last executing test programs:

1m27.409275846s ago: executing program 0 (id=1):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f00000010c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x50, 0x50, 0x5, [@enum={0x3, 0x1, 0x0, 0xf, 0x4000000, [{0x7}]}, @union={0xa, 0x4, 0x0, 0x5, 0x1, 0xdc2e, [{0x9, 0x4, 0xfff}, {0x2, 0x0, 0xc}, {0x0, 0x0, 0xfffffff0}, {0xd, 0x4, 0xffffffff}]}]}, {0x0, [0x0, 0x0, 0x2e]}}, 0x0, 0x6d, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000009180), r1)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000000c0)=ANY=[@ANYBLOB="98030000", @ANYRES16=r2, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r3, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c0900005603330080b0c000ffffffffffff080211000001"], 0x398}}, 0x0)

1m27.20556842s ago: executing program 0 (id=9):
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000000)=0x10000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000100)={@local})
close_range(r0, 0xffffffffffffffff, 0x0)

1m27.061205954s ago: executing program 0 (id=10):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
fcntl$lock(r0, 0x6, &(0x7f0000002000)={0x1, 0x0, 0x200, 0x2})
fcntl$lock(r0, 0x26, &(0x7f00000031c0)={0x1, 0x0, 0x0, 0x5})
fcntl$lock(r0, 0x26, &(0x7f0000000080)={0x0, 0x0, 0x10})
unshare(0x2a020480)
pipe2$9p(0x0, 0x0)
fcntl$lock(r0, 0x7, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x3})

1m25.926931894s ago: executing program 0 (id=16):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f00000002c0)='./file1\x00', &(0x7f0000000280)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f00000000c0)='./file1\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000280)='./file1\x00', 0x1000040, &(0x7f0000000240)=ANY=[], 0x81, 0x1237, &(0x7f00000006c0)="$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")
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0x80049370, 0x0)

1m24.587889008s ago: executing program 0 (id=20):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000680)={@val={0x0, 0x800}, @val={0x1, 0x0, 0x0, 0x0, 0x3d}, @mpls={[], @ipv4=@tcp={{0x5, 0x4, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x7, 0x84, 0x0, @empty=0x3fffffff, @local}, {{0xc3, 0x0, 0x41424344, 0x41424344, 0x0, 0x2, 0x8, 0x0, 0x4, 0x0, 0x1c, {[@timestamp={0x5, 0xa, 0xfffffffd}]}}, {"a706faed3cf692307e75e5"}}}}}, 0x4d)

1m13.941677617s ago: executing program 1 (id=70):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r0, 0x0, 0x0}, 0x10)

1m13.722821328s ago: executing program 1 (id=71):
fanotify_init(0x6, 0x101000)
openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000000), 0x8002, 0x0)
madvise(&(0x7f0000275000/0x2000)=nil, 0xffffffffdfd8afff, 0x15)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000040)={0xffffffffffffffff, &(0x7f0000000100)='H', 0x0}, 0x20)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r0, &(0x7f0000000100), 0x6)

1m13.436394319s ago: executing program 1 (id=73):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000240)=0x7, 0x4)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in6={{0xa, 0x4e21, 0x1f0268bc, @empty, 0x6}}, 0x0, 0x0, 0x3fc, 0x1, 0x32, 0xb}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x800, 0x0, 0x4, 0x8a}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x4e23, 0x0, @loopback}}, 0x100, 0x300, 0x0, 0x0, 0x54}, 0x9c)

1m12.285808459s ago: executing program 1 (id=81):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x845, &(0x7f0000000600)=ANY=[@ANYBLOB='utf8=0,shortname=winnt,shortname=lower,shortname=winnt,\x00\x00\x00\x00\x00\x00\x00\x00e=1,utf8=1,dmask=00000000000000000000003,shortname=mixed,shortname=winnt,shortname=winnt,nonumtail=0,uni_xlate=1,nonumtail=0,\x00'], 0x0, 0x277, &(0x7f0000002c80)="$eJzs3EGLG3UUAPBntu1ut7TZgwgK4h+96CW06ycI0oK4oKyNqAdh6mY1ZEyWTFyJiO3Nq5+jePQmqF9gL968i5dFELz0IEY2ybjZNdBWNmY1vx+EeZk3L/OfyUx4M5A5fPvLj9q7RW0360dlLUUl4l48iNg4iiaemEwro/hSTLsXL1357cdn33zn3dfqW1s3t1O6Vb/98mZK6dpz337y2VfPf9+/8tbX175ZjYON9w5/3fzp4KmDpw//uF1+erefsnSn2+1nd/Jm2mkV7VpKb+TNrGimVqdo9k7kd/Pu3t4gZZ2dq+t7vWZRpKwzSO3mIPW7qd8bpOyDrNVJtVotXV2PZbPy2BWN+9vbWX0ug2ERLs+a2evVs5WZycb9f2NQAMD5sqj+/8NWkVpF6jys/6+E/n9+9P/L4Kj/X5+cvyfp/wEAAAAAAAAAAAAA4L/gwXBYHQ6H1XJavlYjYi0iyveLHifz4ftfblN/3FuLyL/Yb+w3xtNxvr4brcijGdcvRvw+Oh4mxvGtV7duXk8jG/FdfndSf3e/sRKrZX1pY3b9jXF9Oll/Mdan178Z1Xhydv3mzPpL8eILU/W1qMYP70c38tgZHdfH9Z/fSOmV17dO1V8eLQcAAAD/B7X0l79dv4/ytVQ+NuRUfjzz+P5AVB9yf+DU9fWFeObC4rYbAAAAlkkx+LSd5XmzJ3i8wK6be1CJiJmpo8R81/5LRJyPnXCmwc8fj8/6R1l40b9MAADAWTtu+hc9EgAAAAAAAAAAAAAAAAAAAFhej/rwsHL5f/LssanVrSxmKwEAAAAAAAAAAAAAAAAAAAAAAOB8+DMAAP//epEffA==")
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00')
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333404, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11080, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
read$FUSE(r0, &(0x7f0000000c40)={0x2020}, 0x2020)

1m11.831150572s ago: executing program 1 (id=86):
r0 = syz_io_uring_setup(0x147e, &(0x7f0000000080)={0x0, 0x1010b6, 0x80, 0x400002, 0x403ae}, &(0x7f00000003c0)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000240)=0xfffffc04, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_MKDIRAT={0x25, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000280)='./file0\x00', 0x84, 0x0, 0x1})
io_uring_enter(r0, 0x1ae0, 0x4, 0x48, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

1m11.377760992s ago: executing program 1 (id=89):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = fanotify_init(0xf00, 0x0)
fanotify_mark(r1, 0x105, 0x5000003a, r0, 0x0)
creat(&(0x7f0000000200)='./file5\x00', 0x10)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000a40)='./file5\x00', 0x2)
rename(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='./file5\x00')

1m10.763586895s ago: executing program 32 (id=89):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = fanotify_init(0xf00, 0x0)
fanotify_mark(r1, 0x105, 0x5000003a, r0, 0x0)
creat(&(0x7f0000000200)='./file5\x00', 0x10)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000a40)='./file5\x00', 0x2)
rename(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='./file5\x00')

1m9.323090349s ago: executing program 33 (id=20):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000680)={@val={0x0, 0x800}, @val={0x1, 0x0, 0x0, 0x0, 0x3d}, @mpls={[], @ipv4=@tcp={{0x5, 0x4, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x7, 0x84, 0x0, @empty=0x3fffffff, @local}, {{0xc3, 0x0, 0x41424344, 0x41424344, 0x0, 0x2, 0x8, 0x0, 0x4, 0x0, 0x1c, {[@timestamp={0x5, 0xa, 0xfffffffd}]}}, {"a706faed3cf692307e75e5"}}}}}, 0x4d)

34.201672425s ago: executing program 3 (id=281):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1}, 0x18)
connect$can_j1939(r0, &(0x7f0000000140)={0x1d, r1}, 0x18)
sendmmsg(r0, &(0x7f0000004580)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000001c0)="b875a1431a05b9319c", 0x9}], 0x1}}], 0x1, 0x0)
recvmmsg(r0, &(0x7f0000000180)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000200)=""/189}, {&(0x7f00000002c0)=""/182}, {&(0x7f0000000380)=""/4096}, {&(0x7f0000001380)=""/198}, {&(0x7f0000001480)=""/169}, {&(0x7f0000001540)=""/4096}], 0x10, &(0x7f0000002540)=""/216}}], 0x2, 0x0, 0x0)

33.788074438s ago: executing program 3 (id=283):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
sendto$inet6(r0, 0x0, 0x0, 0x4c881, &(0x7f0000000540)={0xa, 0x4e24, 0x0, @mcast2}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000005440)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)='+', 0x1}], 0x1}}], 0x1, 0x400c404)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x1, &(0x7f0000000040)=[{0x6}]})
fanotify_init(0x0, 0x0)
sendmmsg$inet6(r0, &(0x7f0000003640)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000280)="af", 0x1}], 0x1}}], 0x1, 0x800)

31.549624536s ago: executing program 3 (id=288):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000380), 0x101040)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000003c0)={0x9c9, 0x0, 0x0, 'queue1\x00', 0x200000})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r2, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x3}})
close_range(r0, 0xffffffffffffffff, 0x0)

30.934964421s ago: executing program 3 (id=290):
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000500)='./file2\x00', 0x0, &(0x7f00000002c0)=ANY=[], 0x81, 0x4ac, &(0x7f00000011c0)="$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")
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$eJzs3MtrXFUYAPDv3jyaNrGTiqgtggGpFcVp2hSFrlrXooIuuuyYTErI9GEmggldpHWvLkRcFKR/guDeunAluKgLrX9BEYsU3bQuInce6dBkktjO9PTx+8GZe86c6XzfN5fOPQfmJoAn1kTxkEfsjYiTWUSp9XweEcON3kjESvN1t2+eny5aFqur7/+VRRYRt26en26/V9Y6jrYGIxFx9a0snv50fdz60vJ8pVarLrTGBxdPnztYX1p+fe505VT1VPXMkak3j0y9MTXVw1qvn/vw6xd+eefli5c/m3z3q90/ZXEsxlpznXX0ykRMrH0mnQYjotLrYIkMtOrprDMbTJgQAACbyjvWcM9GKQbizuKtFD/+mjQ5AAAAoCdWByJWAQAAgMdcZv8PAAAAj7n27wBu3Tw/3W5pf5HwYN04HhHjzfrb9zc3ZwZjpXEciaGI2PV3Fp23tWbNf3bfJopI3/1cLVr06T7kzaxciIjnNzr/WaP+8cZd3OvrzyNisgfxJ+4aP0r1H+tB/NT1A/BkunK8eSFbf/3L19Y/scH1b3CDa9e9SH39a6//bq9b/92pf6DL+u+9bcbY9++rV7vNda7/Tnz++0wRvzjeV1H/w40LEfsGN6o/W6s/61L/yW3GGJ2+fqnbXFF/UW+7Pej6Vy9H7I+N62/LNvv7RAdn52rVyeZjlxj7fzhxoFv8zvNftCJ+ey/wIBTnf1eX+rc6/+e2GWP8uT/3dpvbuv78j+Hsg0ZvuPXMJ5XFxYVDEcPZ2+ufP7x5Lu3XtN+jqP+Vlzb//79R/cV3wkrrcyj2Ahdax2J88a6Yo/sPf3vv9fdXUf/MPZ7/L7YZ45vvL33UbS51/QAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8GvKIGIssL6/187xcjhiNiGdiV147W198bfbsx2dmirmI8RjKZ+dq1cmIKDXHWTE+1OjfGR++azwVEXsi4svSzsa4PH22NpO6eAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANaMRsRYZHk5IvKI+KeU5+Vy6qwAAACAnhtPnQAAAADQd/b/AAAA8Piz/wcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKDP9rx45VoWEStHdzZaYbg1N5Q0M6Df8tQJAMkMpE4ASGYwdQJAMvb4QLbF/EjXmR09zwUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAh9eBvVeuZRGxcnRnoxWGW3NDSTMD+i1PnQCQzEDqBIBkBlMnACRjjw9kW8yPdJ3Z0fNcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHh4jTValpcjIm/087xcjngqIsZjKJudq1UnI2J3RPxWGtpRjA+lThoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICeqy8tz1dqteqCjo6Ozlon9TcTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAp1JeW5yu1WnWhnjoTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAILX60vJ8pVarLvSxk7pGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADS+S8AAP//szUGGQ==")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000040)='./file0\x00')
chdir(&(0x7f00000001c0)='./file0\x00')
open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x34)

29.888611629s ago: executing program 3 (id=297):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]})
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000300), 0x802, 0x0)
ioctl$UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000280)={{0x1009, 0xfffd, 0x0, 0xffff}, 'syz0\x00', 0x26})
ioctl$UI_DEV_CREATE(r1, 0x5501)
syz_open_dev$evdev(&(0x7f0000000340), 0xaa54, 0x0)
ioctl$UI_DEV_DESTROY(r1, 0x5502)
close_range(r0, 0xffffffffffffffff, 0x0)

28.835869673s ago: executing program 3 (id=304):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x1, 0x0, 0xffffffffffffffff, 0xf5010000, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x6d)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000d80)={&(0x7f0000000d40)='mmap_lock_acquire_returned\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

27.973120676s ago: executing program 34 (id=304):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000950000000000000009000000dfa2bff372df8cdbeb318ab2bec8fc36903c0ec359caa1af3c914019395cc154010c693709800000000000000016a85adef34bf78c76e6222337923e1bea6ef682cc4375f594425d408ccc58187feb0e3d43347f989007a7c63f6dae2acb4af936461f34a8a32a50bbbb69ec85168947b86df9f2609bf93f7a1be259621818c3c75da31290bce645451b851111dd98ac4d8da9317c2c082020e0b2d634086785f3fe41a3053645cc413790faf7e229c782845b5bb774f7f154263178151ea93ff2cac4b181332c9c9a1c7d85616c8100000000000000d8300d19d585000000fc005774b56a7142047326f940e95b8489e1c5650f5c61299a295f39c88456391cffdef93e29f10f4a11f0cfbfc0ff976b20fef6033495b9b94777db9bb9b678ffc1130000009faa798226a080c01e47151268a02dc1a557cfdcf76305fbf6643df66b1b4d2d5e7bf698fc5a18d984ecb91e6683a5f522d536e2f3c43b89823659d1945258fc668950e5aacfffffffffffffff7f7a266c90e64efc8d8f730867202a9ee94e6a00"], &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x1, 0x0, 0xffffffffffffffff, 0xf5010000, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x6d)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000d80)={&(0x7f0000000d40)='mmap_lock_acquire_returned\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

26.983242283s ago: executing program 5 (id=312):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
r0 = open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0xdc)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r0, 0x1000)
fallocate(r0, 0x0, 0x0, 0x8800000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x14a)
fallocate(r1, 0x20, 0x0, 0x8000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))

26.725072603s ago: executing program 2 (id=314):
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000005140)='./bus\x00', 0x0, &(0x7f0000005180), 0x11, 0x5109, &(0x7f000000f400)="$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")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r1 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r1, 0x0, 0x2001, 0x1000f8)
open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
open(&(0x7f00000001c0)='./bus\x00', 0x101000, 0x0)
fallocate(r0, 0x0, 0x0, 0x1001f0)

25.919862438s ago: executing program 5 (id=319):
r0 = syz_open_dev$admmidi(&(0x7f0000000140), 0x20, 0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x80383, 0x0)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r2, 0x2def, 0x0, 0x0, 0x0, 0x0)
ioctl$SNDCTL_SEQ_PANIC(r1, 0x5100)
read$midi(r0, &(0x7f00000002c0)=""/2, 0x2)

25.423647579s ago: executing program 5 (id=322):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b000000080000000c0000000400000001"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000039c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffffe8, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r2, 0x18000000000002a0, 0x38, 0x0, &(0x7f0000000140)="b9ff0300600d698cff9e14f086dd", 0x0, 0x63, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x48)

25.043744627s ago: executing program 5 (id=324):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x3d, &(0x7f0000000000)='cgroup\x00\x8d\f\xf3\xcd\xc6X$\x01n-Hg\x144-.\xe2\x053\xe2\xf4\xbf[\xe9\xdddU\x91\x9d,\t\x8d\xc3@\x86,\x7f\xe2Z\xe8L\x80\xdbe~c\xbc\x9b\xcf\x9b\x1cH\x95\xf3'}, 0x30)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)=ANY=[@ANYRES32=r1, @ANYRES32=r2, @ANYBLOB="0200000002"], 0x10)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000240)={@cgroup=r3, r0, 0x2, 0x0, 0x4000, @void, @value}, 0x10)

24.776164752s ago: executing program 5 (id=325):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000200), 0x3, 0x570, &(0x7f0000000680)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0x100, 0x0)
chdir(&(0x7f0000000000)='./file0\x00')
creat(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x182)
socket$nl_generic(0x10, 0x3, 0x10)
getdents64(r0, 0x0, 0x44)

24.079035958s ago: executing program 2 (id=329):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x20241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0x10}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000006080)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd27, 0x8000, {0x0, 0x0, 0x0, r3, {0x0, 0xfff3}, {}, {0xa}}, [@filter_kind_options=@f_bpf={{0x8}, {0x18, 0x2, [@TCA_BPF_FD={0x8}, @TCA_BPF_FLAGS={0x8, 0x8, 0x1}, @TCA_BPF_ACT={0x4}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)

23.875984202s ago: executing program 5 (id=330):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000000300))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000000080)=0x200000000)
r2 = dup2(r1, r1)
preadv2(r2, &(0x7f0000000880)=[{&(0x7f0000000100)=""/199, 0xc7}], 0x1, 0x7, 0x3, 0x1)

22.676472497s ago: executing program 2 (id=334):
syz_mount_image$exfat(&(0x7f0000000100), &(0x7f0000000180)='./bus\x00', 0x8000, &(0x7f0000000400)=ANY=[@ANYRES64=0x0], 0x1, 0x1505, &(0x7f0000002a80)="$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")
r0 = open(&(0x7f0000007f80)='./bus\x00', 0x145142, 0x0)
ftruncate(r0, 0x6106)
r1 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r2=>0x0)
io_submit(r2, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030003, 0x0, 0x1, 0x0, r1, &(0x7f0000000000), 0x4000000}])
creat(&(0x7f0000000300)='./bus\x00', 0x0)

21.525795147s ago: executing program 2 (id=338):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000300)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x1001402, 0x0)
umount2(&(0x7f0000000000)='./file0\x00', 0x0)

21.097453187s ago: executing program 2 (id=340):
syz_mount_image$hfs(&(0x7f00000001c0), &(0x7f0000000000)='./file2\x00', 0x40, &(0x7f0000000280)=ANY=[], 0x11, 0x2ff, &(0x7f0000000680)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x101442, 0x0)
pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x1c7b43, 0x109)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_all\x00', 0x275a, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)

20.408054731s ago: executing program 2 (id=343):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x1c, r3, 0x9c3fa077fa966179, 0x4, 0x0, {{0x7e}, {@void, @void}}}, 0x1c}}, 0x0)

19.633063765s ago: executing program 35 (id=343):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x1c, r3, 0x9c3fa077fa966179, 0x4, 0x0, {{0x7e}, {@void, @void}}}, 0x1c}}, 0x0)

