8/lQ2j3IVgkbZe6VWU/LffOhs3j4phcBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAH/UOCenQxxlP3Ufm/XSWTfaVZ3qhd05pAIABIIoeOdQRMDQgyiUoQ0peVQAO6PW7c+7eqzRMkvErA+X+zMZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA47MCBAAAAAACQ/2sjVFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWEHDkgAAAAABP1/3Y5AAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADYKwAA//+vbhs5")
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
r5 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r5, 0x0, 0x0)
r6 = syz_io_uring_setup(0x3b52, &(0x7f0000000140)={0x0, 0x5883, 0x1000, 0x8003, 0x1c2}, &(0x7f0000000040)=<r7=>0x0, &(0x7f0000000680)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_RENAMEAT={0x23, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000380)='./file0\x00', 0xffffffffffffffff, 0x0, 0x1})
io_uring_enter(r6, 0x10007b0f, 0x96f0, 0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bind$qrtr(r5, &(0x7f00000000c0)={0x2a, 0x1, 0xf0ff}, 0xc)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
close(r0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r9 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
writev(r9, &(0x7f00000000c0)=[{&(0x7f0000000040)="dc", 0x1}], 0x8)

2.167192231s ago: executing program 7 (id=7768):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffd}, 0x18)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x1, 0x5ad, &(0x7f0000000180)="$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")
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000100001000000f5ffffffffffffff000a14000000060a0000000000000000000002"], 0x3c}}, 0x0)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, &(0x7f0000000000)='\x06\x00\x00\x00\x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x16 \x04\r\xcd\xdb\x9a\xd4\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x00<r\xe9\x9cD\x90\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3w')

1.908167274s ago: executing program 7 (id=7773):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x14, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r1}, 0x18)
r3 = signalfd(r2, &(0x7f0000000000)={[0x4]}, 0x8)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x38, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x4}, 0x8)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000040)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c)
ioctl$sock_bt_hci(r3, 0x800448d7, &(0x7f00000001c0)="8421e4f2d93987a6b5f7edf746cef8ed78c208503834cd699950c0c2c85bba2c42668fdbd170b44432ecb45ac4973362aa5cc8e4c5b39457a18b8530a8cd2468c791c819233c5d9586798693364c779f94e344f2e22ca8e41e83a47a455451d12ed46a81d08484842f7181b93b09a5eb866f328073")
r6 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
fcntl$lock(r6, 0x25, &(0x7f0000000040)={0x0, 0x0, 0x80, 0x7})
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000900)={0x18, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000280)={[{@max_batch_time={'max_batch_time', 0x3d, 0x4}}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@nombcache}]}, 0x1, 0x42f, &(0x7f0000000940)="$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")
r7 = syz_open_dev$usbfs(&(0x7f0000000340), 0x800000001f7, 0x82)
dup(r7)
perf_event_open(&(0x7f0000000140)={0x3, 0x80, 0xe, 0x0, 0x58, 0x0, 0x0, 0x5, 0xca2dd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0}, 0x9542, 0x5dd9, 0x0, 0xb, 0xfffffffffffffffd, 0x664cf74d, 0x6, 0x0, 0xfffffffd, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r8 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r8, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)

1.783114786s ago: executing program 1 (id=7775):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r0}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
unshare(0x20000400)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r2}, 0x10)
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000003040)=ANY=[@ANYBLOB="0100000004001000020001000b00000001"], 0x50)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x4}, 0x38)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x5, @ipv4={'\x00', '\xff\xff', @local}, 0xffffff}, 0x1c)

1.738294157s ago: executing program 1 (id=7776):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x785, &(0x7f0000001900)="$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")
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/key-users\x00', 0x0, 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
sendfile(r1, r0, 0x0, 0x2)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r2, 0x0, 0x3ffff)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000001c0))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendfile(r3, r2, 0x0, 0x7ffff000)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYBLOB="0300400000000000", @ANYBLOB], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000510700140000000000000001b7080000000000007b8af8ff00000000b7080000fcffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c5902, 0x0)
write$RDMA_USER_CM_CMD_DESTROY_ID(r6, &(0x7f0000003280)={0x1, 0x10, 0xfa00, {0x0}}, 0x18)
sendfile(r6, r5, 0x0, 0x7ffff000)
fallocate(0xffffffffffffffff, 0x1, 0x0, 0x1001f0)

1.649161618s ago: executing program 4 (id=7777):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
getrlimit(0xc, &(0x7f0000000380))

1.569971569s ago: executing program 4 (id=7779):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYRESOCT], 0x48)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000600)={0x7, <r1=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000a00)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095", @ANYBLOB="f98c4490d1abded8ce33d9d6cdbd09e5dd2bacffd46cddf7888ba1d1a9dbefe2c83f4370d187317951d42667133715d9d233ddeced4ff18976800347aecd324926fd18091559663962d7339d5eacc2f05c5248ae49ba34d99ae823b69328d8c8ebc2487355b7ddbd00b1d96221e506562b0e9aa1e6cd6a178683d37316f0ef46ef66955b94c8bb9046aed8defd098b563483d14e0fe502ba6a5e1c3852052eb3e7796d9f875a3fd8519ef50099f93a6693e0808efddcec5a5c24d64421e52f32aba17c6bb09a6b"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='kfree\x00', r2, 0x0, 0x6}, 0x18)
unshare(0x6a040000)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x8, 0x0, 0xfffffffffffffe7e, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3, 0x0, &(0x7f0000000c40)=[{}, {0x0, 0x4}, {0x10000000, 0x4, 0x10009, 0x5}], 0x10, 0xfffffff4, @void, @value}, 0x94)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r3, 0x0, 0x4000000000002ab}, 0x18)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], 0x25c}}, 0x0)

1.420968981s ago: executing program 5 (id=7781):
r0 = socket$inet6(0xa, 0x802, 0x88)
setsockopt$inet6_udp_int(r0, 0x11, 0x100000000a, &(0x7f00000003c0)=0x8000002, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x40488c1, &(0x7f0000000180)={0xa, 0x4e23, 0x0, @mcast1}, 0x1c)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x100000, 0x0, 0x40, 0x0, &(0x7f0000000000))
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x1a3c82)
syz_open_dev$sg(&(0x7f0000000280), 0x0, 0x0)

1.317091092s ago: executing program 7 (id=7782):
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f00000007c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0100030010651fbe347b2c2b00000c00018008000100", @ANYRES16=r0], 0x20}}, 0x0)

1.267434053s ago: executing program 4 (id=7783):
mount$tmpfs(0x0, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000140), 0x3200841, &(0x7f0000000380)={[{@nr_blocks={'nr_blocks', 0x3d, [0x74]}}]})
socket(0x10, 0x2, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000300)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800"], 0x48)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_MSG_GETFLOWTABLE(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000c00)=ANY=[@ANYBLOB="20000000170a0102060000000000000002"], 0x20}}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000240)='kfree\x00', r3, 0x0, 0x4ab}, 0x18)
r4 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r4, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x2000)
write$cgroup_subtree(r4, &(0x7f0000000000)=ANY=[@ANYBLOB="364000002600913e"], 0xfe33)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000003100)=@gcm_128={{0x303}, "0400", "0d00e8ffff1a8600", "cf0d00", "8657e2b7e43b34e4"}, 0x28)
write$binfmt_script(r0, &(0x7f0000000780)={'#! ', './file0'}, 0xb)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x10)
r7 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r8}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1b, &(0x7f0000002140)={0x1, &(0x7f00000000c0)=[{0x6}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0xc, &(0x7f0000000040)=@framed={{0x18, 0x8, 0x0, 0x0, 0x4}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r7}}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @initr0={0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x1}, @exit], {0x95, 0x0, 0xff85}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xbb2, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000002900000005"], 0x48)

1.230510623s ago: executing program 7 (id=7784):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x14, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r1}, 0x18)
r3 = signalfd(r2, &(0x7f0000000000)={[0x4]}, 0x8)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x38, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r5, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x4}, 0x8)
shutdown(r5, 0x1)
ioctl$sock_bt_hci(r3, 0x800448d7, &(0x7f00000001c0)="8421e4f2d93987a6b5f7edf746cef8ed78c208503834cd699950c0c2c85bba2c42668fdbd170b44432ecb45ac4973362aa5cc8e4c5b39457a18b8530a8cd2468c791c819233c5d9586798693364c779f94e344f2e22ca8e41e83a47a455451d12ed46a81d08484842f7181b93b09a5eb866f328073")
r6 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
fcntl$lock(r6, 0x25, &(0x7f0000000040)={0x0, 0x0, 0x80, 0x7})
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000900)={0x18, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000280)={[{@max_batch_time={'max_batch_time', 0x3d, 0x4}}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@nombcache}]}, 0x1, 0x42f, &(0x7f0000000940)="$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")
r7 = syz_open_dev$usbfs(&(0x7f0000000340), 0x800000001f7, 0x82)
dup(r7)
perf_event_open(&(0x7f0000000140)={0x3, 0x80, 0xe, 0x0, 0x58, 0x0, 0x0, 0x5, 0xca2dd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0}, 0x9542, 0x5dd9, 0x0, 0xb, 0xfffffffffffffffd, 0x664cf74d, 0x6, 0x0, 0xfffffffd, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r8 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r8, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)

788.202139ms ago: executing program 1 (id=7785):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYRESOCT], 0x48)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000600)={0x7, <r1=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000a00)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095", @ANYBLOB="f98c4490d1abded8ce33d9d6cdbd09e5dd2bacffd46cddf7888ba1d1a9dbefe2c83f4370d187317951d42667133715d9d233ddeced4ff18976800347aecd324926fd18091559663962d7339d5eacc2f05c5248ae49ba34d99ae823b69328d8c8ebc2487355b7ddbd00b1d96221e506562b0e9aa1e6cd6a178683d37316f0ef46ef66955b94c8bb9046aed8defd098b563483d14e0fe502ba6a5e1c3852052eb3e7796d9f875a3fd8519ef50099f93a6693e0808efddcec5a5c24d64421e52f32aba17c6bb09a6b"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
unshare(0x6a040000)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x8, 0x0, 0xfffffffffffffe7e, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3, 0x0, &(0x7f0000000c40)=[{}, {0x0, 0x4}, {0x10000000, 0x4, 0x10009, 0x5}], 0x10, 0xfffffff4, @void, @value}, 0x94)
r3 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c01803002d000b12d25a80648c2594f90124fc60100c022300040000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
r4 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
setresgid(0x0, 0x0, 0xee00)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000002080)={0x9, {"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", 0x1028}}, 0xfffffd00)
ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000000)=""/126)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f00000002c0)=0x1, 0x4)
write$UHID_CREATE(r4, &(0x7f0000000a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0xc08}}, 0x120)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r5 = perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x96, 0x1, 0x0, 0x0, 0x0, 0x0, 0xa120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r6, 0x0, 0x4000000000002ab}, 0x18)
ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x40082406, &(0x7f0000000300)='cpu<02||!')
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r9}, 0x10)
sendmsg$NFT_BATCH(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], 0x25c}}, 0x0)
unshare(0x20000)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000000000)=0xe49, 0x4)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000400), 0x44900, 0x0)

771.4545ms ago: executing program 3 (id=7786):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x1, 0x5ad, &(0x7f0000000180)="$eJzs3c1vVFUbAPDnzkwLpe9rKzEqLkyjIZAoLS1g8GMBe0LwY+fGSgtBho/QGi2aWBLcmBg3LkhcuRD/CyW6dWXiwoUbV4akGsNGY3TMnbkzDO1MOy0dbu39/ZLbOeeeOz3nQp85Z+49ZyaAwhpLf5Qi9kTE5SRipK2sElnhWOO4O7+/fzrdkqjVXv0tiSTb1zw+yR6Hsyf/PRLx/TdJ7C6vrHdu4er56Wp19kqWn5i/cHlibuHqgXMXps/Onp29OPXc1NEjh48cnTx4X+dXakufuP7WOyMfnXz9i8/+Sia//OlkEsfi1zONsvbz2CxjMRZ/1GofLN+f/rse3ezKclJu/Z3clSzfwZZVyWJkMCIei5Eot/1vjsSHL+faOKCvaklEDSioRPxDQTXHAc339r29Dy71eVQCPAhLx9OfAx3iv9K4NhijMRARe5c9r8MlvQ1J6/ju25PX0y36dB0O6Gzx2o4stTz+k3psjsbOem7XndI913nTEcCp7DHd/8oG6x9blhf/8OAsXouIxzuN/9eO/zfa4v/NDdYv/gEAAAAAAGDz3DoeEc92uv9Xyu7N7Yyn6vf/ksb9vx/urhA8tgn1r33/r3R7E6oBOlg6HvFSx/m/rTm+o+Us9//GbMDkzLnq7MGIeCgi9sfAjjQ/uUodBz7efaNbWfv8v3RL62/OBczacbuy497nzEzPT9/POQMNS9cinqh0n/+T9v9Je/+fSV8PLvdYx+69N091K1s7/oF+qX0esa9j/5+0jklW/3yOifp4YKI5Kljpyfc++apb/eIf8pP2/7tWj//RpP3zeubW9/sHI+LQQqXWrXyj4//B5LVy8/en3p2en78yGTGYnFi5f2p9bYbtqhkPzXhJ43//06tf/2uN/9vicCgiFnus89F/hn/uVqb/h/yk8T+zrv5//Ympm6Nfd6u/t/7/cL1P35/tcf0PVtdrgObdTgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4LypFxP8iKY230qXS+HjEcEQ8ErtK1Utz88+cufT2xZm0rP79/6XmN/2ONPJJ8/v/R9vyU8vyhyLi4Yj4tDxUz4+fvlSdyfvkAQAAAAAAAAAAAAAAAAAAYIsY7rL+P/VLOe/WAX1XyR7FOxRPJe8GALkR/1Bc4h+KS/xDcYl/KK4Nxr/bBbAN6P+hqAZ6O2xnv9sB5EH/DwAAAAAA28qtF5+/kUTE4gtD9S01mJW1bgwO5dU6oJ9KeTcAyI05vFBcpv5AcfU4+RfYxpJW6s9ap/Lus/+T/jQIAAAAAAAAAAAAAFhh355bP665/h/Ylqz/h+Ky/h+Ky/p/KC7v8YG1VvFb/w8AAAAAAAAAAAAA+ZtbuHp+ulqdvSIhsdUSAxGxBZqRQ2Iw//DM+YUJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABo+TcAAP//Swsk/Q==")
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000100001000000f5ffffffffffffff000a14000000060a0000000000000000000002"], 0x3c}}, 0x0)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, &(0x7f0000000000)='\x06\x00\x00\x00\x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x16 \x04\r\xcd\xdb\x9a\xd4\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x00<r\xe9\x9cD\x90\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3w')

743.61171ms ago: executing program 7 (id=7787):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@ipv6_delrule={0x30, 0x18, 0x1, 0x0, 0x0, {0xa, 0x20, 0x0, 0x0, 0x0, 0x3, 0x0, 0x8}, [@FRA_DST={0x14, 0x7, @ipv4={'\x00', '\xff\xff', @local}}]}, 0x30}}, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r1, 0x8922, &(0x7f0000000440)={'syz_tun\x00', 0x101})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x1, r2}, 0x38)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r3, 0x0, 0x2}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
syz_read_part_table(0x4086, &(0x7f00000040c0)="$eJzszz9K9EAcBuB3/2QTlo9PxNJCtLIS7WxsPIDdXmA7Owv7VY8jHkC8keAJbCKZBGVRO0WR5yl+8zLzJsOEH/f40eZ1klnz6Tf3y7vNTJNZksOkK04v/pejtrfa6Y6OUs2bcf4luXz/l8XtFz4DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4zdrX9PS22fRLVeZkrT9JRslVkuV2Wyc5HifdmpvJ8/lQ2j3IVgkbZe6VWU/LffOhs3j4phcBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAH/UOCenQxxlP3Ufm/XSWTfaVZ3qhd05pAIABIIoeOdQRMDQgyiUoQ0peVQAO6PW7c+7eqzRMkvErA+X+zMZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA47MCBAAAAAACQ/2sjVFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWEHDkgAAAAABP1/3Y5AAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADYKwAA//+vbhs5")
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
r5 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r5, 0x0, 0x0)
r6 = syz_io_uring_setup(0x3b52, &(0x7f0000000140)={0x0, 0x5883, 0x1000, 0x8003, 0x1c2}, &(0x7f0000000040)=<r7=>0x0, &(0x7f0000000680)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_RENAMEAT={0x23, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000380)='./file0\x00', 0xffffffffffffffff, 0x0, 0x1})
io_uring_enter(r6, 0x10007b0f, 0x96f0, 0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bind$qrtr(r5, &(0x7f00000000c0)={0x2a, 0x1, 0xf0ff}, 0xc)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
close(r0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r9 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
writev(r9, &(0x7f00000000c0)=[{&(0x7f0000000040)="dc", 0x1}], 0x8)

732.88057ms ago: executing program 3 (id=7788):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r0}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="b9ff03316844268cb89e14f0080047e0ffff00124000632f77fbac14fe16e000030a07080403fe80000020006558845013f2325f1a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d75a058f6efa6d1f5f7ff4000000000000000000", 0x0, 0x24, 0x60000000}, 0x2c)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
unshare(0x20000400)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r2}, 0x10)
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000003040)=ANY=[@ANYBLOB="0100000004001000020001000b00000001"], 0x50)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x4}, 0x38)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x5, @ipv4={'\x00', '\xff\xff', @local}, 0xffffff}, 0x1c)

