last executing test programs:

23.253110542s ago: executing program 1 (id=4898):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x1, &(0x7f00000003c0)=ANY=[], &(0x7f0000000240)='GPL\x00', 0xf8c, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x90)
r1 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f0000008380)={0x2020, 0x0, <r3=>0x0}, 0x2020)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r4, 0x0)
syz_emit_ethernet(0x8a, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000086dd6028230700540600fe8000000000002000000000000000aafe8000009700000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="50c2000090780000220a00000000030000000402030300080a0000000000000000000467ca1e1020000000000000000000000000001e102000"/72], 0x0)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000040)={0x50, 0x0, r3, {0x7, 0x1f, 0x0, 0x2400}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f0000006380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000008dceba394fc9d73b000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000070000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000070000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e7ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea2105600000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8ffffffffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000f87c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x10000000}, 0x10}, 0x90)
ioctl$EXT4_IOC_GET_ES_CACHE(r5, 0xc020662a, &(0x7f0000000340))
r7 = socket$packet(0x11, 0x2, 0x300)
socket$inet(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000280)={'erspan0\x00', <r8=>0x0})
getpeername$inet(r5, &(0x7f00000001c0), &(0x7f0000000200)=0x10)
setsockopt$packet_add_memb(r7, 0x107, 0x1, &(0x7f00000004c0)={r8, 0x3, 0x6, @random="5e1cf8b4c253"}, 0x10)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f00000000c0)={r8, 0x3, 0x6, @multicast}, 0x10)
close(r7)
r9 = openat$vsock(0xffffffffffffff9c, &(0x7f00000024c0), 0x0, 0x0)
ioctl$LOOP_SET_FD(r9, 0x7b9, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
dup3(r1, r2, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wlan1\x00'})
sendmsg$NL80211_CMD_START_NAN(r0, 0x0, 0x20044084)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpuacct.usage_user\x00', 0x275a, 0x0)

22.708396527s ago: executing program 1 (id=4900):
personality(0x5000004)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))

22.569255869s ago: executing program 1 (id=4901):
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x4}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1807000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf1a2ad3c249c95b7, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000180), &(0x7f00000001c0)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = add_key(&(0x7f0000000380)='.dead\x00', &(0x7f00000003c0)={'syz', 0x2}, 0x0, 0x0, 0x0)
request_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000280)={'syz', 0x0}, &(0x7f0000000300)=')!$#%\'*#*(\',,\x8a\xdb\x00', r2)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000340), 0x0, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0xf)
r7 = fcntl$dupfd(r6, 0x0, r6)
ioctl$TCFLSH(r7, 0x400455c8, 0x0)

11.767169004s ago: executing program 1 (id=4911):
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x0, 0x4, 0x4, 0x2}, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, 0x0}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000280)={r1, &(0x7f0000000080), &(0x7f0000001540)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r2}, 0x10)
pipe2$9p(&(0x7f0000000240)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r5 = dup(r4)
write$FUSE_BMAP(r5, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r5, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
statfs(&(0x7f00000003c0)='./file0\x00', 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x3, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r7}, 0x10)
pipe2$9p(&(0x7f0000000180)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r9, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r10 = dup(r9)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r8, @ANYBLOB=',wfdno=', @ANYRESHEX=r10])
write$FUSE_BMAP(r10, &(0x7f0000000100)={0x18}, 0x18)

11.674721282s ago: executing program 1 (id=4912):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getrlimit(0x1, &(0x7f0000000040))
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000600), 0x50cc3, 0x0)
r4 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x0, 0x9c37611dc13d0d83)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)
read$FUSE(r5, &(0x7f000000ac40)={0x2020, 0x0, 0x0, 0x0, <r6=>0x0}, 0x2020)
fchown(r4, 0xee01, r6)
syz_mount_image$fuse(&(0x7f0000000300), &(0x7f0000000500)='./bus\x00', 0x2020000, &(0x7f0000000640)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x1000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, r6}, 0x2c, {[{@default_permissions}, {@allow_other}], [{@subj_user={'subj_user', 0x3d, '\x00'}}, {@seclabel}, {@flag='async'}, {@measure}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}]}}, 0x0, 0x0, &(0x7f0000000740)="79c763005c2c9a83f7fa81196a35378c1121f0380091493106bb82967bafeccf9ad222cb2e253e37d3d8cfe2f9d81a180facf2563c1dd700d2cab7d70fa1831780da703e532d7d9419addee92ec63c5bb642b1195c7eacfcfc4fadf16139e24af31b85988cd13fc30e183e520e")
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000500)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x5, 0xb6, &(0x7f000000cf3d)=""/182, 0x0, 0x0, '\x00', 0x0, 0x20, 0xffffffffffffffff, 0x6}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
r8 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r8, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r8, <r9=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r10 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000100)=0xffffffffffffffff, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYRES8=r9, @ANYRES32=r9], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$F2FS_IOC_SET_PIN_FILE(r8, 0x4004f50d, &(0x7f00000007c0))
r11 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSETD(r11, 0x5423, &(0x7f0000000000)=0xf)
ioctl$TCFLSH(r11, 0x400455c8, 0x40000000004)
ioctl$TIOCSTI(r11, 0x5412, &(0x7f0000000180)=0x33)
keyctl$revoke(0x3, 0x0)

6.68935098s ago: executing program 0 (id=4925):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
read$FUSE(r1, &(0x7f000000b800)={0x2020}, 0xe80)
dup3(r0, r1, 0x0)
write$binfmt_elf64(r2, &(0x7f00000001c0)=ANY=[], 0xfffffe14) (fail_nth: 27)

6.633329694s ago: executing program 4 (id=4926):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r5}, 0x10)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000002c0), 0x8)
listen(r0, 0x0)
r6 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r6, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)

5.745170569s ago: executing program 0 (id=4928):
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f00000000c0)='./file2\x00', 0x0, &(0x7f0000000240)={[{@nouser_xattr}, {@four_active_logs}, {@four_active_logs}, {@noquota}, {@noflush_merge}, {@fastboot}, {@prjjquota={'prjjquota', 0x3d, '-{'}}, {@jqfmt_vfsv1}, {@extent_cache}, {@fastboot}]}, 0x1, 0x5513, &(0x7f0000000480)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
mknodat(r0, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
chdir(&(0x7f00000000c0)='./bus\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdir(&(0x7f0000000240)='./bus\x00', 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
renameat2(r1, &(0x7f00000001c0)='./file0\x00', r1, &(0x7f0000000200)='./bus/file0\x00', 0x0)
link(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./bus\x00')
symlink(&(0x7f00000002c0)='./bus/file0\x00', &(0x7f0000000300)='./file1\x00')
r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents64(r2, &(0x7f0000000180)=""/105, 0x69)

5.329488674s ago: executing program 4 (id=4930):
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x5ac, 0x8243, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000006d00000095"], 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b7040000000000008500000057"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x0, 0x10001, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000180)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0xa1000a, &(0x7f00000003c0)=ANY=[], 0x21, 0x1507, &(0x7f0000001b00)="$eJzs3Au4TtX2MPAx5pyLTdKb5D7HHIs3bUyXJLkkySVJkiNJbgkhSZKQ3G9JSELuSe4huYXkfr/lniRJkiQkJJnf45zO1zmn8//39f/3fZ7vv8fvedbzzvGud8w15h5773ettZ93f9NhSOW6VSrUZmb4b8G/PXQHgBQA6A8A1wFABAAlspTIcmV/Bo3d/3sHEX+uh6Zf7QrE1ST9T9uk/2mb9D9tk/6nbdL/tE36n7ZJ/9M26b8Qadn2GTmvly3tbnL/Py2T9///QY4WHvvFxsI3dvwDKdL/tE36n7ZJ/9M26X/aJv1P26T/aZv0P22T/guRlv3X7x3L3w7+J2xX+/tPCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIUTacCH8ygDA38dXuy4hhBBCCCGEEEL8eUL6q12BEEIIIYQQQggh/u9DUKDBQATpID2kQAbICNdAJrgWMsN1kIDrIQvcAFnhRsgG2SEH5IRckBvygAUCBwwx5IV8kISbID/cDKlQAApCIfBQGIpAUSgGt0BxuBVKwG1QEm6HUlAaykBZuAPKwZ1QHu6CCnA3VIRKUBmqwD1QFe6FanAfVIf7oQY8ADXhQagFf4Ha8BDUgYehLjwC9eBRqA8NoCE0gsb/pfwXoAu8CF2hG3SHHtATekFv6AN9oR/0h5dgALwMA+EVGASDYQi8CkPhNRgGr8NwGAEj4Q0YBaNhDIyFcTAeJsCbMBHegknwNkyGKTAVpsF0mAEz4R2YBbNhDrwLc+E9mAfzYQEshEXwPiyGJbAUPoBl8CEshxWwElbBalgDa2EdrIcNsBE2wWbYAlthG2yHj2AH7IRdsBv2wF7YBx/DfvgEDsCncBA++4P55/8lvyMCAipUaNBgOkyHKZiCGTEjZsJMmBkzYwITmAWzYFbMitkwG+bAHJgLc2EezIOEhIyMeTEvJjGJ+TE/pmIqFsSC6NFjESyCxfAWLI7FsQSWwJJYEkthaSyNZbEslsNyWB7LYwWsgBWxIlbGyngP3oP3YjWshtWxOtbAGlgTa2ItrIW1sTbWwTpYF+tiPayH9bE+NsSG2BgbYxNsgk2xKTbH5tgCW2ArbIWtsTW2wTbYFttiO2yH7bE9dsAO2BE7YSd8AV/AF/FF7IYVVQ/siT2xN/bGvtgP++FLOABfxpfxFRyEg3EIvoqv4ms4DM/hcByBI3EkllOjcQyORVbjcQJOwIk4ESfhJJyMU3AKTsPpOANn4kychbNxNr6Lc/E9fA/n43xciItwES7GJbgUl+IyPI/LcQWuxFW4GtfgalyH63EdbsRNuBG34BbchtvwI/wId+JO3I27cS8aAPwYP8FPcBAexIN4CA/hYTyMR/AIHsWjeAyP4XE8jifwBJ7Ek3gKT+MZPI1n8Syew/N4AS/gRbyIl/C5XF/V2VtgwyBQVxhlVDqVTqWoFJVRZVSZVCaVWWVWCZVQWVQWlVVlVdlUNpVD5VC5VC6VR+VRpEixilVelVclVVLlV/lVqkpVBVVB5ZVXRVQRVUwVU8VVcVVC3aZKqttVKVVaNfNlVVlVTjX35dVdqoKqoCqqSqqyqqKqqKqqqqqmqqnqqrqqoWqomupBVUv1wL74kLrSmbpqMNZTQ7C+aqAaqkbqNXxMNVHDsKlqppqrJ9QIHI6tVBPfWj2l2qgx2FY9o8bis6q9Go8d1POqo+qkOqsXVBfV1HdV3dRk7KF6qmnYW/VRfVU/NQsrqSsdq6xeUYPUYDVEvaoW4mtqmHpdDVcj1Ej1hhqlRqsxaqwap8arCepNNVG9pSapt9VkNUVNVdPUdDVDzVTvqFlqtpqj3lVz1XtqnpqvFqiFapF6Xy1WS9RS9YFapj5Uy9UKtVKtUqvVGrVWrVPr1Qa1UW1Sm9UWtVVtU9vVR2qH2ql2qd1qj9qr9qmP1X71iTqgPlUH1WfqkPpcHVZfqCPqS3VUfaWOqa/VcfWNOqG+VSfVd+qUOq3OqO/VWfWDOqfOqwvqR3VR/aQuqZ/VZRUUaNRKa210pNPp9DpFZ9AZ9TU6k75WZ9bX6YS+XmfRN+is+kadTWfXOXROnUvn1nm01aSdZh3rvDqfTuqbdH59s07VBXRBXUh7XVgX0UV1MX2LLq5v1SX0bbqkvl2X0qV1GV1W36HL6Tt1eX2XrqDv1hV1JV1ZV9H36Kr6Xl1N36er6/t1Df2Arqkf1LX0X3Rt/ZCuox/WdfUjup5+VNfXDXRD3Ug31o/pJvpx3VQ30831E7qFbqlb6Sd1a/2UbqOf1m31M7qdfla318/pDvp53VF30p31z/qyDrqr7qa76x66p+6le+s+uq/up/vrl/QA/bIeqF/Rg/RgPUS/qofq1/Qw/boerkfokfoNPUqP1mP0WD1Oj9cT9Jt6on5LT9Jv68l6ip6qp+npeobu+8tMc/4P8t/6N/kD/3r0bXq7/kjv0Dv1Lr1b79F79T69T+/X+/UBfUAf1Af1IX1IH9aH9RF9RB/VR/UxfUwf18f1CX1Cn9Qn9Sl9Wv+ov9dn9Q/6nD6vz+sf9UV9UV/65WsABo0y2hgTmXQmvUkxGUxGc43JZK41mc11JmGuN1nMDSarudFkM9lNDpPT5DK5TR5jDRln2MQmr8lnkuYm/OWEwhQ0hYw3hU0RU/SP5Jv85maTagr8U/7v1dfYNDZNTBPT1DQ1zU1z08K0MK1MK9PatDZtTBvT1rQ17Uw70960Nx1MB9PRdDSdTWfTxXQxXU1X0910Nz1NL9Pb9DF9TT/T37xkBpgBZqAZaAaZQWaIGWKGmqFmmBlmhpvhZqQZaUaZUWaMGWPGmXFmgplgJpqJZpKZZCabyWaqmWqmm+lmpplpZplZZo6ZY+aauWaemWcWmAVmkVlkFpvFZqlZapaZZWa5WWFWmFVmlVlj1ph1Zp3ZYDaYTWaT2WK2mOVmu9ludpgdZpfZZfaYPWaf2Wf2m/3mgDlgDpqD5pA5ZA6bw+aIOWKOmqPmmDlmjpvj5oQ5YU6ak+aUOWXOmDPmrDlrzplz5oK5YC6ai+aSuWQum8tXTvsiFanIRCZKF6WLUqKUKGOUMcoUZYoyR5mjRJSIskRZoqzRjVG2KHuUI8oZ5YpyR3kiG1HkIo7iKG+UL0pGN0X5o5uj1KhAVDAqFPmocFQkKhoVi26Jike3RiWi26KS0e1Rqah0VCYqG90RlYvujMpHd0UVorujilGlqHJUJbonqhrdG1WL7ouqR/dHNaIHoprRg1Gt6C9R7eihqE70cFQ3eiSqFz0a1Y8aRA2jRlHjP3X+EM5lf9x3td1sd9vD9rS9bG/bx/a1/Wx/+5IdYF+2A+0rdpAdbIfYV+1Q+5odZl+3w+0IO9K+YUfZ0XaMHWvH2fF2gn3TTrRv2Un2bTvZTrFT7TQ73c6wM+07dpadbefYd+1c+56dZ+fbBXahXWTft4vtErvUfmCX2Q/tcrvCrrSr7Gq7xq616+x6u8FutJvsZrvFbrXb7Hb7kd1hd9pddrfdY/faffZju99+Yg/YT+1B+5k9ZD+3h+0X9oj90h61X9lj9mt73H5jT9hv7Un7nT1lT9sz9nt71v5gz9nz9oL90V60P9lL9md72YYrJ/dX3t7JkKF0lI5SKIUyUkbKRJkoM2WmBCUoC2WhrJSVslE2ykE5KBflojyUh65gYspLeSlJScpP+SmVUqkgFSRPnopQESpGxag4FacSVIJKUkkqRaWoDJWhO+gOupPupLvoLrqb7qZKVImqUBWqSlWpGlWj6lSdalANqkk1qRbVotpUm+pQHapLdake1aP6VJ8aUkNqTI2pCTWhptSUmlNzakEtqBW1otbUmtpQG2pLbakdtaP21J46UAfqSB2pM3WmLtSFulJX6k7dqSf1pN7Um/pSX+pP/WkADaCBNJAG0SAaQkNoKA2lYTSMhtMIGklv0CgaTWNoLI2j8TSBJtBEmkiTaBJNpsk0labSdJpOM2kmzaJZNIfm0FyaS/NoHi2gBbSIFtFiWkxLaSkto2W0nJbTSlpJq2k1raW1tJ7W00baSJtpM22lrbSdttMO2kG7aBftoT20j/bRftpPB+gAHaSDdIgOBQSgI3SEjtJROkbH6DgdpxN0gk7SSTpFp+gMnaGzdJbO0Tm6QBfoIv1El+hnukyBUlwGl9Fd4zK5a11md5371ziHy+lyudwuj7Mum8v+TzE551JdAVfw75eYrqhLTbnyWMh5V9gVcUVdKVfalXFl3R2unLvTlf9NXNXd66q5+1x1d7+r4u75p7iGe8DVdI+4Wu5RV9s1cHVcI1fXPeLquUddfdfANXSNXAvX0rVyT7rW7inXxj39m3ixW+LWuw1uo9vk9rtP3AX3ozvuvnEX3U+uq+vm+ruX3AD3shvoXnGD3ODfxCPdG26UG+3GuLFunBv/m3iqm+amuxlupnvHzXKzfxMvcu+7uW6pm+fmuwVu4V/jKzUtdR+4Ze5Dt9ytcCvdKrfarXFr3br/Xesqt8VtddvcPvex2+F2ul1ut9vj9v41vrKOA+5Td9B95o65r91h94U74k64o+6rv8ZX1nfCfetOuu/cKXfanXHfu7PuB3fOnb+y/nBl7d+7n91lFxwwsmLNhiNOx+k5hTNwRr6GM/G1nJmv4wRfz1n4Bs7KN3I2zs45OCfn4tychy0TO2aOOS/n4yTfxPn5Zk7lAlyQC7HnwlyEi3IxvoWL861cgm/jknw7l+LSXIbL8h1cju/k8nwXV+C7uSJX4spche/hqnwvV+P7uDrfzzX4Aa7JD3It/gvX5oe4Dj/MdfkRrsePcn1uwA25ETfmx7gJP85NuRk35ye4BbfkVvwkt+anuA0/zW35GW7Hz3J7fo478PPckTtxZ36Bu/CL3JW7cXfuwT25F/fmPtyX+3F/fokH8Ms8kF/hQTyYh/CrPJRf42H8Og/nETyS3+BRPJrH8Fgex+N5Ar/JE/ktnsRv82SewlN5Gk/nGTyT3+FZPJvn8Ls8l9/jeTyfF/BCXsTv82Jewkv5A17GH/JyXsEreRWv5jW8ltfxet7AG3kTb+YtvJW38Xb+iHfwTt7Fu3kP7+V9/DHv5wy//MB9xof4cz7MX/AR/pKP8ld8jL/m4/wNn+Bv+SR/x6f4NJ/h7/ks/8Dn+Dxf4B/5Iv/El/hnvsyBIcZYxTo2cRSni9PHKXGGOGN8TZwpvjbOHF8XJ+Lr4yzxDXHW+MY4W5w9zhHnjHPFueM8sY0pdjHHcZw3zhcn45vi/PHNcWpcIC4YF4p9XDguEheNi8W3xMXjW+MS8W1xyfj2uFRcOn7k/rLxHXG5+M64fHxXXCG+O64YV4orx1Xie+Kq8b1xtfi+uHp8f1w8fiCuGT8Ywy+fV6kTPxzXjR+J68WPxvXjBnHDuFHcOH4sbhI/HjeNm8XN4yfiFnHLuFX8ZNw6fipuEz/9u/u7xz3innGvuFccwn16QXJhclHy/eTi5JLk0uQHyWXJD5PLkyuSK5OrkquTa5Jrk+uS65MbkhuTm5Kbk1uSW5PbkiFUSQ8evfLaGx/5dD69T/EZfEZ/jc/kr/WZ/XU+4a/3WfwNPqu/0Wfz2X0On9Pn8rl9Hm89eefZxz6vz+eT/iaf39/sU30BX9AX8t4X9kV8I9/YN/ZN/OO+qW/mm/sn/BO+pW/pn/RP+qd8G/+0b+uf8e38s769f84/55/3HX0n39m/4Lv4F31X38139919T9/T9/a9fV/f1/f3/f0AP8AP9AP9ID/ID/FD/FA/1A/zw/xwP9yP9CP9KD/Kj/Fj/Dg/zk/wE/xEP9FP8pN8BABT/VQ/3U/3M/1MP8vP8nP8HD83da6f5+f5BX6BX+QX+cV+sV/ql/plfplf7pf7lX6lX+1X+7V+rV/v1/uNfqPf7Df7rX6r3+63+x1+h9/ld/k9fo/f5/f5/X6/P+AP+IP+oD/kD/nD/rA/4r/0R/1X/pj/2h/33/gT/lt/0n/nT/nT/oz/3p/1P/hz/ry/4H/0F/1P/pL/2V/2wU9IvJmYmHgrMSnxdmJyYkpiamJaYnpiRmJm4p3ErMTsxJzEu4m5ifcS8xLzEwsSCxOLEu8nFieWJJYmPkgsS3yYWJ5YkViZWJVYnVhjIOTeEYe8IV9IhptC/nBzSA0FQsFQKPhQOBQJRUOxcEsoHm4NJcJtoWS4PZQKpUOZ8GioHxqEhqFRaBweC03C46FpaBaahydCi9AytApPhtbhqdAmPB3ahmdCu/BsaB+eCx3C86Fj6BQ6hxdCl/Bi6Bq6he6hR+gZeoXeoU/oG/qF/uGlMCC8HAaGV8KgMDgMCa+GoeG1MCy8HoaHEWFkeCOMCqPDmDA2jAvjw4TwZpgY3gqTwtthcpgSpoZpYXqYEWaGd8KsMDvMCe+GueG9MC/MDwvCwrAovB8WhyVhafggLAsfhuVhRVgZVoXVYU1YG9aF9WFD2Bg2hc1hS9gatoXt4aOwI+wMu8LusCfsDfvCx2F/+CQcCJ+Gg+GzcCh8Hg6HL8KR8GU4Gr4Kx8LX4Xj4JpwI34aT4btwKpwOZ8L34Wz4IZwL58OF8GO4GH4Kl8LP4fIf/MxapT/zFroQQgghxP9Hev3O/h7/5jkDAOqX8U8hhGt35jz6j/s1AGzO9rdxH5WrRQIAnurW4aG/bxUrdu/e/ZfXLtcQ5ZsPAIl/OcAv8QpoDi2hNTSDYv+2vj6q00X+nfmTtwFk/IecFPg1/nX+z/+D+R97YuTikvGFLP/J/PMBUvP9mnPlKvzv8QpofmU10AyK/wfzZ2/yO/Vn+GICQNN/yMkEAE0z/Gv9ReBxeBpa/9MrhRBCCCGEEEKIv+mjyrT7vevnK9fnucyvOenh1/j3rs+FEEIIIYQQQghx9T3bqfOTj7Vu3aydDGQggzQ2aPmfvOZq/2YSQgghhBBC/Nl+Pen/9bkMV7MgIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBAiDfp/8Z/GrvYahRBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCiKvtfwUAAP//D5g3fQ==")
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0x2]}, 0x0, 0x8)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)

