last executing test programs:

5.112918177s ago: executing program 1 (id=547):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080))
fstat(0xffffffffffffffff, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x0, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], 0x0}, 0x90)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
socket(0x200000000000011, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x18, 0x3, &(0x7f0000001300)=ANY=[], &(0x7f0000000240)='GPL\x00'}, 0x90)
setsockopt$bt_hci_HCI_DATA_DIR(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000000), 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000240)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
socket$inet(0x2, 0x80000, 0x4)
ioctl$TCFLSH(r0, 0x400455c8, 0x4)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x33)

4.907862074s ago: executing program 0 (id=551):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'sit0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@ipv6_newnexthop={0x34, 0x68, 0x1, 0x0, 0x0, {0x2}, [@NHA_ENCAP={0xc, 0x8, 0x0, 0x1, @LWTUNNEL_IP_SRC={0x8, 0x3, @multicast2}}, @NHA_ID={0x8, 0x6}, @NHA_OIF={0x8, 0x5, r1}]}, 0x34}}, 0x0)

4.752092219s ago: executing program 0 (id=552):
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000180)={&(0x7f0000000140)})
syz_open_dev$tty1(0xc, 0x4, 0x1)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x2000, 0x61)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0xae)
r5 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000000)='veth1_virt_wifi\x00', 0x10)
connect$inet6(r5, &(0x7f0000004540)={0xa, 0x0, 0x0, @mcast2}, 0x1c)
sendmmsg$inet6(r5, &(0x7f0000000100), 0x40000c4, 0x0)
r6 = syz_open_dev$dri(&(0x7f00000001c0), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_RMFB(r6, 0xc00464af, &(0x7f00000002c0))
r7 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r7, &(0x7f0000000000)={0xa, 0x0, @private}, 0x5f)

4.727474349s ago: executing program 4 (id=553):
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/igmp\x00')
preadv(r0, &(0x7f0000000040)=[{&(0x7f0000002100)=""/4096, 0x1000}], 0x1, 0x3c, 0x0)

3.753558494s ago: executing program 0 (id=555):
r0 = syz_open_dev$vim2m(&(0x7f0000000040), 0x3, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r0, 0xc02c564a, &(0x7f0000000280)={0x0, 0x42474752, 0x0, @stepwise})

3.719333059s ago: executing program 4 (id=556):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f00000024c0)={&(0x7f0000000b00)=@ipv4_delrule={0x24, 0x21, 0x1, 0x0, 0x0, {}, [@FRA_GENERIC_POLICY=@FRA_SUPPRESS_IFGROUP={0x8}]}, 0x24}}, 0x0)

3.614451125s ago: executing program 0 (id=558):
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f00000000c0)='./file3\x00', 0x0, &(0x7f0000005700)=ANY=[@ANYBLOB="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"], 0x1, 0x550f, &(0x7f00000001c0)="$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")
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000280)='./file1/file0\x00', r0, &(0x7f0000000380)='./file1\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x100002, 0x0)
write$cgroup_int(r1, &(0x7f0000000680), 0x12)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000200)='./bus\x00', 0x100000, &(0x7f0000000200)=ANY=[], 0x1, 0x0, 0x0)
unlink(&(0x7f00000001c0)='./file1\x00')