606.319892ms ago: executing program 3 (id=7789):
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c0002800500010000000000080007"], 0x64}}, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001100)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000b800000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f00000002c0)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x6c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x2c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x6c}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x68, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x4}]}, 0x68}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$netlink(0x10, 0x3, 0x10)
r4 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="19000004000000000000003c00000000955fd4058f56a26c"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f00000001c0), 0x18)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
sendmmsg$inet(r5, &(0x7f0000002000)=[{{&(0x7f0000000300)={0x2, 0x4e23, @loopback}, 0x10, &(0x7f0000000240)=[{&(0x7f0000000080)='o', 0x1}], 0x1}}], 0x1, 0x2400c040)

562.290482ms ago: executing program 5 (id=7790):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
getrlimit(0xc, &(0x7f0000000380))

534.205992ms ago: executing program 5 (id=7791):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb007}, 0x4)

436.034514ms ago: executing program 5 (id=7792):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
close_range(r2, 0xffffffffffffffff, 0x2)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r4, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})

413.074174ms ago: executing program 3 (id=7793):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYRESOCT], 0x48)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000600)={0x7, <r1=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000a00)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095", @ANYBLOB="f98c4490d1abded8ce33d9d6cdbd09e5dd2bacffd46cddf7888ba1d1a9dbefe2c83f4370d187317951d42667133715d9d233ddeced4ff18976800347aecd324926fd18091559663962d7339d5eacc2f05c5248ae49ba34d99ae823b69328d8c8ebc2487355b7ddbd00b1d96221e506562b0e9aa1e6cd6a178683d37316f0ef46ef66955b94c8bb9046aed8defd098b563483d14e0fe502ba6a5e1c3852052eb3e7796d9f875a3fd8519ef50099f93a6693e0808efddcec5a5c24d64421e52f32aba17c6bb09a6b"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='kfree\x00', r2, 0x0, 0x6}, 0x18)
unshare(0x6a040000)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x8, 0x0, 0xfffffffffffffe7e, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3, 0x0, &(0x7f0000000c40)=[{}, {0x0, 0x4}, {0x10000000, 0x4, 0x10009, 0x5}], 0x10, 0xfffffff4, @void, @value}, 0x94)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r3, 0x0, 0x4000000000002ab}, 0x18)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], 0x25c}}, 0x0)

358.598195ms ago: executing program 5 (id=7794):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0xb0b1cc7510761f1f, 0x0, 0x0, 0xffff}, {"c0495bf6"}}}}}}, 0x0)

342.696755ms ago: executing program 7 (id=7795):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x785, &(0x7f0000001900)="$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")
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/key-users\x00', 0x0, 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
sendfile(r1, r0, 0x0, 0x2)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r2, 0x0, 0x3ffff)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000001c0))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendfile(r3, r2, 0x0, 0x7ffff000)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYBLOB="0300400000000000", @ANYBLOB], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000510700140000000000000001b7080000000000007b8af8ff00000000b7080000fcffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7020000080000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c5902, 0x0)
write$RDMA_USER_CM_CMD_DESTROY_ID(r6, &(0x7f0000003280)={0x1, 0x10, 0xfa00, {0x0}}, 0x18)
sendfile(r6, r5, 0x0, 0x7ffff000)
fallocate(0xffffffffffffffff, 0x1, 0x0, 0x1001f0)

312.143446ms ago: executing program 5 (id=7796):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000cc0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a030000000000000000f0070000000900010073797a300000000080000000090a010400000000000000000700000008000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d3c00128014000180090001006c617374000000000400028010000180090001006c61737400000000140001800c000100636f756e746572000400028008000340000001"], 0xc8}, 0x1, 0x0, 0x0, 0x20044840}, 0x20054880)

269.010156ms ago: executing program 3 (id=7797):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="020000000400000008000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x14, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r1}, 0x18)
r3 = signalfd(r2, &(0x7f0000000000)={[0x4]}, 0x8)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x38, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r5, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x4}, 0x8)
shutdown(r5, 0x1)
ioctl$sock_bt_hci(r3, 0x800448d7, &(0x7f00000001c0)="8421e4f2d93987a6b5f7edf746cef8ed78c208503834cd699950c0c2c85bba2c42668fdbd170b44432ecb45ac4973362aa5cc8e4c5b39457a18b8530a8cd2468c791c819233c5d9586798693364c779f94e344f2e22ca8e41e83a47a455451d12ed46a81d08484842f7181b93b09a5eb866f328073")
r6 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
fcntl$lock(r6, 0x25, &(0x7f0000000040)={0x0, 0x0, 0x80, 0x7})
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000900)={0x18, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000280)={[{@max_batch_time={'max_batch_time', 0x3d, 0x4}}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@nombcache}]}, 0x1, 0x42f, &(0x7f0000000940)="$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")
r7 = syz_open_dev$usbfs(&(0x7f0000000340), 0x800000001f7, 0x82)
dup(r7)
perf_event_open(&(0x7f0000000140)={0x3, 0x80, 0xe, 0x0, 0x58, 0x0, 0x0, 0x5, 0xca2dd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0}, 0x9542, 0x5dd9, 0x0, 0xb, 0xfffffffffffffffd, 0x664cf74d, 0x6, 0x0, 0xfffffffd, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r8 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r8, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)

262.828606ms ago: executing program 1 (id=7798):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x1, 0x5ad, &(0x7f0000000180)="$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")
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000100001000000f5ffffffffffffff000a14000000060a0000000000000000000002"], 0x3c}}, 0x0)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, &(0x7f0000000000)='\x06\x00\x00\x00\x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x16 \x04\r\xcd\xdb\x9a\xd4\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x00<r\xe9\x9cD\x90\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3w')

206.532537ms ago: executing program 1 (id=7799):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r0}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
unshare(0x20000400)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r2}, 0x10)
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000003040)=ANY=[@ANYBLOB="0100000004001000020001000b00000001"], 0x50)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x4}, 0x38)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x5, @ipv4={'\x00', '\xff\xff', @local}, 0xffffff}, 0x1c)

137.431528ms ago: executing program 1 (id=7800):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f0000000080)=[{0x20, 0x0, 0x0, 0xfffff008}, {0x6}]}, 0x10)
syz_emit_ethernet(0x4a, &(0x7f00000003c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x2f, 0x0, @remote, @local, {[], {{0x3c00, 0x22eb, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000abd92de000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
r3 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r4}, &(0x7f0000000180), &(0x7f00000001c0)=r3}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r5}, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = gettid()
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r7, &(0x7f0000000440)=""/247, 0x26)
tkill(r6, 0x7)
close(r0)

0s ago: executing program 3 (id=7801):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
getrlimit(0xc, &(0x7f0000000380))

kernel console output (not intermixed with test programs):