5.189452355s ago: executing program 2 (id=4931):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000070000000000000026000000181100001bfa949fa8ecc4cd2f0a44edeecfecd9043d8f20766b020c10d895a8fe0afb120892c16037b2c1cbdea49e17a5e352691c925dba9825de7569efc09a3dc50e301ed2f2be8ed3e95d6171a06b6b7eaa799856d8b8c7c5ded71dc27e8433bfdb", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000084000000b70000000000000095000000000000"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x6, 0x12, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000009000000000000008000000018110000", @ANYBLOB, @ANYRES32=r0, @ANYBLOB="000000000000000085100000fbffffffbf91000000000000b7020000020000008500000084000000b7000000000000009500000000000000"], 0x0, 0xbbdd, 0x82, &(0x7f0000000580)=""/130, 0x40f00, 0x5, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x4}, 0x8, 0x10, &(0x7f0000000200)={0x2, 0x2, 0x4, 0x1}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe4}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x401}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r6, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
fstat(r5, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x9)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r2, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, r8, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r2, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)

4.726484664s ago: executing program 0 (id=4932):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000c80)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = syz_usb_connect(0x0, 0x10b, &(0x7f0000000000)=ANY=[@ANYBLOB="05010900b24b6a10e6040300770100000001090224000b010000000904000302ccd4280009050b02000000040009058a02"], 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x3, 0x0, 0x1}, 0x48)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r7}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fdb_delete\x00', r8}, 0x10)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fdb_delete\x00', r9}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r10, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r11, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"})
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r12}, 0x10)
bpf$MAP_DELETE_ELEM(0x2, 0x0, 0x0)
syz_usb_control_io$hid(r3, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r13 = inotify_init1(0x0)
inotify_add_watch(r13, &(0x7f00000001c0)='./file0\x00', 0x400)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r14 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_destroy\x00', r14}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

4.632001662s ago: executing program 3 (id=4934):
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000380)='./file0\x00', 0x800804, &(0x7f0000000640)=ANY=[@ANYBLOB="73686f72746e616d653d6c6f7765722c73686f72746e616d653d6c6f7765722c757466383d312c73686f72746e616d653d6c6f7765722c636865636b3d72656c617865642c726f6469722c726f6469722c757466383d302c74696d655f6f66667365743d3078666666666666666666666666666632382c636f6465706167653d3835372c6e6f6e756d7461696c3d302c696f636861727365743d6b6f69382d72752c73686f72746e616d653d77696e39352c73686f72746e616d653d6d697865642c747a3d5554432c00b6638b2365bfce5edff2d3206c0f3ff8c1bfe859ee824ff85d7690d773272154164bea29b754d1a2e184"], 0x1, 0x276, &(0x7f00000003c0)="$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")
openat(r0, &(0x7f0000000040)='.\x00', 0x0, 0x184)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x10)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_GETKMSGREDIRECT(r5, 0x4b4d, &(0x7f00000000c0))
syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x218440, 0x0, 0x1, 0x0, &(0x7f0000000000))

4.245338095s ago: executing program 2 (id=4935):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000600)='./bus\x00', 0x1c14744, &(0x7f0000000100), 0xff, 0x490, &(0x7f0000000f40)="$eJzs3M9vFFUcAPDvTLf8VFoRf4AkVtHY+KOlBZSDHjSaeNBEowc81rYQZKGG1kQI0WIMHg2Jd+PRxL/Akyejnky8eNC7ISFKTAAvrpndmba77lT6cxf380kW3tt5M+99++btvr632wB61lD2TxJxR0T8EhEDjWxzgaHGfzeuXZi8ee3CZBK12hu/J/Vy169dmCyKFuftzDPDaUT6cZJX0mz23PlTE9Xq9Nk8Pzp3+t3R2XPnnzp5euLE9InpM+NHjx4+NPbM0+NHms47sso4s/iu7/tgZv/el9+6/Orksctvf/9V1t40P740jvUylAX+R62u9dij611Zh/1dW4wzqXS6NdyqvojIuqu/Pv4Hoi8WO28gXvqoo40DNlT2mr21/PB8DfgfS6LTLQA6o3ijz37/zR/9mzT16ApXn2/8ApTFfiN/NI5UFtYGNvIHMhQRx+b/+jx7RMs6RK3NugEAwFp9k81/nmya/+XzjzTuXVJuV743NBgRd0XE7oi4OyL2RMQ9EfWy90XE/Susv3Vr6N/7MOmVVQV2i7L537P53lbz/K+Y/cVgX567sx5/f3L8ZHX6YP4zGY7+rVl+rN3Fi0u8+NOnZfUvnf9lj6z+Yi6YX+RKpWWBbmpibmK9JqVXL0bsq7SLP1nYCUgiYm9E7FvZpXcViZOPf7m/rNB/x7+Mddhnqn0R8Vij/+ejJf5Csvz+5Oi2qE4fHG3cFX1t6vjhx0uvldW/pvjXQdb/O5rv/5YSA38mS/drZ1dex6VfPyndW62s8v7fkrxZ39Pdkj/3/sTc3NmxiC3JK/V80/Pji+cW+aJ8Fv/wgfbjf3d+Thb/AxGxP+LnYtg9mPfdQxHxcEQcWCb+71545J2yY93Q/1NtX/8W7v/B5v5feaLv1Ldfl9XfGn+S5xdLZP1/uJ4azp+pv/7ltpdct7w52/ISq72bAQAA4PaT1j8bn6QjC+k0HRlpfIZ/T+xIqzOzc08cn3nvzFTjM/SD0Z8W658DS9ZDx5L5/IqN/Hi+VlwcP5SvG3/Wtz1Jojo9MjlTnepw7NDrdpaM/8xv7RazI+K5TW0hsKF8Xwt6V+v4TzvUDmDzef+H3mX8Q+8y/qF3FeP/9SXPfdhSpmQvALjNef+H3mX8Q+9aGP8XO9sOYPN5/4ee1O5L8sXfOFjDV/7XlKgs8+39Lk0Uq6Pd0p5TSURsbBWRdkekpYnI/4hFt7Rn5YmbtVWeXllmdN9qojOvRwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOvtnwAAAP//aP7lHQ==")
prlimit64(0x0, 0xe, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000080850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0x2)
readv(r2, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0x940}], 0x1)
sched_setscheduler(0x0, 0x5, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
getpid()
socketpair$unix(0x1, 0x1, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0xc3ffffff, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
sched_setscheduler(0x0, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, r0, 0x0)

3.400744975s ago: executing program 3 (id=4936):
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000040)={0x108, 0x1, 0xa, 0x5, 0x0, 0x0, {0x3, 0x0, 0x5}, [@NFTA_TABLE_USERDATA={0xf1, 0x6, "f7767dc466e8b36b248a24acf0c6dbfade16db6e999270d5af7fe5555b4e3aa756097908d06eaf2dceeb7e3efd0493009b0ecdad30646028f527787a26f35b968a7d808fe1c641cb32b2dfa812a647a82d04c9be4a4ca4945994ce0c959cfb9e4d076d14edd0db3e935cf622ab261c7672da4455e789974442193e62149728bf7535a5dd9f5f0c987af79dcd05785998326a4e209082ba88201e5a9961dbe96901866f09b77341604cb3bc955929f011226972a16219caa14ddd960aae545a41d07d6095e978a3df7650152ff2b3cfd346a440561da8e96ab69b066c22e7835c4bacd2298e270c35826ae71f19"}]}, 0x108}, 0x1, 0x0, 0x0, 0x20000000}, 0x40880)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000200)={0x1, <r0=>0xffffffffffffffff}, 0x4)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000240)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, <r1=>0x0})
ioctl$BTRFS_IOC_WAIT_SYNC(r0, 0x40089416, &(0x7f0000000440)=r1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSET(r2, &(0x7f0000000600)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000005c0)={&(0x7f00000004c0)={0xe0, 0xa, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0xa}, [@NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_SET_USERDATA={0x80, 0xd, 0x1, 0x0, "0a4d782459e343bd1aef6ac9bc8159c81982784301a12840d378a455486c94fe99e4d48fd324c95c05a902076be608a45e1f6f480c4e8d82522215dd2d3a453ee3556ce1410c5e3194c84de85853badac9092830ae00e9b5cdf4a79545c84375f3a36d6842afab22de9e6f4741088aeff21f6acaa2926b46271eee8f"}, @NFTA_SET_EXPR={0x44, 0x11, 0x0, 0x1, @tunnel={{0xb}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_TUNNEL_KEY={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_TUNNEL_KEY={0x8}, @NFTA_TUNNEL_DREG={0x8, 0x2, 0x1, 0x0, 0xd}, @NFTA_TUNNEL_MODE={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_TUNNEL_MODE={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_TUNNEL_KEY={0x8}]}}}]}, 0xe0}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = socket$xdp(0x2c, 0x3, 0x0)
ioctl$FS_IOC_READ_VERITY_METADATA(r4, 0xc0286687, &(0x7f0000000740)={0x2, 0x4, 0xe0, &(0x7f0000000640)=""/224})
r5 = accept4(r4, &(0x7f0000000780)=@ieee802154, &(0x7f0000000800)=0x80, 0x0)
sendto(r5, &(0x7f0000000840)="448e0db4d65ceb219ec40c036180abf12633acc53a985778e70a952e", 0x1c, 0x80, &(0x7f0000000880)=@qipcrtr={0x2a, 0x1, 0x8000}, 0x80)
r6 = openat$null(0xffffffffffffff9c, &(0x7f0000000900), 0x1c1102, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r5, 0x0, 0x60, &(0x7f0000000980)={'filter\x00', 0x7, 0x4, 0x410, 0x0, 0x220, 0x0, 0x328, 0x328, 0x328, 0x4, &(0x7f0000000940), {[{{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@local, @empty, @dev={0xac, 0x14, 0x14, 0x41}, @loopback, 0x1, 0xffffffff}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@multicast, @empty, @multicast1, @remote, 0x8, 0xffffffff}}}, {{@uncond, 0xc0, 0x108}, @unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x175e94b7, 'syz1\x00', {0x99b}}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x460)
rt_sigreturn()
sendmsg$inet(r5, &(0x7f0000000f80)={&(0x7f0000000e00)={0x2, 0x4e21, @loopback}, 0x10, &(0x7f0000000ec0)=[{&(0x7f0000000e40)="a3b121655cd5b2aa8602e894428a9bd71ca1af41293607f46f089b612cba57054f6013b4f9e0551a355cd2e889ba9d2bf19d508af7a99ae594f1d2bdbcd85294b4e0d94ec18252b21a24de1fcf8b6d1f9ad61e9637ad782b66827dccebf27233a789749de84a71a288cf1e90ae81b6acf5996f6b34", 0x75}], 0x1, &(0x7f0000000f00)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x80000001}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x7}}, @ip_ttl={{0x14, 0x0, 0x2, 0x1}}, @ip_ttl={{0x14, 0x0, 0x2, 0x8}}], 0x60}, 0x24004891)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r5, 0x89f0, &(0x7f0000001040)={'ip6tnl0\x00', &(0x7f0000000fc0)={'syztnl1\x00', <r7=>0x0, 0x2f, 0x1, 0x81, 0x9, 0x2, @mcast1, @empty, 0x10, 0x1, 0x2}})
r8 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000002280)=@bpf_tracing={0x1a, 0x12, &(0x7f0000001080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x10001}, {{0x18, 0x1, 0x1, 0x0, r6}}, {}, [@jmp={0x5, 0x0, 0x6, 0x0, 0x4, 0x18, 0xfffffffffffffff0}, @cb_func={0x18, 0x3, 0x4, 0x0, 0x1}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0xc7}}}, &(0x7f0000001140)='syzkaller\x00', 0x2, 0x1000, &(0x7f0000001180)=""/4096, 0x41100, 0x0, '\x00', 0x0, 0x19, r6, 0x8, &(0x7f0000002180)={0x7, 0x4}, 0x8, 0x10, &(0x7f00000021c0)={0x0, 0x4, 0x9, 0x1}, 0x10, 0x2c370, r6, 0x2, &(0x7f0000002200)=[r0, r0, r6, r6, r0, r6, r6, r6], &(0x7f0000002240)=[{0x1, 0x5, 0xd, 0x6}, {0x5, 0x2, 0xc, 0x2}], 0x10, 0x400}, 0x90)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000002380)={0xffffffffffffffff, r3, 0x0, 0x1, &(0x7f0000002340)='\x00', <r9=>0x0}, 0x30)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000024c0)={@map=r6, 0x15, 0x1, 0x0, &(0x7f00000023c0)=[0x0], 0x1, 0x0, &(0x7f0000002400)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000002440)=[0x0], &(0x7f0000002480)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], <r10=>0x0}, 0x40)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000002500)={@ifindex=r7, r8, 0x34, 0x1, r6, @prog_id=r9, r10}, 0x20)
r11 = syz_clone(0x10c0000, &(0x7f0000002540)="981915b3057c0c3aa3c3b5dc46e3a0862318d51d602ef38f2bbccc117aaf22015f1aef26bbcc9e787a1032e5f10436f67fad9eb5ad49556ef86e770f1a9b179b0744b7a8f97922b0e8c79f63a29f5a626e9c40248241a38a154af0357effaf21013ab8331e927c0a23a424fbc93c061cc0884663d3acdd77fefa13164f06ca9ecc89304a876fa9f95fcde332a7b8fc23b5c932585519289315fc70f4ce75313f9e4ac8b5c307f87ef1d8777e56df616d05103852e6f386dbc885632402b7d619e98069850da5e897fd69c5", 0xcb, &(0x7f0000002640), &(0x7f0000002680), &(0x7f00000026c0)="62c659521c6f94ea57b70ed8372d15ed53e6e35b0afa71ac3179a6e356f563b4d8df3b0de860025f5d2035888d56b2ae241732900a7f7eba4f58aa497b987366c144d970f525c2d246110ba7a500a5fc59acd1d72dba7fd037d998eb1b1992641785240c17b7f29e821ede21658fbc411933c22d6fdac3222b8ef36fd5051e2342a55f888179b0d72bbb0b3504de662bfdd4151be6da99cfa29ea155df2b2cd8219854415cf46d2a459bf4bd439d8b682c3cd14f0b1a237c82ea072ded1c15f9")
process_vm_writev(r11, &(0x7f0000003900)=[{&(0x7f0000002780)=""/154, 0x9a}, {&(0x7f0000002840)=""/4096, 0x1000}, {&(0x7f0000003840)=""/10, 0xa}, {&(0x7f0000003880)=""/103, 0x67}], 0x4, &(0x7f0000003c40)=[{&(0x7f0000003940)}, {&(0x7f0000003980)=""/134, 0x86}, {&(0x7f0000003a40)=""/81, 0x51}, {&(0x7f0000003ac0)=""/51, 0x33}, {&(0x7f0000003b00)=""/63, 0x3f}, {&(0x7f0000003b40)=""/231, 0xe7}], 0x6, 0x0)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0xb, 0x4010, 0xffffffffffffffff, 0xaf806000)
ioctl$sock_inet_udp_SIOCINQ(r5, 0x541b, &(0x7f0000003cc0))
epoll_create1(0x0)
r12 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r12, &(0x7f0000003dc0)={&(0x7f0000003d00)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000003d80)={&(0x7f0000003d40)={0x38, 0x9, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0x3}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x5}]}, 0x38}, 0x1, 0x0, 0x0, 0x40}, 0x4000)
mmap(&(0x7f0000ff1000/0xe000)=nil, 0xe000, 0x2000008, 0x110, r8, 0xb8fd5000)
r13 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_TX_POWER(r13, &(0x7f0000003f80)={&(0x7f0000003e00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000003f40)={&(0x7f0000003f00)={0x34, 0x0, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_TX_POWER={0x8, 0xb, 0x6}, @NL802154_ATTR_TX_POWER={0x8, 0xb, 0x9790}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x10000090}, 0x40041)

3.237794379s ago: executing program 3 (id=4937):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b702000014001100b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x2d)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{0x87}, {0x6}]})