8.599194599s ago: executing program 6 (id=397):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x8041, 0x0)
write$dsp(r0, &(0x7f00000001c0)='\\', 0x1)
r1 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000140))
syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0xa2c65)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x7, 0x3, 0x6, 0xfffa}, 0x1d, [0x8000, 0x8000, 0xf, 0x9, 0x80, 0x2, 0x3, 0x7f, 0x6, 0x4b, 0x39cc191a, 0x5f, 0x9, 0x5, 0xffff2d37, 0x0, 0x6, 0x3, 0x4000, 0x5, 0x4, 0x3, 0x4, 0x6, 0x1, 0x6, 0x9, 0x3, 0x15bb, 0x2, 0xe661, 0x4, 0x7, 0x3, 0x7fff, 0x4c74, 0x80000000, 0xa72, 0x3, 0x7, 0x0, 0x71, 0x7, 0x1, 0x1, 0x5, 0xd091, 0x3e, 0x7, 0x6, 0x6, 0x0, 0x5, 0x4, 0x8, 0x0, 0x80, 0x0, 0x5, 0x9, 0x8, 0x7, 0x1, 0x40], [0x10000007, 0x3, 0x800, 0x8000, 0x10, 0xfffffff3, 0x129432e6, 0x200c7, 0xf9, 0xd, 0x2bf, 0x6c9, 0x10000007, 0xfffffffc, 0x3, 0x0, 0xd14, 0x5, 0x2f, 0xe, 0x4312, 0x0, 0xea4, 0x0, 0x4, 0x4, 0x8000, 0x9, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x5, 0x5f31, 0x7f5, 0x0, 0x2, 0x80, 0x9, 0x4, 0x9, 0x8, 0x800000d, 0x6, 0x7, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x7b, 0x9, 0x3, 0x3, 0x9, 0x1, 0x7, 0xffffffff, 0x9, 0x48c93690, 0x42, 0x2], [0x7, 0xf5fd, 0x0, 0x5, 0xfffffffa, 0x100, 0x8d2, 0x9, 0x800003, 0x7fff, 0x6c8712a, 0x5, 0xad, 0x4, 0x5, 0x20000005, 0x800, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x9, 0x3e7, 0x9, 0x5, 0x2, 0x2, 0x3, 0x8, 0x8, 0x6cfc, 0x5, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x7, 0x1000, 0xa2, 0x7, 0x5, 0x5, 0x6, 0xac8, 0xbf, 0x2, 0x11, 0x7ff, 0xfffffff9, 0x0, 0x1, 0xffff, 0x0, 0x6, 0xc4, 0x120000, 0xbe, 0x9, 0xa2ed, 0x2, 0x25], [0x9, 0xbb31, 0x7, 0xb, 0x5, 0x938, 0xa, 0x80000006, 0xffffffff, 0x5, 0x7d, 0x1fc, 0x6, 0x6, 0x8, 0x57b, 0x101, 0x10000, 0x6, 0x7fff, 0xfffd, 0x4, 0x20002, 0x5, 0x1, 0x2, 0x14c, 0x60a6, 0x6, 0x6, 0xffffffff, 0x80000000, 0x5, 0x8, 0xca, 0xee1, 0xfffff000, 0xffff, 0x10000003, 0x7e, 0x100, 0x9600, 0xa, 0x2, 0x4, 0x40000006, 0x1, 0x10080, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xc, 0x7, 0xfffffffe, 0x6, 0x0, 0x4, 0x5, 0xb1e, 0x1, 0x200, 0xffff3441, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

7.798750927s ago: executing program 6 (id=398):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(fcrypt)\x00'}, 0x58)
accept(r0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x497, &(0x7f00000000c0)={0x0, 0x84d4, 0x400, 0x0, 0x288}, &(0x7f0000000340)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0)

5.26657296s ago: executing program 6 (id=402):
syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x0, 0x1}, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0xfffd, 0x0, @mcast1, 0x9}, 0x1c)
r1 = socket$igmp6(0xa, 0x3, 0x2)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xb, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4001)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x9506, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0x5dc}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

5.050146008s ago: executing program 6 (id=403):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x20081e, &(0x7f00000020c0), 0x1, 0x4fb, &(0x7f0000000500)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x810408, 0x0, 0x0, 0x0, &(0x7f00000007c0))
chdir(&(0x7f00000003c0)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x66960000)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x0, 0x80)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

4.638416291s ago: executing program 6 (id=405):
r0 = syz_usb_connect(0x2, 0x4a, &(0x7f0000000040)=ANY=[@ANYBLOB="120100005520f010402038b1420104000001090238000100000000090400000544fb2f00090582eb1000000001020009050276"], 0x0)
syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000180)={0x14, 0x0, &(0x7f0000000000)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0xc38, &(0x7f00000000c0)=ANY=[])
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0x0)
ioctl$EVIOCSKEYCODE(r1, 0x40084504, &(0x7f0000000100)=[0xb, 0x2ff])

2.928182194s ago: executing program 4 (id=407):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa10000000000000701"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x7b}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x1, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x22, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000500)='workqueue_queue_work\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xe, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

2.625310951s ago: executing program 4 (id=408):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = syz_io_uring_setup(0x110, &(0x7f00000000c0)={0x0, 0x10, 0x0, 0x3, 0x80}, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000300)=[0xffffffffffffffff], 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000540)=[r0, 0xffffffffffffffff], 0x2})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r1, 0x47f6, 0x0, 0x0, 0x0, 0x0)

2.297628104s ago: executing program 7 (id=410):
r0 = socket(0x200000000000011, 0x2, 0xd)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'syz_tun\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000000)={0x11, 0x800, r1}, 0x14)
r2 = socket(0x200000000000011, 0x2, 0xd)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'syz_tun\x00', <r3=>0x0})
bind$packet(r2, &(0x7f0000000080)={0x11, 0x800, r3, 0x1, 0x0, 0x6, @multicast}, 0x14)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@random="8580f83288e1", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1c}, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x1, 0x5, 0x1c, 0x67, 0x0, 0x0, 0x2, 0x0, @private=0xa010102, @multicast1}, {0x11, 0x81, 0x0, @multicast1}}}}}, 0x0)

2.13755538s ago: executing program 4 (id=412):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
process_vm_writev(r0, &(0x7f0000001c80)=[{&(0x7f0000001bc0)=""/156, 0x9c}], 0x1, &(0x7f0000001d80)=[{&(0x7f0000001cc0)=""/116, 0x20001c34}], 0x1, 0x0)

2.04635902s ago: executing program 7 (id=413):
r0 = socket$inet6(0xa, 0x80002, 0x0)
r1 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r2 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000180)=@raw={'raw\x00', 0x8, 0x3, 0x4a8, 0x0, 0xffffffff, 0xffffffff, 0x150, 0xffffffff, 0x3d8, 0xffffffff, 0xffffffff, 0x3d8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0x128, 0x150, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x508)
sendto$inet6(r0, 0x0, 0x0, 0x24088800, &(0x7f0000000280)={0xa, 0xe20, 0x40, @empty}, 0x1c)
sendto$inet6(r0, 0x0, 0x156, 0x4010, 0x0, 0x0)

1.563867413s ago: executing program 7 (id=414):
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x20008d, &(0x7f00000001c0)=ANY=[], 0x0, 0x286, &(0x7f0000000680)="$eJzs3LFrE2EYx/GfSdu0KW0yiKAgPuiiy9HG1SVIC2JAqY2og3C1Fw05k5KLlYjYbq7+HcXRTVD/gS5u7uJSBMGlgxhpkrNpDIRK20ub7wfCPbn3nrzvXe7Ccwd5t+69eVoqBE7BrSk2bopJ69qW0jtR26n2MtaMx9RpXVcmf345f+f+g5vZXG5uwWw+u3g1Y2bTFz48f/n24qfa5N130+8T2kw/3PqR+bp5ZvPs1u/F8NMrNXNtqVKpuUu+Z8vFoOSY3fY9N/CsWA686p72gl9ZWambW16eSq5UvSAwt1y3kle3WsVq1bq5j91i2RzHsamkhk183xn5jYUFN3sog0EUJnqtrFazbrxnY37jKAYFAAAGS1T1/5NiYMXAyv3q/5j61P/XRiTq//9E/T8Mdur/ZPv63Yv6HwAAAAAAAAAAAAAAAAAAAACA42C70Ug1Go1UuAxfCUnjksL3UY8Th4Pvf7h1/HFvXPJfr+ZX861lqz1bUFG+PM2MSr+a50NbK56/kZubsaa0Pvpr7fy11XxciTA/lO6dP9vKt735o0p29p9RSqd752d65o/p8qWOfEcpfX6kinwtN8/r3fxXs2bXb+W68iea2wEAAAAAcBI49tc/9+/NdsfCaUO62lsrd58PKNXn+UDX/fWIzo1Et98AAAAAAAyToP6i5Pq+Vz32QSMuHWGnJ+nQDWgQkxRR798lDcZBONDg27PWVd9/44Qf9S8TAAAAgIO2W/RHPRIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIZX9+xf8fb67vnAwu33P/dYurO7+JHvIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADBA/gQAAP//Ycca3A==")
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x800)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x20000, 0x0)
open_tree(r0, &(0x7f0000000640)='\x00', 0x89901)

