last executing test programs:

19m16.513091418s ago: executing program 1 (id=2):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
writev(r0, &(0x7f0000000100)=[{&(0x7f0000000000)="89e7ee2c7cdad9b4b47380c988ca", 0xe}, {&(0x7f0000000140)="ee1bc38a373716fd43e3f80aa6e8afdbf39594709440b7695d99000000000017d9", 0x21}], 0x2)

19m0.619429285s ago: executing program 32 (id=2):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
writev(r0, &(0x7f0000000100)=[{&(0x7f0000000000)="89e7ee2c7cdad9b4b47380c988ca", 0xe}, {&(0x7f0000000140)="ee1bc38a373716fd43e3f80aa6e8afdbf39594709440b7695d99000000000017d9", 0x21}], 0x2)

15m42.094864351s ago: executing program 5 (id=325):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x400, &(0x7f0000000500), 0xff, 0x260, &(0x7f0000000980)="$eJzs3U9IHFccB/DfzO7Wqkux7aVQ+gdKKa0g9lboxV5aEIpIKYW2YCmllxYtWKU37SmXHJJjSIKnXCTkFpNj8CK5JARyMokHcwkkkkMkhySwYXcU/LOJxl13gvP5wDoz+ub93jDzfSPiMAEUVl9EDEVEKSL6I6ISEcnWBh9nn76NzbnupbGIWu2Hh0mjXbad2dyvNyJmI+KriFhMk/irHDG98Mvq4+XvPjs+Vfn03MLP3R09yA1rqyvfr58dOXZx+Mvp6zfvjyQxFNVtx9V+SZPvlZOIdw6j2GsiKec9AvZj9L8Lt+q5fzciPmnkvxJpZCfvxOQbi5X44syL9j354Mb7nRwr0H61WqV+D5ytAYWTRkQ1knQgIrL1NB0YyH6Hv13qSf+emPy3/8+JqfE/8p6pgHapRqx8e7nrUu+O/N8rZfkHjqjsj1IrP47O36mvrJfyHhDQER9ki/r9v/+3mc9D/qFw5B+KS/6huOQfikv+4ehp9v+mzcg/FJf8Q3HJPxSX/ENxHTj/p54d3qCAjtiafwCgWGpdB3pquP0PIgMdl/f8AwAAAAAAAAAAAAAAAAAA7DbXvTS2+WlPj+U9W1w9HbH2TdZ0d/1S433EEW82vvY8Srb1mOyrwsv9+lGLHbTofM5PX791N9/61z7Mt/7MeMTs/xExWC43rr1tF1Sycf0d3Nt7/Lzye4sFXtHOdwN8/VNn6+/0dD7f+sPLEVfq889gs/knjfcay+bzT7V+/lqs/8+TFjsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACgY54HAAD//7UiauA=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x17e)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000140)=0x10000000)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400010bce)
r1 = syz_open_dev$MSR(&(0x7f0000000380), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
getpgid(0x0)
write$P9_RREADLINK(r2, &(0x7f0000000000)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab)

15m40.26934477s ago: executing program 5 (id=328):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0, 0x0, 0x6f2}, 0x18)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x9)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
fanotify_mark(0xffffffffffffffff, 0x469, 0x40001002, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x0, 0x0, 0x0, 0x2)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
syz_mount_image$bcachefs(&(0x7f00000058c0), &(0x7f00000000c0)='./file0\x00', 0x3, &(0x7f0000000000)={[{@inodes_32bit}, {@prjquota}, {@errors_fix_safe}, {@errors_ro}, {@reconstruct_alloc}, {@recovery_pass_last={'recovery_pass_last', 0x3d, 'initialize_subvolumes'}}, {@nochanges}, {@verbose}], [{@audit}]}, 0x1, 0x590a, &(0x7f000000b240)="$eJzs3W2QXFXdIPBzu3synZm8TAJIBJkMgSiCmglvhS+l0fWtAKlYWErYKAxkgtEkpJIgEFCCCy4UYKGlpagf0EJq0WhRBatESuRlE1ZRitWltpBa3UU/+BTykBLIQ1k+5qmZvqfTc6fv3J7unpDA71fJ3D6nb//Pufeevt3/03emAwAAAK8Ju6/fsvecoz7wqy+OvnTNh3+24drQXx6vr8YVBtLlFa9UDzmQeiuLxpfZcfGmq37w56GL3/fLu/u+//KuNceu/f37D7v4/s+cufO2bz/04tx7//lMUdw4nk7cX06eS0Ko/nzP17+067Ejx+qSEEI5GdgewoJk4UMLkkyI4b+HENakhUWZO+956ZS1Y8trb+qdUD8/s57x/tpWTcfZtr2XnxT+8N5V1/1m8Y9/1LPj2e37V0mqDeMphHkXNj6+J13OTpdxtMXxGAftyhBCX8Pjzijo13FN6k5sUrcsp3x0upyVLvsL2ov3L8mUS5n1suWoJ7PsK2ivU3n9aHe9InMy5ezJqFN5/Yz1C9LlT9Nls7EwlXL8n4RSEir17q9P9o+R0HDckpCMH8tqvVyqH9uQbn+mnGTKpUy53JPZrvF204FWTpKJ9XG9TH08HVfS+mMbz9VNnJtT//p0WU2fqC/HcsjeqOmfdKO+XeNiv/ZM0ZcDodRwLsrW9zaO2/Rg9Kd1/cnCSY/Z10S8b9eqm5eWVz+8eyCnH8ndSRo/aSv+tl8vmPOpH954WfZ1vR7/wlIav9RW/D+e9fjz59/4vW/lxr81xi+3Ff/kB/qeO+uR65fk7p89cf9U2oo/8syjtyw+/KIduf2/PcavthV/xc7He+fufeDB3P4Px/0zu634T7/zg3+668n7ns2LP/TP8fh/iw+bbvzVOzd9uXdw7wm5/X8w7p/+9sbPCztOf2pw8C9DefGfiPHnNou/rij+ndtve8cd8286M/f4roz7f6Ct/p99/P3Xzdl73zF5587k9uJXzqL3FACvZYel58kb0nK7eWanGvKFbw5Vau/55qT/53azoYyxdubNYHwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXpuOOOl/fuj/f3zguUpa7k1vPF2qLWP9rBCS2SGELVtHNm9dt/GSoc9cetnmjSPrh0a2Do1u3Lr5yqFT3zK0eXTT+pErx+4dfusptcctDEltmRwzqe19+/btKw1MrIvt/afjd/xh6Rn/8tcQho/43WAlt//Lbttwx+FNfmYkK/a9Z8Nl5/zutO+m2zWQ9msgp18hp1//et4/7vjqnj+fEMLw66bq16NPv/sXEzo0XrE/TqrUG2od6k36mvaj3uu0P3F/VdauWz86XLx/yznb8Z+vevbva6/4yj9q+7eaux0t7t/ZK/atL31j1dn//o2raxUH63Ev2t9xK2L/4v6rpvt7Xrpd83K2q5KzXdf/5sEnf37UjS9uD8OVFxZPbrtou3rSAdCTvL6ldmMLfcmCCfXVdP14xOPjlm3dsGnZliu3vXXdhpFLRi8Z3fj25acuP334tNNPWza+5cumuf0v7Zt6+2P7b2xx+w/MeJr/ue0/jT9bG09F/SoaD2P9Kt4fjT3Ke/71nfulr739tkfOqVUUjfO4dv18ki77xo7z8tAw3ibvq2bbVbQfQghDzfbD8y+eGY78P+uuKzoPNR6Zxp8ZyYp9jy3523fP+M6id9UqDsh5vrFDbZ7n673e35/x/VVNj8fBun97Qzndrv6m/Vr+2CM9N+/+6+fr/Zs1K1wxsnXr5uW1n3PSns5Jjm7ar2xt3K7F4z/LId0toT5Mm4zXMT2h1r/s+TOunt2r/el9/cnCptuVFe/btermpeXVD+/O29PJ3bUWZ4e5tWXyhpw112ceWK53uFn7jeOj1KS/B+v4GPzQd+79+L0/OXXS+Di59rNo3Cc52/XjJ+/82ve/8l9/0r3t+tC7Hx/42//99NJaxaFyXqn3Ou1P0nheOTmEouff4tB8O3Kff9nBlyp6/mXb2b9+83hDmXJ/KLf1fD35gb7nznrk+iW5z9c9rT5fr55QKhc8Xw+W8fPKPb8mDJRkxb5f3nDY9oeuWXlUraJoXNfXbjauT2kh/8jZrl+c/9TgpUP/5X9377zxg7fcc8HvR1Z8oVZxsBz3arp/qzn7t97rmHc27t+3XXzp+jW1+oP3/W+6LMh/4qlky5XbPjuyfv3o5i2tbVerr6exnexebvf1NJ7dFhZsV2nSds3cjVb2V6vPt9j/NW3vr4nPt/6QtPW6sO3XC+Z86oc3XjYw6VFpQxeW0viltuL/8azHnz//xu99Kzf+rTF+pa34I888esviwy/akRv/9iSNX20r/oqdj/fO3fvAg7nxh2P/Z7cV/+l3fvBPdz1537O58UOM39/e/n9hx+lPDQ7+JTf+E0nazth7pBDueemUtbVyEnrS51vsR8+EfoVsOcmUS5lyubFcqs211hsoJ8nE+rheWn9sQ1+a+UROfXwXVl1UW74cyyF7Y+r6g02p4dzfrL7ofSoAwKtd/Pw/vgeNn/+Ppm+U8mcaYL9O87BFOXFjHrZ/PmfWhPsXpfHj4+M84ODbwvDY8tqh2hv96c5zxudDdp4ztnPCcRNjtDvPWTT/viRTjv2qzZdXGvLQ1OS8phJamH+f3M7U8++ZzS+eHx+6YVK3huLJpcnx60lnzJpd75Dpb2UsQN74yM6Lxes5BueFlePttTg+stfRxOOQvY4mtnNU5sTZ7nU0nY6P2O0pxsd4l4s/35h8/MIU+3f/8WseLXv8pnG8q2Prz/Tns4f+vGHB52G9oWn8Vj8PMy+ZEz99gh3s84axPm5HpcX5xI/n1HdrPjGeLmK/9kzRlwPBfCLwahXz//gaMZb/j70B/7fMekXvQ7PvGmO83OuEys37U5R3TL5Or6+t1/HVOzd9uXdw7wm573MebPW6n00TSn0F1/0U7celmXLhfsyZoCnK97LtFO337HUZ/WFuW/v9zu23veOO+TedmbvfV9ZeSIv3+9cmlOYW7Hf5Qk78VvOFnPjyhYPjOoai+bNXLB9JL3yaqXzkYzn1081H+ibdqG/XuEMuH+k5sP0CAA4dMf+vf36W5v//L7NeUd56YqYc4+XmrTnvT/Ly1o+kyysy6/env1Ex3ffNZx9//3Vz9t53TG7ecnureeh/m1AaKMxDO8ubc/OIld25Xjw3j6jnWZ3libn9r+eJneXpufHreXpneXTu/qnn0Z3NA+TGr88DHOp57szO171q8+j012dnKo8+N6d+unl0/6Qb9e0aJ48GAHhlxfw/vo2L+f8jmfU6fd+emxd06X179u+B1OM/caDyypnO+2Y6b53pvH6m5yUO9bx4pueFZnaeTF6clkP2Ro28GACAg0HM/2en5fz8v7P8JDd/q+cn8vOm8eXnB0l+PpPzX9vTETqT81/Tyv/r2esM5f+TfstE/l8j/wcAYCbF/D/+2mP8+3//Iy1n/269PD0nvjz9NZCnH4jrVGZ6ns11AOYBipkHAAB4dekZz5Qm/579J9Nl9vfs834v//yc9VtVGf8d+xAu2rp5dPSCyzatGdk6esHGS9eMbrng8s3rtm4d3Vhbr9O8MTdvSfPGnlBJ90fz9bJ52/z07yHMz/l7CNn1Y9ijx29M/nsI2WZnF/wdgf3Hr7X+5h2/0hTrNxsfecc7L/4nctaP6sf/4k+ffMHaLRes27hu67qR9eu2jU5cbyxr7ZvG92bG3TKt783M/JikNP3v7+xOP0qT+tGT7o+872dPMv1YkPZkQd73H+T0+1f/66ufO37fP+4KYfiI8hs62n/Jin3//bzRj2zd/btNY/0vTdn/+pppv4q+rzS7ftyeyvpLt2w9ae2ll23MfqNke+J8RqlenqH5jPTpX25xfmJ1Tv105yfKk24cnFqenwAAYIL4+X98Pxs/P/xK+gYq1reep3f2+XFunj7cWp6e/V6yojw9u37c3lbz9GqHeXq2/aI8vdn6zfL0vLw7L/7HctafrtbHSWfXeeSOkwtbGyfZ7zMoGifZ9ac7TpIOx0m2/aJx0mz9ZuMk77jnxf9ozvp5Wh8PnV2Xkzsebm1tPLw5Uy4aD9n1pzseSh2Oh2z7ReOh2frNxkPe8c2Lf07O+q2aOD7GBsb4uBi94PJLN3+2Yb2Z/v6Lzvs3s9//0a7W+z+z133NfP9n9rqyme9/Z9eV5fb/ic5mwlrv/8x+v0u7Dth8bXqxWdH1Z0XzuKty6qc7jztr0o2Dk3lceOXE/D9+3BPz/5vSZbc/Bjr0vyfN95g1jd+l7zEreh/z6ns9rwXyeg4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADw2tJbWTS+3H39lr3nHPWBX31x9KVrPvyzDde+6aof/Hno4vf98u6+77+8a82xa3///sMuvv8zZ+687dsPvTj33n8+Uxh4oLY4MS1WQ0ieS0Ko/nzP17+067Ejx+qSEEI5GdgewoJk4UMLkkyE4b+HENbU+znxznteOmXt2PLam3on1M/PBMluV+gvx/5M6Ge4onCLOARV03G2be/lJ4U/vHfVdb9Z/OMf9ex4dvv+VZJqw3gKYd6FjY/vCSHMTv+PiaNtUXxwulwZQuhreNwZBf06rsX+L8spH50uZ6XL/oI48f4lmXIps162HPVkln0F7XUqrx/trldkTqacPRl1Kq+fsX5BuvxpujxxmvHL8X8SSkmo1Lu/Ptk/RkLDcUtCMn4sq/VyqX5sQ7r9mXKSKZcy5XJPZrvG200HWjlJJtbH9TL18XRcSeuPbTxXN3FuTv3r02U1faK+HMshe6Omf9KN+naNi/3aM0VfDoRSwzmoWX39wKcHoz+t608WTnrMvnHV+q0x8b5dq25eWl798O6BnH4kdydp/KQg/kTxvm2/XjDnUz+88bJFefEvLKXxS23F/+NZjz9//o3f+1Zu/Ftj/HJb8U9+oO+5sx65fknu/tkT90+lrfgjzzx6y+LDL9qR2//bY/xqW/FX7Hy8d+7eBx7M7f9w3D+z24r/9Ds/+Ke7nrzv2dz4Icbvayv+6p2bvtw7uPeE3PgPxv3T3974eWHH6U8NDv5lKC/+EzH+3Lbi37n9tnfcMf+mMxuPb+OpJ1kZ989AW/HPPv7+6+bsve+YvHNncnu3XjkBXpsOS8/bN6TldvPMTjXkC98cqtTe881J/8/tZkMZY+3Mm8H4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC8Ov326lM/ed57PrqqkoSQ5Kyzr4l4X3nWihVDbbQ78syjtyw+/KIdjXWL2ogDAAAAFIt5eKleUw2LwuXJ7HB00/XjHMHRsZRMrM/OIcQ42TmCduPs3bt/7qGTOOUu9afSpTg9XYozq0txersUp1oQpxpaizN7yjilif2p5sfpm06cKfrT36U4c7oUZ26X4szrUpz5XYozMGWc1sfhgi7FWdilOId1Kc7hXYpzRJfivK5LcY7sUpzsnPJ0x+HcdM2j8uKM3ygXxqkk5fodzebTYzvHdNhOf4vt5L4et9jO7BbbOS7zuNI026m22M4bO2wnabGdN3fYTqmgnThur8j2L7YTSy2O/yu7FGdbl+Jc1aU4V3cpzue7FOcLXYpzTYdxAFoV8//9+d5A6K28K/SlZ5zsLEDMdxeP/5z8epd3Qorx3pCpn1UUL5uoZ+Itnm7/SlPHW5Kp75kQr1LPR6aIV22MtzRzZ+H2ZicUMv07MVPfWxQvO7EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADPot1ef+snz3vPRVSEJY/+a2tdEvK88a8WKoTba3bXq5qXl1Q/vbqzrrbQRCAAAACgU8/Ceek019FaWh95k1oT1quk8QDUtlwdqy8F5YeXYMhkqjZf7kgWTH1cO9cdV0sct27ph07ItV25767oNI5eMXjK68e3LT11++vBpp5+2bO269aPDtZ8h9DaL19CPEML49MOWK7d9dmT9+tHNW2qV2f4vSh+3KC0n6eMG3xaGx5bXpv1fWNBeaVJ7M3ej+OgBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwH+zab6hbZx0H8OckuUl2t9rI/mVlvQ39M+oc2tY76XQsBwQHW1t6GUgyvY7iWhzermVrR51xK7jNFkXYKJRKX1ipw83hm/1xQ9wfCpVZLXivRbahE/SFsumkG30hHZHem5ObpElzF0q7dZ/Pi3OS5/k9z+88eVH4nlsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAM6tydroeKU8Vh2OQoh61NS7SObS2TguDdD3ay9s/VFu5MTy1rFcZoCNAAAAgL6SHD7UHMmHXCYd0uGq6W+LQ8tEmM39AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAx89kbXS8Uh6rXhyFEPWoqXeRzKWzcVwaoO+b7z71+ddGRv7ZOlYcYB8AAACgvySHp5oj+VAMS8JQdFVbXfJuYEHH+s66ZJ+Fc6zrfHfQq27JHOuumWPdp/rUrWvcdwQAAAD46Evyf6Y5Ugi5zLye+b9frk/qFnXUpRv3Urg2d1YeHAAAAJizJP/PhvJiyGWKzbw+17y/uKMuWd/v7/bJ+mU91vf7e/7axt3f6QEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgo2OyNjpeKY9V01EIUY+aehfJXDobx6UB+q56cfjftx56eHHrWC4zwEYAAABAX0kOn43e+ZDLDIehcPF07h+5ef8zX3nmudEQwkzMz2bDjg3btt2zauaa1K08cmjoh4ff/u5pdStnruftgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwFkzWRsdr5THqhdFIUQ9aupdJHPpbByXBuj7xhe//Pcnjj3/VutYcYB9AAAAgP6SHD6b/fOhGLIhG66Y/taa9U9Jdazv9c4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuHDc++37v7VhYmLjPT744IMPzQ/n+18mAADgbFsUolCf9rfGSL2vK9ef54cGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+FCZro+OV8lg1H4UQ9aipd5HMpbNxXBqgb/zC0dy8Ey++3DpWHGAfAAAAoL8kh89m/3wohqEwFC6f/tbtncB0/i+cw4cEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPlQma6PjlfJYdV4UQtSjpt5FMpfOxnFpgL6P79z3hYPzf3BL61guM8BGAAAAQF9JDs82R/Ihl7k25MLVje8T7QuidOPe/b3A7LqtbcuG57yu1rYuPed1uzpOlmmcZmZdPtmvMHNvrit1rgs/KbWsK4Zm+1LburCnbdG8Ps/Z2QQAAADOpST/55ojhZDL5Fpy7s/b6gtyLgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQw2RtdLxSHqtGUQhRj5p6F8lcOhvHpQH63v/7T17y9V/s3t46VhxgHwAAAKC/JIfPZv98KIaF4RNh4XTuD4X2+qTuP5WTBx/77z+Wh7DiiqmRTM/9f/vGTS91XkJItRelQpjf6Bf16Pe7Pz5239L6ySdCWHF5+uoP2q99y7j+bGXj2m2Hp7ae4YcBAACAC0iS/4eaI4WQy9zdM/8nyfsD5f/59+381WWNayORd6xIFRr9Uj36fWnpU39dtvpfb5/K/2fq99l9mw9e1tZwZqRDFNfLm7evm7r+QCo59Uz/dEf/5Hf56nfe+t+mHY+enOmfD/nG+IJMt/6nXztcFNcnUnura97fW2vvn+lx/of/8PKx3yzY/d6p/u8uGm72v+YM5z9z/+HbHtlzw75D69r7hxBK3fq/894t4co/3/VQ5/mHOzZu/eVbrx2iuH5k8fEDq/cXb2zvH3X0T37/Xx57fM/PHv3+c0n/5P+KLF8y1/6pjv6v7rp05ysPrl/Q3j/V4/wv3f7ayJbS9/7Uef47Bz7/k9c9fcfrG+IHOqcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuLJO10fFKeayaikKIetTUu0jm0tk4Lg3Q981bj75z++6f/rh1rDjAPgAAAEB/SQ6fzf75UAzZkA3D07n/2crGtdsOT20NhZnZqHHPTGy5d9unN23Zfved5+nJAQAAgLlK8n+mOVIIuczSMNTI/+XN29dNXX8gleT/VJL/N901sXFFaNa9uuvSna88uH5B8z1BCNP/LSB/qu5zs3U333S0cPwv31zWtW7VbN2RxccPrN5fvDGpC611K0Pz/cST1z19x+sb4geaz9da95lvbJlovJ5I9h2+7ZE9N+w7tK55jsZ9uLFvUjeR2ltd8/7eWlKXbtzzjXMDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKebrI2OV8pj1ZAOIepRU+8imUtn47g0QN81S3/90CUnnl/YOpbLDLARAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8nx04EAAAAAAA8n9thKqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqirs101oHVUfB+Bz7k3e3OYmbdK+YFRM06oodWFRENGNioq0IgVXlSLV1i5EQRBR6sJUWrFUxY1gdVNEBTVKQcHGYmmVVPwqblyooFBdCKUY0IbiQiXJObc304xXJ1VQnweGc8+Zmd/8Z87J5F4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOAfpadraKY9vOP+qVvOueGjR+868chN79y77aKHX/1uZNN1H+7tfenkxOYVW768ftmm/XevGd/9/KGf+t/65WjH4Idmm1Wp2wghHo8hNN6dfOaxiY/Pmh6LIYR6HBgNYTAuPTQYCwmrfw4hbG7VOXfnmycu3zLdbtvVM2d8SSGkeF+hWc/1zBqYWy//Lo20zrZOPXhJ+Pra9ds/Xf7G691jx0ZPHRIbbesphMUb28/vDiEsStu0vNqG8smpXRdC6G0778oOdZ3/B+u/tKR/bmr/l9pmh5y8f2WhXyscV+xn3YW2t8P1FqqsjqrHddJX6BdfRgtVVmceH0zt26ld9Sfz63mLoRZDV6v8e+KpNRLa5i2GODOXjVa/1prbkO6/0I+Ffq3Qr3cX7mvmummh1WOcO56PK4zn13FXGl/R/q6ex60l42entpH+UE/mfih+mNU87UPrvmbkuiZ/p5a/Q63tHTTfeGvi02Q001gzLj3tnF/nkfdNrH/iwvqG9w4PlNQR98aUHyvlb/1ksO/213Y+MFSWv7GW8muV8r9Ze+SH23a+8Fxp/tM5v14p/7IDvcfXvr9jZenzmczPp6tS/h1HP3hy+f/vHCutf0/Ob1TKv2b8SE//1IGDpfWvzs9nUaX8r66+8dtXPt93rDQ/5PzeSvkbxu97qmd46uLS/IP5+TSrrZ8fx674Ynj4+5Gy/M9yfn+l/JdHd1/14pJda0rnd11+PgOV8m++YP/2vql955W9O+OeM/WfE+C/aVn6jvV46lf9nblQbb8Xnh3pmv3O15e2/jN5oYLp6yz+C/MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4Dd24IAEAAAAQND/1+0IFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4KgAA//9pfTUb")

15m34.313110328s ago: executing program 5 (id=338):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0, 0x0, 0x6f2}, 0x18)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x9)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
fanotify_mark(0xffffffffffffffff, 0x469, 0x40001002, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
syz_mount_image$bcachefs(&(0x7f00000058c0), &(0x7f00000000c0)='./file0\x00', 0x3, &(0x7f0000000000)={[{@inodes_32bit}, {@prjquota}, {@errors_fix_safe}, {@errors_ro}, {@reconstruct_alloc}, {@recovery_pass_last={'recovery_pass_last', 0x3d, 'initialize_subvolumes'}}, {@nochanges}, {@verbose}], [{@audit}]}, 0x1, 0x590a, &(0x7f000000b240)="$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")

15m27.227815942s ago: executing program 5 (id=343):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_io_uring_setup(0x110, &(0x7f00000000c0)={0x0, 0x10, 0x0, 0x3}, &(0x7f0000000180)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
io_uring_register$IORING_REGISTER_FILES(r3, 0x2, &(0x7f0000000300)=[0xffffffffffffffff], 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[0xffffffffffffffff], 0x1, 0x0, 0x1})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
io_uring_enter(r3, 0x47f6, 0x0, 0x0, 0x0, 0x0)

15m23.9982367s ago: executing program 5 (id=346):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_io_uring_setup(0x110, &(0x7f00000000c0)={0x0, 0x10, 0x0, 0x3}, &(0x7f0000000180)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
io_uring_register$IORING_REGISTER_FILES(r3, 0x2, &(0x7f0000000300)=[0xffffffffffffffff], 0x1)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[0xffffffffffffffff], 0x1, 0x0, 0x1})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
io_uring_enter(r3, 0x47f6, 0x0, 0x0, 0x0, 0x0)