8]  ? getname_flags+0x80/0x3b0
[  837.521655][T28938]  getname_flags+0xae/0x3b0
[  837.521690][T28938]  do_sys_openat2+0x60/0x110
[  837.521716][T28938]  __x64_sys_openat+0xf2/0x120
[  837.521749][T28938]  x64_sys_call+0x1af/0x2fb0
[  837.521818][T28938]  do_syscall_64+0xd0/0x1a0
[  837.521845][T28938]  ? clear_bhb_loop+0x40/0x90
[  837.521868][T28938]  ? clear_bhb_loop+0x40/0x90
[  837.521892][T28938]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  837.521917][T28938] RIP: 0033:0x7fc0fa00e969
[  837.521947][T28938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  837.521967][T28938] RSP: 002b:00007fc0f8677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  837.521988][T28938] RAX: ffffffffffffffda RBX: 00007fc0fa235fa0 RCX: 00007fc0fa00e969
[  837.522003][T28938] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  837.522018][T28938] RBP: 00007fc0f8677090 R08: 0000000000000000 R09: 0000000000000000
[  837.522041][T28938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  837.522055][T28938] R13: 0000000000000000 R14: 00007fc0fa235fa0 R15: 00007ffc359e3198
[  837.522073][T28938]  </TASK>
[  837.761966][T25720] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  837.836645][T28961] FAULT_INJECTION: forcing a failure.
[  837.836645][T28961] name failslab, interval 1, probability 0, space 0, times 0
[  837.849330][T28961] CPU: 0 UID: 0 PID: 28961 Comm: syz.7.6520 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  837.849462][T28961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  837.849477][T28961] Call Trace:
[  837.849486][T28961]  <TASK>
[  837.849497][T28961]  __dump_stack+0x1d/0x30
[  837.849522][T28961]  dump_stack_lvl+0xe8/0x140
[  837.849571][T28961]  dump_stack+0x15/0x1b
[  837.849588][T28961]  should_fail_ex+0x265/0x280
[  837.849622][T28961]  should_failslab+0x8c/0xb0
[  837.849700][T28961]  kmem_cache_alloc_noprof+0x50/0x310
[  837.849723][T28961]  ? security_inode_alloc+0x37/0x100
[  837.849752][T28961]  security_inode_alloc+0x37/0x100
[  837.849778][T28961]  inode_init_always_gfp+0x4b7/0x500
[  837.849829][T28961]  ? __pfx_hugetlbfs_alloc_inode+0x10/0x10
[  837.849937][T28961]  alloc_inode+0x58/0x170
[  837.849961][T28961]  new_inode+0x1d/0xe0
[  837.849994][T28961]  hugetlbfs_get_inode+0x7b/0x370
[  837.850056][T28961]  hugetlb_file_setup+0x192/0x3d0
[  837.850135][T28961]  ksys_mmap_pgoff+0x157/0x310
[  837.850181][T28961]  x64_sys_call+0x1602/0x2fb0
[  837.850202][T28961]  do_syscall_64+0xd0/0x1a0
[  837.850229][T28961]  ? clear_bhb_loop+0x40/0x90
[  837.850250][T28961]  ? clear_bhb_loop+0x40/0x90
[  837.850357][T28961]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  837.850391][T28961] RIP: 0033:0x7fc0fa00e969
[  837.850410][T28961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  837.850430][T28961] RSP: 002b:00007fc0f8677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  837.850450][T28961] RAX: ffffffffffffffda RBX: 00007fc0fa235fa0 RCX: 00007fc0fa00e969
[  837.850496][T28961] RDX: 000000000000000b RSI: 0000000000c00000 RDI: 0000200000400000
[  837.850512][T28961] RBP: 00007fc0f8677090 R08: ffffffffffffffff R09: 0000000000000000
[  837.850528][T28961] R10: 0000000000059032 R11: 0000000000000246 R12: 0000000000000001
[  837.850545][T28961] R13: 0000000000000000 R14: 00007fc0fa235fa0 R15: 00007ffc359e3198
[  837.850563][T28961]  </TASK>
[  838.093826][T28968] sd 0:0:1:0: device reset
[  838.141965][T28975] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6523'.
[  838.199408][T28983] FAULT_INJECTION: forcing a failure.
[  838.199408][T28983] name failslab, interval 1, probability 0, space 0, times 0
[  838.212247][T28983] CPU: 1 UID: 0 PID: 28983 Comm: syz.4.6528 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  838.212281][T28983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  838.212321][T28983] Call Trace:
[  838.212328][T28983]  <TASK>
[  838.212338][T28983]  __dump_stack+0x1d/0x30
[  838.212362][T28983]  dump_stack_lvl+0xe8/0x140
[  838.212385][T28983]  dump_stack+0x15/0x1b
[  838.212427][T28983]  should_fail_ex+0x265/0x280
[  838.212459][T28983]  should_failslab+0x8c/0xb0
[  838.212629][T28983]  kmem_cache_alloc_node_noprof+0x57/0x320
[  838.212653][T28983]  ? __alloc_skb+0x101/0x320
[  838.212704][T28983]  ? __rtnl_unlock+0x95/0xb0
[  838.212790][T28983]  __alloc_skb+0x101/0x320
[  838.212829][T28983]  netlink_ack+0xfd/0x500
[  838.212918][T28983]  netlink_rcv_skb+0x192/0x220
[  838.212951][T28983]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  838.213026][T28983]  rtnetlink_rcv+0x1c/0x30
[  838.213054][T28983]  netlink_unicast+0x5a1/0x670
[  838.213092][T28983]  netlink_sendmsg+0x58b/0x6b0
[  838.213117][T28983]  ? __pfx_netlink_sendmsg+0x10/0x10
[  838.213168][T28983]  __sock_sendmsg+0x145/0x180
[  838.213201][T28983]  ____sys_sendmsg+0x345/0x4e0
[  838.213227][T28983]  ___sys_sendmsg+0x17b/0x1d0
[  838.213257][T28983]  __sys_sendmmsg+0x178/0x300
[  838.213331][T28983]  __x64_sys_sendmmsg+0x57/0x70
[  838.213357][T28983]  x64_sys_call+0x2f2f/0x2fb0
[  838.213419][T28983]  do_syscall_64+0xd0/0x1a0
[  838.213446][T28983]  ? clear_bhb_loop+0x40/0x90
[  838.213467][T28983]  ? clear_bhb_loop+0x40/0x90
[  838.213488][T28983]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  838.213529][T28983] RIP: 0033:0x7fef8c66e969
[  838.213546][T28983] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  838.213568][T28983] RSP: 002b:00007fef8acd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  838.213644][T28983] RAX: ffffffffffffffda RBX: 00007fef8c895fa0 RCX: 00007fef8c66e969
[  838.213660][T28983] RDX: 04000000000000c1 RSI: 00002000000002c0 RDI: 0000000000000003
[  838.213682][T28983] RBP: 00007fef8acd7090 R08: 0000000000000000 R09: 0000000000000000
[  838.213695][T28983] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  838.213707][T28983] R13: 0000000000000000 R14: 00007fef8c895fa0 R15: 00007fff6460aec8
[  838.213724][T28983]  </TASK>
[  838.221698][T28983] netlink: 20 bytes leftover after parsing attributes in process `syz.4.6528'.
[  838.290500][T28991] program syz.5.6530 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  838.301033][T28983] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  838.470375][T28983] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  838.479221][T28983] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  838.488005][T28983] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  838.498520][T28983] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  838.507475][T28983] netdevsim netdevsim4 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  838.516410][T28983] netdevsim netdevsim4 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  838.525407][T28983] netdevsim netdevsim4 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  838.578342][T29003] loop5: detected capacity change from 0 to 512
[  838.599292][T29003] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  838.722637][T29003] EXT4-fs (loop5): 1 truncate cleaned up
[  838.732488][T29003] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  839.366094][T24421] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  839.430049][T29031] netlink: 20 bytes leftover after parsing attributes in process `syz.5.6544'.
[  839.442029][T29031] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  839.450898][T29031] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  839.459715][T29031] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  839.468635][T29031] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  839.492465][T29031] netdevsim netdevsim5 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  839.501435][T29031] netdevsim netdevsim5 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  839.510482][T29031] netdevsim netdevsim5 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  839.519390][T29031] netdevsim netdevsim5 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  839.578394][T29035] Cannot find add_set index 0 as target
[  839.617277][T29047] FAULT_INJECTION: forcing a failure.
[  839.617277][T29047] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  839.630443][T29047] CPU: 0 UID: 0 PID: 29047 Comm: syz.5.6549 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  839.630537][T29047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  839.630551][T29047] Call Trace:
[  839.630558][T29047]  <TASK>
[  839.630566][T29047]  __dump_stack+0x1d/0x30
[  839.630592][T29047]  dump_stack_lvl+0xe8/0x140
[  839.630616][T29047]  dump_stack+0x15/0x1b
[  839.630677][T29047]  should_fail_ex+0x265/0x280
[  839.630751][T29047]  should_fail+0xb/0x20
[  839.630829][T29047]  should_fail_usercopy+0x1a/0x20
[  839.630852][T29047]  _copy_from_user+0x1c/0xb0
[  839.630880][T29047]  memdup_user+0x5e/0xd0
[  839.630953][T29047]  strndup_user+0x68/0xb0
[  839.630977][T29047]  perf_uprobe_init+0x48/0x150
[  839.631009][T29047]  perf_uprobe_event_init+0xea/0x150
[  839.631103][T29047]  perf_try_init_event+0xd3/0x540
[  839.631131][T29047]  ? perf_event_alloc+0xab1/0x15c0
[  839.631225][T29047]  perf_event_alloc+0xabc/0x15c0
[  839.631252][T29047]  __se_sys_perf_event_open+0x4e1/0x1170
[  839.631279][T29047]  ? __rcu_read_unlock+0x4f/0x70
[  839.631313][T29047]  __x64_sys_perf_event_open+0x67/0x80
[  839.631354][T29047]  x64_sys_call+0x27ec/0x2fb0
[  839.631378][T29047]  do_syscall_64+0xd0/0x1a0
[  839.631407][T29047]  ? clear_bhb_loop+0x40/0x90
[  839.631496][T29047]  ? clear_bhb_loop+0x40/0x90
[  839.631522][T29047]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  839.631567][T29047] RIP: 0033:0x7f86c7fde969
[  839.631586][T29047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  839.631608][T29047] RSP: 002b:00007f86c6647038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  839.631633][T29047] RAX: ffffffffffffffda RBX: 00007f86c8205fa0 RCX: 00007f86c7fde969
[  839.631650][T29047] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 00002000000004c0
[  839.631665][T29047] RBP: 00007f86c6647090 R08: 0000000000000000 R09: 0000000000000000
[  839.631698][T29047] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  839.631713][T29047] R13: 0000000000000000 R14: 00007f86c8205fa0 R15: 00007ffdc739f238
[  839.631734][T29047]  </TASK>
[  839.853398][T29049] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6550'.
[  839.922521][T29058] netlink: 'syz.4.6554': attribute type 1 has an invalid length.
[  839.934889][T29057] loop5: detected capacity change from 0 to 164
[  840.031963][T29066] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6554'.
[  840.263214][T29083] vlan2: entered allmulticast mode
[  840.316745][T29088] x_tables: ip_tables: tcp match: only valid for protocol 6
[  841.151816][T29108] 9pnet_virtio: no channels available for device ./file0
[  841.411618][T29118] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  841.428996][T29121] netlink: 'syz.4.6576': attribute type 1 has an invalid length.
[  841.436808][T29121] netlink: 199820 bytes leftover after parsing attributes in process `syz.4.6576'.
[  841.919476][   T29] kauditd_printk_skb: 190 callbacks suppressed
[  841.919508][   T29] audit: type=1400 audit(1747813215.472:4711): avc:  denied  { create } for  pid=29130 comm="syz.1.6578" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  842.013876][   T29] audit: type=1400 audit(1747813215.502:4712): avc:  denied  { write } for  pid=29130 comm="syz.1.6578" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  842.222926][   T29] audit: type=1400 audit(1747813215.772:4713): avc:  denied  { prog_load } for  pid=29134 comm="syz.4.6579" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  842.242315][   T29] audit: type=1400 audit(1747813215.772:4714): avc:  denied  { bpf } for  pid=29134 comm="syz.4.6579" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  842.263080][   T29] audit: type=1400 audit(1747813215.772:4715): avc:  denied  { perfmon } for  pid=29134 comm="syz.4.6579" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  842.319193][   T29] audit: type=1400 audit(1747813215.862:4716): avc:  denied  { map_create } for  pid=29134 comm="syz.4.6579" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  842.338549][   T29] audit: type=1400 audit(1747813215.862:4717): avc:  denied  { map_read map_write } for  pid=29134 comm="syz.4.6579" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  842.376842][   T29] audit: type=1400 audit(1747813215.932:4718): avc:  denied  { open } for  pid=29136 comm="syz.4.6580" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  842.396251][   T29] audit: type=1400 audit(1747813215.932:4719): avc:  denied  { kernel } for  pid=29136 comm="syz.4.6580" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  842.442397][   T29] audit: type=1400 audit(1747813215.972:4720): avc:  denied  { create } for  pid=29136 comm="syz.4.6580" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  842.486743][T29141] netlink: 32 bytes leftover after parsing attributes in process `syz.5.6581'.
[  842.529448][T29143] loop5: detected capacity change from 0 to 512
[  842.586513][T29143] EXT4-fs: Ignoring removed mblk_io_submit option
[  842.593785][T29143] ext4: Unknown parameter 'hash'
[  842.876800][T29153] loop5: detected capacity change from 0 to 512
[  842.883462][T29153] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  843.001257][T29158] netlink: 'syz.4.6588': attribute type 6 has an invalid length.
[  843.177717][T29163] loop7: detected capacity change from 0 to 512
[  843.299712][T29163] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  843.422031][T29163] ext4 filesystem being mounted at /256/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  843.521621][T29156] pim6reg: entered allmulticast mode
[  843.541235][T29156] pim6reg: left allmulticast mode
[  843.550771][T29169] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 808
[  843.705526][T29176] program syz.5.6591 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  843.730889][T25720] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  843.830311][T29180] netlink: 32 bytes leftover after parsing attributes in process `syz.5.6593'.
[  843.999452][T29189] loop5: detected capacity change from 0 to 512
[  844.006325][T29189] EXT4-fs: Ignoring removed nomblk_io_submit option
[  844.015697][T29189] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  844.038615][T29189] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  844.073238][T29189] EXT4-fs (loop5): 1 truncate cleaned up
[  844.095029][T29189] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  844.345716][T24421] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  844.415105][T29201] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6599'.
[  844.443619][T29206] loop5: detected capacity change from 0 to 512
[  844.450463][T29206] EXT4-fs: Ignoring removed mblk_io_submit option
[  844.459829][T29206] ext4: Unknown parameter 'hash'
[  844.646994][T29210] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6601'.
[  844.713462][T29211] loop5: detected capacity change from 0 to 512
[  844.720238][T29211] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  844.731237][T29211] netlink: 'syz.5.6602': attribute type 10 has an invalid length.
[  845.024707][T29214] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6603'.
[  845.145844][T29216] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.6603'.
[  845.158358][T29214] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.6603'.
[  845.177188][T29217] netlink: 32 bytes leftover after parsing attributes in process `syz.3.6604'.
[  845.404684][T29227] loop5: detected capacity change from 0 to 164
[  845.434222][T29227] syz.5.6608: attempt to access beyond end of device
[  845.434222][T29227] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  845.466180][T29227] syz.5.6608: attempt to access beyond end of device
[  845.466180][T29227] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164
[  845.549883][T29232] program syz.5.6610 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  845.566522][T29234] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6611'.
[  845.606520][T29239] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6613'.
[  845.640977][T29249] loop5: detected capacity change from 0 to 164
[  845.664486][T29249] FAULT_INJECTION: forcing a failure.
[  845.664486][T29249] name failslab, interval 1, probability 0, space 0, times 0
[  845.677222][T29249] CPU: 1 UID: 0 PID: 29249 Comm: syz.5.6614 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  845.677258][T29249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  845.677271][T29249] Call Trace:
[  845.677279][T29249]  <TASK>
[  845.677289][T29249]  __dump_stack+0x1d/0x30
[  845.677393][T29249]  dump_stack_lvl+0xe8/0x140
[  845.677436][T29249]  dump_stack+0x15/0x1b
[  845.677457][T29249]  should_fail_ex+0x265/0x280
[  845.677499][T29249]  should_failslab+0x8c/0xb0
[  845.677593][T29249]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  845.677652][T29249]  ? kasprintf+0x83/0xb0
[  845.677680][T29249]  kvasprintf+0x8a/0x110
[  845.677765][T29249]  kasprintf+0x83/0xb0
[  845.677794][T29249]  ? alloc_bprm+0x62/0x660
[  845.677826][T29249]  alloc_bprm+0x133/0x660
[  845.677879][T29249]  ? should_fail+0xb/0x20
[  845.677921][T29249]  do_execveat_common+0x12e/0x750
[  845.677947][T29249]  ? getname_flags+0x154/0x3b0
[  845.677982][T29249]  __x64_sys_execveat+0x73/0x90
[  845.678031][T29249]  x64_sys_call+0x2dae/0x2fb0
[  845.678096][T29249]  do_syscall_64+0xd0/0x1a0
[  845.678120][T29249]  ? clear_bhb_loop+0x40/0x90
[  845.678221][T29249]  ? clear_bhb_loop+0x40/0x90
[  845.678245][T29249]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  845.678267][T29249] RIP: 0033:0x7f86c7fde969
[  845.678286][T29249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  845.678309][T29249] RSP: 002b:00007f86c6647038 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[  845.678408][T29249] RAX: ffffffffffffffda RBX: 00007f86c8205fa0 RCX: 00007f86c7fde969
[  845.678423][T29249] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004
[  845.678438][T29249] RBP: 00007f86c6647090 R08: 0000000000001000 R09: 0000000000000000
[  845.678454][T29249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  845.678468][T29249] R13: 0000000000000000 R14: 00007f86c8205fa0 R15: 00007ffdc739f238
[  845.678491][T29249]  </TASK>
[  845.899202][T29260] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6615'.
[  845.919843][T29261] 8021q: VLANs not supported on wg1
[  845.930270][T29261] netlink: 'syz.3.6616': attribute type 4 has an invalid length.
[  845.986938][T29272] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6620'.
[  846.184332][T29290] netlink: 76 bytes leftover after parsing attributes in process `syz.7.6626'.
[  846.251789][T29292] loop7: detected capacity change from 0 to 512
[  846.271759][T29292] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  846.283443][T29281] loop5: detected capacity change from 0 to 1024
[  846.284362][T29292] ext4 filesystem being mounted at /262/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  846.302196][T29281] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  846.313260][T29281] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  846.324312][T29281] JBD2: no valid journal superblock found
[  846.330137][T29281] EXT4-fs (loop5): Could not load journal inode
[  846.339864][T29281] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  846.485241][T25720] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  846.500762][T29297] FAULT_INJECTION: forcing a failure.