1.359979951s ago: executing program 6 (id=415):
syz_mount_image$jfs(&(0x7f00000000c0), &(0x7f00000002c0)='./file1\x00', 0x1c802, &(0x7f0000000300)=ANY=[], 0x51, 0x5fbc, &(0x7f0000003100)="$eJzs3cuOHFcZB/CvL9NzCXGsCEXGYuE4EBJCfLch3OKwYAFIICGvsTWZRAYHkG0QiSw8kReIBZdHgE02LPIi4RUQD4Alm1UkCIVq+hy7ptzjHseeru45v580rvr6dE1/5f/UdPdUVVcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPG97/74ZC8iLv463XAw4jMxiOhHrNb1kahnzuf7DyPiUGwNx3MRMViOqJff+ueZiDMR8dGBiDt3b6zXN5/aZR9nT1y/+sn3v/OP3/3p1qGfvvmTD9rjP/rs6Q9/fzPi4A9f+/CTm09m3QEAAKAUVVVVvfQ2/3B6f9/vuikAYCby83+V5NvVarVa/UTrP/bnq5/d1ysxX/2oH6tuqia72SwiYrO5TP2awe54AFgwm/Fx1y3QIfkXbRgRT3XdBDDXel03wJ64c/fGei/l22s+HxwZj+e/U27Lf7N37/yOnabTtI8xmdXP160YxLM79LM6ox7mSc6/387/4nh8lO631/nPyk75j8anPhUn5z9o59+yLf8/R8TC5t+fmH+pcv7DR8l/c7DA27/8AQAAAADY//Lf/w92vP93+fFXZVcetv/3yIx6AAAAAAAAAIAn7XGv/3eP6/8BAADA3Krfq9f+cuD+bc1j/dvzF3oRT7fuDxQmnSyz1nUfAAAAAAAAAAAAAFCS4fgY3gu9iKWIeHptraqq+qupXT+qx11+0ZW+/lCyrn/JAwDA2EcHWufy9yJWIuJC+qy/pbW1tapaWV2r1qrV5fx6drS8Uq023tfmaX3b8mgXL4iHo6r+ZiuN5ZqmvV+eNt7+fvVjjarBLhqbjQ4DB4CIGD8b3fGMtM9U1TPR9ascFoPtf/+x/bMbXf+cAgAAAHuvqqqqlz7O+3Da59/vuikAYBZW8vN/e7+AWq1Wq9Xq/Vc3VZPdbBYRsdlcpn7N4HL8ALBgNuPjrlugQ/Iv2jAiDnXdBDDXel03wJ64c/fGei/l22s+H6Tru+djQbblv9nbWi4vP2k6TfsYk1n9fN2KQTy7Qz/PzaiHeZLz77fzvzgeH6X77XX+s7JT/vV6Huygn67l/Aft/Fv2T/79ifmXKuc/fKT8B/IHAAAAAIA5lv/+f9D+37zKAAAAAAAAALBw7ty9sZ7Pe837/z8/4X695pzzP/eNnH9v1/k7/3c/yfn32/m3DsgZNOZvv3E//3/fvbH+wfV/fS5P5z7/pcGofuylXn8wTMf8VEtvxeW4Ehtx4oH7D7eNn3xgfGnb+Kkp46cfGB/V46t5/Fisxy/iSrx5b3x5yoFRK1PGqynjOf+B7b9IOf9h46vOfy2N91rT2u33+w9s983ppMc5/7f/vvjg1jV7t2Jwb92a6vU72kE/W/8nT43iV9c2rh77zaXr16+ejDTZduupSJMnLOe/lL5y/i+9MB7Pv/eb2+vt90ePnP+8uBXDHfN/oTFfr+/LM+6tCzn/UfrK+ednoMnb/yLnv/P2/0oH/QAAAAAAAAAAAAAAAMDDVFW1dYro+Yg4l87/6ercTABgpv7wgzRTJaEe172Yr37UarVarX4CdVM12evNIla2L3MuIn476ZsBAPPsfxHxz66boDPyL1j+vL96+oWumwFm6tq77/3s0pUrG1evdd0JAAAAAAAAAPBp5et/Hmlc/3nrOKDWdaO3Xf/1jTiysNf/7I8GW9c6Tyv0fDz8+t9H4+HX/x5OebylKeOjKePLU8ZXpoxPPNGjIef/fMo45384rVhJ1399qYN+upbzP5qu9Zzz/1Lrfs38q78ucv79bfkfv/7OL49fe/e9Vy+/c+ntjbc3fn7yxLkzp8+eOX327PG3Ll/ZODH+t8OO91bOP1/72nGgZcn558zlX5ac/xdTLf+y5PxfTLX8y5Lzz6/35F+WnH9+7yP/suT8X061/MuS8/9yquVflpz/K6mWf1ly/l9JtfzLkvN/NdXyL0vO/1iq5V+WnP/xVMu/LDn/vIdL/mXJ+ecjG+Rflpz/qVTLvyw5/9Opln9Zcv5nUi3/suT8z6Za/mXJ+Z9LtfzLkvP/aqrlX5ac/9dSLf+y5PxfS7X8y5Lz/3qq5V+WnP83Ui3/suT8v5lq+Zcl5/+tVMu/LDn/b6da/mXJ+b+eavmX5f7n/5uZ8cx//h4xB22YMTNppuvfTAAAAAAAAAAAAABA2ywOJ+56HQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAID/swMHAgAAAABA/q+NUFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYUdOBAAAAAAAPJ/bYSqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqoq7N1djFxnfT/ws69eO4H4T0IIwZC14wRDNt5dvyUmGMzrPw0tTQOhpYU6xl6/gN/qXUOCULM0aRtEpEZtL9KLUkAUIbVVIoRUKqUoUpHau+YKlBvUSpFqqUllIqhES7LVmfM8z87Mzs7s2t74zDmfTxT/vDtnZp45c2Z2vmt9ZwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaLb5AzN/PJBlWf5/44+NWXZ1/vf12f78y/k9V3qFAAAAwKV6pfHn316TvrF/BWdq2uaf3/av31tYWFjIPvPy+Vf/bGEhnTCeZUPrsqxxWvQvv/j5QvM2wSPZ2MBg09eDPa5+qMfpwz1OH+lx+miP09f1OH2sx+lLdsAS64vfxzQubGvjrxuLXZpdl400Ttva4VyPDKwbHIy/y2kYaJxnYeRIdjw7kc1kU0vOM9D4L8ue2Zxf191ZvK7BpuvalGXZhZ9+6VBcw0DYx1uzlitraL7vXnpfNv7yT7906NtzL7650+y5G5asNMu2bcnX+WiWLf66KhvI1qV9Etc52LTOTR3WOdSyzoHG+fK/t6/zwgrXGW/3WFjnc13WuSl878Gbsyybz5bdpt0j2WC2oe1a0/4eK46I/DLyu/IN2fCqjpPNKzhO8vO8cHPrcdJ+TMb9vznsk+Fl1tB8d7z05dEl+/1ij5P8VpfhWM0v+978SsfGmn+12nKs5tt86Zblj4GO912HYyAdy03HwJZex8Dg6FDjGBhcXPOWlmNgesl5BrOBxnWdv6X7MTA5d/LM5OxDX7z9+MmDR2eOzpyantqza+fuXTt37548cvzEzFTx5+p2aR/ZkA2mY3BLeK6Jx+Db27ZtPiQXvnH5HgdjJXkc5Lf947fmC7p6MFvmGM+3eXTbpT8O0s/9psfBcNPjoONzaofHwfAKHgf5Nhe2rexn5nDT/53WsFbPhRubjoEr+fMwv85PvWP558JNYV2PvXO1Pw+HlhwD8WYNhMde/p30em/szrBflh4XN+YnXDXaeG23/cGDc3Nnp7MwXhPXNt1X7cfLhqbblC05XgZXfbzs/5tf3npjh+9vDPtq7Lbu91W+za6J7vdV49n9qtHs3OzM2bA/R7Nif7Z8d0cWxmX2Wu/PTj/N8v2ZskSX/Zlv8+jtl/5aMOWSpue/kV7Pf0Mjw8Xz31DaGyMtz39L75qhxsqy7MLtK3v+Gwn/v9bPf9eV5Pkv31ef2t79GMi3eWxytcfAcNfnv5vDHAjreUdIDGNNuf/VxunzxWHadF/2PG6Gh0fCcTMcr7H1uNm55Dz5peXXvW3q4o6bbTe33lctr1tWftz0+vVBaY6bfF/9+VT34ybf5tnpS3/uWB//2vTcMdrrGBgZGs3XO5IOguL5bmF9PAa2Z4ey09mJ7HA6T34v59c1sWNlx8Bo+P+1fu64oSTHQL6vntzR/RjIt/nhzsv72mlb+E7apum1U/vvF5bL/DcOL15e+2673Jk/X+cHf/TR9L1OGSLf5sVdq80Z3ffTbeE7V3XYT+2Pn+WO6cPZa7OfbgjrPLG7+++m8m2u27PC42l/lmXPTz/f+H1X+P3ud8/96Hstv/ft9Dvl56efv2fyvh+vZv0AAFy8Vxt/zo8WrzWb/sV6Jf/+DwAAAPSFmPsHw0zkfwAAAKiMmPuHwkzkfwAAAKiMmPuHw0xqkv+P3bn3qVceztK7AS4E8fS4G+59T7Fd7HjPh6/HFxbl33//t0ae+srDK7vuwSzLfnnPWzpuf+w9cV2FM3Gd72r9/hI33LSi63/g/sXtmt8/4cLe4vLj7VnpYRC7ys9M7mhc7vhD04357D1ZY943/9gjxeUXX8ftz+8stv/L8KYl+48MtJx/W1jP1jDHw3vK3Lt/cT/kM57vqU1v+6drP7F4ffF8A1te37iZT/5+cbnxPaKeuLbYPt7u5db/j1/9zlP59g/e0nn9Dw92Xv/5cLkvhPmLfcX2zfv8K03r/8Ow/nh98Xzbv/mDjut/+k3F9k+H4+LrYbav/31/8tZXOt1f8Xr231WcL17/1H/vapwvXl68/Pb1jz083bI/2i//2ZeLy9n3+Z8NNW8fvx+vJ3rgrtbjeyDcvy098izLvvNHWct+zt5dnO8f2tYfL+/MXZ3Xf1vbOs8M3NQ4/+Lt2dhyu7721zs63t64nv1/t7Hl9jzxobD/Xp78YX655+8Lx2M4/X+eKy6v/c1Inv5Q6/NN3P7rG4vHbby8ybb1P9G2/vmb8n3Xe/13v1ys/+n3rmtZ//4Ph+Pp7mL2Wv/Rv7qm5fzf+HZxf5z9wsSp07Pnjh9u2qvNj+N1Y+s3XHX1615/TXgubf/6wOm5YzNnx6fGp7JsvA/fMnCt1//NMP+rGPOX/xoKP/5Zcdw9/pHi59bbf158/UT4/gPh/ow/H7/2FyMtx2v7/T7/3mJe6vrfGdaxUm/66r/ftKINz3/6mXN//wcvtr8uiLfnzBvHGrfvyc3XN04beLY4vf35qpd/e2Pr4/onw1ON+f2wXxfCOzNvub64vvbLj+9N8vjHisdvfCUXz5+1vZ/IxqHW23Gp6/9JeB3zgxtan//i8fH9h9vezXljNpAvYT48P2Tzxelxq7i/H79wfcfri+/Dk82/eTXLXNbsQ7OTJ46fOvfg5NzM7Nzk7ENfPHDy9LlTcwca71164LO9zr/4+N7QeHwfntmzK2s82k8XY41d6fWfuf/Q4Tumbj08c+TguSNz95+ZOXv00OzsoZnDs7cePHJk5gu9zn/88L7pHXt33rFj4ujxw/vu3Lt3596J46dO58soFtXDnqnPTZw6e6Bxltl9u/ZO7969a2ri5OnDM/vumJqaONfr/I2fTRP5uT8/cXbmxMG54ydnJmaPf3Fm3/TePXt29Hz3x5NnjsyOT549d2ry3OzM2cnitozPNb6d/+zrdX7qYfZ0eL5rMxBenX/ytj3p/XFz3/ryshdVbNL68jR7KbwXVPz51uvrmPtHwkxqkv8BAACgDmLuD2/8v3iC/A8AAACVEXP/ujAT+R8AAAAqI+b+IvmPpY9/r0v+v1z9/y/r/zfo/+v/Z/r/if6//n+m/6//34P+fyn6/8f0//X/9f9ZK2Xr/4fcn63PMv/+DwAAABUVc/+GMBP5HwAAACoj5v6rwkzkfwAAAKiMmPuvDjOpSf73+f/6//r/3fr/cVv9/0z/vwz9/63/qf+/hP6//n+m/3/RrnR/vt/XX8L+/3r9f8qmbP3/mPtfF2ZSk/wPAAAAdRBz/+vDTOR/AAAAKLV1q9g25v5rwkzkfwAAAKiMmPs3hpnUJP9fuf7/qP6//n9Dufv/Pv+/mf7/Fe//+/z/DvT/9f+z2vT/ixcL+v/lWf/a9///tOv5ff4//aBs/f+Y+/9fmElN8j8AAADUQcz9bwgzkf8BAACgMmLuvzbMRP4HAACAyoi5/7owk5rk/3p+/v8LWZbp/2f6//r/bevU/9f/Xwv6//r/3VzZ/n/+2qef+v8+/79s6y/h5//r/1M6Zev/x9z/xjCTmuR/AAAAqIOY+68PM5H/AQAAoDJi7n9TmIn8DwAAAJURc/8NYSY1yf/17P/7/H/9/8Ia9P8HhvX/E/1//f9M/1//vwef/6//38/r1//X/6e3svX/Y+5/c5hJTfI/AAAA1EHM/TeGmcj/AAAAUBkx978lzET+BwAAgMqIuX9TmElN8r/+v/6//r/P/9f/1/9fS/3V/x9c9hT9/4L+f6vL1/+fX1yA/n/frF//X/+f3srW/4+5/61hJjXJ/wAAAFAHMfe/LcxE/gcAAIDKiLn/pjAT+R8AAAAqI+b+8TCTmuR//X/9f/1//X/9f/3/tdRf/f/l6f8X9P9b+fx//X/9f/1/uitb/z/m/s1hJjXJ/wAAAFAHMfdvCTOR/wEAAKAyYu6/OcxE/gcAAIDKiLl/a5hJTfK//r/+v/6//r/+v/7/WtL/1//vRv9f/7+f16//r/9Pb2Xr/8fcf0uYSU3yPwAAANRBzP23hpnI/wAAAFAZMfe/PcxE/gcAAIDKiLl/W5hJTfK//r/+v/5/H/f/h/T/M/3/0uux/v9t+7Gzavr/+v+Z/v9Fu9L9+X5fv/6//j+9la3/H3P/O8JMapL/AQAAoA5i7n9nmIn8DwAAAJURc/9tYSbyPwAAAFRGzP0TYSY1yf8V7/+/+B/LbKb/X9D/7/P+v8//b1m//n85+fx//f9u9P/1//t5/fr/+v/0Vrb+f8z9t4eZ1CT/AwAAQB3E3L89zET+BwAAgMqIuX8yzET+BwAAgMqIuX8qzKQm+b/i/f9l6f8X9P/1/zP9f/3/Nab/r//fjf6//n8/r1//X/+f3srW/4+5fzrMpCb5HwAAAOog5v4dYSbyPwAAAFRGzP07w0zkfwAAAKiMmPt3hZnUJP/3Sf9/eypA6f/r/+v/6//r//cV/f+K9v/zJxL9f/3/03NpB+v/6//r/zPY4Xtl6//H3L87zKQm+R8AAADqIOb+PWEm8j8AAABURsz9d4SZyP8AAABQGTH33xlmUpP83yf9f5//r/+v/99E/1//v5/o/1e0/+/z/xv0/33+v/6//j/dla3/H3P/3jCTmuR/AAAAqIOY+98VZiL/AwAAQGXE3H9XmIn8DwAAAH2l0+cQRjH3vzvMpCb5X/+/6v3/hXX6//r/+v/d16//v7b0//X/u9H/1//v5/Xr/+v/01vZ+v8x9+8LM6lJ/gcAAIA6iLn/PWEm8j8AAABURsz97w0zkf8BAACgMmLu3x9mUpP8r/9f9f6/z//X/9f/77V+/f+1pf+v/99NJfv/66rf/w8vW/T/S9T/z48h/X/KqGz9/5j73xdmUpP8DwAAAHUQc//7w0zkfwAAAKiMmPs/EGYi/wMAAEBlxNz/wTCTmuR//X/9f/1//X/9f/3/taT/v2b9/8ZTof5/oVT9f5//r//v8//1/0nK1v+Puf9DYSY1yf8AAABQBzH3fzjMRP4HAACAyoi5//+Hmcj/AAAAUBkx998dZlKT/K//r/+v/6//r/+v/7+W9P99/n83+v/6//28fv1//X96K1v/P+b+XwkzqUn+BwAAgDqIuf+eMBP5HwAAACoj5v6PhJnI/wAAANBnRpc9Jeb+Xw0zqUn+77/+/3hf9v8H0+Xr/+v/6//r/+v/X076//r/mf7/RbvS/fl+X7/+v/4/vZWt/x9z/6+FmdQk/wMAAEAdxNz/0TAT+R8AAAAqI+b+Xw8zkf8BAACgMmLuvzfMpCb5/3L3/9vP343P/9f/z/T/9f/1//X/L5H+v/5/pv9/0a50f77f16//r/9Pb2Xr/8fc/xthJjXJ/wAAAFAHMfffF2Yi/wMAAEBJHVv1OWLu/1iYifwPAAAAlRFz/8fDTGqS//vv8//1//X/9f/1//X/+4n+v/5/N/r/+v/9vH79f/1/eitb/z/m/vvDTGqS/wEAAKAOYu7/RJiJ/A8AAACVEXP/b4aZyP8AAABQGTH3/1aYSU3yv/6//r/+v/6//r/+/1rS/1/a/8+fw/T/C/r/+v/9vH79f/1/eitb/z/m/k+GmdQk/wMAAEAdxNz/22Em8j8AAABURsz9vxNmIv8DAABAZcTc/6kwk5rkf/1//X/9f/1//X/9/7Wk/+/z/7vR/9f/7+f16//r/9Nb2fr/Mfd/OsykJvkfAAAA6iDm/t8NM5H/AQAAoDJi7j8QZiL/AwAAQGXE3P9AmElN8r/+v/6//r/+v/6//v9a0v/X/+9G/1//v5/Xr/+v/09vZev/x9x/MMxkf+vVAAAAAP0r5v7PhJnU5N//AQAAoA5i7j8UZiL/AwAAQGXE3H84zKQm+V//X/9f/1//X/9f/38t6f/r/3ej/6//38/r1//X/6e3svX/Y+6fCTOpSf4HAACAOoi5/0iYifwPAAAAlRFz/9EwE/kfAAAAKiPm/mNhJjXJ//r/+v/6/7Xt/z/33bZ16v/r/68F/X/9/270//X/+3n9+v/6//RWtv5/zP3Hw0xqkv8BAACgDmLu/2yYifwPAAAAlRFz/+fCTOR/AAAAqIyY+0+EmdQk/+v/6//r/9e2/7+yz/9fv3i9+v/6/xdD/1//vxv9f/3/fl6//r/+P72Vrf8fc//JMJOa5H8AAACog5j7T4WZyP8AAABQGTH3nw4zkf8BAACgMmLuPxNmUpP8r/+/uv7/wDLdQP3/zuvX/69A/7+J/r/+/8XQ/9f/70b/X/+/n9ev/6//T29l6//H3P97YSY1yf8AAABQBzH3nw0zkf8BAACgMmLunw0zkf8BAACgMmLun/s/9u47WbOy2uP4e5vbfZu65RyYgiNwCI7BKqdgTmAEs2LOCXPCrJhzzjnnjGKOVVp0r7WgD332Pk2ft8+zn/X5/MGSAxYPgmX9Cr+145Ym+1//7/v/+n/9v/5f/79P+n/9/xL9v/5/y+/X/+v/WTda/5+7/35xS5P9DwAAAB3k7r9/3GL/AwAAwDRy9z8gbrH/AQAAYBq5+x8YtzTZ//p//b/+X/+v/9f/75P+f6P9/26n/z8C/b/+X/+v/2fZaP1/7v4HxS1N9j8AAAB0kLv/wXGL/Q8AAADTyN3/kLjF/gcAAIBp5O5/aNzSZP/r//X/+n/9v/5f/79P+v+N9v++/38k+n/9v/5f/8+y0fr/3P0Pi1ua7H8AAADoIHf/w+MW+x8AAACmkbv/EXGL/Q8AAADTyN1/bdzSZP/r//X/+v8N9v//q//X/2+H/l//v0T/r//f8vv1//p/1o3W/+fuvy5uabL/AQAAoIPc/Y+MW+x/AAAAmEbu/kfFLfY/AAAATCN3/6Pjlib7X/+v/9f/b7D/9/1//f+G6P/1/0v0//r/Lb9f/6//Z91o/X/u/sfELU32PwAAAHSQu/+xcYv9DwAAANPI3f+4uMX+BwAAgGnk7r8+bmmy//X/+n/9v/5f/6//3yf9v/5/if5f/7/l9+v/9f+s23v/f+8bzt2j9v+5+2+IW5rsfwAAAOggd//j4xb7HwAAAKaRu/8JcYv9DwAAANPI3f/EuKXJ/tf/6//v6P//8z/6f/2//v+On+v/j4f+X/+/RP+v/9/y+/X/+n/W7b3/X+n9D/567v4nxS1N9j8AAAB0kLv/yXGL/Q8AAADTyN3/lLjF/gcAAIDhnT3i75e7/6kH/11N9r/+X//v+//6f/2//n+f9P/D9v8H/6t3of31/2fu/Cv6f/3/lt+/1P/f6wjv1//TwWj9f+7+p8UtTfY/AAAAdJC7/+lxi/0PAAAA08jdf2PcYv8DAADANHL3PyNuabL/9f/6f/2//v/C/v9Uy/7/9p/p//dD/z9s/7/M9/+PRP+v//f9f/0/y0br/3P3PzNuabL/AQAAoIPc/c+KW+x/AAAAmEbu/mfHLfY/AAAATCN3/3Pilib7X/+v/9f/6/8v6/v/V83R//v+//7o//X/S/T/+v8tv1//r/9n3Wj9f+7+58YtTfY/AAAATO/Urnb/8+IW+x8AAACmkbv/+XGL/Q8AAADTyN3/grilyf7X/+v/9f/6/8vq/yf5/r/+f3/0//r/JUft/3f6//pzOdn+//QFv6b/1//r/1kzWv+fu/+FcUuT/Q8AAADzuf4uP8nd/6K4xf4HAACAaeTuf3HcYv8DAADANHL3vyRuabL/9f/6f/2//l//r//fJ/2//n+J7/9vrf+/kP5f/6//Z81o/X/u/pfGLU32PwAAAHSQu/9lcYv9DwAAANPI3f/yuMX+BwAAgGnk7n9F3HJw/5+6kq+6ck60/892Q/+v/9f/n6P/j7+u+n/9/yXQ/+v/dxP2/2cP+ePp/8d6v/5f/8+60fr/3P03xS3++T8AAABMI3f/K+MW+x8AAACmkbv/VXGL/Q8AAADTyN3/6rilyf4/rP+/7f/P/3bf/z8a/f/F36//1//r//X/+v/j6/8v9j9v+v/zZuv/ff9/G+/X/+v/WTda/5+7/zVxS5P9DwAAAB3k7n9t3GL/AwAAwDRy978ubrH/AQAAYBq5+18ftzTZ/8f//f9rTqL/vyOu0//r//X/+v/4+WH9/0H6//3S//v+/xL9v/5/y+/X/+v/WTda/5+7/w1xS5P9DwAAAB3k7n9j3GL/AwAAwDRy978pbrH/AQAAYBq5+98ctzTZ/8ff//v+v/7/Evv/U/r/pP+Pv66+/6//vwT6f/3/Tv9/t510P7/19+v/9f+sG63/z91/87mp12//AwAAQAc3n/vl2d1b4hb7HwAAAKaRu/+tcYv9DwAAANPI3f+2uKXJ/tf/6/9PvP/3/f+i/4+/rvp//f8l0P/r/3f6/7vtpPv5rb9f/6//Z91o/X/u/rfHLU32PwAAAHSQu/8dcYv9DwAAANOI3X/+//xu/wMAAMCU3nnul2d374pbmuz/xv3/NZfb/199p3+t/7/4+/X/x9L/33zw7z39v/5/S/T/+v8l+n/9/5bfP07/Hz+4Vv/PeEbr/3P3vztuabL/AQAAoIPc/e+JW+x/AAAAmEbu/lviFvsfAAAAppG7/71xS5P937j/n+T7//e5NV6g/5+3//f9/7j6f/3/xej/9f87/f/ddtL9/NbfP07/7/v/jGu0/j93//vilib7HwAAADrI3f/+uMX+BwAAgGnk7v9A3GL/AwAAwDRy938wbmmy//X/W+//ff9f/6//1/+PTf+v/1+i/9f/b/n9+n/9P+tG6/9z938obmmy/wEAAKCD3P0fjlvsfwAAAJhG7v6PxC32PwAAAEwjd/9H45Ym+1//r//fV/9/+x9E/9+k/79O/7/T/x9K/6//X6L/1/9v+f36f/0/60br/3P3fyxuabL/AQAAoIPc/R+PW+x/AAAAmEbu/k/ELfY/AAAATCN3/yfjhnve4+SedLxOH/Lz6M31//p/3//X//v+v/5/n/T/+v8l+n/9/5bfr//X/7NutP4/d/+n4hb//B8AAACmkbv/03GL/Q8AAADTyN3/mbjF/gcAAIBp5O7/bNzSZP/r//X/+v/N9v9X6/8vfL/+f0z6f/3/Ev2//n/L79f/6/9ZN1r/n7v/c3FLk/0PAAAAHeTu/3zcYv8DAADANHL3fyFusf8BAABgGrn7vxi3NNn/+n/9v/5/s/2/7/8feL/+f0z6f/3/Ev2//n/L79f/6/9ZN1r/n7v/S3FLk/0PAAAAHeTu/3LcYv8DAADANHL3fyVusf8BAABgGrn7vxq3NNn/+n/9v/5f/6//1//v0xXv/08d/x9jp//X/x9C/6//1//r/1k2Wv+fu/9rcUuT/Q8AAAAd5O7/etxi/wMAAMA0cvd/I26x/wEAAGAaufu/Gbc02f8z9/9Lv5v+/zz9v/5/p/8/2P+fyZ/r/4+H7//r/5fo/yfu/88cyxNP7v36f/0/x2K0/j93/7filib7HwAAADrI3f/tuMX+BwAAgGnk7v9O3GL/AwAAwDRy9383bmmy/2fu/5fo/8/T/+v/d/p/3//fM/2//n+J/n/i/t/3//X/cHL9/+ndIf1/7v7vxS1N9j8AAAB0kLv/+3GL/Q8AAADTyN3/g7jF/gcAAIBp5O7/Ydwyz/6/7y0Lv1H/f+z9/7m/ifT/+v+d/l//r/8/R/+v/1+i/9f/b/n9+n/9P+tG+/5/7v4fxS3z7H8AAABoL3f/j+MW+x8AAACmkbv/J3GL/Q8AAADTyN3/07ilyf7X//v+v/6/Vf9/1e5I/X/+J6z/1/9fPv2//n+J/l//v+X36//1/6wbrf/P3f+zuKXJ/gcAAIAOcvf/PG6x/wEAAGAauft/EbfY/wAAADCN3P2/jFua7H/9v/5f/9+q//f9f/3/Faf/1/8v0f/r/7f8/uz/8+87/b/+n7sarf/P3f+ruKXJ/gcAAIAOcvf/Om6x/wEAAGAauft/E7fY/wAAADCN3P2/jVua7H/9v/5f/6//1//r//dJ/6//X6L/1/9v+f2+/6//Z91o/X/u/lvjlib7HwAAADrI3f+7uMX+BwAAgGnk7v993GL/AwAAwDRy998WtzTZ//p//f+U/f//6f/1//r/Uej/9f9L9P/6/y2/X/+v/2fdaP1/7v4/xC1N9j8AAAB0kLv/j3GL/Q8AAADTyN3/p7jF/gcAAIBp5O7/c9zSZP/r//X/l97/n64/72H7f9//1//r/4cxb/9/Rv+v/7/s/v/Gm87/WP+/zffr//X/rBut/8/d/5e4pcn+BwAAgA5y9/81brH/AQAAYBq5+/8Wt9j/AAAAMI3c/X+PW5rsf/2//n/K7//r//X/+v9hzNv/+/6//t/3//X/+n/9P2tG6/9z9/8jbmmy/wEAAKCD3P3/jFvsfwAAAJhG7v5/xS32PwAAAEwjd/+/45Ym+1//r//X/+v/9f/6/33S/+v/l+j/9f9bfr/+X//PutH6/9z9/w0AAP//pQEwbw==")
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file2\x00', 0x200801f, &(0x7f00000000c0), 0xfe, 0x4ec, &(0x7f0000000380)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x0)
open_by_handle_at(r0, &(0x7f0000000240)=@reiserfs_2={0x8, 0x2, {0xb}}, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000240)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x10a002, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000000)='.\x00', 0x0, 0x2236824, 0x0)
fchownat(0xffffffffffffff9c, &(0x7f0000000780)='./file0\x00', 0x0, 0x0, 0x1000)

1.2071549s ago: executing program 7 (id=416):
r0 = socket$inet6(0xa, 0x1000080002, 0x100000000000088)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e23}, 0x1c)
r1 = socket$inet6(0xa, 0x802, 0x88)
setsockopt$inet6_udp_int(r1, 0x11, 0x100000000a, &(0x7f00000003c0)=0x800000001, 0x4)
sendto$inet6(r1, 0x0, 0x0, 0x4008840, &(0x7f0000000180)={0xa, 0x4e23, 0x8be6, @mcast2}, 0x1c)
sendto$inet6(r1, &(0x7f0000000400)="1732", 0x2, 0x40000, 0x0, 0x0)
poll(&(0x7f0000000340)=[{r0, 0x440}], 0x1, 0x6)

891.348149ms ago: executing program 7 (id=417):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r1 = landlock_create_ruleset(&(0x7f00000002c0)={0x7f6e}, 0x18, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r1, 0x1, &(0x7f0000000000)={0x210a, r0}, 0x0)
landlock_restrict_self(r1, 0x0)
landlock_restrict_self(r1, 0x0)
rename(&(0x7f0000000340)='./file0/file0\x00', &(0x7f00000003c0)='./file1\x00')

811.060766ms ago: executing program 4 (id=418):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x6e)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000340)="71e67a15cdf0311cfcf33a52a7d86bd1", 0x20)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
io_setup(0x42, &(0x7f0000000100)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000580)=[&(0x7f0000000200)={0x1000000, 0x0, 0x700000000000000, 0x0, 0x0, r1, &(0x7f0000000000)='e', 0x3f}])
sendmmsg$alg(r1, &(0x7f0000005e00)=[{0x0, 0x0, &(0x7f0000001680)=[{&(0x7f0000001640)="f5", 0x1}], 0x1, &(0x7f0000002940)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x10}], 0x1, 0x0)

478.526218ms ago: executing program 4 (id=419):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000140))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5})
ioctl$UFFDIO_CONTINUE(r1, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})

266.541609ms ago: executing program 7 (id=420):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000200), 0x1, 0x570, &(0x7f0000000680)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './bus'}}], [], 0x2c})
mount$bind(0x0, &(0x7f0000000140)='.\x00', 0x0, 0x825, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x10)
fchown(r0, 0x0, 0x0)

0s ago: executing program 4 (id=421):
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000220000001801"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x8, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="850000006300fbff6500000000000000160000000000000038"], 0x0, 0x8, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x26e1, 0x0)
close(r0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001240))
ioctl$SIOCSIFHWADDR(r0, 0x8b19, &(0x7f0000000000)={'wlan0\x00', @random="7cf1e97c9e4f"})

kernel console output (not intermixed with test programs):