3.089201991s ago: executing program 2 (id=4938):
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x408, 0xcd, 0x1}, 0x48)
syz_mount_image$ext4(&(0x7f0000000ac0)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x3810744, &(0x7f0000000700)={[{@noauto_da_alloc}, {@user_xattr}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@jqfmt_vfsv0}, {@delalloc}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x400000}}, {@noauto_da_alloc}, {@test_dummy_encryption}]}, 0x1, 0x451, &(0x7f0000000d00)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x13, 0x3, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x38, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000940)=ANY=[@ANYBLOB="38010000100013070000000000000000fe88000000000000000000000000000100000000010000000000000000000000009e43594f00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc0200000000000000000000000000000000000032000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001700"/120], 0x138}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x400000000000000, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="020300090a0000000000000000000000030006000000800002000000e0000009000000000000000002000100000000002000020200000040030005000000000002"], 0x50}}, 0x0)
r3 = gettid()
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mountinfo\x00')
read$FUSE(r4, &(0x7f00000029c0)={0x2020}, 0x2020)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000000)={'ip_vti0\x00', 0x0})
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

2.359313503s ago: executing program 3 (id=4939):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'gre0\x00', <r1=>0x0})
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=@newlink={0xb8, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x88, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x78, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x3}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x4, 0x2}}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xa54, 0x18}}, @IFLA_VLAN_INGRESS_QOS={0x1c, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x4, 0x800}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x6, 0x6}}]}, @IFLA_VLAN_INGRESS_QOS={0x34, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x10000, 0x10010}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0x68}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0x95ee}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x4, 0x1}}]}]}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0xb8}, 0x1, 0xba01}, 0x0)

2.322337016s ago: executing program 3 (id=4940):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r5}, 0x10)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000002c0), 0x8)
listen(r0, 0x0)
r6 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r6, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)

2.258964801s ago: executing program 2 (id=4941):
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x5)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}]})
r5 = open(0x0, 0x0, 0x0)
mknodat$loop(r5, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x200081e, &(0x7f00000020c0), 0x2, 0x4ef, &(0x7f0000000a00)="$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")

2.206069705s ago: executing program 4 (id=4942):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014001100b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b700000000000000"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{0x87}, {0x6}]})

1.55236965s ago: executing program 0 (id=4944):
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)

1.43557525s ago: executing program 0 (id=4945):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000400)={r0, &(0x7f0000000380), 0x20000000}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f00000009c0)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000084000000b7000000000000009500"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x6, 0x12, &(0x7f00000004c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000000000095", @ANYBLOB="000000000000000085100000fbffffffbf91000000000000b7020000020000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0xbbdd, 0x82, &(0x7f0000000580)=""/130, 0x40f00, 0x5, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x4, 0x4}, 0x8, 0x10, &(0x7f0000000200)={0x2, 0x2, 0x4, 0x1}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000280)=[r0, r0, r0], 0x0, 0x10, 0xe4}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x401}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r6, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x9)
writev(r2, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)

1.264772134s ago: executing program 4 (id=4946):
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000380)='./file0\x00', 0x800804, &(0x7f0000000640)=ANY=[@ANYBLOB="73686f72746e616d653d6c6f7765722c73686f72746e616d653d6c6f7765722c757466383d312c73686f72746e616d653d6c6f7765722c636865636b3d72656c617865642c726f6469722c726f6469722c757466383d302c74696d655f6f66667365743d3078666666666666666666666666666632382c636f6465706167653d3835372c6e6f6e756d7461696c3d302c696f636861727365743d6b6f69382d72752c73686f72746e616d653d77696e39352c73686f72746e616d653d6d697865642c747a3d5554432c00b6638b2365bfce5edff2d3206c0f3ff8c1bfe859ee824ff85d7690d773272154164bea29b754d1a2e184"], 0x1, 0x276, &(0x7f00000003c0)="$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")
openat(r0, &(0x7f0000000040)='.\x00', 0x0, 0x184)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x10)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_GETKMSGREDIRECT(r5, 0x4b4d, &(0x7f00000000c0))
syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x218440, 0x0, 0x1, 0x0, &(0x7f0000000000))

612.057149ms ago: executing program 2 (id=4947):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@bloom_filter={0x1e, 0x9, 0x5, 0x9, 0xc00, 0xffffffffffffffff, 0x82b, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x3, 0x1, 0x2}, 0xffffffffffffff37)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000280)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC, @ANYRES32=<r3=>r1, @ANYRESHEX=r0], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, 0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0xffff7ffc, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x90) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) (async)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x6, &(0x7f0000000340)=0x7b, 0x4)
bind$inet(r5, &(0x7f0000000000)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r5, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @loopback}, 0x10) (async)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000600), 0x4) (async)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0) (async)
sendto$inet(r5, &(0x7f00000008c0)="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", 0x139, 0x40800, 0x0, 0x0) (async)
recvmsg(r5, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0x1, 0x0, 0x46, 0x407006}, 0x104) (async)
r6 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000003c0)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r7}, 0x10) (async)
openat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x12081, 0x12)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f00000003c0)=ANY=[@ANYRESOCT=r3, @ANYRES32, @ANYRESOCT=r4, @ANYRES16=r6, @ANYBLOB=',group_id=', @ANYRESDEC=r2]) (async)
read$FUSE(r8, &(0x7f00000021c0)={0x2020, 0x0, <r9=>0x0}, 0xfffffffffffffe33)
write$FUSE_INIT(r8, &(0x7f0000000040)={0x50, 0x0, r9, {0x7, 0x1f}}, 0x50) (async)
syz_fuse_handle_req(r8, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x527481, 0x0)
fallocate(r10, 0x0, 0x40000000, 0x3) (async)
close(r8) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f00000002c0)=ANY=[@ANYRES16=r3, @ANYRES64=r9], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="0065f277c3619db83f2bfe34f6ab251480f369a5d29fd933ac98b6d1bb7b4f96b470781458c8d9726dc9f4c0a42314ea6934756783eb487bfa5c14a5cacc62e8b4be7cccc24f4591f2428dbd88c02a0e50a1ea48c497453400a3af284b7e762e4641c7946dcb595396e71feeb13b090add05bd4fd7b4196f3668ae5b2d98e2eec29583af58d09af8332520a7d79c327789163d8d8615a182ed03e54d029a2c8816342d1bf17400b17c867efab37e895bf833c765b46fdd920f032acaf158973ba32cd04905c23590e346353ae90bdd7b1644944486b7d8e623286ecc68455f", @ANYRES64=r1], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401}, 0x90) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x14, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000560000009500000000000000b27f18bc29cd79a792070dd24cc052ff8c1de7ca93afec9ae332a888d4323bc76740a6afe06750240216b6ee4c11698879490e4ef43c60448b8f77aa0aaa14655cbb92d4a3549ebc234a0bd36a602ee6c3fc5a745b488193fbff9a0900"], &(0x7f0000000580)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

609.490199ms ago: executing program 3 (id=4948):
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0xff)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e850000000700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = getpid()
sched_setaffinity(0x0, 0xfffffffffffffddf, &(0x7f0000000040)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000007c0)={&(0x7f00000005c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum]}}, 0x0, 0x26}, 0x20)

489.148749ms ago: executing program 2 (id=4949):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000406d041bc700000000000109022400010000000009040000010300000009210000000122070009058103"], 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r1, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
syz_usb_control_io(r0, &(0x7f00000002c0)={0x2c, &(0x7f0000000540)=ANY=[@ANYBLOB='\x00\x00\b'], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, &(0x7f0000000400)={0x2c, &(0x7f0000001080)=ANY=[@ANYBLOB="2008820000008208cf88ec8998df0fa402f859294857832535154f096bdbb65a6ab86734bbb1ee7a6686d0063b4345775dc457759d890859818ea6c96435cad83e74027b6f6cc0af9d09d862b195d2553fdb67013597ef8b877344d2642af428396bf9f2df43efed2535b95755bad7d72d44098b8f56eb343ff392004482513d33cf9251d87222ec969f44d3a442fcd9ce8c0c9d1df258188128a0c34cf260dccaa4d1e210ef1ea61f968ad50555b58534ef832d79cba0473e034a52ee8e757d6ca37ed4758f6d2146a5d84399599d33b370750b89f82c640a6caedeac81e95e2ac1b361b01020260ce2af7cd5db46fa2fe703e3a142d1e044d4f7e02b78ff2f8e69f515cd96e80d8a4881aec54d4fd999faa937b7da6d820932bfe0a2eca07a61f758a275d9be70567e775b49351c34b76059b53553af840ef7e39dc546b97fad673fcb1acbacc45febf72256ee7a31efa0274159732f3eb4d71348e53c46c475daab10f70bf6190f55ed3deaf523c1afb27f3655d9052a62f793ba0681a8b464c6df1f4154c0e222e9e1e7a1506523a9355416e94d2af36cb7ae"], &(0x7f0000000780)=ANY=[@ANYBLOB="0003220000000203"], &(0x7f0000000080)={0x0, 0xf, 0x28, {0x5, 0xf, 0x28, 0x2, [@ssp_cap={0x20, 0x10, 0xa, 0x7, 0x5, 0x3, 0x0, 0x34, [0xff3f, 0xffc0c0, 0xc000, 0xaccf629628bf8567, 0x24869007e0442f2f]}, @ptm_cap={0x3}]}}, &(0x7f0000000340)={0x20, 0x29, 0xf, {0xf, 0x29, 0x40, 0x4, 0x20, 0x6, "17307d44", "a7609f55"}}, &(0x7f0000000380)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x1, 0x8, 0x30, 0xc1, 0xd0, 0xe1dd, 0x4}}}, &(0x7f0000000c40)={0x84, &(0x7f0000000580)={0x20, 0xa, 0x83, "c34a31151953e22466b88f0d21a13fcad387a8429d44f4bbdbfd441324ce25ed316217802a43340e6cb7dd4ec13e560c116d453dbc03b3609812b16beb835050815c9cc1037f4ae8e6875ab6128cc728866f62209c780b0168453d08f5527bb7d4851b4ca29f3384f6ca6036bfbfd24bfe943dbbbe641856d8d0f60c090d1f9005b7e1"}, &(0x7f00000004c0)={0x0, 0xa, 0x1, 0x76}, &(0x7f00000006c0)={0x0, 0x8, 0x1, 0x5}, &(0x7f0000000700)={0x20, 0x0, 0x4, {0x3, 0x1}}, &(0x7f0000000880)={0x20, 0x0, 0x8, {0x200, 0x5f, [0xff00]}}, &(0x7f00000008c0)={0x40, 0x7, 0x2, 0x5}, &(0x7f0000000900)={0x40, 0x9, 0x1, 0x8}, &(0x7f0000000940)={0x40, 0xb, 0x2, "168f"}, &(0x7f0000000980)={0x40, 0xf, 0x2, 0x84}, &(0x7f00000009c0)={0x40, 0x13, 0x6, @broadcast}, &(0x7f0000000a00)={0x40, 0x17, 0x6, @multicast}, &(0x7f0000000b00)={0x40, 0x19, 0x2, "fbb6"}, &(0x7f0000000b40)={0x40, 0x1a, 0x2, 0x7f}, &(0x7f0000000b80)={0x40, 0x1c, 0x1, 0x2}, &(0x7f0000000bc0)={0x40, 0x1e, 0x1, 0x80}, &(0x7f0000000c00)={0x40, 0x21, 0x1, 0x8}})

488.309499ms ago: executing program 0 (id=4950):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='task\x00')
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x800}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000000000001811000086cb02040a237c6cd3d21388a66544ca6e9ed4ea831e174806a66e50b1a31c88df58621e715e762842641dde3aac55089b821df7f569ed42a2a2a785f575634ce2c65c04a899443a3cabf85f54f2aa8280c7133fd290ed83e0d7ac28e380bf8b1fc050daba8515fef159d80015a0fa340c2d6390b7e2e98ff65255d413e076b94ff1fc2692f6a7b5872093ebf0a71a0fc04d2ddbfdd15455b4bd398ab2a91ae029159af3a89fc0f944db87701bb0b3b3c4ea6cdf21f13081084cd42cc02bd425d3299eafa01faa82e8000000", @ANYRES32=r2, @ANYRES32=r0], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x1e}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
io_destroy(0x0)
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r4 = inotify_init1(0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0x6, 0x3, 0xcb2, 0x9, r1, 0xd902, '\x00', 0x0, r1, 0x0, 0x2, 0x5, 0x8}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='bcache_btree_write\x00', r6}, 0x10)
fcntl$setown(r4, 0x8, 0xffffffffffffffff)
fcntl$getownex(r4, 0x10, &(0x7f0000000140)={0x0, <r7=>0x0})
r8 = syz_open_procfs(r7, &(0x7f0000000040)='fd/4\x00')
ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r8, 0x6628, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.current\x00', 0x275a, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sys_exit\x00', r9}, 0x10)
r10 = openat$ppp(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
ioctl$TUNSETOFFLOAD(r10, 0xc004743e, 0x20001400)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1a04"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x67000000}, 0x80)
ioctl$TUNSETOFFLOAD(r10, 0x4010744d, 0x20000000)
write$P9_RVERSION(r8, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000040ffff097b01000800395032303030"], 0x15)

265.249348ms ago: executing program 4 (id=4951):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'gre0\x00', <r1=>0x0})
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=@newlink={0xb8, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x88, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x78, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x3}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x4, 0x2}}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xa54, 0x18}}, @IFLA_VLAN_INGRESS_QOS={0x1c, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x4, 0x800}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x6, 0x6}}]}, @IFLA_VLAN_INGRESS_QOS={0x34, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x10000, 0x10010}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0x68}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0x95ee}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x4, 0x1}}]}]}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0xb8}, 0x1, 0xba01}, 0x0)

29.483938ms ago: executing program 1 (id=4943):
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f00000000c0)='./file2\x00', 0x0, &(0x7f0000000240)={[{@nouser_xattr}, {@four_active_logs}, {@four_active_logs}, {@noquota}, {@noflush_merge}, {@fastboot}, {@prjjquota={'prjjquota', 0x3d, '-{'}}, {@jqfmt_vfsv1}, {@extent_cache}, {@fastboot}]}, 0x1, 0x5513, &(0x7f0000000480)="$eJzs3M2LG2UYAPAn+9Fv6yIevHWgCLvQhGb7gd6qtviBLaXqwZNmkzSkTTLLJk3XPXnwKB78T6SCJ4/+DR48Cx7Eg+JNqGTeWe3qCtJmk378fjB5Zt6888zzhtLlmQkJ4Jm1kv3+ayVOxtGIWIyIExHFfqXcCpdSeCkiTkXEwgNbpRz/a+BQRByLiJOT5ClnpXzryzPj0xd+eee3b78/vHT8q29+mN+qgXl7OSL6m2n/bj/FvJPirXK8Me4WsX9+XMb0Rv92eZyneLe9UWS429idl84/10nz8807w0m82Ws0J7HTvVmMbw7SBYfjzm6e4oRbja3iuNXeKGJ3mBexs5Pybu+k/9t2bbbKfJ8U6WM02o1pvL3dTuvZvF3E5mBUjqe8eau9PYnjMpaXi2beaxV1bDzUR/xEeLc7uLOdjdtbw24+yC7U6q/U6her9a281R61z1cb/dbF89lqpzeZVh21G/1LnTzv9Nq1Zt5fy1Y7zWa1Xs9WL7c3uo1BVq/XztXOVi+slXtnsjevfZD1WtnqJL7eHdwZdXvD7Ga+laUz1rL12rlX17LT9ey9q9ez6zeuXLl6/f2PLn947bWrb79RTvpXWdnq+tn19Wr9bHW9vvb4rX/yZ/hA1v9ZWfQU1w+PpDLvAgCePPp/YB4Orv/fuhHRKMYPsv+f2BmmPl7///D0/8/2+uGR7O3/l+ZWBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAM/fj8r23ip2VdHy8HH+uHHqhPK5ExEJE3N/HYhzak3OxzLP8H/OX/1HDd5UoMkyucbjcjkXEpXL74/mD/hQAAADg6fX1p6e+SN16elmZd0HMUrpps3Di4ynlq0TE8srPU8q2MHl5cUrJin/fS7E9pWzFDawjU0qWbrktTSvb/7K4Jxx5IFRSWJhpOQAAwEzs7QRm24UAAAAwS5/PuwDmoxK7jzKLZ8H3y2/e//1A8Oieo334wgAAAAA8Ln66t/94ZdaFAAAAADNX9P9+/w8AAACebun3/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIA/2bmj27SBOA7AfxtcoFVV1AW6St9gjI7Qxz5WDJAlGIGskAWYgbxlhAgifA4KEYmQfLaV6Pskc5wFv7tD8HB36AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoEv31WZ5+//XTduc/aGdPKMBAAAALtlVm2X9ZJ7q35r735tbP5t6ERFlRFyau4/iy1nmqMmp3nh99aoPdxF1wrGNSXN9jYjfzfX4o+tPAQAAAD6v7Wq9SLP19DAfukNkcPVfKdKiTVn8ydRwERHV/CFTWnnMm2UKq7/f4/iXKa1ewJpmCktLbuNcaVepf+6nVbvpi6JIRfn++7ONHQAA6NHorOh3FgIAAECf/g7dAYZRxPNW5mkrcJKKZntvdlYDAAAAPqBi6A4AAAAAnavn/z2e/zd1/h8AAAD0L53/BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQJd21Wa5Xa0XbXP2h3byjAYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAJ/bnHQVCIAzCYO/6zmTuf1hp0NTUpAqEj78xGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgze/+8n9iapxJ5l4bS88jydqpsXVq7J0bR38YX78GAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC42J+XFAiBIIiCOeN/J33/w0qCnkGECGh4VFGLBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPii3/3yf2JqnEnmThtLxyPJ2lVj66qx96Bx9GC8/RsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC42Lmf1ziqOADgb2Z2trYqrlH2EBEFD3qx221t7U08KMGDf4IQ0m2N3fqjzcGWIuTiTXLORfQoIijxlv8h5wRyibcc9hDBszKzM8nkB7j+6Mwm+XzgzfvuMMz7vlkI+c57CQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAlEbvHsRJduiM47g4t7n3eCHrt470mfWV7dmsZXFUZ9Knw8vVD1G3uUQAAAA4P5Kyvg8h7KRrc1kfd/L6Py2vyWr+754dx2U9f7TuL/uy9s/ar7/svrg/UGc8TnbT24vDwZXjqbSe3Cyn23N/e0Urf/L5u5ck/0LiD5ZfGKX584y+2dh4r52HF+rIFgD4Ny6XfRGUvw9lfb/JxAA4N1qVwrus/5NOszkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA1GG0HJ4u4yiEMNs6iDNbe48XTurXV7Zny3ZjdXWles/sFmkI4fbicHClxrlMuwcPH92dHw4H9+sPXgkhNDX6O8X07340wcUhNPJ8BP9TEBdf9rTkczqCBn8oAQBwJqVFy+r6nXRtLjsXzYTw5/eH6//XK3GYsP7f/fjGZnWsav3fr22G06+3dO/z3oOHj95cvDd/Z3Bn8OlbV/tv96/dvH79Zi9/V9LzxgQAAID/pl20av0fzxxf/79UicOE9f8X3/a/qo6VqP9PdLDo13QmAAAA59vzr/7xe3TC+ajdDl/OLy3d74+P+5+vjo8NpPqPXShatf5PZprOCgAAAKjDaDk6tP5/qxKHCdf/n/nhpZ+q90xCCBeL9f/LC58Nb9U3nalWx58TNz1HAAAAmnWxaNX1/zTf/x/vb3mIQwhvvDaOi38DOFH9n7z/9Y/Vsar7/6/VN8WpFHfHzyPvuyG0uk1nBAAAwFn2VNGyYv+3dG3uk58vfdi2/x8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACgbn8FAAD//ygKPpc=")
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000400))
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
mknodat(r0, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
chdir(&(0x7f00000000c0)='./bus\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdir(&(0x7f0000000240)='./bus\x00', 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
renameat2(r1, &(0x7f00000001c0)='./file0\x00', r1, &(0x7f0000000200)='./bus/file0\x00', 0x0)
link(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./bus\x00')
symlink(&(0x7f00000002c0)='./bus/file0\x00', &(0x7f0000000300)='./file1\x00')
r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents64(r2, &(0x7f0000000180)=""/105, 0x69)