[  846.500762][T29297] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  846.513881][T29297] CPU: 0 UID: 0 PID: 29297 Comm: syz.1.6628 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  846.513948][T29297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  846.513958][T29297] Call Trace:
[  846.513963][T29297]  <TASK>
[  846.513968][T29297]  __dump_stack+0x1d/0x30
[  846.513986][T29297]  dump_stack_lvl+0xe8/0x140
[  846.514033][T29297]  dump_stack+0x15/0x1b
[  846.514045][T29297]  should_fail_ex+0x265/0x280
[  846.514069][T29297]  should_fail+0xb/0x20
[  846.514168][T29297]  should_fail_usercopy+0x1a/0x20
[  846.514183][T29297]  _copy_from_user+0x1c/0xb0
[  846.514199][T29297]  restore_altstack+0x4b/0x2d0
[  846.514217][T29297]  ? __set_task_blocked+0x23a/0x2a0
[  846.514278][T29297]  __ia32_sys_rt_sigreturn+0xdc/0x350
[  846.514302][T29297]  ? _raw_spin_unlock_irq+0x26/0x50
[  846.514323][T29297]  ? signal_setup_done+0x266/0x290
[  846.514363][T29297]  ? fpu__clear_user_states+0x3b/0x280
[  846.514476][T29297]  ? arch_do_signal_or_restart+0x2ed/0x480
[  846.514553][T29297]  ? __rcu_read_unlock+0x4f/0x70
[  846.514577][T29297]  ? fpregs_assert_state_consistent+0x84/0xa0
[  846.514672][T29297]  x64_sys_call+0x2e8a/0x2fb0
[  846.514759][T29297]  do_syscall_64+0xd0/0x1a0
[  846.514787][T29297]  ? clear_bhb_loop+0x40/0x90
[  846.514811][T29297]  ? clear_bhb_loop+0x40/0x90
[  846.514835][T29297]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  846.514857][T29297] RIP: 0033:0x7fbae60dab39
[  846.514872][T29297] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[  846.514941][T29297] RSP: 002b:00007fbae47a6a80 EFLAGS: 00000202 ORIG_RAX: 000000000000000f
[  846.514963][T29297] RAX: ffffffffffffffda RBX: 00007fbae6365fa0 RCX: 00007fbae60dab39
[  846.514976][T29297] RDX: 00007fbae47a6a80 RSI: 00007fbae47a6bb0 RDI: 0000000000000021
[  846.515001][T29297] RBP: 00007fbae47a7090 R08: 0000000000000000 R09: 0000000000000000
[  846.515014][T29297] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[  846.515029][T29297] R13: 0000000000000000 R14: 00007fbae6365fa0 R15: 00007ffec65ae498
[  846.515050][T29297]  </TASK>
[  846.776189][T29299] xt_TPROXY: Can be used only with -p tcp or -p udp
[  846.802366][T29315] program syz.1.6634 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  846.827689][T29320] FAULT_INJECTION: forcing a failure.
[  846.827689][T29320] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  846.840898][T29320] CPU: 0 UID: 0 PID: 29320 Comm: syz.1.6636 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  846.840927][T29320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  846.840966][T29320] Call Trace:
[  846.840974][T29320]  <TASK>
[  846.841019][T29320]  __dump_stack+0x1d/0x30
[  846.841079][T29320]  dump_stack_lvl+0xe8/0x140
[  846.841100][T29320]  dump_stack+0x15/0x1b
[  846.841155][T29320]  should_fail_ex+0x265/0x280
[  846.841285][T29320]  should_fail+0xb/0x20
[  846.841322][T29320]  should_fail_usercopy+0x1a/0x20
[  846.841371][T29320]  _copy_from_iter+0xcf/0xdd0
[  846.841436][T29320]  ? __build_skb_around+0x1a0/0x200
[  846.841484][T29320]  ? __alloc_skb+0x223/0x320
[  846.841524][T29320]  netlink_sendmsg+0x471/0x6b0
[  846.841551][T29320]  ? __pfx_netlink_sendmsg+0x10/0x10
[  846.841572][T29320]  __sock_sendmsg+0x145/0x180
[  846.841598][T29320]  ____sys_sendmsg+0x31e/0x4e0
[  846.841670][T29320]  ___sys_sendmsg+0x17b/0x1d0
[  846.841703][T29320]  __x64_sys_sendmsg+0xd4/0x160
[  846.841733][T29320]  x64_sys_call+0x2999/0x2fb0
[  846.841760][T29320]  do_syscall_64+0xd0/0x1a0
[  846.841789][T29320]  ? clear_bhb_loop+0x40/0x90
[  846.841813][T29320]  ? clear_bhb_loop+0x40/0x90
[  846.841869][T29320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  846.841895][T29320] RIP: 0033:0x7fbae613e969
[  846.841915][T29320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  846.841964][T29320] RSP: 002b:00007fbae47a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  846.842065][T29320] RAX: ffffffffffffffda RBX: 00007fbae6365fa0 RCX: 00007fbae613e969
[  846.842081][T29320] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  846.842138][T29320] RBP: 00007fbae47a7090 R08: 0000000000000000 R09: 0000000000000000
[  846.842150][T29320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  846.842163][T29320] R13: 0000000000000000 R14: 00007fbae6365fa0 R15: 00007ffec65ae498
[  846.842185][T29320]  </TASK>
[  847.061818][T29323] netlink: 'syz.1.6637': attribute type 4 has an invalid length.
[  847.138398][   T29] kauditd_printk_skb: 136 callbacks suppressed
[  847.138418][   T29] audit: type=1400 audit(1747813220.692:4855): avc:  denied  { setopt } for  pid=29325 comm="syz.1.6638" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  847.180269][   T29] audit: type=1400 audit(1747813220.692:4856): avc:  denied  { name_connect } for  pid=29325 comm="syz.1.6638" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  847.200658][   T29] audit: type=1400 audit(1747813220.692:4857): avc:  denied  { shutdown } for  pid=29325 comm="syz.1.6638" laddr=fe80::10 lport=34506 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  847.223003][   T29] audit: type=1400 audit(1747813220.732:4858): avc:  denied  { write } for  pid=29325 comm="syz.1.6638" name="001" dev="devtmpfs" ino=147 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  847.245932][   T29] audit: type=1400 audit(1747813220.732:4859): avc:  denied  { create } for  pid=29325 comm="syz.1.6638" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  847.265722][   T29] audit: type=1400 audit(1747813220.732:4860): avc:  denied  { setopt } for  pid=29325 comm="syz.1.6638" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  847.285432][   T29] audit: type=1400 audit(1747813220.752:4861): avc:  denied  { append } for  pid=29328 comm="syz.5.6639" name="001" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  847.372745][   T29] audit: type=1400 audit(1747813220.922:4862): avc:  denied  { create } for  pid=29330 comm="syz.5.6640" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  847.395223][   T29] audit: type=1400 audit(1747813220.952:4863): avc:  denied  { bind } for  pid=29330 comm="syz.5.6640" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  847.434272][   T29] audit: type=1326 audit(1747813220.982:4864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29332 comm="syz.1.6641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae613e969 code=0x7ffc0000
[  847.616946][T29357] FAULT_INJECTION: forcing a failure.
[  847.616946][T29357] name failslab, interval 1, probability 0, space 0, times 0
[  847.629648][T29357] CPU: 0 UID: 0 PID: 29357 Comm: syz.5.6650 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  847.629684][T29357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  847.629771][T29357] Call Trace:
[  847.629778][T29357]  <TASK>
[  847.629787][T29357]  __dump_stack+0x1d/0x30
[  847.629813][T29357]  dump_stack_lvl+0xe8/0x140
[  847.629838][T29357]  dump_stack+0x15/0x1b
[  847.629867][T29357]  should_fail_ex+0x265/0x280
[  847.629967][T29357]  should_failslab+0x8c/0xb0
[  847.630001][T29357]  kmem_cache_alloc_noprof+0x50/0x310
[  847.630061][T29357]  ? posix_lock_inode+0x162/0x2380
[  847.630163][T29357]  posix_lock_inode+0x162/0x2380
[  847.630188][T29357]  ? file_has_perm+0x324/0x370
[  847.630260][T29357]  fcntl_setlk+0x61f/0x950
[  847.630331][T29357]  do_fcntl+0x5dd/0xdf0
[  847.630354][T29357]  ? selinux_file_fcntl+0x1cb/0x1e0
[  847.630437][T29357]  __se_sys_fcntl+0xb1/0x120
[  847.630458][T29357]  __x64_sys_fcntl+0x43/0x50
[  847.630480][T29357]  x64_sys_call+0x1f1d/0x2fb0
[  847.630578][T29357]  do_syscall_64+0xd0/0x1a0
[  847.630700][T29357]  ? clear_bhb_loop+0x40/0x90
[  847.630727][T29357]  ? clear_bhb_loop+0x40/0x90
[  847.630753][T29357]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  847.630779][T29357] RIP: 0033:0x7f86c7fde969
[  847.630796][T29357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  847.630815][T29357] RSP: 002b:00007f86c6647038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[  847.630891][T29357] RAX: ffffffffffffffda RBX: 00007f86c8205fa0 RCX: 00007f86c7fde969
[  847.630904][T29357] RDX: 0000200000000000 RSI: 0000000000000026 RDI: 0000000000000007
[  847.630919][T29357] RBP: 00007f86c6647090 R08: 0000000000000000 R09: 0000000000000000
[  847.630935][T29357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  847.630951][T29357] R13: 0000000000000000 R14: 00007f86c8205fa0 R15: 00007ffdc739f238
[  847.630973][T29357]  </TASK>
[  847.883184][T29359] loop7: detected capacity change from 0 to 512
[  847.891990][T29359] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  847.938458][T29359] EXT4-fs (loop7): 1 truncate cleaned up
[  847.944705][T29359] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  847.959992][T29367] netlink: 'syz.5.6653': attribute type 1 has an invalid length.
[  848.020976][T29369] FAULT_INJECTION: forcing a failure.
[  848.020976][T29369] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  848.034136][T29369] CPU: 0 UID: 0 PID: 29369 Comm: syz.4.6654 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  848.034166][T29369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  848.034178][T29369] Call Trace:
[  848.034185][T29369]  <TASK>
[  848.034194][T29369]  __dump_stack+0x1d/0x30
[  848.034290][T29369]  dump_stack_lvl+0xe8/0x140
[  848.034310][T29369]  dump_stack+0x15/0x1b
[  848.034329][T29369]  should_fail_ex+0x265/0x280
[  848.034375][T29369]  should_fail+0xb/0x20
[  848.034447][T29369]  should_fail_usercopy+0x1a/0x20
[  848.034473][T29369]  _copy_from_user+0x1c/0xb0
[  848.034555][T29369]  memdup_user+0x5e/0xd0
[  848.034644][T29369]  strndup_user+0x68/0xb0
[  848.034663][T29369]  perf_uprobe_init+0x48/0x150
[  848.034695][T29369]  perf_uprobe_event_init+0xea/0x150
[  848.034722][T29369]  perf_try_init_event+0xd3/0x540
[  848.034780][T29369]  ? perf_event_alloc+0xab1/0x15c0
[  848.034810][T29369]  perf_event_alloc+0xabc/0x15c0
[  848.034836][T29369]  __se_sys_perf_event_open+0x4e1/0x1170
[  848.034862][T29369]  ? __rcu_read_unlock+0x4f/0x70
[  848.034912][T29369]  __x64_sys_perf_event_open+0x67/0x80
[  848.035013][T29369]  x64_sys_call+0x27ec/0x2fb0
[  848.035040][T29369]  do_syscall_64+0xd0/0x1a0
[  848.035072][T29369]  ? clear_bhb_loop+0x40/0x90
[  848.035170][T29369]  ? clear_bhb_loop+0x40/0x90
[  848.035197][T29369]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  848.035222][T29369] RIP: 0033:0x7fef8c66e969
[  848.035238][T29369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  848.035306][T29369] RSP: 002b:00007fef8acd7038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  848.035367][T29369] RAX: ffffffffffffffda RBX: 00007fef8c895fa0 RCX: 00007fef8c66e969
[  848.035381][T29369] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 00002000000004c0
[  848.035397][T29369] RBP: 00007fef8acd7090 R08: 0000000000000000 R09: 0000000000000000
[  848.035414][T29369] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  848.035431][T29369] R13: 0000000000000000 R14: 00007fef8c895fa0 R15: 00007fff6460aec8
[  848.035454][T29369]  </TASK>
[  848.563335][T25720] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  849.195547][T29423] FAULT_INJECTION: forcing a failure.
[  849.195547][T29423] name failslab, interval 1, probability 0, space 0, times 0
[  849.208266][T29423] CPU: 1 UID: 0 PID: 29423 Comm: syz.7.6669 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  849.208383][T29423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  849.208397][T29423] Call Trace:
[  849.208405][T29423]  <TASK>
[  849.208413][T29423]  __dump_stack+0x1d/0x30
[  849.208470][T29423]  dump_stack_lvl+0xe8/0x140
[  849.208506][T29423]  dump_stack+0x15/0x1b
[  849.208527][T29423]  should_fail_ex+0x265/0x280
[  849.208565][T29423]  should_failslab+0x8c/0xb0
[  849.208601][T29423]  kmem_cache_alloc_node_noprof+0x57/0x320
[  849.208636][T29423]  ? __alloc_skb+0x101/0x320
[  849.208754][T29423]  __alloc_skb+0x101/0x320
[  849.208792][T29423]  rtmsg_ifinfo_build_skb+0x5f/0x1b0
[  849.208816][T29423]  ? __rcu_read_unlock+0x4f/0x70
[  849.208842][T29423]  ? __pfx_rtnetlink_event+0x10/0x10
[  849.208893][T29423]  rtnetlink_event+0x18c/0x200
[  849.208921][T29423]  raw_notifier_call_chain+0x6f/0x1b0
[  849.208946][T29423]  ? call_netdevice_notifiers_info+0x9c/0x100
[  849.209000][T29423]  call_netdevice_notifiers_info+0xae/0x100
[  849.209029][T29423]  netif_set_mtu_ext+0x296/0x370
[  849.209066][T29423]  netif_set_mtu+0x4a/0xf0
[  849.209156][T29423]  dev_set_mtu+0xc1/0x170
[  849.209187][T29423]  batadv_update_min_mtu+0x18c/0x1a0
[  849.209212][T29423]  batadv_netlink_set_mesh+0x37e/0x8a0
[  849.209295][T29423]  genl_family_rcv_msg_doit+0x140/0x1b0
[  849.209332][T29423]  genl_rcv_msg+0x422/0x460
[  849.209392][T29423]  ? __pfx_batadv_pre_doit+0x10/0x10
[  849.209425][T29423]  ? __pfx_batadv_netlink_set_mesh+0x10/0x10
[  849.209540][T29423]  ? __pfx_batadv_post_doit+0x10/0x10
[  849.209576][T29423]  netlink_rcv_skb+0x123/0x220
[  849.209688][T29423]  ? __pfx_genl_rcv_msg+0x10/0x10
[  849.209722][T29423]  genl_rcv+0x28/0x40
[  849.209773][T29423]  netlink_unicast+0x5a1/0x670
[  849.209809][T29423]  netlink_sendmsg+0x58b/0x6b0
[  849.209835][T29423]  ? __pfx_netlink_sendmsg+0x10/0x10
[  849.209933][T29423]  __sock_sendmsg+0x145/0x180
[  849.209966][T29423]  ____sys_sendmsg+0x31e/0x4e0
[  849.209993][T29423]  ___sys_sendmsg+0x17b/0x1d0
[  849.210030][T29423]  __x64_sys_sendmsg+0xd4/0x160
[  849.210059][T29423]  x64_sys_call+0x2999/0x2fb0
[  849.210102][T29423]  do_syscall_64+0xd0/0x1a0
[  849.210130][T29423]  ? clear_bhb_loop+0x40/0x90
[  849.210220][T29423]  ? clear_bhb_loop+0x40/0x90
[  849.210243][T29423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  849.210267][T29423] RIP: 0033:0x7fc0fa00e969
[  849.210285][T29423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  849.210307][T29423] RSP: 002b:00007fc0f8677038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  849.210410][T29423] RAX: ffffffffffffffda RBX: 00007fc0fa235fa0 RCX: 00007fc0fa00e969
[  849.210502][T29423] RDX: 0000000000000000 RSI: 0000200000000540 RDI: 0000000000000005
[  849.210517][T29423] RBP: 00007fc0f8677090 R08: 0000000000000000 R09: 0000000000000000
[  849.210532][T29423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  849.210547][T29423] R13: 0000000000000000 R14: 00007fc0fa235fa0 R15: 00007ffc359e3198
[  849.210636][T29423]  </TASK>
[  849.655890][T29431] FAULT_INJECTION: forcing a failure.
[  849.655890][T29431] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  849.658385][T29432] __nla_validate_parse: 17 callbacks suppressed
[  849.658401][T29432] netlink: 4 bytes leftover after parsing attributes in process `syz.7.6673'.
[  849.669029][T29431] CPU: 1 UID: 0 PID: 29431 Comm: syz.3.6672 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  849.669065][T29431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  849.669080][T29431] Call Trace:
[  849.669151][T29431]  <TASK>
[  849.669162][T29431]  __dump_stack+0x1d/0x30
[  849.669200][T29431]  dump_stack_lvl+0xe8/0x140
[  849.669222][T29431]  dump_stack+0x15/0x1b
[  849.669241][T29431]  should_fail_ex+0x265/0x280
[  849.669276][T29431]  should_fail+0xb/0x20
[  849.669365][T29431]  should_fail_usercopy+0x1a/0x20
[  849.669388][T29431]  _copy_to_user+0x20/0xa0
[  849.669414][T29431]  copy_siginfo_to_user+0x22/0xb0
[  849.669438][T29431]  x64_setup_rt_frame+0x2b5/0x580
[  849.669514][T29431]  arch_do_signal_or_restart+0x26e/0x480
[  849.669553][T29431]  syscall_exit_to_user_mode+0x68/0xb0
[  849.669584][T29431]  do_syscall_64+0xdd/0x1a0
[  849.669696][T29431]  ? clear_bhb_loop+0x40/0x90
[  849.669719][T29431]  ? clear_bhb_loop+0x40/0x90
[  849.669822][T29431]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  849.669846][T29431] RIP: 0033:0x7f339a81e967
[  849.669871][T29431] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89
[  849.669938][T29431] RSP: 002b:00007f3398e87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  849.669961][T29431] RAX: 0000000000000000 RBX: 00007f339aa45fa0 RCX: 00007f339a81e969
[  849.669975][T29431] RDX: 0000000000001001 RSI: 00002000000019c0 RDI: 0000000000000003
[  849.670066][T29431] RBP: 00007f3398e87090 R08: 0000000000000000 R09: 0000000000000000
[  849.670080][T29431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  849.670094][T29431] R13: 0000000000000000 R14: 00007f339aa45fa0 R15: 00007ffd2ee16448
[  849.670112][T29431]  </TASK>
[  850.912371][T29450] FAULT_INJECTION: forcing a failure.
[  850.912371][T29450] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  850.925526][T29450] CPU: 1 UID: 0 PID: 29450 Comm: syz.7.6679 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  850.925560][T29450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  850.925573][T29450] Call Trace:
[  850.925645][T29450]  <TASK>
[  850.925653][T29450]  __dump_stack+0x1d/0x30
[  850.925676][T29450]  dump_stack_lvl+0xe8/0x140
[  850.925699][T29450]  dump_stack+0x15/0x1b
[  850.925718][T29450]  should_fail_ex+0x265/0x280
[  850.925770][T29450]  should_fail+0xb/0x20
[  850.925859][T29450]  should_fail_usercopy+0x1a/0x20
[  850.925879][T29450]  _copy_from_user+0x1c/0xb0
[  850.925904][T29450]  memdup_user+0x5e/0xd0
[  850.925926][T29450]  strndup_user+0x68/0xb0
[  850.926022][T29450]  __se_sys_mount+0x8e/0x2e0
[  850.926047][T29450]  ? fput+0x8f/0xc0
[  850.926067][T29450]  ? ksys_write+0x16e/0x1a0
[  850.926098][T29450]  __x64_sys_mount+0x67/0x80
[  850.926200][T29450]  x64_sys_call+0xd36/0x2fb0
[  850.926225][T29450]  do_syscall_64+0xd0/0x1a0
[  850.926250][T29450]  ? clear_bhb_loop+0x40/0x90
[  850.926275][T29450]  ? clear_bhb_loop+0x40/0x90
[  850.926307][T29450]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  850.926330][T29450] RIP: 0033:0x7fc0fa00e969
[  850.926348][T29450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  850.926367][T29450] RSP: 002b:00007fc0f8677038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  850.926387][T29450] RAX: ffffffffffffffda RBX: 00007fc0fa235fa0 RCX: 00007fc0fa00e969
[  850.926422][T29450] RDX: 0000000000000000 RSI: 00002000000004c0 RDI: 0000200000000480
[  850.926437][T29450] RBP: 00007fc0f8677090 R08: 0000000000000000 R09: 0000000000000000
[  850.926453][T29450] R10: 0000000000002000 R11: 0000000000000246 R12: 0000000000000001
[  850.926499][T29450] R13: 0000000000000000 R14: 00007fc0fa235fa0 R15: 00007ffc359e3198
[  850.926519][T29450]  </TASK>
[  851.129188][T29451] netlink: 'syz.3.6677': attribute type 10 has an invalid length.
[  851.153655][T29453] loop7: detected capacity change from 0 to 512
[  851.162856][T29453] EXT4-fs: Ignoring removed mblk_io_submit option
[  851.169498][T29453] ext4: Unknown parameter 'hash'
[  851.800068][T29455] loop7: detected capacity change from 0 to 512
[  851.806686][T29455] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  852.344569][   T29] kauditd_printk_skb: 78 callbacks suppressed