15m18.803190257s ago: executing program 5 (id=350):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x400, &(0x7f0000000500), 0xff, 0x260, &(0x7f0000000980)="$eJzs3U9IHFccB/DfzO7Wqkux7aVQ+gdKKa0g9lboxV5aEIpIKYW2YCmllxYtWKU37SmXHJJjSIKnXCTkFpNj8CK5JARyMokHcwkkkkMkhySwYXcU/LOJxl13gvP5wDoz+ub93jDzfSPiMAEUVl9EDEVEKSL6I6ISEcnWBh9nn76NzbnupbGIWu2Hh0mjXbad2dyvNyJmI+KriFhMk/irHDG98Mvq4+XvPjs+Vfn03MLP3R09yA1rqyvfr58dOXZx+Mvp6zfvjyQxFNVtx9V+SZPvlZOIdw6j2GsiKec9AvZj9L8Lt+q5fzciPmnkvxJpZCfvxOQbi5X44syL9j354Mb7nRwr0H61WqV+D5ytAYWTRkQ1knQgIrL1NB0YyH6Hv13qSf+emPy3/8+JqfE/8p6pgHapRqx8e7nrUu+O/N8rZfkHjqjsj1IrP47O36mvrJfyHhDQER9ki/r9v/+3mc9D/qFw5B+KS/6huOQfikv+4ehp9v+mzcg/FJf8Q3HJPxSX/ENxHTj/p54d3qCAjtiafwCgWGpdB3pquP0PIgMdl/f8AwAAAAAAAAAAAAAAAAAA7DbXvTS2+WlPj+U9W1w9HbH2TdZ0d/1S433EEW82vvY8Srb1mOyrwsv9+lGLHbTofM5PX791N9/61z7Mt/7MeMTs/xExWC43rr1tF1Sycf0d3Nt7/Lzye4sFXtHOdwN8/VNn6+/0dD7f+sPLEVfq889gs/knjfcay+bzT7V+/lqs/8+TFjsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACgY54HAAD//7UiauA=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x17e)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000140)=0x10000000)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400010bce)
r1 = syz_open_dev$MSR(&(0x7f0000000380), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
getpgid(0x0)
write$P9_RREADLINK(r3, &(0x7f0000000000)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab)

15m2.356495288s ago: executing program 33 (id=350):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x400, &(0x7f0000000500), 0xff, 0x260, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x17e)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000140)=0x10000000)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400010bce)
r1 = syz_open_dev$MSR(&(0x7f0000000380), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
getpgid(0x0)
write$P9_RREADLINK(r3, &(0x7f0000000000)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab)

9m31.811344736s ago: executing program 4 (id=784):
r0 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syz_tun\x00', <r1=>0x0})
poll(&(0x7f0000000a00)=[{0xffffffffffffffff, 0x400}, {0xffffffffffffffff, 0x50}, {0xffffffffffffffff, 0x40}], 0x3, 0x1)
syz_open_procfs(0xffffffffffffffff, 0x0)
r2 = openat$sequencer(0xffffffffffffff9c, 0x0, 0x40002, 0x0)
write$sequencer(r2, 0x0, 0x8)
syz_open_procfs(0x0, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, 0x0, 0x0, 0x40800)
recvmsg$qrtr(r4, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000}, 0x38, 0x10020)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000940)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r7 = accept$alg(r6, 0x0, 0x0)
sendmsg$alg(r7, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=[@assoc={0x18, 0x117, 0x4, 0xd4e5}, @op={0x18, 0x117, 0x3, 0x1}], 0x30}, 0x0)
write$binfmt_script(r7, &(0x7f0000000600), 0xfec8)
openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x40d03, 0x0)
recvmmsg(r7, &(0x7f00000008c0)=[{{&(0x7f00000000c0)=@pptp={0x18, 0x2, {0x0, @initdev}}, 0x80, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/200, 0x6}, {&(0x7f0000000140)=""/9, 0xa}, {&(0x7f0000000300)=""/225, 0x2}, {&(0x7f0000000400)=""/41, 0xfeb2}, {&(0x7f0000000440)=""/123, 0x7b}, {&(0x7f00000004c0)=""/203, 0xcb}], 0x6, &(0x7f0000000640)=""/123, 0x7b, 0x2000000}}, {{&(0x7f00000006c0), 0x80, &(0x7f0000000840), 0x0, &(0x7f0000000880)=""/24, 0xffffffffffffffe0}}], 0x2, 0xcb, &(0x7f0000008000)={0x0, 0x989680})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r1, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x8}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettfilter={0x24, 0x2e, 0x1, 0x70bd2d, 0x25dfdc03, {0x0, 0x0, 0x0, r1, {0x0, 0x1}, {0x2, 0xfff1}, {0x0, 0xfff2}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000090}, 0x240410c0)

9m27.932233164s ago: executing program 4 (id=790):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18050000000004000000000000000000850000007a00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
socket$packet(0x11, 0x3, 0x300)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={0xffffffffffffffff, 0x0, 0x4, 0x0, &(0x7f0000000900)="e02742e8", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2001}, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="1801000000000000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
prlimit64(0x0, 0xe, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = socket(0x10, 0x3, 0x0)
recvmsg$kcm(r4, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x40)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
unshare(0x2c020400)
r5 = msgget$private(0x0, 0x101)
msgsnd(r5, &(0x7f0000000000)={0x2}, 0x4, 0x0)
msgsnd(0x0, &(0x7f0000000300)=ANY=[@ANYRESOCT], 0x2000, 0x0)
msgrcv(r5, 0x0, 0x0, 0x1, 0x5800)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendto$l2tp6(0xffffffffffffffff, 0x0, 0x0, 0x4890, &(0x7f0000000040)={0xa, 0x0, 0xfffffffd, @mcast1, 0x6, 0x4}, 0x20)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r0, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
writev(r0, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
shutdown(r0, 0x1)

9m25.903135865s ago: executing program 4 (id=794):
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x3, 0x3, &(0x7f0000000040)=@framed={{0x18, 0x2, 0x0, 0x0, 0xda, 0x0, 0x0, 0x0, 0x2}, [@func={0x85, 0x0, 0x1, 0x0, 0x4}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffea5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r1, &(0x7f0000000440), 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00'}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=@base={0x12, 0x4, 0x8, 0xb}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r3, &(0x7f0000000240), &(0x7f0000000180)=@tcp6=r2}, 0x20)
sendmmsg$inet6(r2, &(0x7f0000002000)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f00000009c0)='.', 0x1}], 0x1}}], 0x1, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000900)={0x1, &(0x7f00000008c0)=[{0x6, 0xfe}]})
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
close_range(r4, 0xffffffffffffffff, 0x0)
listen(r1, 0x0)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
r6 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000d40), 0x2, 0x0)
ioctl$VIDIOC_ENUM_FMT(r6, 0xc0405602, &(0x7f0000000d80)={0x2, 0xc, 0x1, "1f7e4866ed22b6b475c53e9ea337f839087ef9ed5307b7ca4523d440ca318628", 0x3132564e})
r7 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f00000001c0), 0x600, 0x0)
r8 = openat(r7, &(0x7f0000000000)='./file0\x00', 0x400000, 0x100)
ioctl$EXT4_IOC_GROUP_ADD(r4, 0x4010586e, &(0x7f00000000c0)={0x2000, 0x300000000000000, 0x0, 0x7})
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r8, 0x40045542, 0x0)
connect$vsock_stream(r5, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)

9m23.731220267s ago: executing program 4 (id=798):
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000540)={'wlan0\x00'})
r1 = socket$nl_route(0x10, 0x3, 0x0)
io_setup(0x4, 0x0)
ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4048884)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r5 = socket$kcm(0x21, 0x2, 0xa)
sendmsg$kcm(r5, &(0x7f0000000080)={&(0x7f0000000100)=@rxrpc=@in6={0x21, 0x3, 0x2, 0x1c, {0xa, 0x4e20, 0x9c000000, @ipv4={'\x00', '\xff\xff', @remote}, 0x1df}}, 0x80, 0x0, 0x0, &(0x7f0000001240)=[{0x10, 0x110, 0x1, "dc"}], 0x10}, 0x40)
sendmsg$nl_route(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000600)=@bridge_getneigh={0x20, 0x1e, 0xb7b6511a36acb75d}, 0x20}}, 0x0)

9m22.19054741s ago: executing program 4 (id=801):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18050000000004000000000000000000850000007a00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
socket$packet(0x11, 0x3, 0x300)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={0xffffffffffffffff, 0x0, 0x4, 0x0, &(0x7f0000000900)="e02742e8", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2001}, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="1801000000000000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
prlimit64(0x0, 0xe, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x18}}, 0x0)
recvmsg$kcm(r4, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x40)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
unshare(0x2c020400)
r5 = msgget$private(0x0, 0x101)
msgsnd(0x0, &(0x7f0000000300)=ANY=[@ANYRESOCT], 0x2000, 0x0)
msgrcv(r5, 0x0, 0x0, 0x1, 0x5800)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendto$l2tp6(0xffffffffffffffff, 0x0, 0x0, 0x4890, &(0x7f0000000040)={0xa, 0x0, 0xfffffffd, @mcast1, 0x6, 0x4}, 0x20)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r0, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
writev(r0, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
shutdown(r0, 0x1)

9m20.870017922s ago: executing program 4 (id=805):
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, 0x0, 0x0)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f00000000c0)=0xffffffff, 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, 0x0, 0x0)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e2b, @local}, 0x10)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0xfffffffc}, 0x0)
socket$netlink(0x10, 0x3, 0xa)
ioctl$sock_SIOCSIFBR(0xffffffffffffffff, 0x8941, 0x0)
r3 = open(&(0x7f0000000040)='./file1\x00', 0x1850c2, 0x14c)
ftruncate(r3, 0x200004)
sendfile(0xffffffffffffffff, r3, 0x0, 0x80001d00c0d1)

9m3.246314629s ago: executing program 34 (id=805):
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, 0x0, 0x0)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f00000000c0)=0xffffffff, 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, 0x0, 0x0)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e2b, @local}, 0x10)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0xfffffffc}, 0x0)
socket$netlink(0x10, 0x3, 0xa)
ioctl$sock_SIOCSIFBR(0xffffffffffffffff, 0x8941, 0x0)
r3 = open(&(0x7f0000000040)='./file1\x00', 0x1850c2, 0x14c)
ftruncate(r3, 0x200004)
sendfile(0xffffffffffffffff, r3, 0x0, 0x80001d00c0d1)

8m26.979531947s ago: executing program 2 (id=866):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000007c0)=ANY=[], 0x4c}, 0x1, 0x0, 0x0, 0x24000000}, 0x0)
openat$dsp(0xffffffffffffff9c, 0x0, 0x101a02, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x10031, 0xffffffffffffffff, 0x65be1000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x0, 0x0)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ptrace(0x10, 0x1)
mbind(&(0x7f00001fa000/0x2000)=nil, 0x2000, 0x1, 0x0, 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000000180)={0x1})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000002000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, &(0x7f0000000040)="0f01cb650f741065666765f36f0f330f09660f3a0cb9000000752066b9800000c00f326635004000000f300f01d7ba4100ed", 0x32}], 0x1, 0x4498bda7e2139f51, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x1c, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)={0x78, r5, 0x5, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x4c, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @val={0x2d, 0x1a, {0x1, 0x1, 0x7, 0x0, {0xa600000000000000, 0x2, 0x0, 0x3fe, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x9, 0x3}}, @val={0x72, 0x6}, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x78}}, 0x20000014)
ioctl$KVM_SET_PIT(r3, 0x8048ae66, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, 0x0)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x0, 0x8000, 0x40, 0x0, 0x0, 0x2004cb, 0x0, 0xfffffffffffffffe, 0x5, 0x7fff, 0x1000200004, 0x4, 0x2, 0x0, 0x1], 0x8080000})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_SET_PIT2(r3, 0x4070aea0, &(0x7f0000002400)={[{0x3, 0x8ce, 0xfa, 0x5, 0x3, 0x96, 0x9, 0x6, 0x75, 0x0, 0x2, 0x6, 0xfffffffe}, {0x15, 0x1, 0x6, 0x2, 0x1, 0x6, 0x2, 0x6, 0xb, 0x5, 0x4, 0x9, 0x1}, {0x0, 0x1000, 0x8, 0x52, 0x1, 0x2a, 0x7f, 0x8, 0x8, 0x40, 0xf4, 0x6, 0x200}], 0xfffffffe})

8m20.048402807s ago: executing program 2 (id=875):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b07080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf5af51d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa16509945ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88c3c44b3b7486f979e8a3174b531f573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867ec92d13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d93e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a0000000000000000000000000000cf7b6c4ba9bec153d6834bfef080df374703a8ff56a63ec1fe5f2e05a79e3cace7283dd68d41e94420c325fe4dae144fde5ec25a87d625cab20753a77b323fa3783c8b675859b9012647885a242adfee2fe812ecbe5191e0a15142f7349e7627cc39d724e2e34e7a24154f26ae3125b36d0504965295d0453902ac7079b11a3a1e655e482331e3dc35b2e7e4e3ea99064fe5b9c8ae0ca3e5fd653f3286a99d81ce4eba765c38d097391ad4"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
dup(r5)
io_uring_setup(0x2e34, &(0x7f0000000240)={0x0, 0xe148, 0x0, 0x0, 0xd4})
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r6, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x72, 0x11cfa, 0x0, 0x8000008, 0x3, 0x4, 0x1, 0x0, 0x7cce8c743ee810df})
read(r6, &(0x7f0000000840)=""/40, 0x28)
prlimit64(0x0, 0xe, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000300)='tlb_flush\x00'}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000003c0), 0xfef85154c7902b6e)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r7, 0x40505330, &(0x7f0000000bc0)={0x800100, 0x0, 0x0, 0x724f, 0x0, 0x55a})
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e22, @local}, 0x10)

8m17.333135469s ago: executing program 2 (id=878):
r0 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syz_tun\x00', <r1=>0x0})
poll(&(0x7f0000000a00)=[{0xffffffffffffffff, 0x400}, {0xffffffffffffffff, 0x50}, {0xffffffffffffffff, 0x40}], 0x3, 0x1)
syz_open_procfs(0xffffffffffffffff, 0x0)
r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080), 0x40002, 0x0)
write$sequencer(r2, 0x0, 0x8)
syz_open_procfs(0x0, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, 0x0, 0x0, 0x40800)
recvmsg$qrtr(r4, 0x0, 0x0, 0x10020)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000940)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r7 = accept$alg(r6, 0x0, 0x0)
sendmsg$alg(r7, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
write$binfmt_script(r7, &(0x7f0000000600), 0xfec8)
openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x40d03, 0x0)
recvmmsg(r7, &(0x7f00000008c0)=[{{&(0x7f00000000c0)=@pptp={0x18, 0x2, {0x0, @initdev}}, 0x80, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/200, 0x6}, {&(0x7f0000000140)=""/9, 0xa}, {&(0x7f0000000300)=""/225, 0x2}, {&(0x7f0000000400)=""/41, 0xfeb2}, {&(0x7f0000000440)=""/123, 0x7b}, {&(0x7f00000004c0)=""/203, 0xcb}], 0x6, &(0x7f0000000640)=""/123, 0x7b, 0x2000000}}, {{&(0x7f00000006c0), 0x80, &(0x7f0000000840), 0x0, &(0x7f0000000880)=""/24, 0xffffffffffffffe0}}], 0x2, 0xcb, &(0x7f0000008000)={0x0, 0x989680})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r1, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x8}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettfilter={0x24, 0x2e, 0x1, 0x70bd2d, 0x25dfdc03, {0x0, 0x0, 0x0, r1, {0x0, 0x1}, {0x2, 0xfff1}, {0x0, 0xfff2}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000090}, 0x240410c0)

8m15.514920618s ago: executing program 2 (id=881):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24000000}, 0x0)
openat$dsp(0xffffffffffffff9c, 0x0, 0x101a02, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x10031, 0xffffffffffffffff, 0x65be1000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x0, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ptrace(0x10, 0x1)
mbind(&(0x7f00001fa000/0x2000)=nil, 0x2000, 0x1, 0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000000180)={0x1})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000002000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, &(0x7f0000000040)="0f01cb650f741065666765f36f0f330f09660f3a0cb9000000752066b9800000c00f326635004000000f300f01d7ba4100ed", 0x32}], 0x1, 0x4498bda7e2139f51, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x1c, r6, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)={0x78, r6, 0x5, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x4c, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @val={0x2d, 0x1a, {0x1, 0x1, 0x7, 0x0, {0xa600000000000000, 0x2, 0x0, 0x3fe, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x9, 0x3}}, @val={0x72, 0x6}, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x78}}, 0x20000014)
ioctl$KVM_SET_PIT(r4, 0x8048ae66, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, 0x0)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x0, 0x8000, 0x40, 0x0, 0x0, 0x2004cb, 0x0, 0xfffffffffffffffe, 0x5, 0x7fff, 0x1000200004, 0x4, 0x2, 0x0, 0x1], 0x8080000})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_SET_PIT2(r4, 0x4070aea0, &(0x7f0000002400)={[{0x3, 0x8ce, 0xfa, 0x5, 0x3, 0x96, 0x9, 0x6, 0x75, 0x0, 0x2, 0x6, 0xfffffffe}, {0x15, 0x1, 0x6, 0x2, 0x1, 0x6, 0x2, 0x6, 0xb, 0x5, 0x4, 0x9, 0x1}, {0x0, 0x1000, 0x8, 0x52, 0x1, 0x2a, 0x7f, 0x8, 0x8, 0x40, 0xf4, 0x6, 0x200}], 0xfffffffe})

8m9.742982511s ago: executing program 2 (id=889):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
socket$packet(0x11, 0x3, 0x300)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={0xffffffffffffffff, 0x0, 0x4, 0x0, &(0x7f0000000900)="e02742e8", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2001}, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="1801000000000000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
prlimit64(0x0, 0xe, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x18}}, 0x0)
recvmsg$kcm(r4, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x40)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
unshare(0x2c020400)
r5 = msgget$private(0x0, 0x101)
msgsnd(r5, &(0x7f0000000000)={0x2}, 0x4, 0x0)
msgsnd(0x0, &(0x7f0000000300)=ANY=[@ANYRESOCT], 0x2000, 0x0)
msgrcv(r5, 0x0, 0x0, 0x1, 0x5800)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendto$l2tp6(0xffffffffffffffff, 0x0, 0x0, 0x4890, &(0x7f0000000040)={0xa, 0x0, 0xfffffffd, @mcast1, 0x6, 0x4}, 0x20)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r0, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
writev(r0, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
shutdown(r0, 0x1)

8m8.192721765s ago: executing program 2 (id=890):
openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = dup(r2)
r4 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r4, 0x40000000af01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000200)={0x1, 0x1, 0x0, &(0x7f0000000740)=""/51, 0x0})
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f0000000340))
r6 = dup(r5)
ioctl$VHOST_NET_SET_BACKEND(r4, 0x4008af30, &(0x7f0000000000)={0x1, r6})
ioctl$VHOST_SET_FEATURES(r4, 0x4008af00, &(0x7f00000001c0)=0x304008000)
ioctl$VHOST_NET_SET_BACKEND(r4, 0x4008af30, &(0x7f00000003c0)={0x1, r3})
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), 0xffffffffffffffff)
syz_io_uring_setup(0x499f, 0x0, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$ndb(0x0, 0x0, 0x22001)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_ENABLE_BEARER(r7, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES16=0x0], 0x34}}, 0x0)

7m52.92270511s ago: executing program 35 (id=890):
openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = dup(r2)
r4 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r4, 0x40000000af01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000200)={0x1, 0x1, 0x0, &(0x7f0000000740)=""/51, 0x0})
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f0000000340))
r6 = dup(r5)
ioctl$VHOST_NET_SET_BACKEND(r4, 0x4008af30, &(0x7f0000000000)={0x1, r6})
ioctl$VHOST_SET_FEATURES(r4, 0x4008af00, &(0x7f00000001c0)=0x304008000)
ioctl$VHOST_NET_SET_BACKEND(r4, 0x4008af30, &(0x7f00000003c0)={0x1, r3})
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), 0xffffffffffffffff)
syz_io_uring_setup(0x499f, 0x0, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$ndb(0x0, 0x0, 0x22001)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_ENABLE_BEARER(r7, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES16=0x0], 0x34}}, 0x0)

4m5.689651638s ago: executing program 7 (id=821):
r0 = syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, 0x0, 0x0)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f00000000c0)=0xffffffff, 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, 0x0, 0x0)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e2b, @local}, 0x10)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0xfffffffc}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0xa)
r5 = dup(r4)
ioctl$sock_SIOCSIFBR(0xffffffffffffffff, 0x8941, 0x0)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
r6 = open(&(0x7f0000000040)='./file1\x00', 0x1850c2, 0x14c)
syz_usb_control_io$hid(r0, &(0x7f0000000440)={0x24, 0x0, 0x0, &(0x7f00000003c0)={0x0, 0x22, 0xb, {[@main=@item_4={0x3, 0x0, 0xa, "dae859ec"}, @main=@item_012={0x0, 0x0, 0xc}, @local=@item_4={0x3, 0x2, 0x2, '\b3qu'}]}}, &(0x7f0000000400)={0x0, 0x21, 0x9, {0x9, 0x21, 0x8d, 0x2, 0x1, {0x22, 0x1f4}}}}, &(0x7f0000000680)={0x2c, 0x0, 0x0, &(0x7f0000000580)={0x0, 0x8, 0x1, 0x9}, 0x0, &(0x7f0000000640)={0x20, 0x3, 0x1, 0x9}})
ftruncate(r6, 0x200004)
sendfile(r5, r6, 0x0, 0x80001d00c0d1)

4m1.491958923s ago: executing program 7 (id=1196):
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, 0x0, 0x0)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, 0x0, 0x0)
r3 = socket$netlink(0x10, 0x3, 0xa)
r4 = dup(r3)
r5 = open(&(0x7f0000000040)='./file1\x00', 0x1850c2, 0x14c)
ftruncate(r5, 0x200004)
sendfile(r4, r5, 0x0, 0x80001d00c0d1)

3m55.580428217s ago: executing program 7 (id=1201):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000007c0)=ANY=[], 0x4c}, 0x1, 0x0, 0x0, 0x24000000}, 0x0)
openat$dsp(0xffffffffffffff9c, 0x0, 0x101a02, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x10031, 0xffffffffffffffff, 0x65be1000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x0, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ptrace(0x10, 0x1)
mbind(&(0x7f00001fa000/0x2000)=nil, 0x2000, 0x1, 0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000000180)={0x1})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000002000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, &(0x7f0000000040)="0f01cb650f741065666765f36f0f330f09660f3a0cb9000000752066b9800000c00f326635004000000f300f01d7ba4100ed", 0x32}], 0x1, 0x4498bda7e2139f51, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)={0x78, r6, 0x5, 0x70bd26, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x4c, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @val={0x2d, 0x1a, {0x1, 0x1, 0x7, 0x0, {0xa600000000000000, 0x2, 0x0, 0x3fe, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x9, 0x3}}, @val={0x72, 0x6}, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x78}}, 0x20000014)
ioctl$KVM_SET_PIT(r4, 0x8048ae66, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, 0x0)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x0, 0x8000, 0x40, 0x0, 0x0, 0x2004cb, 0x0, 0xfffffffffffffffe, 0x5, 0x7fff, 0x1000200004, 0x4, 0x2, 0x0, 0x1], 0x8080000})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_SET_PIT2(r4, 0x4070aea0, &(0x7f0000002400)={[{0x3, 0x8ce, 0xfa, 0x5, 0x3, 0x96, 0x9, 0x6, 0x75, 0x0, 0x2, 0x6, 0xfffffffe}, {0x15, 0x1, 0x6, 0x2, 0x1, 0x6, 0x2, 0x6, 0xb, 0x5, 0x4, 0x9, 0x1}, {0x0, 0x1000, 0x8, 0x52, 0x1, 0x2a, 0x7f, 0x8, 0x8, 0x40, 0xf4, 0x6, 0x200}], 0xfffffffe})

3m47.792265898s ago: executing program 7 (id=1212):
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, 0x0, 0x0)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f00000000c0)=0xffffffff, 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, 0x0, 0x0)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e2b, @local}, 0x10)
r3 = socket$netlink(0x10, 0x3, 0xa)
r4 = dup(r3)
ioctl$sock_SIOCSIFBR(0xffffffffffffffff, 0x8941, 0x0)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
r5 = open(&(0x7f0000000040)='./file1\x00', 0x1850c2, 0x14c)
ftruncate(r5, 0x200004)
sendfile(r4, r5, 0x0, 0x80001d00c0d1)

3m30.943503568s ago: executing program 36 (id=1212):
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, 0x0, 0x0)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f00000000c0)=0xffffffff, 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, 0x0, 0x0)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e2b, @local}, 0x10)
r3 = socket$netlink(0x10, 0x3, 0xa)
r4 = dup(r3)
ioctl$sock_SIOCSIFBR(0xffffffffffffffff, 0x8941, 0x0)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
r5 = open(&(0x7f0000000040)='./file1\x00', 0x1850c2, 0x14c)
ftruncate(r5, 0x200004)
sendfile(r4, r5, 0x0, 0x80001d00c0d1)

4.351340542s ago: executing program 9 (id=1645):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xa, 0x5, 0x2, 0x7, 0x0, 0x1}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000640), &(0x7f0000000740), 0x75, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r1}, 0x10)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000140)=@base={0x6, 0x4, 0x1ff, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffe}, 0x48)

4.16285218s ago: executing program 9 (id=1647):
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x18)
mbind(&(0x7f00004fa000/0x4000)=nil, 0x4000, 0x2, 0x0, 0x8, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000059c0)='./bus\x00', 0x1400e, &(0x7f0000000100)={[{@quota}]}, 0x1, 0x441, &(0x7f00000009c0)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x42, 0x0)
ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f0000000740)={0x9, 0xcf0d, 0x5, 0x7, 0x0, 0x4000})