0s ago: executing program 4 (id=4952):
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x81}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000080)='9p_client_res\x00', r1}, 0x10)
pipe2$9p(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffffed7a00000800395032303030"], 0x15)
r4 = dup(r3)
write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r4, &(0x7f0000000bc0)=ANY=[@ANYBLOB='P'], 0x150)
getresuid(&(0x7f00000000c0), &(0x7f00000001c0), 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4, @ANYBLOB=',privport,access=', @ANYRESDEC])

kernel console output (not intermixed with test programs):

8.716973][T18540] netlink: 64066 bytes leftover after parsing attributes in process `syz.0.4727'.
[ 1268.921882][T18542] netlink: 'syz.1.4728': attribute type 1 has an invalid length.
[ 1268.947916][T18542] netlink: 216 bytes leftover after parsing attributes in process `syz.1.4728'.
[ 1268.966203][T18542] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4728'.
[ 1269.157738][T18548] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1269.164585][T18548] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1269.198876][T18548] device bridge_slave_0 entered promiscuous mode
[ 1269.216939][T18548] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1269.223782][T18548] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1269.236985][T18548] device bridge_slave_1 entered promiscuous mode
[ 1269.385441][T18548] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1269.392310][T18548] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1269.399412][T18548] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1269.406195][T18548] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1269.431670][T12269] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1269.439726][T12269] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1269.447287][T12269] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1269.467893][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1269.476310][  T304] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[ 1269.479119][ T2550] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1269.490575][ T2550] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1269.500941][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1269.509717][ T2550] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1269.516596][ T2550] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1269.524089][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1269.531963][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1269.575240][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1269.587084][T18548] device veth0_vlan entered promiscuous mode
[ 1269.602271][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1269.765251][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1269.862598][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1269.926252][  T304] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1269.946647][T18548] device veth1_macvtap entered promiscuous mode
[ 1269.956558][  T304] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1269.967532][  T304] usb 3-1: New USB device found, idVendor=046d, idProduct=c086, bcdDevice= 0.00
[ 1269.977165][  T304] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1269.988170][  T304] usb 3-1: config 0 descriptor??
[ 1270.000092][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1270.015950][   T24] audit: type=1326 audit(2000000040.510:2925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18565 comm="syz.3.4735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46aacc39f9 code=0x7ffc0000
[ 1270.016181][ T1065] usb 1-1: new high-speed USB device number 36 using dummy_hcd
[ 1270.065684][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1270.079021][   T24] audit: type=1326 audit(2000000040.510:2926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18565 comm="syz.3.4735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46aacc39f9 code=0x7ffc0000
[ 1270.084278][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1270.134242][   T24] audit: type=1326 audit(2000000040.560:2927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18565 comm="syz.3.4735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f46aacc39f9 code=0x7ffc0000
[ 1270.150767][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1270.191164][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1270.199415][   T24] audit: type=1326 audit(2000000040.560:2928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18565 comm="syz.3.4735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46aacc39f9 code=0x7ffc0000
[ 1270.266254][   T24] audit: type=1326 audit(2000000040.560:2929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18565 comm="syz.3.4735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f46aacc39f9 code=0x7ffc0000
[ 1270.316417][   T24] audit: type=1326 audit(2000000040.560:2930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18565 comm="syz.3.4735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46aacc39f9 code=0x7ffc0000
[ 1270.357244][   T24] audit: type=1326 audit(2000000040.560:2931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18565 comm="syz.3.4735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f46aacc39f9 code=0x7ffc0000
[ 1270.380641][ T1065] usb 1-1: Using ep0 maxpacket: 8
[ 1270.423920][   T24] audit: type=1326 audit(2000000040.560:2932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18565 comm="syz.3.4735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46aacc39f9 code=0x7ffc0000
[ 1270.476502][   T24] audit: type=1326 audit(2000000040.560:2933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18565 comm="syz.3.4735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f46aacc39f9 code=0x7ffc0000
[ 1270.488410][  T304] logitech-hidpp-device 0003:046D:C086.00E2: hidraw0: USB HID v0.00 Device [HID 046d:c086] on usb-dummy_hcd.2-1/input0
[ 1270.516300][ T1065] usb 1-1: config 135 has an invalid interface number: 230 but max is 0
[ 1270.522255][T18576] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option
[ 1270.524446][ T1065] usb 1-1: config 135 has an invalid descriptor of length 0, skipping remainder of the config
[ 1270.524464][ T1065] usb 1-1: config 135 has no interface number 0
[ 1270.547848][ T1065] usb 1-1: config 135 interface 230 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[ 1270.555154][T18576] EXT4-fs (loop1): error: could not find journal device path: error -2
[ 1270.581253][T18580] xt_bpf: check failed: parse error
[ 1270.695953][  T407] usb 3-1: USB disconnect, device number 25
[ 1270.716276][ T1065] usb 1-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a
[ 1270.725162][ T1065] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1270.733191][ T1065] usb 1-1: Product: syz
[ 1270.746159][ T1065] usb 1-1: Manufacturer: syz
[ 1270.750572][ T1065] usb 1-1: SerialNumber: syz
[ 1270.758389][T18576] EXT4-fs (loop1): dax option not supported
[ 1270.960178][    T7] device bridge_slave_1 left promiscuous mode
[ 1270.969747][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1270.996670][T18584] exfat: Unknown parameter 'discd'
[ 1271.022571][    T7] device bridge_slave_0 left promiscuous mode
[ 1271.048147][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1271.059818][    T7] device veth1_macvtap left promiscuous mode
[ 1271.065684][    T7] device veth0_vlan left promiscuous mode
[ 1271.410432][T18592] F2FS-fs (loop4): invalid crc value
[ 1271.421607][T18592] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1271.459744][T18592] F2FS-fs (loop4): Cannot turn on quotas: -2 on 2
[ 1271.466528][T18592] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1271.495458][T18548] attempt to access beyond end of device
[ 1271.495458][T18548] loop4: rw=2049, want=45104, limit=40427
[ 1271.536220][  T407] usb 4-1: new high-speed USB device number 50 using dummy_hcd
[ 1271.666287][  T304] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[ 1271.841506][T18602] F2FS-fs (loop4): invalid crc value
[ 1271.857107][T18602] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1271.895471][T18602] F2FS-fs (loop4): Cannot turn on quotas: -2 on 2
[ 1271.902293][T18602] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1271.916377][  T407] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1271.927310][T18602] overlayfs: failed to resolve './file1': -2
[ 1271.946182][  T407] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1271.946341][T18548] attempt to access beyond end of device
[ 1271.946341][T18548] loop4: rw=2049, want=45112, limit=40427
[ 1271.955723][  T407] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice= 0.00
[ 1271.955740][  T407] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1272.008658][  T407] usb 4-1: config 0 descriptor??
[ 1272.096469][  T304] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1272.242238][  T304] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1272.293737][  T304] usb 3-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice= 0.00
[ 1272.302866][  T304] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1272.311627][  T304] usb 3-1: config 0 descriptor??
[ 1272.319812][T18611] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1272.446221][ T1065] uvcvideo: Found UVC 0.00 device syz (18ec:3288)
[ 1272.457722][ T1065] uvcvideo: No valid video chain found.
[ 1272.472260][ T1065] usb 1-1: USB disconnect, device number 36
[ 1273.346166][ T1065] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[ 1273.986820][ T1065] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1274.042352][ T1065] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1274.096390][ T1065] usb 2-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00
[ 1274.105721][ T1065] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1274.114876][T18638] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[ 1274.123980][T18638] ext4 filesystem being mounted at /5/file1 supports timestamps until 2038 (0x7fffffff)
[ 1274.154160][ T1065] usb 2-1: config 0 descriptor??
[ 1274.397497][T18627] udc-core: couldn't find an available UDC or it's busy
[ 1274.416338][T18627] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[ 1274.436734][  T407] usbhid 4-1:0.0: can't add hid device: -71
[ 1274.442588][  T407] usbhid: probe of 4-1:0.0 failed with error -71
[ 1274.462248][  T407] usb 4-1: USB disconnect, device number 50
[ 1274.536212][  T304] usbhid 3-1:0.0: can't add hid device: -71
[ 1274.542078][  T304] usbhid: probe of 3-1:0.0 failed with error -71
[ 1274.560616][  T304] usb 3-1: USB disconnect, device number 26
[ 1274.678691][ T1065] logitech-djreceiver 0003:046D:C71B.00E3: hidraw0: USB HID v0.00 Device [HID 046d:c71b] on usb-dummy_hcd.1-1/input0
[ 1274.737584][T18647] F2FS-fs (loop0): invalid crc value
[ 1274.757236][T18647] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1274.818163][T18647] F2FS-fs (loop0): Cannot turn on quotas: -2 on 2
[ 1274.836060][T18647] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1274.872077][T18452] attempt to access beyond end of device
[ 1274.872077][T18452] loop0: rw=2049, want=45104, limit=40427
[ 1274.877961][ T1065] usb 2-1: USB disconnect, device number 18
[ 1274.903867][T18651] overlayfs: failed to resolve './file1': -2
[ 1275.277721][T18667] syz.2.4758[18667] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1275.277782][T18667] syz.2.4758[18667] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1275.721584][T18673] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 1275.755102][T18673] EXT4-fs error (device loop4): __ext4_iget:4958: inode #11: block 1: comm syz.4.4760: invalid block
[ 1275.767521][T18673] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.4760: couldn't read orphan inode 11 (err -117)
[ 1275.780254][T18673] EXT4-fs (loop4): mounted filesystem without journal. Opts: noauto_da_alloc,user_xattr,max_dir_size_kb=0x0000000000000009,inode_readahead_blks=0x0000000000010000,jqfmt=vfsv0,delalloc,inode_readahead_blks=0x0000000000400000,noauto_da_alloc,test_dummy_encryption,,errors=continue
[ 1276.572903][T18680] syz.4.4760[18680] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1276.573928][T18680] syz.4.4760[18680] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1276.893926][   T24] kauditd_printk_skb: 6 callbacks suppressed
[ 1276.893940][   T24] audit: type=1326 audit(2000000047.140:2940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18678 comm="syz.3.4761" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f46aacc39f9 code=0x0
[ 1277.692813][ T1065] usb 4-1: new high-speed USB device number 51 using dummy_hcd
[ 1277.956681][T11299] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1278.667347][T18704] F2FS-fs (loop4): invalid crc value
[ 1278.679645][T18704] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1278.715028][T18704] F2FS-fs (loop4): Cannot turn on quotas: -2 on 2
[ 1278.721805][T18704] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1278.726208][ T1065] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1278.751927][ T1065] usb 4-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00
[ 1278.761158][ T1065] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1278.776441][ T1065] usb 4-1: config 0 descriptor??
[ 1278.777850][T18548] attempt to access beyond end of device
[ 1278.777850][T18548] loop4: rw=2049, want=45104, limit=40427
[ 1278.816718][ T1065] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[ 1279.211834][T18720] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[ 1279.221668][T18720] ext4 filesystem being mounted at /14/file1 supports timestamps until 2038 (0x7fffffff)
[ 1279.254724][   T24] audit: type=1326 audit(2000000049.750:2941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18719 comm="syz.0.4771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66dae129f9 code=0x7ffc0000
[ 1279.317896][   T24] audit: type=1326 audit(2000000049.750:2942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18719 comm="syz.0.4771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f66dae129f9 code=0x7ffc0000
[ 1279.361756][   T24] audit: type=1326 audit(2000000049.750:2943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18719 comm="syz.0.4771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66dae129f9 code=0x7ffc0000
[ 1279.398485][  T407] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[ 1279.407189][   T24] audit: type=1326 audit(2000000049.750:2944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18719 comm="syz.0.4771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7f66dae129f9 code=0x7ffc0000
[ 1279.430552][   T24] audit: type=1326 audit(2000000049.750:2945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18719 comm="syz.0.4771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66dae129f9 code=0x7ffc0000
[ 1279.454035][   T24] audit: type=1326 audit(2000000049.750:2946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18719 comm="syz.0.4771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f66dae129f9 code=0x7ffc0000
[ 1279.477312][   T24] audit: type=1326 audit(2000000049.750:2947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18719 comm="syz.0.4771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66dae129f9 code=0x7ffc0000
[ 1279.500606][   T24] audit: type=1326 audit(2000000049.750:2948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18719 comm="syz.0.4771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f66dae129f9 code=0x7ffc0000
[ 1279.524055][   T24] audit: type=1326 audit(2000000049.750:2949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18719 comm="syz.0.4771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66dae129f9 code=0x7ffc0000
[ 1279.639798][T18729] EXT4-fs (loop0): Test dummy encryption mode enabled
[ 1279.652764][T18729] EXT4-fs error (device loop0): __ext4_iget:4958: inode #11: block 1: comm syz.0.4772: invalid block
[ 1279.663762][T18729] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.4772: couldn't read orphan inode 11 (err -117)
[ 1279.675747][T18729] EXT4-fs (loop0): mounted filesystem without journal. Opts: noauto_da_alloc,user_xattr,max_dir_size_kb=0x0000000000000009,inode_readahead_blks=0x0000000000010000,jqfmt=vfsv0,delalloc,inode_readahead_blks=0x0000000000400000,noauto_da_alloc,test_dummy_encryption,,errors=continue
[ 1279.761964][   T25] Bluetooth: hci0: command 0x1003 tx timeout
[ 1279.768173][   T40] Bluetooth: hci0: sending frame failed (-49)
[ 1279.909834][T18733] syz.0.4772[18733] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1279.910218][T18733] syz.0.4772[18733] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1279.986544][  T407] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1280.059429][  T407] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1280.079800][  T407] usb 5-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00
[ 1280.098712][  T407] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1280.107912][  T407] usb 5-1: config 0 descriptor??
[ 1280.114860][   T25] usb 4-1: USB disconnect, device number 51
[ 1280.227275][T18743] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1280.238608][T18743] EXT4-fs error (device loop1): __ext4_iget:4958: inode #11: block 1: comm syz.1.4775: invalid block
[ 1280.250383][T18743] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.4775: couldn't read orphan inode 11 (err -117)
[ 1280.266352][T18743] EXT4-fs (loop1): mounted filesystem without journal. Opts: noauto_da_alloc,user_xattr,max_dir_size_kb=0x0000000000000009,inode_readahead_blks=0x0000000000010000,jqfmt=vfsv0,delalloc,inode_readahead_blks=0x0000000000400000,noauto_da_alloc,test_dummy_encryption,,errors=continue
[ 1280.298818][T18735] blk_update_request: I/O error, dev loop7, sector 5512 op 0x0:(READ) flags 0x80700 phys_seg 17 prio class 0
[ 1280.378202][T18716] udc-core: couldn't find an available UDC or it's busy
[ 1280.384959][T18716] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[ 1280.457804][T18747] syz.1.4775[18747] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1280.457845][T18747] syz.1.4775[18747] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1280.489759][T18751] erofs: (device loop0): mounted with root inode @ nid 36.
[ 1280.526944][T18751] attempt to access beyond end of device
[ 1280.526944][T18751] loop0: rw=0, want=32, limit=16
[ 1280.538038][T18751] attempt to access beyond end of device
[ 1280.538038][T18751] loop0: rw=0, want=32, limit=16
[ 1280.548840][T18751] attempt to access beyond end of device
[ 1280.548840][T18751] loop0: rw=0, want=32, limit=16
[ 1280.618039][  T407] logitech-djreceiver 0003:046D:C71B.00E4: hidraw0: USB HID v0.00 Device [HID 046d:c71b] on usb-dummy_hcd.4-1/input0
[ 1280.690703][ T1628] usb 4-1: new high-speed USB device number 52 using dummy_hcd
[ 1280.817813][T11299] Bluetooth: hci1: Frame reassembly failed (-84)
[ 1280.827943][T11299] Bluetooth: hci1: Frame reassembly failed (-84)
[ 1280.956281][ T1628] usb 4-1: Using ep0 maxpacket: 32
[ 1280.979870][  T407] usb 5-1: USB disconnect, device number 32
[ 1281.096205][ T1628] usb 4-1: config 0 has an invalid descriptor of length 129, skipping remainder of the config
[ 1281.113966][ T1628] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1281.129569][ T1628] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2c2e, bcdDevice= 0.00
[ 1281.138752][ T1628] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1281.150679][ T1628] usb 4-1: config 0 descriptor??
[ 1281.188318][ T1628] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[ 1281.213370][T18760] FAULT_INJECTION: forcing a failure.
[ 1281.213370][T18760] name failslab, interval 1, probability 0, space 0, times 0
[ 1281.225819][T18760] CPU: 0 PID: 18760 Comm: syz.1.4780 Tainted: G        W         5.10.223-syzkaller-01561-g0890c03b8b7d #0
[ 1281.241392][T18760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1281.251280][T18760] Call Trace:
[ 1281.254414][T18760]  dump_stack_lvl+0x1e2/0x24b
[ 1281.258918][T18760]  ? panic+0x812/0x812
[ 1281.262825][T18760]  ? bfq_pos_tree_add_move+0x43b/0x43b
[ 1281.268120][T18760]  dump_stack+0x15/0x17
[ 1281.272110][T18760]  should_fail+0x3c6/0x510
[ 1281.276371][T18760]  ? alloc_skb_with_frags+0xa1/0x570
[ 1281.281488][T18760]  __should_failslab+0xa4/0xe0
[ 1281.286085][T18760]  should_failslab+0x9/0x20
[ 1281.290688][T18760]  __kmalloc_track_caller+0x5f/0x320
[ 1281.296030][T18760]  ? kmem_cache_alloc+0x168/0x2e0
[ 1281.300940][T18760]  ? __alloc_skb+0x80/0x510
[ 1281.305265][T18760]  ? alloc_skb_with_frags+0xa1/0x570
[ 1281.310399][T18760]  __alloc_skb+0xbc/0x510
[ 1281.314556][T18760]  ? iov_iter_advance+0x258/0xb20
[ 1281.319418][T18760]  alloc_skb_with_frags+0xa1/0x570
[ 1281.324357][T18760]  ? 0xffffffffa002c000
[ 1281.328358][T18760]  ? _copy_from_iter_full+0xa20/0xa20
[ 1281.333566][T18760]  sock_alloc_send_pskb+0x915/0xa50
[ 1281.338609][T18760]  ? sock_kzfree_s+0x60/0x60
[ 1281.343024][T18760]  ? copyin+0x90/0x90
[ 1281.346842][T18760]  packet_sendmsg+0x39a2/0x60a0
[ 1281.351756][T18760]  ? kasan_set_track+0x4b/0x70
[ 1281.356423][T18760]  ? kasan_set_free_info+0x23/0x40
[ 1281.361371][T18760]  ? avc_has_perm+0x14d/0x400
[ 1281.365973][T18760]  ? kstrtouint_from_user+0x20a/0x2a0
[ 1281.371179][T18760]  ? memset+0x35/0x40
[ 1281.375007][T18760]  ? selinux_socket_sendmsg+0x243/0x340
[ 1281.380383][T18760]  ? selinux_socket_accept+0x5b0/0x5b0
[ 1281.385676][T18760]  ? packet_getsockopt+0xea0/0xea0
[ 1281.390633][T18760]  ? check_stack_object+0xf4/0x130
[ 1281.395567][T18760]  ? security_socket_sendmsg+0x82/0xb0
[ 1281.400860][T18760]  ? packet_getsockopt+0xea0/0xea0
[ 1281.405809][T18760]  __sys_sendto+0x545/0x700
[ 1281.410157][T18760]  ? __ia32_sys_getpeername+0x90/0x90
[ 1281.415447][T18760]  ? __ia32_sys_read+0x90/0x90
[ 1281.420131][T18760]  __x64_sys_sendto+0xe5/0x100
[ 1281.425004][T18760]  do_syscall_64+0x34/0x70
[ 1281.429257][T18760]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1281.435186][T18760] RIP: 0033:0x7f91c27439f9
[ 1281.439439][T18760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1281.458877][T18760] RSP: 002b:00007f91c13c1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 1281.467119][T18760] RAX: ffffffffffffffda RBX: 00007f91c28dff80 RCX: 00007f91c27439f9
[ 1281.474934][T18760] RDX: 000000000000e90c RSI: 00000000200000c0 RDI: 0000000000000003
[ 1281.482828][T18760] RBP: 00007f91c13c1090 R08: 0000000020000540 R09: 0000000000000014
[ 1281.490642][T18760] R10: 0000000028000000 R11: 0000000000000246 R12: 0000000000000001
[ 1281.498454][T18760] R13: 0000000000000000 R14: 00007f91c28dff80 R15: 00007ffea9566f88
[ 1281.762212][T18767] overlayfs: failed to resolve './file1': -2
[ 1281.796386][ T1628] Bluetooth: hci0: command 0x1001 tx timeout
[ 1281.808886][ T1694] Bluetooth: hci0: sending frame failed (-49)
[ 1282.121449][ T1065] usb 4-1: USB disconnect, device number 52
[ 1282.344034][T18774] syz.3.4783[18774] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1282.344491][T18774] syz.3.4783[18774] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1282.520524][   T24] kauditd_printk_skb: 16 callbacks suppressed
[ 1282.520536][   T24] audit: type=1400 audit(2000000053.020:2966): avc:  denied  { unmount } for  pid=18502 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[ 1282.846170][T10452] Bluetooth: hci1: command 0x1003 tx timeout
[ 1282.852111][ T1694] Bluetooth: hci1: sending frame failed (-49)
[ 1283.025529][T18781] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18781 comm=syz.3.4785
[ 1283.594720][T18792] FAT-fs (loop1): Directory bread(block 64) failed
[ 1283.601711][T18792] FAT-fs (loop1): Directory bread(block 65) failed
[ 1283.609354][T18792] FAT-fs (loop1): Directory bread(block 66) failed
[ 1283.615831][T18792] FAT-fs (loop1): Directory bread(block 67) failed
[ 1283.623330][T18792] FAT-fs (loop1): Directory bread(block 68) failed