   88.399377][   T64] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.424465][ T5824] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   88.486979][ T1085] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.494161][ T1085] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.514322][   T64] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.521479][   T64] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.646829][ T5825] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.677910][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.760604][ T5842] Bluetooth: hci2: command tx timeout
[   88.766046][ T5842] Bluetooth: hci0: command tx timeout
[   88.771641][ T5829] Bluetooth: hci1: command tx timeout
[   88.830302][ T5825] 8021q: adding VLAN 0 to HW filter on device team0
[   88.840320][ T5842] Bluetooth: hci4: command tx timeout
[   88.845753][ T5842] Bluetooth: hci3: command tx timeout
[   88.850465][ T5829] Bluetooth: hci5: command tx timeout
[   88.902019][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.909197][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.947643][ T5835] 8021q: adding VLAN 0 to HW filter on device team0
[   88.981545][ T1085] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.988680][ T1085] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.022360][ T1085] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.029512][ T1085] bridge0: port 1(bridge_slave_0) entered forwarding state
[   89.073280][ T5834] 8021q: adding VLAN 0 to HW filter on device bond0
[   89.106637][ T5824] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.147934][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.155138][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.225393][ T5834] 8021q: adding VLAN 0 to HW filter on device team0
[   89.291416][ T1085] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.298563][ T1085] bridge0: port 1(bridge_slave_0) entered forwarding state
[   89.352034][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.359182][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.441168][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.461033][ T5835] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   89.499102][ T5824] veth0_vlan: entered promiscuous mode
[   89.546342][ T5823] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.622503][ T5824] veth1_vlan: entered promiscuous mode
[   89.792096][ T5823] veth0_vlan: entered promiscuous mode
[   89.837439][ T5824] veth0_macvtap: entered promiscuous mode
[   89.899527][ T5823] veth1_vlan: entered promiscuous mode
[   89.960573][ T5824] veth1_macvtap: entered promiscuous mode
[   90.044966][ T5825] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.096090][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.173715][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.200672][ T5823] veth0_macvtap: entered promiscuous mode
[   90.223318][ T5824] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.256472][ T5824] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.267651][ T5824] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.277207][ T5824] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.302818][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.328266][ T5823] veth1_macvtap: entered promiscuous mode
[   90.374970][ T5834] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.438764][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.493501][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.569770][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.577700][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.581657][ T5823] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.598824][ T5823] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.614380][ T5823] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.623766][ T5823] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.652451][ T5835] veth0_vlan: entered promiscuous mode
[   90.714420][ T5826] veth0_vlan: entered promiscuous mode
[   90.727636][ T5835] veth1_vlan: entered promiscuous mode
[   90.761916][ T5834] veth0_vlan: entered promiscuous mode
[   90.781919][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.799899][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.806254][ T5826] veth1_vlan: entered promiscuous mode
[   90.847527][ T5840] Bluetooth: hci0: command tx timeout
[   90.854785][ T5829] Bluetooth: hci1: command tx timeout
[   90.854847][ T5842] Bluetooth: hci2: command tx timeout
[   90.885216][ T5835] veth0_macvtap: entered promiscuous mode
[   90.905960][ T5834] veth1_vlan: entered promiscuous mode
[   90.919772][ T5842] Bluetooth: hci3: command tx timeout
[   90.920151][ T5840] Bluetooth: hci4: command tx timeout
[   90.925170][ T5842] Bluetooth: hci5: command tx timeout
[   90.946998][ T5824] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   90.981011][ T5826] veth0_macvtap: entered promiscuous mode
[   90.990128][ T5835] veth1_macvtap: entered promiscuous mode
[   91.067123][ T5826] veth1_macvtap: entered promiscuous mode
[   91.104576][ T5825] veth0_vlan: entered promiscuous mode
[   91.120383][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.168834][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.173625][ T1238] cfg80211: failed to load regulatory.db
[   91.183105][ T5825] veth1_vlan: entered promiscuous mode
[   91.211798][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.235294][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.256606][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.263284][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.273656][ T5834] veth0_macvtap: entered promiscuous mode
[   91.281159][ T5943] loop3: detected capacity change from 0 to 256
[   91.294515][ T5834] veth1_macvtap: entered promiscuous mode
[   91.331932][ T5835] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.342949][ T5943] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36e06c6e, utbl_chksum : 0xe619d30d)
[   91.343172][ T5835] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.370992][ T5835] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.382078][ T5835] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.417920][ T5826] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.427609][ T5826] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.441090][ T5826] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.450092][ T5826] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.496268][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.514624][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.541588][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.575427][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.586715][ T5834] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.599307][ T5834] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.608091][ T5834] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.618784][ T5834] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.717504][ T5825] veth0_macvtap: entered promiscuous mode
[   91.821366][ T5825] veth1_macvtap: entered promiscuous mode
[   91.835071][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.843871][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.926976][ T1085] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.931206][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.944543][ T1085] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.994122][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.035061][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.061458][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1
[   92.165446][ T5825] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   92.187251][ T5825] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   92.198379][ T5825] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   92.213644][ T5825] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   92.225641][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.250088][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.268681][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.305866][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.459331][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.467185][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.639773][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.685640][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.692853][ T5961] IPv4: Oversized IP packet from 172.20.20.24
[   92.700292][    C1] IPv4: Oversized IP packet from 172.20.20.24
[   92.707133][    C1] IPv4: Oversized IP packet from 172.20.20.24
[   92.812614][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.852822][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.000511][   T53] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   93.189800][   T53] usb 4-1: Using ep0 maxpacket: 32
[   93.275251][   T53] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   93.400109][   T53] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   93.501056][   T53] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[   93.618854][   T53] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   93.668862][ T5983] loop5: detected capacity change from 0 to 2048
[   93.716464][   T53] usb 4-1: config 0 descriptor??
[   93.733200][   T53] hub 4-1:0.0: USB hub found
[   93.830768][ T5983] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[   93.938748][   T53] hub 4-1:0.0: 1 port detected
[   93.977427][ T5982] loop0: detected capacity change from 0 to 8192
[   94.054653][ T5982] =======================================================
[   94.054653][ T5982] WARNING: The mand mount option has been deprecated and
[   94.054653][ T5982]          and is ignored by this kernel. Remove the mand
[   94.054653][ T5982]          option from the mount to silence this warning.
[   94.054653][ T5982] =======================================================
[   94.224234][ T5982] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   94.687065][ T5988] loop2: detected capacity change from 0 to 32768
[   94.694554][ T5988] btrfs: Deprecated parameter 'usebackuproot'
[   94.700838][ T5988] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[   94.714515][ T5988] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.18 (5988)
[   94.739753][ T5988] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   94.751386][ T5988] BTRFS info (device loop2): using crc32c (crc32c-x86_64) checksum algorithm
[   94.760639][ T5988] BTRFS info (device loop2): disk space caching is enabled
[   94.767851][ T5988] BTRFS warning (device loop2): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[   94.793391][ T5898] hub 4-1:0.0: activate --> -90
[   94.932408][ T5988] BTRFS info (device loop2): rebuilding free space tree
[   94.977282][ T5988] BTRFS info (device loop2): disabling free space tree
[   94.984423][ T5988] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[   94.995983][ T5988] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[   95.012109][ T5980] loop1: detected capacity change from 0 to 32768
[   95.068981][ T5980] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.15 (5980)
[   95.143725][ T5897] usb 4-1: USB disconnect, device number 2
[   95.160261][ T5980] BTRFS info (device loop1): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[   95.217365][ T5980] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[   95.311703][ T5980] BTRFS info (device loop1): using free-space-tree
[   95.318327][ T5980] workqueue: max_active 2097158 requested for btrfs-worker is out of range, clamping between 1 and 2048
[   95.484573][ T5980] workqueue: max_active 2097158 requested for btrfs-delalloc is out of range, clamping between 1 and 2048
[   95.729472][ T6013] loop5: detected capacity change from 0 to 40427
[   95.759775][ T6013] F2FS-fs (loop5): invalid crc value
[   95.875239][ T6013] F2FS-fs (loop5): Start checkpoint disabled!
[   95.896033][ T6013] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[   95.921425][ T5980] workqueue: max_active 2097158 requested for btrfs-endio is out of range, clamping between 1 and 2048
[   96.047222][ T6013] F2FS-fs (loop5): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[   96.093702][ T5980] workqueue: max_active 2097158 requested for btrfs-endio-meta is out of range, clamping between 1 and 2048
[   96.094190][ T6016] loop4: detected capacity change from 0 to 65536
[   96.214222][ T5980] workqueue: max_active 2097158 requested for btrfs-rmw is out of range, clamping between 1 and 2048
[   96.249801][ T6016] XFS (loop4): Mounting V5 Filesystem 6653b971-41ab-480a-bd7b-5ff79b9409b5
[   96.353082][ T5980] workqueue: max_active 2097158 requested for btrfs-endio-write is out of range, clamping between 1 and 2048
[   96.407971][ T5980] workqueue: max_active 2097158 requested for btrfs-compressed-write is out of range, clamping between 1 and 2048
[   96.527207][ T5980] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[   96.528190][ T5980] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[   96.550811][ T5980] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[   96.563036][ T5920] kworker/u8:7: attempt to access beyond end of device
[   96.563036][ T5920] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   96.614846][ T6016] XFS (loop4): Ending clean mount
[   96.651547][ T5920] CPU: 1 UID: 0 PID: 5920 Comm: kworker/u8:7 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[   96.651579][ T5920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   96.651595][ T5920] Workqueue: writeback wb_workfn (flush-7:5)
[   96.651640][ T5920] Call Trace:
[   96.651649][ T5920]  <TASK>
[   96.651660][ T5920]  dump_stack_lvl+0x189/0x250
[   96.651702][ T5920]  ? __pfx_dump_stack_lvl+0x10/0x10
[   96.651737][ T5920]  ? __pfx_queue_work_on+0x10/0x10
[   96.651761][ T5920]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   96.651790][ T5920]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   96.651820][ T5920]  ? srso_alias_return_thunk+0x5/0xfbef5
[   96.651859][ T5920]  f2fs_handle_critical_error+0x37c/0x540
[   96.651898][ T5920]  f2fs_write_end_io+0x4e2/0x6d0
[   96.651951][ T5920]  __submit_merged_bio+0x27a/0x6a0
[   96.651987][ T5920]  __submit_merged_write_cond+0x255/0x530
[   96.652028][ T5920]  f2fs_write_data_pages+0x2854/0x31f0
[   96.652058][ T5920]  ? srso_alias_return_thunk+0x5/0xfbef5
[   96.652086][ T5920]  ? __submit_merged_write_cond+0x26a/0x530
[   96.652155][ T5920]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   96.652286][ T5920]  ? srso_alias_return_thunk+0x5/0xfbef5
[   96.652319][ T5920]  ? f2fs_write_meta_pages+0x357/0x450
[   96.652368][ T5920]  ? f2fs_write_meta_pages+0x357/0x450
[   96.652399][ T5920]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   96.652431][ T5920]  do_writepages+0x3b1/0x7b0
[   96.652475][ T5920]  ? srso_alias_return_thunk+0x5/0xfbef5
[   96.652502][ T5920]  ? __lock_acquire+0xaac/0xd20
[   96.652545][ T5920]  ? srso_alias_return_thunk+0x5/0xfbef5
[   96.652573][ T5920]  ? __pfx_do_writepages+0x10/0x10
[   96.652609][ T5920]  ? srso_alias_return_thunk+0x5/0xfbef5
[   96.652636][ T5920]  ? reacquire_held_locks+0x127/0x1d0
[   96.652659][ T5920]  ? writeback_sb_inodes+0x372/0x1000
[   96.652724][ T5920]  __writeback_single_inode+0x145/0xff0
[   96.652750][ T5920]  ? srso_alias_return_thunk+0x5/0xfbef5
[   96.652776][ T5920]  ? do_raw_spin_unlock+0x122/0x240
[   96.652811][ T5920]  writeback_sb_inodes+0x6b5/0x1000
[   96.652874][ T5920]  ? __pfx_writeback_sb_inodes+0x10/0x10
[   96.652956][ T5920]  ? srso_alias_return_thunk+0x5/0xfbef5
[   96.652983][ T5920]  ? rcu_is_watching+0x15/0xb0
[   96.653004][ T5920]  ? srso_alias_return_thunk+0x5/0xfbef5
[   96.653050][ T5920]  wb_writeback+0x43b/0xaf0
[   96.653090][ T5920]  ? queue_io+0x351/0x590
[   96.653122][ T5920]  ? __pfx_wb_writeback+0x10/0x10
[   96.653161][ T5920]  ? _raw_spin_unlock_irq+0x23/0x50
[   96.653197][ T5920]  wb_workfn+0x409/0xef0
[   96.653257][ T5920]  ? __pfx_wb_workfn+0x10/0x10
[   96.653289][ T5920]  ? srso_alias_return_thunk+0x5/0xfbef5
[   96.653314][ T5920]  ? register_lock_class+0x51/0x320
[   96.653355][ T5920]  ? srso_alias_return_thunk+0x5/0xfbef5
[   96.653381][ T5920]  ? __lock_acquire+0xaac/0xd20
[   96.653428][ T5920]  ? srso_alias_return_thunk+0x5/0xfbef5
[   96.653459][ T5920]  ? srso_alias_return_thunk+0x5/0xfbef5
[   96.653491][ T5920]  ? _raw_spin_unlock_irq+0x23/0x50
[   96.653517][ T5920]  ? process_scheduled_works+0x9ec/0x17a0
[   96.653539][ T5920]  ? process_scheduled_works+0x9ec/0x17a0
[   96.653566][ T5920]  process_scheduled_works+0xade/0x17a0
[   96.653633][ T5920]  ? __pfx_process_scheduled_works+0x10/0x10
[   96.653685][ T5920]  ? srso_alias_return_thunk+0x5/0xfbef5
[   96.653725][ T5920]  worker_thread+0x8a0/0xda0
[   96.653754][ T5920]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   96.653794][ T5920]  ? __kthread_parkme+0x7b/0x200
[   96.653835][ T5920]  kthread+0x711/0x8a0
[   96.653870][ T5920]  ? __pfx_worker_thread+0x10/0x10
[   96.653894][ T5920]  ? __pfx_kthread+0x10/0x10
[   96.653922][ T5920]  ? srso_alias_return_thunk+0x5/0xfbef5
[   96.653950][ T5920]  ? __pfx_kthread+0x10/0x10
[   96.653979][ T5920]  ? _raw_spin_unlock_irq+0x23/0x50
[   96.654004][ T5920]  ? srso_alias_return_thunk+0x5/0xfbef5
[   96.654041][ T5920]  ? lockdep_hardirqs_on+0x9c/0x150
[   96.654072][ T5920]  ? __pfx_kthread+0x10/0x10
[   96.654100][ T5920]  ret_from_fork+0x4e/0x80
[   96.654125][ T5920]  ? __pfx_kthread+0x10/0x10
[   96.654154][ T5920]  ret_from_fork_asm+0x1a/0x30
[   96.654201][ T5920]  </TASK>
[   96.654211][ T5920] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[   97.172724][ T5980] BTRFS error (device loop1): open_ctree failed: -12
[   97.279284][ T5826] XFS (loop4): Unmounting Filesystem 6653b971-41ab-480a-bd7b-5ff79b9409b5
[   97.401403][ T5835] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   97.650440][ T6052] process 'syz.1.28' launched './file0' with NULL argv: empty string added
[   98.699916][ T5893] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   98.814691][   T53] kernel read not supported for file /vga_arbiter (pid: 53 comm: kworker/1:1)
[   98.891161][ T5893] usb 3-1: Using ep0 maxpacket: 8
[   98.927517][ T5893] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[   98.955672][ T5893] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   99.019849][ T5893] usb 3-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   99.069107][ T5893] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   99.109200][ T5893] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   99.157188][ T5893] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[   99.184811][ T5893] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   99.215817][ T5893] usb 3-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   99.271868][ T5893] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   99.313854][ T5893] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   99.388244][ T5893] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[   99.403521][ T5893] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   99.430433][ T5893] usb 3-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   99.506054][ T5893] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   99.549967][ T5893] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   99.582936][ T5893] usb 3-1: string descriptor 0 read error: -22
[   99.593556][ T5893] usb 3-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   99.628835][ T5893] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   99.638778][ T6084] loop1: detected capacity change from 0 to 1024
[   99.709994][ T5893] adutux 3-1:168.0: ADU100  now attached to /dev/usb/adutux0
[   99.866060][ T6091] syz_tun: entered allmulticast mode
[   99.876395][ T6090] syz_tun: left allmulticast mode
[   99.937020][ T6084] EXT4-fs (loop1): Test dummy encryption mode enabled
[  100.015638][ T6084] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.243823][ T6084] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  100.302073][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.410835][ T5898] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  100.580527][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  100.660992][ T5898] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  100.694432][ T5898] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  100.724586][ T5898] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  100.735392][ T5898] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  100.739558][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  100.745882][ T5898] usb 5-1: SerialNumber: syz
[  101.134702][ T5898] usb 5-1: 0:2 : does not exist
[  101.243940][ T5898] usb 5-1: USB disconnect, device number 2
[  101.312556][ T5965] udevd[5965]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  101.532749][ T6116] loop1: detected capacity change from 0 to 256
[  101.546359][ T6116] exfat: Deprecated parameter 'utf8'
[  101.563167][ T6116] exfat: Deprecated parameter 'utf8'
[  101.569704][ T6116] exfat: Deprecated parameter 'utf8'
[  101.619236][ T5893] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  101.638954][ T6116] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d)
[  101.671939][   T30] audit: type=1800 audit(1748170841.135:2): pid=6116 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.46" name="file1" dev="loop1" ino=1048605 res=0 errno=0
[  101.779469][ T5893] usb 6-1: Using ep0 maxpacket: 16
[  101.794602][ T5893] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  101.825374][ T5893] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  101.851155][ T5893] usb 6-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[  101.863970][ T5893] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  101.891982][ T5893] usb 6-1: config 0 descriptor??
[  101.997390][ T6122] warning: `syz.1.50' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  102.054296][ T5897] usb 3-1: USB disconnect, device number 2
[  102.082925][ T5842] block nbd4: Receive control failed (result -107)
[  102.222604][ T6124] nbd4: detected capacity change from 0 to 12
[  102.242323][ T5965] block nbd4: Dead connection, failed to find a fallback
[  102.266507][ T5965] block nbd4: shutting down sockets
[  102.279502][ T5965] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  102.300002][ T6118] loop3: detected capacity change from 0 to 32768
[  102.306905][ T5965] Buffer I/O error on dev nbd4, logical block 0, async page read
[  102.336572][ T6118] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.48 (6118)
[  102.356028][ T6125] nbd4: detected capacity change from 12 to 29912
[  102.356059][ T5965] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  102.388729][ T5965] Buffer I/O error on dev nbd4, logical block 0, async page read
[  102.391380][ T5893] hid-multitouch 0003:1FD2:6007.0001: hidraw0: USB HID v0.00 Device [HID 1fd2:6007] on usb-dummy_hcd.5-1/input0
[  102.416886][ T6118] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  102.435676][ T5965] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  102.447611][ T6118] BTRFS info (device loop3): using sha256 (sha256-ni) checksum algorithm
[  102.488707][ T5965] Buffer I/O error on dev nbd4, logical block 0, async page read
[  102.505377][ T6118] BTRFS info (device loop3): using free-space-tree
[  102.553912][ T5965] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  102.592781][ T5965] Buffer I/O error on dev nbd4, logical block 0, async page read
[  102.631262][ T5965] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  102.640867][ T5893] usb 6-1: USB disconnect, device number 2
[  102.660072][ T6142] netlink: 'syz.1.54': attribute type 4 has an invalid length.