3.856018245s ago: executing program 3 (id=1650):
r0 = socket$rxrpc(0x21, 0x2, 0xa)
connect$rxrpc(r0, &(0x7f00000002c0)=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e20, 0x200, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x1}}, 0x24)
setsockopt$RXRPC_SECURITY_KEYRING(r0, 0x110, 0x2, 0x0, 0x0)

3.579149065s ago: executing program 8 (id=1652):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x8003}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x4c, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_OFFSET={0x8}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x22}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}, {0x14, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0xe8}}, 0x8840)

3.578925334s ago: executing program 3 (id=1653):
rt_sigprocmask(0x2, &(0x7f0000000100)={[0xfc6]}, &(0x7f0000001300), 0x8)

3.440215623s ago: executing program 3 (id=1654):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x1004e22}, 0x6e)
connect$unix(r1, &(0x7f0000000100)=@file={0x0, './file0\x00'}, 0x6e)

3.406348819s ago: executing program 9 (id=1655):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000240), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, 0x0)
pwritev(r0, 0x0, 0x0, 0x8, 0x49d)

3.323256052s ago: executing program 8 (id=1656):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYRESDEC, @ANYRESHEX, @ANYRES16, @ANYRES32, @ANYRES64, @ANYRES64, @ANYRES32, @ANYRES16, @ANYBLOB="0656155ec6d52387cf5061977015c366862e3d507eb645e53e0f4bb1cfc6af1c515f890a6da7b0ef328f836de804b406daaab2c7fa894bf2c0f933d6085c05161687b32c5485a39f7dad81e826c78c4dc48031c2a7e18c53566b0797a905a0f7b56fdf9347cec163da684162353be01884f30c6b60f8e9a57efff38c129adc7251e12e6a4de2df0b9e6702b076fec8b2e12e038fe261af429239c043249c0c3eb83a10cab15c0b52082194a024a085a5fbf926b77d22b0df8aa32a5546298edea2e2ee4b765fc80eb7ce31d73c7004217587ac6439574a1dcc8a111bdb00f1cd634517ae748f41d9127fac5749460066bb7254dd", @ANYRES8], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x1d, 0x10, &(0x7f0000000780)=ANY=[@ANYRES32=r0, @ANYRESOCT=r0, @ANYRES16=r0], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, @lsm=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000240)='virtio_transport_recv_pkt\x00', r1, 0x0, 0x1}, 0x18)
r2 = open(&(0x7f0000000300)='.\x00', 0x0, 0x2)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r3, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

3.310907951s ago: executing program 3 (id=1657):
r0 = syz_io_uring_setup(0x109, &(0x7f0000000340)={0x0, 0xd736, 0x80, 0x3, 0xbffffffa}, &(0x7f00000003c0)=<r1=>0x0, &(0x7f0000000300)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f00000002c0)=0x9, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0xa, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x80, 0x6000})
io_uring_enter(r0, 0x1c3a, 0xe176, 0x22, 0x0, 0x0)

3.241676885s ago: executing program 8 (id=1658):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$inet_udp_int(r4, 0x11, 0x64, 0x0, &(0x7f0000000040))
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014008000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x2d)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01d90000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00f7ffffffffffff130012800b00010062617461647600000400028008000a00", @ANYRES32=r2], 0x3c}}, 0x0)
socket(0x0, 0xa, 0x1)
sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000140)=ANY=[], 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

3.16735217s ago: executing program 9 (id=1659):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r0, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r1, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000007c0)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x14)
close_range(r1, 0xffffffffffffffff, 0x0)

3.167116444s ago: executing program 3 (id=1660):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000400000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sys_enter\x00', r2}, 0x10)
semctl$SEM_INFO(0x0, 0x1, 0x13, &(0x7f0000000240)=""/207)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xe, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x2, 0x5}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r4}, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000000)={r3, 0x58, &(0x7f0000000280)}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc}, 0x48)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x10010, 0xffffffffffffffff, 0x0)
write$nci(r0, 0x0, 0xfffffeea)

2.90944676s ago: executing program 9 (id=1661):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000240)="01", 0x1}], 0x1}, 0x4048841)
recvmsg(r0, &(0x7f0000000840)={0x0, 0x0, 0x0}, 0x10001)
sendmsg$inet(r1, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000019300)="0f", 0x1}], 0x1}, 0x1)
recvmsg(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x2002)

2.881709897s ago: executing program 6 (id=1662):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
io_setup(0x8f0, &(0x7f0000002400)=<r3=>0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
io_submit(r3, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2002000000, 0x4, 0x0, 0x1, 0x0, r0, &(0x7f0000000040)="0200ffff0000", 0x6, 0x0, 0x0, 0x2}])

1.871433159s ago: executing program 3 (id=1664):
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f00000001c0)={0x3, {{0xa, 0x4e24, 0x2, @mcast1, 0xff7ffffd}}, {{0xa, 0x4e08, 0x4a3, @local, 0x4f1}}}, 0x108)
syz_clone(0x104000, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
exit(0xffff)
tkill(r0, 0x12)

1.871282427s ago: executing program 8 (id=1665):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x9, 0x4, 0xdd, 0xa}, 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x4, r0, 0x4}, 0x38)

1.702729752s ago: executing program 8 (id=1666):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000000240)=""/61}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0xfffffffffffffdd0, 0x0, 0x41000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000740)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
epoll_pwait(0xffffffffffffffff, 0x0, 0x0, 0xfffffffe, 0x0, 0x0)

1.611402316s ago: executing program 6 (id=1668):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000500)={[{@dioread_nolock}, {@stripe={'stripe', 0x3d, 0x3}}, {@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {@nogrpid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@dioread_lock}, {@acl}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}]}, 0xfd, 0x573, &(0x7f0000000cc0)="$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")
r0 = syz_open_dev$loop(&(0x7f0000000180), 0x7, 0x103482)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00000014000800000000000000007f"}})
setitimer(0x1, 0x0, 0x0)
ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x400000000)

1.537008901s ago: executing program 0 (id=1669):
creat(&(0x7f0000000140)='./file0\x00', 0x49)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000000)='GPL\x00', 0x7, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000005c0)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[], &(0x7f0000000180), 0x0)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x0)

1.514761479s ago: executing program 8 (id=1670):
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080200000e"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1807000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)
ioctl$USBDEVFS_ALLOC_STREAMS(r4, 0x8008551c, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r3}, 0x18)
getsockname$packet(r1, &(0x7f00000002c0)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xe)
setsockopt$inet_sctp6_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r5, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)={0x60, 0x2, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8}, @IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x1}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x60}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x54, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x2c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x84}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e22}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)

1.287079986s ago: executing program 0 (id=1671):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b00)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000400000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x18)
timer_create(0x3, 0x0, &(0x7f0000044000)=<r2=>0x0)
timer_gettime(r2, &(0x7f00000001c0))

1.239872962s ago: executing program 6 (id=1672):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
close_range(r0, 0xffffffffffffffff, 0x200000000000000)

1.149458942s ago: executing program 9 (id=1673):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000ff0f00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0b00000007000000010001000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)

1.02337806s ago: executing program 0 (id=1674):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x16, 0x0, 0x0, &(0x7f0000000c40)='GPL\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @flow_dissector=0xfd122f3cb48753c8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff9}, 0x94)

886.479172ms ago: executing program 6 (id=1675):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYRES32=0xee01], 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x50)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x0, {{@in6=@private0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x40, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0xaa3, 0xfffffffffffffff8}, {0x0, 0x8}}}, 0xb8}}, 0x0)

823.69294ms ago: executing program 0 (id=1676):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x9, 0x4, 0xdd, 0xa}, 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x4, r0, 0x4}, 0x38)

643.327847ms ago: executing program 6 (id=1677):
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f00000001c0)={[{@noblock_validity}]}, 0x1, 0xb80, &(0x7f0000000c40)="$eJzs3M1rVFcbAPDn3nwYNb6JL/LyWkoNtGChOBrFSl2py9ZFof0DDHEiIdcPkhRMcBHbhXRVC910UWgXpX9AoetstNBV6aaVFrqXShHdp9zJnWQwM0mqMx4/fj84c8/HZM7z5JK555C5E8BLa6x8yCP2R8S5LGKk6s8jYrBRG4pYWn3eg/vXJh/evzaZxcrKB39nkVV9zdfKquPuqjEUEb+cyeK/n2ycd25hcWaiKOqzVfvw/MUrh+cWFg9NX5y4UL9QvzR+YvzY8RPHjr99pGu5vrv35tmvxk/t+f7Mrauv3fj9yyxOxXA11ppHt4zFWKxUWvv7I2Ki25Ml0lflk7X0Zf0JAwIAYFN5yxrufzESfbG+eBuJW78mDQ4AAADoipW+WPsfFQAAAPCiyuz/AQAA4AXX/BzAg/vXJpsl7ScSnq57pyNitF3+/bHUOA7FQETsepBF622t2eqPPbGxiNj30+iPZYke3Ye8maXrEfH/dvlnjfxHG3dxb8w/j4hu3Jk99kj7ecr/VBfmT50/AC+n5dOrF7KN1798bf0Tba5//W2uXY8j9fWv8/pvPf++Duu/97c5R/3Ap593Gmtd/xXfvnq7nL88PlFS/8K96xGv9Hde/5T5Zx3yP7fNOQb++PmHTmNl/mW+zfK081/5JuJg2/3P+jfaZJt/P9HhqemiXj22nePG7e/2dZq/9fyXpZy/uRd4Gsrzv6tD/lud/yvbnGP5r4N/dhrbOv/87mD2YaM2WPVcnZifnx2PGMzObuw/unkszec0X6PM/83XN//7b5d/+Z6wVP0eyr3A9epYtj9+ZM5D773zxuPn31tl/ucf8/zf3OYcX382e7fTWOr8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHg+5BExHFleW6vnea0WsTsi9sWuvLg8N//W1OWPLp0vxyJGYyCfmi7qRyJiZLWdle3xRn29ffSR9rGI2BsRX4zsbLRrk5eL86mTBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYM3uiBiOLK9FRB4RD0fyvFZLHRUAAADQdaOpAwAAAAB6zv4fAAAAXnz2/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPTY3gPLd7KIWDq5s1FKg9XYQNLIgF7LUwcAJNOXOgAgmf7UAQDJ2OMD2RbjQx1HdnQ9FgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACeXQf3L9/JImLp5M5GKQ1WYwNJIwN6LU8dAJBMX+oAgGT6UwcAJGOPD2RbjA91HNnR9VgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeHYNN0qW1yIib9TzvFaL2BMRozGQTU0X9SMR8Z+I+G1kYEfZHk8dNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF03t7A4M1EU9VkVFRWVtUrqdyYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFKYW1icmSiK+uxc6kgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA1OYWFmcmiqI+28NK6hwBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEjnnwAAAP///JMJmQ==")
openat(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', 0x42, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
unlink(&(0x7f0000000180)='./file1\x00')

619.908956ms ago: executing program 0 (id=1678):
pipe2(0x0, 0x0)
r0 = socket(0x1e, 0x4, 0x0)
bind$tipc(r0, 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0x2, 0x0, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000001000/0x4000)=nil)
brk(0x200000ffc000)

357.065282ms ago: executing program 0 (id=1679):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000680)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0xff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x473, &(0x7f0000000bc0)="$eJzs281rHOUfAPDvTF7a/vqS/Gp9aa0aLUJQTJq0ag9eFAWRioIe6jEm2xK6baSJYmuxqYgnQQp6Fo+if4E3EUQ9CV49eZJC0V7aeorM7Ey62WYTazaZ2P18YLPPM/PszvebeXv2eXYD6FpD2Z8kYkdE/BoRA43q0gZDjafrV89P3rh6fjKJhYXX/kjydteunp8sm5av215UhtOI9MOk2MhSs2fPnZyo12tnivro3Km3RmfPnnvinVMTJ2onaqfHjxw5fGjs6afGn+xInlle1/a9P7N/74tvXHp58tilN3/8Oot3R7G+OY9OGcoS/3Mh17ru0U5vrGI7m8pJb4WBcFt6IiLbXX35+T8QPXFz5w3ECx9UGhywrrJ705b2q+cXgDtYElVHAFSjvNFnn3/LxwZ1PTaFK882PgBleV8vHo01vZEWbfpaPt920lBEHJv/6/PsEes0DgEA0Ozjyc+O9kfEeze+einrewwsrknjnvz5t/zvrmIOZTAi/h8RuyPirojYExF3R+Rt742I+9YYz639n/TyGt9yRVn/75libmtp/6/s/cVgT1HbmefflxyfrtcOFv+T4ejbktXHVtjGt8//8km7dc39v+yRbb/sCxZxXO5tGaCbmpibyDulHXDlYsS+3uXyTxZnApKI2BsR+27vrXeVhenHvtzfrtHq+a+gA/NMC19k6c1n+c9HS/6lpHl+cvqW+cnRrVGvHRwtj4pb/fTzR6+22/6a8u+AK7XGc9P+b20ymDTP1852dvv/8vhP+5PX83nm/mLZuxNzc2fGIvqTo3l9yfLxm68t62X77PgfPrD8+b+7eE2W//0RkR3ED0TEgxHxUBH7wxHxSEQcWCHHH55bPf9IK9r/FyOmlr3+LR7/Lfv/9gs9J7//pt32/9n+P5yXhosl+fVvFcuFk10uWgNcy/8OAAAA/ivS/DvwSTqyWE7TkZHGd/j3xP/S+szs3OPHZ94+PdX4rvxg9KXlSNdAMR5an67XxpL54h0b46PjxVhxOV56qBg3/rRnW14fmZypT1WcO3S77W3O/8zvPVVHB6yzbcsuHe/f8ECACrTOo6dLqxdeCRcDuFP5vTZ0r1XO/3Sj4gA2nvs/dK/lzv8LLXVzAXBncv+H7uX8hy6Vfld1BECF3P+hK63ld/3rWNi6OcKoprBZd0peiCgL6aaIR2GdClVfmQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADrj7wAAAP//KFzmgQ==")

0s ago: executing program 6 (id=1680):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @remote}, 0x6}, 0x1c)
sendmsg$inet6(r0, &(0x7f0000000480)={&(0x7f0000000040)={0xa, 0x4e20, 0x89a8, @remote, 0x2}, 0x4f, 0x0}, 0x20008814)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0x106}, 0x1c)
timer_create(0x7, 0x0, 0x0)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, 0x0, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000140)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x2, 0x7, 0x28, 0x64, 0x0, 0x1, 0x6, 0x0, @remote, @remote}, {{0x4e22, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2, 0x2, 0x0, 0xe83}}}}}}, 0x0)

kernel console output (not intermixed with test programs):