[ 1283.630229][T18792] FAT-fs (loop1): Directory bread(block 69) failed
[ 1283.638911][T18792] FAT-fs (loop1): Directory bread(block 70) failed
[ 1283.645606][T18792] FAT-fs (loop1): Directory bread(block 71) failed
[ 1283.652953][T18792] FAT-fs (loop1): Directory bread(block 72) failed
[ 1283.659890][T18792] FAT-fs (loop1): Directory bread(block 73) failed
[ 1283.876232][   T25] Bluetooth: hci0: command 0x1009 tx timeout
[ 1283.916016][T18502] FAT-fs (loop1): error, corrupted directory (invalid entries)
[ 1283.923523][T18502] FAT-fs (loop1): Filesystem has been set read-only
[ 1283.930257][T18502] FAT-fs (loop1): error, corrupted directory (invalid entries)
[ 1284.084511][T18798] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1284.091419][T18798] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1284.098594][T18798] device bridge_slave_0 entered promiscuous mode
[ 1284.107567][T18798] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1284.114392][T18798] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1284.122597][T18798] device bridge_slave_1 entered promiscuous mode
[ 1284.169785][T18798] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1284.176647][T18798] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1284.183715][T18798] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1284.190528][T18798] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1284.214994][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1284.222590][ T1065] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1284.230443][ T1065] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1284.248264][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1284.256689][ T2550] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1284.263533][ T2550] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1284.270952][T12269] usb 4-1: new high-speed USB device number 53 using dummy_hcd
[ 1284.278669][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1284.287316][ T2550] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1284.294134][ T2550] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1284.301589][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1284.316580][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1284.332635][T18798] device veth0_vlan entered promiscuous mode
[ 1284.340214][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1284.349187][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1284.357105][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1284.364367][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1284.378812][T18798] device veth1_macvtap entered promiscuous mode
[ 1284.389970][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1284.404341][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1284.413108][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1284.556800][    T7] device bridge_slave_1 left promiscuous mode
[ 1284.562785][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1284.570497][    T7] device bridge_slave_0 left promiscuous mode
[ 1284.576664][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1284.584456][    T7] device veth1_macvtap left promiscuous mode
[ 1284.591008][    T7] device veth0_vlan left promiscuous mode
[ 1284.646315][T12269] usb 4-1: config 0 has an invalid interface number: 6 but max is 0
[ 1284.654233][T12269] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1284.665649][T12269] usb 4-1: config 0 has no interface number 0
[ 1284.674809][T12269] usb 4-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d
[ 1284.684042][T12269] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1284.694153][T12269] usb 4-1: config 0 descriptor??
[ 1284.716166][  T407] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[ 1284.916158][T10452] Bluetooth: hci1: command 0x1001 tx timeout
[ 1284.921994][ T1694] Bluetooth: hci1: sending frame failed (-49)
[ 1284.938578][T12269] usb 4-1: USB disconnect, device number 53
[ 1285.096235][  T407] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1285.106925][  T407] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1285.116901][  T407] usb 2-1: New USB device found, idVendor=046d, idProduct=c086, bcdDevice= 0.00
[ 1285.125724][  T407] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1285.134447][  T407] usb 2-1: config 0 descriptor??
[ 1285.686177][  T407] usbhid 2-1:0.0: can't add hid device: -71
[ 1285.691973][  T407] usbhid: probe of 2-1:0.0 failed with error -71
[ 1285.704260][  T407] usb 2-1: USB disconnect, device number 19
[ 1286.347899][T18810] F2FS-fs (loop1): invalid crc value
[ 1286.377816][T18810] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1286.421149][T18810] F2FS-fs (loop1): Cannot turn on quotas: -2 on 2
[ 1286.436579][T18810] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1286.487813][T18810] overlayfs: failed to resolve './file1': -2
[ 1286.504950][T18798] attempt to access beyond end of device
[ 1286.504950][T18798] loop1: rw=2049, want=45112, limit=40427
[ 1286.996201][  T304] Bluetooth: hci1: command 0x1009 tx timeout
[ 1287.126222][  T407] usb 4-1: new high-speed USB device number 54 using dummy_hcd
[ 1287.424212][T18826] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1287.431140][T18826] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1287.438680][T18826] device bridge_slave_0 entered promiscuous mode
[ 1287.445559][T18826] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1287.452776][T18826] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1287.460172][T18826] device bridge_slave_1 entered promiscuous mode
[ 1287.486220][  T407] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 178, changing to 11
[ 1287.503461][  T407] usb 4-1: New USB device found, idVendor=0126, idProduct=3333, bcdDevice= 0.40
[ 1287.521652][  T407] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1287.537145][T18826] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1287.544006][T18826] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1287.551100][T18826] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1287.557882][T18826] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1287.568713][  T407] usb 4-1: config 0 descriptor??
[ 1287.612982][T12269] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1287.620835][T12269] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1287.630195][T12269] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1287.637736][T12269] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1287.656438][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1287.664417][ T1065] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1287.671263][ T1065] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1287.687506][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1287.695823][ T1065] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1287.702674][ T1065] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1287.710215][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1287.718075][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1287.738202][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1287.746639][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1287.754357][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1287.762013][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1287.770623][T18826] device veth0_vlan entered promiscuous mode
[ 1287.783776][T18826] device veth1_macvtap entered promiscuous mode
[ 1287.790926][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1287.807666][  T306] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1287.816880][  T306] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1288.060513][ T7864] Bluetooth: hci2: sending frame failed (-49)
[ 1289.476225][  T407] usbhid 4-1:0.0: can't add hid device: -71
[ 1289.484404][  T407] usbhid: probe of 4-1:0.0 failed with error -71
[ 1289.494675][T18849] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1289.505766][  T407] usb 4-1: USB disconnect, device number 54
[ 1289.512802][T18849] EXT4-fs error (device loop1): __ext4_iget:4958: inode #11: block 1: comm syz.1.4802: invalid block
[ 1289.534749][T18849] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.4802: couldn't read orphan inode 11 (err -117)
[ 1289.557755][T18849] EXT4-fs (loop1): mounted filesystem without journal. Opts: noauto_da_alloc,user_xattr,max_dir_size_kb=0x0000000000000009,inode_readahead_blks=0x0000000000010000,jqfmt=vfsv0,delalloc,inode_readahead_blks=0x0000000000400000,noauto_da_alloc,test_dummy_encryption,,errors=continue
[ 1290.116161][  T304] Bluetooth: hci2: command 0x1003 tx timeout
[ 1290.122012][T14823] Bluetooth: hci2: sending frame failed (-49)
[ 1290.479833][T18861] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4803'.
[ 1290.488588][T18861] netlink: 52 bytes leftover after parsing attributes in process `syz.3.4803'.
[ 1290.829866][T18860] F2FS-fs (loop1): invalid crc value
[ 1290.852142][T18860] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1290.899973][T18860] F2FS-fs (loop1): Cannot turn on quotas: -2 on 1
[ 1290.914441][T18860] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1290.978928][T18869] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1290.985807][T18869] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1290.993098][T18869] device bridge_slave_0 entered promiscuous mode
[ 1291.001087][T18869] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1291.008405][T18869] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1291.015719][T18869] device bridge_slave_1 entered promiscuous mode
[ 1291.070638][T18869] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1291.077500][T18869] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1291.084572][T18869] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1291.091388][T18869] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1291.115354][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1291.146275][  T304] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1291.166406][  T304] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1291.191888][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1291.253924][  T407] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1291.260807][  T407] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1291.268139][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1291.276353][  T407] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1291.283169][  T407] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1291.296328][T12269] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1291.303915][  T306] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[ 1291.311807][T12269] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1291.566255][ T8360] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1291.577252][T18869] device veth0_vlan entered promiscuous mode
[ 1291.586271][ T8360] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1291.594139][ T8360] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1291.601948][ T8360] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1291.628149][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1291.637918][T18869] device veth1_macvtap entered promiscuous mode
[ 1291.650628][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1291.659273][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1291.767286][T18883] netlink: 40 bytes leftover after parsing attributes in process `syz.0.4805'.
[ 1291.786619][T18882] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1291.793561][T18882] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1291.801324][T18882] device bridge_slave_0 entered promiscuous mode
[ 1291.811000][T18882] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1291.818094][T18882] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1291.825358][T18882] device bridge_slave_1 entered promiscuous mode
[ 1291.876307][  T306] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[ 1291.880171][T18882] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1291.894261][T18882] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1291.896149][  T306] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[ 1291.901421][T18882] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1291.919107][T18882] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1291.926267][  T306] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1291.939240][  T306] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1291.948251][  T306] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1291.957025][ T1512] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1291.959793][  T306] usb 2-1: config 0 descriptor??
[ 1291.968750][ T1512] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1291.977340][    T7] device bridge_slave_1 left promiscuous mode
[ 1291.983335][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1291.991381][    T7] device bridge_slave_0 left promiscuous mode
[ 1291.996247][T18860] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[ 1291.997410][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1292.012281][    T7] device veth1_macvtap left promiscuous mode
[ 1292.020632][    T7] device veth0_vlan left promiscuous mode
[ 1292.166025][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1292.173730][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1292.192305][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1292.200816][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1292.206202][T12269] Bluetooth: hci2: command 0x1001 tx timeout
[ 1292.209504][  T304] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1292.221304][  T304] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1292.226322][   T40] Bluetooth: hci2: sending frame failed (-49)
[ 1292.236760][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1292.245770][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1292.253895][  T304] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1292.260753][  T304] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1292.268172][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1292.276067][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1292.284129][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1292.292187][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1292.307923][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1292.316013][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1292.328043][T18882] device veth0_vlan entered promiscuous mode
[ 1292.336676][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1292.344352][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1292.356708][T18882] device veth1_macvtap entered promiscuous mode
[ 1292.368258][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1292.375910][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1292.383608][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1292.391925][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1292.401073][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1292.409083][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1292.416152][ T8360] usb 4-1: new high-speed USB device number 55 using dummy_hcd
[ 1292.417350][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1292.444776][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1292.462432][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1292.677184][ T8360] usb 4-1: Using ep0 maxpacket: 16
[ 1292.796213][  T306] usbhid 2-1:0.0: can't add hid device: -71
[ 1292.803127][  T306] usbhid: probe of 2-1:0.0 failed with error -71
[ 1292.847625][T18896] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[ 1292.856489][T18896] ext4 filesystem being mounted at /1/file1 supports timestamps until 2038 (0x7fffffff)
[ 1292.874825][  T306] usb 2-1: USB disconnect, device number 20
[ 1292.936231][ T8360] usb 4-1: config index 0 descriptor too short (expected 26148, got 36)
[ 1292.947747][ T8360] usb 4-1: config 130 has too many interfaces: 198, using maximum allowed: 32
[ 1292.956966][ T8360] usb 4-1: config 130 has an invalid descriptor of length 193, skipping remainder of the config
[ 1292.967502][ T8360] usb 4-1: config 130 has 0 interfaces, different from the descriptor's value: 198
[ 1293.156396][ T8360] usb 4-1: New USB device found, idVendor=056a, idProduct=0035, bcdDevice= 0.40
[ 1293.166590][ T8360] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1293.174383][ T8360] usb 4-1: Product: syz
[ 1293.178823][ T8360] usb 4-1: Manufacturer: syz
[ 1293.183219][ T8360] usb 4-1: SerialNumber: syz
[ 1293.256898][    T7] device bridge_slave_1 left promiscuous mode
[ 1293.262908][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1293.270524][    T7] device bridge_slave_0 left promiscuous mode
[ 1293.276904][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1293.276926][T18798] attempt to access beyond end of device
[ 1293.276926][T18798] loop1: rw=2049, want=45104, limit=40427
[ 1293.295705][    T7] device veth1_macvtap left promiscuous mode
[ 1293.306804][    T7] device veth0_vlan left promiscuous mode
[ 1293.486821][ T8360] usb 4-1: USB disconnect, device number 55
[ 1293.516966][T18905] EXT4-fs (loop0): Unrecognized mount option "smackfsdef=max_batch_time" or missing value
[ 1293.686257][  T306] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[ 1293.801844][T18910] F2FS-fs (loop1): invalid crc value
[ 1293.811705][T18910] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1293.847828][T18910] F2FS-fs (loop1): Cannot turn on quotas: -2 on 1
[ 1293.854670][T18910] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1293.956157][  T306] usb 5-1: Using ep0 maxpacket: 32
[ 1294.096266][  T306] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1294.112434][  T306] usb 5-1: New USB device found, idVendor=0461, idProduct=4e72, bcdDevice= 0.00
[ 1294.130012][  T306] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1294.147194][  T306] usb 5-1: config 0 descriptor??
[ 1294.216204][ T8360] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[ 1294.276423][ T1065] Bluetooth: hci2: command 0x1009 tx timeout
[ 1294.606261][ T8360] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[ 1294.617439][ T8360] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[ 1294.629562][  T306] hid-rmi 0003:0461:4E72.00E5: unknown main item tag 0x0
[ 1294.636926][  T306] hid-rmi 0003:0461:4E72.00E5: unknown main item tag 0x0
[ 1294.643861][ T8360] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1294.656784][  T306] hid-rmi 0003:0461:4E72.00E5: unknown main item tag 0x0
[ 1294.663652][ T8360] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1294.672748][  T306] hid-rmi 0003:0461:4E72.00E5: unknown main item tag 0x0
[ 1294.679744][  T306] hid-rmi 0003:0461:4E72.00E5: unknown main item tag 0x0
[ 1294.686854][ T8360] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1294.696032][  T306] hid-rmi 0003:0461:4E72.00E5: hidraw0: USB HID v0.00 Device [HID 0461:4e72] on usb-dummy_hcd.4-1/input0
[ 1294.711090][ T8360] usb 2-1: config 0 descriptor??
[ 1294.726241][T18910] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[ 1294.832211][  T306] usb 5-1: USB disconnect, device number 33
[ 1295.176168][ T1065] usb 1-1: new high-speed USB device number 37 using dummy_hcd
[ 1295.446222][ T8360] usbhid 2-1:0.0: can't add hid device: -71
[ 1295.452014][ T8360] usbhid: probe of 2-1:0.0 failed with error -71
[ 1295.461876][ T8360] usb 2-1: USB disconnect, device number 21
[ 1295.556220][ T1065] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1295.567215][ T1065] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1295.577177][ T1065] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice= 0.00
[ 1295.586106][ T1065] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1295.597589][ T1065] usb 1-1: config 0 descriptor??
[ 1295.636159][ T1512] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[ 1295.910764][ T1512] usb 5-1: Using ep0 maxpacket: 32
[ 1295.924030][T18798] attempt to access beyond end of device
[ 1295.924030][T18798] loop1: rw=2049, want=45104, limit=40427
[ 1296.036458][ T1512] usb 5-1: config 0 has an invalid interface number: 155 but max is 0
[ 1296.091065][ T1512] usb 5-1: config 0 has no interface number 0
[ 1296.119776][ T1512] usb 5-1: config 0 interface 155 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1296.167097][ T1512] usb 5-1: config 0 interface 155 altsetting 0 has an invalid endpoint with address 0x0, skipping
[ 1296.386348][ T1512] usb 5-1: New USB device found, idVendor=05d1, idProduct=1002, bcdDevice=c5.61
[ 1296.401751][ T1512] usb 5-1: New USB device strings: Mfr=225, Product=1, SerialNumber=3
[ 1296.410772][ T1512] usb 5-1: Product: syz
[ 1296.414871][ T1512] usb 5-1: Manufacturer: syz
[ 1296.420718][ T1512] usb 5-1: SerialNumber: syz
[ 1296.444257][ T1512] usb 5-1: config 0 descriptor??
[ 1296.491616][ T1512] ftdi_sio 5-1:0.155: FTDI USB Serial Device converter detected
[ 1296.501310][ T1512] usb 5-1: Detected FT-X
[ 1296.505555][ T1512] ftdi_sio ttyUSB0: Overriding wMaxPacketSize on endpoint 3
[ 1296.706308][ T1512] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[ 1296.726227][ T1512] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[ 1296.746315][ T1512] ftdi_sio 5-1:0.155: GPIO initialisation failed: -71
[ 1296.755579][ T1512] usb 5-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1296.789889][ T1512] usb 5-1: USB disconnect, device number 34
[ 1296.817136][ T1512] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1296.835797][ T1512] ftdi_sio 5-1:0.155: device disconnected
[ 1296.916171][  T306] Bluetooth: hci0: command 0x1003 tx timeout
[ 1296.922221][T14823] Bluetooth: hci0: sending frame failed (-49)
[ 1297.138201][T18941] FAULT_INJECTION: forcing a failure.
[ 1297.138201][T18941] name failslab, interval 1, probability 0, space 0, times 0
[ 1297.150796][T18941] CPU: 1 PID: 18941 Comm: syz.1.4819 Tainted: G        W         5.10.223-syzkaller-01561-g0890c03b8b7d #0
[ 1297.161953][T18941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1297.171846][T18941] Call Trace:
[ 1297.174981][T18941]  dump_stack_lvl+0x1e2/0x24b
[ 1297.179492][T18941]  ? bfq_pos_tree_add_move+0x43b/0x43b
[ 1297.184781][T18941]  dump_stack+0x15/0x17
[ 1297.188773][T18941]  should_fail+0x3c6/0x510
[ 1297.193036][T18941]  ? sk_prot_alloc+0xbe/0x370
[ 1297.197541][T18941]  __should_failslab+0xa4/0xe0
[ 1297.202169][T18941]  should_failslab+0x9/0x20
[ 1297.206483][T18941]  __kmalloc+0x60/0x330
[ 1297.210476][T18941]  sk_prot_alloc+0xbe/0x370
[ 1297.214813][T18941]  sk_alloc+0x38/0x4d0
[ 1297.218718][T18941]  ? bpf_ctx_init+0x16e/0x1c0
[ 1297.223234][T18941]  bpf_prog_test_run_skb+0x35c/0x1410
[ 1297.228445][T18941]  ? __bpf_prog_test_run_raw_tp+0x240/0x240
[ 1297.234170][T18941]  ? __kasan_check_write+0x14/0x20
[ 1297.239127][T18941]  ? fput_many+0x160/0x1b0
[ 1297.243384][T18941]  ? __bpf_prog_test_run_raw_tp+0x240/0x240
[ 1297.249104][T18941]  __se_sys_bpf+0x5235/0x11cb0
[ 1297.253701][T18941]  ? stack_trace_save+0x113/0x1c0
[ 1297.258571][T18941]  ? terminate_walk+0x407/0x4f0
[ 1297.263247][T18941]  ? stack_trace_snprint+0xf0/0xf0
[ 1297.268193][T18941]  ? kmem_cache_free+0xa9/0x1e0
[ 1297.272877][T18941]  ? kmem_cache_free+0xa9/0x1e0
[ 1297.277564][T18941]  ? kasan_set_track+0x5d/0x70
[ 1297.282163][T18941]  ? __x64_sys_bpf+0x90/0x90
[ 1297.286589][T18941]  ? __kasan_slab_free+0x11/0x20
[ 1297.291363][T18941]  ? slab_free_freelist_hook+0xc0/0x190
[ 1297.296746][T18941]  ? kmem_cache_free+0xa9/0x1e0
[ 1297.301432][T18941]  ? putname+0xe7/0x140
[ 1297.305423][T18941]  ? do_sys_openat2+0x1fc/0x710
[ 1297.310118][T18941]  ? __x64_sys_openat+0x243/0x290
[ 1297.314981][T18941]  ? do_syscall_64+0x34/0x70
[ 1297.319409][T18941]  ? _kstrtoull+0x3a0/0x4a0
[ 1297.323739][T18941]  ? kstrtouint_from_user+0x20a/0x2a0
[ 1297.328944][T18941]  ? kstrtol_from_user+0x310/0x310
[ 1297.333894][T18941]  ? memset+0x35/0x40
[ 1297.337713][T18941]  ? __fsnotify_parent+0x4b9/0x6c0