[  102.667993][ T5965] Buffer I/O error on dev nbd4, logical block 0, async page read
[  102.691199][ T5965] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  102.718122][ T5965] Buffer I/O error on dev nbd4, logical block 0, async page read
[  102.744251][ T6131] fido_id[6131]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/6-1/report_descriptor': No such file or directory
[  102.792277][ T5965] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  102.850505][ T5965] Buffer I/O error on dev nbd4, logical block 0, async page read
[  102.899457][ T5965] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  102.908581][ T5965] Buffer I/O error on dev nbd4, logical block 0, async page read
[  102.956359][ T5965] ldm_validate_partition_table(): Disk read failed.
[  102.975891][ T5965] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  103.020127][ T5965] Buffer I/O error on dev nbd4, logical block 0, async page read
[  103.031339][ T5965] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  103.063831][ T5965] Buffer I/O error on dev nbd4, logical block 0, async page read
[  103.084899][ T5965] Dev nbd4: unable to read RDB block 0
[  103.092733][ T5965]  nbd4: unable to read partition table
[  103.105158][ T5824] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  103.126969][ T6156] netlink: 'syz.1.56': attribute type 1 has an invalid length.
[  103.138228][ T5965] ldm_validate_partition_table(): Disk read failed.
[  103.151527][ T5965] Dev nbd4: unable to read RDB block 0
[  103.163596][ T5965]  nbd4: unable to read partition table
[  103.987689][ T6179] netlink: 14 bytes leftover after parsing attributes in process `syz.1.64'.
[  104.328981][ T6179] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  104.354105][ T6179] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  104.375512][ T6179] bond0 (unregistering): Released all slaves
[  104.535043][ T6174] loop2: detected capacity change from 0 to 32768
[  104.576906][ T6174] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  104.929961][ T6174] XFS (loop2): Ending clean mount
[  104.958503][ T6174] XFS (loop2): Quotacheck needed: Please wait.
[  105.031727][ T6181] loop5: detected capacity change from 0 to 32768
[  105.063890][ T6174] XFS (loop2): Quotacheck: Done.
[  105.083810][ T6181] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.66 (6181)
[  105.138300][ T6181] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  105.173953][ T6181] BTRFS info (device loop5): using sha256 (sha256-ni) checksum algorithm
[  105.195702][ T6181] BTRFS info (device loop5): using free-space-tree
[  105.604543][ T6217] Bluetooth: MGMT ver 1.23
[  105.675318][ T6108] BTRFS info (device loop5): qgroup scan completed (inconsistency flag cleared)
[  105.710248][ T5835] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  106.226228][ T5825] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  106.366023][ T6224] loop2: detected capacity change from 0 to 8192
[  106.741678][ T6231] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  107.026079][ T6239] loop1: detected capacity change from 0 to 128
[  107.688725][ T6256] loop2: detected capacity change from 0 to 1024
[  107.946556][ T6108] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  108.030790][   T52] hfsplus: b-tree write err: -5, ino 4
[  108.134679][ T6108] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  108.333300][ T6108] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  108.653781][ T6108] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  108.731835][ T6270] loop4: detected capacity change from 0 to 512
[  108.829091][ T6270] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  108.894317][ T6270] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  109.131204][ T6270] EXT4-fs (loop4): 1 truncate cleaned up
[  109.225756][ T6270] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.411752][ T6108] bridge_slave_1: left allmulticast mode
[  109.444882][ T5829] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  109.453792][ T5829] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  109.465377][ T5829] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  109.485469][ T5829] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  109.487408][ T6108] bridge_slave_1: left promiscuous mode
[  109.508602][ T5829] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  109.609628][ T6108] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.735987][ T6108] bridge_slave_0: left allmulticast mode
[  109.749104][ T6108] bridge_slave_0: left promiscuous mode
[  109.761864][ T6108] bridge0: port 1(bridge_slave_0) entered disabled state
[  110.465178][ T6304] loop2: detected capacity change from 0 to 1024
[  110.558608][ T6304] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.680464][ T6304] ext4 filesystem being mounted at /18/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.771954][ T5829] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  110.781821][ T5829] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  110.794916][ T5829] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  110.816744][ T5829] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  110.829392][ T5829] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  110.882162][ T6304] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.105: bg 0: block 393: padding at end of block bitmap is not set
[  111.065405][   T64] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[  111.104962][ T6314] netlink: 'syz.3.108': attribute type 12 has an invalid length.
[  111.125217][   T64] EXT4-fs (loop2): This should not happen!! Data will be lost
[  111.125217][   T64] 
[  111.144239][   T64] EXT4-fs (loop2): Total free blocks count 0
[  111.155007][   T64] EXT4-fs (loop2): Free/Dirty block details
[  111.168188][   T64] EXT4-fs (loop2): free_blocks=0
[  111.175302][   T64] EXT4-fs (loop2): dirty_blocks=16
[  111.193815][   T64] EXT4-fs (loop2): Block reservation details
[  111.201664][   T64] EXT4-fs (loop2): i_reserved_data_blocks=1
[  111.238228][ T5835] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.557391][ T5826] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.575651][ T5842] Bluetooth: hci4: command tx timeout
[  111.984133][ T6334] loop3: detected capacity change from 0 to 1024
[  112.044319][ T6337] loop2: detected capacity change from 0 to 128
[  112.144007][ T6337] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  112.155465][ T6340] netlink: 156 bytes leftover after parsing attributes in process `syz.4.116'.
[  112.230069][ T6337] ext4 filesystem being mounted at /20/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.377023][ T5835] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  112.453418][ T6343] netlink: 4 bytes leftover after parsing attributes in process `syz.5.117'.
[  112.608276][ T6351] Zero length message leads to an empty skb
[  112.776772][ T6108] hsr_slave_0: left promiscuous mode
[  112.792932][ T6108] hsr_slave_1: left promiscuous mode
[  112.810021][ T6108] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  112.827807][ T6108] batman_adv: batadv0: Removing interface: batadv_slave_0
[  112.835365][   T53] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  112.865510][ T6108] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  112.889146][ T6108] batman_adv: batadv0: Removing interface: batadv_slave_1
[  112.920359][ T5842] Bluetooth: hci6: command tx timeout
[  112.935216][ T6108] veth1_macvtap: left promiscuous mode
[  112.941928][ T6108] veth0_macvtap: left promiscuous mode
[  112.947624][ T6108] veth1_vlan: left promiscuous mode
[  112.953323][ T6108] veth0_vlan: left promiscuous mode
[  112.999987][   T53] usb 3-1: Using ep0 maxpacket: 8
[  113.015655][   T53] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  113.030316][   T53] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  113.047028][   T53] usb 3-1: Product: syz
[  113.057628][   T53] usb 3-1: Manufacturer: syz
[  113.062539][   T53] usb 3-1: SerialNumber: syz
[  113.075904][   T53] usb 3-1: config 0 descriptor??
[  113.294201][   T53] usb 3-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  113.491458][ T6108] team0 (unregistering): Port device team_slave_1 removed
[  113.531818][ T6108] team0 (unregistering): Port device team_slave_0 removed
[  113.639272][ T5842] Bluetooth: hci4: command tx timeout
[  114.059296][ T5895] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  114.106982][   T53] dvb_usb_rtl28xxu 3-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -32
[  114.130714][   T53] usb 3-1: USB disconnect, device number 3
[  114.232769][ T5895] usb 4-1: Using ep0 maxpacket: 32
[  114.285916][ T5895] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 102, changing to 10
[  114.363741][ T5895] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24624, setting to 1024
[  114.418570][ T5895] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  114.502039][ T5895] usb 4-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  114.529167][ T5895] usb 4-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  114.547696][ T5895] usb 4-1: Product: syz
[  114.551964][ T5895] usb 4-1: Manufacturer: syz
[  114.556573][ T5895] usb 4-1: SerialNumber: syz
[  114.605074][ T5895] input: appletouch as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/input/input6
[  115.003228][ T5842] Bluetooth: hci6: command tx timeout
[  115.056467][   T53] usb 4-1: USB disconnect, device number 3
[  115.056539][    C0] appletouch 4-1:1.0: atp_complete: usb_submit_urb failed with result -19
[  115.266206][ T6283] chnl_net:caif_netlink_parms(): no params data found
[  115.273913][   T53] appletouch 4-1:1.0: input: appletouch disconnected
[  115.361342][ T6310] chnl_net:caif_netlink_parms(): no params data found
[  115.416430][ T6370] loop5: detected capacity change from 0 to 32768
[  115.475876][ T6370] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.124 (6370)
[  115.542356][ T6370] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  115.568871][ T6370] BTRFS info (device loop5): using crc32c (crc32c-x86_64) checksum algorithm
[  115.575820][ T6392] loop2: detected capacity change from 0 to 512
[  115.597109][ T6370] BTRFS info (device loop5): using free-space-tree
[  115.674623][ T6392] EXT4-fs (loop2): can't mount with both data=journal and dax
[  115.719693][ T5842] Bluetooth: hci4: command tx timeout
[  115.782370][ T6370] BTRFS info (device loop5): rebuilding free space tree
[  116.003566][ T6108] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.475346][ T5825] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  116.524377][ T6430] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  116.623572][ T6108] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.896999][ T6430] netlink: 'syz.2.132': attribute type 12 has an invalid length.
[  116.911021][ T6430] netlink: 'syz.2.132': attribute type 29 has an invalid length.
[  116.929947][ T6430] netlink: 148 bytes leftover after parsing attributes in process `syz.2.132'.
[  116.949758][ T6430] netlink: 'syz.2.132': attribute type 1 has an invalid length.
[  117.022280][ T6108] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.068335][ T6419] loop4: detected capacity change from 0 to 32768
[  117.079314][ T5842] Bluetooth: hci6: command tx timeout
[  117.095473][ T6283] bridge0: port 1(bridge_slave_0) entered blocking state
[  117.134058][ T6283] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.141613][ T6283] bridge_slave_0: entered allmulticast mode
[  117.155586][ T6283] bridge_slave_0: entered promiscuous mode
[  117.164696][ T6310] bridge0: port 1(bridge_slave_0) entered blocking state
[  117.174999][ T6310] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.184919][ T6310] bridge_slave_0: entered allmulticast mode
[  117.193078][ T6310] bridge_slave_0: entered promiscuous mode
[  117.210530][ T6310] bridge0: port 2(bridge_slave_1) entered blocking state
[  117.217675][ T6310] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.244628][ T6310] bridge_slave_1: entered allmulticast mode
[  117.274452][ T6310] bridge_slave_1: entered promiscuous mode
[  117.626237][ T6449] loop3: detected capacity change from 0 to 128
[  117.674487][ T6449] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  117.700614][ T6449] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.781046][ T6108] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.800373][ T5842] Bluetooth: hci4: command tx timeout
[  117.833750][ T6283] bridge0: port 2(bridge_slave_1) entered blocking state
[  117.849266][ T6283] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.864495][ T6283] bridge_slave_1: entered allmulticast mode
[  117.890206][ T6283] bridge_slave_1: entered promiscuous mode
[  117.897532][ T5824] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  118.171102][ T6310] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  118.239677][ T6310] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  118.285474][ T6283] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  118.317935][ T6459] sch_tbf: burst 2 is lower than device lo mtu (65550) !
[  118.344274][ T6463] sch_tbf: burst 2 is lower than device lo mtu (65550) !
[  118.371494][ T6463] sch_tbf: burst 2 is lower than device lo mtu (65550) !
[  118.512336][ T6283] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  118.621618][ T6310] team0: Port device team_slave_0 added
[  118.658340][ T6310] team0: Port device team_slave_1 added
[  118.877666][ T6283] team0: Port device team_slave_0 added
[  118.904264][ T6310] batman_adv: batadv0: Adding interface: batadv_slave_0
[  118.925955][ T6310] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  118.930712][ T6473] fuse: root generation should be zero
[  118.979696][ T6310] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  119.061163][ T6283] team0: Port device team_slave_1 added
[  119.074555][ T6310] batman_adv: batadv0: Adding interface: batadv_slave_1
[  119.100964][ T6310] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  119.167588][ T5829] Bluetooth: hci6: command tx timeout
[  119.206822][ T6310] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  119.702721][ T6283] batman_adv: batadv0: Adding interface: batadv_slave_0
[  119.721217][ T6283] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  119.762425][ T6283] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  119.932776][ T6283] batman_adv: batadv0: Adding interface: batadv_slave_1
[  119.971782][ T6500] loop3: detected capacity change from 0 to 2048
[  119.987124][ T6283] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  120.017456][ T6500] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  120.149226][ T6283] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  120.196336][ T6310] hsr_slave_0: entered promiscuous mode
[  120.208923][ T6310] hsr_slave_1: entered promiscuous mode
[  120.249520][ T6310] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  120.292702][ T6310] Cannot create hsr debugfs directory
[  120.308081][ T6108] bridge_slave_1: left allmulticast mode
[  120.322858][ T6108] bridge_slave_1: left promiscuous mode
[  120.345311][ T6108] bridge0: port 2(bridge_slave_1) entered disabled state
[  120.359530][ T5829] Bluetooth: hci0: command 0x1003 tx timeout
[  120.365681][ T5842] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  120.413120][ T6108] bridge_slave_0: left allmulticast mode
[  120.439239][ T6108] bridge_slave_0: left promiscuous mode
[  120.472826][ T6108] bridge0: port 1(bridge_slave_0) entered disabled state
[  121.201689][ T6510] loop2: detected capacity change from 0 to 32768
[  121.232093][ T1238] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  121.275775][ T6510] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  121.329364][ T5895] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  121.377525][ T6510] XFS (loop2): Ending clean mount
[  121.400081][ T1238] usb 6-1: Using ep0 maxpacket: 32
[  121.422098][ T1238] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  121.447266][ T1238] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  121.447723][ T6108] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  121.470995][ T1238] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  121.484517][ T6108] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  121.490918][ T1238] usb 6-1: Product: syz
[  121.493973][ T5895] usb 4-1: Using ep0 maxpacket: 8
[  121.497216][ T1238] usb 6-1: Manufacturer: syz
[  121.516664][ T1238] usb 6-1: SerialNumber: syz
[  121.518107][ T5895] usb 4-1: config index 0 descriptor too short (expected 301, got 45)
[  121.542492][ T6108] bond0 (unregistering): Released all slaves
[  121.544388][ T1238] usb 6-1: config 0 descriptor??
[  121.570814][ T5895] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  121.584448][ T6516] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  121.605492][ T5895] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  121.627644][ T5895] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  121.638787][ T5895] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  121.651317][ T1238] hub 6-1:0.0: bad descriptor, ignoring hub
[  121.657846][ T1238] hub 6-1:0.0: probe with driver hub failed with error -5
[  121.667653][ T6510] syz.2.155 (6510) used greatest stack depth: 19528 bytes left
[  121.682088][ T5835] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  121.691083][ T5895] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  121.761276][ T5895] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.110176][ T5895] usb 4-1: GET_CAPABILITIES returned 0
[  122.133001][ T5895] usbtmc 4-1:16.0: can't read capabilities
[  122.274283][ T6283] hsr_slave_0: entered promiscuous mode
[  122.287204][ T6283] hsr_slave_1: entered promiscuous mode
[  122.320098][ T6283] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  122.354027][ T6283] Cannot create hsr debugfs directory
[  122.377411][   T30] audit: type=1326 audit(1748170861.845:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.2.162" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f16e818e969 code=0x0
[  122.635790][ T6108] hsr_slave_0: left promiscuous mode
[  122.642206][ T6108] hsr_slave_1: left promiscuous mode
[  122.648282][ T6108] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  122.658440][ T6108] batman_adv: batadv0: Removing interface: batadv_slave_0
[  122.668068][ T6108] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  122.676384][ T6108] batman_adv: batadv0: Removing interface: batadv_slave_1
[  122.704882][ T6108] veth1_macvtap: left promiscuous mode
[  122.716297][ T6108] veth0_macvtap: left promiscuous mode
[  122.722881][ T6108] veth1_vlan: left promiscuous mode
[  122.728323][ T6108] veth0_vlan: left promiscuous mode
[  122.777701][ T6547] loop4: detected capacity change from 0 to 64
[  122.916472][ T1238] usb 6-1: USB disconnect, device number 3
[  122.927570][ T5897] usb 4-1: USB disconnect, device number 4
[  123.648313][ T6558] netlink: 128 bytes leftover after parsing attributes in process `syz.2.170'.
[  123.859224][ T1238] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  123.941802][ T6564] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  124.043319][ T1238] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  124.073620][ T1238] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  124.083862][ T1238] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  124.119413][ T1238] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  124.164038][ T1238] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  124.200179][ T1238] usb 4-1: config 0 descriptor??
[  124.353446][ T6560] loop5: detected capacity change from 0 to 32768
[  124.456701][ T6560] XFS (loop5): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  124.551146][ T6584] loop2: detected capacity change from 0 to 512
[  124.598099][ T6560] XFS (loop5): Ending clean mount
[  124.633807][ T6108] team0 (unregistering): Port device team_slave_1 removed
[  124.645727][ T1238] plantronics 0003:047F:FFFF.0002: reserved main item tag 0xd
[  124.656395][ T1238] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving
[  124.704968][ T6560] XFS (loop5): Quotacheck needed: Please wait.
[  124.741206][ T6584] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  124.803393][ T1238] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  124.829222][ T6584] ext4 filesystem being mounted at /36/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.900218][ T6560] XFS (loop5): Quotacheck: Done.
[  124.915086][ T6108] team0 (unregistering): Port device team_slave_0 removed
[  124.982705][ T5893] usb 4-1: USB disconnect, device number 5
[  125.006293][   T30] audit: type=1800 audit(1748170864.475:4): pid=6584 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.178" name="file2" dev="loop2" ino=16 res=0 errno=0
[  125.104477][ T6592] fido_id[6592]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  125.104982][ T5825] XFS (loop5): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  125.187151][ T5835] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.529169][ T5898] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  125.703223][ T6604] vivid-000: disconnect
[  125.739511][ T5898] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  125.781290][ T5898] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  125.812252][ T5898] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  125.827892][ T5898] usb 5-1: Product: syz
[  125.840463][ T5898] usb 5-1: Manufacturer: syz
[  125.845156][ T5898] usb 5-1: SerialNumber: syz
[  126.394033][ T6598] vivid-000: reconnect
[  126.499475][ T5905] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  126.672043][ T5905] usb 3-1: Using ep0 maxpacket: 16
[  126.693164][ T5905] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  126.732227][ T5905] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  126.747174][ T5905] usb 3-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  126.759746][ T5905] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.767991][ T5905] usb 3-1: Product: syz
[  126.769680][ T6605] syzkaller1: entered promiscuous mode
[  126.781579][ T5905] usb 3-1: Manufacturer: syz
[  126.786392][ T5905] usb 3-1: SerialNumber: syz
[  126.796208][ T6605] syzkaller1: entered allmulticast mode
[  126.800158][ T5905] usb 3-1: config 0 descriptor??
[  126.934056][ T5898] cdc_ncm 5-1:1.0: MAC-Address: 42:42:42:42:42:42
[  126.956130][ T5898] cdc_ncm 5-1:1.0: dwNtbInMaxSize=16 is too small. Using 2048
[  126.974829][ T5898] cdc_ncm 5-1:1.0: setting rx_max = 2048
[  127.048933][ T5905] appledisplay 3-1:0.0: Error while getting initial brightness: -71
[  127.111088][ T5905] appledisplay 3-1:0.0: probe with driver appledisplay failed with error -71
[  127.193713][ T5905] usb 3-1: USB disconnect, device number 4
[  127.345834][ T5898] cdc_ncm 5-1:1.0: setting tx_max = 88
[  127.395154][ T6620] loop3: detected capacity change from 0 to 4096
[  127.447913][ T6620] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  127.494080][ T5898] cdc_ncm 5-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.4-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[  127.533913][ T6620] ntfs3(loop3): ino=1a, mi_enum_attr
[  127.559428][ T6620] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  127.563400][ T5898] usb 5-1: USB disconnect, device number 3
[  127.590864][ T5898] cdc_ncm 5-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.4-1, CDC NCM (NO ZLP)
[  127.594235][ T6620] ntfs3(loop3): Failed to initialize $Extend/$ObjId.