[  852.344664][   T29] audit: type=1400 audit(1747813225.892:4941): avc:  denied  { name_bind } for  pid=29460 comm="syz.5.6683" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  852.372677][   T29] audit: type=1400 audit(1747813225.902:4942): avc:  denied  { node_bind } for  pid=29460 comm="syz.5.6683" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  852.405582][   T29] audit: type=1400 audit(1747813225.962:4943): avc:  denied  { bind } for  pid=29462 comm="syz.1.6684" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  852.430852][   T29] audit: type=1400 audit(1747813225.982:4944): avc:  denied  { setopt } for  pid=29462 comm="syz.1.6684" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  852.435948][T29463] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  852.537735][T29463] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  852.585810][T29463] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  852.648230][T29463] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  852.700057][   T29] audit: type=1400 audit(1747813226.252:4945): avc:  denied  { create } for  pid=29464 comm="syz.7.6685" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  852.798616][T29463] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  852.830162][T29463] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  852.858514][T29463] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  852.876535][T29465] loop7: detected capacity change from 0 to 1024
[  852.892984][T29463] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  852.897857][T29465] EXT4-fs: Ignoring removed mblk_io_submit option
[  852.913363][   T29] audit: type=1400 audit(1747813226.462:4946): avc:  denied  { mount } for  pid=29478 comm="syz.5.6690" name="/" dev="configfs" ino=1000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  852.936237][   T29] audit: type=1400 audit(1747813226.462:4947): avc:  denied  { search } for  pid=29478 comm="syz.5.6690" name="/" dev="configfs" ino=1000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  852.958763][   T29] audit: type=1400 audit(1747813226.462:4948): avc:  denied  { read } for  pid=29478 comm="syz.5.6690" name="/" dev="configfs" ino=1000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  852.980892][   T29] audit: type=1400 audit(1747813226.462:4949): avc:  denied  { open } for  pid=29478 comm="syz.5.6690" path="/" dev="configfs" ino=1000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  853.109268][T29485] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6691'.
[  853.140939][T29477] netlink: 'syz.4.6689': attribute type 1 has an invalid length.
[  853.148825][T29477] netlink: 199820 bytes leftover after parsing attributes in process `syz.4.6689'.
[  853.151607][T29488] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6693'.
[  853.192241][T29490] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6694'.
[  853.225081][T29493] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.6693'.
[  853.236180][T29488] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.6693'.
[  853.271625][T29495] FAULT_INJECTION: forcing a failure.
[  853.271625][T29495] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  853.284897][T29495] CPU: 1 UID: 0 PID: 29495 Comm: syz.5.6696 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  853.284934][T29495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  853.284949][T29495] Call Trace:
[  853.284957][T29495]  <TASK>
[  853.284967][T29495]  __dump_stack+0x1d/0x30
[  853.284995][T29495]  dump_stack_lvl+0xe8/0x140
[  853.285063][T29495]  dump_stack+0x15/0x1b
[  853.285080][T29495]  should_fail_ex+0x265/0x280
[  853.285113][T29495]  should_fail+0xb/0x20
[  853.285149][T29495]  should_fail_usercopy+0x1a/0x20
[  853.285244][T29495]  _copy_from_user+0x1c/0xb0
[  853.285333][T29495]  __ia32_sys_rt_sigreturn+0x128/0x350
[  853.285380][T29495]  x64_sys_call+0x2e8a/0x2fb0
[  853.285408][T29495]  do_syscall_64+0xd0/0x1a0
[  853.285487][T29495]  ? clear_bhb_loop+0x40/0x90
[  853.285514][T29495]  ? clear_bhb_loop+0x40/0x90
[  853.285538][T29495]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  853.285633][T29495] RIP: 0033:0x7f86c7f7ab39
[  853.285652][T29495] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[  853.285795][T29495] RSP: 002b:00007f86c6646a80 EFLAGS: 00000202 ORIG_RAX: 000000000000000f
[  853.285821][T29495] RAX: ffffffffffffffda RBX: 00007f86c8205fa0 RCX: 00007f86c7f7ab39
[  853.285838][T29495] RDX: 00007f86c6646a80 RSI: 00007f86c6646bb0 RDI: 0000000000000021
[  853.285903][T29495] RBP: 00007f86c6647090 R08: 0000000000000000 R09: 0000000000000000
[  853.285917][T29495] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[  853.285930][T29495] R13: 0000000000000000 R14: 00007f86c8205fa0 R15: 00007ffdc739f238
[  853.285947][T29495]  </TASK>
[  853.527164][   T29] audit: type=1400 audit(1747813227.082:4950): avc:  denied  { create } for  pid=29496 comm="syz.7.6697" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  853.732077][T29509] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6700'.
[  854.239350][T29523] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  854.252307][T29521] netlink: 24 bytes leftover after parsing attributes in process `syz.3.6705'.
[  854.274646][T29523] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  854.297364][T29523] loop7: detected capacity change from 0 to 512
[  854.333709][T29523] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  854.366915][T29523] EXT4-fs (loop7): 1 truncate cleaned up
[  854.373243][T29523] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  854.382199][T29534] netlink: 'syz.3.6708': attribute type 1 has an invalid length.
[  854.393666][T29534] netlink: 199820 bytes leftover after parsing attributes in process `syz.3.6708'.
[  854.510524][T29516] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  854.522311][T29532] IPv6: NLM_F_CREATE should be specified when creating new route
[  854.590407][T29516] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  854.675067][T29516] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  854.710513][T29542] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6712'.
[  854.744154][T29544] dvmrp1: entered allmulticast mode
[  854.768476][T29516] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  854.801937][T29544] dvmrp1: left allmulticast mode
[  854.937304][T29546] netlink: 'syz.4.6711': attribute type 10 has an invalid length.
[  855.036099][T29516] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  855.061108][T25720] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  855.103219][T29516] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  855.238538][T29516] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  855.271505][T29516] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  855.965969][T29558] program syz.4.6717 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  856.208697][T29581] x_tables: ip6_tables: mh match: only valid for protocol 135
[  856.252847][T29588] dvmrp1: entered allmulticast mode
[  856.286167][T29592] loop5: detected capacity change from 0 to 512
[  856.296589][T29588] dvmrp1: left allmulticast mode
[  856.307634][T29592] EXT4-fs: Ignoring removed mblk_io_submit option
[  856.315052][T29592] ext4: Unknown parameter 'hash'
[  856.459044][T29599] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6733'.
[  856.526471][T29601] loop5: detected capacity change from 0 to 512
[  856.533242][T29601] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  856.667193][T29602] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.6733'.
[  856.679286][T29599] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.6733'.
[  856.815907][T29604] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  856.861354][T29604] netlink: 'syz.7.6734': attribute type 5 has an invalid length.
[  856.908737][T29604] netdevsim netdevsim7: Direct firmware load for ./file0 failed with error -2
[  856.996638][T29606] wireguard0: entered promiscuous mode
[  857.002247][T29606] wireguard0: entered allmulticast mode
[  857.225251][T29625] binfmt_misc: register: failed to install interpreter file ./file0
[  857.238945][T29627] +}[@: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  857.253063][T29627] CPU: 0 UID: 0 PID: 29627 Comm: +}[@ Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  857.253099][T29627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  857.253184][T29627] Call Trace:
[  857.253192][T29627]  <TASK>
[  857.253202][T29627]  __dump_stack+0x1d/0x30
[  857.253229][T29627]  dump_stack_lvl+0xe8/0x140
[  857.253254][T29627]  dump_stack+0x15/0x1b
[  857.253275][T29627]  warn_alloc+0x12b/0x1a0
[  857.253353][T29627]  ? schedule+0x5f/0xd0
[  857.253382][T29627]  ? futex_unqueue+0xb9/0xf0
[  857.253406][T29627]  __vmalloc_node_range_noprof+0x9c/0xdf0
[  857.253434][T29627]  ? __pfx_futex_wake_mark+0x10/0x10
[  857.253522][T29627]  ? __rcu_read_unlock+0x4f/0x70
[  857.253607][T29627]  ? avc_has_perm_noaudit+0x1b1/0x200
[  857.253628][T29627]  ? should_fail_ex+0x30/0x280
[  857.253680][T29627]  ? xskq_create+0x36/0xe0
[  857.253711][T29627]  ? should_failslab+0x8c/0xb0
[  857.253746][T29627]  vmalloc_user_noprof+0x59/0x70
[  857.253817][T29627]  ? xskq_create+0x80/0xe0
[  857.253878][T29627]  xskq_create+0x80/0xe0
[  857.253909][T29627]  xsk_init_queue+0x95/0xf0
[  857.253938][T29627]  xsk_setsockopt+0x35c/0x510
[  857.253973][T29627]  ? __pfx_xsk_setsockopt+0x10/0x10
[  857.254004][T29627]  __sys_setsockopt+0x181/0x200
[  857.254028][T29627]  ? fpregs_restore_userregs+0xbb/0x190
[  857.254121][T29627]  __x64_sys_setsockopt+0x64/0x80
[  857.254146][T29627]  x64_sys_call+0x2bd5/0x2fb0
[  857.254173][T29627]  do_syscall_64+0xd0/0x1a0
[  857.254232][T29627]  ? clear_bhb_loop+0x40/0x90
[  857.254331][T29627]  ? clear_bhb_loop+0x40/0x90
[  857.254359][T29627]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  857.254390][T29627] RIP: 0033:0x7fbae613e969
[  857.254470][T29627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  857.254558][T29627] RSP: 002b:00007fbae47a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  857.254586][T29627] RAX: ffffffffffffffda RBX: 00007fbae6365fa0 RCX: 00007fbae613e969
[  857.254600][T29627] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000008
[  857.254612][T29627] RBP: 00007fbae61c0ab1 R08: 0000000000000004 R09: 0000000000000000
[  857.254624][T29627] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  857.254637][T29627] R13: 0000000000000000 R14: 00007fbae6365fa0 R15: 00007ffec65ae498
[  857.254655][T29627]  </TASK>
[  857.487476][T29627] Mem-Info:
[  857.490614][T29627] active_anon:4872 inactive_anon:2 isolated_anon:0
[  857.490614][T29627]  active_file:19550 inactive_file:2532 isolated_file:0
[  857.490614][T29627]  unevictable:0 dirty:285 writeback:0
[  857.490614][T29627]  slab_reclaimable:3755 slab_unreclaimable:23582
[  857.490614][T29627]  mapped:30353 shmem:418 pagetables:661
[  857.490614][T29627]  sec_pagetables:0 bounce:0
[  857.490614][T29627]  kernel_misc_reclaimable:0
[  857.490614][T29627]  free:1871854 free_pcp:9666 free_cma:0
[  857.535562][T29627] Node 0 active_anon:19488kB inactive_anon:8kB active_file:78200kB inactive_file:10128kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:121412kB dirty:1140kB writeback:0kB shmem:1672kB writeback_tmp:0kB kernel_stack:4992kB pagetables:2644kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  857.564537][T29627] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  857.591752][T29627] lowmem_reserve[]: 0 2884 7863 7863
[  857.597326][T29627] Node 0 DMA32 free:2949928kB boost:0kB min:4132kB low:7064kB high:9996kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953560kB mlocked:0kB bounce:0kB free_pcp:3632kB local_pcp:100kB free_cma:0kB
[  857.625935][T29627] lowmem_reserve[]: 0 0 4978 4978
[  857.630976][T29627] Node 0 Normal free:4522128kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:19488kB inactive_anon:8kB active_file:78200kB inactive_file:10128kB unevictable:0kB writepending:1140kB present:5242880kB managed:5098244kB mlocked:0kB bounce:0kB free_pcp:34776kB local_pcp:27492kB free_cma:0kB
[  857.661385][T29627] lowmem_reserve[]: 0 0 0 0
[  857.665920][T29627] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  857.678632][T29627] Node 0 DMA32: 2*4kB (M) 2*8kB (M) 1*16kB (M) 4*32kB (M) 2*64kB (M) 2*128kB (M) 3*256kB (M) 3*512kB (M) 4*1024kB (M) 3*2048kB (M) 717*4096kB (M) = 2949928kB
[  857.694799][T29627] Node 0 Normal: 1744*4kB (UME) 1630*8kB (UME) 1061*16kB (UME) 629*32kB (UME) 493*64kB (UME) 243*128kB (UME) 149*256kB (UM) 158*512kB (UME) 101*1024kB (UM) 37*2048kB (UM) 1002*4096kB (UM) = 4522208kB
[  857.714733][T29627] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  857.724041][T29627] 22499 total pagecache pages
[  857.728735][T29627] 3 pages in swap cache
[  857.732898][T29627] Free swap  = 124984kB
[  857.737088][T29627] Total swap = 124996kB
[  857.741246][T29627] 2097051 pages RAM
[  857.745084][T29627] 0 pages HighMem/MovableOnly
[  857.749816][T29627] 80260 pages reserved
[  857.785965][T29629] xt_hashlimit: max too large, truncated to 1048576
[  858.316777][   T29] kauditd_printk_skb: 20 callbacks suppressed
[  858.316807][   T29] audit: type=1400 audit(1747813231.852:4971): avc:  denied  { connect } for  pid=29650 comm="syz.7.6751" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  858.342836][   T29] audit: type=1400 audit(1747813231.852:4972): avc:  denied  { write } for  pid=29650 comm="syz.7.6751" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  858.638021][   T29] audit: type=1326 audit(1747813232.192:4973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29661 comm="syz.7.6755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0fa00e969 code=0x7ffc0000
[  858.661802][   T29] audit: type=1400 audit(1747813232.192:4974): avc:  denied  { bind } for  pid=29661 comm="syz.7.6755" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  858.681288][   T29] audit: type=1326 audit(1747813232.192:4975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29661 comm="syz.7.6755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fc0fa00e969 code=0x7ffc0000
[  858.704847][   T29] audit: type=1326 audit(1747813232.192:4976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29661 comm="syz.7.6755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0fa00e969 code=0x7ffc0000
[  858.728427][   T29] audit: type=1326 audit(1747813232.192:4977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29661 comm="syz.7.6755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0fa00e969 code=0x7ffc0000
[  858.752057][   T29] audit: type=1326 audit(1747813232.192:4978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29661 comm="syz.7.6755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7fc0fa00e969 code=0x7ffc0000
[  858.775677][   T29] audit: type=1400 audit(1747813232.192:4979): avc:  denied  { mount } for  pid=29661 comm="syz.7.6755" name="/" dev="ramfs" ino=85962 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  858.798097][   T29] audit: type=1326 audit(1747813232.192:4980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29661 comm="syz.7.6755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0fa00e969 code=0x7ffc0000
[  858.838767][T29658] netlink: 'syz.1.6754': attribute type 10 has an invalid length.
[  858.858916][T29658] bridge0: port 2(bridge_slave_1) entered disabled state
[  858.866230][T29658] bridge0: port 1(bridge_slave_0) entered disabled state
[  858.891054][T29674] bond0: (slave bridge0): Releasing backup interface
[  858.953398][T29674] team0: Mode changed to "loadbalance"
[  859.014063][T29676] FAULT_INJECTION: forcing a failure.
[  859.014063][T29676] name failslab, interval 1, probability 0, space 0, times 0
[  859.026749][T29676] CPU: 0 UID: 0 PID: 29676 Comm: syz.7.6757 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  859.026782][T29676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  859.026795][T29676] Call Trace:
[  859.026802][T29676]  <TASK>
[  859.026810][T29676]  __dump_stack+0x1d/0x30
[  859.026833][T29676]  dump_stack_lvl+0xe8/0x140
[  859.026854][T29676]  dump_stack+0x15/0x1b
[  859.026872][T29676]  should_fail_ex+0x265/0x280
[  859.026906][T29676]  should_failslab+0x8c/0xb0
[  859.026936][T29676]  kmem_cache_alloc_noprof+0x50/0x310
[  859.026956][T29676]  ? mas_alloc_nodes+0x265/0x520
[  859.026982][T29676]  mas_alloc_nodes+0x265/0x520
[  859.027011][T29676]  mas_preallocate+0x456/0x680
[  859.027041][T29676]  __split_vma+0x239/0x610
[  859.027062][T29676]  vma_modify+0x107/0x210
[  859.027093][T29676]  vma_modify_policy+0x101/0x130
[  859.027131][T29676]  mbind_range+0x1b8/0x440
[  859.027159][T29676]  ? mas_find+0x4ea/0x610
[  859.027185][T29676]  __se_sys_mbind+0x648/0xac0
[  859.027215][T29676]  __x64_sys_mbind+0x78/0x90
[  859.027236][T29676]  x64_sys_call+0x14af/0x2fb0
[  859.027259][T29676]  do_syscall_64+0xd0/0x1a0
[  859.027283][T29676]  ? clear_bhb_loop+0x40/0x90
[  859.027304][T29676]  ? clear_bhb_loop+0x40/0x90
[  859.027326][T29676]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  859.027347][T29676] RIP: 0033:0x7fc0fa00e969
[  859.027363][T29676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  859.027381][T29676] RSP: 002b:00007fc0f8677038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  859.027402][T29676] RAX: ffffffffffffffda RBX: 00007fc0fa235fa0 RCX: 00007fc0fa00e969
[  859.027417][T29676] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000001000
[  859.027431][T29676] RBP: 00007fc0f8677090 R08: 0000000000000000 R09: 0000000000000000
[  859.027444][T29676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  859.027457][T29676] R13: 0000000000000000 R14: 00007fc0fa235fa0 R15: 00007ffc359e3198
[  859.027476][T29676]  </TASK>
[  859.301673][T29687] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6760'.
[  859.358140][T29685] netlink: 'syz.7.6759': attribute type 1 has an invalid length.
[  859.365971][T29685] netlink: 199820 bytes leftover after parsing attributes in process `syz.7.6759'.
[  859.371789][T29689] dvmrp1: entered allmulticast mode
[  859.387945][T29689] dvmrp1: left allmulticast mode
[  859.545091][T29705] dvmrp1: entered allmulticast mode
[  859.572757][T29705] dvmrp1: left allmulticast mode
[  859.748304][T29726] netlink: 'syz.4.6766': attribute type 10 has an invalid length.
[  860.159635][T29734] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6776'.
[  860.238952][T29735] netlink: 16402 bytes leftover after parsing attributes in process `syz.5.6776'.
[  860.273192][T29734] netlink: 16402 bytes leftover after parsing attributes in process `syz.5.6776'.
[  860.702772][T29751] netlink: 'syz.3.6782': attribute type 1 has an invalid length.
[  860.710832][T29751] netlink: 199820 bytes leftover after parsing attributes in process `syz.3.6782'.
[  860.731901][T29757] dvmrp1: entered allmulticast mode
[  860.756326][T29757] dvmrp1: left allmulticast mode
[  860.805507][T29761] netlink: 4 bytes leftover after parsing attributes in process `syz.7.6786'.
[  860.834595][T29761] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  860.842063][T29761] batman_adv: batadv0: Removing interface: batadv_slave_0
[  860.862636][T29761] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  860.870248][T29761] batman_adv: batadv0: Removing interface: batadv_slave_1
[  861.014513][T29770] FAULT_INJECTION: forcing a failure.
[  861.014513][T29770] name fail_futex, interval 1, probability 0, space 0, times 0
[  861.027434][T29770] CPU: 0 UID: 0 PID: 29770 Comm: syz.1.6790 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  861.027468][T29770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  861.027498][T29770] Call Trace:
[  861.027506][T29770]  <TASK>
[  861.027515][T29770]  __dump_stack+0x1d/0x30
[  861.027540][T29770]  dump_stack_lvl+0xe8/0x140
[  861.027569][T29770]  dump_stack+0x15/0x1b
[  861.027608][T29770]  should_fail_ex+0x265/0x280
[  861.027641][T29770]  should_fail+0xb/0x20
[  861.027700][T29770]  get_futex_key+0xff/0x750
[  861.027724][T29770]  ? __kmalloc_cache_noprof+0x189/0x320
[  861.027816][T29770]  futex_lock_pi+0xfe/0x710
[  861.027845][T29770]  ? __pfx_futex_wake_mark+0x10/0x10