el=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ve
[ 1015.041802][T12098] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[ 1016.694296][T12108] syz.3.1197 (12108): drop_caches: 2
[ 1018.915664][T12112] loop8: detected capacity change from 0 to 32768
[ 1020.282304][T12112] bcachefs (/dev/loop8): error validating superblock: Invalid superblock section clean: entry type (unknown jset_entry_type 255) overruns end of section
[ 1020.282304][T12112] clean (size 2912):
[ 1020.282304][T12112] flags:          0
[ 1020.282304][T12112] journal_seq:    10
[ 1020.282304][T12112] usage: type=inodes v=8
[ 1020.282304][T12112] usage: type=key_version v=0
[ 1020.282304][T12112] usage: type=reserved v=0
[ 1020.282304][T12112] usage: type=reserved v=0
[ 1020.282304][T12112] usage: type=reserved v=0
[ 1020.282304][T12112] usage: type=reserved v=0
[ 1020.282304][T12112] data_usage: btree: 1/1 [0]=2816
[ 1020.282304][T12112] data_usage: journal: 1/1 [0]=0
[ 1020.282304][T12112] data_usage: user: 1/1 [0]=16
[ 1020.282304][T12112] dev_usage: dev=0  
[ 1020.282304][T12112]   free: buckets=83 sectors=0 fragmented=0
[ 1020.282304][T12112]   sb: buckets=25 sectors=6152 fragmented=248
[ 1020.282304][T12112]   journal: buckets=8 sectors=2048 fragmented=0
[ 1020.282304][T12112]   btree: buckets=11 sectors=2816 fragmented=0
[ 1020.282304][T12112]   user: buckets=1 sectors=16 fragmented=240
[ 1020.282304][T12112]   cached: buckets=0 sectors=0 fragmented=0
[ 1020.282304][T12112]   parity: buckets=0 sectors=0 fragmented=0
[ 1020.282304][T12112]   stripe: buckets=0 sectors=0 fragmented=0
[ 1020.282304][T12112]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[ 1020.282304][T12112]   need_discard: buckets=0 sectors=0 fragmented=0
[ 1020.282304][T12112] log: 
[ 1020.282304][T12112] clock: write=1280
[ 1020.282304][T12112] btree_root: btree=extents level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ve
[ 1020.282508][T12112] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[ 1021.021756][T12125] ptrace attach of "./syz-executor exec"[11680] was attempted by "./syz-executor exec"[12125]
[ 1021.507844][ T8445] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1023.085977][T12143] syz.3.1205 (12143): drop_caches: 2
[ 1027.127737][T12169] syz.6.1209 (12169): drop_caches: 2
[ 1029.123485][T12167] loop8: detected capacity change from 0 to 32768
[ 1030.521153][T12167] bcachefs (/dev/loop8): error validating superblock: Invalid superblock section clean: entry type (unknown jset_entry_type 255) overruns end of section
[ 1030.521153][T12167] clean (size 2912):
[ 1030.521153][T12167] flags:          0
[ 1030.521153][T12167] journal_seq:    10
[ 1030.521153][T12167] usage: type=inodes v=8
[ 1030.521153][T12167] usage: type=key_version v=0
[ 1030.521153][T12167] usage: type=reserved v=0
[ 1030.521153][T12167] usage: type=reserved v=0
[ 1030.521153][T12167] usage: type=reserved v=0
[ 1030.521153][T12167] usage: type=reserved v=0
[ 1030.521153][T12167] data_usage: btree: 1/1 [0]=2816
[ 1030.521153][T12167] data_usage: journal: 1/1 [0]=0
[ 1030.521153][T12167] data_usage: user: 1/1 [0]=16
[ 1030.521153][T12167] dev_usage: dev=0  
[ 1030.521153][T12167]   free: buckets=83 sectors=0 fragmented=0
[ 1030.521153][T12167]   sb: buckets=25 sectors=6152 fragmented=248
[ 1030.521153][T12167]   journal: buckets=8 sectors=2048 fragmented=0
[ 1030.521153][T12167]   btree: buckets=11 sectors=2816 fragmented=0
[ 1030.521153][T12167]   user: buckets=1 sectors=16 fragmented=240
[ 1030.521153][T12167]   cached: buckets=0 sectors=0 fragmented=0
[ 1030.521153][T12167]   parity: buckets=0 sectors=0 fragmented=0
[ 1030.521153][T12167]   stripe: buckets=0 sectors=0 fragmented=0
[ 1030.521153][T12167]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[ 1030.521153][T12167]   need_discard: buckets=0 sectors=0 fragmented=0
[ 1030.521153][T12167] log: 
[ 1030.521153][T12167] clock: write=1280
[ 1030.521153][T12167] btree_root: btree=extents level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ve
[ 1030.521872][T12167] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[ 1030.668992][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1030.679190][T12173] loop3: detected capacity change from 0 to 32768
[ 1032.738226][T12173] bcachefs (/dev/loop3): error validating superblock: Invalid superblock section clean: entry type (unknown jset_entry_type 255) overruns end of section
[ 1032.738226][T12173] clean (size 2912):
[ 1032.738226][T12173] flags:          0
[ 1032.738226][T12173] journal_seq:    10
[ 1032.738226][T12173] usage: type=inodes v=8
[ 1032.738226][T12173] usage: type=key_version v=0
[ 1032.738226][T12173] usage: type=reserved v=0
[ 1032.738226][T12173] usage: type=reserved v=0
[ 1032.738226][T12173] usage: type=reserved v=0
[ 1032.738226][T12173] usage: type=reserved v=0
[ 1032.738226][T12173] data_usage: btree: 1/1 [0]=2816
[ 1032.738226][T12173] data_usage: journal: 1/1 [0]=0
[ 1032.738226][T12173] data_usage: user: 1/1 [0]=16
[ 1032.738226][T12173] dev_usage: dev=0  
[ 1032.738226][T12173]   free: buckets=83 sectors=0 fragmented=0
[ 1032.738226][T12173]   sb: buckets=25 sectors=6152 fragmented=248
[ 1032.738226][T12173]   journal: buckets=8 sectors=2048 fragmented=0
[ 1032.738226][T12173]   btree: buckets=11 sectors=2816 fragmented=0
[ 1032.738226][T12173]   user: buckets=1 sectors=16 fragmented=240
[ 1032.738226][T12173]   cached: buckets=0 sectors=0 fragmented=0
[ 1032.738226][T12173]   parity: buckets=0 sectors=0 fragmented=0
[ 1032.738226][T12173]   stripe: buckets=0 sectors=0 fragmented=0
[ 1032.738226][T12173]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[ 1032.738226][T12173]   need_discard: buckets=0 sectors=0 fragmented=0
[ 1032.738226][T12173] log: 
[ 1032.738226][T12173] clock: write=1280
[ 1032.738226][T12173] btree_root: btree=extents level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ve
[ 1032.739333][T12173] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[ 1034.220070][T12185] loop3: detected capacity change from 0 to 128
[ 1035.944185][T12191] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR
[ 1036.645685][T12199] syz.8.1215 (12199): drop_caches: 2
[ 1037.088007][T12200] loop0: detected capacity change from 0 to 128
[ 1037.234028][T12200] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1037.295391][T12200] ext4 filesystem being mounted at /252/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1037.605864][T12208] syz.8.1217 (12208): drop_caches: 2
[ 1038.035176][T12211] loop3: detected capacity change from 0 to 128
[ 1039.537889][ T5861] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1041.549591][T12227] loop6: detected capacity change from 0 to 32768
[ 1043.647219][T12227] bcachefs (/dev/loop6): error validating superblock: Invalid superblock section clean: entry type (unknown jset_entry_type 255) overruns end of section
[ 1043.647219][T12227] clean (size 2912):
[ 1043.647219][T12227] flags:          0
[ 1043.647219][T12227] journal_seq:    10
[ 1043.647219][T12227] usage: type=inodes v=8
[ 1043.647219][T12227] usage: type=key_version v=0
[ 1043.647219][T12227] usage: type=reserved v=0
[ 1043.647219][T12227] usage: type=reserved v=0
[ 1043.647219][T12227] usage: type=reserved v=0
[ 1043.647219][T12227] usage: type=reserved v=0
[ 1043.647219][T12227] data_usage: btree: 1/1 [0]=2816
[ 1043.647219][T12227] data_usage: journal: 1/1 [0]=0
[ 1043.647219][T12227] data_usage: user: 1/1 [0]=16
[ 1043.647219][T12227] dev_usage: dev=0  
[ 1043.647219][T12227]   free: buckets=83 sectors=0 fragmented=0
[ 1043.647219][T12227]   sb: buckets=25 sectors=6152 fragmented=248
[ 1043.647219][T12227]   journal: buckets=8 sectors=2048 fragmented=0
[ 1043.647219][T12227]   btree: buckets=11 sectors=2816 fragmented=0
[ 1043.647219][T12227]   user: buckets=1 sectors=16 fragmented=240
[ 1043.647219][T12227]   cached: buckets=0 sectors=0 fragmented=0
[ 1043.647219][T12227]   parity: buckets=0 sectors=0 fragmented=0
[ 1043.647219][T12227]   stripe: buckets=0 sectors=0 fragmented=0
[ 1043.647219][T12227]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[ 1043.647219][T12227]   need_discard: buckets=0 sectors=0 fragmented=0
[ 1043.647219][T12227] log: 
[ 1043.647219][T12227] clock: write=1280
[ 1043.647219][T12227] btree_root: btree=extents level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ve
[ 1043.649371][T12227] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[ 1043.955506][T12236] loop8: detected capacity change from 0 to 128
[ 1044.591826][T12238] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR
[ 1045.111523][T12236] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1045.235794][T12236] ext4 filesystem being mounted at /51/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1045.310280][T12247] loop3: detected capacity change from 0 to 512
[ 1045.440385][T12247] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1045.562673][T12247] ext4 filesystem being mounted at /315/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1046.422902][T12259] overlay: ./file1 is not a directory
[ 1046.517815][T12260] program syz.3.1228 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1046.951483][T12262] syz.0.1230 (12262): drop_caches: 2
[ 1047.255819][T12258] syz.6.1229 (12258): drop_caches: 2
[ 1047.546118][ T5868] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1048.122619][T12268] syz.3.1231 (12268): drop_caches: 2
[ 1048.602910][T12274] syz.6.1233 (12274): drop_caches: 2
[ 1048.923463][ T5877] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1048.956319][ T5877] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1048.968407][ T5877] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1048.999706][ T5877] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1049.018737][ T5877] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1049.234247][T12276] loop0: detected capacity change from 0 to 256
[ 1049.285181][T12276] exfat: Deprecated parameter 'utf8'
[ 1049.305211][T12276] exfat: Deprecated parameter 'namecase'
[ 1049.350938][T10837] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1049.408465][T12276] exfat: Deprecated parameter 'namecase'
[ 1049.423665][T12276] exfat: Deprecated parameter 'utf8'
[ 1049.557276][T12280] loop3: detected capacity change from 0 to 128
[ 1049.756938][T12283] syz.6.1237 (12283): drop_caches: 2
[ 1050.217537][T12276] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012153, chksum : 0x8212fc2e, utbl_chksum : 0xe619d30d)
[ 1051.104825][ T5866] Bluetooth: hci1: command tx timeout
[ 1051.590861][T12175] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1053.322499][ T5866] Bluetooth: hci1: command tx timeout
[ 1054.608506][T12303] loop6: detected capacity change from 0 to 32768
[ 1054.723170][T12303] bcachefs (/dev/loop6): error validating superblock: Invalid superblock section clean: entry type (unknown jset_entry_type 255) overruns end of section
[ 1054.723170][T12303] clean (size 2912):
[ 1054.723170][T12303] flags:          0
[ 1054.723170][T12303] journal_seq:    10
[ 1054.723170][T12303] usage: type=inodes v=8
[ 1054.723170][T12303] usage: type=key_version v=0
[ 1054.723170][T12303] usage: type=reserved v=0
[ 1054.723170][T12303] usage: type=reserved v=0
[ 1054.723170][T12303] usage: type=reserved v=0
[ 1054.723170][T12303] usage: type=reserved v=0
[ 1054.723170][T12303] data_usage: btree: 1/1 [0]=2816
[ 1054.723170][T12303] data_usage: journal: 1/1 [0]=0
[ 1054.723170][T12303] data_usage: user: 1/1 [0]=16
[ 1054.723170][T12303] dev_usage: dev=0  
[ 1054.723170][T12303]   free: buckets=83 sectors=0 fragmented=0
[ 1054.723170][T12303]   sb: buckets=25 sectors=6152 fragmented=248
[ 1054.723170][T12303]   journal: buckets=8 sectors=2048 fragmented=0
[ 1054.723170][T12303]   btree: buckets=11 sectors=2816 fragmented=0
[ 1054.723170][T12303]   user: buckets=1 sectors=16 fragmented=240
[ 1054.723170][T12303]   cached: buckets=0 sectors=0 fragmented=0
[ 1054.723170][T12303]   parity: buckets=0 sectors=0 fragmented=0
[ 1054.723170][T12303]   stripe: buckets=0 sectors=0 fragmented=0
[ 1054.723170][T12303]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[ 1054.723170][T12303]   need_discard: buckets=0 sectors=0 fragmented=0
[ 1054.723170][T12303] log: 
[ 1054.723170][T12303] clock: write=1280
[ 1054.723170][T12303] btree_root: btree=extents level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ve
[ 1054.724176][T12303] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[ 1055.055868][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1055.070200][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1055.287790][T12175] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1055.402347][ T5866] Bluetooth: hci1: command tx timeout
[ 1056.441157][T12307] syz.8.1241 (12307): drop_caches: 2
[ 1056.818646][T12175] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1057.110566][T12316] syz.3.1244 (12316): drop_caches: 2
[ 1057.484780][ T5866] Bluetooth: hci1: command tx timeout
[ 1058.969706][T12322] loop8: detected capacity change from 0 to 32768
[ 1059.866566][T12322] bcachefs (/dev/loop8): error validating superblock: Invalid superblock section clean: entry type (unknown jset_entry_type 255) overruns end of section
[ 1059.866566][T12322] clean (size 2912):
[ 1059.866566][T12322] flags:          0
[ 1059.866566][T12322] journal_seq:    10
[ 1059.866566][T12322] usage: type=inodes v=8
[ 1059.866566][T12322] usage: type=key_version v=0
[ 1059.866566][T12322] usage: type=reserved v=0
[ 1059.866566][T12322] usage: type=reserved v=0
[ 1059.866566][T12322] usage: type=reserved v=0
[ 1059.866566][T12322] usage: type=reserved v=0
[ 1059.866566][T12322] data_usage: btree: 1/1 [0]=2816
[ 1059.866566][T12322] data_usage: journal: 1/1 [0]=0
[ 1059.866566][T12322] data_usage: user: 1/1 [0]=16
[ 1059.866566][T12322] dev_usage: dev=0  
[ 1059.866566][T12322]   free: buckets=83 sectors=0 fragmented=0
[ 1059.866566][T12322]   sb: buckets=25 sectors=6152 fragmented=248
[ 1059.866566][T12322]   journal: buckets=8 sectors=2048 fragmented=0
[ 1059.866566][T12322]   btree: buckets=11 sectors=2816 fragmented=0
[ 1059.866566][T12322]   user: buckets=1 sectors=16 fragmented=240
[ 1059.866566][T12322]   cached: buckets=0 sectors=0 fragmented=0
[ 1059.866566][T12322]   parity: buckets=0 sectors=0 fragmented=0
[ 1059.866566][T12322]   stripe: buckets=0 sectors=0 fragmented=0
[ 1059.866566][T12322]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[ 1059.866566][T12322]   need_discard: buckets=0 sectors=0 fragmented=0
[ 1059.866566][T12322] log: 
[ 1059.866566][T12322] clock: write=1280
[ 1059.866566][T12322] btree_root: btree=extents level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ve
[ 1059.866718][T12322] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[ 1060.015675][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1060.215532][T12175] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1060.715905][T12329] tmpfs: Bad value for 'mpol'
[ 1061.563224][T12273] chnl_net:caif_netlink_parms(): no params data found
[ 1061.909219][T12337] loop0: detected capacity change from 0 to 256
[ 1063.543491][T12339] loop8: detected capacity change from 0 to 32768
[ 1064.323626][T12337] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[ 1064.371310][T12337] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512
[ 1064.452539][T12337] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[ 1064.460703][T12337] UDF-fs: Scanning with blocksize 512 failed
[ 1064.474629][T12339] bcachefs (/dev/loop8): error validating superblock: Invalid superblock section clean: entry type (unknown jset_entry_type 255) overruns end of section
[ 1064.474629][T12339] clean (size 2912):
[ 1064.474629][T12339] flags:          0
[ 1064.474629][T12339] journal_seq:    10
[ 1064.474629][T12339] usage: type=inodes v=8
[ 1064.474629][T12339] usage: type=key_version v=0
[ 1064.474629][T12339] usage: type=reserved v=0
[ 1064.474629][T12339] usage: type=reserved v=0
[ 1064.474629][T12339] usage: type=reserved v=0
[ 1064.474629][T12339] usage: type=reserved v=0
[ 1064.474629][T12339] data_usage: btree: 1/1 [0]=2816
[ 1064.474629][T12339] data_usage: journal: 1/1 [0]=0
[ 1064.474629][T12339] data_usage: user: 1/1 [0]=16
[ 1064.474629][T12339] dev_usage: dev=0  
[ 1064.474629][T12339]   free: buckets=83 sectors=0 fragmented=0
[ 1064.474629][T12339]   sb: buckets=25 sectors=6152 fragmented=248
[ 1064.474629][T12339]   journal: buckets=8 sectors=2048 fragmented=0
[ 1064.474629][T12339]   btree: buckets=11 sectors=2816 fragmented=0
[ 1064.474629][T12339]   user: buckets=1 sectors=16 fragmented=240
[ 1064.474629][T12339]   cached: buckets=0 sectors=0 fragmented=0
[ 1064.474629][T12339]   parity: buckets=0 sectors=0 fragmented=0
[ 1064.474629][T12339]   stripe: buckets=0 sectors=0 fragmented=0
[ 1064.474629][T12339]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[ 1064.474629][T12339]   need_discard: buckets=0 sectors=0 fragmented=0
[ 1064.474629][T12339] log: 
[ 1064.474629][T12339] clock: write=1280
[ 1064.474629][T12339] btree_root: btree=extents level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ve
[ 1064.474799][T12339] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[ 1064.602720][T12175] bridge_slave_1: left allmulticast mode
[ 1064.622749][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1064.650485][T12344] FAULT_INJECTION: forcing a failure.
[ 1064.650485][T12344] name failslab, interval 1, probability 0, space 0, times 1
[ 1064.669472][T12344] CPU: 1 UID: 0 PID: 12344 Comm: syz.3.1252 Not tainted syzkaller #0 PREEMPT(full) 
[ 1064.669501][T12344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1064.669512][T12344] Call Trace:
[ 1064.669520][T12344]  <TASK>
[ 1064.669529][T12344]  dump_stack_lvl+0x189/0x250
[ 1064.669558][T12344]  ? __pfx____ratelimit+0x10/0x10
[ 1064.669585][T12344]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1064.669603][T12344]  ? __pfx__printk+0x10/0x10
[ 1064.669626][T12344]  ? __pfx___might_resched+0x10/0x10
[ 1064.669647][T12344]  ? fs_reclaim_acquire+0x7d/0x100
[ 1064.669672][T12344]  should_fail_ex+0x414/0x560
[ 1064.669699][T12344]  should_failslab+0xa8/0x100
[ 1064.669721][T12344]  __kmalloc_cache_noprof+0x6f/0x6f0
[ 1064.669740][T12344]  ? __se_sys_memfd_create+0x211/0x780
[ 1064.669754][T12344]  ? __pfx_ksys_write+0x10/0x10
[ 1064.669780][T12344]  __se_sys_memfd_create+0x211/0x780
[ 1064.669800][T12344]  do_syscall_64+0xfa/0xfa0
[ 1064.669812][T12344]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1064.669833][T12344]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1064.669847][T12344]  ? clear_bhb_loop+0x60/0xb0
[ 1064.669866][T12344]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1064.669879][T12344] RIP: 0033:0x7f0229d8eba9
[ 1064.669895][T12344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1064.669908][T12344] RSP: 002b:00007f022abbbe18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[ 1064.669925][T12344] RAX: ffffffffffffffda RBX: 0000000000000548 RCX: 00007f0229d8eba9
[ 1064.669935][T12344] RDX: 00007f022abbbef0 RSI: 0000000000000000 RDI: 00007f0229e127e8
[ 1064.669945][T12344] RBP: 0000200000000640 R08: 00007f022abbbbb7 R09: 00007f022abbbe40
[ 1064.669955][T12344] R10: 000000000000000a R11: 0000000000000202 R12: 00002000000005c0
[ 1064.669964][T12344] R13: 00007f022abbbef0 R14: 00007f022abbbeb0 R15: 0000200000000600
[ 1064.669990][T12344]  </TASK>
[ 1064.750350][T12337] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[ 1064.786990][T12175] bridge_slave_1: left promiscuous mode
[ 1064.991833][T12175] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1065.057190][T12337] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1065.103818][T12175] bridge_slave_0: left allmulticast mode
[ 1065.109629][T12175] bridge_slave_0: left promiscuous mode
[ 1065.119211][T12175] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1065.529590][T12351] loop0: detected capacity change from 0 to 512
[ 1065.764737][T12351] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1065.878552][T12351] ext4 filesystem being mounted at /259/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1065.891851][T12364] loop8: detected capacity change from 0 to 128
[ 1066.238682][T12367] overlay: ./file1 is not a directory
[ 1066.910980][T12367] program syz.0.1255 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1067.601969][T12351] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1255'.
[ 1067.611013][T12351] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1255'.
[ 1068.143938][ T5861] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1068.347218][T12375] tmpfs: Bad value for 'mpol'
[ 1068.638343][T12378] syz.8.1258 (12378): drop_caches: 2
[ 1070.015771][T12387] netlink: 44 bytes leftover after parsing attributes in process `syz.8.1261'.
[ 1070.062890][T12175] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1070.076565][T12175] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1070.117032][T12175] bond0 (unregistering): Released all slaves
[ 1070.403063][T12273] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1070.424311][T12273] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1070.442703][T12273] bridge_slave_0: entered allmulticast mode
[ 1070.486277][T12273] bridge_slave_0: entered promiscuous mode
[ 1070.749016][T12401] syz.6.1266 (12401): drop_caches: 2
[ 1070.863913][T10999] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[ 1070.998701][T12273] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1071.027322][T12403] loop8: detected capacity change from 0 to 512
[ 1071.063418][T12273] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1071.088808][T12403] ext2: Unknown parameter 'fscontext'
[ 1071.101160][T12273] bridge_slave_1: entered allmulticast mode
[ 1071.169748][T12273] bridge_slave_1: entered promiscuous mode
[ 1071.192551][T10999] usb 1-1: Using ep0 maxpacket: 32
[ 1071.209837][T10999] usb 1-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[ 1071.279474][T10999] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1071.329871][T10999] usb 1-1: config 0 descriptor??
[ 1071.374758][T10999] gspca_main: sunplus-2.14.0 probing 041e:400b
[ 1071.410893][T12407] loop6: detected capacity change from 0 to 512
[ 1071.546690][T12407] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1071.626584][T12407] ext4 filesystem being mounted at /170/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1071.869404][T12420] overlay: ./file1 is not a directory
[ 1072.005135][T12422] program syz.6.1267 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1072.059752][T12420] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1267'.
[ 1072.068979][T12420] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1267'.
[ 1072.595484][T12273] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1072.632164][T12273] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1072.691092][ T8445] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1072.752584][T12271] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[ 1072.876778][ T5939] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[ 1072.891097][T12175] hsr_slave_0: left promiscuous mode
[ 1072.902834][T12175] hsr_slave_1: left promiscuous mode
[ 1072.909913][T12175] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1072.917940][T12175] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1072.972661][T12271] usb 4-1: Using ep0 maxpacket: 16
[ 1073.044414][T12175] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1073.064143][T10999] gspca_sunplus: reg_w_riv err -71
[ 1073.065047][T12175] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1073.104914][T10999] sunplus 1-1:0.0: probe with driver sunplus failed with error -71
[ 1073.109052][ T5939] usb 9-1: Using ep0 maxpacket: 32
[ 1073.494926][T12271] usb 4-1: New USB device found, idVendor=046d, idProduct=08b5, bcdDevice=d7.01
[ 1073.508875][T12271] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1073.516334][T10999] usb 1-1: USB disconnect, device number 6
[ 1073.527657][ T5939] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1073.552547][T12271] usb 4-1: Product: syz
[ 1073.559702][T12271] usb 4-1: Manufacturer: syz
[ 1073.584323][ T5939] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1073.599205][T12175] veth1_macvtap: left promiscuous mode
[ 1073.605166][T12271] usb 4-1: SerialNumber: syz
[ 1073.615851][T12271] usb 4-1: config 0 descriptor??
[ 1073.622687][ T5939] usb 9-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[ 1073.630808][T12175] veth0_macvtap: left promiscuous mode
[ 1073.632597][ T5939] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1073.652697][T12271] pwc: Logitech QuickCam Orbit/Sphere USB webcam detected.
[ 1073.656572][T12175] veth1_vlan: left promiscuous mode
[ 1073.666860][ T5939] usb 9-1: config 0 descriptor??
[ 1073.680933][T12175] veth0_vlan: left promiscuous mode
[ 1073.861693][T12423] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1073.899266][T12423] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1073.951064][T12423] loop3: detected capacity change from 0 to 512
[ 1073.964937][T12423] UDF-fs: warning (device loop3): udf_load_vrs: No VRS found
[ 1073.978317][T12423] UDF-fs: Scanning with blocksize 512 failed
[ 1074.014504][T12423] UDF-fs: warning (device loop3): udf_load_vrs: No VRS found
[ 1074.027579][T12423] UDF-fs: Scanning with blocksize 1024 failed
[ 1074.037564][T12423] UDF-fs: warning (device loop3): udf_load_vrs: No VRS found
[ 1074.072591][T12423] UDF-fs: Scanning with blocksize 2048 failed
[ 1074.081566][T12423] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[ 1074.121032][T12423] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1074.196909][T12271] pwc: Warning: more than 1 configuration available.
[ 1074.211372][T12271] pwc: Failed to set LED on/off time (-71)
[ 1074.228539][ T5939] savu 0003:1E7D:2D5A.0004: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.8-1/input0
[ 1074.241451][T12271] pwc: send_video_command error -71
[ 1074.246962][T12271] pwc: Failed to set video mode VGA@30 fps; return code = -71
[ 1074.273970][T12271] Philips webcam 4-1:0.0: probe with driver Philips webcam failed with error -71
[ 1074.302390][T12271] usb 4-1: USB disconnect, device number 5
[ 1074.393165][T10999] usb 9-1: USB disconnect, device number 2
[ 1074.646673][T12444] FAULT_INJECTION: forcing a failure.