[  127.651678][ T6310] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  127.747782][ T6310] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  127.834269][ T6310] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  127.894923][ T6310] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  127.910691][ T6617] loop5: detected capacity change from 0 to 32768
[  128.039770][ T6617] XFS (loop5): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  128.273886][ T6647] loop3: detected capacity change from 0 to 128
[  128.289196][ T6617] XFS (loop5): Ending clean mount
[  128.357318][ T6647] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  128.392086][   T30] audit: type=1804 audit(1748170867.865:5): pid=6617 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.189" name="/newroot/28/file1/file2" dev="loop5" ino=6151 res=1 errno=0
[  128.474981][ T6647] ext4 filesystem being mounted at /52/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  128.498930][ T6645] : entered promiscuous mode
[  128.561333][ T6283] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  128.668650][ T6283] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  128.733742][ T6283] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  128.764337][ T5825] XFS (loop5): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  128.812146][ T6283] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  129.071500][ T6310] 8021q: adding VLAN 0 to HW filter on device bond0
[  129.071749][ T5824] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  129.205053][ T6310] 8021q: adding VLAN 0 to HW filter on device team0
[  129.240324][ T6660] loop4: detected capacity change from 0 to 1024
[  129.337265][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[  129.344452][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[  129.430981][ T1085] bridge0: port 2(bridge_slave_1) entered blocking state
[  129.438165][ T1085] bridge0: port 2(bridge_slave_1) entered forwarding state
[  129.659971][ T6283] 8021q: adding VLAN 0 to HW filter on device bond0
[  129.808002][ T6283] 8021q: adding VLAN 0 to HW filter on device team0
[  129.924533][ T6108] bridge0: port 1(bridge_slave_0) entered blocking state
[  129.931781][ T6108] bridge0: port 1(bridge_slave_0) entered forwarding state
[  130.010611][ T6108] bridge0: port 2(bridge_slave_1) entered blocking state
[  130.017830][ T6108] bridge0: port 2(bridge_slave_1) entered forwarding state
[  130.037351][ T6677] loop5: detected capacity change from 0 to 2048
[  130.046306][ T6680] block nbd4: shutting down sockets
[  130.116506][ T6677] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[  130.174465][ T6677] NILFS (loop5): mounting unchecked fs
[  130.266645][ T6009] udevd[6009]: incorrect nilfs2 checksum on /dev/loop5
[  130.297320][ T6677] NILFS (loop5): recovery complete
[  130.402095][ T6688] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  130.414421][ T6657] loop2: detected capacity change from 0 to 32768
[  130.447333][ T6657] XFS: ikeep mount option is deprecated.
[  130.496908][   T30] audit: type=1800 audit(1748170869.965:6): pid=6677 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.201" name="file1" dev="loop5" ino=15 res=0 errno=0
[  130.521331][ T6657] XFS: noikeep mount option is deprecated.
[  130.657935][ T6657] XFS (loop2): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  130.842598][ T6657] XFS (loop2): Ending clean mount
[  130.903551][ T6657] XFS (loop2): Quotacheck needed: Please wait.
[  130.970670][ T6310] 8021q: adding VLAN 0 to HW filter on device batadv0
[  131.098067][ T6657] XFS (loop2): Quotacheck: Done.
[  131.419626][ T6283] 8021q: adding VLAN 0 to HW filter on device batadv0
[  132.127412][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  132.146645][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  132.277082][ T6310] veth0_vlan: entered promiscuous mode
[  132.364517][ T6310] veth1_vlan: entered promiscuous mode
[  132.542470][ T6310] veth0_macvtap: entered promiscuous mode
[  132.583964][ T6310] veth1_macvtap: entered promiscuous mode
[  132.614205][ T5835] XFS (loop2): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  132.667789][ T6310] batman_adv: batadv0: Interface activated: batadv_slave_0
[  132.723070][ T6310] batman_adv: batadv0: Interface activated: batadv_slave_1
[  132.789320][ T6310] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  132.798053][ T6310] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  132.839641][ T6716] loop5: detected capacity change from 0 to 32768
[  132.877465][ T6310] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  132.879144][ T5905] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  132.904440][ T6310] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  132.965383][ T6716] XFS (loop5): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  133.109422][ T5905] usb 5-1: Using ep0 maxpacket: 32
[  133.135782][ T5905] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  133.163026][ T6716] XFS (loop5): Ending clean mount
[  133.209304][ T5905] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  133.239993][ T6716] XFS (loop5): Quotacheck needed: Please wait.
[  133.248824][ T5905] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  133.297502][ T6283] veth0_vlan: entered promiscuous mode
[  133.318669][ T5905] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  133.378053][ T6716] XFS (loop5): Quotacheck: Done.
[  133.378409][ T6765] evm: overlay not supported
[  133.390101][ T5905] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  133.430690][ T6283] veth1_vlan: entered promiscuous mode
[  133.452559][ T5905] usb 5-1: config 0 descriptor??
[  133.460291][ T6747] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  133.481098][ T5905] hub 5-1:0.0: USB hub found
[  133.509788][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  133.517702][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  133.673160][ T5920] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  133.693963][ T5920] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  133.703946][ T5905] hub 5-1:0.0: config failed, hub has too many ports! (err -19)
[  133.715694][ T5825] XFS (loop5): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  133.788265][ T6283] veth0_macvtap: entered promiscuous mode
[  133.842097][ T6283] veth1_macvtap: entered promiscuous mode
[  133.912441][ T5905] usbhid 5-1:0.0: can't add hid device: -71
[  133.953544][ T6283] batman_adv: batadv0: Interface activated: batadv_slave_0
[  133.959705][ T5905] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  134.051697][ T5905] usb 5-1: USB disconnect, device number 4
[  134.073447][ T6283] batman_adv: batadv0: Interface activated: batadv_slave_1
[  134.144023][ T6283] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  134.181122][ T6283] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  134.218454][ T6283] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  134.256485][ T6283] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  134.723814][ T6108] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  134.769235][ T6108] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  134.969677][   T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  134.984737][ T6790] loop7: detected capacity change from 0 to 4096
[  135.003890][   T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  135.055857][ T6768] loop2: detected capacity change from 0 to 32768
[  135.157167][ T6768] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  135.187960][ T6768] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  135.271047][ T6768] XFS (loop2): Ending clean mount
[  135.307583][ T6768] XFS (loop2): Quotacheck needed: Please wait.
[  135.549007][ T6768] XFS (loop2): Quotacheck: Done.
[  135.921648][ T5835] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  136.117671][ T6821] loop3: detected capacity change from 0 to 47
[  136.234905][ T6821] syz.3.225: attempt to access beyond end of device
[  136.234905][ T6821] loop3: rw=2049, sector=48, nr_sectors = 2 limit=47
[  136.234945][ T6821] buffer_io_error: 23 callbacks suppressed
[  136.234957][ T6821] Buffer I/O error on dev loop3, logical block 24, lost async page write
[  136.235131][ T6821] syz.3.225: attempt to access beyond end of device
[  136.235131][ T6821] loop3: rw=2049, sector=50, nr_sectors = 2 limit=47
[  136.235158][ T6821] Buffer I/O error on dev loop3, logical block 25, lost async page write
[  136.235290][ T6821] syz.3.225: attempt to access beyond end of device
[  136.235290][ T6821] loop3: rw=2049, sector=52, nr_sectors = 2 limit=47
[  136.235315][ T6821] Buffer I/O error on dev loop3, logical block 26, lost async page write
[  136.235393][ T6821] syz.3.225: attempt to access beyond end of device
[  136.235393][ T6821] loop3: rw=2049, sector=54, nr_sectors = 2 limit=47
[  136.235418][ T6821] Buffer I/O error on dev loop3, logical block 27, lost async page write
[  136.281238][ T6825] netlink: 4 bytes leftover after parsing attributes in process `syz.2.224'.
[  136.558934][ T6829] loop4: detected capacity change from 0 to 512
[  136.583388][ T6830] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  136.583458][ T6830] IPv6: NLM_F_CREATE should be set when creating new route
[  136.600548][ T6829] EXT4-fs (loop4): Test dummy encryption mode enabled
[  136.600579][ T6829] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  136.609647][ T6833] loop2: detected capacity change from 0 to 256
[  136.646680][ T6829] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  136.664364][ T6833] exfat: Bad value for 'uid'
[  136.664385][ T6833] exfat: Bad value for 'uid'
[  136.693067][ T6829] EXT4-fs (loop4): 1 truncate cleaned up
[  136.719862][ T6829] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.746426][ T6833] 9pnet: p9_errstr2errno: server reported unknown error ª4Ñ:χ+»ü[³½‹,þM¹ƒŽ”01777777777777777777777
[  136.943767][ T6841] loop6: detected capacity change from 0 to 256
[  136.982102][ T5826] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.017748][ T6841] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  137.017803][ T6841] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  137.081408][ T6841] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xddfd5d26, utbl_chksum : 0xe619d30d)
[  137.689130][ T1238] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  137.839334][ T1238] usb 4-1: Using ep0 maxpacket: 16
[  137.872441][ T1238] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  138.089123][ T1238] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  138.119821][ T1238] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  138.162356][ T1238] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  138.194124][ T1238] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.227052][ T6839] loop7: detected capacity change from 0 to 32768
[  138.237288][ T1238] usb 4-1: config 0 descriptor??
[  138.953128][ T1238] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.0003/input/input8
[  139.219188][ T1238] microsoft 0003:045E:07DA.0003: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  139.331564][ T1238] usb 4-1: USB disconnect, device number 6
[  139.582613][ T6917] fido_id[6917]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  139.602072][ T6912] loop5: detected capacity change from 0 to 8192
[  139.759368][ T6922] loop7: detected capacity change from 0 to 4096
[  139.935501][ T6860] loop2: detected capacity change from 0 to 32768
[  139.961201][ T6922] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.052260][ T6860] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.237 (6860)
[  140.166422][ T6860] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  140.249198][ T6860] BTRFS info (device loop2): using sha256 (sha256-ni) checksum algorithm
[  140.269168][ T5893] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  140.323277][ T6860] BTRFS info (device loop2): using free-space-tree
[  140.489149][ T5893] usb 5-1: Using ep0 maxpacket: 32
[  140.498104][ T5893] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  140.570927][ T5893] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  140.626850][ T5893] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  140.706695][ T5893] usb 5-1: Product: syz
[  140.742844][ T6310] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.748135][ T5893] usb 5-1: Manufacturer: syz
[  140.775527][ T5893] usb 5-1: SerialNumber: syz
[  140.800488][ T6860] BTRFS error (device loop2): open_ctree failed: -4
[  140.816446][ T5893] usb 5-1: config 0 descriptor??
[  140.878094][ T6932] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  140.999351][ T6960] loop5: detected capacity change from 0 to 16
[  141.096122][ T6960] erofs (device loop5): mounted with root inode @ nid 36.
[  141.203044][ T6960] VFS: Lookup of '$' in erofs loop5 would have caused loop
[  141.306633][ T5897] usb 5-1: USB disconnect, device number 5
[  142.129523][ T6991] capability: warning: `syz.2.257' uses deprecated v2 capabilities in a way that may be insecure
[  142.286824][ T6991] loop2: detected capacity change from 0 to 512
[  142.438607][ T6991] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.549330][ T6991] ext4 filesystem being mounted at /50/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  142.977441][ T5835] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.170920][ T6976] loop6: detected capacity change from 0 to 32768
[  143.305986][ T6976] ocfs2: Slot 0 on device (7,6) was already allocated to this node!
[  143.467788][ T7019] netlink: 'syz.2.265': attribute type 1 has an invalid length.
[  143.519294][ T7019] netlink: 'syz.2.265': attribute type 4 has an invalid length.
[  143.526963][ T7019] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.265'.
[  143.611611][ T7030] netlink: 4 bytes leftover after parsing attributes in process `syz.3.269'.
[  143.677494][ T7033] syz.5.270 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  143.713104][ T7030] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  143.780877][ T6976] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  143.826432][ T7030] netdevsim netdevsim3 netdevsim0: left promiscuous mode
[  144.099267][   T30] audit: type=1800 audit(1748170883.555:7): pid=7041 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.254" name="bus" dev="loop6" ino=17059 res=0 errno=0
[  144.481818][ T6283] ocfs2: Unmounting device (7,6) on (node local)
[  144.679867][ T5895] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  144.852283][ T5895] usb 8-1: Using ep0 maxpacket: 8
[  144.880736][ T5895] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  144.920085][ T5895] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  144.992293][ T5895] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  145.076656][ T5895] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  145.115759][ T7069] syz_tun: entered allmulticast mode
[  145.129109][ T5895] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  145.154754][ T7068] syz_tun: left allmulticast mode
[  145.171844][ T5895] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  145.192208][ T5895] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  145.235822][ T7026] loop4: detected capacity change from 0 to 40427
[  145.252870][ T5895] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  145.307048][ T7026] F2FS-fs (loop4): build fault injection attr: rate: 690, type: 0x3fffff
[  145.327721][ T5895] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  145.367071][ T7026] F2FS-fs (loop4): Image doesn't support compression
[  145.413513][ T7026] F2FS-fs (loop4): Image doesn't support compression
[  145.420432][ T5895] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  145.486149][ T7026] F2FS-fs (loop4): invalid crc value
[  145.524065][ T5895] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  145.636488][ T5895] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  145.691828][   T30] audit: type=1326 audit(1748170885.155:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7078 comm="syz.3.283" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9b4058e969 code=0x0
[  145.745246][ T5895] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  145.950710][ T5895] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  145.978397][ T5895] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  146.030367][ T7026] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  146.089176][ T5895] usb 8-1: string descriptor 0 read error: -22
[  146.126574][ T5895] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  146.169402][ T7026] F2FS-fs (loop4): inject slab alloc in f2fs_alloc_inode of alloc_inode+0x6a/0x1b0
[  146.178897][ T5895] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  146.280104][ T5895] adutux 8-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  146.374426][ T5826] syz-executor: attempt to access beyond end of device
[  146.374426][ T5826] loop4: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  146.405842][ T5826] CPU: 0 UID: 0 PID: 5826 Comm: syz-executor Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  146.405866][ T5826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  146.405876][ T5826] Call Trace:
[  146.405884][ T5826]  <TASK>
[  146.405891][ T5826]  dump_stack_lvl+0x189/0x250
[  146.405925][ T5826]  ? __pfx_dump_stack_lvl+0x10/0x10
[  146.405951][ T5826]  ? __pfx_queue_work_on+0x10/0x10
[  146.405969][ T5826]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  146.405992][ T5826]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  146.406014][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.406042][ T5826]  f2fs_handle_critical_error+0x37c/0x540
[  146.406069][ T5826]  f2fs_write_end_io+0x4e2/0x6d0
[  146.406105][ T5826]  __submit_merged_bio+0x27a/0x6a0
[  146.406131][ T5826]  __submit_merged_write_cond+0x255/0x530
[  146.406156][ T5826]  f2fs_write_data_pages+0x2854/0x31f0
[  146.406208][ T5826]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  146.406228][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.406289][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.406327][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.406346][ T5826]  ? __lock_acquire+0xaac/0xd20
[  146.406379][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.406409][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.406428][ T5826]  ? do_raw_spin_unlock+0x122/0x240
[  146.406451][ T5826]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  146.406474][ T5826]  do_writepages+0x3b1/0x7b0
[  146.406512][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.406531][ T5826]  ? do_raw_spin_lock+0x121/0x290
[  146.406552][ T5826]  ? __pfx_do_writepages+0x10/0x10
[  146.406579][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.406602][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.406622][ T5826]  ? do_raw_spin_unlock+0x122/0x240
[  146.406647][ T5826]  filemap_fdatawrite+0x191/0x230
[  146.406673][ T5826]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  146.406739][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.406763][ T5826]  ? do_raw_spin_unlock+0x122/0x240
[  146.406789][ T5826]  f2fs_sync_dirty_inodes+0x31f/0x830
[  146.406826][ T5826]  f2fs_write_checkpoint+0x94a/0x1de0
[  146.406871][ T5826]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  146.406935][ T5826]  ? kill_f2fs_super+0x298/0x6c0
[  146.406964][ T5826]  kill_f2fs_super+0x2c3/0x6c0
[  146.406995][ T5826]  ? __pfx_kill_f2fs_super+0x10/0x10
[  146.407017][ T5826]  ? radix_tree_delete_item+0x2b6/0x400
[  146.407045][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.407072][ T5826]  ? shrinker_free+0x2ce/0x3e0
[  146.407104][ T5826]  deactivate_locked_super+0xbc/0x130
[  146.407132][ T5826]  cleanup_mnt+0x425/0x4c0
[  146.407154][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.407180][ T5826]  ? lockdep_hardirqs_on+0x9c/0x150
[  146.407215][ T5826]  task_work_run+0x1d4/0x260
[  146.407252][ T5826]  ? __pfx_task_work_run+0x10/0x10
[  146.407285][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.407325][ T5826]  resume_user_mode_work+0x5e/0x80
[  146.407360][ T5826]  syscall_exit_to_user_mode+0x9a/0x120
[  146.407392][ T5826]  do_syscall_64+0x103/0x210
[  146.407424][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.407450][ T5826]  ? exc_page_fault+0x91/0x110
[  146.407482][ T5826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.407505][ T5826] RIP: 0033:0x7f3b8498fc97
[  146.407526][ T5826] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  146.407544][ T5826] RSP: 002b:00007ffe3df2d9d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  146.407568][ T5826] RAX: 0000000000000000 RBX: 00007f3b84a1089d RCX: 00007f3b8498fc97
[  146.407585][ T5826] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe3df2da90
[  146.407600][ T5826] RBP: 00007ffe3df2da90 R08: 0000000000000000 R09: 0000000000000000
[  146.407615][ T5826] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe3df2eb20
[  146.407631][ T5826] R13: 00007f3b84a1089d R14: 0000000000023b52 R15: 00007ffe3df2eb60
[  146.407668][ T5826]  </TASK>
[  146.795220][   T53] usb 3-1: new low-speed USB device number 5 using dummy_hcd
[  146.844497][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  146.865225][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[  146.888682][ T5826] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  146.927627][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  146.964748][ T5826] CPU: 1 UID: 0 PID: 5826 Comm: syz-executor Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  146.964778][ T5826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  146.964790][ T5826] Call Trace:
[  146.964800][ T5826]  <TASK>
[  146.964809][ T5826]  dump_stack_lvl+0x189/0x250
[  146.964856][ T5826]  ? __pfx_dump_stack_lvl+0x10/0x10
[  146.964892][ T5826]  ? __pfx_queue_work_on+0x10/0x10
[  146.964916][ T5826]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  146.964946][ T5826]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  146.964977][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.965034][ T5826]  f2fs_handle_critical_error+0x37c/0x540
[  146.965075][ T5826]  f2fs_write_end_io+0x4e2/0x6d0
[  146.965130][ T5826]  __submit_merged_bio+0x27a/0x6a0
[  146.965168][ T5826]  __submit_merged_write_cond+0x255/0x530
[  146.965206][ T5826]  f2fs_write_data_pages+0x2854/0x31f0
[  146.965286][ T5826]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  146.965315][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.965412][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.965471][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.965498][ T5826]  ? __lock_acquire+0xaac/0xd20
[  146.965546][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.965590][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.965617][ T5826]  ? do_raw_spin_unlock+0x122/0x240
[  146.965648][ T5826]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  146.965681][ T5826]  do_writepages+0x3b1/0x7b0
[  146.965738][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.965765][ T5826]  ? do_raw_spin_lock+0x121/0x290
[  146.965793][ T5826]  ? __pfx_do_writepages+0x10/0x10
[  146.965832][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.965865][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.965892][ T5826]  ? do_raw_spin_unlock+0x122/0x240
[  146.965928][ T5826]  filemap_fdatawrite+0x191/0x230
[  146.965969][ T5826]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  146.966071][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.966106][ T5826]  ? do_raw_spin_unlock+0x122/0x240
[  146.966143][ T5826]  f2fs_sync_dirty_inodes+0x31f/0x830
[  146.966198][ T5826]  f2fs_write_checkpoint+0x94a/0x1de0
[  146.966267][ T5826]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  146.966369][ T5826]  ? kill_f2fs_super+0x298/0x6c0