[ 1297.342661][T18941]  ? __fsnotify_update_child_dentry_flags+0x2b0/0x2b0
[ 1297.349257][T18941]  ? proc_fail_nth_write+0x20b/0x290
[ 1297.354375][T18941]  ? __kasan_check_write+0x14/0x20
[ 1297.359333][T18941]  ? _raw_spin_lock_irqsave+0xf9/0x210
[ 1297.364618][T18941]  ? rw_verify_area+0x1c3/0x360
[ 1297.369305][T18941]  ? _raw_spin_lock+0x1b0/0x1b0
[ 1297.374002][T18941]  ? vfs_write+0x852/0xe70
[ 1297.378268][T18941]  ? queue_stack_map_push_elem+0x31c/0x550
[ 1297.383896][T18941]  ? _raw_spin_unlock_irqrestore+0x5b/0x80
[ 1297.389548][T18941]  ? queue_stack_map_push_elem+0x37d/0x550
[ 1297.395174][T18941]  ? mutex_lock+0xa5/0x110
[ 1297.399424][T18941]  ? queue_stack_map_delete_elem+0x10/0x10
[ 1297.405068][T18941]  ? bpf_trace_run2+0xf4/0x280
[ 1297.409672][T18941]  ? __bpf_trace_sys_enter+0x62/0x70
[ 1297.414784][T18941]  __x64_sys_bpf+0x7b/0x90
[ 1297.419043][T18941]  do_syscall_64+0x34/0x70
[ 1297.423290][T18941]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1297.429018][T18941] RIP: 0033:0x7fabdd21b9f9
[ 1297.433273][T18941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1297.452710][T18941] RSP: 002b:00007fabdbe99038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1297.460958][T18941] RAX: ffffffffffffffda RBX: 00007fabdd3b7f80 RCX: 00007fabdd21b9f9
[ 1297.468767][T18941] RDX: 0000000000000050 RSI: 0000000020000180 RDI: 000000000000000a
[ 1297.476579][T18941] RBP: 00007fabdbe99090 R08: 0000000000000000 R09: 0000000000000000
[ 1297.484389][T18941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1297.492203][T18941] R13: 0000000000000000 R14: 00007fabdd3b7f80 R15: 00007ffd305ff838
[ 1297.504256][   T24] audit: type=1326 audit(2000000068.010:2967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18942 comm="syz.4.4820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bd2bc69f9 code=0x7ffc0000
[ 1297.527825][   T24] audit: type=1326 audit(2000000068.010:2968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18942 comm="syz.4.4820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bd2bc69f9 code=0x7ffc0000
[ 1297.551321][   T24] audit: type=1326 audit(2000000068.010:2969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18942 comm="syz.4.4820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f7bd2bc69f9 code=0x7ffc0000
[ 1297.579259][   T24] audit: type=1326 audit(2000000068.010:2970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18942 comm="syz.4.4820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bd2bc69f9 code=0x7ffc0000
[ 1297.617559][T18943] EXT4-fs (loop4): couldn't mount as ext2 due to feature incompatibilities
[ 1297.626677][   T24] audit: type=1326 audit(2000000068.010:2971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18942 comm="syz.4.4820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7bd2bc69f9 code=0x7ffc0000
[ 1297.660320][   T24] audit: type=1326 audit(2000000068.010:2972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18942 comm="syz.4.4820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bd2bc69f9 code=0x7ffc0000
[ 1297.683887][   T24] audit: type=1326 audit(2000000068.010:2973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18942 comm="syz.4.4820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f7bd2bc69f9 code=0x7ffc0000
[ 1297.707546][   T24] audit: type=1326 audit(2000000068.010:2974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18942 comm="syz.4.4820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f7bd2bc6a33 code=0x7ffc0000
[ 1297.731290][   T24] audit: type=1326 audit(2000000068.010:2975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18942 comm="syz.4.4820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f7bd2bc54df code=0x7ffc0000
[ 1297.754964][   T24] audit: type=1326 audit(2000000068.010:2976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18942 comm="syz.4.4820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f7bd2bc6a87 code=0x7ffc0000
[ 1298.187647][T18954] 9pnet: Insufficient options for proto=fd
[ 1298.206968][ T1065] usbhid 1-1:0.0: can't add hid device: -71
[ 1298.219487][ T1065] usbhid: probe of 1-1:0.0 failed with error -71
[ 1298.232894][ T1065] usb 1-1: USB disconnect, device number 37
[ 1298.287124][T18955] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1298.293967][T18955] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1298.336482][T18957] EXT4-fs (loop0): Test dummy encryption mode enabled
[ 1298.404762][T18955] device bridge_slave_0 entered promiscuous mode
[ 1298.419272][T18955] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1298.419333][T18957] EXT4-fs error (device loop0): __ext4_iget:4958: inode #11: block 1: comm syz.0.4824: invalid block
[ 1298.436995][T18955] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1298.444227][T18955] device bridge_slave_1 entered promiscuous mode
[ 1298.450569][T18957] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.4824: couldn't read orphan inode 11 (err -117)
[ 1298.513114][T18957] EXT4-fs (loop0): mounted filesystem without journal. Opts: noauto_da_alloc,user_xattr,max_dir_size_kb=0x0000000000000009,inode_readahead_blks=0x0000000000010000,jqfmt=vfsv0,delalloc,inode_readahead_blks=0x0000000000400000,noauto_da_alloc,test_dummy_encryption,,errors=continue
[ 1298.801611][T18955] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1298.808582][T18955] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1298.815638][T18955] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1298.822459][T18955] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1298.831944][T18967] syz.0.4824[18967] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1298.832002][T18967] syz.0.4824[18967] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1298.833093][T18970] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1298.886152][T18392] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1298.893414][T18392] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1298.901290][T18970] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1298.910546][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1298.918850][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1298.939036][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1299.000380][T18392] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1299.007248][T18392] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1299.014179][ T1065] Bluetooth: hci0: command 0x1001 tx timeout
[ 1299.014690][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1299.028086][ T1694] Bluetooth: hci0: sending frame failed (-49)
[ 1299.034273][T18392] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1299.041115][T18392] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1299.060002][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1299.067809][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1299.348722][T18072] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1299.368788][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1299.377281][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1299.387018][T18955] device veth0_vlan entered promiscuous mode
[ 1299.404990][T18955] device veth1_macvtap entered promiscuous mode
[ 1299.416342][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1299.428602][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1299.438082][T18977] EXT4-fs (loop0): Mount option "noload" incompatible with ext2
[ 1299.448991][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1299.457201][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1299.465136][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1299.472843][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1299.481026][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1299.489751][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1299.498140][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1299.795245][   T25] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[ 1300.096440][T18392] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[ 1300.127110][    T7] device bridge_slave_1 left promiscuous mode
[ 1300.133529][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1300.156536][    T7] device bridge_slave_0 left promiscuous mode
[ 1300.162572][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1300.177128][    T7] device veth1_macvtap left promiscuous mode
[ 1300.183066][    T7] device veth0_vlan left promiscuous mode
[ 1300.266280][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1300.277552][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1300.287394][   T25] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice= 0.00
[ 1300.309621][   T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1300.380879][   T25] usb 5-1: config 0 descriptor??
[ 1300.486547][T18392] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1300.501385][T18991] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4830'.
[ 1300.510151][T18991] netlink: 52 bytes leftover after parsing attributes in process `syz.0.4830'.
[ 1300.567971][T18392] usb 2-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00
[ 1300.612622][T18392] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1300.647083][T18392] usb 2-1: config 0 descriptor??
[ 1300.768043][T18392] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[ 1301.076342][T10452] Bluetooth: hci0: command 0x1009 tx timeout
[ 1301.082193][T16090] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[ 1301.506621][T16090] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1301.538837][T16090] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1301.590830][T16090] usb 3-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00
[ 1301.599860][T16090] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1301.611467][T16090] usb 3-1: config 0 descriptor??
[ 1301.856894][T18996] udc-core: couldn't find an available UDC or it's busy
[ 1301.863784][T18996] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[ 1302.097984][T16090] logitech-djreceiver 0003:046D:C71B.00E6: hidraw0: USB HID v0.00 Device [HID 046d:c71b] on usb-dummy_hcd.2-1/input0
[ 1302.313128][T16090] usb 3-1: USB disconnect, device number 27
[ 1302.496182][   T25] usbhid 5-1:0.0: can't add hid device: -71
[ 1302.501983][   T25] usbhid: probe of 5-1:0.0 failed with error -71
[ 1302.509632][   T24] kauditd_printk_skb: 41 callbacks suppressed
[ 1302.509643][   T24] audit: type=1400 audit(2000000073.010:3018): avc:  denied  { load_policy } for  pid=19008 comm="syz.4.4835" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[ 1302.535954][T19009] SELinux:  policydb string  does not match my string SE Linux
[ 1302.544565][   T25] usb 5-1: USB disconnect, device number 35
[ 1302.550522][T19009] SELinux: failed to load policy
[ 1302.606751][T19009] FAT-fs (loop4): bogus number of FAT sectors
[ 1302.612789][T19009] FAT-fs (loop4): Can't find a valid FAT filesystem
[ 1302.728421][T10452] usb 2-1: USB disconnect, device number 22
[ 1304.768493][T19040] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[ 1304.778009][T19040] ext4 filesystem being mounted at /16/file1 supports timestamps until 2038 (0x7fffffff)
[ 1304.926160][  T306] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[ 1305.012894][T19053] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1305.019844][T19053] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1305.027732][T19053] device bridge_slave_0 entered promiscuous mode
[ 1305.034644][T19053] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1305.042070][T19053] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1305.049522][T19053] device bridge_slave_1 entered promiscuous mode
[ 1305.102378][T19053] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1305.109258][T19053] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1305.116371][T19053] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1305.123130][T19053] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1305.149455][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1305.157814][ T2550] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1305.166556][ T2550] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1305.180453][T17993] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1305.191623][T17993] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1305.198504][T17993] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1305.220026][T17993] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1305.246378][T17993] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1305.253253][T17993] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1305.326288][  T306] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1305.357614][  T306] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1305.372762][  T306] usb 5-1: New USB device found, idVendor=056a, idProduct=00f8, bcdDevice= 4.00
[ 1305.381878][  T306] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1305.392650][  T306] usb 5-1: config 0 descriptor??
[ 1305.398962][T17993] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1305.407020][T17993] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1305.481920][   T24] audit: type=1326 audit(2000000075.980:3019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19059 comm="syz.2.4849" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f08004499f9 code=0x0
[ 1305.510751][T19058] F2FS-fs (loop0): invalid crc value
[ 1305.670298][T19053] device veth0_vlan entered promiscuous mode
[ 1305.711107][T18072] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1305.719461][T19058] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1305.729049][T18072] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1305.745615][T18072] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1305.886953][T19058] F2FS-fs (loop0): Cannot turn on quotas: -2 on 2
[ 1305.933397][T19058] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1306.015849][  T306] wacom 0003:056A:00F8.00E7: item fetching failed at offset 1/5
[ 1306.023483][T18072] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1306.032747][  T306] wacom 0003:056A:00F8.00E7: parse failed
[ 1306.040164][  T306] wacom: probe of 0003:056A:00F8.00E7 failed with error -22
[ 1306.053550][T18072] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1306.061735][T18072] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1306.072045][T18869] attempt to access beyond end of device
[ 1306.072045][T18869] loop0: rw=2049, want=45120, limit=40427
[ 1306.092192][T19053] device veth1_macvtap entered promiscuous mode
[ 1306.110255][T17993] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1306.127018][T17993] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1306.143261][T17993] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1306.193174][T19046] udc-core: couldn't find an available UDC or it's busy
[ 1306.200854][T19046] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[ 1306.210178][T19046] udc-core: couldn't find an available UDC or it's busy
[ 1306.217242][T19046] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[ 1306.228858][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1306.238756][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1306.248000][ T1512] usb 5-1: USB disconnect, device number 36
[ 1306.357640][    T7] device bridge_slave_1 left promiscuous mode
[ 1306.364631][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1306.372554][    T7] device bridge_slave_0 left promiscuous mode
[ 1306.379329][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1306.387752][    T7] device veth1_macvtap left promiscuous mode
[ 1306.393696][    T7] device veth0_vlan left promiscuous mode
[ 1306.449336][T19079] EXT4-fs error (device loop0): __ext4_iget:4958: inode #11: block 1: comm syz.0.4850: invalid block
[ 1306.461157][T19079] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.4850: couldn't read orphan inode 11 (err -117)
[ 1306.520690][ T1065] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[ 1306.528114][T19079] EXT4-fs (loop0): mounted filesystem without journal. Opts: noauto_da_alloc,minixdf,max_dir_size_kb=0x0000000000000009,data_err=abort,grpquota,noinit_itable,inode_readahead_blks=0x0000000000400000,i_version,acl,,errors=continue
[ 1306.536384][   T25] usb 4-1: new high-speed USB device number 56 using dummy_hcd
[ 1306.906234][ T1065] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1306.929952][ T1065] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1306.955105][ T1065] usb 3-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice= 0.00
[ 1306.957643][   T25] usb 4-1: Using ep0 maxpacket: 8
[ 1306.964186][ T1065] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1306.976799][  T306] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[ 1306.986988][ T1065] usb 3-1: config 0 descriptor??
[ 1306.992539][T19107] EXT4-fs (loop0): Test dummy encryption mode enabled
[ 1307.018034][T19107] EXT4-fs error (device loop0): __ext4_iget:4958: inode #11: block 1: comm syz.0.4856: invalid block
[ 1307.111975][T19107] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.4856: couldn't read orphan inode 11 (err -117)
[ 1307.124420][T19107] EXT4-fs (loop0): mounted filesystem without journal. Opts: noauto_da_alloc,user_xattr,max_dir_size_kb=0x0000000000000009,inode_readahead_blks=0x0000000000010000,jqfmt=vfsv0,delalloc,inode_readahead_blks=0x0000000000400000,noauto_da_alloc,test_dummy_encryption,,errors=continue
[ 1307.151739][   T25] usb 4-1: config 135 has an invalid interface number: 230 but max is 0
[ 1307.185205][   T25] usb 4-1: config 135 has an invalid descriptor of length 0, skipping remainder of the config
[ 1307.196842][   T25] usb 4-1: config 135 has no interface number 0
[ 1307.256973][   T25] usb 4-1: config 135 interface 230 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[ 1308.076229][   T25] usb 4-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a
[ 1308.085080][   T25] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1308.106158][   T25] usb 4-1: Product: syz
[ 1308.110142][   T25] usb 4-1: Manufacturer: syz
[ 1308.114561][   T25] usb 4-1: SerialNumber: syz
[ 1308.126625][  T306] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1308.143502][  T306] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1308.162369][  T306] usb 2-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00
[ 1308.175040][  T306] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1308.176729][   T25] uvcvideo: Found UVC 0.00 device syz (18ec:3288)
[ 1308.189886][   T25] uvcvideo: No valid video chain found.
[ 1308.191415][  T306] usb 2-1: config 0 descriptor??
[ 1308.257725][T19118] F2FS-fs (loop4): invalid crc value
[ 1308.264638][T19118] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1308.302715][T19118] F2FS-fs (loop4): Cannot turn on quotas: -2 on 2
[ 1308.316199][T19118] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1308.326181][ T2550] usb 1-1: new high-speed USB device number 38 using dummy_hcd
[ 1308.341270][T18882] attempt to access beyond end of device
[ 1308.341270][T18882] loop4: rw=2049, want=45120, limit=40427
[ 1308.385569][   T25] usb 4-1: USB disconnect, device number 56
[ 1308.736873][    T9] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1308.826203][ T2550] usb 1-1: config 1 has an invalid descriptor of length 128, skipping remainder of the config
[ 1308.836353][ T2550] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1308.877852][   T24] audit: type=1326 audit(2000000079.380:3020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19097 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabdd21b9f9 code=0x7ffc0000
[ 1308.878658][T19098] fuse: Unknown parameter '0x0000000000000008'
[ 1308.926840][   T24] audit: type=1326 audit(2000000079.380:3021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19097 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabdd21b9f9 code=0x7ffc0000
[ 1308.977636][   T24] audit: type=1326 audit(2000000079.380:3022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19097 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7fabdd21b9f9 code=0x7ffc0000
[ 1309.001933][   T24] audit: type=1326 audit(2000000079.380:3023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19097 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabdd21b9f9 code=0x7ffc0000
[ 1309.082077][T19134] FAULT_INJECTION: forcing a failure.
[ 1309.082077][T19134] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1309.095044][T19134] CPU: 1 PID: 19134 Comm: syz.3.4861 Tainted: G        W         5.10.223-syzkaller-01561-g0890c03b8b7d #0
[ 1309.106128][T19134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1309.116020][T19134] Call Trace:
[ 1309.119162][T19134]  dump_stack_lvl+0x1e2/0x24b
[ 1309.123664][T19134]  ? panic+0x812/0x812
[ 1309.127570][T19134]  ? bfq_pos_tree_add_move+0x43b/0x43b
[ 1309.132864][T19134]  ? ___ratelimit+0xb5/0x580
[ 1309.137289][T19134]  dump_stack+0x15/0x17
[ 1309.141281][T19134]  should_fail+0x3c6/0x510
[ 1309.145536][T19134]  should_fail_usercopy+0x1a/0x20
[ 1309.150398][T19134]  strncpy_from_user+0x24/0x2d0
[ 1309.151060][ T2550] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1309.155091][T19134]  ? getname_flags+0xba/0x520
[ 1309.168454][T19134]  getname_flags+0xf2/0x520
[ 1309.172788][T19134]  getname+0x19/0x20
[ 1309.174183][ T2550] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1309.176518][T19134]  do_sys_openat2+0xd7/0x710
[ 1309.176528][T19134]  ? asm_sysvec_reschedule_ipi+0x12/0x20
[ 1309.176537][T19134]  ? do_sys_open+0x220/0x220
[ 1309.176545][T19134]  ? preempt_schedule_irq+0xe7/0x140
[ 1309.176560][T19134]  ? preempt_schedule_notrace+0x140/0x140
[ 1309.194644][ T2550] usb 1-1: Product: syz
[ 1309.198656][T19134]  ? bpf_trace_run2+0xf4/0x280
[ 1309.198666][T19134]  ? fput+0x1a/0x20
[ 1309.198676][T19134]  __x64_sys_creat+0x11f/0x160
[ 1309.198691][T19134]  ? __x32_compat_sys_openat+0x290/0x290
[ 1309.214703][ T2550] usb 1-1: Manufacturer: syz
[ 1309.217924][T19134]  ? queue_stack_map_push_elem+0x35d/0x550
[ 1309.217943][T19134]  do_syscall_64+0x34/0x70
[ 1309.221563][ T2550] usb 1-1: SerialNumber: syz
[ 1309.226172][T19134]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1309.226182][T19134] RIP: 0033:0x7f7f5f38f9f9
[ 1309.226194][T19134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1309.226200][T19134] RSP: 002b:00007f7f5dfcb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[ 1309.226212][T19134] RAX: ffffffffffffffda RBX: 00007f7f5f52c130 RCX: 00007f7f5f38f9f9
[ 1309.226219][T19134] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000100
[ 1309.226225][T19134] RBP: 00007f7f5dfcb090 R08: 0000000000000000 R09: 0000000000000000
[ 1309.226230][T19134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1309.226236][T19134] R13: 0000000000000000 R14: 00007f7f5f52c130 R15: 00007ffde5fa5918
[ 1309.338379][   T24] audit: type=1326 audit(2000000079.380:3024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19097 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabdd21b9f9 code=0x7ffc0000
[ 1309.362228][   T24] audit: type=1326 audit(2000000079.380:3025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19097 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fabdd21b9f9 code=0x7ffc0000
[ 1309.376222][  T306] usbhid 2-1:0.0: can't add hid device: -71
[ 1309.385868][   T24] audit: type=1326 audit(2000000079.380:3026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19097 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabdd21b9f9 code=0x7ffc0000
[ 1309.402714][  T306] usbhid: probe of 2-1:0.0 failed with error -71
[ 1309.420674][ T1065] usbhid 3-1:0.0: can't add hid device: -71
[ 1309.427380][T19136] overlayfs: failed to resolve './file1': -2
[ 1309.433267][ T1065] usbhid: probe of 3-1:0.0 failed with error -71
[ 1309.445411][ T1065] usb 3-1: USB disconnect, device number 28
[ 1309.447561][   T24] audit: type=1326 audit(2000000079.380:3027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19097 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabdd21b9f9 code=0x7ffc0000