3.574561951s ago: executing program 4 (id=559):
r0 = syz_mount_image$minix(&(0x7f0000000040), &(0x7f0000000140)='./bus\x00', 0x4042, &(0x7f0000000540)=ANY=[], 0xd, 0x1a4, &(0x7f0000000640)="$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")
setsockopt$inet_mreq(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000fc0)={@initdev={0xac, 0x1e, 0x0, 0x0}, @empty}, 0x8)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
syz_emit_ethernet(0x36, 0x0, 0x0)
sched_setaffinity(0x0, 0xffffffffffffffca, &(0x7f0000000040)=0x10001)
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fcntl$lock(r5, 0x11, &(0x7f0000000140))
write$uinput_user_dev(r3, &(0x7f00000010c0)={'syz0\x00', {0x0, 0x9, 0x0, 0x80}, 0x18, [0x0, 0x1000, 0x7, 0x5, 0x10ac, 0x2, 0x8, 0x247, 0x80000000, 0x0, 0x1, 0x4, 0x5a, 0x5, 0x2, 0x95, 0x6, 0x15a79643, 0x4816, 0x3ff, 0x8, 0x9, 0x100, 0x7, 0x8, 0x9, 0x1000, 0x5, 0x2, 0x1, 0x401, 0x5, 0x0, 0x7fff, 0xc62, 0xfffffffe, 0x6, 0x40, 0x1000, 0x9, 0x7, 0x5, 0x7, 0x20, 0x9, 0x80000001, 0x4d4e, 0x4, 0xcd840, 0x3, 0x81, 0x4, 0x1, 0x9, 0x22, 0xb825, 0x3f, 0x9, 0x3, 0x2, 0x0, 0x40, 0x3f, 0x7fffffff], [0x401, 0x3, 0xfe, 0x4, 0xd39, 0x3b, 0x4, 0x6, 0x1000, 0x80, 0x7fffffff, 0x51d, 0x3, 0x9, 0x80000000, 0x7, 0x4, 0x10000, 0x2, 0x7, 0x7fff, 0x1b1d1a34, 0x8, 0x9, 0x5, 0x80, 0x0, 0xfff, 0x2, 0x6c, 0x9, 0x5727, 0x9, 0x101, 0x7ff, 0x2, 0x36, 0x3, 0x1a, 0x800, 0x6, 0x5198, 0x80, 0x7, 0x7f, 0x10001, 0x7fffffff, 0x3ff, 0x1, 0x4, 0x5, 0x6, 0x839a, 0x7ff, 0xc01, 0xfffffffe, 0xf3, 0x7, 0x400, 0x6, 0xffff0000, 0x3, 0x8, 0xfffff15c], [0x800, 0x9, 0x8, 0x1f, 0x8000, 0x81, 0x1000, 0x2, 0x8, 0x100, 0x9, 0x800, 0x2400, 0x3, 0x80000000, 0xf150, 0x3, 0x0, 0x72, 0x1, 0x3, 0x4, 0xb4, 0x1, 0x1cf0, 0x5, 0x1, 0xffffffff, 0x2, 0xb4a2, 0x10000, 0x8000, 0x0, 0xc7e2, 0x0, 0x9, 0xf3, 0x2, 0x59, 0x3ff, 0x1f, 0x7c0, 0xffffff14, 0x0, 0x30, 0x400, 0x7fff, 0x7, 0x1, 0x7, 0x8001, 0xfd, 0x8c, 0x7, 0x50, 0x0, 0x1, 0x2, 0xffff, 0x4, 0xe84a, 0x400, 0x548, 0x6], [0x4, 0x7fffffff, 0x200, 0xffffffff, 0x5, 0x8, 0x4, 0x4, 0xc5, 0x3, 0x3, 0x10001, 0x4, 0x401, 0x1f, 0x0, 0x47e6, 0x8, 0x0, 0xfffffffb, 0x6, 0x7, 0x400, 0x0, 0x3, 0x77e93dd7, 0xb6a, 0x5, 0x2, 0x81, 0x4, 0x3, 0x6, 0x1, 0x2000, 0xa8, 0x0, 0x1, 0x6, 0x1, 0x800, 0x5e000000, 0x6, 0xdc, 0x100, 0x3, 0xbd, 0x20, 0x1000, 0x1, 0xf90d, 0x1, 0x2, 0x101, 0xfffffeff, 0x3, 0x5, 0x1f, 0x3f, 0x0, 0x1, 0x8, 0x100, 0x4]}, 0x45c)
preadv(r4, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r6 = dup(r2)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x4, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_queued_recursive\x00', 0x275a, 0x0)
getsockopt$inet6_buf(r8, 0x29, 0x30, &(0x7f0000000080)=""/89, &(0x7f0000000100)=0x59)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x1000, &(0x7f0000001080), 0x1, 0x4fe, &(0x7f0000000a40)="$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")
linkat(r0, &(0x7f0000000180)='./file1\x00', 0xffffffffffffffff, &(0x7f00000001c0)='./bus\x00', 0x1000)

3.200979547s ago: executing program 3 (id=563):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f000000c300)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x801, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWRULE={0x28, 0x6, 0xa, 0x201, 0x0, 0x0, {0x3}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x90}}, 0x0)

3.10542964s ago: executing program 3 (id=565):
r0 = socket$tipc(0x1e, 0x5, 0x0)
getsockopt$TIPC_CONN_TIMEOUT(r0, 0x10f, 0x82, &(0x7f0000000380), &(0x7f00000003c0)=0x4)

2.99482611s ago: executing program 3 (id=567):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="240000003b00070100000000000000000400000004000000040008800800010004"], 0x24}}, 0x0)

2.863264405s ago: executing program 3 (id=569):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
bind$x25(r1, &(0x7f0000000000)={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x3}}, 0x12)
write$binfmt_script(r0, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0)
r2 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r2, 0x8917, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @multicast1=0xac14140a}})