[  146.966410][ T5826]  kill_f2fs_super+0x2c3/0x6c0
[  146.966453][ T5826]  ? __pfx_kill_f2fs_super+0x10/0x10
[  146.966483][ T5826]  ? radix_tree_delete_item+0x2b6/0x400
[  146.966523][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.966555][ T5826]  ? shrinker_free+0x2ce/0x3e0
[  146.966585][ T5826]  deactivate_locked_super+0xbc/0x130
[  146.966614][ T5826]  cleanup_mnt+0x425/0x4c0
[  146.966637][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.966663][ T5826]  ? lockdep_hardirqs_on+0x9c/0x150
[  146.966697][ T5826]  task_work_run+0x1d4/0x260
[  146.966736][ T5826]  ? __pfx_task_work_run+0x10/0x10
[  146.966769][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.966812][ T5826]  resume_user_mode_work+0x5e/0x80
[  146.966848][ T5826]  syscall_exit_to_user_mode+0x9a/0x120
[  146.966881][ T5826]  do_syscall_64+0x103/0x210
[  146.966915][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.966941][ T5826]  ? exc_page_fault+0x91/0x110
[  146.966973][ T5826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.966996][ T5826] RIP: 0033:0x7f3b8498fc97
[  146.967022][ T5826] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  146.967041][ T5826] RSP: 002b:00007ffe3df2d9d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  146.967065][ T5826] RAX: 0000000000000000 RBX: 00007f3b84a1089d RCX: 00007f3b8498fc97
[  146.967080][ T5826] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe3df2da90
[  146.967095][ T5826] RBP: 00007ffe3df2da90 R08: 0000000000000000 R09: 0000000000000000
[  146.967111][ T5826] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe3df2eb20
[  146.967127][ T5826] R13: 00007f3b84a1089d R14: 0000000000023b52 R15: 00007ffe3df2eb60
[  146.967169][ T5826]  </TASK>
[  147.362239][   T53] usb 3-1: config 1 has an invalid interface descriptor of length 6, skipping
[  147.371197][   T53] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  147.371778][ T5826] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  147.384087][   T53] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  147.398339][   T53] usb 3-1: config 1 has no interface number 1
[  147.526925][   T53] usb 3-1: string descriptor 0 read error: -22
[  147.533508][   T53] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  147.545618][   T53] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  147.565204][   T53] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  147.569754][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  147.595214][   T53] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  147.605545][   T53] usb 3-1: MIDIStreaming interface descriptor not found
[  147.736336][ T5893] usb 8-1: USB disconnect, device number 2
[  148.029470][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  148.038159][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  148.047141][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  148.055940][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  148.075514][ T5895] usb 3-1: USB disconnect, device number 5
[  148.325605][ T7113] veth1_to_bond: entered promiscuous mode
[  148.365162][ T7113] netlink: 4 bytes leftover after parsing attributes in process `syz.6.289'.
[  148.395637][ T7116] loop3: detected capacity change from 0 to 128
[  148.478979][ T7116] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  148.520016][ T7116] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  148.579222][ T7113] veth1_to_bond (unregistering): left promiscuous mode
[  148.791382][ T7121] netlink: 'syz.7.292': attribute type 1 has an invalid length.
[  148.899715][ T7113] bond0: (slave bond_slave_1): Releasing backup interface
[  148.942395][ T7123] loop2: detected capacity change from 0 to 128
[  148.981336][ T7117] netlink: 4 bytes leftover after parsing attributes in process `syz.5.291'.
[  149.234304][ T7128] syz.2.293: attempt to access beyond end of device
[  149.234304][ T7128] loop2: rw=2049, sector=153, nr_sectors = 8 limit=128
[  149.355634][ T7128] syz.2.293: attempt to access beyond end of device
[  149.355634][ T7128] loop2: rw=2049, sector=169, nr_sectors = 8 limit=128
[  149.365947][ T7131] loop5: detected capacity change from 0 to 512
[  149.421164][ T7131] EXT4-fs (loop5): Test dummy encryption mode enabled
[  149.421840][ T5824] UDF-fs: error (device loop3): udf_read_inode: (ino 114) failed !bh
[  149.488134][ T7131] EXT4-fs error (device loop5): ext4_iget_extra_inode:4693: inode #15: comm syz.5.295: corrupted in-inode xattr: invalid ea_ino
[  149.511606][ T7128] syz.2.293: attempt to access beyond end of device
[  149.511606][ T7128] loop2: rw=2049, sector=185, nr_sectors = 8 limit=128
[  149.598910][ T5824] UDF-fs: error (device loop3): udf_read_inode: (ino 114) failed !bh
[  149.600228][ T7128] syz.2.293: attempt to access beyond end of device
[  149.600228][ T7128] loop2: rw=2049, sector=201, nr_sectors = 8 limit=128
[  149.642047][ T7131] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.295: couldn't read orphan inode 15 (err -117)
[  149.708066][ T7131] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.819287][ T7128] syz.2.293: attempt to access beyond end of device
[  149.819287][ T7128] loop2: rw=2049, sector=217, nr_sectors = 8 limit=128
[  149.899634][ T7128] syz.2.293: attempt to access beyond end of device
[  149.899634][ T7128] loop2: rw=2049, sector=233, nr_sectors = 8 limit=128
[  149.945146][ T7144] syz.4.299 uses obsolete (PF_INET,SOCK_PACKET)
[  149.951562][ T7128] syz.2.293: attempt to access beyond end of device
[  149.951562][ T7128] loop2: rw=2049, sector=249, nr_sectors = 8 limit=128
[  150.006385][ T7128] syz.2.293: attempt to access beyond end of device
[  150.006385][ T7128] loop2: rw=2049, sector=265, nr_sectors = 8 limit=128
[  150.049369][ T7128] syz.2.293: attempt to access beyond end of device
[  150.049369][ T7128] loop2: rw=2049, sector=281, nr_sectors = 8 limit=128
[  150.223211][ T5825] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.286550][ T7135] loop6: detected capacity change from 0 to 32768
[  150.365950][ T7135] XFS (loop6): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  150.614989][ T7135] XFS (loop6): Ending clean mount
[  150.663965][ T7135] XFS (loop6): Quotacheck needed: Please wait.
[  150.670360][ T1238] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  150.814822][ T7167] loop4: detected capacity change from 0 to 1024
[  150.819641][ T7135] XFS (loop6): Quotacheck: Done.
[  150.854669][ T7167] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  150.880354][ T1238] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  150.909122][ T1238] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  150.912765][ T7167] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  150.948165][ T1238] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  151.003414][ T7167] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (53380!=20869)
[  151.015465][ T1238] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  151.049279][ T1238] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.062481][ T7167] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  151.104041][ T1238] usb 3-1: config 0 descriptor??
[  151.109653][ T7167] EXT4-fs error (device loop4): ext4_get_journal_inode:5798: comm syz.4.303: inode #1: comm syz.4.303: iget: illegal inode #
[  151.140158][ T6283] XFS (loop6): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  151.172735][ T7167] EXT4-fs (loop4): Remounting filesystem read-only
[  151.194574][ T7167] EXT4-fs (loop4): no journal found
[  151.571599][ T1238] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  151.618737][ T1238] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  151.637570][ T7179] loop7: detected capacity change from 0 to 2048
[  151.653692][ T1238] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  151.679572][ T1238] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  151.718900][   T30] audit: type=1326 audit(1748170891.175:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.4.309" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3b8498e969 code=0x0
[  151.741434][ T1238] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving
[  151.768789][ T7179] UDF-fs: error (device loop7): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  151.798804][ T1238] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  151.859377][ T7179] UDF-fs: warning (device loop7): udf_load_vrs: No anchor found
[  151.922954][ T7179] UDF-fs: Scanning with blocksize 512 failed
[  151.942492][ T1238] usb 3-1: USB disconnect, device number 6
[  152.000823][ T7179] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  152.077297][ T7187] fido_id[7187]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  152.424804][ T7195] loop5: detected capacity change from 0 to 1024
[  152.466479][ T7195] EXT4-fs: Ignoring removed nobh option
[  152.527023][ T7195] EXT4-fs: Ignoring removed bh option
[  152.681053][ T7195] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.705526][ T5829] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  152.719837][ T5829] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  152.729708][ T5829] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  152.743514][ T5829] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  152.751783][ T5829] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  152.866243][ T7195] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4113: comm syz.5.312: Allocating blocks 385-513 which overlap fs metadata
[  153.013041][ T7195] EXT4-fs (loop5): pa ffff88805510c570: logic 16, phys. 129, len 24
[  153.021493][ T7195] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  153.108026][ T7221] loop6: detected capacity change from 0 to 256
[  153.137485][ T7220] vlan2: entered promiscuous mode
[  153.170030][ T7221] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  153.170804][ T7220] bridge0: entered promiscuous mode
[  153.223409][ T7221] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  153.227628][ T7220] vlan2: entered allmulticast mode
[  153.262154][ T7220] bridge0: entered allmulticast mode
[  153.286646][ T7221] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  153.293101][ T5825] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.445194][ T7224] bridge_slave_0: left allmulticast mode
[  153.514759][ T7224] bridge_slave_0: left promiscuous mode
[  153.551367][ T7224] bridge0: port 1(bridge_slave_0) entered disabled state
[  153.636092][ T7224] bridge_slave_1: left allmulticast mode
[  153.644495][ T7224] bridge_slave_1: left promiscuous mode
[  153.691418][ T7224] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.857208][ T7224] bond0: (slave bond_slave_0): Releasing backup interface
[  153.967203][ T7224] bond0: (slave bond_slave_1): Releasing backup interface
[  154.119033][ T7248] dlm: non-version read from control device 211
[  154.133248][ T7224] team0: Port device team_slave_0 removed
[  154.147537][ T7248] dlm: non-version read from control device 211
[  154.155861][ T7208] loop2: detected capacity change from 0 to 32768
[  154.196386][ T7208] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.314 (7208)
[  154.220153][ T7248] dlm: non-version read from control device 211
[  154.248452][ T7224] team0: Port device team_slave_1 removed
[  154.278738][ T7224] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  154.306273][ T7224] batman_adv: batadv0: Removing interface: batadv_slave_0
[  154.332817][ T7224] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  154.338875][ T7208] BTRFS info (device loop2): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  154.373104][ T7224] batman_adv: batadv0: Removing interface: batadv_slave_1
[  154.375756][ T7208] BTRFS info (device loop2): using crc32c (crc32c-x86_64) checksum algorithm
[  154.461225][ T7208] BTRFS info (device loop2): using free-space-tree
[  154.839351][ T5842] Bluetooth: hci0: command tx timeout
[  154.895529][ T7276] loop4: detected capacity change from 0 to 128
[  154.962988][   T30] audit: type=1804 audit(1748170894.435:10): pid=7208 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.314" name="/newroot/60/bus/bus" dev="loop2" ino=263 res=1 errno=0
[  155.009761][ T7276] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  155.037836][ T7276] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  155.239363][ T5835] BTRFS info (device loop2): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  155.741392][   T52] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  155.915915][ T7204] chnl_net:caif_netlink_parms(): no params data found
[  156.086258][   T52] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.334456][ T7278] loop6: detected capacity change from 0 to 32768
[  156.337882][ T7292] loop7: detected capacity change from 0 to 512
[  156.365405][ T7278] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.328 (7278)
[  156.456130][ T7278] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  156.494927][   T52] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.531268][ T7292] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  156.540929][ T7278] BTRFS info (device loop6): using crc32c (crc32c-x86_64) checksum algorithm
[  156.579963][ T7278] BTRFS info (device loop6): using free-space-tree
[  156.674877][ T7292] Quota error (device loop7): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  156.689469][ T7292] Quota error (device loop7): qtree_read_dquot: Can't read quota structure for id 0
[  156.763945][ T7304] loop2: detected capacity change from 0 to 256
[  156.778001][ T7292] EXT4-fs error (device loop7): ext4_acquire_dquot:6935: comm syz.7.331: Failed to acquire dquot type 0
[  156.867535][ T7304] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0xcda38cab, utbl_chksum : 0xe619d30d)
[  156.908225][ T7292] EXT4-fs warning (device loop7): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  156.910431][   T52] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.936590][ T5842] Bluetooth: hci0: command tx timeout
[  157.135719][ T7292] EXT4-fs (loop7): 1 truncate cleaned up
[  157.172618][   T30] audit: type=1800 audit(1748170896.645:11): pid=7304 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.334" name="bus" dev="loop2" ino=1048624 res=0 errno=0
[  157.219687][ T7292] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.413905][ T6310] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.447568][ T6283] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  157.527137][ T7204] bridge0: port 1(bridge_slave_0) entered blocking state
[  157.582680][ T7204] bridge0: port 1(bridge_slave_0) entered disabled state
[  157.632615][ T7204] bridge_slave_0: entered allmulticast mode
[  157.652886][ T7204] bridge_slave_0: entered promiscuous mode
[  157.718046][ T7204] bridge0: port 2(bridge_slave_1) entered blocking state
[  157.762804][ T7204] bridge0: port 2(bridge_slave_1) entered disabled state
[  157.788891][ T7204] bridge_slave_1: entered allmulticast mode
[  157.858710][ T5829] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  157.870275][ T5829] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  157.876721][ T7204] bridge_slave_1: entered promiscuous mode
[  157.891063][ T5829] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  157.916424][ T5829] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  157.939388][ T5829] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  158.421202][ T7204] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  158.670429][ T7204] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  158.989935][ T7204] team0: Port device team_slave_0 added
[  159.035844][ T7360] loop7: detected capacity change from 0 to 32768
[  159.051170][ T5829] Bluetooth: hci0: command tx timeout
[  159.073767][ T7360] XFS (loop7): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  159.140981][ T7204] team0: Port device team_slave_1 added
[  159.276239][ T7360] XFS (loop7): Ending clean mount
[  159.328651][ T7360] XFS (loop7): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xe0, xfs_bnobt block 0x8 
[  159.340036][ T7360] XFS (loop7): Unmount and run xfs_repair
[  159.345774][ T7360] XFS (loop7): First 128 bytes of corrupted metadata buffer:
[  159.353234][ T7360] 00000000: 41 42 33 42 00 00 00 03 ff ff ff ff ff ff ff ff  AB3B............
[  159.364192][ T7360] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 40  ...............@
[  159.373305][ T7360] 00000020: 9f 1c ad 42 11 bd 4e 12 8f 0b f0 78 76 b8 1d 9a  ...B..N....xv...
[  159.382227][ T7360] 00000030: 00 00 00 00 72 89 6f 7a 00 00 00 06 00 00 00 02  ....r.oz........
[  159.391218][ T7360] 00000040: 00 00 05 9a 00 00 00 06 00 00 05 b0 00 00 0a 50  ...............P
[  159.400238][ T7360] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  159.409123][ T7360] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  159.418058][ T7360] 00000070: 00 00 00 00 00 00 00 00 00 07 00 00 00 00 00 00  ................
[  159.427794][ T7360] XFS (loop7): metadata I/O error in "xfs_btree_read_buf_block+0x290/0x470" at daddr 0x8 len 8 error 74
[  159.440020][ T7360] XFS (loop7): page discard on page ffffea00014e3cc0, inode 0x1686, pos 24576.
[  159.503946][ T7369] XFS (loop7): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xe0, xfs_bnobt block 0x8 
[  159.536425][ T7369] XFS (loop7): Unmount and run xfs_repair
[  159.546607][ T7369] XFS (loop7): First 128 bytes of corrupted metadata buffer:
[  159.598032][ T7369] 00000000: 41 42 33 42 00 00 00 03 ff ff ff ff ff ff ff ff  AB3B............
[  159.601048][   T52] bridge_slave_1: left allmulticast mode
[  159.632584][ T7369] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 40  ...............@
[  159.652386][ T7369] 00000020: 9f 1c ad 42 11 bd 4e 12 8f 0b f0 78 76 b8 1d 9a  ...B..N....xv...
[  159.655877][   T52] bridge_slave_1: left promiscuous mode
[  159.666664][ T7369] 00000030: 00 00 00 00 72 89 6f 7a 00 00 00 06 00 00 00 02  ....r.oz........
[  159.676449][ T7369] 00000040: 00 00 05 9a 00 00 00 06 00 00 05 b0 00 00 0a 50  ...............P
[  159.686657][ T7369] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  159.716128][ T7374] IPv4: Oversized IP packet from 127.202.26.0
[  159.719688][   T52] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.749290][ T7369] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  159.769562][   T52] bridge_slave_0: left allmulticast mode
[  159.775224][   T52] bridge_slave_0: left promiscuous mode
[  159.789296][   T52] bridge0: port 1(bridge_slave_0) entered disabled state
[  159.794529][ T7369] 00000070: 00 00 00 00 00 00 00 00 00 07 00 00 00 00 00 00  ................
[  159.850607][ T7369] XFS (loop7): metadata I/O error in "xfs_btree_read_buf_block+0x290/0x470" at daddr 0x8 len 8 error 74
[  159.907830][ T7369] XFS (loop7): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x517/0x8e0 (fs/xfs/xfs_trans_buf.c:311).  Shutting down filesystem.
[  159.963943][ T7369] XFS (loop7): Please unmount the filesystem and rectify the problem(s)
[  160.042576][ T5829] Bluetooth: hci1: command tx timeout
[  160.112399][ T6310] XFS (loop7): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  160.527663][ T5842] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  160.535408][ T5842] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  160.536115][ T5842] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  160.537425][ T5842] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  160.538127][ T5842] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  160.845454][ T7391] netlink: 12 bytes leftover after parsing attributes in process `syz.7.350'.
[  160.994955][   T52] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  161.009505][   T52] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  161.019863][   T52] bond0 (unregistering): Released all slaves
[  161.051894][ T7204] batman_adv: batadv0: Adding interface: batadv_slave_0
[  161.059025][ T7204] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  161.101209][ T5842] Bluetooth: hci0: command tx timeout
[  161.106955][ T7204] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  161.120285][ T7204] batman_adv: batadv0: Adding interface: batadv_slave_1
[  161.127295][ T7204] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  161.153525][ T7204] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  161.428727][ T7403] loop6: detected capacity change from 0 to 16
[  161.469256][ T7403] erofs (device loop6): mounted with root inode @ nid 36.
[  161.511286][ T7204] hsr_slave_0: entered promiscuous mode
[  161.517716][ T7204] hsr_slave_1: entered promiscuous mode
[  161.541273][ T7204] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  161.549011][ T7204] Cannot create hsr debugfs directory
[  161.733234][   T52] hsr_slave_0: left promiscuous mode
[  161.760632][   T52] hsr_slave_1: left promiscuous mode
[  161.772612][ T7409] loop4: detected capacity change from 0 to 256
[  161.778079][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  161.787562][   T52] batman_adv: batadv0: Removing interface: batadv_slave_0
[  161.807847][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  161.818782][   T52] batman_adv: batadv0: Removing interface: batadv_slave_1
[  161.881743][   T52] veth1_macvtap: left promiscuous mode
[  161.888535][   T52] veth0_macvtap: left promiscuous mode
[  161.900382][   T52] veth1_vlan: left promiscuous mode
[  161.905727][   T52] veth0_vlan: left promiscuous mode
[  161.978364][ T7411] loop6: detected capacity change from 0 to 1024
[  162.029841][ T5905] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  162.074353][ T7411] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  162.088813][ T7411] ext4 filesystem being mounted at /24/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  162.119380][ T5842] Bluetooth: hci1: command tx timeout
[  162.157031][ T7411] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.360: bg 0: block 393: padding at end of block bitmap is not set
[  162.249837][ T5905] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  162.262346][ T5905] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  162.275404][ T6896] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[  162.283460][ T5905] usb 5-1: config 0 descriptor??
[  162.305463][ T6896] EXT4-fs (loop6): This should not happen!! Data will be lost
[  162.305463][ T6896] 
[  162.305966][ T5905] cp210x 5-1:0.0: cp210x converter detected
[  162.320618][ T6896] EXT4-fs (loop6): Total free blocks count 0
[  162.340996][ T6896] EXT4-fs (loop6): Free/Dirty block details
[  162.347574][ T6896] EXT4-fs (loop6): free_blocks=0
[  162.358771][ T6896] EXT4-fs (loop6): dirty_blocks=16
[  162.398026][ T6896] EXT4-fs (loop6): Block reservation details
[  162.407931][ T6896] EXT4-fs (loop6): i_reserved_data_blocks=1
[  162.452653][ T6283] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.601563][ T5842] Bluetooth: hci2: command tx timeout
[  162.720540][ T5905] cp210x 5-1:0.0: failed to get vendor val 0x0010 size 3: -32
[  162.760309][ T5905] usb 5-1: cp210x converter now attached to ttyUSB0
[  162.804270][ T7421] vivid-000: disconnect
[  162.952257][ T5905] usb 5-1: USB disconnect, device number 6
[  163.007129][ T5905] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  163.369793][ T5905] cp210x 5-1:0.0: device disconnected
[  163.399276][ T5895] vivid-000: reconnect
[  163.764680][   T52] team0 (unregistering): Port device team_slave_1 removed
[  163.953131][   T52] team0 (unregistering): Port device team_slave_0 removed
[  163.975684][ T7434] netlink: 12 bytes leftover after parsing attributes in process `syz.6.368'.
[  164.199578][ T5842] Bluetooth: hci1: command tx timeout
[  164.497318][ T7440] cgroup: fork rejected by pids controller in /syz6