[ 1074.646673][T12444] name fail_usercopy, interval 1, probability 0, space 0, times 1
[ 1074.669266][T12444] CPU: 1 UID: 0 PID: 12444 Comm: syz.8.1274 Not tainted syzkaller #0 PREEMPT(full) 
[ 1074.669294][T12444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1074.669305][T12444] Call Trace:
[ 1074.669314][T12444]  <TASK>
[ 1074.669332][T12444]  dump_stack_lvl+0x189/0x250
[ 1074.669360][T12444]  ? __pfx____ratelimit+0x10/0x10
[ 1074.669384][T12444]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1074.669405][T12444]  ? __pfx__printk+0x10/0x10
[ 1074.669443][T12444]  should_fail_ex+0x414/0x560
[ 1074.669484][T12444]  _copy_to_user+0x31/0xb0
[ 1074.669508][T12444]  simple_read_from_buffer+0xe1/0x170
[ 1074.669537][T12444]  proc_fail_nth_read+0x1b3/0x220
[ 1074.669569][T12444]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1074.669595][T12444]  ? rw_verify_area+0x2a6/0x4d0
[ 1074.669614][T12444]  ? __lock_acquire+0xab9/0xd20
[ 1074.669634][T12444]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1074.669654][T12444]  vfs_read+0x200/0xa30
[ 1074.669673][T12444]  ? fdget_pos+0x247/0x320
[ 1074.669701][T12444]  ? __pfx___mutex_lock+0x10/0x10
[ 1074.669719][T12444]  ? __pfx_vfs_read+0x10/0x10
[ 1074.669742][T12444]  ? __fget_files+0x2a/0x420
[ 1074.669770][T12444]  ? __fget_files+0x3a0/0x420
[ 1074.669791][T12444]  ? __fget_files+0x2a/0x420
[ 1074.669824][T12444]  ksys_read+0x145/0x250
[ 1074.669847][T12444]  ? __pfx_ksys_read+0x10/0x10
[ 1074.669872][T12444]  ? do_syscall_64+0xbe/0xfa0
[ 1074.669893][T12444]  do_syscall_64+0xfa/0xfa0
[ 1074.669915][T12444]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1074.669938][T12444]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1074.669956][T12444]  ? clear_bhb_loop+0x60/0xb0
[ 1074.669978][T12444]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1074.669995][T12444] RIP: 0033:0x7f7c3438d5bc
[ 1074.670012][T12444] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1074.670027][T12444] RSP: 002b:00007f7c3520d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1074.670047][T12444] RAX: ffffffffffffffda RBX: 00007f7c345d5fa0 RCX: 00007f7c3438d5bc
[ 1074.670060][T12444] RDX: 000000000000000f RSI: 00007f7c3520d0a0 RDI: 0000000000000003
[ 1074.670071][T12444] RBP: 00007f7c3520d090 R08: 0000000000000000 R09: 0000000000000000
[ 1074.670081][T12444] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001
[ 1074.670092][T12444] R13: 00007f7c345d6038 R14: 00007f7c345d5fa0 R15: 00007ffc7cd71fb8
[ 1074.670135][T12444]  </TASK>
[ 1075.412387][T12454] syz.8.1277 (12454): drop_caches: 2
[ 1076.027191][T12460] loop8: detected capacity change from 0 to 128
[ 1077.281416][T12471] loop0: detected capacity change from 0 to 256
[ 1077.370026][T12471] exfat: Deprecated parameter 'utf8'
[ 1077.376128][T12471] exfat: Deprecated parameter 'namecase'
[ 1077.382633][T12471] exfat: Deprecated parameter 'namecase'
[ 1077.388428][T12471] exfat: Deprecated parameter 'utf8'
[ 1077.711875][T12476] FAULT_INJECTION: forcing a failure.
[ 1077.711875][T12476] name failslab, interval 1, probability 0, space 0, times 0
[ 1077.724856][T12476] CPU: 1 UID: 0 PID: 12476 Comm: syz.3.1283 Not tainted syzkaller #0 PREEMPT(full) 
[ 1077.724883][T12476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1077.724894][T12476] Call Trace:
[ 1077.724903][T12476]  <TASK>
[ 1077.724911][T12476]  dump_stack_lvl+0x189/0x250
[ 1077.724939][T12476]  ? __pfx____ratelimit+0x10/0x10
[ 1077.724966][T12476]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1077.724988][T12476]  ? __pfx__printk+0x10/0x10
[ 1077.725022][T12476]  ? __pfx___might_resched+0x10/0x10
[ 1077.725055][T12476]  should_fail_ex+0x414/0x560
[ 1077.725089][T12476]  should_failslab+0xa8/0x100
[ 1077.725118][T12476]  __kmalloc_noprof+0xcb/0x7f0
[ 1077.725151][T12476]  ? kfree+0x4d/0x6d0
[ 1077.725169][T12476]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[ 1077.725196][T12476]  tomoyo_realpath_from_path+0xe3/0x5d0
[ 1077.725216][T12476]  ? tomoyo_domain+0xd9/0x130
[ 1077.725242][T12476]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 1077.725268][T12476]  tomoyo_path_number_perm+0x1e8/0x5a0
[ 1077.725296][T12476]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1077.725321][T12476]  ? __pfx___schedule+0x10/0x10
[ 1077.725353][T12476]  ? preempt_schedule_irq+0xde/0x150
[ 1077.725413][T12476]  ? __fget_files+0x2a/0x420
[ 1077.725444][T12476]  ? __fget_files+0x3a0/0x420
[ 1077.725468][T12476]  ? __fget_files+0x2a/0x420
[ 1077.725499][T12476]  security_file_ioctl+0xcb/0x2d0
[ 1077.725526][T12476]  __se_sys_ioctl+0x47/0x170
[ 1077.725551][T12476]  do_syscall_64+0xfa/0xfa0
[ 1077.725570][T12476]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1077.725588][T12476]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[ 1077.725606][T12476]  ? clear_bhb_loop+0x60/0xb0
[ 1077.725630][T12476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1077.725649][T12476] RIP: 0033:0x7f0229d8eba9
[ 1077.725667][T12476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1077.725682][T12476] RSP: 002b:00007f022ab7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1077.725704][T12476] RAX: ffffffffffffffda RBX: 00007f0229fd6180 RCX: 00007f0229d8eba9
[ 1077.725718][T12476] RDX: 0000200000000040 RSI: 00000000c0384707 RDI: 0000000000000007
[ 1077.725731][T12476] RBP: 00007f022ab7a090 R08: 0000000000000000 R09: 0000000000000000
[ 1077.725742][T12476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1077.725753][T12476] R13: 00007f0229fd6218 R14: 00007f0229fd6180 R15: 00007ffdf4b98358
[ 1077.725787][T12476]  </TASK>
[ 1077.725817][T12476] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1078.131418][T12471] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012153, chksum : 0x8212fc2e, utbl_chksum : 0xe619d30d)
[ 1078.354758][T12479] ubi0: attaching mtd0
[ 1078.360543][T12479] ubi0 warning: ubi_io_read: error -22 while reading 64 bytes from PEB 0:0, read only 0 bytes, retry
[ 1078.372002][T12479] ubi0 warning: ubi_io_read: error -22 while reading 64 bytes from PEB 0:0, read only 0 bytes, retry
[ 1078.383045][T12479] ubi0 warning: ubi_io_read: error -22 while reading 64 bytes from PEB 0:0, read only 0 bytes, retry
[ 1078.394597][T12479] ubi0 error: ubi_io_read: error -22 while reading 64 bytes from PEB 0:0, read 0 bytes
[ 1078.404277][T12479] CPU: 1 UID: 0 PID: 12479 Comm: syz.8.1284 Not tainted syzkaller #0 PREEMPT(full) 
[ 1078.404294][T12479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1078.404305][T12479] Call Trace:
[ 1078.404313][T12479]  <TASK>
[ 1078.404321][T12479]  dump_stack_lvl+0x189/0x250
[ 1078.404348][T12479]  ? __pfx_ubi_err+0x10/0x10
[ 1078.404366][T12479]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1078.404388][T12479]  ? __pfx_do_sched_yield+0x10/0x10
[ 1078.404424][T12479]  ubi_io_read+0x68d/0xb00
[ 1078.404463][T12479]  ? __pfx_ubi_io_read+0x10/0x10
[ 1078.404494][T12479]  ? rcu_is_watching+0x15/0xb0
[ 1078.404528][T12479]  ubi_io_read_ec_hdr+0x9d/0x630
[ 1078.404546][T12479]  ? ubi_io_is_bad+0xc5/0x280
[ 1078.404566][T12479]  ubi_attach+0x78a/0x5c00
[ 1078.404593][T12479]  ? __vmalloc_node_range_noprof+0x1249/0x12f0
[ 1078.404653][T12479]  ? __pfx_ubi_attach+0x10/0x10
[ 1078.404688][T12479]  ? vmalloc_noprof+0xb2/0xf0
[ 1078.404717][T12479]  ubi_attach_mtd_dev+0x1b75/0x37e0
[ 1078.404773][T12479]  ctrl_cdev_ioctl+0x28b/0x3e0
[ 1078.404801][T12479]  ? __pfx_ctrl_cdev_ioctl+0x10/0x10
[ 1078.404826][T12479]  ? __fget_files+0x3a0/0x420
[ 1078.404851][T12479]  ? __fget_files+0x2a/0x420
[ 1078.404879][T12479]  ? bpf_lsm_file_ioctl+0x9/0x20
[ 1078.404901][T12479]  ? __pfx_ctrl_cdev_ioctl+0x10/0x10
[ 1078.404924][T12479]  __se_sys_ioctl+0xfc/0x170
[ 1078.404948][T12479]  do_syscall_64+0xfa/0xfa0
[ 1078.404965][T12479]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1078.404991][T12479]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1078.405010][T12479]  ? clear_bhb_loop+0x60/0xb0
[ 1078.405033][T12479]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1078.405051][T12479] RIP: 0033:0x7f7c3438eba9
[ 1078.405068][T12479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1078.405085][T12479] RSP: 002b:00007f7c351ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1078.405106][T12479] RAX: ffffffffffffffda RBX: 00007f7c345d6090 RCX: 00007f7c3438eba9
[ 1078.405119][T12479] RDX: 0000200000000200 RSI: 0000000040186f40 RDI: 0000000000000006
[ 1078.405131][T12479] RBP: 00007f7c34411e19 R08: 0000000000000000 R09: 0000000000000000
[ 1078.405143][T12479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1078.405154][T12479] R13: 00007f7c345d6128 R14: 00007f7c345d6090 R15: 00007ffc7cd71fb8
[ 1078.405196][T12479]  </TASK>
[ 1078.816108][T12481] loop8: detected capacity change from 0 to 32768
[ 1078.833916][T12481] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.1284 (12481)
[ 1078.856219][T12481] BTRFS info (device loop8): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1078.866498][T12481] BTRFS info (device loop8): using blake2b (blake2b-256-generic) checksum algorithm
[ 1079.009276][T12479] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1080.117151][T12175] team0 (unregistering): Port device team_slave_1 removed
[ 1080.189792][T12481] BTRFS info (device loop8): enabling ssd optimizations
[ 1080.197141][T12481] BTRFS info (device loop8): enabling free space tree
[ 1080.601929][T12271] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[ 1080.698644][T12504] syz.3.1286 (12504): drop_caches: 2
[ 1080.877362][T12175] team0 (unregistering): Port device team_slave_0 removed
[ 1080.912502][T12271] usb 9-1: Using ep0 maxpacket: 16
[ 1081.064740][T12506] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1287'.
[ 1081.099674][T12271] usb 9-1: too many configurations: 56, using maximum allowed: 8
[ 1081.132923][T12271] usb 9-1: unable to read config index 0 descriptor/start: -61
[ 1081.140564][T12271] usb 9-1: can't read configurations, error -61
[ 1081.394814][T12271] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[ 1081.691954][T12507] slcan: can't register candev
[ 1081.697144][T12507] Falling back ldisc for ptm0.
[ 1082.288152][ T5939] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[ 1082.435042][T12273] team0: Port device team_slave_0 added
[ 1082.448767][T12273] team0: Port device team_slave_1 added
[ 1082.475077][ T5939] usb 1-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[ 1082.506443][T12480] veth1_to_hsr: mtu less than device minimum
[ 1082.673570][ T5939] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1082.694941][ T5939] usb 1-1: Product: syz
[ 1082.699287][ T5939] usb 1-1: Manufacturer: syz
[ 1082.709023][T10837] BTRFS info (device loop8): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1082.712302][ T5939] usb 1-1: SerialNumber: syz
[ 1082.811822][ T5939] usb 1-1: config 0 descriptor??
[ 1082.968792][T12516] FAULT_INJECTION: forcing a failure.
[ 1082.968792][T12516] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1083.079956][T12516] CPU: 1 UID: 0 PID: 12516 Comm: syz.6.1291 Not tainted syzkaller #0 PREEMPT(full) 
[ 1083.079984][T12516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1083.079994][T12516] Call Trace:
[ 1083.080001][T12516]  <TASK>
[ 1083.080009][T12516]  dump_stack_lvl+0x189/0x250
[ 1083.080034][T12516]  ? __pfx____ratelimit+0x10/0x10
[ 1083.080057][T12516]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1083.080074][T12516]  ? __pfx__printk+0x10/0x10
[ 1083.080096][T12516]  ? __might_fault+0xb0/0x130
[ 1083.080127][T12516]  should_fail_ex+0x414/0x560
[ 1083.080165][T12516]  _copy_from_user+0x2d/0xb0
[ 1083.080186][T12516]  do_sock_getsockopt+0x17d/0x450
[ 1083.080206][T12516]  ? __pfx_do_sock_getsockopt+0x10/0x10
[ 1083.080222][T12516]  ? do_syscall_64+0xa0/0xfa0
[ 1083.080236][T12516]  ? __fget_files+0x2a/0x420
[ 1083.080256][T12516]  ? __fget_files+0x3a0/0x420
[ 1083.080275][T12516]  ? __fget_files+0x2a/0x420
[ 1083.080303][T12516]  __x64_sys_getsockopt+0x1a5/0x250
[ 1083.080318][T12516]  ? do_syscall_64+0xa0/0xfa0
[ 1083.080334][T12516]  ? do_syscall_64+0xa0/0xfa0
[ 1083.080351][T12516]  do_syscall_64+0xfa/0xfa0
[ 1083.080364][T12516]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1083.080387][T12516]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1083.080403][T12516]  ? clear_bhb_loop+0x60/0xb0
[ 1083.080423][T12516]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1083.080438][T12516] RIP: 0033:0x7fdcff58eba9
[ 1083.080454][T12516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1083.080468][T12516] RSP: 002b:00007fdd00495038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[ 1083.080487][T12516] RAX: ffffffffffffffda RBX: 00007fdcff7d5fa0 RCX: 00007fdcff58eba9
[ 1083.080499][T12516] RDX: 0000000000000487 RSI: 0000000000000000 RDI: 0000000000000003
[ 1083.080508][T12516] RBP: 00007fdd00495090 R08: 0000000000000000 R09: 0000000000000000
[ 1083.080518][T12516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1083.080527][T12516] R13: 00007fdcff7d6038 R14: 00007fdcff7d5fa0 R15: 00007ffd72039d28
[ 1083.080557][T12516]  </TASK>
[ 1083.089297][T12517] syz.3.1290 (12517): drop_caches: 2
[ 1083.578409][T12273] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1083.646515][T12273] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1083.770222][T12273] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1084.003382][T12273] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1084.062451][T12273] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1084.098502][ T5939] usb 1-1: USB disconnect, device number 7
[ 1084.256741][T12273] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1084.569216][T12527] loop0: detected capacity change from 0 to 128
[ 1084.685595][T11325] udevd[11325]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1084.997904][T12534] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1289'.
[ 1086.986712][T12273] hsr_slave_0: entered promiscuous mode
[ 1087.039539][T12273] hsr_slave_1: entered promiscuous mode
[ 1087.056545][T12273] debugfs: 'hsr0' already exists in 'hsr'
[ 1087.091161][T12543] syz.3.1295 (12543): drop_caches: 2
[ 1087.138727][T12273] Cannot create hsr debugfs directory
[ 1087.191178][T12551] syz.6.1296 (12551): drop_caches: 2
[ 1088.102405][ T5939] usb 4-1: new full-speed USB device number 6 using dummy_hcd
[ 1088.456512][ T5939] usb 4-1: config 0 has an invalid interface number: 4 but max is 0
[ 1088.479010][ T5939] usb 4-1: config 0 has no interface number 0
[ 1088.492988][ T5939] usb 4-1: config 0 interface 4 altsetting 0 endpoint 0x6 has invalid wMaxPacketSize 0
[ 1088.522663][ T5939] usb 4-1: config 0 interface 4 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1088.542490][T12271] usb 9-1: new low-speed USB device number 5 using dummy_hcd
[ 1088.566431][ T5939] usb 4-1: New USB device found, idVendor=19d2, idProduct=1010, bcdDevice=de.00
[ 1088.597556][ T5939] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1088.619002][ T5939] usb 4-1: Product: syz
[ 1088.629088][ T5939] usb 4-1: Manufacturer: syz
[ 1088.642378][ T5939] usb 4-1: SerialNumber: syz
[ 1088.665685][ T5939] usb 4-1: config 0 descriptor??
[ 1088.686979][T12572] loop6: detected capacity change from 0 to 4096
[ 1088.744531][T12271] usb 9-1: config 0 has an invalid interface number: 1 but max is 0
[ 1088.762475][T12271] usb 9-1: config 0 has no interface number 0
[ 1088.782262][T12271] usb 9-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[ 1088.814363][T12271] usb 9-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1088.833010][T12271] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1088.867213][T12271] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1088.909655][T12271] usb 9-1: config 0 descriptor??
[ 1088.943818][ T5995] usb 4-1: USB disconnect, device number 6
[ 1088.965960][T12271] iowarrior 9-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[ 1089.060635][T12554] loop0: detected capacity change from 0 to 32768
[ 1089.076854][T12273] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1089.117105][T12554] BTRFS: device fsid 59b5568a-a427-4554-b73a-27dcd238cc5a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1297 (12554)
[ 1089.119674][T12273] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1089.180226][T10999] usb 9-1: USB disconnect, device number 5
[ 1089.181054][T12580] loop6: detected capacity change from 0 to 128
[ 1089.245678][T12554] BTRFS info (device loop0): first mount of filesystem 59b5568a-a427-4554-b73a-27dcd238cc5a
[ 1089.260772][T12273] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1089.286113][T12554] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm
[ 1089.362627][T12273] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1089.977768][T12554] BTRFS info (device loop0): enabling ssd optimizations
[ 1090.089753][T12554] BTRFS info (device loop0): enabling free space tree
[ 1092.200775][ T5861] BTRFS info (device loop0): last unmount of filesystem 59b5568a-a427-4554-b73a-27dcd238cc5a
[ 1092.239328][T12273] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1092.455741][T12619] loop3: detected capacity change from 0 to 32768
[ 1093.661487][T12619] bcachefs (/dev/loop3): error validating superblock: Invalid superblock section clean: entry type (unknown jset_entry_type 255) overruns end of section
[ 1093.661487][T12619] clean (size 2912):
[ 1093.661487][T12619] flags:          0
[ 1093.661487][T12619] journal_seq:    10
[ 1093.661487][T12619] usage: type=inodes v=8
[ 1093.661487][T12619] usage: type=key_version v=0
[ 1093.661487][T12619] usage: type=reserved v=0
[ 1093.661487][T12619] usage: type=reserved v=0
[ 1093.661487][T12619] usage: type=reserved v=0
[ 1093.661487][T12619] usage: type=reserved v=0
[ 1093.661487][T12619] data_usage: btree: 1/1 [0]=2816
[ 1093.661487][T12619] data_usage: journal: 1/1 [0]=0
[ 1093.661487][T12619] data_usage: user: 1/1 [0]=16
[ 1093.661487][T12619] dev_usage: dev=0  
[ 1093.661487][T12619]   free: buckets=83 sectors=0 fragmented=0
[ 1093.661487][T12619]   sb: buckets=25 sectors=6152 fragmented=248
[ 1093.661487][T12619]   journal: buckets=8 sectors=2048 fragmented=0
[ 1093.661487][T12619]   btree: buckets=11 sectors=2816 fragmented=0
[ 1093.661487][T12619]   user: buckets=1 sectors=16 fragmented=240
[ 1093.661487][T12619]   cached: buckets=0 sectors=0 fragmented=0
[ 1093.661487][T12619]   parity: buckets=0 sectors=0 fragmented=0
[ 1093.661487][T12619]   stripe: buckets=0 sectors=0 fragmented=0
[ 1093.661487][T12619]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[ 1093.661487][T12619]   need_discard: buckets=0 sectors=0 fragmented=0
[ 1093.661487][T12619] log: 
[ 1093.661487][T12619] clock: write=1280
[ 1093.661487][T12619] btree_root: btree=extents level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ve
[ 1093.662854][T12619] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[ 1093.979030][T12273] 8021q: adding VLAN 0 to HW filter on device team0
[ 1094.165949][T12273] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1094.176863][T12273] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1094.216063][ T3583] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1094.223412][ T3583] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1094.274533][ T3583] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1094.281783][ T3583] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1095.371413][T12642] syz.0.1306 (12642): drop_caches: 2
[ 1096.129827][T12273] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1097.997376][T12659] syz.8.1312 (12659): drop_caches: 2
[ 1098.479098][T12682] netlink: 548 bytes leftover after parsing attributes in process `syz.3.1316'.
[ 1099.007405][T12674] netlink: 'syz.3.1316': attribute type 29 has an invalid length.
[ 1099.303086][T12669] netlink: 'syz.3.1316': attribute type 10 has an invalid length.
[ 1099.498329][T12676] netlink: 'syz.3.1316': attribute type 29 has an invalid length.
[ 1100.213553][T12669] bond0: (slave wlan1): Enslaving as an active interface with an up link
[ 1101.478149][T12695] loop6: detected capacity change from 0 to 128
[ 1101.553832][T12669] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[ 1101.604830][T12695] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1101.710781][T12695] ext4 filesystem being mounted at /182/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1102.002825][    T9] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[ 1102.869250][T12273] veth0_vlan: entered promiscuous mode
[ 1102.890655][T12273] veth1_vlan: entered promiscuous mode
[ 1103.034680][    T9] usb 4-1: Using ep0 maxpacket: 32
[ 1103.059954][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1103.103230][T12273] veth0_macvtap: entered promiscuous mode
[ 1103.132399][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1103.191822][    T9] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[ 1103.195022][T12273] veth1_macvtap: entered promiscuous mode
[ 1103.328887][T12273] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1103.603301][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1103.610190][T12273] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1104.061324][    T9] usb 4-1: config 0 descriptor??
[ 1104.211739][ T7972] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1104.279043][ T7972] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1104.312103][T12701] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1104.333496][T12701] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1104.515308][ T7972] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1104.672375][ T7972] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1104.764713][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1104.805995][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1104.877161][ T6783] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1104.910571][    T9] savu 0003:1E7D:2D5A.0005: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.3-1/input0
[ 1104.935514][ T6783] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1105.034025][    T9] usb 4-1: USB disconnect, device number 7
[ 1105.217136][T12727] fido_id[12727]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/4-1/report_descriptor': No such file or directory
[ 1105.482064][T12733] syz.9.1226 (12733): drop_caches: 2
[ 1105.868125][T12724] syz.8.1325 (12724): drop_caches: 2
[ 1106.329817][ T8445] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1106.362320][ T5995] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[ 1106.862702][ T5995] usb 4-1: Using ep0 maxpacket: 32
[ 1106.911570][ T5995] usb 4-1: config 0 has an invalid interface number: 53 but max is 0
[ 1106.940536][ T5995] usb 4-1: config 0 has no interface number 0
[ 1106.952850][ T5995] usb 4-1: config 0 interface 53 has no altsetting 0
[ 1107.083032][ T5995] usb 4-1: New USB device found, idVendor=0c45, idProduct=62b3, bcdDevice=17.c6
[ 1107.120666][ T5995] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1108.284596][ T5995] usb 4-1: Product: syz
[ 1108.288894][ T5995] usb 4-1: Manufacturer: syz
[ 1108.541808][T12746] loop6: detected capacity change from 0 to 32768
[ 1109.591119][ T5995] usb 4-1: SerialNumber: syz
[ 1109.600806][ T5995] usb 4-1: config 0 descriptor??
[ 1109.742029][T12746] bcachefs (/dev/loop6): error validating superblock: Invalid superblock section clean: entry type (unknown jset_entry_type 255) overruns end of section
[ 1109.742029][T12746] clean (size 2912):
[ 1109.742029][T12746] flags:          0
[ 1109.742029][T12746] journal_seq:    10
[ 1109.742029][T12746] usage: type=inodes v=8
[ 1109.742029][T12746] usage: type=key_version v=0
[ 1109.742029][T12746] usage: type=reserved v=0
[ 1109.742029][T12746] usage: type=reserved v=0
[ 1109.742029][T12746] usage: type=reserved v=0
[ 1109.742029][T12746] usage: type=reserved v=0
[ 1109.742029][T12746] data_usage: btree: 1/1 [0]=2816
[ 1109.742029][T12746] data_usage: journal: 1/1 [0]=0
[ 1109.742029][T12746] data_usage: user: 1/1 [0]=16
[ 1109.742029][T12746] dev_usage: dev=0  
[ 1109.742029][T12746]   free: buckets=83 sectors=0 fragmented=0
[ 1109.742029][T12746]   sb: buckets=25 sectors=6152 fragmented=248
[ 1109.742029][T12746]   journal: buckets=8 sectors=2048 fragmented=0
[ 1109.742029][T12746]   btree: buckets=11 sectors=2816 fragmented=0
[ 1109.742029][T12746]   user: buckets=1 sectors=16 fragmented=240
[ 1109.742029][T12746]   cached: buckets=0 sectors=0 fragmented=0
[ 1109.742029][T12746]   parity: buckets=0 sectors=0 fragmented=0
[ 1109.742029][T12746]   stripe: buckets=0 sectors=0 fragmented=0
[ 1109.742029][T12746]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[ 1109.742029][T12746]   need_discard: buckets=0 sectors=0 fragmented=0
[ 1109.742029][T12746] log: 
[ 1109.742029][T12746] clock: write=1280
[ 1109.742029][T12746] btree_root: btree=extents level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ve
[ 1109.742738][T12746] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[ 1109.946743][ T5995] gspca_main: gspca_sn9c20x-2.14.0 probing 0c45:62b3
[ 1109.964024][ T5995] gspca_sn9c20x: Write register 1000 failed -71
[ 1109.970582][ T5995] gspca_sn9c20x: Device initialization failed
[ 1109.978077][ T5995] gspca_sn9c20x 4-1:0.53: probe with driver gspca_sn9c20x failed with error -71
[ 1110.604815][ T5995] usb 4-1: USB disconnect, device number 8
[ 1110.788265][T12755] tmpfs: Bad value for 'mpol'
[ 1112.388786][T12774] loop6: detected capacity change from 0 to 1024
[ 1112.655851][T12774] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[ 1113.041753][T12783] loop3: detected capacity change from 0 to 128
[ 1113.161883][T12783] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1113.169678][T12774] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.1333: bg 0: block 10: padding at end of block bitmap is not set
[ 1113.223651][T12774] Quota error (device loop6): write_blk: dquota write failed
[ 1113.293402][T12774] Quota error (device loop6): find_free_dqentry: Can't write quota data block 2
[ 1113.371291][T12783] ext4 filesystem being mounted at /347/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1113.422773][T12774] Quota error (device loop6): qtree_write_dquot: Error -28 occurred while creating quota
[ 1113.628703][T12774] EXT4-fs error (device loop6): ext4_acquire_dquot:6943: comm syz.6.1333: Failed to acquire dquot type 0
[ 1113.754965][T12774] Quota error (device loop6): write_blk: dquota write failed