2.468651186s ago: executing program 3 (id=570):
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000480)={[{@nodiscard}, {}, {@acl}, {@alloc_mode_reuse}, {@inline_xattr}, {@disable_roll_forward}, {@background_gc_on}, {@nobarrier}, {@noflush_merge}, {@user_xattr}, {@fsync_mode_strict}, {@adaptive_mode}, {@jqfmt_vfsold}, {@noinline_dentry}]}, 0x1, 0x5505, &(0x7f0000002480)="$eJzs3E1rY9UbAPAn7XTe//Mv4sLdXBiEFiZh0nlBd6PO4At2KKMuXGmapCEzSW5p0rR25cKluPCbiIIrl34GF67diQvFnaDknlud+gJC08ZOfz+4ee45OXnuc8Iw8NxbEsCptZj9/GMlrsSFiJiPiMsRxXmlPAp3U3guIq5GxNwTR6Wc/33ibERcjIgrk+QpZ6V869Pr42u3f3jjp6++OXfm0mdffju7XQOz9nxE9DfT+U4/xbyT4qNyvjHuFrF/a1zG9Eb/cTnOU9xprxcZdhr76xpFvNlJ6/PN7eEkbvQazUnsdDeK+c1BuuBw3NnPU3zgUWOrGLfa60XsDvMidvZSXbt76f+2veEo5WmV+T4o0sdotB/TfHu3nfaz+biIzcGonE9581Z7dxLHZSwvF8281yrqWD/MN/3f9mZ3sL2bjdtbw24+yG7X6i/U6neq9a281R61b1Ub/dadW9lSpzdZVh21G/27nTzv9Nq1Zt5fzpY6zWa1Xs+W7rXXu41BVq/XbtZuVG8vl2fXs1cfvJP1WtnSJL7cHWyPur1htpFvZekTy9lK7eaLy9m1evbW6lq29vD+/dW1t9+79+6Dl1Zff6Vc9JeysqWVGysr1fqN6kp9+RTt/6Oy6CnuHw6lMusCAE4e/T8wC0fX/289jDj6/j/0/1Nxovrf097/H8H+4VD0/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAp9Z3C5+/VpwspvGlcv5/5dQz5bgSEXMR8evfmI+zB3LOl3kW/mH9wp9q+LoSRYbJNc6Vx8WIuFsev/z/qL8FAAAAeHp98eHVT1K3nl4WZ10QxyndtJm7/P6U8lUiYmHx+yllm5u8PDulZMW/7zOxO6VsxQ2s81NKlm65nZlWtn9l/kA4/0SopDB3rOUAAADH4mAncLxdCAAAAMfp41kXwGxUYv9R5v6z4OIv7/94IHjhwAgAAAA4gSqzLgAAAAA4ckX/7/f/AAAA4OmWfv8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAfmPnfm4TB6I4AD8bvLD/tGi1921lb1DGlrDHPUYUkCYoIAfSQhqgBnJLCRFEeBwCEYdIHttK9H2SMxnL/HiD4DAz0gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF26r9aL26vf121zdvt28owGAAAAuGRbrRf1P7PU/9rc/97c+tn0i4goI+LS3H0Un84yR01O9fL8zenz1asa7iLqhMN7TJrrS0T8aa7HH11/CgAAAPBxbZareZqtpz+zoQuiT2nRpvz2N1NeERHV7CFTWnnI+5UprP5+j+N/prR6AWuaKSwtuY1zpb1J/XM/rtpNT5oiNeXFlx2LzDZ2AACgR6Ozpt9ZCAAAAH36N3QBDKOI563M41bgJDXN9t7nsx4AAADwDhVDFwAAAAB0rp7/93T+3975fwAAADCMdP4fAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXdpW68VmuZq3zdnt28kzGgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHhif95RIATCIAz2ru9M5v6HlQZNTU2qQPj4G4MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIA3v/vL/4mpcSaZe20sPY8ka6fG1qmxd24c/WF8/RoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIv9eUmBEAiCKJgz/nfS9z+sJOgZRIiAhkcVtWgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4It+98v/ialxJpk7bSwdjyRrV42tq8beg8bRg/H2bwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIud+3mNo4oDAP5mZmdrq+IaZQ8RUfCgF7vd1tbexIMSPPgnCCHd1titP9ocbCliLt4k515EjyKCEm/9H3JOIJd4y2EPETwrMzuTnfwA118zm+TzgTfvu8Mw7/tmIeQ77yUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACURm9P4iQ7dMZxXJzb3Hu4lPVbh/rM47Xt+axlcVRn0ifDi9UPUbe5RAAAADg7krK+DyHspOsLWR938vo/La/Jav5vnx7HZT1/uO4v+7L2z9ovP+8+vz9QZzxOdtOby8PBpaOptP6/Wc62Z/7yilb+5PN3L0n+hcTvrT43SvPnGX29sfFOOw/P1ZEtAPBPXCz7Iih/H8r6fpOJAXBmtCqFd1n/J51mcwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACow2g1PFnGUQhhvjWJM1t7D5eO6x+vbc+X7dqjR2vhy8k9s1ukIYSby8PBpVpnM9vu3X9we3E4HNytP3gphNDU6G8V07/9wRQXh9DI8xH8R0FcfNmzks/JCBr8oQQAwKmUFi2r63fS9YXsXDQXwh/fHaz/X63EYcr6f/fDa5vVsar1f7+2Gc6+3sqdT3v37j94ffnO4q3BrcHHb1zuv9m/cv3q1eu9/F1JzxsTAAAA/p120ar1fzx3dP3/QiUOU9b/n33T/6I6VqL+P9Zk0a/pTAAAAM62Z1/+/bfomPNRux0+X1xZudsfH/c/Xx4fG0j1bztXtGr9n8w1nRUAAABQh9FqdGD9/0YlDlOu/z/1/Qs/Vu+ZhBDOF+v/F5c+Gd6obzozrY4/J256jgAAADTrfNGq6/9pvv8/3t/yEIcQXntlHBf/BnCq+j9596sfqmNV9/9fqW+KMynujp9H3ndDaHWbzggAAIDT7ImiZcX+r+n6wkc/XXi/bf8/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQN3+DAAA//962D6S")
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = open(&(0x7f0000000040)='./file0\x00', 0x40c5, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000001600000000000000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
unshare(0x26000480)
lchown(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r6}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x2d)
write$9p(r0, &(0x7f0000001400)="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", 0x600)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000c00)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r10}, 0x10)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @random="50a245d5cde0", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x32, 0x0, @empty, @broadcast}, @timestamp_reply={0x11}}}}}, 0x0)
sendmsg$inet(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000080)="38a0", 0x2}], 0x1}, 0x0)