[  861.027886][T29770]  do_futex+0x21f/0x380
[  861.027969][T29770]  __se_sys_futex+0x2ed/0x360
[  861.028001][T29770]  __x64_sys_futex+0x78/0x90
[  861.028026][T29770]  x64_sys_call+0x1331/0x2fb0
[  861.028048][T29770]  do_syscall_64+0xd0/0x1a0
[  861.028133][T29770]  ? clear_bhb_loop+0x40/0x90
[  861.028159][T29770]  ? clear_bhb_loop+0x40/0x90
[  861.028183][T29770]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  861.028208][T29770] RIP: 0033:0x7fbae613e969
[  861.028251][T29770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  861.028288][T29770] RSP: 002b:00007fbae47a7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  861.028312][T29770] RAX: ffffffffffffffda RBX: 00007fbae6365fa0 RCX: 00007fbae613e969
[  861.028327][T29770] RDX: 0000000000000002 RSI: 0000000000000086 RDI: 000020000000cffc
[  861.028341][T29770] RBP: 00007fbae47a7090 R08: 0000000000000000 R09: 00000000fffffffc
[  861.028356][T29770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  861.028392][T29770] R13: 0000000000000000 R14: 00007fbae6365fa0 R15: 00007ffec65ae498
[  861.028414][T29770]  </TASK>
[  861.349017][T29785] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6795'.
[  861.555402][T29794] dvmrp1: entered allmulticast mode
[  861.594894][T29794] dvmrp1: left allmulticast mode
[  861.767892][T29803] netlink: 'syz.3.6800': attribute type 1 has an invalid length.
[  861.775810][T29803] netlink: 199820 bytes leftover after parsing attributes in process `syz.3.6800'.
[  861.983472][T29810] rdma_op ffff888119b04580 conn xmit_rdma 0000000000000000
[  862.100115][T29818] netlink: 76 bytes leftover after parsing attributes in process `syz.1.6806'.
[  862.109517][T29816] program syz.4.6805 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  862.304572][T29836] netlink: 4 bytes leftover after parsing attributes in process `syz.7.6814'.
[  862.573657][T29841] loop7: detected capacity change from 0 to 32768
[  862.635699][T29841]  loop7: p1 p2 p3 < >
[  862.660211][T29841] loop7: p1 size 242222080 extends beyond EOD, truncated
[  862.671258][T29851] program syz.3.6818 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  862.681291][T29841] loop7: p2 start 4294967295 is beyond EOD, truncated
[  862.877037][T29859] netlink: 'syz.3.6821': attribute type 1 has an invalid length.
[  862.884864][T29859] netlink: 199820 bytes leftover after parsing attributes in process `syz.3.6821'.
[  863.195160][T29879] serio: Serial port ptm0
[  863.235125][T29884] program syz.5.6830 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  863.380922][T29891] FAULT_INJECTION: forcing a failure.
[  863.380922][T29891] name failslab, interval 1, probability 0, space 0, times 0
[  863.393944][T29891] CPU: 1 UID: 0 PID: 29891 Comm: syz.1.6835 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  863.393979][T29891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  863.393994][T29891] Call Trace:
[  863.394000][T29891]  <TASK>
[  863.394079][T29891]  __dump_stack+0x1d/0x30
[  863.394107][T29891]  dump_stack_lvl+0xe8/0x140
[  863.394131][T29891]  dump_stack+0x15/0x1b
[  863.394152][T29891]  should_fail_ex+0x265/0x280
[  863.394192][T29891]  should_failslab+0x8c/0xb0
[  863.394274][T29891]  __kmalloc_cache_node_noprof+0x54/0x320
[  863.394302][T29891]  ? __get_vm_area_node+0x106/0x1d0
[  863.394349][T29891]  __get_vm_area_node+0x106/0x1d0
[  863.394380][T29891]  __vmalloc_node_range_noprof+0x26a/0xdf0
[  863.394483][T29891]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  863.394549][T29891]  ? avc_has_perm_noaudit+0x1b1/0x200
[  863.394572][T29891]  ? selinux_capable+0x1f9/0x270
[  863.394596][T29891]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  863.394623][T29891]  __vmalloc_noprof+0x5f/0x70
[  863.394651][T29891]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  863.394697][T29891]  bpf_prog_alloc_no_stats+0x47/0x390
[  863.394723][T29891]  ? bpf_prog_alloc+0x2a/0x150
[  863.394778][T29891]  bpf_prog_alloc+0x3c/0x150
[  863.394812][T29891]  bpf_prog_load+0x514/0x1070
[  863.394855][T29891]  ? security_bpf+0x2b/0x90
[  863.394905][T29891]  __sys_bpf+0x51d/0x790
[  863.395020][T29891]  __x64_sys_bpf+0x41/0x50
[  863.395053][T29891]  x64_sys_call+0x2478/0x2fb0
[  863.395080][T29891]  do_syscall_64+0xd0/0x1a0
[  863.395143][T29891]  ? clear_bhb_loop+0x40/0x90
[  863.395165][T29891]  ? clear_bhb_loop+0x40/0x90
[  863.395214][T29891]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  863.395316][T29891] RIP: 0033:0x7fbae613e969
[  863.395334][T29891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  863.395357][T29891] RSP: 002b:00007fbae47a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  863.395382][T29891] RAX: ffffffffffffffda RBX: 00007fbae6365fa0 RCX: 00007fbae613e969
[  863.395397][T29891] RDX: 0000000000000094 RSI: 00002000000001c0 RDI: 0000000000000005
[  863.395410][T29891] RBP: 00007fbae47a7090 R08: 0000000000000000 R09: 0000000000000000
[  863.395461][T29891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  863.395488][T29891] R13: 0000000000000000 R14: 00007fbae6365fa0 R15: 00007ffec65ae498
[  863.395509][T29891]  </TASK>
[  863.783281][T29883] loop7: detected capacity change from 0 to 32768
[  863.852773][T29912] x_tables: unsorted entry at hook 1
[  863.875104][T29883]  loop7: p1 p2 p3 < >
[  863.888599][T29883] loop7: p1 size 242222080 extends beyond EOD, truncated
[  863.901765][T29916] FAULT_INJECTION: forcing a failure.
[  863.901765][T29916] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  863.915082][T29916] CPU: 1 UID: 0 PID: 29916 Comm: syz.1.6846 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  863.915117][T29916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  863.915208][T29916] Call Trace:
[  863.915214][T29916]  <TASK>
[  863.915222][T29916]  __dump_stack+0x1d/0x30
[  863.915247][T29916]  dump_stack_lvl+0xe8/0x140
[  863.915290][T29916]  dump_stack+0x15/0x1b
[  863.915336][T29916]  should_fail_ex+0x265/0x280
[  863.915382][T29916]  should_fail+0xb/0x20
[  863.915416][T29916]  should_fail_usercopy+0x1a/0x20
[  863.915453][T29916]  _copy_from_user+0x1c/0xb0
[  863.915486][T29916]  ___sys_sendmsg+0xc1/0x1d0
[  863.915527][T29916]  __x64_sys_sendmsg+0xd4/0x160
[  863.915556][T29916]  x64_sys_call+0x2999/0x2fb0
[  863.915578][T29916]  do_syscall_64+0xd0/0x1a0
[  863.915604][T29916]  ? clear_bhb_loop+0x40/0x90
[  863.915707][T29916]  ? clear_bhb_loop+0x40/0x90
[  863.915731][T29916]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  863.915780][T29916] RIP: 0033:0x7fbae613e969
[  863.915799][T29916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  863.915818][T29916] RSP: 002b:00007fbae47a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  863.915838][T29916] RAX: ffffffffffffffda RBX: 00007fbae6365fa0 RCX: 00007fbae613e969
[  863.915851][T29916] RDX: 0000000020040814 RSI: 0000200000000840 RDI: 0000000000000004
[  863.915867][T29916] RBP: 00007fbae47a7090 R08: 0000000000000000 R09: 0000000000000000
[  863.915882][T29916] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  863.915942][T29916] R13: 0000000000000000 R14: 00007fbae6365fa0 R15: 00007ffec65ae498
[  863.915962][T29916]  </TASK>
[  864.122996][   T29] kauditd_printk_skb: 142 callbacks suppressed
[  864.123078][   T29] audit: type=1326 audit(1747813237.662:5123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29905 comm="syz.4.6841" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fef8c66e969 code=0x0
[  864.130760][T29917] program syz.3.6845 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  864.152395][   T29] audit: type=1326 audit(1747813237.662:5124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29905 comm="syz.4.6841" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fef8c66e969 code=0x0
[  864.186483][T29883] loop7: p2 start 4294967295 is beyond EOD, truncated
[  864.355280][   T29] audit: type=1400 audit(1747813237.902:5125): avc:  denied  { compute_member } for  pid=29932 comm="syz.7.6853" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  864.365908][T29934] dvmrp1: entered allmulticast mode
[  864.378343][T29925] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(3)
[  864.387153][T29934] dvmrp1: left allmulticast mode
[  864.387557][T29925] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  864.400813][T29925] vhci_hcd vhci_hcd.0: Device attached
[  864.410693][T29931] vhci_hcd vhci_hcd.0: port 0 already used
[  864.418517][   T29] audit: type=1326 audit(1747813237.972:5126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29924 comm="syz.5.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86c7fde969 code=0x7ffc0000
[  864.442136][   T29] audit: type=1326 audit(1747813237.972:5127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29924 comm="syz.5.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86c7fde969 code=0x7ffc0000
[  864.465707][   T29] audit: type=1326 audit(1747813237.972:5128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29924 comm="syz.5.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f86c7fde969 code=0x7ffc0000
[  864.489312][   T29] audit: type=1326 audit(1747813237.972:5129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29924 comm="syz.5.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86c7fde969 code=0x7ffc0000
[  864.512860][   T29] audit: type=1326 audit(1747813237.972:5130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29924 comm="syz.5.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f86c7fde969 code=0x7ffc0000
[  864.536491][   T29] audit: type=1326 audit(1747813237.972:5131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29924 comm="syz.5.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86c7fde969 code=0x7ffc0000
[  864.560007][   T29] audit: type=1326 audit(1747813237.972:5132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29924 comm="syz.5.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86c7fde969 code=0x7ffc0000
[  864.671598][T29926] vhci_hcd: connection closed
[  864.672074][ T6080] vhci_hcd: stop threads
[  864.681311][ T6080] vhci_hcd: release socket
[  864.685963][ T6080] vhci_hcd: disconnect device
[  864.690966][ T3654] usb 12-1: enqueue for inactive port 0
[  864.719898][T29950] FAULT_INJECTION: forcing a failure.
[  864.719898][T29950] name failslab, interval 1, probability 0, space 0, times 0
[  864.732690][T29950] CPU: 1 UID: 0 PID: 29950 Comm: syz.3.6857 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  864.732726][T29950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  864.732742][T29950] Call Trace:
[  864.732750][T29950]  <TASK>
[  864.732768][T29950]  __dump_stack+0x1d/0x30
[  864.732791][T29950]  dump_stack_lvl+0xe8/0x140
[  864.732811][T29950]  dump_stack+0x15/0x1b
[  864.732860][T29950]  should_fail_ex+0x265/0x280
[  864.732977][T29950]  should_failslab+0x8c/0xb0
[  864.733012][T29950]  kmem_cache_alloc_noprof+0x50/0x310
[  864.733037][T29950]  ? audit_log_start+0x365/0x6c0
[  864.733076][T29950]  audit_log_start+0x365/0x6c0
[  864.733133][T29950]  audit_seccomp+0x48/0x100
[  864.733161][T29950]  ? __seccomp_filter+0x68c/0x10d0
[  864.733187][T29950]  __seccomp_filter+0x69d/0x10d0
[  864.733215][T29950]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  864.733257][T29950]  ? vfs_write+0x75e/0x8d0
[  864.733288][T29950]  ? __rcu_read_unlock+0x4f/0x70
[  864.733315][T29950]  ? __fget_files+0x184/0x1c0
[  864.733353][T29950]  __secure_computing+0x82/0x150
[  864.733442][T29950]  syscall_trace_enter+0xcf/0x1e0
[  864.733523][T29950]  do_syscall_64+0xaa/0x1a0
[  864.733550][T29950]  ? clear_bhb_loop+0x40/0x90
[  864.733614][T29950]  ? clear_bhb_loop+0x40/0x90
[  864.733772][T29950]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  864.733794][T29950] RIP: 0033:0x7f339a81e969
[  864.733810][T29950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  864.733834][T29950] RSP: 002b:00007f3398e87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  864.733887][T29950] RAX: ffffffffffffffda RBX: 00007f339aa45fa0 RCX: 00007f339a81e969
[  864.733905][T29950] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000003
[  864.733922][T29950] RBP: 00007f3398e87090 R08: 0000000000000000 R09: 0000000000000000
[  864.733939][T29950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  864.733955][T29950] R13: 0000000000000000 R14: 00007f339aa45fa0 R15: 00007ffd2ee16448
[  864.733975][T29950]  </TASK>
[  864.943549][ T3654] usb 12-1: enqueue for inactive port 0
[  864.982231][T29952] netlink: 'syz.3.6858': attribute type 2 has an invalid length.
[  865.388737][T29960] __nla_validate_parse: 7 callbacks suppressed
[  865.388833][T29960] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6861'.
[  865.473573][T29970] netlink: 'syz.1.6863': attribute type 1 has an invalid length.
[  865.473589][T29970] netlink: 199820 bytes leftover after parsing attributes in process `syz.1.6863'.
[  865.498534][T29972] program syz.3.6865 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  866.042692][T29982] loop7: detected capacity change from 0 to 512
[  866.055289][ T3654] usb usb12-port1: attempt power cycle
[  866.058421][T29982] EXT4-fs (loop7): 1 orphan inode deleted
[  866.067383][T29982] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  866.067598][T29982] ext4 filesystem being mounted at /318/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  866.085579][ T6077] EXT4-fs error (device loop7): ext4_release_dquot:6971: comm kworker/u8:108: Failed to release dquot type 1
[  866.106670][T25720] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  867.006698][T30015] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6880'.
[  867.060516][T30018] FAULT_INJECTION: forcing a failure.
[  867.060516][T30018] name failslab, interval 1, probability 0, space 0, times 0
[  867.073284][T30018] CPU: 0 UID: 0 PID: 30018 Comm: syz.5.6881 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  867.073317][T30018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  867.073329][T30018] Call Trace:
[  867.073336][T30018]  <TASK>
[  867.073344][T30018]  __dump_stack+0x1d/0x30
[  867.073424][T30018]  dump_stack_lvl+0xe8/0x140
[  867.073447][T30018]  dump_stack+0x15/0x1b
[  867.073468][T30018]  should_fail_ex+0x265/0x280
[  867.073532][T30018]  should_failslab+0x8c/0xb0
[  867.073562][T30018]  __kvmalloc_node_noprof+0x126/0x4d0
[  867.073585][T30018]  ? newary+0xe8/0x620
[  867.073734][T30018]  newary+0xe8/0x620
[  867.073769][T30018]  ipcget+0x33d/0x4f0
[  867.073800][T30018]  ? fput+0x8f/0xc0
[  867.073823][T30018]  __x64_sys_semget+0xfb/0x130
[  867.073951][T30018]  x64_sys_call+0x2731/0x2fb0
[  867.074020][T30018]  do_syscall_64+0xd0/0x1a0
[  867.074053][T30018]  ? clear_bhb_loop+0x40/0x90
[  867.074080][T30018]  ? clear_bhb_loop+0x40/0x90
[  867.074104][T30018]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  867.074203][T30018] RIP: 0033:0x7f86c7fde969
[  867.074223][T30018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  867.074245][T30018] RSP: 002b:00007f86c6647038 EFLAGS: 00000246 ORIG_RAX: 0000000000000040
[  867.074316][T30018] RAX: ffffffffffffffda RBX: 00007f86c8205fa0 RCX: 00007f86c7fde969
[  867.074330][T30018] RDX: 00000000000003b1 RSI: 0000000000000006 RDI: 0000000000000000
[  867.074344][T30018] RBP: 00007f86c6647090 R08: 0000000000000000 R09: 0000000000000000
[  867.074365][T30018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  867.074381][T30018] R13: 0000000000000000 R14: 00007f86c8205fa0 R15: 00007ffdc739f238
[  867.074403][T30018]  </TASK>
[  867.771881][T30036] netlink: 'syz.1.6884': attribute type 10 has an invalid length.
[  867.801162][T30037] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6888'.
[  867.832373][T30037] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  867.839935][T30037] batman_adv: batadv0: Removing interface: batadv_slave_0
[  867.927967][T30037] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  867.935603][T30037] batman_adv: batadv0: Removing interface: batadv_slave_1
[  868.241815][T30061] program syz.5.6892 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  868.244843][ T3654] usb usb12-port1: unable to enumerate USB device
[  868.352052][T30080] netlink: 'syz.4.6894': attribute type 1 has an invalid length.
[  868.359961][T30080] netlink: 199820 bytes leftover after parsing attributes in process `syz.4.6894'.
[  868.772708][T30131] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6898'.
[  868.884705][T30137] netlink: 76 bytes leftover after parsing attributes in process `syz.5.6900'.
[  869.137396][T30151] program syz.1.6904 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  869.247029][T30154] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6907'.
[  869.256428][T30154] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  869.263936][T30154] batman_adv: batadv0: Removing interface: batadv_slave_0
[  869.293455][T30154] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  869.301049][T30154] batman_adv: batadv0: Removing interface: batadv_slave_1
[  869.476459][T30163] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6910'.
[  869.643898][T30169] program syz.4.6911 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  869.674205][T30171] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6912'.
[  869.900832][T30187] netlink: 'syz.5.6917': attribute type 1 has an invalid length.
[  869.943992][   T29] kauditd_printk_skb: 81 callbacks suppressed
[  869.944010][   T29] audit: type=1400 audit(1747813243.492:5211): avc:  denied  { unmount } for  pid=26864 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  870.199005][T30200] program syz.4.6921 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  870.281104][T30206] program syz.3.6926 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  870.465378][T30214] __nla_validate_parse: 5 callbacks suppressed
[  870.465396][T30214] netlink: 76 bytes leftover after parsing attributes in process `syz.7.6930'.
[  870.490063][T30221] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6932'.
[  870.688728][T30224] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6934'.
[  870.733831][T30231] loop7: detected capacity change from 0 to 128
[  870.768909][T30231] EXT4-fs: quotafile must be on filesystem root
[  871.029184][T30241] program syz.5.6938 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  871.074220][T30245] FAULT_INJECTION: forcing a failure.
[  871.074220][T30245] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  871.087426][T30245] CPU: 1 UID: 0 PID: 30245 Comm: syz.7.6942 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  871.087495][T30245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  871.087509][T30245] Call Trace:
[  871.087517][T30245]  <TASK>
[  871.087527][T30245]  __dump_stack+0x1d/0x30
[  871.087551][T30245]  dump_stack_lvl+0xe8/0x140
[  871.087622][T30245]  dump_stack+0x15/0x1b
[  871.087656][T30245]  should_fail_ex+0x265/0x280
[  871.087694][T30245]  should_fail+0xb/0x20
[  871.087735][T30245]  should_fail_usercopy+0x1a/0x20
[  871.087820][T30245]  _copy_from_user+0x1c/0xb0
[  871.087846][T30245]  memdup_user+0x5e/0xd0
[  871.087869][T30245]  strndup_user+0x68/0xb0
[  871.087950][T30245]  __se_sys_mount+0x4d/0x2e0
[  871.087980][T30245]  ? fput+0x8f/0xc0
[  871.088002][T30245]  ? ksys_write+0x16e/0x1a0
[  871.088033][T30245]  __x64_sys_mount+0x67/0x80
[  871.088073][T30245]  x64_sys_call+0xd36/0x2fb0
[  871.088097][T30245]  do_syscall_64+0xd0/0x1a0
[  871.088184][T30245]  ? clear_bhb_loop+0x40/0x90
[  871.088209][T30245]  ? clear_bhb_loop+0x40/0x90