[ 1113.854789][T12774] Quota error (device loop6): find_free_dqentry: Can't write quota data block 2
[ 1114.073917][T12774] Quota error (device loop6): qtree_write_dquot: Error -28 occurred while creating quota
[ 1114.149651][T12774] EXT4-fs error (device loop6): ext4_acquire_dquot:6943: comm syz.6.1333: Failed to acquire dquot type 0
[ 1114.201382][T12774] EXT4-fs error (device loop6): ext4_free_blocks:6696: comm syz.6.1333: Freeing blocks not in datazone - block = 0, count = 4096
[ 1114.327562][T12774] Quota error (device loop6): write_blk: dquota write failed
[ 1114.332668][T12798] FAULT_INJECTION: forcing a failure.
[ 1114.332668][T12798] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1114.378045][T12774] Quota error (device loop6): find_free_dqentry: Can't write quota data block 2
[ 1114.418658][T12798] CPU: 0 UID: 0 PID: 12798 Comm: syz.9.1342 Not tainted syzkaller #0 PREEMPT(full) 
[ 1114.418678][T12798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1114.418685][T12798] Call Trace:
[ 1114.418692][T12798]  <TASK>
[ 1114.418697][T12798]  dump_stack_lvl+0x189/0x250
[ 1114.418717][T12798]  ? __pfx____ratelimit+0x10/0x10
[ 1114.418742][T12798]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1114.418755][T12798]  ? __pfx__printk+0x10/0x10
[ 1114.418779][T12798]  should_fail_ex+0x414/0x560
[ 1114.418798][T12798]  strncpy_from_user+0x36/0x290
[ 1114.418817][T12798]  __se_sys_memfd_create+0x244/0x780
[ 1114.418831][T12798]  do_syscall_64+0xfa/0xfa0
[ 1114.418841][T12798]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1114.418857][T12798]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1114.418868][T12798]  ? clear_bhb_loop+0x60/0xb0
[ 1114.418882][T12798]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1114.418893][T12798] RIP: 0033:0x7f9ecb58eba9
[ 1114.418904][T12798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1114.418914][T12798] RSP: 002b:00007f9ecc49ee18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[ 1114.418928][T12798] RAX: ffffffffffffffda RBX: 000000000000590a RCX: 00007f9ecb58eba9
[ 1114.418936][T12798] RDX: 00007f9ecc49eef0 RSI: 0000000000000000 RDI: 00007f9ecb6127e8
[ 1114.418944][T12798] RBP: 000020000000b240 R08: 00007f9ecc49ebb7 R09: 00007f9ecc49ee40
[ 1114.418951][T12798] R10: 000000000000000a R11: 0000000000000202 R12: 00002000000000c0
[ 1114.418958][T12798] R13: 00007f9ecc49eef0 R14: 00007f9ecc49eeb0 R15: 0000200000000000
[ 1114.418981][T12798]  </TASK>
[ 1114.584437][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1114.602934][T12774] Quota error (device loop6): qtree_write_dquot: Error -28 occurred while creating quota
[ 1114.737830][T12774] EXT4-fs error (device loop6): ext4_acquire_dquot:6943: comm syz.6.1333: Failed to acquire dquot type 0
[ 1114.768802][T12774] EXT4-fs (loop6): 1 orphan inode deleted
[ 1114.777280][T12774] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1115.092650][    T9] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[ 1115.656216][    T9] usb 10-1: Using ep0 maxpacket: 32
[ 1115.663585][    T9] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1115.676168][    T9] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1115.712588][    T9] usb 10-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[ 1115.746149][ T8445] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1115.761272][    T9] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1115.783196][    T9] usb 10-1: config 0 descriptor??
[ 1116.046774][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1116.053288][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.255899][    T9] savu 0003:1E7D:2D5A.0006: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.9-1/input0
[ 1116.387970][T12818] tmpfs: Bad value for 'mpol'
[ 1116.547082][    T9] usb 10-1: USB disconnect, device number 2
[ 1117.462948][T12832] loop8: detected capacity change from 0 to 1024
[ 1117.589157][T12832] Quota error (device loop8): do_check_range: Getting block 64 out of range 1-5
[ 1117.661778][T12832] EXT4-fs error (device loop8): ext4_acquire_dquot:6943: comm syz.8.1350: Failed to acquire dquot type 0
[ 1117.755044][T12832] EXT4-fs error (device loop8): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[ 1117.833670][T12832] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #13: comm syz.8.1350: corrupted inode contents
[ 1117.913479][T12832] EXT4-fs error (device loop8): ext4_dirty_inode:6538: inode #13: comm syz.8.1350: mark_inode_dirty error
[ 1117.970467][T12832] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #13: comm syz.8.1350: corrupted inode contents
[ 1118.002820][T12832] EXT4-fs error (device loop8): __ext4_ext_dirty:206: inode #13: comm syz.8.1350: mark_inode_dirty error
[ 1118.025830][ T5868] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1118.040572][T12832] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #13: comm syz.8.1350: corrupted inode contents
[ 1118.133291][T12832] EXT4-fs error (device loop8) in ext4_orphan_del:305: Corrupt filesystem
[ 1118.193904][T12832] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #13: comm syz.8.1350: corrupted inode contents
[ 1118.246839][T12832] EXT4-fs error (device loop8): ext4_truncate:4666: inode #13: comm syz.8.1350: mark_inode_dirty error
[ 1118.281513][T12832] EXT4-fs error (device loop8) in ext4_process_orphan:347: Corrupt filesystem
[ 1118.334771][T12832] EXT4-fs (loop8): 1 truncate cleaned up
[ 1118.364667][T12832] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1118.492131][T12848] tmpfs: Bad value for 'mpol'
[ 1118.493591][T12832] EXT4-fs (loop8): shut down requested (2)
[ 1118.931915][T10837] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1118.932097][T12838] loop9: detected capacity change from 0 to 32768
[ 1119.014828][T12838] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop9 (7:9) scanned by syz.9.1352 (12838)
[ 1119.060964][T12838] BTRFS info (device loop9): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1119.146290][T12838] BTRFS info (device loop9): using crc32c (crc32c-lib) checksum algorithm
[ 1119.231540][T12863] loop0: detected capacity change from 0 to 4096
[ 1119.585122][T12838] BTRFS info (device loop9): rebuilding free space tree
[ 1119.728966][T12838] BTRFS info (device loop9): allowing degraded mounts
[ 1119.771351][T12838] BTRFS info (device loop9): enabling ssd optimizations
[ 1119.812566][T12838] BTRFS info (device loop9): enabling free space tree
[ 1119.819475][T12838] BTRFS info (device loop9): force clearing of disk cache
[ 1120.029532][T12838] BTRFS info (device loop9): use zstd compression, level 3
[ 1120.036909][T12838] BTRFS info (device loop9): max_inline set to 0
[ 1120.554754][T12273] BTRFS info (device loop9): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1121.272358][T10952] usb 10-1: new full-speed USB device number 3 using dummy_hcd
[ 1121.445357][T10952] usb 10-1: unable to get BOS descriptor or descriptor too short
[ 1121.485584][T10952] usb 10-1: not running at top speed; connect to a high speed hub
[ 1121.532760][T10952] usb 10-1: config 1 has an invalid descriptor of length 121, skipping remainder of the config
[ 1121.582598][T10952] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1121.636672][T12884] loop8: detected capacity change from 0 to 32768
[ 1121.642668][T10952] usb 10-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1121.686436][T10952] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1121.697008][T12884] bcachefs (/dev/loop8): error validating superblock: Invalid superblock section clean: entry type (unknown jset_entry_type 255) overruns end of section
[ 1121.697008][T12884] clean (size 2912):
[ 1121.697008][T12884] flags:          0
[ 1121.697008][T12884] journal_seq:    10
[ 1121.697008][T12884] usage: type=inodes v=8
[ 1121.697008][T12884] usage: type=key_version v=0
[ 1121.697008][T12884] usage: type=reserved v=0
[ 1121.697008][T12884] usage: type=reserved v=0
[ 1121.697008][T12884] usage: type=reserved v=0
[ 1121.697008][T12884] usage: type=reserved v=0
[ 1121.697008][T12884] data_usage: btree: 1/1 [0]=2816
[ 1121.697008][T12884] data_usage: journal: 1/1 [0]=0
[ 1121.697008][T12884] data_usage: user: 1/1 [0]=16
[ 1121.697008][T12884] dev_usage: dev=0  
[ 1121.697008][T12884]   free: buckets=83 sectors=0 fragmented=0
[ 1121.697008][T12884]   sb: buckets=25 sectors=6152 fragmented=248
[ 1121.697008][T12884]   journal: buckets=8 sectors=2048 fragmented=0
[ 1121.697008][T12884]   btree: buckets=11 sectors=2816 fragmented=0
[ 1121.697008][T12884]   user: buckets=1 sectors=16 fragmented=240
[ 1121.697008][T12884]   cached: buckets=0 sectors=0 fragmented=0
[ 1121.697008][T12884]   parity: buckets=0 sectors=0 fragmented=0
[ 1121.697008][T12884]   stripe: buckets=0 sectors=0 fragmented=0
[ 1121.697008][T12884]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[ 1121.697008][T12884]   need_discard: buckets=0 sectors=0 fragmented=0
[ 1121.697008][T12884] log: 
[ 1121.697008][T12884] clock: write=1280
[ 1121.697008][T12884] btree_root: btree=extents level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ve
[ 1121.697151][T12884] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[ 1121.738912][T10952] usb 10-1: Product: syz
[ 1121.843361][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1122.272621][T10952] usb 10-1: Manufacturer: syz
[ 1122.287832][T10952] usb 10-1: SerialNumber: syz
[ 1122.626013][T10952] usb 10-1: 0:2 : does not exist
[ 1123.119699][T10952] usb 10-1: USB disconnect, device number 3
[ 1123.431984][T12902] loop9: detected capacity change from 0 to 4096
[ 1123.451928][T12902] EXT4-fs: inline encryption not supported
[ 1123.462302][T12906] tmpfs: Bad value for 'mpol'
[ 1123.473904][T12902] EXT4-fs: Invalid journal IO priority (must be 0-7)
[ 1124.566508][T12918] syz.3.1372 (12918): drop_caches: 2
[ 1124.803885][T12917] syz.6.1373 (12917): drop_caches: 2
[ 1125.545721][T12933] loop3: detected capacity change from 0 to 256
[ 1125.600950][T12939] loop8: detected capacity change from 0 to 3
[ 1125.693837][T12939] syz.8.1380: attempt to access beyond end of device
[ 1125.693837][T12939] loop8: rw=2048, sector=0, nr_sectors = 8 limit=3
[ 1125.725940][T12933] exfat: Deprecated parameter 'utf8'
[ 1125.732263][T12933] exfat: Deprecated parameter 'namecase'
[ 1125.743091][T12939] SQUASHFS error: Failed to read block 0x0: -5
[ 1125.802732][T12939] unable to read squashfs_super_block
[ 1125.820284][T12933] exfat: Deprecated parameter 'namecase'
[ 1125.826618][T12933] exfat: Deprecated parameter 'utf8'
[ 1125.994310][T12933] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012153, chksum : 0x8212fc2e, utbl_chksum : 0xe619d30d)
[ 1126.148065][T12943] loop8: detected capacity change from 0 to 256
[ 1126.156986][T12924] loop9: detected capacity change from 0 to 32768
[ 1126.164786][T12943] exfat: Deprecated parameter 'utf8'
[ 1126.227315][T12943] exfat: Deprecated parameter 'namecase'
[ 1126.246297][T12924] bcachefs (/dev/loop9): error validating superblock: Invalid superblock section clean: entry type (unknown jset_entry_type 255) overruns end of section
[ 1126.246297][T12924] clean (size 2912):
[ 1126.246297][T12924] flags:          0
[ 1126.246297][T12924] journal_seq:    10
[ 1126.246297][T12924] usage: type=inodes v=8
[ 1126.246297][T12924] usage: type=key_version v=0
[ 1126.246297][T12924] usage: type=reserved v=0
[ 1126.246297][T12924] usage: type=reserved v=0
[ 1126.246297][T12924] usage: type=reserved v=0
[ 1126.246297][T12924] usage: type=reserved v=0
[ 1126.246297][T12924] data_usage: btree: 1/1 [0]=2816
[ 1126.246297][T12924] data_usage: journal: 1/1 [0]=0
[ 1126.246297][T12924] data_usage: user: 1/1 [0]=16
[ 1126.246297][T12924] dev_usage: dev=0  
[ 1126.246297][T12924]   free: buckets=83 sectors=0 fragmented=0
[ 1126.246297][T12924]   sb: buckets=25 sectors=6152 fragmented=248
[ 1126.246297][T12924]   journal: buckets=8 sectors=2048 fragmented=0
[ 1126.246297][T12924]   btree: buckets=11 sectors=2816 fragmented=0
[ 1126.246297][T12924]   user: buckets=1 sectors=16 fragmented=240
[ 1126.246297][T12924]   cached: buckets=0 sectors=0 fragmented=0
[ 1126.246297][T12924]   parity: buckets=0 sectors=0 fragmented=0
[ 1126.246297][T12924]   stripe: buckets=0 sectors=0 fragmented=0
[ 1126.246297][T12924]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[ 1126.246297][T12924]   need_discard: buckets=0 sectors=0 fragmented=0
[ 1126.246297][T12924] log: 
[ 1126.246297][T12924] clock: write=1280
[ 1126.246297][T12924] btree_root: btree=extents level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ve
[ 1126.246468][T12924] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[ 1126.392534][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1126.456950][T12946] tmpfs: Bad value for 'mpol'
[ 1126.464911][T12943] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x14ed90e3, utbl_chksum : 0xe619d30d)
[ 1129.413604][T12965] loop6: detected capacity change from 0 to 32768
[ 1129.485997][T12965] bcachefs (/dev/loop6): error validating superblock: Invalid superblock section clean: entry type (unknown jset_entry_type 255) overruns end of section
[ 1129.485997][T12965] clean (size 2912):
[ 1129.485997][T12965] flags:          0
[ 1129.485997][T12965] journal_seq:    10
[ 1129.485997][T12965] usage: type=inodes v=8
[ 1129.485997][T12965] usage: type=key_version v=0
[ 1129.485997][T12965] usage: type=reserved v=0
[ 1129.485997][T12965] usage: type=reserved v=0
[ 1129.485997][T12965] usage: type=reserved v=0
[ 1129.485997][T12965] usage: type=reserved v=0
[ 1129.485997][T12965] data_usage: btree: 1/1 [0]=2816
[ 1129.485997][T12965] data_usage: journal: 1/1 [0]=0
[ 1129.485997][T12965] data_usage: user: 1/1 [0]=16
[ 1129.485997][T12965] dev_usage: dev=0  
[ 1129.485997][T12965]   free: buckets=83 sectors=0 fragmented=0
[ 1129.485997][T12965]   sb: buckets=25 sectors=6152 fragmented=248
[ 1129.485997][T12965]   journal: buckets=8 sectors=2048 fragmented=0
[ 1129.485997][T12965]   btree: buckets=11 sectors=2816 fragmented=0
[ 1129.485997][T12965]   user: buckets=1 sectors=16 fragmented=240
[ 1129.485997][T12965]   cached: buckets=0 sectors=0 fragmented=0
[ 1129.485997][T12965]   parity: buckets=0 sectors=0 fragmented=0
[ 1129.485997][T12965]   stripe: buckets=0 sectors=0 fragmented=0
[ 1129.485997][T12965]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[ 1129.485997][T12965]   need_discard: buckets=0 sectors=0 fragmented=0
[ 1129.485997][T12965] log: 
[ 1129.485997][T12965] clock: write=1280
[ 1129.485997][T12965] btree_root: btree=extents level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ve
[ 1129.486917][T12965] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[ 1130.646340][T12967] syz.9.1387 (12967): drop_caches: 2
[ 1130.824085][T12973] FAULT_INJECTION: forcing a failure.
[ 1130.824085][T12973] name failslab, interval 1, probability 0, space 0, times 0
[ 1130.852521][T12973] CPU: 1 UID: 0 PID: 12973 Comm: syz.0.1391 Not tainted syzkaller #0 PREEMPT(full) 
[ 1130.852551][T12973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1130.852562][T12973] Call Trace:
[ 1130.852570][T12973]  <TASK>
[ 1130.852579][T12973]  dump_stack_lvl+0x189/0x250
[ 1130.852606][T12973]  ? __pfx____ratelimit+0x10/0x10
[ 1130.852633][T12973]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1130.852657][T12973]  ? __pfx__printk+0x10/0x10
[ 1130.852691][T12973]  ? __pfx___might_resched+0x10/0x10
[ 1130.852715][T12973]  ? fs_reclaim_acquire+0x7d/0x100
[ 1130.852747][T12973]  should_fail_ex+0x414/0x560
[ 1130.852779][T12973]  ? __pfx_shmem_alloc_inode+0x10/0x10
[ 1130.852806][T12973]  should_failslab+0xa8/0x100
[ 1130.852834][T12973]  ? __pfx_shmem_alloc_inode+0x10/0x10
[ 1130.852859][T12973]  kmem_cache_alloc_lru_noprof+0x79/0x6d0
[ 1130.852894][T12973]  ? shmem_alloc_inode+0x28/0x40
[ 1130.852926][T12973]  ? __pfx_shmem_alloc_inode+0x10/0x10
[ 1130.852952][T12973]  shmem_alloc_inode+0x28/0x40
[ 1130.852977][T12973]  alloc_inode+0x6a/0x1b0
[ 1130.853004][T12973]  new_inode+0x22/0x170
[ 1130.853036][T12973]  shmem_get_inode+0x346/0xe90
[ 1130.853074][T12973]  __shmem_file_setup+0x163/0x300
[ 1130.853104][T12973]  __se_sys_memfd_create+0x308/0x780
[ 1130.853128][T12973]  do_syscall_64+0xfa/0xfa0
[ 1130.853144][T12973]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1130.853170][T12973]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1130.853189][T12973]  ? clear_bhb_loop+0x60/0xb0
[ 1130.853212][T12973]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1130.853230][T12973] RIP: 0033:0x7fd5c6f8eba9
[ 1130.853248][T12973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1130.853265][T12973] RSP: 002b:00007fd5c7ee0e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[ 1130.853286][T12973] RAX: ffffffffffffffda RBX: 00000000000051ab RCX: 00007fd5c6f8eba9
[ 1130.853300][T12973] RDX: 00007fd5c7ee0ef0 RSI: 0000000000000000 RDI: 00007fd5c70127e8
[ 1130.853312][T12973] RBP: 0000200000005280 R08: 00007fd5c7ee0bb7 R09: 00007fd5c7ee0e40
[ 1130.853325][T12973] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000005200
[ 1130.853337][T12973] R13: 00007fd5c7ee0ef0 R14: 00007fd5c7ee0eb0 R15: 0000200000005240
[ 1130.853372][T12973]  </TASK>
[ 1131.647113][T12988] loop3: detected capacity change from 0 to 256
[ 1131.796306][T12988] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[ 1131.837109][T12988] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=512, location=512
[ 1131.868595][T12988] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[ 1131.933717][T12988] UDF-fs: Scanning with blocksize 512 failed
[ 1131.970102][T12986] syz.8.1392 (12986): drop_caches: 2
[ 1132.039009][T12988] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[ 1132.226083][T12988] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1134.172316][    T9] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[ 1134.370779][    T9] usb 10-1: Using ep0 maxpacket: 16
[ 1134.396161][    T9] usb 10-1: too many configurations: 14, using maximum allowed: 8
[ 1134.421437][    T9] usb 10-1: unable to read config index 0 descriptor/start: -61
[ 1134.451034][    T9] usb 10-1: can't read configurations, error -61
[ 1134.623096][    T9] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[ 1134.903933][T13024] syz.0.1402 (13024): drop_caches: 2
[ 1134.985816][    T9] usb 10-1: Using ep0 maxpacket: 16
[ 1135.046773][T13026] loop3: detected capacity change from 0 to 256
[ 1135.068137][    T9] usb 10-1: too many configurations: 14, using maximum allowed: 8
[ 1135.086396][    T9] usb 10-1: unable to read config index 0 descriptor/start: -61
[ 1135.118973][    T9] usb 10-1: can't read configurations, error -61
[ 1135.160767][T13026] exfat: Deprecated parameter 'utf8'
[ 1135.170120][    T9] usb usb10-port1: attempt power cycle
[ 1135.189013][T13026] exfat: Deprecated parameter 'namecase'
[ 1135.200490][T13026] exfat: Deprecated parameter 'namecase'
[ 1135.285846][T13026] exfat: Deprecated parameter 'utf8'
[ 1135.533102][    T9] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[ 1136.491263][    T9] usb 10-1: Using ep0 maxpacket: 16
[ 1136.659397][    T9] usb 10-1: device descriptor read/all, error -71
[ 1136.885119][T13026] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012153, chksum : 0x8212fc2e, utbl_chksum : 0xe619d30d)
[ 1137.871251][T13050] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1410'.
[ 1138.418577][T13058] loop0: detected capacity change from 0 to 1024
[ 1138.755268][T13058] overlay: filesystem on ./file0 not supported
[ 1138.789338][   T30] kauditd_printk_skb: 1 callbacks suppressed
[ 1138.789690][   T30] audit: type=1800 audit(1757467268.167:127): pid=13058 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1411" name="file1" dev="loop0" ino=20 res=0 errno=0
[ 1138.923667][   T12] hfsplus: b-tree write err: -5, ino 4
[ 1139.136663][ T8699] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[ 1139.572316][ T8699] usb 9-1: Using ep0 maxpacket: 32
[ 1139.691362][T13076] loop9: detected capacity change from 0 to 128
[ 1139.706338][T13072] syz.0.1415 (13072): drop_caches: 2
[ 1139.732418][ T8699] usb 9-1: config 0 has an invalid interface number: 51 but max is 0
[ 1139.740620][ T8699] usb 9-1: config 0 has no interface number 0
[ 1139.961350][ T8699] usb 9-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[ 1140.069577][ T8699] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1140.272255][ T8699] usb 9-1: Product: syz
[ 1140.286851][ T8699] usb 9-1: Manufacturer: syz
[ 1140.291509][ T8699] usb 9-1: SerialNumber: syz
[ 1140.353413][ T8699] usb 9-1: config 0 descriptor??
[ 1140.416733][ T8699] quatech2 9-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[ 1140.699925][ T8699] usb 9-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[ 1140.733429][T13084] syz.0.1418 (13084): drop_caches: 2
[ 1140.821792][ T8699] usb 9-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[ 1141.944178][    C0] usb 9-1: qt2_read_bulk_callback - non-zero urb status: -71
[ 1141.945712][ T5995] usb 9-1: USB disconnect, device number 6
[ 1142.568377][T13095] loop3: detected capacity change from 0 to 256
[ 1142.569520][ T5995] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[ 1142.646585][ T5995] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[ 1142.722713][ T5995] quatech2 9-1:0.51: device disconnected
[ 1142.758134][T13095] exfat: Deprecated parameter 'utf8'
[ 1142.807921][T13095] exfat: Deprecated parameter 'namecase'
[ 1142.849261][T13095] exfat: Deprecated parameter 'namecase'
[ 1142.869715][T13095] exfat: Deprecated parameter 'utf8'
[ 1143.037960][T13109] netlink: 'syz.6.1424': attribute type 49 has an invalid length.
[ 1143.209702][T13095] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012153, chksum : 0x8212fc2e, utbl_chksum : 0xe619d30d)
[ 1143.249368][   T30] audit: type=1107 audit(1757467272.627:128): pid=13108 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='¢œ\71hYi ͤŽfQB0ÑèƒzµmG‰ÜwŽî(·,䟶ŽUºÝq³ªYnRæjxÔr³(?/mï‡Oƒ‡ëz…Px±4ÎjV‹x«äYG¢6(já2ð'
[ 1143.856965][   T30] audit: type=1326 audit(1757467273.237:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13117 comm="syz.8.1426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c3438eba9 code=0x7ffc0000
[ 1143.879750][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1143.975684][   T30] audit: type=1326 audit(1757467273.237:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13117 comm="syz.8.1426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c3438eba9 code=0x7ffc0000
[ 1143.998052][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1144.016800][T13115] syz.9.1425 (13115): drop_caches: 2
[ 1144.237201][   T30] audit: type=1326 audit(1757467273.237:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13117 comm="syz.8.1426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7f7c3438eba9 code=0x7ffc0000
[ 1144.259961][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1144.405890][T13130] loop0: detected capacity change from 0 to 256
[ 1144.423253][T13130] exfat: Deprecated parameter 'utf8'
[ 1144.442346][T13130] exfat: Deprecated parameter 'namecase'
[ 1144.457910][T13128] loop6: detected capacity change from 0 to 2048
[ 1144.486477][T13130] exfat: Deprecated parameter 'namecase'
[ 1144.513982][T13130] exfat: Deprecated parameter 'utf8'
[ 1144.549867][T13134] loop8: detected capacity change from 0 to 256
[ 1144.590946][   T30] audit: type=1326 audit(1757467273.237:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13117 comm="syz.8.1426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c3438eba9 code=0x7ffc0000
[ 1144.613577][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1144.649179][T13134] vfat: Bad value for 'shortname'
[ 1144.829944][   T30] audit: type=1326 audit(1757467273.237:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13117 comm="syz.8.1426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f7c3438eba9 code=0x7ffc0000
[ 1144.867511][   T30] audit: type=1326 audit(1757467273.237:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13117 comm="syz.8.1426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c3438eba9 code=0x7ffc0000
[ 1145.590729][   T30] audit: type=1326 audit(1757467273.237:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13117 comm="syz.8.1426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f7c3438eba9 code=0x7ffc0000
[ 1145.613038][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1145.633223][   T30] audit: type=1326 audit(1757467273.387:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13117 comm="syz.8.1426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c3438eba9 code=0x7ffc0000
[ 1145.807172][   T30] audit: type=1326 audit(1757467273.387:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13117 comm="syz.8.1426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c3438eba9 code=0x7ffc0000
[ 1145.830925][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1145.987555][T13130] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012153, chksum : 0x8212fc2e, utbl_chksum : 0xe619d30d)
[ 1147.035953][T13149] syz.3.1433 (13149): drop_caches: 2
[ 1147.186361][T13153] FAULT_INJECTION: forcing a failure.
[ 1147.186361][T13153] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1147.353437][T13157] syz.6.1434 (13157): drop_caches: 2
[ 1147.475092][T13153] CPU: 0 UID: 0 PID: 13153 Comm: syz.8.1432 Not tainted syzkaller #0 PREEMPT(full) 
[ 1147.475122][T13153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1147.475133][T13153] Call Trace:
[ 1147.475141][T13153]  <TASK>
[ 1147.475149][T13153]  dump_stack_lvl+0x189/0x250
[ 1147.475178][T13153]  ? __pfx____ratelimit+0x10/0x10
[ 1147.475206][T13153]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1147.475228][T13153]  ? __pfx__printk+0x10/0x10
[ 1147.475264][T13153]  ? __might_fault+0xb0/0x130
[ 1147.475302][T13153]  should_fail_ex+0x414/0x560
[ 1147.475336][T13153]  _copy_from_user+0x2d/0xb0
[ 1147.475361][T13153]  video_usercopy+0x346/0x1450
[ 1147.475399][T13153]  ? __pfx___video_do_ioctl+0x10/0x10
[ 1147.475529][T13153]  ? __pfx_video_usercopy+0x10/0x10
[ 1147.475571][T13153]  ? __fget_files+0x3a0/0x420
[ 1147.475606][T13153]  v4l2_ioctl+0x18a/0x1e0
[ 1147.475632][T13153]  ? __pfx_v4l2_ioctl+0x10/0x10
[ 1147.475654][T13153]  __se_sys_ioctl+0xfc/0x170
[ 1147.475680][T13153]  do_syscall_64+0xfa/0xfa0