2.408534613s ago: executing program 2 (id=571):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r1, 0xc0045006, &(0x7f0000000100)=0x6)
ioctl$SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f0000000000))
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000000040))
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000500)={0xa00, 0x18, 0xfa00, {0x1, 0x0}}, 0x20)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
ioperm(0x0, 0x7, 0x8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={0x0, 0x0, 0xfffffffffffffd58, 0x0, 0x0, 0x80000000}, 0x20)
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0)
utime(&(0x7f0000000080)='./file0\x00', 0x0)
syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000640)='./file0\x00', 0x801000, &(0x7f0000000180)=ANY=[@ANYBLOB="00bb7cd8d5680ea8718460c8013b03af0a075ed8b0146638ec1d98eda1d5465e517f101121a8e8821df77e18ceee4bf7377a61633e699adc272c7596926a1032f4f1ff33a5a68e0701b9a0a641924f64074e371a6268c067d211dfe95f0789"], 0x1, 0x5d2, &(0x7f00000006c0)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000c40)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
getsockopt$inet_mreqsrc(r2, 0x0, 0x28, &(0x7f0000000180)={@remote, @initdev, @private}, &(0x7f00000001c0)=0xc)
mount$tmpfs(0x0, 0x0, &(0x7f00000002c0), 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x200035, &(0x7f0000000280)={[{@nr_inodes={'nr_inodes', 0x3d, [0x37]}}]})
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x12, r3, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_buf(r4, 0x0, 0x30, 0x0, &(0x7f0000001000))

2.314363379s ago: executing program 4 (id=572):
r0 = syz_io_uring_setup(0x1114, &(0x7f0000000300), &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x8, 0x0, 0x7, 0x0, 0x0})
io_uring_enter(r0, 0x47fa, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x18, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)=[0xffffffffffffffff]}, 0x1)

1.270325254s ago: executing program 2 (id=573):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x4, &(0x7f00000002c0)={@local={0xac, 0x2, 0x44, 0xa}, @private=0x5000000}, 0xc)
getsockopt$inet_mreqn(r0, 0x0, 0x4, 0x0, &(0x7f0000000280))

1.170167336s ago: executing program 1 (id=574):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20)
bpf$MAP_CREATE(0xe4ffffff00000000, &(0x7f0000004440)=@base={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x0, 0x1}, 0x48)

1.129216598s ago: executing program 1 (id=575):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000180)='ext4_ext_show_extent\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r2, &(0x7f0000000000), 0x400000)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_type(r3, &(0x7f0000000000), 0x248800)

1.060464006s ago: executing program 0 (id=576):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
sigaltstack(0x0, 0x0)

1.015079992s ago: executing program 2 (id=577):
r0 = socket$tipc(0x1e, 0x5, 0x0)
getsockopt$TIPC_CONN_TIMEOUT(r0, 0x10f, 0x82, &(0x7f0000000380), &(0x7f00000003c0)=0x4)

895.535888ms ago: executing program 2 (id=578):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$smc(&(0x7f0000000800), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="03000000000000000000020000001400020076657468315f746f5f62726926bb6500090001009b"], 0x34}}, 0x0)

801.473732ms ago: executing program 1 (id=579):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="240000003b00070100000000000000000400000004000000040008800800010004"], 0x24}}, 0x0)

653.783352ms ago: executing program 2 (id=580):
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000080)='./bus\x00', 0x1000000, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00'], 0x2, 0x580, &(0x7f0000000180)="$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")
mknod(&(0x7f0000000080)='./bus\x00', 0x1000, 0x0)

458.929633ms ago: executing program 1 (id=581):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
bind$x25(r1, &(0x7f0000000000)={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x3}}, 0x12)
write$binfmt_script(r0, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0)
r2 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r2, 0x8917, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @multicast1=0xac14140a}})