[ 1309.476685][  T306] usb 2-1: USB disconnect, device number 23
[ 1309.476935][   T24] audit: type=1326 audit(2000000079.380:3028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19097 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fabdd21b9f9 code=0x7ffc0000
[ 1309.509190][   T24] audit: type=1326 audit(2000000079.460:3029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19097 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabdd21b9f9 code=0x7ffc0000
[ 1309.536627][ T2550] usb 1-1: selecting invalid altsetting 1
[ 1309.757998][T19150] tipc: Started in network mode
[ 1309.762721][T19150] tipc: Own node identity 2007ff, cluster identity 4711
[ 1309.769490][T19150] tipc: 32-bit node address hash set to 2007ff
[ 1309.921256][T19152] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4865'.
[ 1309.930106][T19152] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4865'.
[ 1310.140785][T19158] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[ 1310.247986][ T2550] cdc_ncm 1-1:1.0: failed GET_NTB_PARAMETERS
[ 1310.285677][ T2550] cdc_ncm 1-1:1.0: bind() failure
[ 1310.430398][T19161] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4867'.
[ 1310.463394][T19161] SELinux:  Context system_u:object_r:gpg_agent_exec_t:s0 is not valid (left unmapped).
[ 1310.766728][ T2550] cdc_ncm 1-1:1.1: bind() failure
[ 1310.779692][T16090] Bluetooth: hci0: command 0x1003 tx timeout
[ 1310.786101][ T1694] Bluetooth: hci0: sending frame failed (-49)
[ 1310.786769][ T2550] usb 1-1: USB disconnect, device number 38
[ 1311.816159][ T2550] usb 1-1: new high-speed USB device number 39 using dummy_hcd
[ 1311.966171][T16090] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[ 1312.078153][ T2550] usb 1-1: Using ep0 maxpacket: 16
[ 1312.226251][ T2550] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1312.356636][T16090] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1312.384798][T16090] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1312.432665][T16090] usb 2-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice= 0.00
[ 1312.476103][T16090] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1312.481536][ T2550] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1312.509455][ T2550] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1312.509686][T16090] usb 2-1: config 0 descriptor??
[ 1312.523342][ T2550] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1312.535924][ T2550] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1312.547469][ T2550] usb 1-1: config 0 descriptor??
[ 1312.836189][T18392] Bluetooth: hci0: command 0x1001 tx timeout
[ 1312.842113][ T1694] Bluetooth: hci0: sending frame failed (-49)
[ 1313.154294][T17993] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[ 1313.174362][ T2550] microsoft 0003:045E:07DA.00E8: No inputs registered, leaving
[ 1313.182342][ T2550] microsoft 0003:045E:07DA.00E8: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[ 1313.203889][ T2550] microsoft 0003:045E:07DA.00E8: no inputs found
[ 1313.215192][ T2550] microsoft 0003:045E:07DA.00E8: could not initialize ff, continuing anyway
[ 1313.392021][   T25] usb 1-1: USB disconnect, device number 39
[ 1313.486172][T18392] usb 4-1: new high-speed USB device number 57 using dummy_hcd
[ 1313.516225][T17993] usb 3-1: config index 0 descriptor too short (expected 64521, got 36)
[ 1313.524559][T17993] usb 3-1: config 232 has too many interfaces: 168, using maximum allowed: 32
[ 1313.533366][T17993] usb 3-1: config 232 has an invalid descriptor of length 230, skipping remainder of the config
[ 1313.543696][T17993] usb 3-1: config 232 has 0 interfaces, different from the descriptor's value: 168
[ 1313.746213][T17993] usb 3-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[ 1313.755062][T17993] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1313.762911][T18392] usb 4-1: Using ep0 maxpacket: 16
[ 1313.767884][T17993] usb 3-1: Product: syz
[ 1313.771798][T17993] usb 3-1: Manufacturer: syz
[ 1313.776251][T17993] usb 3-1: SerialNumber: syz
[ 1313.909639][T18392] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 8
[ 1313.970382][T19208] EXT4-fs (loop0): dax option not supported
[ 1314.126245][T18392] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[ 1314.135165][T18392] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1314.143090][T18392] usb 4-1: Product: syz
[ 1314.147685][T18392] usb 4-1: Manufacturer: syz
[ 1314.152199][T18392] usb 4-1: SerialNumber: syz
[ 1314.321496][T18392] usb 4-1: config 0 descriptor??
[ 1314.376908][T18392] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected
[ 1314.384885][T18392] usb 4-1: Detected FT232RL
[ 1314.586200][T18392] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[ 1314.855144][T16090] usbhid 2-1:0.0: can't add hid device: -71
[ 1314.861344][T18392] ftdi_sio 4-1:0.0: GPIO initialisation failed: -71
[ 1314.867894][T16090] usbhid: probe of 2-1:0.0 failed with error -71
[ 1314.876721][T16090] usb 2-1: USB disconnect, device number 24
[ 1314.882595][T18392] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1314.893755][T18392] usb 4-1: USB disconnect, device number 57
[ 1314.901542][T18392] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1314.911070][T18392] ftdi_sio 4-1:0.0: device disconnected
[ 1314.917202][T10452] Bluetooth: hci0: command 0x1009 tx timeout
[ 1315.279723][T19223] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1315.288017][T19223] EXT4-fs error (device loop1): __ext4_iget:4958: inode #11: block 1: comm syz.1.4882: invalid block
[ 1315.299665][T19223] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.4882: couldn't read orphan inode 11 (err -117)
[ 1315.311637][T19223] EXT4-fs (loop1): mounted filesystem without journal. Opts: noauto_da_alloc,user_xattr,max_dir_size_kb=0x0000000000000009,inode_readahead_blks=0x0000000000010000,jqfmt=vfsv0,delalloc,inode_readahead_blks=0x0000000000400000,noauto_da_alloc,test_dummy_encryption,,errors=continue
[ 1315.663465][T19230] input: syz0 as /devices/virtual/input/input56
[ 1316.543395][T19247] netlink: 92 bytes leftover after parsing attributes in process `syz.3.4887'.
[ 1317.043375][T19248] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[ 1317.052443][T19248] ext4 filesystem being mounted at /28/file1 supports timestamps until 2038 (0x7fffffff)
[ 1317.487494][T19259] EXT4-fs (loop1): Unrecognized mount option "smackfsdef=max_batch_time" or missing value
[ 1317.556388][T18392] usb 1-1: new high-speed USB device number 40 using dummy_hcd
[ 1317.634335][T17993] usb 3-1: USB disconnect, device number 29
[ 1317.956596][T18392] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1317.984731][T18392] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1318.005624][T18392] usb 1-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00
[ 1318.014743][T18392] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1318.029895][T18392] usb 1-1: config 0 descriptor??
[ 1318.273081][T19257] udc-core: couldn't find an available UDC or it's busy
[ 1318.301345][T19257] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[ 1318.588350][T18392] logitech-djreceiver 0003:046D:C71B.00E9: hidraw0: USB HID v0.00 Device [HID 046d:c71b] on usb-dummy_hcd.0-1/input0
[ 1318.795024][  T306] usb 1-1: USB disconnect, device number 40
[ 1318.818998][T19275] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1318.868571][T19275] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1318.875803][T19275] device bridge_slave_0 entered promiscuous mode
[ 1318.883011][T19275] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1318.890033][T19275] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1318.898064][T19275] device bridge_slave_1 entered promiscuous mode
[ 1318.947736][T19275] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1318.954577][T19275] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1318.961704][T19275] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1318.968487][T19275] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1319.125839][T18392] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1319.144771][T18392] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1319.270898][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1319.278265][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1319.291670][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1319.305977][ T1512] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1319.312841][ T1512] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1319.375595][T19275] device veth0_vlan entered promiscuous mode
[ 1319.387577][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1319.395823][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1319.404812][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1319.412744][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1319.420609][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1319.428911][T18392] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1319.435747][T18392] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1319.443580][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1319.451526][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1319.475978][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1319.488028][T19275] device veth1_macvtap entered promiscuous mode
[ 1319.510838][T17993] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1319.529489][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1319.740951][T19293] EXT4-fs (loop1): Ignoring removed orlov option
[ 1319.809679][T19293] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option
[ 1319.961263][T19296] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[ 1319.970433][T19296] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038 (0x7fffffff)
[ 1320.051180][T19293] EXT4-fs (loop1): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue
[ 1320.128692][T19293] device erspan0 entered promiscuous mode
[ 1320.134971][T19293] device erspan0 left promiscuous mode
[ 1320.197676][    T7] device bridge_slave_1 left promiscuous mode
[ 1320.203621][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1320.236305][    T7] device bridge_slave_0 left promiscuous mode
[ 1320.254505][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1320.299726][    T7] device veth1_macvtap left promiscuous mode
[ 1320.361024][    T7] device veth0_vlan left promiscuous mode
[ 1320.547373][    T9] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1320.642323][    T9] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1320.823869][T19319] hub 6-0:1.0: USB hub found
[ 1320.828931][T19319] hub 6-0:1.0: 1 port detected
[ 1321.598301][    T7] Bluetooth: hci1: Frame reassembly failed (-84)
[ 1321.695919][T19327] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[ 1321.704740][T19327] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038 (0x7fffffff)
[ 1321.887002][    T9] Bluetooth: hci3: Frame reassembly failed (-84)
[ 1321.896475][    T9] Bluetooth: hci3: Frame reassembly failed (-84)
[ 1322.596172][ T1512] Bluetooth: hci0: command 0x1003 tx timeout
[ 1322.602018][  T409] Bluetooth: hci0: sending frame failed (-49)
[ 1322.804171][T19337] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1322.811079][T19337] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1322.818921][T19337] device bridge_slave_0 entered promiscuous mode
[ 1322.825974][T19337] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1322.833288][T19337] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1322.840957][T19337] device bridge_slave_1 entered promiscuous mode
[ 1322.847561][T19313] tipc: Left network mode
[ 1322.890057][T19337] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1322.896931][T19337] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1322.903983][T19337] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1322.910802][T19337] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1322.933611][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1322.941305][ T1512] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1322.949306][ T1512] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1322.968141][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1322.976089][ T1512] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1322.982953][ T1512] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1322.990622][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1322.999057][ T1512] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1323.005915][ T1512] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1323.013418][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1323.021878][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1323.040577][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1323.052574][T19337] device veth0_vlan entered promiscuous mode
[ 1323.059426][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1323.068029][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1323.075197][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1323.089890][T19337] device veth1_macvtap entered promiscuous mode
[ 1323.097357][T10452] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1323.113363][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1323.121825][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1323.556327][ T1512] Bluetooth: hci1: command 0x1003 tx timeout
[ 1323.562196][  T409] Bluetooth: hci1: sending frame failed (-49)
[ 1323.636768][T19313] device bridge_slave_1 left promiscuous mode
[ 1323.642796][T19313] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1323.650245][T19313] device bridge_slave_0 left promiscuous mode
[ 1323.656339][T19313] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1323.664132][T19313] device veth1_macvtap left promiscuous mode
[ 1323.670062][T19313] device veth0_vlan left promiscuous mode
[ 1323.796856][ T1512] Bluetooth: hci2: command 0x1003 tx timeout
[ 1323.802787][  T409] Bluetooth: hci2: sending frame failed (-49)
[ 1323.876433][ T1512] Bluetooth: hci3: command 0x1003 tx timeout
[ 1323.882305][  T409] Bluetooth: hci3: sending frame failed (-49)
[ 1324.042763][   T24] kauditd_printk_skb: 55 callbacks suppressed
[ 1324.042776][   T24] audit: type=1326 audit(2000000012.580:3085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19346 comm="syz.2.4908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7b9619f9 code=0x7ffc0000
[ 1324.091789][   T24] audit: type=1326 audit(2000000012.610:3086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19346 comm="syz.2.4908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=127 compat=0 ip=0x7fab7b9619f9 code=0x7ffc0000
[ 1324.116845][   T24] audit: type=1326 audit(2000000012.610:3087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19346 comm="syz.2.4908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7b9619f9 code=0x7ffc0000
[ 1324.140600][   T24] audit: type=1326 audit(2000000012.610:3088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19346 comm="syz.2.4908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=25 compat=0 ip=0x7fab7b9619f9 code=0x7ffc0000
[ 1324.164348][   T24] audit: type=1326 audit(2000000012.610:3089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19346 comm="syz.2.4908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7b9619f9 code=0x7ffc0000
[ 1324.187909][   T24] audit: type=1326 audit(2000000012.610:3090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19346 comm="syz.2.4908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=149 compat=0 ip=0x7fab7b9619f9 code=0x7ffc0000
[ 1324.211801][   T24] audit: type=1326 audit(2000000012.620:3091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19346 comm="syz.2.4908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7b9619f9 code=0x7ffc0000
[ 1324.235531][   T24] audit: type=1326 audit(2000000012.620:3092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19346 comm="syz.2.4908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=25 compat=0 ip=0x7fab7b9619f9 code=0x7ffc0000
[ 1324.259094][   T24] audit: type=1326 audit(2000000012.620:3093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19346 comm="syz.2.4908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7b9619f9 code=0x7ffc0000
[ 1324.282816][   T24] audit: type=1326 audit(2000000012.620:3094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19346 comm="syz.2.4908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fab7b9619f9 code=0x7ffc0000
[ 1324.676647][T10452] Bluetooth: hci0: command 0x1001 tx timeout
[ 1324.682503][  T409] Bluetooth: hci0: sending frame failed (-49)
[ 1325.412536][    T9] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1325.419507][    T9] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1325.646184][   T25] Bluetooth: hci1: command 0x1001 tx timeout
[ 1325.652055][T19358] Bluetooth: hci1: sending frame failed (-49)
[ 1325.876364][T10452] Bluetooth: hci2: command 0x1001 tx timeout
[ 1325.882271][T19358] Bluetooth: hci2: sending frame failed (-49)
[ 1325.956516][T10452] Bluetooth: hci3: command 0x1001 tx timeout
[ 1325.962381][T19358] Bluetooth: hci3: sending frame failed (-49)
[ 1326.756258][T10452] Bluetooth: hci0: command 0x1009 tx timeout
[ 1327.476301][T10452] Bluetooth: hci4: command 0x1003 tx timeout
[ 1327.482150][T19358] Bluetooth: hci4: sending frame failed (-49)
[ 1327.716182][T10452] Bluetooth: hci1: command 0x1009 tx timeout
[ 1327.956398][   T25] Bluetooth: hci2: command 0x1009 tx timeout
[ 1328.036312][   T25] Bluetooth: hci3: command 0x1009 tx timeout
[ 1329.556224][T18392] Bluetooth: hci4: command 0x1001 tx timeout
[ 1329.562076][T19358] Bluetooth: hci4: sending frame failed (-49)
[ 1330.792879][T19365] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1330.799764][T19365] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1330.807093][T19365] device bridge_slave_0 entered promiscuous mode
[ 1330.813863][T19365] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1330.820864][T19365] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1330.828160][T19365] device bridge_slave_1 entered promiscuous mode
[ 1330.873578][T19365] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1330.880446][T19365] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1330.887540][T19365] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1330.894302][T19365] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1330.916624][T18392] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1330.923872][T18392] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1330.931866][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1330.939392][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1330.957154][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1330.965147][   T25] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1330.972097][   T25] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1330.980286][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1330.988436][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1330.995255][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1331.002640][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1331.022671][T19365] device veth0_vlan entered promiscuous mode
[ 1331.029904][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1331.038484][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1331.046657][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1331.053853][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1331.062197][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1331.076832][T19365] device veth1_macvtap entered promiscuous mode
[ 1331.087196][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1331.097118][T18392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1331.114996][T10452] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1331.139947][   T24] kauditd_printk_skb: 41 callbacks suppressed
[ 1331.139959][   T24] audit: type=1400 audit(2000000019.680:3136): avc:  denied  { getattr } for  pid=19369 comm="syz.1.4911" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[ 1331.319385][T19376] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[ 1331.636348][T10452] Bluetooth: hci4: command 0x1009 tx timeout
[ 1331.747578][    T7] device bridge_slave_1 left promiscuous mode
[ 1331.761831][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1331.783684][    T7] device bridge_slave_0 left promiscuous mode
[ 1331.804358][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1331.841046][    T7] device veth1_macvtap left promiscuous mode
[ 1331.851032][    T7] device veth0_vlan left promiscuous mode
[ 1332.066082][T19381] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1332.072993][T19381] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1332.080736][T19381] device bridge_slave_0 entered promiscuous mode
[ 1332.087543][T19382] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1332.094369][T19382] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1332.102094][T19382] device bridge_slave_0 entered promiscuous mode
[ 1332.108878][T19381] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1332.117257][T19381] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1332.124467][T19381] device bridge_slave_1 entered promiscuous mode
[ 1332.141522][T19382] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1332.148415][T19382] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1332.155589][T19382] device bridge_slave_1 entered promiscuous mode
[ 1332.173513][T19380] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1332.180495][T19380] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1332.187874][T19380] device bridge_slave_0 entered promiscuous mode
[ 1332.210997][T19380] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1332.218329][T19380] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1332.225686][T19380] device bridge_slave_1 entered promiscuous mode
[ 1332.297686][T19381] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1332.304580][T19381] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1332.311664][T19381] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1332.318431][T19381] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1332.381542][  T306] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1332.390855][  T306] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1332.398467][  T306] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1332.438573][  T306] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1332.447013][  T306] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1332.453844][  T306] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1332.463162][  T306] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1332.471976][  T306] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1332.478825][  T306] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1332.496760][  T306] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1332.504542][  T306] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1332.526130][T19381] device veth0_vlan entered promiscuous mode
[ 1332.558744][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1332.566703][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1332.574907][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1332.583334][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1332.591617][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1332.599840][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1332.608069][ T2550] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1332.614889][ T2550] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1332.622487][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1332.630495][ T2550] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1332.637326][ T2550] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1332.662806][T19381] device veth1_macvtap entered promiscuous mode