[  164.559180][ T5905] usb 7-1: new full-speed USB device number 2 using dummy_hcd
[  164.680071][ T5842] Bluetooth: hci2: command tx timeout
[  164.770110][ T5905] usb 7-1: config 0 has no interfaces?
[  164.828080][ T5905] usb 7-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[  164.838921][ T7711] loop4: detected capacity change from 0 to 2048
[  164.851520][ T5905] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  164.860309][ T5905] usb 7-1: Product: syz
[  164.871142][ T5905] usb 7-1: Manufacturer: syz
[  164.885367][ T5905] usb 7-1: SerialNumber: syz
[  164.907490][ T7733] Bluetooth: MGMT ver 1.23
[  164.918700][ T5905] usb 7-1: config 0 descriptor??
[  164.948068][ T7775] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  165.148687][ T7775] NILFS (loop4): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  165.179106][ T7775] NILFS error (device loop4): nilfs_bmap_propagate: broken bmap (inode number=4)
[  165.216815][ T7775] Remounting filesystem read-only
[  165.790512][ T8206] loop4: detected capacity change from 0 to 8192
[  166.279776][ T5842] Bluetooth: hci1: command tx timeout
[  166.466906][ T7339] chnl_net:caif_netlink_parms(): no params data found
[  166.647773][ T9333] loop7: detected capacity change from 0 to 4096
[  166.681304][ T9333] ntfs3(loop7): Different NTFS sector size (1024) and media sector size (512).
[  166.763714][ T5842] Bluetooth: hci2: command tx timeout
[  167.383065][   T53] usb 7-1: USB disconnect, device number 2
[  167.419640][ T5895] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  167.476347][T10180] netlink: 240 bytes leftover after parsing attributes in process `syz.7.384'.
[  167.589112][ T5895] usb 5-1: Using ep0 maxpacket: 32
[  167.610315][ T5895] usb 5-1: config 0 has an invalid interface number: 51 but max is 0
[  167.618598][ T5895] usb 5-1: config 0 has no interface number 0
[  167.657219][ T5895] usb 5-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  167.682401][ T5895] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  167.708449][ T5895] usb 5-1: Product: syz
[  167.723360][ T5895] usb 5-1: Manufacturer: syz
[  167.727977][ T5895] usb 5-1: SerialNumber: syz
[  167.815895][ T5895] usb 5-1: config 0 descriptor??
[  167.873350][ T5895] quatech2 5-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  167.888968][ T7339] bridge0: port 1(bridge_slave_0) entered blocking state
[  167.904012][ T7339] bridge0: port 1(bridge_slave_0) entered disabled state
[  167.927092][ T7339] bridge_slave_0: entered allmulticast mode
[  167.938521][ T7339] bridge_slave_0: entered promiscuous mode
[  168.023063][ T7339] bridge0: port 2(bridge_slave_1) entered blocking state
[  168.049706][ T7339] bridge0: port 2(bridge_slave_1) entered disabled state
[  168.057077][ T7339] bridge_slave_1: entered allmulticast mode
[  168.069366][ T5895] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  168.114550][ T7339] bridge_slave_1: entered promiscuous mode
[  168.121462][ T5895] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  168.314603][    C0] quatech-serial ttyUSB0: qt2_process_read_urb - unsupported command 6
[  168.540727][    C0] usb 5-1: qt2_read_bulk_callback - non-zero urb status: -71
[  168.551628][ T5897] usb 5-1: USB disconnect, device number 7
[  168.568286][ T5897] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  168.626371][   T52] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.630773][ T5897] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  168.658407][ T5897] quatech2 5-1:0.51: device disconnected
[  168.727527][ T7339] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  168.784091][ T7339] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  168.850985][ T5842] Bluetooth: hci2: command tx timeout
[  168.874703][   T52] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  169.033191][ T7386] chnl_net:caif_netlink_parms(): no params data found
[  169.099908][ T7339] team0: Port device team_slave_0 added
[  169.116702][ T7204] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  169.215270][   T52] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  169.237739][ T7339] team0: Port device team_slave_1 added
[  169.250788][ T7204] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  169.370018][   T52] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  169.412896][ T7204] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  169.588142][ T7339] batman_adv: batadv0: Adding interface: batadv_slave_0
[  169.591965][T10210] loop7: detected capacity change from 0 to 32768
[  169.611541][T10210] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.391 (10210)
[  169.616567][ T7339] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  169.650495][ T7339] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  169.664721][ T7204] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  169.706833][T10210] BTRFS info (device loop7): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  169.744635][T10210] BTRFS info (device loop7): using sha256 (sha256-ni) checksum algorithm
[  169.754372][ T7339] batman_adv: batadv0: Adding interface: batadv_slave_1
[  169.761695][ T7339] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  169.774453][T10210] BTRFS info (device loop7): disk space caching is enabled
[  169.787661][ T7339] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  169.828342][T10210] BTRFS warning (device loop7): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  169.956885][ T7339] hsr_slave_0: entered promiscuous mode
[  169.970754][ T7339] hsr_slave_1: entered promiscuous mode
[  169.977212][ T7339] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  169.988759][ T7339] Cannot create hsr debugfs directory
[  170.024317][T10210] BTRFS info (device loop7): rebuilding free space tree
[  170.106576][T10210] BTRFS info (device loop7): disabling free space tree
[  170.118637][T10219] loop4: detected capacity change from 0 to 32768
[  170.125411][T10210] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  170.147274][T10210] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  170.240835][   T30] audit: type=1800 audit(1748170909.715:12): pid=10210 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.391" name="file1" dev="loop7" ino=261 res=0 errno=0
[  170.269951][T10219] ocfs2: Mounting device (7,4) on (node local, slot 0) with writeback data mode.
[  170.386901][   T30] audit: type=1800 audit(1748170909.855:13): pid=10219 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.394" name="file1" dev="loop4" ino=17058 res=0 errno=0
[  170.535997][ T6310] BTRFS info (device loop7): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  170.594370][ T7386] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.628591][ T5826] ocfs2: Unmounting device (7,4) on (node local)
[  170.647694][ T7386] bridge0: port 1(bridge_slave_0) entered disabled state
[  170.681003][ T7386] bridge_slave_0: entered allmulticast mode
[  170.709411][ T7386] bridge_slave_0: entered promiscuous mode
[  170.950733][ T7386] bridge0: port 2(bridge_slave_1) entered blocking state
[  170.962670][ T7386] bridge0: port 2(bridge_slave_1) entered disabled state
[  170.988128][ T7386] bridge_slave_1: entered allmulticast mode
[  171.026502][ T7386] bridge_slave_1: entered promiscuous mode
[  171.399446][ T5897] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  171.477286][ T7386] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  171.620906][ T5897] usb 5-1: Using ep0 maxpacket: 8
[  172.004528][ T5897] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  172.043084][   T52] bridge_slave_1: left allmulticast mode
[  172.051150][ T5897] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  172.062490][   T52] bridge_slave_1: left promiscuous mode
[  172.062704][   T52] bridge0: port 2(bridge_slave_1) entered disabled state
[  172.099134][ T5897] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  172.123451][   T52] bridge_slave_0: left allmulticast mode
[  172.131484][ T5897] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  172.149727][   T52] bridge_slave_0: left promiscuous mode
[  172.165681][   T52] bridge0: port 1(bridge_slave_0) entered disabled state
[  172.169091][ T5897] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  172.203307][ T5897] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  172.240049][ T5897] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  172.298614][ T5897] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  172.333701][ T5897] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  172.369458][ T5897] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  172.412624][ T5897] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  172.451880][ T5897] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  172.495844][ T5897] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  172.529470][ T5897] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  172.548094][ T5897] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  172.594484][ T5897] usb 5-1: string descriptor 0 read error: -22
[  172.601364][ T5897] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  172.625034][ T5897] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  172.715768][ T5897] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  172.953856][   T52] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  172.966939][   T52] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  172.985494][   T52] bond0 (unregistering): Released all slaves
[  173.014797][ T7386] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  173.118569][ T5893] usb 5-1: USB disconnect, device number 8
[  173.215489][ T7386] team0: Port device team_slave_0 added
[  173.258036][ T7386] team0: Port device team_slave_1 added
[  173.382996][ T7386] batman_adv: batadv0: Adding interface: batadv_slave_0
[  173.392146][ T7386] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  173.423868][ T7386] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  173.488129][   T52] hsr_slave_0: left promiscuous mode
[  173.495716][   T52] hsr_slave_1: left promiscuous mode
[  173.510742][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  173.518215][   T52] batman_adv: batadv0: Removing interface: batadv_slave_0
[  173.526507][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  173.534138][   T52] batman_adv: batadv0: Removing interface: batadv_slave_1
[  173.553884][   T52] veth1_macvtap: left promiscuous mode
[  173.559745][   T52] veth0_macvtap: left promiscuous mode
[  173.565348][   T52] veth1_vlan: left promiscuous mode
[  173.570968][   T52] veth0_vlan: left promiscuous mode
[  174.187598][T10275] loop6: detected capacity change from 0 to 512
[  174.219131][   T53] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  174.256444][T10275] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.319816][   T52] team0 (unregistering): Port device team_slave_1 removed
[  174.339206][T10275] ext4 filesystem being mounted at /35/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  174.382027][   T53] usb 8-1: Using ep0 maxpacket: 32
[  174.420631][   T53] usb 8-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  174.432505][   T53] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  174.446480][   T53] usb 8-1: config 0 descriptor??
[  174.473426][   T53] gspca_main: nw80x-2.14.0 probing 055f:d001
[  174.502256][   T52] team0 (unregistering): Port device team_slave_0 removed
[  174.536250][ T6283] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.799140][ T5905] usb 5-1: new full-speed USB device number 9 using dummy_hcd
[  174.901798][ T1238] usb 7-1: new full-speed USB device number 3 using dummy_hcd
[  174.983614][ T5905] usb 5-1: config 0 has no interfaces?
[  174.992362][ T5905] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.04
[  175.003378][ T5905] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  175.011864][ T5905] usb 5-1: Product: syz
[  175.016083][ T5905] usb 5-1: SerialNumber: syz
[  175.033851][ T5905] usb 5-1: config 0 descriptor??
[  175.071574][ T1238] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  175.083121][ T1238] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  175.097832][ T1238] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  175.117034][ T1238] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  175.147208][ T1238] usb 7-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  175.159698][ T1238] usb 7-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  175.168054][ T1238] usb 7-1: Manufacturer: syz
[  175.178500][ T1238] usb 7-1: config 0 descriptor??
[  175.256943][ T5908] usb 5-1: USB disconnect, device number 9
[  175.276087][ T7386] batman_adv: batadv0: Adding interface: batadv_slave_1
[  175.284686][ T7386] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  175.317763][ T7386] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  175.548667][ T7386] hsr_slave_0: entered promiscuous mode
[  175.554713][ T1238] rc_core: IR keymap rc-hauppauge not found
[  175.563684][ T1238] Registered IR keymap rc-empty
[  175.584757][ T1238] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  175.593835][ T7386] hsr_slave_1: entered promiscuous mode
[  175.601015][ T7386] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  175.615861][ T7386] Cannot create hsr debugfs directory
[  175.629584][ T1238] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  175.657750][ T1238] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/rc/rc0
[  175.675336][ T1238] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/rc/rc0/input9
[  175.738268][ T1238] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  175.809417][ T1238] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  175.829357][ T1238] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  175.864495][ T1238] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  175.925640][ T1238] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  175.935811][ T5908] usb 8-1: USB disconnect, device number 3
[  175.979892][ T1238] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  176.031798][ T1238] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  176.089206][ T1238] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  176.129592][ T1238] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  176.154360][ T1238] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  176.186196][ T1238] mceusb 7-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  176.227731][ T7204] 8021q: adding VLAN 0 to HW filter on device bond0
[  176.247972][ T1238] mceusb 7-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  176.582018][ T7204] 8021q: adding VLAN 0 to HW filter on device team0
[  176.674027][ T6892] bridge0: port 1(bridge_slave_0) entered blocking state
[  176.681288][ T6892] bridge0: port 1(bridge_slave_0) entered forwarding state
[  176.728710][ T7339] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  176.754950][ T7339] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  176.783727][ T7339] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  176.833527][ T6900] bridge0: port 2(bridge_slave_1) entered blocking state
[  176.840748][ T6900] bridge0: port 2(bridge_slave_1) entered forwarding state
[  176.877191][ T7339] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  177.275068][ T7386] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  177.333457][ T7386] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  177.365636][ T7386] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  177.418040][ T7386] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  177.699929][T10327] loop7: detected capacity change from 0 to 128
[  177.731263][T10327] vfat: Unknown parameter '/dev/cpu/#/msr'
[  177.801460][ T5908] usb 7-1: USB disconnect, device number 3
[  177.913808][ T7339] 8021q: adding VLAN 0 to HW filter on device bond0
[  178.077515][ T7386] 8021q: adding VLAN 0 to HW filter on device bond0
[  178.122529][T10336] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  178.172835][ T7339] 8021q: adding VLAN 0 to HW filter on device team0
[  178.242797][ T7386] 8021q: adding VLAN 0 to HW filter on device team0
[  178.342169][   T64] bridge0: port 1(bridge_slave_0) entered blocking state
[  178.349347][   T64] bridge0: port 1(bridge_slave_0) entered forwarding state
[  178.446728][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  178.453938][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  178.493554][T10343] loop7: detected capacity change from 0 to 1024
[  178.515719][T10343] EXT4-fs: Ignoring removed orlov option
[  178.529528][T10343] EXT4-fs: Ignoring removed nomblk_io_submit option
[  178.564734][ T6892] bridge0: port 1(bridge_slave_0) entered blocking state
[  178.571941][ T6892] bridge0: port 1(bridge_slave_0) entered forwarding state
[  178.586911][T10343] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  178.714453][ T6898] bridge0: port 2(bridge_slave_1) entered blocking state
[  178.721843][ T6898] bridge0: port 2(bridge_slave_1) entered forwarding state
[  178.876507][ T7204] 8021q: adding VLAN 0 to HW filter on device batadv0
[  178.948737][T10334] loop6: detected capacity change from 0 to 32768
[  178.975472][ T6310] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.215506][T10334] ERROR: (device loop6): diRead: i_ino != di_number
[  179.215506][T10334] 
[  179.259206][T10334] ERROR: (device loop6): remounting filesystem as read-only
[  179.343072][T10361] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN NOPTI
[  179.355192][T10361] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[  179.363801][T10361] CPU: 0 UID: 0 PID: 10361 Comm: syz.6.415 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  179.375778][T10361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  179.385829][T10361] RIP: 0010:metapage_write_folio+0xa8/0xca0
[  179.391734][T10361] Code: e8 9d ac 83 fe 4d 8d 74 24 18 4c 89 f0 48 c1 e8 03 42 80 3c 38 00 74 08 4c 89 f7 e8 a2 a7 e5 fe 4d 8b 36 4c 89 f0 48 c1 e8 03 <42> 80 3c 38 00 74 08 4c 89 f7 e8 89 a7 e5 fe 49 8b 1e 4d 8d 74 24
[  179.411369][T10361] RSP: 0018:ffffc9000526f340 EFLAGS: 00010256
[  179.417434][T10361] RAX: 0000000000000000 RBX: 1ffffd40001799b6 RCX: 0000000000080000
[  179.425401][T10361] RDX: ffffc9000c5aa000 RSI: 0000000000001403 RDI: 0000000000001404
[  179.433367][T10361] RBP: ffffc9000526f450 R08: ffffea0000bccdb7 R09: 1ffffd40001799b6
[  179.441341][T10361] R10: dffffc0000000000 R11: fffff940001799b7 R12: ffffea0000bccd80
[  179.449340][T10361] R13: 0000000000000082 R14: 0000000000000000 R15: dffffc0000000000
[  179.457308][T10361] FS:  00007f40265566c0(0000) GS:ffff8881260c2000(0000) knlGS:0000000000000000
[  179.466236][T10361] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  179.472827][T10361] CR2: 00005587958bf0a0 CR3: 00000000542c4000 CR4: 0000000000350ef0
[  179.480803][T10361] Call Trace:
[  179.484079][T10361]  <TASK>
[  179.487124][T10361]  ? srso_alias_return_thunk+0x5/0xfbef5
[  179.492851][T10361]  ? folio_clear_dirty_for_io+0x1cc/0x8c0
[  179.498586][T10361]  ? __pfx_metapage_write_folio+0x10/0x10
[  179.504312][T10361]  ? __lock_acquire+0xaac/0xd20
[  179.509170][T10361]  ? srso_alias_return_thunk+0x5/0xfbef5
[  179.514889][T10361]  ? folio_wait_writeback+0xd1/0x100
[  179.520178][T10361]  metapage_write_one+0x244/0x440
[  179.525206][T10361]  ? __pfx_metapage_write_one+0x10/0x10
[  179.530777][T10361]  ? srso_alias_return_thunk+0x5/0xfbef5
[  179.536408][T10361]  ? folio_mapping+0x16f/0x240
[  179.541171][T10361]  ? srso_alias_return_thunk+0x5/0xfbef5
[  179.546802][T10361]  force_metapage+0x1a7/0x360
[  179.551482][T10361]  txCommit+0x4c05/0x5430
[  179.555829][T10361]  ? __pfx_txCommit+0x10/0x10
[  179.560549][T10361]  diAllocAG+0x1770/0x1df0
[  179.565133][T10361]  ? __pfx_diAllocAG+0x10/0x10
[  179.569933][T10361]  ? srso_alias_return_thunk+0x5/0xfbef5
[  179.575603][T10361]  ? dbNextAG+0x52e/0x640
[  179.579933][T10361]  ? do_raw_spin_lock+0x121/0x290
[  179.584975][T10361]  diAlloc+0x1d5/0x1680
[  179.589139][T10361]  ? srso_alias_return_thunk+0x5/0xfbef5
[  179.594775][T10361]  ? do_raw_spin_unlock+0x122/0x240
[  179.600057][T10361]  ? srso_alias_return_thunk+0x5/0xfbef5
[  179.605689][T10361]  ? srso_alias_return_thunk+0x5/0xfbef5
[  179.611320][T10361]  ? new_inode+0x150/0x170
[  179.616143][T10361]  ialloc+0x8c/0x8f0
[  179.620055][T10361]  jfs_mkdir+0x193/0xa70
[  179.624352][T10361]  ? __pfx_jfs_mkdir+0x10/0x10
[  179.629142][T10361]  ? srso_alias_return_thunk+0x5/0xfbef5
[  179.634809][T10361]  ? generic_permission+0x2e5/0x690
[  179.640050][T10361]  ? srso_alias_return_thunk+0x5/0xfbef5
[  179.645685][T10361]  ? inode_permission+0xf8/0x490
[  179.650626][T10361]  ? srso_alias_return_thunk+0x5/0xfbef5
[  179.656255][T10361]  ? srso_alias_return_thunk+0x5/0xfbef5
[  179.661995][T10361]  vfs_mkdir+0x306/0x510
[  179.666243][T10361]  do_mkdirat+0x247/0x590
[  179.670573][T10361]  ? __pfx_do_mkdirat+0x10/0x10
[  179.675464][T10361]  ? getname_flags+0x1e5/0x540
[  179.680255][T10361]  __x64_sys_mkdirat+0x87/0xa0
[  179.685020][T10361]  do_syscall_64+0xf6/0x210
[  179.689550][T10361]  ? srso_alias_return_thunk+0x5/0xfbef5
[  179.695178][T10361]  ? exc_page_fault+0x91/0x110
[  179.699944][T10361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.705831][T10361] RIP: 0033:0x7f402578d1d7
[  179.710328][T10361] Code: 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.730038][T10361] RSP: 002b:00007f4026555e68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  179.738473][T10361] RAX: ffffffffffffffda RBX: 00007f4026555ef0 RCX: 00007f402578d1d7
[  179.746444][T10361] RDX: 00000000000001ff RSI: 0000200000000240 RDI: 00000000ffffff9c
[  179.754408][T10361] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  179.762374][T10361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000240
[  179.770337][T10361] R13: 00007f4026555eb0 R14: 0000000000000000 R15: 0000000000000000
[  179.778419][T10361]  </TASK>
[  179.781431][T10361] Modules linked in:
[  179.786598][T10361] ---[ end trace 0000000000000000 ]---
[  179.876986][T10368] loop7: detected capacity change from 0 to 1024
[  179.898112][T10361] RIP: 0010:metapage_write_folio+0xa8/0xca0
[  179.955295][T10368] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  179.994830][T10361] Code: e8 9d ac 83 fe 4d 8d 74 24 18 4c 89 f0 48 c1 e8 03 42 80 3c 38 00 74 08 4c 89 f7 e8 a2 a7 e5 fe 4d 8b 36 4c 89 f0 48 c1 e8 03 <42> 80 3c 38 00 74 08 4c 89 f7 e8 89 a7 e5 fe 49 8b 1e 4d 8d 74 24
[  180.072510][ T7339] 8021q: adding VLAN 0 to HW filter on device batadv0
[  180.079500][T10361] RSP: 0018:ffffc9000526f340 EFLAGS: 00010256
[  180.103458][T10368] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  180.113417][T10361] RAX: 0000000000000000 RBX: 1ffffd40001799b6 RCX: 0000000000080000
[  180.161170][T10361] RDX: ffffc9000c5aa000 RSI: 0000000000001403 RDI: 0000000000001404
[  180.190319][T10361] RBP: ffffc9000526f450 R08: ffffea0000bccdb7 R09: 1ffffd40001799b6
[  180.212489][T10361] R10: dffffc0000000000 R11: fffff940001799b7 R12: ffffea0000bccd80
[  180.234970][T10361] R13: 0000000000000082 R14: 0000000000000000 R15: dffffc0000000000
[  180.264851][T10361] FS:  00007f40265566c0(0000) GS:ffff8881260c2000(0000) knlGS:0000000000000000
[  180.266193][ T7386] 8021q: adding VLAN 0 to HW filter on device batadv0
[  180.293075][T10361] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  180.303771][ T6310] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.316601][T10361] CR2: 00007f9bfba7fe9c CR3: 00000000542c4000 CR4: 0000000000350ef0
[  180.356454][T10361] Kernel panic - not syncing: Fatal exception
[  180.362840][T10361] Kernel Offset: disabled
[  180.367172][T10361] Rebooting in 86400 seconds..