432.63182ms ago: executing program 3 (id=582):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000180)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="4400000010000507000000000000000000000006", @ANYRES32=0x0, @ANYBLOB="0000000000001a00240012800b00010062726964676500001400028005002b0003000000080004"], 0x44}}, 0x0)
r2 = socket(0x10, 0x3, 0x0)
bind$netlink(r2, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
write(r2, &(0x7f0000000140)="2600000022004701050000070000000000000020002b1f000a4a51f1ee839cd53400b017ca5b", 0x26)
connect$netlink(r2, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000b4bffc), 0x4)
write(r2, &(0x7f0000000000)='\"', 0x1)
recvmmsg(r2, &(0x7f0000000780), 0x3ffffffffffff81, 0x2, 0x0)
syz_emit_ethernet(0x86, &(0x7f00000000c0)={@link_local, @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x11, 0x0, @local, @multicast1}, {0x0, 0x0, 0x64, 0x0, @wg=@response={0x2, 0x0, 0x0, "306720a65ecadd8f8d4096edd3a616a0c3491e3bea200200", "8e6dbc6bc4b02931a149e80581e14a2c", {"a65651e8000000000000007f96141e51", "dac60bebefc50000000000000200"}}}}}}}, 0x0)

431.692808ms ago: executing program 4 (id=583):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@fwd]}}, 0x0, 0x26}, 0xfffffffffffffcae)
r0 = socket$xdp(0x2c, 0x3, 0x0)
mmap$xdp(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x0, 0x11, r0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2}, {0x0, [0x0]}}, &(0x7f0000001f80)=""/226, 0x26, 0x81, 0x2}, 0x20)

346.561509ms ago: executing program 4 (id=584):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080))
fstat(0xffffffffffffffff, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x0, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], 0x0}, 0x90)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
socket(0x200000000000011, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x18, 0x3, &(0x7f0000001300)=ANY=[], &(0x7f0000000240)='GPL\x00'}, 0x90)
setsockopt$bt_hci_HCI_DATA_DIR(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000000), 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000240)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
socket$inet(0x2, 0x80000, 0x4)
ioctl$TCFLSH(r0, 0x400455c8, 0x4)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x33)

3.12829ms ago: executing program 0 (id=585):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20)
bpf$MAP_CREATE(0xe4ffffff00000000, &(0x7f0000004440)=@base={0x14, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x0, 0x1}, 0x48)

1.764615ms ago: executing program 1 (id=586):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x2}, [@alu={0x5, 0x0, 0x8, 0x0, 0x0, 0x0, 0xad}, @jmp={0x3, 0x0, 0xc}], {0x95, 0x0, 0x0, 0x1a03d3}}, &(0x7f0000000100)='GPL\x00', 0x4, 0x1a, &(0x7f0000000140)=""/250}, 0x90)

0s ago: executing program 2 (id=587):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000001c0)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)

kernel console output (not intermixed with test programs):