[  871.088233][T30245]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  871.088339][T30245] RIP: 0033:0x7fc0fa00e969
[  871.088357][T30245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  871.088406][T30245] RSP: 002b:00007fc0f8677038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  871.088429][T30245] RAX: ffffffffffffffda RBX: 00007fc0fa235fa0 RCX: 00007fc0fa00e969
[  871.088443][T30245] RDX: 00002000000003c0 RSI: 0000200000000380 RDI: 0000200000000280
[  871.088458][T30245] RBP: 00007fc0f8677090 R08: 0000200000000500 R09: 0000000000000000
[  871.088472][T30245] R10: 0000000000000040 R11: 0000000000000246 R12: 0000000000000001
[  871.088486][T30245] R13: 0000000000000000 R14: 00007fc0fa235fa0 R15: 00007ffc359e3198
[  871.088581][T30245]  </TASK>
[  871.095424][   T29] audit: type=1400 audit(1747813244.642:5212): avc:  denied  { remount } for  pid=30242 comm="syz.1.6941" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  871.176418][T30248] netlink: 'syz.4.6943': attribute type 1 has an invalid length.
[  871.178927][   T29] audit: type=1400 audit(1747813244.642:5213): avc:  denied  { read write } for  pid=30242 comm="syz.1.6941" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  871.183388][T30248] netlink: 199820 bytes leftover after parsing attributes in process `syz.4.6943'.
[  871.187893][   T29] audit: type=1400 audit(1747813244.642:5214): avc:  denied  { open } for  pid=30242 comm="syz.1.6941" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  871.362681][   T29] audit: type=1400 audit(1747813244.642:5215): avc:  denied  { ioctl } for  pid=30242 comm="syz.1.6941" path="/dev/ppp" dev="devtmpfs" ino=140 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  871.443964][T30253] netlink: 12 bytes leftover after parsing attributes in process `syz.7.6944'.
[  871.515324][T30262] netlink: 16402 bytes leftover after parsing attributes in process `syz.7.6944'.
[  871.538037][T30253] netlink: 16402 bytes leftover after parsing attributes in process `syz.7.6944'.
[  871.602705][   T29] audit: type=1326 audit(1747813245.152:5216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30252 comm="syz.7.6944" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc0fa00e969 code=0x0
[  871.652542][   T29] audit: type=1326 audit(1747813245.202:5217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30252 comm="syz.7.6944" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc0fa00e969 code=0x0
[  871.701655][T30278] netlink: 76 bytes leftover after parsing attributes in process `syz.5.6954'.
[  871.728609][T30264] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6950'.
[  871.841034][T30285] program syz.5.6956 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  872.736064][T30308] netlink: 'syz.3.6960': attribute type 1 has an invalid length.
[  872.743836][T30308] netlink: 199820 bytes leftover after parsing attributes in process `syz.3.6960'.
[  872.775304][T30309] netlink: 'syz.1.6963': attribute type 1 has an invalid length.
[  873.307098][T30325] program syz.1.6969 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  873.836767][T30345] netlink: 'syz.5.6977': attribute type 1 has an invalid length.
[  874.292467][T30365] netlink: 'syz.1.6984': attribute type 1 has an invalid length.
[  874.319475][T30362] program syz.4.6985 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  874.618811][T30388] loop7: detected capacity change from 0 to 512
[  874.626675][T30388] EXT4-fs: Ignoring removed mblk_io_submit option
[  874.633173][T30388] ext4: Unknown parameter 'hash'
[  874.849097][T30395] loop7: detected capacity change from 0 to 512
[  874.855721][T30395] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  874.885774][T30393] netlink: 'syz.5.6998': attribute type 1 has an invalid length.
[  875.413939][   T29] audit: type=1326 audit(1747813248.962:5218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30403 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8c66e969 code=0x7ffc0000
[  875.436965][   T29] audit: type=1326 audit(1747813248.962:5219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30403 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8c66e969 code=0x7ffc0000
[  875.523815][   T29] audit: type=1326 audit(1747813249.022:5220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30403 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fef8c66d2d0 code=0x7ffc0000
[  875.546882][   T29] audit: type=1326 audit(1747813249.022:5221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30403 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8c66e969 code=0x7ffc0000
[  875.570371][   T29] audit: type=1326 audit(1747813249.022:5222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30403 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8c66e969 code=0x7ffc0000
[  875.593399][   T29] audit: type=1326 audit(1747813249.022:5223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30403 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef8c66e969 code=0x7ffc0000
[  875.616447][   T29] audit: type=1326 audit(1747813249.022:5224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30403 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8c66e969 code=0x7ffc0000
[  875.639448][   T29] audit: type=1326 audit(1747813249.042:5225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30403 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8c66e969 code=0x7ffc0000
[  875.662725][   T29] audit: type=1326 audit(1747813249.042:5226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30403 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fef8c66e969 code=0x7ffc0000
[  875.685618][   T29] audit: type=1326 audit(1747813249.042:5227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30403 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8c66e969 code=0x7ffc0000
[  875.699276][T30421] loop7: detected capacity change from 0 to 512
[  875.807737][T30421] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  875.823606][T30433] program syz.5.7014 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  875.844586][T30435] __nla_validate_parse: 10 callbacks suppressed
[  875.844604][T30435] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7015'.
[  875.845899][T30421] EXT4-fs (loop7): 1 truncate cleaned up
[  875.874952][T30421] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  876.080511][T30452] netlink: 'syz.3.7017': attribute type 1 has an invalid length.
[  876.088381][T30452] netlink: 199820 bytes leftover after parsing attributes in process `syz.3.7017'.
[  876.668925][T25720] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  876.713462][T30469] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7027'.
[  876.739776][T30472] program syz.5.7026 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  876.775558][T30474] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.7027'.
[  876.808408][T30469] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.7027'.
[  876.882212][T30480] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7028'.
[  876.905063][T30489] loop7: detected capacity change from 0 to 128
[  876.931380][T30489] EXT4-fs: quotafile must be on filesystem root
[  876.943528][T30491] netlink: 76 bytes leftover after parsing attributes in process `syz.5.7034'.
[  877.286776][T30506] netlink: 'syz.3.7040': attribute type 10 has an invalid length.
[  877.295460][T30508] program syz.7.7039 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  877.362951][T30514] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7043'.
[  877.377528][T30502] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  877.478585][T30517] loop7: detected capacity change from 0 to 8192
[  877.487263][T30518] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7044'.
[  877.529835][T30522] netlink: 76 bytes leftover after parsing attributes in process `syz.3.7046'.
[  877.692042][T30540] loop7: detected capacity change from 0 to 512
[  877.704752][T30540] EXT4-fs: Ignoring removed mblk_io_submit option
[  877.709969][T30538] program syz.5.7053 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  877.714489][T30540] ext4: Unknown parameter 'hash'
[  877.853833][T30540] loop7: detected capacity change from 0 to 512
[  877.860365][T30540] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  877.871983][T30540] netlink: 'syz.7.7054': attribute type 10 has an invalid length.
[  878.139686][T30572] program syz.3.7065 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  878.153258][T30558] loop7: detected capacity change from 0 to 32768
[  878.199680][T30558]  loop7: p1 p2 p3 < >
[  878.203912][T30558] loop7: p1 size 242222080 extends beyond EOD, truncated
[  878.212128][T30558] loop7: p2 start 4294967295 is beyond EOD, truncated
[  878.405981][T30579] netlink: 'syz.4.7069': attribute type 10 has an invalid length.
[  878.605219][T30601] netlink: 'syz.3.7075': attribute type 1 has an invalid length.
[  878.775311][T30613] program syz.7.7078 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  878.917216][T30618] x_tables: ip6_tables: mh match: only valid for protocol 135
[  879.009473][T30633] loop7: detected capacity change from 0 to 2048
[  879.023962][T30637] dvmrp1: entered allmulticast mode
[  879.031417][T30637] dvmrp1: left allmulticast mode
[  879.069600][T30633]  loop7: p1 < > p4
[  879.078157][T30633] loop7: p4 size 8388608 extends beyond EOD, truncated
[  879.132739][T30641] program syz.3.7095 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  879.178258][T30650] netlink: 'syz.5.7097': attribute type 1 has an invalid length.
[  879.457598][T30671] program syz.4.7108 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  879.505757][T30678] dvmrp1: entered allmulticast mode
[  879.541473][T30678] dvmrp1: left allmulticast mode
[  879.570422][T30686] netlink: 'syz.7.7111': attribute type 1 has an invalid length.
[  879.885370][T30706] netlink: 'syz.5.7113': attribute type 10 has an invalid length.
[  879.898952][T30707] netlink: 'syz.3.7118': attribute type 1 has an invalid length.
[  879.909148][T30706] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  880.668575][T30728] dvmrp1: entered allmulticast mode
[  880.676258][T30728] dvmrp1: left allmulticast mode
[  880.713968][T30734] dvmrp1: entered allmulticast mode
[  880.727383][T30732] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  880.744752][T30734] dvmrp1: left allmulticast mode
[  880.765160][T30740] program syz.5.7133 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  880.773247][T30736] loop7: detected capacity change from 0 to 512
[  880.784036][T30736] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  880.810674][T30732] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  880.818839][T30736] EXT4-fs (loop7): 1 truncate cleaned up
[  880.849379][T30736] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  880.920208][T30746] netlink: 'syz.1.7138': attribute type 1 has an invalid length.
[  880.928058][T30746] __nla_validate_parse: 8 callbacks suppressed
[  880.928074][T30746] netlink: 199820 bytes leftover after parsing attributes in process `syz.1.7138'.
[  880.949513][T30732] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  881.003829][T30748] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7139'.
[  881.097564][T30732] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  881.160713][T25720] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  881.200107][T30732] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  881.219932][T30732] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  881.231292][T30759] netlink: 76 bytes leftover after parsing attributes in process `syz.1.7145'.
[  881.246193][T30732] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  881.256601][T30764] netlink: 'syz.7.7143': attribute type 1 has an invalid length.
[  881.264475][T30764] netlink: 199820 bytes leftover after parsing attributes in process `syz.7.7143'.
[  881.322719][T30732] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  881.472136][T30774] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7151'.
[  882.002727][T30797] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7159'.
[  882.233785][T30812] netlink: 'syz.7.7173': attribute type 1 has an invalid length.
[  882.241689][T30812] netlink: 199820 bytes leftover after parsing attributes in process `syz.7.7173'.
[  882.355575][T30818] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7166'.
[  882.449019][T30822] netlink: 'syz.4.7164': attribute type 10 has an invalid length.
[  882.475935][T30824] netlink: 16402 bytes leftover after parsing attributes in process `syz.5.7166'.
[  882.485926][T30818] netlink: 16402 bytes leftover after parsing attributes in process `syz.5.7166'.
[  882.561088][   T29] kauditd_printk_skb: 41 callbacks suppressed
[  882.561104][   T29] audit: type=1326 audit(1747813256.112:5269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30817 comm="syz.5.7166" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f86c7fde969 code=0x0
[  882.785595][   T29] audit: type=1326 audit(1747813256.162:5270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30817 comm="syz.5.7166" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f86c7fde969 code=0x0
[  882.860539][T30803] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  882.880303][T30829] dvmrp1: entered allmulticast mode
[  882.892118][T30829] dvmrp1: left allmulticast mode
[  882.918451][T30803] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  882.976844][T30803] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  883.090472][T30803] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  883.142584][T30803] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  883.168014][T30803] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  883.187439][T30803] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  883.200338][T30803] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  883.404557][T30847] loop7: detected capacity change from 0 to 32768
[  883.444730][T30847]  loop7: p1 p2 p3 < >
[  883.448900][T30847] loop7: p1 size 242222080 extends beyond EOD, truncated
[  883.457199][T30847] loop7: p2 start 4294967295 is beyond EOD, truncated
[  883.469924][T30856] dvmrp1: entered allmulticast mode
[  883.476546][T30856] dvmrp1: left allmulticast mode
[  883.658585][T30867] serio: Serial port ptm0
[  883.742166][T30867] loop7: detected capacity change from 0 to 2048
[  883.768917][T30870] netlink: 'syz.3.7187': attribute type 10 has an invalid length.
[  883.963094][T30875] loop7: detected capacity change from 0 to 32768
[  883.994753][T30875]  loop7: p1 p2 p3 < >
[  883.999000][T30875] loop7: p1 size 242222080 extends beyond EOD, truncated
[  884.006538][T30875] loop7: p2 start 4294967295 is beyond EOD, truncated
[  885.087710][T30928] netlink: 'syz.3.7212': attribute type 1 has an invalid length.
[  885.258775][T30921] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  885.808693][T30967] netlink: 'syz.7.7224': attribute type 1 has an invalid length.
[  885.995073][T30976] __nla_validate_parse: 8 callbacks suppressed
[  885.995094][T30976] netlink: 76 bytes leftover after parsing attributes in process `syz.1.7230'.
[  886.051470][T30984] dvmrp1: entered allmulticast mode
[  886.058466][T30984] dvmrp1: left allmulticast mode
[  886.272050][T31003] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7243'.
[  886.376574][T31011] netlink: 'syz.5.7246': attribute type 1 has an invalid length.
[  886.384416][T31011] netlink: 199820 bytes leftover after parsing attributes in process `syz.5.7246'.
[  886.401093][T31013] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7247'.
[  886.478820][T31015] netlink: 76 bytes leftover after parsing attributes in process `syz.4.7248'.
[  886.662457][T31032] netlink: 'syz.1.7252': attribute type 1 has an invalid length.
[  886.670294][T31032] netlink: 199820 bytes leftover after parsing attributes in process `syz.1.7252'.
[  886.763882][T31036] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7258'.
[  887.036348][T31057] netlink: 'syz.5.7266': attribute type 1 has an invalid length.
[  887.044139][T31057] netlink: 199820 bytes leftover after parsing attributes in process `syz.5.7266'.
[  887.486612][T31083] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7279'.
[  887.529926][T31090] netlink: 76 bytes leftover after parsing attributes in process `syz.4.7281'.
[  887.560785][T31088] netlink: 'syz.1.7277': attribute type 10 has an invalid length.
[  887.714670][T31102] loop7: detected capacity change from 0 to 512
[  887.721757][T31102] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  887.744934][T31102] EXT4-fs (loop7): 1 truncate cleaned up
[  887.751496][T31102] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  887.756821][T31108] netlink: 'syz.5.7285': attribute type 1 has an invalid length.
[  887.772561][T31107] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  887.805896][T31107] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  887.857514][T31107] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  887.896090][T31107] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  887.961409][T31107] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  887.973221][T31107] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  887.985142][T31107] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  887.997119][T31107] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  888.027833][T25720] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  888.176730][T31129] netlink: 'syz.7.7294': attribute type 1 has an invalid length.
[  888.829681][T31171] netlink: 'syz.4.7312': attribute type 10 has an invalid length.
[  888.945539][T31185] loop7: detected capacity change from 0 to 512
[  888.958379][T31185] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  888.984840][T31185] EXT4-fs (loop7): 1 truncate cleaned up
[  888.997594][T31185] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  889.236610][T25720] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  889.415565][T31204] netlink: 'syz.5.7328': attribute type 1 has an invalid length.
[  890.175025][T31241] validate_nla: 1 callbacks suppressed
[  890.175042][T31241] netlink: 'syz.5.7340': attribute type 10 has an invalid length.
[  890.214519][ T3651] page_pool_release_retry() stalled pool shutdown: id 117, 1 inflight 60 sec
[  890.789130][T31285] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  890.865579][T31293] loop7: detected capacity change from 0 to 2048
[  890.896956][T31285] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  890.904928][T31293]  loop7: p1 < > p4
[  890.913082][T31293] loop7: p4 size 8388608 extends beyond EOD, truncated
[  890.985790][   T29] audit: type=1400 audit(1747813264.542:5271): avc:  denied  { unmount } for  pid=25720 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  891.017191][T31285] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  891.101349][T31285] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  891.274260][T31323] netlink: 'syz.3.7379': attribute type 1 has an invalid length.
[  891.282099][T31323] __nla_validate_parse: 21 callbacks suppressed
[  891.282156][T31323] netlink: 199820 bytes leftover after parsing attributes in process `syz.3.7379'.
[  891.345610][T31325] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7380'.
[  891.464002][T31329] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7382'.
[  891.580123][T31285] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  891.593350][T31285] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  891.611190][T31285] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  891.642181][T31285] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  891.764831][T31353] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7393'.