[ 1147.475697][T13153]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1147.475723][T13153]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1147.475743][T13153]  ? clear_bhb_loop+0x60/0xb0
[ 1147.475767][T13153]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1147.475785][T13153] RIP: 0033:0x7f7c3438eba9
[ 1147.475804][T13153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1147.475820][T13153] RSP: 002b:00007f7c351ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1147.475842][T13153] RAX: ffffffffffffffda RBX: 00007f7c345d6090 RCX: 00007f7c3438eba9
[ 1147.475857][T13153] RDX: 0000200000000000 RSI: 0000000040045612 RDI: 0000000000000003
[ 1147.475869][T13153] RBP: 00007f7c351ec090 R08: 0000000000000000 R09: 0000000000000000
[ 1147.475880][T13153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1147.475891][T13153] R13: 00007f7c345d6128 R14: 00007f7c345d6090 R15: 00007ffc7cd71fb8
[ 1147.475926][T13153]  </TASK>
[ 1147.677779][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1148.064339][T13162] loop9: detected capacity change from 0 to 16
[ 1148.146443][T13162] erofs (device loop9): mounted with root inode @ nid 36.
[ 1149.176589][T13167] syz.3.1436 (13167): drop_caches: 2
[ 1149.816927][T13176] loop8: detected capacity change from 0 to 16
[ 1149.866439][T13176] erofs (device loop8): mounted with root inode @ nid 36.
[ 1150.632590][T13181] loop3: detected capacity change from 0 to 256
[ 1150.678122][T13181] exfat: Deprecated parameter 'utf8'
[ 1150.694087][T13181] exfat: Deprecated parameter 'namecase'
[ 1150.734650][T13181] exfat: Deprecated parameter 'namecase'
[ 1151.002526][T13183] loop6: detected capacity change from 0 to 256
[ 1151.113273][T13183] exfat: Deprecated parameter 'utf8'
[ 1151.137990][T13183] exfat: Deprecated parameter 'namecase'
[ 1151.149017][T13183] exfat: Deprecated parameter 'namecase'
[ 1151.162346][T13181] exfat: Deprecated parameter 'utf8'
[ 1151.179722][T13183] exfat: Deprecated parameter 'utf8'
[ 1152.488886][T13181] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012153, chksum : 0x8212fc2e, utbl_chksum : 0xe619d30d)
[ 1152.697557][T13183] exFAT-fs (loop6): failed to load upcase table (idx : 0x00012153, chksum : 0x8212fc2e, utbl_chksum : 0xe619d30d)
[ 1153.057206][T13200] loop6: detected capacity change from 0 to 64
[ 1153.139179][T13200] netlink: 9 bytes leftover after parsing attributes in process `syz.6.1446'.
[ 1153.154126][T13200] gretap0: entered promiscuous mode
[ 1153.165083][T13196] Trying to free block not in datazone
[ 1153.170623][T13196] Trying to free block not in datazone
[ 1154.725831][T13203] loop9: detected capacity change from 0 to 32768
[ 1156.249282][T13203] bcachefs (/dev/loop9): error validating superblock: Invalid superblock section clean: entry type (unknown jset_entry_type 255) overruns end of section
[ 1156.249282][T13203] clean (size 2912):
[ 1156.249282][T13203] flags:          0
[ 1156.249282][T13203] journal_seq:    10
[ 1156.249282][T13203] usage: type=inodes v=8
[ 1156.249282][T13203] usage: type=key_version v=0
[ 1156.249282][T13203] usage: type=reserved v=0
[ 1156.249282][T13203] usage: type=reserved v=0
[ 1156.249282][T13203] usage: type=reserved v=0
[ 1156.249282][T13203] usage: type=reserved v=0
[ 1156.249282][T13203] data_usage: btree: 1/1 [0]=2816
[ 1156.249282][T13203] data_usage: journal: 1/1 [0]=0
[ 1156.249282][T13203] data_usage: user: 1/1 [0]=16
[ 1156.249282][T13203] dev_usage: dev=0  
[ 1156.249282][T13203]   free: buckets=83 sectors=0 fragmented=0
[ 1156.249282][T13203]   sb: buckets=25 sectors=6152 fragmented=248
[ 1156.249282][T13203]   journal: buckets=8 sectors=2048 fragmented=0
[ 1156.249282][T13203]   btree: buckets=11 sectors=2816 fragmented=0
[ 1156.249282][T13203]   user: buckets=1 sectors=16 fragmented=240
[ 1156.249282][T13203]   cached: buckets=0 sectors=0 fragmented=0
[ 1156.249282][T13203]   parity: buckets=0 sectors=0 fragmented=0
[ 1156.249282][T13203]   stripe: buckets=0 sectors=0 fragmented=0
[ 1156.249282][T13203]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[ 1156.249282][T13203]   need_discard: buckets=0 sectors=0 fragmented=0
[ 1156.249282][T13203] log: 
[ 1156.249282][T13203] clock: write=1280
[ 1156.249282][T13203] btree_root: btree=extents level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ve
[ 1156.249428][T13203] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[ 1156.395233][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1156.517855][T13214] loop8: detected capacity change from 0 to 256
[ 1158.295311][T13214] exfat: Deprecated parameter 'utf8'
[ 1158.875989][T13214] exfat: Deprecated parameter 'namecase'
[ 1158.940853][T13214] exfat: Deprecated parameter 'namecase'
[ 1158.999535][T13214] exfat: Deprecated parameter 'utf8'
[ 1160.129255][T13234] FAULT_INJECTION: forcing a failure.
[ 1160.129255][T13234] name failslab, interval 1, probability 0, space 0, times 0
[ 1160.142466][T13234] CPU: 1 UID: 0 PID: 13234 Comm: syz.9.1451 Not tainted syzkaller #0 PREEMPT(full) 
[ 1160.142495][T13234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1160.142507][T13234] Call Trace:
[ 1160.142523][T13234]  <TASK>
[ 1160.142533][T13234]  dump_stack_lvl+0x189/0x250
[ 1160.142563][T13234]  ? __pfx____ratelimit+0x10/0x10
[ 1160.142592][T13234]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1160.142615][T13234]  ? __pfx__printk+0x10/0x10
[ 1160.142649][T13234]  ? __pfx___might_resched+0x10/0x10
[ 1160.142672][T13234]  ? fs_reclaim_acquire+0x7d/0x100
[ 1160.142705][T13234]  should_fail_ex+0x414/0x560
[ 1160.142738][T13234]  should_failslab+0xa8/0x100
[ 1160.142767][T13234]  kmem_cache_alloc_noprof+0x74/0x6e0
[ 1160.142792][T13234]  ? getname_flags+0xb8/0x540
[ 1160.142825][T13234]  getname_flags+0xb8/0x540
[ 1160.142850][T13234]  ? _copy_from_user+0x94/0xb0
[ 1160.142877][T13234]  user_path_at+0x24/0x60
[ 1160.142898][T13234]  __se_sys_mount+0x2d4/0x410
[ 1160.142931][T13234]  ? __pfx___se_sys_mount+0x10/0x10
[ 1160.142962][T13234]  ? do_syscall_64+0xbe/0xfa0
[ 1160.142978][T13234]  ? __x64_sys_mount+0x20/0xc0
[ 1160.143006][T13234]  do_syscall_64+0xfa/0xfa0
[ 1160.143021][T13234]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1160.143049][T13234]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1160.143067][T13234]  ? clear_bhb_loop+0x60/0xb0
[ 1160.143091][T13234]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1160.143110][T13234] RIP: 0033:0x7f9ecb58eba9
[ 1160.143128][T13234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1160.143144][T13234] RSP: 002b:00007f9ecc45d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1160.143166][T13234] RAX: ffffffffffffffda RBX: 00007f9ecb7d6180 RCX: 00007f9ecb58eba9
[ 1160.143180][T13234] RDX: 0000200000000080 RSI: 0000200000000180 RDI: 0000000000000000
[ 1160.143193][T13234] RBP: 00007f9ecc45d090 R08: 0000000000000000 R09: 0000000000000000
[ 1160.143204][T13234] R10: 0000000001214050 R11: 0000000000000246 R12: 0000000000000001
[ 1160.143216][T13234] R13: 00007f9ecb7d6218 R14: 00007f9ecb7d6180 R15: 00007fff71c17ed8
[ 1160.143251][T13234]  </TASK>
[ 1160.832446][T13214] exFAT-fs (loop8): failed to load upcase table (idx : 0x00012153, chksum : 0x8212fc2e, utbl_chksum : 0xe619d30d)
[ 1163.478790][T13241] loop6: detected capacity change from 0 to 32768
[ 1163.512296][   T43] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[ 1163.672460][   T43] usb 10-1: Using ep0 maxpacket: 32
[ 1163.695339][   T43] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1164.225812][T13241] bcachefs (/dev/loop6): error validating superblock: Invalid superblock section clean: entry type (unknown jset_entry_type 255) overruns end of section
[ 1164.225812][T13241] clean (size 2912):
[ 1164.225812][T13241] flags:          0
[ 1164.225812][T13241] journal_seq:    10
[ 1164.225812][T13241] usage: type=inodes v=8
[ 1164.225812][T13241] usage: type=key_version v=0
[ 1164.225812][T13241] usage: type=reserved v=0
[ 1164.225812][T13241] usage: type=reserved v=0
[ 1164.225812][T13241] usage: type=reserved v=0
[ 1164.225812][T13241] usage: type=reserved v=0
[ 1164.225812][T13241] data_usage: btree: 1/1 [0]=2816
[ 1164.225812][T13241] data_usage: journal: 1/1 [0]=0
[ 1164.225812][T13241] data_usage: user: 1/1 [0]=16
[ 1164.225812][T13241] dev_usage: dev=0  
[ 1164.225812][T13241]   free: buckets=83 sectors=0 fragmented=0
[ 1164.225812][T13241]   sb: buckets=25 sectors=6152 fragmented=248
[ 1164.225812][T13241]   journal: buckets=8 sectors=2048 fragmented=0
[ 1164.225812][T13241]   btree: buckets=11 sectors=2816 fragmented=0
[ 1164.225812][T13241]   user: buckets=1 sectors=16 fragmented=240
[ 1164.225812][T13241]   cached: buckets=0 sectors=0 fragmented=0
[ 1164.225812][T13241]   parity: buckets=0 sectors=0 fragmented=0
[ 1164.225812][T13241]   stripe: buckets=0 sectors=0 fragmented=0
[ 1164.225812][T13241]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[ 1164.225812][T13241]   need_discard: buckets=0 sectors=0 fragmented=0
[ 1164.225812][T13241] log: 
[ 1164.225812][T13241] clock: write=1280
[ 1164.225812][T13241] btree_root: btree=extents level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ve
[ 1164.225965][T13241] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[ 1164.380750][   T43] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1164.437687][   T43] usb 10-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[ 1164.457235][   T43] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1164.976295][   T43] usb 10-1: config 0 descriptor??
[ 1165.080731][   T43] usb 10-1: can't set config #0, error -71
[ 1165.108520][   T43] usb 10-1: USB disconnect, device number 8
[ 1174.442383][ T5877] Bluetooth: hci1: command 0x0406 tx timeout
[ 1177.488456][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.494972][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1211.578844][   T30] audit: type=1326 audit(1757467340.957:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13260 comm="syz.0.1460" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd5c6f8eba9 code=0x0
[ 1211.791383][T13269] syz.8.1462 (13269): drop_caches: 2
[ 1213.140442][T13277] syz.6.1467 (13277): drop_caches: 2
[ 1213.371611][T13278] loop9: detected capacity change from 0 to 256
[ 1213.395065][T13278] exfat: Deprecated parameter 'utf8'
[ 1213.428606][T13278] exfat: Deprecated parameter 'namecase'
[ 1213.440541][T13281] loop3: detected capacity change from 0 to 256
[ 1213.447695][T13281] exfat: Deprecated parameter 'utf8'
[ 1213.463183][T13278] exfat: Deprecated parameter 'namecase'
[ 1213.493495][T13278] exfat: Deprecated parameter 'utf8'
[ 1213.529553][T13281] exfat: Deprecated parameter 'namecase'
[ 1213.740965][T13281] exfat: Deprecated parameter 'namecase'
[ 1213.960457][T13281] exfat: Deprecated parameter 'utf8'
[ 1213.982860][T13281] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012153, chksum : 0x8212fc2e, utbl_chksum : 0xe619d30d)
[ 1214.225004][T13278] exFAT-fs (loop9): failed to load upcase table (idx : 0x00012153, chksum : 0x8212fc2e, utbl_chksum : 0xe619d30d)
[ 1214.598434][T13297] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1215.099754][T13273] exFAT-fs (loop9): start_clu is invalid cluster(0x400)
[ 1215.122968][T13300] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1215.371829][T13308] FAULT_INJECTION: forcing a failure.
[ 1215.371829][T13308] name failslab, interval 1, probability 0, space 0, times 0
[ 1215.410535][T13308] CPU: 0 UID: 0 PID: 13308 Comm: syz.0.1476 Not tainted syzkaller #0 PREEMPT(full) 
[ 1215.410562][T13308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1215.410572][T13308] Call Trace:
[ 1215.410577][T13308]  <TASK>
[ 1215.410583][T13308]  dump_stack_lvl+0x189/0x250
[ 1215.410601][T13308]  ? __pfx____ratelimit+0x10/0x10
[ 1215.410618][T13308]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1215.410631][T13308]  ? __pfx__printk+0x10/0x10
[ 1215.410649][T13308]  ? __pfx___might_resched+0x10/0x10
[ 1215.410664][T13308]  ? fs_reclaim_acquire+0x7d/0x100
[ 1215.410682][T13308]  should_fail_ex+0x414/0x560
[ 1215.410701][T13308]  should_failslab+0xa8/0x100
[ 1215.410718][T13308]  __kmalloc_noprof+0xcb/0x7f0
[ 1215.410732][T13308]  ? alloc_pipe_info+0x1fd/0x4d0
[ 1215.410753][T13308]  alloc_pipe_info+0x1fd/0x4d0
[ 1215.410769][T13308]  splice_direct_to_actor+0xa5d/0xcc0
[ 1215.410785][T13308]  ? __lock_acquire+0xab9/0xd20
[ 1215.410807][T13308]  ? __pfx_aa_file_perm+0x10/0x10
[ 1215.410818][T13308]  ? __lock_acquire+0xab9/0xd20
[ 1215.410832][T13308]  ? __pfx_direct_splice_actor+0x10/0x10
[ 1215.410846][T13308]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 1215.410867][T13308]  do_splice_direct+0x181/0x270
[ 1215.410883][T13308]  ? __pfx_do_splice_direct+0x10/0x10
[ 1215.410896][T13308]  ? common_file_perm+0x1b5/0x230
[ 1215.410912][T13308]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 1215.410929][T13308]  ? bpf_lsm_file_permission+0x9/0x20
[ 1215.410941][T13308]  ? security_file_permission+0x75/0x290
[ 1215.410956][T13308]  ? rw_verify_area+0x255/0x4d0
[ 1215.410971][T13308]  do_sendfile+0x4da/0x7e0
[ 1215.410997][T13308]  ? __pfx_vfs_write+0x10/0x10
[ 1215.411014][T13308]  ? __pfx_do_sendfile+0x10/0x10
[ 1215.411030][T13308]  ? __fget_files+0x3a0/0x420
[ 1215.411052][T13308]  __se_sys_sendfile64+0x13e/0x190
[ 1215.411070][T13308]  ? __pfx___se_sys_sendfile64+0x10/0x10
[ 1215.411088][T13308]  ? do_syscall_64+0xbe/0xfa0
[ 1215.411101][T13308]  do_syscall_64+0xfa/0xfa0
[ 1215.411110][T13308]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1215.411126][T13308]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1215.411137][T13308]  ? clear_bhb_loop+0x60/0xb0
[ 1215.411151][T13308]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1215.411165][T13308] RIP: 0033:0x7fd5c6f8eba9
[ 1215.411182][T13308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1215.411197][T13308] RSP: 002b:00007fd5c7ee1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1215.411218][T13308] RAX: ffffffffffffffda RBX: 00007fd5c71d5fa0 RCX: 00007fd5c6f8eba9
[ 1215.411231][T13308] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000005
[ 1215.411242][T13308] RBP: 00007fd5c7ee1090 R08: 0000000000000000 R09: 0000000000000000
[ 1215.411253][T13308] R10: 000080001d00c0d1 R11: 0000000000000246 R12: 0000000000000001
[ 1215.411265][T13308] R13: 00007fd5c71d6038 R14: 00007fd5c71d5fa0 R15: 00007ffedaf17008
[ 1215.411297][T13308]  </TASK>
[ 1215.696674][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1216.003628][T13318] syz.3.1479 (13318): drop_caches: 2
[ 1216.485385][T13315] loop8: detected capacity change from 0 to 256
[ 1216.528652][T13315] exfat: Deprecated parameter 'utf8'
[ 1216.563667][T13315] exfat: Deprecated parameter 'namecase'
[ 1216.583722][T13315] exfat: Deprecated parameter 'namecase'
[ 1216.600298][T13315] exfat: Deprecated parameter 'utf8'
[ 1216.678692][T13315] exFAT-fs (loop8): failed to load upcase table (idx : 0x00012153, chksum : 0x8212fc2e, utbl_chksum : 0xe619d30d)
[ 1217.296831][T13325] loop0: detected capacity change from 0 to 256
[ 1217.521315][T13325] exfat: Deprecated parameter 'utf8'
[ 1217.527064][T13325] exfat: Deprecated parameter 'namecase'
[ 1217.537821][T13325] exfat: Deprecated parameter 'namecase'
[ 1217.544645][T13325] exfat: Deprecated parameter 'utf8'
[ 1217.589677][T13325] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012153, chksum : 0x8212fc2e, utbl_chksum : 0xe619d30d)
[ 1217.689284][T13337] loop8: detected capacity change from 0 to 128
[ 1217.744770][T13334] loop6: detected capacity change from 0 to 4096
[ 1217.785906][T13334] EXT4-fs: inline encryption not supported
[ 1217.805881][T13337] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256
[ 1217.823406][T13334] EXT4-fs: Invalid journal IO priority (must be 0-7)
[ 1217.939461][T13337] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1218.115974][T13339] loop0: detected capacity change from 0 to 64
[ 1218.155558][T13339] hfs: Unknown parameter '`¬'
[ 1221.090808][T13367] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR
[ 1221.431411][T13353] syz.6.1489 (13353): drop_caches: 2
[ 1222.311017][T13376] syz.8.1497 (13376): drop_caches: 2
[ 1222.573035][T10952] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[ 1222.619471][T13382] syz.0.1498 (13382): drop_caches: 2
[ 1222.792975][T10952] usb 4-1: Using ep0 maxpacket: 32
[ 1222.820680][T10952] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA6, changing to 0x86
[ 1222.849784][T10952] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x86 has an invalid bInterval 0, changing to 7
[ 1222.873121][T10952] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x86 has invalid wMaxPacketSize 0
[ 1222.910685][T10952] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x7 has an invalid bInterval 255, changing to 11
[ 1222.935654][T10952] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid maxpacket 59391, setting to 1024
[ 1222.950174][T13387] loop0: detected capacity change from 0 to 256
[ 1222.958941][T13384] loop8: detected capacity change from 0 to 4096
[ 1222.959459][T10952] usb 4-1: New USB device found, idVendor=05ef, idProduct=020a, bcdDevice=91.36
[ 1222.974962][T10952] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1222.979084][T13387] exfat: Deprecated parameter 'utf8'
[ 1222.989859][T10952] usb 4-1: Product: syz
[ 1222.994197][T10952] usb 4-1: Manufacturer: syz
[ 1222.999893][T10952] usb 4-1: SerialNumber: syz
[ 1223.005838][T13384] EXT4-fs: inline encryption not supported
[ 1223.011454][T10952] usb 4-1: config 0 descriptor??
[ 1223.017794][T13387] exfat: Deprecated parameter 'namecase'
[ 1223.052419][T13384] EXT4-fs: Invalid journal IO priority (must be 0-7)
[ 1223.085363][T13387] exfat: Deprecated parameter 'namecase'
[ 1223.157864][T13387] exfat: Deprecated parameter 'utf8'
[ 1223.354383][T13387] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012153, chksum : 0x8212fc2e, utbl_chksum : 0xe619d30d)
[ 1223.387971][T13374] loop9: detected capacity change from 0 to 32768
[ 1223.405836][T13374] bcachefs (/dev/loop9): error reading default superblock: Bad minimum version 0.24: unwritten_extents, greater than version field 0.9: (unknown version)
[ 1223.669497][T13374] bcachefs (/dev/loop9): error validating superblock: Invalid option metadata_replicas_required: too small (min 1)
[ 1223.696063][T10952] iforce 4-1:0.0: usb_submit_urb failed: -32
[ 1223.745108][T10952] input input5: Device does not respond to id packet M
[ 1223.756589][T13378] bridge_slave_0: entered promiscuous mode
[ 1223.766474][T10952] iforce 4-1:0.0: usb_submit_urb failed: -32
[ 1223.775732][T13374] bcachefs: bch2_fs_get_tree() error: ERANGE_option_too_small
[ 1223.843559][T10952] input input5: Device does not respond to id packet P
[ 1224.009104][T10952] iforce 4-1:0.0: usb_submit_urb failed: -32
[ 1224.081402][T10952] input input5: Device does not respond to id packet B
[ 1224.382533][T10952] iforce 4-1:0.0: usb_submit_urb failed: -71
[ 1224.402266][T10952] iforce 4-1:0.0: usb_submit_urb failed: -71
[ 1224.422366][T10952] iforce 4-1:0.0: usb_submit_urb failed: -71
[ 1224.429319][T10952] iforce 4-1:0.0: usb_submit_urb failed: -71
[ 1224.491997][T10952] input: Unknown I-Force Device [%04x:%04x] as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input5
[ 1224.768417][T13401] FAULT_INJECTION: forcing a failure.
[ 1224.768417][T13401] name failslab, interval 1, probability 0, space 0, times 0
[ 1224.781481][T13401] CPU: 1 UID: 0 PID: 13401 Comm: syz.6.1503 Not tainted syzkaller #0 PREEMPT(full) 
[ 1224.781510][T13401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1224.781521][T13401] Call Trace:
[ 1224.781540][T13401]  <TASK>
[ 1224.781550][T13401]  dump_stack_lvl+0x189/0x250
[ 1224.781580][T13401]  ? __pfx____ratelimit+0x10/0x10
[ 1224.781608][T13401]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1224.781669][T13401]  ? __pfx__printk+0x10/0x10
[ 1224.781705][T13401]  ? __pfx___might_resched+0x10/0x10
[ 1224.781738][T13401]  should_fail_ex+0x414/0x560
[ 1224.781772][T13401]  should_failslab+0xa8/0x100
[ 1224.781802][T13401]  __kmalloc_cache_noprof+0x6f/0x6f0
[ 1224.781827][T13401]  ? bpf_lsm_capable+0x9/0x20
[ 1224.781849][T13401]  ? security_capable+0x7e/0x2e0
[ 1224.781871][T13401]  ? gsmld_open+0xab/0xb60
[ 1224.781900][T13401]  gsmld_open+0xab/0xb60
[ 1224.781920][T13401]  ? up_write+0x1c4/0x420
[ 1224.781945][T13401]  tty_ldisc_open+0x9e/0x100
[ 1224.781969][T13401]  tty_set_ldisc+0x373/0x560
[ 1224.781996][T13401]  tty_ioctl+0xc38/0xde0
[ 1224.782017][T13401]  ? __pfx_tty_ioctl+0x10/0x10
[ 1224.782037][T13401]  __se_sys_ioctl+0xfc/0x170
[ 1224.782062][T13401]  do_syscall_64+0xfa/0xfa0
[ 1224.782081][T13401]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1224.782099][T13401]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[ 1224.782123][T13401]  ? clear_bhb_loop+0x60/0xb0
[ 1224.782146][T13401]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1224.782164][T13401] RIP: 0033:0x7fdcff58eba9
[ 1224.782182][T13401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1224.782199][T13401] RSP: 002b:00007fdd00453038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1224.782220][T13401] RAX: ffffffffffffffda RBX: 00007fdcff7d6180 RCX: 00007fdcff58eba9
[ 1224.782233][T13401] RDX: 0000200000000000 RSI: 0000000000005423 RDI: 0000000000000007
[ 1224.782245][T13401] RBP: 00007fdd00453090 R08: 0000000000000000 R09: 0000000000000000
[ 1224.782257][T13401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1224.782269][T13401] R13: 00007fdcff7d6218 R14: 00007fdcff7d6180 R15: 00007ffd72039d28
[ 1224.782305][T13401]  </TASK>
[ 1225.479785][T10952] usb 4-1: USB disconnect, device number 9
[ 1225.521736][T10952] iforce 4-1:0.0: usb_submit_urb failed -19
[ 1225.953970][   T43] libceph: connect (1)[c::]:6789 error -101
[ 1226.435146][T13413] ceph: No mds server is up or the cluster is laggy
[ 1226.490966][   T43] libceph: mon0 (1)[c::]:6789 connect error
[ 1226.506949][T13412] tmpfs: Bad value for 'mpol'
[ 1227.544035][T13418] block device autoloading is deprecated and will be removed.
[ 1227.862441][T13425] syz.8.1509 (13425): drop_caches: 2
[ 1228.346076][T13427] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1510'.
[ 1228.375719][T13427] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1510'.
[ 1229.589914][T13431] loop0: detected capacity change from 0 to 256
[ 1229.641225][T13431] exfat: Deprecated parameter 'utf8'
[ 1229.662381][T13431] exfat: Deprecated parameter 'namecase'
[ 1229.672699][T13431] exfat: Deprecated parameter 'namecase'
[ 1229.678370][T13431] exfat: Deprecated parameter 'utf8'
[ 1230.066510][T13446] syz.8.1516 (13446): drop_caches: 2
[ 1231.820901][T13452] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR
[ 1232.053334][T13431] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012153, chksum : 0x8212fc2e, utbl_chksum : 0xe619d30d)
[ 1232.276852][T13457] tmpfs: Bad value for 'mpol'
[ 1236.339445][T13478] syz.6.1523 (13478): drop_caches: 2
[ 1237.695836][T13475] loop9: detected capacity change from 0 to 32768
[ 1237.732183][T13475] bcachefs (/dev/loop9): error validating superblock: Invalid superblock section clean: entry type (unknown jset_entry_type 255) overruns end of section
[ 1237.732183][T13475] clean (size 2912):
[ 1237.732183][T13475] flags:          0
[ 1237.732183][T13475] journal_seq:    10
[ 1237.732183][T13475] usage: type=inodes v=8
[ 1237.732183][T13475] usage: type=key_version v=0
[ 1237.732183][T13475] usage: type=reserved v=0
[ 1237.732183][T13475] usage: type=reserved v=0
[ 1237.732183][T13475] usage: type=reserved v=0
[ 1237.732183][T13475] usage: type=reserved v=0
[ 1237.732183][T13475] data_usage: btree: 1/1 [0]=2816
[ 1237.732183][T13475] data_usage: journal: 1/1 [0]=0
[ 1237.732183][T13475] data_usage: user: 1/1 [0]=16
[ 1237.732183][T13475] dev_usage: dev=0  
[ 1237.732183][T13475]   free: buckets=83 sectors=0 fragmented=0
[ 1237.732183][T13475]   sb: buckets=25 sectors=6152 fragmented=248
[ 1237.732183][T13475]   journal: buckets=8 sectors=2048 fragmented=0
[ 1237.732183][T13475]   btree: buckets=11 sectors=2816 fragmented=0
[ 1237.732183][T13475]   user: buckets=1 sectors=16 fragmented=240
[ 1237.732183][T13475]   cached: buckets=0 sectors=0 fragmented=0
[ 1237.732183][T13475]   parity: buckets=0 sectors=0 fragmented=0
[ 1237.732183][T13475]   stripe: buckets=0 sectors=0 fragmented=0
[ 1237.732183][T13475]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[ 1237.732183][T13475]   need_discard: buckets=0 sectors=0 fragmented=0
[ 1237.732183][T13475] log: 
[ 1237.732183][T13475] clock: write=1280
[ 1237.732183][T13475] btree_root: btree=extents level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ve
[ 1237.732365][T13475] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[ 1237.878225][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1238.156615][T13486] syz.6.1529 (13486): drop_caches: 2
[ 1238.989081][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1238.995786][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1239.037234][T13490] loop0: detected capacity change from 0 to 256
[ 1239.179119][T10952] libceph: connect (1)[c::]:6789 error -101
[ 1239.211418][T10952] libceph: mon0 (1)[c::]:6789 connect error
[ 1239.721227][T13494] ceph: No mds server is up or the cluster is laggy
[ 1239.763938][T13490] exfat: Deprecated parameter 'utf8'
[ 1239.769285][T13490] exfat: Deprecated parameter 'namecase'
[ 1239.915688][T13490] exfat: Deprecated parameter 'namecase'
[ 1239.921373][T13490] exfat: Deprecated parameter 'utf8'
[ 1240.141225][T13490] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012153, chksum : 0x8212fc2e, utbl_chksum : 0xe619d30d)
[ 1240.179064][T13502] syz.9.1533 (13502): drop_caches: 2
[ 1240.252354][T13498] loop6: detected capacity change from 0 to 4096
[ 1240.342974][T13498] ntfs3(loop6): Failed to load $Volume (-22).
[ 1241.411191][T13513] loop8: detected capacity change from 0 to 256
[ 1241.593015][T13513] exfat: Deprecated parameter 'utf8'
[ 1241.598366][T13513] exfat: Deprecated parameter 'namecase'
[ 1242.436296][T13513] exfat: Deprecated parameter 'namecase'
[ 1242.542911][T13513] exfat: Deprecated parameter 'utf8'
[ 1242.822222][T13513] exFAT-fs (loop8): failed to load upcase table (idx : 0x00012153, chksum : 0x8212fc2e, utbl_chksum : 0xe619d30d)
[ 1243.175434][T13531] loop0: detected capacity change from 0 to 256
[ 1243.225532][T13531] vfat: Bad value for 'fmask'