uetooth: hci0: command tx timeout
[   55.244149][ T5104] Bluetooth: hci1: command tx timeout
[   55.244407][ T5099] Bluetooth: hci3: command tx timeout
[   55.267193][ T5087] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.274442][ T5087] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.300522][ T5087] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.313104][ T5094] Bluetooth: hci4: command tx timeout
[   55.319986][ T5095] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.327136][ T5095] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.353179][ T5095] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.386774][ T5096] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.393876][ T5096] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.420183][ T5096] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.436219][ T5087] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.443351][ T5087] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.469547][ T5087] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.509997][ T5091] hsr_slave_0: entered promiscuous mode
[   55.516937][ T5091] hsr_slave_1: entered promiscuous mode
[   55.526966][ T5096] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.534114][ T5096] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.560229][ T5096] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.581495][ T5088] hsr_slave_0: entered promiscuous mode
[   55.587814][ T5088] hsr_slave_1: entered promiscuous mode
[   55.594280][ T5088] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   55.602427][ T5088] Cannot create hsr debugfs directory
[   55.711662][ T5095] hsr_slave_0: entered promiscuous mode
[   55.718436][ T5095] hsr_slave_1: entered promiscuous mode
[   55.726064][ T5095] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   55.734257][ T5095] Cannot create hsr debugfs directory
[   55.771328][ T5087] hsr_slave_0: entered promiscuous mode
[   55.777868][ T5087] hsr_slave_1: entered promiscuous mode
[   55.787103][ T5087] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   55.795652][ T5087] Cannot create hsr debugfs directory
[   55.820367][ T5096] hsr_slave_0: entered promiscuous mode
[   55.827257][ T5096] hsr_slave_1: entered promiscuous mode
[   55.833717][ T5096] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   55.841270][ T5096] Cannot create hsr debugfs directory
[   56.259693][ T5088] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   56.274980][ T5088] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   56.289748][ T5088] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   56.300979][ T5088] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   56.369707][ T5091] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   56.387176][ T5091] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   56.397188][ T5091] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   56.409548][ T5091] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   56.493743][ T5096] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   56.506260][ T5096] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   56.528745][ T5096] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   56.539519][ T5096] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   56.633941][ T5095] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   56.657216][ T5095] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   56.668214][ T5095] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   56.679333][ T5095] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   56.771057][ T5087] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   56.795541][ T5087] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   56.808177][ T5087] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   56.831725][ T5087] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   56.849791][ T5088] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.921098][ T5088] 8021q: adding VLAN 0 to HW filter on device team0
[   56.964250][ T5142] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.971658][ T5142] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.005456][ T5091] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.029752][ T5143] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.036914][ T5143] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.053484][ T5096] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.120764][ T5091] 8021q: adding VLAN 0 to HW filter on device team0
[   57.150554][ T5096] 8021q: adding VLAN 0 to HW filter on device team0
[   57.178190][ T1714] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.185400][ T1714] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.210361][ T1714] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.217513][ T1714] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.226918][ T1714] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.234085][ T1714] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.277552][ T5142] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.285139][ T5142] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.316286][ T5094] Bluetooth: hci1: command tx timeout
[   57.316346][ T5099] Bluetooth: hci2: command tx timeout
[   57.323493][ T5094] Bluetooth: hci0: command tx timeout
[   57.327831][ T5104] Bluetooth: hci3: command tx timeout
[   57.367400][ T5095] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.408736][ T5104] Bluetooth: hci4: command tx timeout
[   57.493958][ T5095] 8021q: adding VLAN 0 to HW filter on device team0
[   57.540447][ T1714] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.547657][ T1714] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.596360][ T5087] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.606278][ T5142] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.613512][ T5142] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.779817][ T5088] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.816322][ T5087] 8021q: adding VLAN 0 to HW filter on device team0
[   57.852883][ T5142] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.860087][ T5142] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.879644][ T5142] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.886874][ T5142] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.977479][ T5096] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.991108][ T5091] 8021q: adding VLAN 0 to HW filter on device batadv0
[   58.180127][ T5088] veth0_vlan: entered promiscuous mode
[   58.191426][ T5095] 8021q: adding VLAN 0 to HW filter on device batadv0
[   58.239340][ T5096] veth0_vlan: entered promiscuous mode
[   58.250153][ T5088] veth1_vlan: entered promiscuous mode
[   58.341572][ T5096] veth1_vlan: entered promiscuous mode
[   58.440909][ T5091] veth0_vlan: entered promiscuous mode
[   58.455410][ T5088] veth0_macvtap: entered promiscuous mode
[   58.470852][ T5095] veth0_vlan: entered promiscuous mode
[   58.500664][ T5088] veth1_macvtap: entered promiscuous mode
[   58.525991][ T5095] veth1_vlan: entered promiscuous mode
[   58.537092][ T5091] veth1_vlan: entered promiscuous mode
[   58.561934][ T5096] veth0_macvtap: entered promiscuous mode
[   58.580172][ T5087] 8021q: adding VLAN 0 to HW filter on device batadv0
[   58.600397][ T5096] veth1_macvtap: entered promiscuous mode
[   58.616729][ T5088] batman_adv: batadv0: Interface activated: batadv_slave_0
[   58.649134][ T5088] batman_adv: batadv0: Interface activated: batadv_slave_1