[  891.812776][T31355] dvmrp1: entered allmulticast mode
[  891.822227][T31355] dvmrp1: left allmulticast mode
[  891.891493][T31363] netlink: 4 bytes leftover after parsing attributes in process `syz.7.7398'.
[  891.909104][T31367] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7399'.
[  891.986005][T31377] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7404'.
[  891.987735][T31375] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  892.044817][T31375] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  892.053439][T31357] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  892.115899][T31375] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  892.205531][T31375] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  892.251674][T31375] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  892.263807][T31375] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  892.281062][T31375] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  892.295379][T31375] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  892.414120][T31393] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7410'.
[  892.428980][T31402] dvmrp1: entered allmulticast mode
[  892.437116][T31402] dvmrp1: left allmulticast mode
[  892.464389][T31408] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7417'.
[  892.492407][T31412] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7418'.
[  892.512635][T31413] netlink: 'syz.3.7414': attribute type 1 has an invalid length.
[  892.599461][   T29] audit: type=1326 audit(1747813266.152:5272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31407 comm="syz.1.7417" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbae613e969 code=0x0
[  892.679169][   T29] audit: type=1326 audit(1747813266.202:5273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31407 comm="syz.1.7417" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbae613e969 code=0x0
[  893.010585][T31447] dvmrp1: entered allmulticast mode
[  893.022635][T31447] dvmrp1: left allmulticast mode
[  893.404202][T31480] netlink: 'syz.5.7446': attribute type 1 has an invalid length.
[  893.643883][T31488] loop7: detected capacity change from 0 to 2048
[  893.724823][T31488]  loop7: p1 < > p4
[  893.756190][T31488] loop7: p4 size 8388608 extends beyond EOD, truncated
[  893.823040][T31496] dvmrp1: entered allmulticast mode
[  893.851385][T31496] dvmrp1: left allmulticast mode
[  894.222591][T31532] dvmrp1: entered allmulticast mode
[  894.231012][T31532] dvmrp1: left allmulticast mode
[  894.632278][T31568] netlink: 'syz.3.7482': attribute type 1 has an invalid length.
[  895.316274][T31618] netlink: 'syz.4.7499': attribute type 1 has an invalid length.
[  896.009452][T31657] dvmrp1: entered allmulticast mode
[  896.017238][T31657] dvmrp1: left allmulticast mode
[  896.047826][T31651] loop7: detected capacity change from 0 to 512
[  896.057662][T31651] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  896.069130][T31651] EXT4-fs (loop7): 1 truncate cleaned up
[  896.075585][T31651] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  896.141480][   T29] audit: type=1326 audit(1747813269.692:5274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31654 comm="syz.5.7515" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f86c7fde969 code=0x0
[  896.237785][   T29] audit: type=1326 audit(1747813269.742:5275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31654 comm="syz.5.7515" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f86c7fde969 code=0x0
[  896.396335][T31679] __nla_validate_parse: 26 callbacks suppressed
[  896.396355][T31679] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7524'.
[  896.437952][T31685] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7525'.
[  896.566174][T25720] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  896.848280][T31696] loop7: detected capacity change from 0 to 32768
[  896.894820][T31696]  loop7: p1 p2 p3 < >
[  896.899159][T31696] loop7: p1 size 242222080 extends beyond EOD, truncated
[  896.907204][T31696] loop7: p2 start 4294967295 is beyond EOD, truncated
[  897.017453][T31707] loop7: detected capacity change from 0 to 512
[  897.024343][T31707] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  897.035893][T31707] EXT4-fs (loop7): 1 truncate cleaned up
[  897.041953][T31707] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  897.184468][T25720] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  897.268532][T31714] netlink: 'syz.7.7535': attribute type 1 has an invalid length.
[  897.276447][T31714] netlink: 199820 bytes leftover after parsing attributes in process `syz.7.7535'.
[  897.428442][T31720] dvmrp1: entered allmulticast mode
[  897.443900][T31720] dvmrp1: left allmulticast mode
[  897.465131][T31722] netlink: 76 bytes leftover after parsing attributes in process `syz.1.7539'.
[  897.556300][T31728] netlink: 'syz.1.7540': attribute type 1 has an invalid length.
[  897.564064][T31728] netlink: 199820 bytes leftover after parsing attributes in process `syz.1.7540'.
[  897.630916][T31735] loop7: detected capacity change from 0 to 512
[  897.643287][T31735] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  897.680674][T31735] EXT4-fs (loop7): 1 truncate cleaned up
[  897.687349][T31735] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  897.747694][T31740] netlink: 76 bytes leftover after parsing attributes in process `syz.4.7547'.
[  897.902777][T25720] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  898.059618][T31761] netlink: 'syz.4.7555': attribute type 1 has an invalid length.
[  898.067468][T31761] netlink: 199820 bytes leftover after parsing attributes in process `syz.4.7555'.
[  898.382291][T31783] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7564'.
[  898.420410][T31786] netlink: 'syz.4.7563': attribute type 1 has an invalid length.
[  898.428340][T31786] netlink: 199820 bytes leftover after parsing attributes in process `syz.4.7563'.
[  898.526418][T31798] netlink: 'syz.3.7568': attribute type 1 has an invalid length.
[  898.534213][T31798] netlink: 199820 bytes leftover after parsing attributes in process `syz.3.7568'.
[  898.615402][T31804] dvmrp1: entered allmulticast mode
[  898.625667][T31804] dvmrp1: left allmulticast mode
[  898.763573][T31816] dvmrp1: entered allmulticast mode
[  898.774071][T31816] dvmrp1: left allmulticast mode
[  898.854015][T31831] dvmrp1: entered allmulticast mode
[  898.868800][T31831] dvmrp1: left allmulticast mode
[  899.102928][T31858] dvmrp1: entered allmulticast mode
[  899.116075][T31858] dvmrp1: left allmulticast mode
[  899.238013][T31865] loop7: detected capacity change from 0 to 512
[  899.245986][T31865] EXT4-fs: Ignoring removed mblk_io_submit option
[  899.252943][T31865] ext4: Unknown parameter 'hash'
[  899.423114][   T29] audit: type=1326 audit(1747813272.972:5276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31862 comm="syz.4.7601" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fef8c66e969 code=0x0
[  899.806566][T31875] loop7: detected capacity change from 0 to 512
[  899.813129][T31875] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  900.194586][T31875] netlink: 'syz.7.7602': attribute type 10 has an invalid length.
[  900.387580][   T29] audit: type=1326 audit(1747813273.942:5277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31862 comm="syz.4.7601" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fef8c66e969 code=0x0
[  900.736070][   T29] audit: type=1326 audit(1747813274.292:5278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31876 comm="syz.3.7605" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f339a81e969 code=0x0
[  900.786622][   T29] audit: type=1326 audit(1747813274.342:5279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31876 comm="syz.3.7605" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f339a81e969 code=0x0
[  901.787755][T31921] loop7: detected capacity change from 0 to 32768
[  901.834924][T31921]  loop7: p1 p2 p3 < >
[  901.839125][T31921] loop7: p1 size 242222080 extends beyond EOD, truncated
[  901.847857][T31921] loop7: p2 start 4294967295 is beyond EOD, truncated
[  902.105457][T31932] __nla_validate_parse: 15 callbacks suppressed
[  902.105477][T31932] netlink: 4 bytes leftover after parsing attributes in process `syz.7.7628'.
[  902.401755][T31956] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7637'.
[  902.702962][T31967] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7652'.
[  902.750559][T31971] dvmrp1: entered allmulticast mode
[  902.760850][T31971] dvmrp1: left allmulticast mode
[  902.842304][T31974] dvmrp1: entered allmulticast mode
[  902.849059][T31974] dvmrp1: left allmulticast mode
[  903.359493][T31986] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7651'.
[  903.447661][T31988] loop7: detected capacity change from 0 to 512
[  903.476165][T31988] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  903.531317][T31988] EXT4-fs (loop7): 1 truncate cleaned up
[  903.594077][T31988] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  903.726846][T32000] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7656'.
[  903.860069][T32010] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7657'.
[  903.919036][T32007] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7658'.
[  904.086885][T32025] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7664'.
[  904.115777][T25720] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  904.145579][T32031] dvmrp1: entered allmulticast mode
[  904.161474][T32034] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.7664'.
[  904.171248][T32025] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.7664'.
[  904.187434][T32033] loop7: detected capacity change from 0 to 1024
[  904.195078][T32031] dvmrp1: left allmulticast mode
[  904.197401][T32033] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  904.211066][T32033] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  904.223588][T32033] JBD2: no valid journal superblock found
[  904.229393][T32033] EXT4-fs (loop7): Could not load journal inode
[  904.238002][   T29] audit: type=1326 audit(1747813277.792:5280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32024 comm="syz.3.7664" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f339a81e969 code=0x0
[  904.259544][T32033] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  904.287722][   T29] audit: type=1326 audit(1747813277.842:5281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32024 comm="syz.3.7664" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f339a81e969 code=0x0
[  904.409323][T32047] loop7: detected capacity change from 0 to 512
[  904.417447][T32047] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  904.449536][T32047] EXT4-fs (loop7): 1 truncate cleaned up
[  904.462425][T32047] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  904.616586][T32057] dvmrp1: entered allmulticast mode
[  904.625857][T32057] dvmrp1: left allmulticast mode
[  904.642551][T25720] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  904.726313][T32063] dvmrp1: entered allmulticast mode
[  904.742156][T32063] dvmrp1: left allmulticast mode
[  904.905340][T32064] loop7: detected capacity change from 0 to 32768
[  904.972830][T32064]  loop7: p1 p2 p3 < >
[  904.977346][T32064] loop7: p1 size 242222080 extends beyond EOD, truncated
[  905.004676][T32064] loop7: p2 start 4294967295 is beyond EOD, truncated
[  905.015094][T32075] netlink: 'syz.5.7680': attribute type 1 has an invalid length.
[  905.419007][T32099] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  905.550248][T32117] netlink: 'syz.5.7698': attribute type 1 has an invalid length.
[  905.572588][T32116] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  906.776885][T32153] netlink: 'syz.5.7711': attribute type 1 has an invalid length.
[  907.054221][T32164] netlink: 'syz.1.7714': attribute type 1 has an invalid length.
[  907.062108][T32163] loop7: detected capacity change from 0 to 1024
[  907.082484][T32163] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  907.093476][T32163] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  907.131341][T32163] JBD2: no valid journal superblock found
[  907.137189][T32163] EXT4-fs (loop7): Could not load journal inode
[  907.160237][T32163] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  907.224629][T32168] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  907.402951][T32193] __nla_validate_parse: 7 callbacks suppressed
[  907.402968][T32193] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7728'.
[  907.906208][T32182] loop7: detected capacity change from 0 to 32768
[  907.975778][T32182]  loop7: p1 p2 p3 < >
[  907.988031][T32182] loop7: p1 size 242222080 extends beyond EOD, truncated
[  908.022249][T32182] loop7: p2 start 4294967295 is beyond EOD, truncated
[  908.095553][T32213] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  908.514519][T32240] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  909.480838][T32268] netlink: 76 bytes leftover after parsing attributes in process `syz.7.7753'.
[  909.679527][T32277] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  909.790928][T32281] netlink: 'syz.1.7758': attribute type 1 has an invalid length.
[  909.798770][T32281] netlink: 199820 bytes leftover after parsing attributes in process `syz.1.7758'.
[  909.959225][T32285] netlink: 44 bytes leftover after parsing attributes in process `syz.7.7760'.
[  910.022936][T32287] netlink: 4 bytes leftover after parsing attributes in process `syz.7.7761'.
[  910.078774][T32293] dvmrp1: entered allmulticast mode
[  910.120125][T32293] dvmrp1: left allmulticast mode
[  910.242291][T32302] loop7: detected capacity change from 0 to 1024
[  910.286156][T32302] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  910.297314][T32302] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  910.309608][T32302] JBD2: no valid journal superblock found
[  910.315437][T32302] EXT4-fs (loop7): Could not load journal inode
[  910.359602][T32302] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  910.370952][T32313] netlink: 44 bytes leftover after parsing attributes in process `syz.3.7771'.
[  910.552440][T32317] loop7: detected capacity change from 0 to 512
[  910.573234][T32317] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  910.665328][T32317] EXT4-fs (loop7): 1 truncate cleaned up
[  910.681593][T32317] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  911.076444][T25720] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  911.123423][T32347] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7783'.
[  911.198383][T32349] loop7: detected capacity change from 0 to 512
[  911.243215][T32349] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  911.264688][T32351] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.7783'.
[  911.287001][T32347] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.7783'.
[  911.308690][T32349] EXT4-fs (loop7): 1 truncate cleaned up
[  911.315889][T32349] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  911.380156][   T29] audit: type=1326 audit(1747813284.932:5282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32346 comm="syz.4.7783" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fef8c66e969 code=0x0
[  911.403417][   T29] audit: type=1326 audit(1747813284.932:5283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32346 comm="syz.4.7783" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fef8c66e969 code=0x0
[  911.626641][T32358] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  911.642867][T25720] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  911.675189][T32363] netlink: 'syz.1.7785': attribute type 1 has an invalid length.
[  911.682985][T32363] netlink: 199820 bytes leftover after parsing attributes in process `syz.1.7785'.
[  911.896103][T32361] loop7: detected capacity change from 0 to 32768
[  911.945479][T32361]  loop7: p1 p2 p3 < >
[  911.964566][T32361] loop7: p1 size 242222080 extends beyond EOD, truncated
[  912.000532][T32361] loop7: p2 start 4294967295 is beyond EOD, truncated
[  912.156869][T32386] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  912.227002][T32391] loop7: detected capacity change from 0 to 2048
[  912.247038][T32391] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  912.277494][   T29] audit: type=1400 audit(1747813285.822:5284): avc:  denied  { read open } for  pid=32390 comm="syz.7.7795" path="/491/file1/bus" dev="loop7" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  912.300633][   T29] audit: type=1400 audit(1747813285.822:5285): avc:  denied  { write } for  pid=32390 comm="syz.7.7795" name="bus" dev="loop7" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  912.406801][T32398] ==================================================================
[  912.414938][T32398] BUG: KCSAN: data-race in filemap_write_and_wait_range / xas_set_mark
[  912.423203][T32398] 
[  912.425534][T32398] write to 0xffff888106f8ef04 of 4 bytes by task 32396 on cpu 1:
[  912.433254][T32398]  xas_set_mark+0x12b/0x140
[  912.437770][T32398]  tag_pages_for_writeback+0xc2/0x290
[  912.443169][T32398]  ext4_do_writepages+0x695/0x2270
[  912.448309][T32398]  ext4_writepages+0x176/0x300
[  912.453084][T32398]  do_writepages+0x1d2/0x480
[  912.457691][T32398]  file_write_and_wait_range+0x156/0x2c0
[  912.463345][T32398]  generic_buffers_fsync_noflush+0x45/0x120
[  912.469258][T32398]  ext4_sync_file+0x1ab/0x690
[  912.473955][T32398]  vfs_fsync_range+0x10a/0x130
[  912.478731][T32398]  ext4_buffered_write_iter+0x34f/0x3c0
[  912.484309][T32398]  ext4_file_write_iter+0xdbf/0xf00
[  912.489544][T32398]  iter_file_splice_write+0x5f2/0x970
[  912.494935][T32398]  direct_splice_actor+0x153/0x2a0
[  912.500065][T32398]  splice_direct_to_actor+0x30f/0x680
[  912.505462][T32398]  do_splice_direct+0xda/0x150
[  912.510240][T32398]  do_sendfile+0x380/0x640
[  912.514664][T32398]  __x64_sys_sendfile64+0x105/0x150
[  912.519882][T32398]  x64_sys_call+0xb39/0x2fb0
[  912.524482][T32398]  do_syscall_64+0xd0/0x1a0
[  912.528998][T32398]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  912.534901][T32398] 
[  912.537231][T32398] read to 0xffff888106f8ef04 of 4 bytes by task 32398 on cpu 0:
[  912.544865][T32398]  filemap_write_and_wait_range+0xfc/0x340
[  912.550684][T32398]  ext4_file_write_iter+0xe04/0xf00
[  912.555903][T32398]  iter_file_splice_write+0x5f2/0x970
[  912.561285][T32398]  direct_splice_actor+0x153/0x2a0
[  912.566411][T32398]  splice_direct_to_actor+0x30f/0x680
[  912.571794][T32398]  do_splice_direct+0xda/0x150
[  912.576570][T32398]  do_sendfile+0x380/0x640
[  912.580993][T32398]  __x64_sys_sendfile64+0x105/0x150
[  912.586218][T32398]  x64_sys_call+0xb39/0x2fb0
[  912.590821][T32398]  do_syscall_64+0xd0/0x1a0
[  912.595342][T32398]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  912.601258][T32398] 
[  912.603585][T32398] value changed: 0x02000021 -> 0x04000021
[  912.609307][T32398] 
[  912.611641][T32398] Reported by Kernel Concurrency Sanitizer on:
[  912.617818][T32398] CPU: 0 UID: 0 PID: 32398 Comm: syz.7.7795 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) 
[  912.630330][T32398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  912.640400][T32398] ==================================================================
[  913.097813][T25720] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.