[ 1244.731388][T13560] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1558'.
[ 1244.771419][T13560] netlink: 32 bytes leftover after parsing attributes in process `syz.6.1558'.
[ 1244.940734][T13558] loop0: detected capacity change from 0 to 8192
[ 1244.990470][T13558] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1245.042539][   T30] audit: type=1326 audit(1757467374.417:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13571 comm="syz.3.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0229d8eba9 code=0x7ffc0000
[ 1245.177010][   T30] audit: type=1326 audit(1757467374.467:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13571 comm="syz.3.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0229d8eba9 code=0x7ffc0000
[ 1245.291364][   T30] audit: type=1326 audit(1757467374.467:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13571 comm="syz.3.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0229d8eba9 code=0x7ffc0000
[ 1245.352965][   T30] audit: type=1326 audit(1757467374.477:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13571 comm="syz.3.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0229d8eba9 code=0x7ffc0000
[ 1245.376574][   T30] audit: type=1326 audit(1757467374.477:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13571 comm="syz.3.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0229d8eba9 code=0x7ffc0000
[ 1245.410385][   T30] audit: type=1326 audit(1757467374.477:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13571 comm="syz.3.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0229d8eba9 code=0x7ffc0000
[ 1245.443467][   T30] audit: type=1326 audit(1757467374.477:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13571 comm="syz.3.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0229d8eba9 code=0x7ffc0000
[ 1245.531190][   T30] audit: type=1326 audit(1757467374.477:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13571 comm="syz.3.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7f0229d8eba9 code=0x7ffc0000
[ 1245.592943][   T30] audit: type=1326 audit(1757467374.497:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13571 comm="syz.3.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0229d8eba9 code=0x7ffc0000
[ 1245.645584][   T30] audit: type=1326 audit(1757467374.497:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13571 comm="syz.3.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f0229d8eba9 code=0x7ffc0000
[ 1245.686256][T13582] evm: overlay not supported
[ 1246.004633][T13593] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1571'.
[ 1246.068588][T13596] netlink: 204 bytes leftover after parsing attributes in process `syz.9.1574'.
[ 1246.079186][T13592] loop6: detected capacity change from 0 to 1024
[ 1246.114803][T13597] macvtap0: refused to change device tx_queue_len
[ 1246.123224][T13592] EXT4-fs: Ignoring removed orlov option
[ 1246.198448][T13592] EXT4-fs (loop6): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 1246.267973][T13592] ext4 filesystem being mounted at /239/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1246.345979][T13592] EXT4-fs error (device loop6): ext4_map_blocks:814: inode #15: comm syz.6.1572: lblock 0 mapped to illegal pblock 0 (length 1)
[ 1246.421667][T13592] EXT4-fs error (device loop6): ext4_ext_remove_space:2955: inode #15: comm syz.6.1572: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[ 1246.543378][T13602] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1246.614626][ T8445] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 1246.669341][T13615] loop8: detected capacity change from 0 to 256
[ 1246.819104][T13615] FAT-fs (loop8): Directory bread(block 64) failed
[ 1246.846164][T13615] FAT-fs (loop8): Directory bread(block 65) failed
[ 1246.869288][T13615] FAT-fs (loop8): Directory bread(block 66) failed
[ 1246.884127][T13615] FAT-fs (loop8): Directory bread(block 67) failed
[ 1246.900180][T13615] FAT-fs (loop8): Directory bread(block 68) failed
[ 1246.956320][T13615] FAT-fs (loop8): Directory bread(block 69) failed
[ 1247.021645][T13615] FAT-fs (loop8): Directory bread(block 70) failed
[ 1247.069999][T13615] FAT-fs (loop8): Directory bread(block 71) failed
[ 1247.102403][T13615] FAT-fs (loop8): Directory bread(block 72) failed
[ 1247.113222][T13615] FAT-fs (loop8): Directory bread(block 73) failed
[ 1247.208988][T13624] lo speed is unknown, defaulting to 1000
[ 1247.227155][T13624] lo speed is unknown, defaulting to 1000
[ 1247.279159][T13627] loop3: detected capacity change from 0 to 512
[ 1247.340753][T13627] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1247.378600][T13624] lo speed is unknown, defaulting to 1000
[ 1247.385545][T13632] loop0: detected capacity change from 0 to 512
[ 1247.394132][T13627] ext4 filesystem being mounted at /391/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1247.404741][T13632] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1247.451441][T13624] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[ 1247.471500][T13632] EXT4-fs (loop0): 1 truncate cleaned up
[ 1247.517273][T13632] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1247.526009][T13624] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[ 1247.615299][T13624] lo speed is unknown, defaulting to 1000
[ 1247.618427][T13624] lo speed is unknown, defaulting to 1000
[ 1247.622048][T13624] lo speed is unknown, defaulting to 1000
[ 1247.624556][T13624] lo speed is unknown, defaulting to 1000
[ 1247.627230][T13624] lo speed is unknown, defaulting to 1000
[ 1247.632491][T13624] lo speed is unknown, defaulting to 1000
[ 1247.688571][ T5861] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1247.880093][T13645] 9pnet_fd: Insufficient options for proto=fd
[ 1247.887251][ T5868] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1248.486783][T13660] netlink: 56 bytes leftover after parsing attributes in process `syz.6.1599'.
[ 1249.033177][T13681] netlink: 130984 bytes leftover after parsing attributes in process `syz.0.1608'.
[ 1249.271947][T13695] loop8: detected capacity change from 0 to 512
[ 1249.331840][T13695] EXT4-fs warning (device loop8): ext4_enable_quotas:7178: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[ 1249.338789][T13695] EXT4-fs (loop8): mount failed
[ 1249.585610][T13709] loop9: detected capacity change from 0 to 764
[ 1249.785222][T13715] Driver unsupported XDP return value 0 on prog  (id 369) dev N/A, expect packet loss!
[ 1249.910830][T13719] macvtap0: refused to change device tx_queue_len
[ 1249.924619][T13717] loop3: detected capacity change from 0 to 4096
[ 1249.937546][T13717] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[ 1249.955677][T13717] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1250.075416][T13722] loop9: detected capacity change from 0 to 512
[ 1250.163604][T13722] EXT4-fs (loop9): revision level too high, forcing read-only mode
[ 1250.203074][T13722] EXT4-fs (loop9): orphan cleanup on readonly fs
[ 1250.228778][T13722] __quota_error: 74 callbacks suppressed
[ 1250.228797][T13722] Quota error (device loop9): dq_insert_tree: Quota tree root isn't allocated!
[ 1250.233602][ T5868] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1250.266278][T13722] Quota error (device loop9): qtree_write_dquot: Error -5 occurred while creating quota
[ 1250.327072][T13722] EXT4-fs error (device loop9): ext4_acquire_dquot:6943: comm syz.9.1624: Failed to acquire dquot type 1
[ 1250.413362][T13722] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.1624: bg 0: block 40: padding at end of block bitmap is not set
[ 1250.462344][T13722] EXT4-fs error (device loop9) in ext4_mb_clear_bb:6657: Corrupt filesystem
[ 1250.488855][T13722] EXT4-fs (loop9): 1 truncate cleaned up
[ 1250.511370][T13722] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1250.610680][T13722] EXT4-fs error (device loop9): ext4_get_link:106: inode #16: comm syz.9.1624: bad symlink.
[ 1250.722043][T12273] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1250.745071][T13737] mmap: syz.3.1630 (13737) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[ 1250.783939][T13739] loop8: detected capacity change from 0 to 1024
[ 1250.874354][T13739] EXT4-fs (loop8): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 1250.903333][T13743] loop0: detected capacity change from 0 to 512
[ 1250.947553][T13739] ext4 filesystem being mounted at /141/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1250.953293][T13743] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[ 1250.967498][T13747] macvtap0: refused to change device tx_queue_len
[ 1251.056165][T13743] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[ 1251.077320][T13739] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1251.086760][T13743] EXT4-fs error (device loop0): ext4_iget_extra_inode:5104: inode #15: comm syz.0.1633: corrupted in-inode xattr: e_value size too large
[ 1251.110031][T13739] EXT4-fs error (device loop8): ext4_free_blocks:6696: comm syz.8.1631: Freeing blocks not in datazone - block = 0, count = 16
[ 1251.145739][T13743] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.1633: couldn't read orphan inode 15 (err -117)
[ 1251.193706][T13743] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1251.207663][   T30] audit: type=1326 audit(1757467380.587:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13759 comm="syz.6.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcff58eba9 code=0x7ffc0000
[ 1251.293944][T12177] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[ 1251.302975][   T30] audit: type=1326 audit(1757467380.587:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13759 comm="syz.6.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcff58eba9 code=0x7ffc0000
[ 1251.350895][T12177] EXT4-fs (loop8): This should not happen!! Data will be lost
[ 1251.350895][T12177] 
[ 1251.381890][T12177] EXT4-fs (loop8): Total free blocks count 0
[ 1251.382491][   T30] audit: type=1326 audit(1757467380.637:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13759 comm="syz.6.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdcff58eba9 code=0x7ffc0000
[ 1251.421083][T12177] EXT4-fs (loop8): Free/Dirty block details
[ 1251.438666][T12177] EXT4-fs (loop8): free_blocks=4293918736
[ 1251.441998][   T30] audit: type=1326 audit(1757467380.637:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13759 comm="syz.6.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcff58eba9 code=0x7ffc0000
[ 1251.468764][   T30] audit: type=1326 audit(1757467380.637:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13759 comm="syz.6.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcff58eba9 code=0x7ffc0000
[ 1251.475080][ T5861] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1251.491115][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1251.491326][   T30] audit: type=1326 audit(1757467380.637:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13759 comm="syz.6.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdcff58eba9 code=0x7ffc0000
[ 1251.491374][   T30] audit: type=1326 audit(1757467380.637:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13759 comm="syz.6.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcff58eba9 code=0x7ffc0000
[ 1251.491419][   T30] audit: type=1326 audit(1757467380.647:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13759 comm="syz.6.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdcff58eba9 code=0x7ffc0000
[ 1251.532267][T12177] EXT4-fs (loop8): dirty_blocks=16
[ 1251.600834][T12177] EXT4-fs (loop8): Block reservation details
[ 1251.620711][T12177] EXT4-fs (loop8): i_reserved_data_blocks=1
[ 1251.631401][T10837] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 1251.911466][T13776] loop8: detected capacity change from 0 to 2048
[ 1251.971355][T13776] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1252.116243][T10837] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[ 1252.177843][T10837] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6657: Corrupt filesystem
[ 1252.236973][T13782] loop9: detected capacity change from 0 to 512
[ 1252.254566][T10837] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1252.284615][T13782] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[ 1252.361121][T13782] EXT4-fs (loop9): 1 truncate cleaned up
[ 1252.443425][T13782] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1252.467432][T13782] EXT4-fs error (device loop9): ext4_ext_precache:632: inode #15: comm syz.9.1647: pblk 0 bad header/extent: invalid magic - magic 7973, entries 27514, max 27745(0), depth 25964(25964)
[ 1252.697594][T12273] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1253.385976][T13824] netlink: 'syz.8.1658': attribute type 1 has an invalid length.
[ 1253.549694][T13826] netlink: 3 bytes leftover after parsing attributes in process `syz.8.1658'.
[ 1253.948541][T13824] bond1 (unregistering): Released all slaves
[ 1254.601006][T13849] loop6: detected capacity change from 0 to 1024
[ 1254.627630][T13849] EXT4-fs (loop6): stripe (3) is not aligned with cluster size (16), stripe is disabled
[ 1254.678419][T13849] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1254.735851][T13855] netlink: 24 bytes leftover after parsing attributes in process `syz.8.1670'.
[ 1254.749116][T13849] syz.6.1668 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[ 1254.877905][ T8445] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1255.589613][   T30] kauditd_printk_skb: 3 callbacks suppressed
[ 1255.589635][   T30] audit: type=1326 audit(1757467384.967:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13875 comm="syz.0.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c6f8eba9 code=0x7ffc0000
[ 1255.656094][T13874] loop6: detected capacity change from 0 to 4096
[ 1255.686362][T13874] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[ 1255.702973][   T30] audit: type=1326 audit(1757467384.967:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13875 comm="syz.0.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c6f8eba9 code=0x7ffc0000
[ 1255.757032][   T30] audit: type=1326 audit(1757467384.967:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13875 comm="syz.0.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5c6f8eba9 code=0x7ffc0000
[ 1255.794660][   T30] audit: type=1326 audit(1757467384.967:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13875 comm="syz.0.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c6f8eba9 code=0x7ffc0000
[ 1255.804151][T13874] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1255.818073][   T30] audit: type=1326 audit(1757467384.967:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13875 comm="syz.0.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c6f8eba9 code=0x7ffc0000
[ 1255.852807][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1255.860395][   T30] audit: type=1326 audit(1757467384.967:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13875 comm="syz.0.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5c6f8eba9 code=0x7ffc0000
[ 1255.883098][   T30] audit: type=1326 audit(1757467384.967:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13875 comm="syz.0.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c6f8eba9 code=0x7ffc0000
[ 1255.968698][T13882] loop0: detected capacity change from 0 to 512
[ 1255.992485][   T30] audit: type=1326 audit(1757467385.007:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13875 comm="syz.0.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7fd5c6f8eba9 code=0x7ffc0000
[ 1256.039178][ T8445] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1256.059883][   T30] audit: type=1326 audit(1757467385.007:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13875 comm="syz.0.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c6f8eba9 code=0x7ffc0000
[ 1256.087392][   T30] audit: type=1326 audit(1757467385.007:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13875 comm="syz.0.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fd5c6f8eba9 code=0x7ffc0000
[ 1256.152961][T13882] ------------[ cut here ]------------
[ 1256.159673][T13882] EA inode 11 i_nlink=2
[ 1256.203205][T13882] WARNING: fs/ext4/xattr.c:1053 at ext4_xattr_inode_update_ref+0x534/0x5d0, CPU#1: syz.0.1679/13882
[ 1256.218753][T13882] Modules linked in:
[ 1256.223314][T13882] CPU: 1 UID: 0 PID: 13882 Comm: syz.0.1679 Not tainted syzkaller #0 PREEMPT(full) 
[ 1256.233120][T13882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1256.243850][T13882] RIP: 0010:ext4_xattr_inode_update_ref+0x534/0x5d0
[ 1256.250539][T13882] Code: 00 00 00 00 00 fc ff df 41 0f b6 44 05 00 84 c0 0f 85 86 00 00 00 41 8b 14 24 48 c7 c7 20 dd bf 8b 4c 89 fe e8 9d 63 fc fe 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df e9 bb fd ff ff e8 e4 b7
[ 1256.271726][T13882] RSP: 0018:ffffc9000ca37160 EFLAGS: 00010246
[ 1256.279041][T13882] RAX: 697aadc675388200 RBX: dffffc0000000000 RCX: 0000000000080000
[ 1256.287208][T13882] RDX: ffffc9000c11a000 RSI: 0000000000007d47 RDI: 0000000000007d48
[ 1256.295468][T13882] RBP: ffffc9000ca37258 R08: ffff8880b8724253 R09: 1ffff110170e484a
[ 1256.303965][T13882] R10: dffffc0000000000 R11: ffffed10170e484b R12: ffff88807eba4f60
[ 1256.311980][T13882] R13: 1ffff1100fd749ec R14: 00000000ffffffff R15: 000000000000000b
[ 1256.320080][T13882] FS:  00007fd5c7ee16c0(0000) GS:ffff888125af1000(0000) knlGS:0000000000000000
[ 1256.329201][T13882] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1256.335994][T13882] CR2: 000055556a61e608 CR3: 0000000063ee6000 CR4: 00000000003526f0
[ 1256.344105][T13882] Call Trace:
[ 1256.347412][T13882]  <TASK>
[ 1256.350376][T13882]  ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[ 1256.356329][T13882]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[ 1256.362845][T13882]  ? ext4_xattr_inode_iget+0x3d2/0x5f0
[ 1256.369328][T13882]  ext4_xattr_set_entry+0xabb/0x1e20
[ 1256.375432][T13882]  ext4_xattr_ibody_set+0x254/0x6a0
[ 1256.380699][T13882]  ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[ 1256.386848][T13882]  __ext4_expand_extra_isize+0x30d/0x400
[ 1256.392625][T13882]  __ext4_mark_inode_dirty+0x46c/0x700
[ 1256.398147][T13882]  ext4_evict_inode+0x80d/0xee0
[ 1256.403249][T13882]  ? __pfx_ext4_evict_inode+0x10/0x10
[ 1256.408672][T13882]  ? do_raw_spin_unlock+0x122/0x240
[ 1256.414007][T13882]  ? __pfx_ext4_evict_inode+0x10/0x10
[ 1256.419464][T13882]  evict+0x501/0x9c0
[ 1256.423506][T13882]  ? __pfx_evict+0x10/0x10
[ 1256.427991][T13882]  ? do_raw_spin_unlock+0x122/0x240
[ 1256.433335][T13882]  ? _raw_spin_unlock+0x28/0x50
[ 1256.438246][T13882]  ? iput+0x6d8/0x9d0
[ 1256.442388][T13882]  ext4_orphan_cleanup+0xc20/0x1460
[ 1256.447640][T13882]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 1256.453416][T13882]  ? ext4_register_li_request+0x259/0x720
[ 1256.459265][T13882]  ? errseq_check_and_advance+0x66/0x120
[ 1256.465020][T13882]  ext4_fill_super+0x57df/0x6090
[ 1256.471104][T13882]  ? __pfx_ext4_fill_super+0x10/0x10
[ 1256.477215][T13882]  ? set_blocksize+0x21e/0x500
[ 1256.482079][T13882]  ? sb_set_blocksize+0x104/0x180
[ 1256.487283][T13882]  ? setup_bdev_super+0x4c1/0x5b0
[ 1256.492464][T13882]  get_tree_bdev_flags+0x40b/0x4d0
[ 1256.497652][T13882]  ? __pfx_ext4_fill_super+0x10/0x10
[ 1256.503201][T13882]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 1256.508913][T13882]  vfs_get_tree+0x8f/0x2b0
[ 1256.513498][T13882]  do_new_mount+0x302/0xa10
[ 1256.518055][T13882]  ? apparmor_capable+0x137/0x1b0
[ 1256.523369][T13882]  ? __pfx_do_new_mount+0x10/0x10
[ 1256.528441][T13882]  ? ns_capable+0x8a/0xf0
[ 1256.532906][T13882]  ? kmem_cache_free+0x19a/0x690
[ 1256.537906][T13882]  __se_sys_mount+0x313/0x410
[ 1256.542749][T13882]  ? __pfx___se_sys_mount+0x10/0x10
[ 1256.547996][T13882]  ? do_syscall_64+0xbe/0xfa0
[ 1256.552808][T13882]  ? __x64_sys_mount+0x20/0xc0
[ 1256.557641][T13882]  do_syscall_64+0xfa/0xfa0
[ 1256.562287][T13882]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1256.567542][T13882]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1256.574648][T13882]  ? clear_bhb_loop+0x60/0xb0
[ 1256.579410][T13882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1256.586097][T13882] RIP: 0033:0x7fd5c6f9034a
[ 1256.590565][T13882] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1256.610789][T13882] RSP: 002b:00007fd5c7ee0e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1256.619335][T13882] RAX: ffffffffffffffda RBX: 00007fd5c7ee0ef0 RCX: 00007fd5c6f9034a
[ 1256.627477][T13882] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fd5c7ee0eb0
[ 1256.635545][T13882] RBP: 0000200000000180 R08: 00007fd5c7ee0ef0 R09: 0000000000800700
[ 1256.643660][T13882] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 1256.651678][T13882] R13: 00007fd5c7ee0eb0 R14: 0000000000000473 R15: 0000200000000680
[ 1256.659915][T13882]  </TASK>
[ 1256.663065][T13882] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1256.670376][T13882] CPU: 1 UID: 0 PID: 13882 Comm: syz.0.1679 Not tainted syzkaller #0 PREEMPT(full) 
[ 1256.679751][T13882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1256.689908][T13882] Call Trace:
[ 1256.693219][T13882]  <TASK>
[ 1256.696163][T13882]  dump_stack_lvl+0x99/0x250
[ 1256.700855][T13882]  ? __asan_memcpy+0x40/0x70
[ 1256.705450][T13882]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1256.710675][T13882]  ? __pfx__printk+0x10/0x10
[ 1256.715277][T13882]  vpanic+0x237/0x6d0
[ 1256.719439][T13882]  ? __pfx_vpanic+0x10/0x10
[ 1256.724144][T13882]  ? is_bpf_text_address+0x292/0x2b0
[ 1256.729755][T13882]  ? is_bpf_text_address+0x26/0x2b0
[ 1256.735042][T13882]  panic+0xb9/0xc0
[ 1256.738877][T13882]  ? __pfx_panic+0x10/0x10
[ 1256.743325][T13882]  __warn+0x334/0x4c0
[ 1256.747445][T13882]  ? ext4_xattr_inode_update_ref+0x534/0x5d0
[ 1256.753626][T13882]  ? ext4_xattr_inode_update_ref+0x534/0x5d0
[ 1256.759649][T13882]  report_bug+0x2be/0x4f0
[ 1256.763989][T13882]  ? ext4_xattr_inode_update_ref+0x534/0x5d0
[ 1256.769995][T13882]  ? ext4_xattr_inode_update_ref+0x534/0x5d0
[ 1256.776036][T13882]  ? ext4_xattr_inode_update_ref+0x536/0x5d0
[ 1256.782068][T13882]  handle_bug+0x84/0x160
[ 1256.786415][T13882]  exc_invalid_op+0x1a/0x50
[ 1256.790923][T13882]  asm_exc_invalid_op+0x1a/0x20
[ 1256.795860][T13882] RIP: 0010:ext4_xattr_inode_update_ref+0x534/0x5d0
[ 1256.802458][T13882] Code: 00 00 00 00 00 fc ff df 41 0f b6 44 05 00 84 c0 0f 85 86 00 00 00 41 8b 14 24 48 c7 c7 20 dd bf 8b 4c 89 fe e8 9d 63 fc fe 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df e9 bb fd ff ff e8 e4 b7
[ 1256.822068][T13882] RSP: 0018:ffffc9000ca37160 EFLAGS: 00010246
[ 1256.828148][T13882] RAX: 697aadc675388200 RBX: dffffc0000000000 RCX: 0000000000080000
[ 1256.836223][T13882] RDX: ffffc9000c11a000 RSI: 0000000000007d47 RDI: 0000000000007d48
[ 1256.844199][T13882] RBP: ffffc9000ca37258 R08: ffff8880b8724253 R09: 1ffff110170e484a
[ 1256.852175][T13882] R10: dffffc0000000000 R11: ffffed10170e484b R12: ffff88807eba4f60
[ 1256.860235][T13882] R13: 1ffff1100fd749ec R14: 00000000ffffffff R15: 000000000000000b
[ 1256.868232][T13882]  ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[ 1256.874074][T13882]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[ 1256.880641][T13882]  ? ext4_xattr_inode_iget+0x3d2/0x5f0
[ 1256.886228][T13882]  ext4_xattr_set_entry+0xabb/0x1e20
[ 1256.891568][T13882]  ext4_xattr_ibody_set+0x254/0x6a0
[ 1256.896799][T13882]  ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[ 1256.902749][T13882]  __ext4_expand_extra_isize+0x30d/0x400
[ 1256.908401][T13882]  __ext4_mark_inode_dirty+0x46c/0x700
[ 1256.913878][T13882]  ext4_evict_inode+0x80d/0xee0
[ 1256.918746][T13882]  ? __pfx_ext4_evict_inode+0x10/0x10
[ 1256.924151][T13882]  ? do_raw_spin_unlock+0x122/0x240
[ 1256.929361][T13882]  ? __pfx_ext4_evict_inode+0x10/0x10
[ 1256.934741][T13882]  evict+0x501/0x9c0
[ 1256.938651][T13882]  ? __pfx_evict+0x10/0x10
[ 1256.943072][T13882]  ? do_raw_spin_unlock+0x122/0x240
[ 1256.948303][T13882]  ? _raw_spin_unlock+0x28/0x50
[ 1256.953203][T13882]  ? iput+0x6d8/0x9d0
[ 1256.957209][T13882]  ext4_orphan_cleanup+0xc20/0x1460
[ 1256.962481][T13882]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 1256.968122][T13882]  ? ext4_register_li_request+0x259/0x720
[ 1256.973846][T13882]  ? errseq_check_and_advance+0x66/0x120
[ 1256.979551][T13882]  ext4_fill_super+0x57df/0x6090
[ 1256.984554][T13882]  ? __pfx_ext4_fill_super+0x10/0x10
[ 1256.989965][T13882]  ? set_blocksize+0x21e/0x500
[ 1256.994753][T13882]  ? sb_set_blocksize+0x104/0x180
[ 1256.999814][T13882]  ? setup_bdev_super+0x4c1/0x5b0
[ 1257.004881][T13882]  get_tree_bdev_flags+0x40b/0x4d0
[ 1257.010108][T13882]  ? __pfx_ext4_fill_super+0x10/0x10
[ 1257.015451][T13882]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 1257.021150][T13882]  vfs_get_tree+0x8f/0x2b0
[ 1257.025793][T13882]  do_new_mount+0x302/0xa10
[ 1257.030357][T13882]  ? apparmor_capable+0x137/0x1b0
[ 1257.035514][T13882]  ? __pfx_do_new_mount+0x10/0x10
[ 1257.040663][T13882]  ? ns_capable+0x8a/0xf0
[ 1257.045029][T13882]  ? kmem_cache_free+0x19a/0x690
[ 1257.050104][T13882]  __se_sys_mount+0x313/0x410
[ 1257.054902][T13882]  ? __pfx___se_sys_mount+0x10/0x10
[ 1257.060242][T13882]  ? do_syscall_64+0xbe/0xfa0
[ 1257.064953][T13882]  ? __x64_sys_mount+0x20/0xc0
[ 1257.069840][T13882]  do_syscall_64+0xfa/0xfa0
[ 1257.074362][T13882]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1257.079573][T13882]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1257.085649][T13882]  ? clear_bhb_loop+0x60/0xb0
[ 1257.090422][T13882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1257.096490][T13882] RIP: 0033:0x7fd5c6f9034a
[ 1257.100910][T13882] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1257.120519][T13882] RSP: 002b:00007fd5c7ee0e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1257.129051][T13882] RAX: ffffffffffffffda RBX: 00007fd5c7ee0ef0 RCX: 00007fd5c6f9034a
[ 1257.137033][T13882] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fd5c7ee0eb0
[ 1257.145093][T13882] RBP: 0000200000000180 R08: 00007fd5c7ee0ef0 R09: 0000000000800700
[ 1257.153082][T13882] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[ 1257.161071][T13882] R13: 00007fd5c7ee0eb0 R14: 0000000000000473 R15: 0000200000000680
[ 1257.169325][T13882]  </TASK>
[ 1257.172689][T13882] Kernel Offset: disabled
[ 1257.177012][T13882] Rebooting in 86400 seconds..