[   58.677596][ T5088] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.687469][ T5088] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.698027][ T5088] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.707278][ T5088] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.733987][ T5096] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   58.749124][ T5096] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.760505][ T5096] batman_adv: batadv0: Interface activated: batadv_slave_0
[   58.792727][ T5096] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   58.807303][ T5096] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.818466][ T5096] batman_adv: batadv0: Interface activated: batadv_slave_1
[   58.842288][ T5091] veth0_macvtap: entered promiscuous mode
[   58.856792][ T5095] veth0_macvtap: entered promiscuous mode
[   58.878594][ T5096] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.888178][ T5096] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.897417][ T5096] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.906687][ T5096] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.921166][ T5091] veth1_macvtap: entered promiscuous mode
[   58.951338][ T5095] veth1_macvtap: entered promiscuous mode
[   58.968505][ T5087] veth0_vlan: entered promiscuous mode
[   59.057428][ T5095] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   59.068802][ T5095] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.081570][ T5095] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   59.092909][ T5095] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.104384][ T5095] batman_adv: batadv0: Interface activated: batadv_slave_0
[   59.117345][ T5087] veth1_vlan: entered promiscuous mode
[   59.150089][ T2440] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   59.161542][ T5095] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.162381][ T2440] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   59.178773][ T5095] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.190027][ T5095] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.200800][ T5095] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.213151][ T5095] batman_adv: batadv0: Interface activated: batadv_slave_1
[   59.226775][ T5091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   59.238082][ T5091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.248043][ T5091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   59.258628][ T5091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.268651][ T5091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   59.279148][ T5091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.290225][ T5091] batman_adv: batadv0: Interface activated: batadv_slave_0
[   59.318143][ T5095] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.329481][ T5095] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.339046][ T5095] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   59.350952][ T5095] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   59.379903][ T5091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.391138][ T5091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.392325][ T5104] Bluetooth: hci3: command tx timeout
[   59.403382][ T5091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.406714][ T5099] Bluetooth: hci2: command tx timeout
[   59.416991][ T5094] Bluetooth: hci0: command tx timeout
[   59.422843][ T5104] Bluetooth: hci1: command tx timeout
[   59.428853][ T5091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.443586][ T5091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.454450][ T5091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.466068][ T5091] batman_adv: batadv0: Interface activated: batadv_slave_1
[   59.472518][ T5104] Bluetooth: hci4: command tx timeout
[   59.490045][ T2440] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   59.499072][ T2440] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   59.532307][ T5091] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.544193][ T5091] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.563717][ T5091] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   59.572839][ T5091] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   59.611878][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   59.624859][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   59.676917][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   59.689347][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   59.816980][ T5087] veth0_macvtap: entered promiscuous mode
[   59.851555][ T5087] veth1_macvtap: entered promiscuous mode
[   59.882059][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   59.890038][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   59.956481][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   59.970187][ T5087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   59.989625][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.005724][ T5087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.032346][ T5087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   60.043364][ T5087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.053597][ T5087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   60.070193][ T5087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.090625][ T5087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   60.122780][ T5087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.135155][ T5087] batman_adv: batadv0: Interface activated: batadv_slave_0
[   60.180289][ T5087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   60.195556][ T5087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.207382][ T5087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   60.219259][ T5087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.241667][ T5087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   60.258034][ T5087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.268112][ T5087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   60.280423][ T5087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.298740][ T5087] batman_adv: batadv0: Interface activated: batadv_slave_1
[   60.364063][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.387364][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.407173][ T5183] netlink: 'syz.0.8': attribute type 1 has an invalid length.
[   60.445479][ T5087] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   60.455157][ T5183] netlink: 112860 bytes leftover after parsing attributes in process `syz.0.8'.
[   60.466866][ T5087] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   60.485443][ T5087] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   60.494486][ T5087] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   60.507409][ T5183] netlink: 'syz.0.8': attribute type 2 has an invalid length.
[   60.510240][ T5186] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   60.570285][   T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.586875][   T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.859384][   T29] audit: type=1800 audit(1719281870.600:2): pid=5190 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.3" name="bus" dev="sda1" ino=1948 res=0 errno=0
[   60.958452][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.974459][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   61.014489][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.118899][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.132321][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   61.141295][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   61.171461][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.194680][ T5196] loop4: detected capacity change from 0 to 4096
[   61.244264][ T5196] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512).