[ 1332.677368][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1332.685142][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1332.694417][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1332.703647][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1332.712864][ T1065] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1332.719703][ T1065] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1332.728290][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1332.736542][ T1065] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1332.743359][ T1065] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1332.750727][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1332.759097][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1332.767231][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1332.800603][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1332.808368][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1332.817726][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1332.825892][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1332.837464][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1332.847989][T19382] device veth0_vlan entered promiscuous mode
[ 1332.858788][T19380] device veth0_vlan entered promiscuous mode
[ 1332.867009][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1332.874770][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1332.882938][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1332.891588][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1332.899644][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1332.907143][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1332.914360][ T2550] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1332.926287][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1332.948503][T19382] device veth1_macvtap entered promiscuous mode
[ 1332.975978][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1332.986584][ T1512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1333.008849][T19380] device veth1_macvtap entered promiscuous mode
[ 1333.031019][  T287] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1333.046585][  T287] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1333.054631][  T287] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1333.063254][  T287] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1333.071496][  T287] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1333.094039][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1333.102367][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1333.111103][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1333.120366][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1333.396258][ T1512] Bluetooth: hci0: command 0x1003 tx timeout
[ 1333.402529][ T7864] Bluetooth: hci0: sending frame failed (-49)
[ 1333.516909][    T7] device bridge_slave_1 left promiscuous mode
[ 1333.522998][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1333.530660][    T7] device bridge_slave_0 left promiscuous mode
[ 1333.536705][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1333.544556][    T7] device bridge_slave_1 left promiscuous mode
[ 1333.550992][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1333.558718][    T7] device bridge_slave_0 left promiscuous mode
[ 1333.564667][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1333.573079][    T7] device veth1_macvtap left promiscuous mode
[ 1333.578944][    T7] device veth0_vlan left promiscuous mode
[ 1333.584623][    T7] device veth1_macvtap left promiscuous mode
[ 1333.590878][    T7] device veth0_vlan left promiscuous mode
[ 1333.616315][T18392] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[ 1333.859768][T19404] netlink: 'syz.3.4916': attribute type 4 has an invalid length.
[ 1333.867428][T19404] netlink: 17 bytes leftover after parsing attributes in process `syz.3.4916'.
[ 1333.996237][T18392] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1334.007051][T18392] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1334.016946][T18392] usb 5-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00
[ 1334.025840][T18392] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1334.041341][T18392] usb 5-1: config 0 descriptor??
[ 1334.296824][T19399] udc-core: couldn't find an available UDC or it's busy
[ 1334.305684][T19399] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[ 1334.450124][T19407] F2FS-fs (loop0): invalid crc value
[ 1334.463215][T19407] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1334.500019][T19407] F2FS-fs (loop0): Cannot turn on quotas: -2 on 2
[ 1334.509473][T19407] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1334.522211][T19407] overlayfs: missing 'lowerdir'
[ 1334.533644][T19380] attempt to access beyond end of device
[ 1334.533644][T19380] loop0: rw=2049, want=45120, limit=40427
[ 1334.548013][T18392] logitech-djreceiver 0003:046D:C71B.00EA: hidraw0: USB HID v0.00 Device [HID 046d:c71b] on usb-dummy_hcd.4-1/input0
[ 1334.656886][    T7] device bridge_slave_1 left promiscuous mode
[ 1334.663887][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1334.684318][    T7] device bridge_slave_0 left promiscuous mode
[ 1334.696241][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1334.715502][    T7] device veth1_macvtap left promiscuous mode
[ 1334.721401][    T7] device veth0_vlan left promiscuous mode
[ 1334.747654][  T407] usb 5-1: USB disconnect, device number 37
[ 1334.902609][   T24] audit: type=1326 audit(2000000023.440:3137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19415 comm="syz.0.4918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee5b3879f9 code=0x7ffc0000
[ 1334.956225][   T24] audit: type=1326 audit(2000000023.440:3138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19415 comm="syz.0.4918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee5b3879f9 code=0x7ffc0000
[ 1335.028454][   T24] audit: type=1326 audit(2000000023.440:3139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19415 comm="syz.0.4918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fee5b3879f9 code=0x7ffc0000
[ 1335.077491][   T24] audit: type=1326 audit(2000000023.440:3140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19415 comm="syz.0.4918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee5b3879f9 code=0x7ffc0000
[ 1335.106068][   T24] audit: type=1326 audit(2000000023.440:3141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19415 comm="syz.0.4918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee5b3879f9 code=0x7ffc0000
[ 1335.131363][   T24] audit: type=1326 audit(2000000023.440:3142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19415 comm="syz.0.4918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=8 compat=0 ip=0x7fee5b3879f9 code=0x7ffc0000
[ 1335.154775][   T24] audit: type=1326 audit(2000000023.440:3143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19415 comm="syz.0.4918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee5b3879f9 code=0x7ffc0000
[ 1335.178905][   T24] audit: type=1326 audit(2000000023.440:3144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19415 comm="syz.0.4918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee5b3879f9 code=0x7ffc0000
[ 1335.205525][T19423] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1335.215377][   T24] audit: type=1326 audit(2000000023.440:3145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19415 comm="syz.0.4918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee5b3879f9 code=0x7ffc0000
[ 1335.242763][T19423] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2800: Unable to expand inode 15. Delete some EAs or run e2fsck.
[ 1335.264167][T19423] EXT4-fs (loop0): 1 truncate cleaned up
[ 1335.275975][T19423] EXT4-fs (loop0): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue
[ 1335.386825][T19428] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1335.394036][T19428] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1335.403571][T19428] device bridge_slave_0 entered promiscuous mode
[ 1335.411254][T19428] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1335.418933][T19428] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1335.426685][T19428] device bridge_slave_1 entered promiscuous mode
[ 1335.476169][T18392] Bluetooth: hci0: command 0x1001 tx timeout
[ 1335.483618][ T7864] Bluetooth: hci0: sending frame failed (-49)
[ 1335.503759][T19433] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d)
[ 1335.636992][T19428] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1335.643868][T19428] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1335.650962][T19428] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1335.657734][T19428] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1335.991709][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1336.000229][  T407] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1336.016103][  T407] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1336.053212][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1336.065547][  T407] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1336.072427][  T407] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1336.093897][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1336.111480][  T407] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1336.118364][  T407] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1336.140935][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1336.155954][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1336.181130][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1336.196810][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1336.265394][T19428] device veth0_vlan entered promiscuous mode
[ 1336.271876][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1336.273703][T19445] FAULT_INJECTION: forcing a failure.
[ 1336.273703][T19445] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1336.280664][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1336.311690][T19428] device veth1_macvtap entered promiscuous mode
[ 1336.327430][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1336.328381][T19445] CPU: 0 PID: 19445 Comm: syz.0.4925 Tainted: G        W         5.10.223-syzkaller-01561-g0890c03b8b7d #0
[ 1336.334654][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1336.345625][T19445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 1336.345629][T19445] Call Trace:
[ 1336.345646][T19445]  dump_stack_lvl+0x1e2/0x24b
[ 1336.345655][T19445]  ? bfq_pos_tree_add_move+0x43b/0x43b
[ 1336.345666][T19445]  ? down_read_trylock+0x179/0x1d0
[ 1336.345676][T19445]  ? __init_rwsem+0x1c0/0x1c0
[ 1336.345691][T19445]  dump_stack+0x15/0x17
[ 1336.371108][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1336.375492][T19445]  should_fail+0x3c6/0x510
[ 1336.375511][T19445]  should_fail_alloc_page+0x52/0x60
[ 1336.396432][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1336.396677][T19445]  __alloc_pages_nodemask+0x1b3/0xaf0
[ 1336.401117][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1336.405960][T19445]  ? gfp_pfmemalloc_allowed+0x120/0x120
[ 1336.431484][T19445]  ? copy_user_enhanced_fast_string+0xe/0x40
[ 1336.437290][T19445]  pipe_write+0x551/0x18c0
[ 1336.441542][T19445]  ? pipe_read+0x1040/0x1040
[ 1336.445963][T19445]  ? fsnotify_perm+0x67/0x4e0
[ 1336.450481][T19445]  ? security_file_permission+0x7b/0xb0
[ 1336.455870][T19445]  ? security_file_permission+0x86/0xb0
[ 1336.461242][T19445]  ? iov_iter_init+0x3f/0x120
[ 1336.465750][T19445]  vfs_write+0xb4c/0xe70
[ 1336.469831][T19445]  ? kernel_write+0x3d0/0x3d0
[ 1336.474346][T19445]  ? __fdget_pos+0x209/0x3a0
[ 1336.478770][T19445]  ? ksys_write+0x77/0x2c0
[ 1336.483025][T19445]  ksys_write+0x199/0x2c0
[ 1336.487190][T19445]  ? __ia32_sys_read+0x90/0x90
[ 1336.491790][T19445]  ? debug_smp_processor_id+0x17/0x20
[ 1336.496996][T19445]  __x64_sys_write+0x7b/0x90
[ 1336.501510][T19445]  do_syscall_64+0x34/0x70
[ 1336.505773][T19445]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1336.511492][T19445] RIP: 0033:0x7fee5b3879f9
[ 1336.515746][T19445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1336.535191][T19445] RSP: 002b:00007fee59fe4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1336.543432][T19445] RAX: ffffffffffffffda RBX: 00007fee5b524058 RCX: 00007fee5b3879f9
[ 1336.551242][T19445] RDX: 00000000fffffe14 RSI: 00000000200001c0 RDI: 0000000000000006
[ 1336.559053][T19445] RBP: 00007fee59fe4090 R08: 0000000000000000 R09: 0000000000000000
[ 1336.566870][T19445] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1336.574673][T19445] R13: 0000000000000000 R14: 00007fee5b524058 R15: 00007ffc1ef34178
[ 1336.596044][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1336.611844][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1336.621351][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1336.629729][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1337.072056][T19455] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[ 1337.557152][  T407] Bluetooth: hci0: command 0x1009 tx timeout
[ 1337.850125][T19461] F2FS-fs (loop0): invalid crc value
[ 1337.956168][  T407] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[ 1337.974476][T19461] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1338.089163][T19461] F2FS-fs (loop0): Cannot turn on quotas: -2 on 2
[ 1338.095856][T19461] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1338.103864][    T7] device bridge_slave_1 left promiscuous mode
[ 1338.109842][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1338.122592][    T7] device bridge_slave_0 left promiscuous mode
[ 1338.128735][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1338.136482][T19461] overlayfs: missing 'lowerdir'
[ 1338.143113][    T7] device veth1_macvtap left promiscuous mode
[ 1338.157153][    T7] device veth0_vlan left promiscuous mode
[ 1338.196986][T19380] attempt to access beyond end of device
[ 1338.196986][T19380] loop0: rw=2049, want=45120, limit=40427
[ 1338.486506][  T407] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1338.564507][  T407] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1338.626188][  T407] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice= 0.00
[ 1338.659486][  T407] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1338.697776][  T407] usb 5-1: config 0 descriptor??
[ 1338.705516][T19486] serio: Serial port ptm0
[ 1339.020403][ T1628] usb 1-1: new high-speed USB device number 41 using dummy_hcd
[ 1339.600009][   T24] kauditd_printk_skb: 8 callbacks suppressed
[ 1339.600031][   T24] audit: type=1400 audit(2000000003.780:3154): avc:  denied  { ioctl } for  pid=19494 comm="syz.3.4936" path="socket:[111897]" dev="sockfs" ino=111897 ioctlcmd=0x6687 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1339.631302][ T1628] usb 1-1: Using ep0 maxpacket: 16
[ 1339.708556][   T24] audit: type=1400 audit(2000000003.820:3155): avc:  denied  { accept } for  pid=19494 comm="syz.3.4936" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1339.896278][ T1628] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 11
[ 1339.906375][   T24] audit: type=1326 audit(2000000004.060:3156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19497 comm="syz.3.4937" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc7af8d29f9 code=0x0
[ 1340.007565][ T1628] usb 1-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0
[ 1340.055111][ T1628] usb 1-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0
[ 1340.104583][ T1628] usb 1-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1340.153135][ T1628] usb 1-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0
[ 1340.163018][ T1628] usb 1-1: config 1 interface 0 has no altsetting 0
[ 1340.169641][ T1628] usb 1-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[ 1340.178702][ T1628] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1340.226656][ T1628] ums-sddr09 1-1:1.0: USB Mass Storage device detected
[ 1340.436883][ T1628] scsi host1: usb-storage 1-1:1.0
[ 1340.644730][T10452] usb 1-1: USB disconnect, device number 41
[ 1340.807523][  T407] usbhid 5-1:0.0: can't add hid device: -71
[ 1340.813405][  T407] usbhid: probe of 5-1:0.0 failed with error -71
[ 1340.839062][  T407] usb 5-1: USB disconnect, device number 38
[ 1340.969518][   T24] audit: type=1326 audit(2000000005.150:3157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19518 comm="syz.4.4942" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1a5c2259f9 code=0x0
[ 1341.433951][T19525] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1341.443938][T19525] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1341.451196][T19525] device bridge_slave_0 entered promiscuous mode
[ 1341.458822][T19525] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1341.465788][T19525] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1341.477163][T19525] device bridge_slave_1 entered promiscuous mode
[ 1341.548020][T19525] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1341.554876][T19525] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1341.561976][T19525] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1341.568762][T19525] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1341.889836][ T8360] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1341.897360][ T8360] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1342.197997][T10452] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1342.207570][T10452] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1342.236822][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1342.248050][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1342.265219][  T407] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1342.272099][  T407] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1342.286341][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1342.295926][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1342.305101][  T407] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1342.311957][  T407] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1342.415628][   T24] audit: type=1326 audit(2000000006.590:3158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19552 comm="syz.0.4950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee5b3879f9 code=0x7ffc0000
[ 1342.439442][T10452] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1342.447485][T10452] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1342.455886][T10452] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1342.464521][T10452] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1342.475106][T10452] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1342.483913][   T24] audit: type=1326 audit(2000000006.590:3159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19552 comm="syz.0.4950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee5b3879f9 code=0x7ffc0000
[ 1342.517567][T10452] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1342.612657][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1342.622413][ T1065] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1342.631754][   T24] audit: type=1326 audit(2000000006.590:3160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19552 comm="syz.0.4950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=207 compat=0 ip=0x7fee5b3879f9 code=0x7ffc0000
[ 1342.640289][T19525] device veth0_vlan entered promiscuous mode
[ 1342.661557][   T24] audit: type=1326 audit(2000000006.590:3161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19552 comm="syz.0.4950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee5b3879f9 code=0x7ffc0000
[ 1342.683064][T19525] device veth1_macvtap entered promiscuous mode
[ 1342.691007][   T24] audit: type=1326 audit(2000000006.590:3162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19552 comm="syz.0.4950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee5b3879f9 code=0x7ffc0000
[ 1342.696358][T10452] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[ 1342.723735][  T306] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1342.730899][   T24] audit: type=1326 audit(2000000006.590:3163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19552 comm="syz.0.4950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=81 compat=0 ip=0x7fee5b3879f9 code=0x7ffc0000
[ 1342.734086][  T306] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1342.764344][  T306] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1342.772615][  T306] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1342.780869][  T306] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1342.801888][ T1628] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1342.813738][ T1628] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1342.822584][ T1628] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1342.831090][ T1628] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
SYZFAIL: bad allocate request
allocated=0 size=18446744073709551109/18446744073709551112 (errno 11: Resource temporarily unavailable)
[ 1342.910978][T19561] 9p: Unknown uid 18446744073709551615
[ 1343.086259][T10452] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1343.106322][T10452] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1343.115881][T10452] usb 3-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00
[ 1343.129980][T10452] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1343.138655][T10452] usb 3-1: config 0 descriptor??
[ 1343.256209][T10452] usb 3-1: can't set config #0, error -71
[ 1343.284039][T10452] usb 3-1: USB disconnect, device number 30
[ 1343.309161][    T7] device bridge_slave_1 left promiscuous mode
[ 1343.315085][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1343.336686][    T7] device bridge_slave_0 left promiscuous mode
[ 1343.342621][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1343.350686][    T7] device veth1_macvtap left promiscuous mode
[ 1343.356602][    T7] device veth0_vlan left promiscuous mode
[ 1344.397413][    T7] device bridge_slave_1 left promiscuous mode
[ 1344.403355][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1344.411472][    T7] device bridge_slave_0 left promiscuous mode
[ 1344.417620][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1344.425763][    T7] device bridge_slave_1 left promiscuous mode
[ 1344.431997][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1344.439524][    T7] device bridge_slave_0 left promiscuous mode
[ 1344.445445][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1344.453501][    T7] device bridge_slave_1 left promiscuous mode
[ 1344.459561][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1344.467088][    T7] device bridge_slave_0 left promiscuous mode
[ 1344.473006][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1344.481165][    T7] device bridge_slave_1 left promiscuous mode
[ 1344.487146][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1344.494363][    T7] device bridge_slave_0 left promiscuous mode
[ 1344.500730][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1344.508715][    T7] device bridge_slave_1 left promiscuous mode
[ 1344.514633][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1344.522222][    T7] device bridge_slave_0 left promiscuous mode
[ 1344.528227][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1344.537339][    T7] device veth1_macvtap left promiscuous mode
[ 1344.543142][    T7] device veth0_vlan left promiscuous mode
[ 1344.549042][    T7] device veth1_macvtap left promiscuous mode
[ 1344.554843][    T7] device veth0_vlan left promiscuous mode
[ 1344.560750][    T7] device veth1_macvtap left promiscuous mode
[ 1344.566601][    T7] device veth0_vlan left promiscuous mode
[ 1344.572242][    T7] device veth1_macvtap left promiscuous mode
[ 1344.578467][    T7] device veth0_vlan left promiscuous mode
[ 1344.584174][    T7] device veth1_macvtap left promiscuous mode
[ 1344.590230][    T7] device veth0_vlan left promiscuous mode