[   61.372904][ T5188] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   61.439196][ T5200] loop3: detected capacity change from 0 to 64
[   61.472196][ T5099] Bluetooth: hci2: command tx timeout
[   61.472265][   T54] Bluetooth: hci0: command tx timeout
[   61.477628][ T5099] Bluetooth: hci3: command tx timeout
[   61.489060][ T5104] Bluetooth: hci1: command tx timeout
[   61.505458][ T5200] =======================================================
[   61.505458][ T5200] WARNING: The mand mount option has been deprecated and
[   61.505458][ T5200]          and is ignored by this kernel. Remove the mand
[   61.505458][ T5200]          option from the mount to silence this warning.
[   61.505458][ T5200] =======================================================
[   61.553521][ T5104] Bluetooth: hci4: command tx timeout
[   61.596667][   T29] audit: type=1804 audit(1719281871.330:3): pid=5196 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.11" name="/root/syzkaller.L3RTjc/1/file0/file1" dev="loop4" ino=33 res=1 errno=0
[   61.657174][ T5188] usb 1-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[   61.672292][ T5188] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   61.706611][ T5188] usb 1-1: config 0 descriptor??
[   61.747674][ T5188] gspca_main: cpia1-2.14.0 probing 0813:0001
[   61.793624][ T5202] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   62.034629][ T5208] loop4: detected capacity change from 0 to 256
[   62.066759][ T5210] loop2: detected capacity change from 0 to 512
[   62.081058][ T5210] EXT4-fs: Ignoring removed mblk_io_submit option
[   62.106891][ T5210] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   62.124865][ T5208] FAT-fs (loop4): Directory bread(block 1285) failed
[   62.140372][ T5210] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   62.165045][ T5210] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec118, mo2=0002]
[   62.195744][ T5210] System zones: 1-12
[   62.201175][ T5188] gspca_cpia1: usb_control_msg 03, error -32
[   62.220570][ T5210] EXT4-fs (loop2): 1 truncate cleaned up
[   62.230082][ T5210] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   62.241216][ T5188] gspca_cpia1: usb_control_msg 03, error -71
[   62.296528][ T5188] gspca_cpia1: usb_control_msg 01, error -71
[   62.334331][ T5188] cpia1 1-1:0.0: only firmware version 1 is supported (got: 0)
[   62.348432][ T5216] loop1: detected capacity change from 0 to 4096
[   62.413927][ T5188] usb 1-1: USB disconnect, device number 2
[   62.445522][ T5216] NILFS (loop1): invalid segment: Checksum error in segment payload
[   62.484345][ T5095] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.499984][ T5216] NILFS (loop1): trying rollback from an earlier position
[   62.539432][ T5218] syz.4.19 uses obsolete (PF_INET,SOCK_PACKET)
[   62.608665][ T5216] NILFS (loop1): recovery complete
[   62.654760][ T5221] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   62.790311][ T5220] loop3: detected capacity change from 0 to 4096
[   62.855122][ T5220] ntfs3: loop3: Failed to load $MFT (-22).
[   63.021434][ T5232] loop0: detected capacity change from 0 to 8
[   63.123135][ T5232] SQUASHFS error: zlib decompression failed, data probably corrupt
[   63.156178][ T5232] SQUASHFS error: Failed to read block 0x13e: -5
[   63.174676][ T5232] SQUASHFS error: Unable to read metadata cache entry [13c]
[   63.187295][ T5232] SQUASHFS error: Unable to read directory block [13c:26]
[   63.231106][   T29] audit: type=1800 audit(1719281872.970:4): pid=5234 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.26" name="bus" dev="sda1" ino=1960 res=0 errno=0
[   63.243309][ T5236] loop1: detected capacity change from 0 to 64
[   63.327194][ T5241] netlink: 48 bytes leftover after parsing attributes in process `syz.2.30'.
[   63.461263][ T2470] Bluetooth: hci5: Frame reassembly failed (-84)
[   63.470637][ T5244] loop0: detected capacity change from 0 to 256
[   64.164891][ T5249] infiniband syz0: set active
[   64.171367][ T5249] infiniband syz0: added bond0
[   64.391128][ T5249] RDS/IB: syz0: added
[   64.396142][ T5249] smc: adding ib device syz0 with port count 1
[   64.403438][ T5249] smc:    ib device syz0 port 1 has pnetid 
[   64.783930][ T5255] ALSA: seq fatal error: cannot create timer (-22)
[   65.394819][ T5274] loop1: detected capacity change from 0 to 8
[   65.448338][ T5274] SQUASHFS error: zlib decompression failed, data probably corrupt
[   65.457386][ T5274] SQUASHFS error: Failed to read block 0x13e: -5
[   65.463927][ T5274] SQUASHFS error: Unable to read metadata cache entry [13c]
[   65.471530][ T5274] SQUASHFS error: Unable to read directory block [13c:26]
[   65.480574][ T5104] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   65.488090][ T5099] Bluetooth: hci5: command 0x1003 tx timeout
[   65.731342][   T29] audit: type=1800 audit(1719281875.470:5): pid=5277 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.45" name="bus" dev="sda1" ino=1946 res=0 errno=0
[   65.748604][ T5279] Zero length message leads to an empty skb
[   66.025045][ T5288] netlink: 'syz.3.43': attribute type 10 has an invalid length.
[   66.051048][ T5290] ALSA: seq fatal error: cannot create timer (-22)
[   66.074836][ T5288] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.083800][ T5288] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.235012][ T5288] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.242289][ T5288] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.250671][ T5288] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.258034][ T5288] bridge0: port 1(bridge_slave_0) entered forwarding state
[   66.397810][ T5288] bond0: (slave bridge0): Enslaving as an active interface with an up link
[   66.499141][ T5302] netlink: 'syz.0.53': attribute type 1 has an invalid length.
[   66.542264][ T5302] netlink: 112860 bytes leftover after parsing attributes in process `syz.0.53'.
[   66.592788][ T5302] netlink: 'syz.0.53': attribute type 2 has an invalid length.
[   67.191236][ T5316] loop0: detected capacity change from 0 to 512
[   67.247886][ T5316] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities
[   67.269896][ T5279] syz.3.43: vmalloc error: size 536870912, failed to allocated page array size 1048576, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz3,mems_allowed=0-1
[   67.329310][ T5279] CPU: 1 UID: 0 PID: 5279 Comm: syz.3.43 Not tainted 6.10.0-rc5-next-20240624-syzkaller #0
[   67.339441][ T5279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   67.349608][ T5279] Call Trace:
[   67.352893][ T5279]  <TASK>
[   67.355829][ T5279]  dump_stack_lvl+0x241/0x360
[   67.360542][ T5279]  ? __pfx_dump_stack_lvl+0x10/0x10
[   67.365739][ T5279]  ? __pfx__printk+0x10/0x10
[   67.370330][ T5279]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[   67.376747][ T5279]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[   67.383253][ T5279]  warn_alloc+0x278/0x410
[   67.387587][ T5279]  ? __pfx_warn_alloc+0x10/0x10
[   67.392440][ T5279]  ? translate_table+0x174/0x2260
[   67.397472][ T5279]  ? __get_vm_area_node+0x23d/0x270
[   67.402677][ T5279]  __vmalloc_node_range_noprof+0x69f/0x1460
[   67.408569][ T5279]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   67.414313][ T5279]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   67.420639][ T5279]  ? rcu_is_watching+0x15/0xb0
[   67.425404][ T5279]  ? trace_kmalloc+0x1f/0xd0
[   67.430020][ T5279]  ? __kmalloc_node_noprof+0x247/0x440
[   67.435495][ T5279]  ? kvmalloc_node_noprof+0x72/0x190
[   67.440793][ T5279]  kvmalloc_node_noprof+0x142/0x190
[   67.446035][ T5279]  ? translate_table+0x174/0x2260
[   67.451058][ T5279]  translate_table+0x174/0x2260
[   67.455929][ T5279]  ? __pfx_translate_table+0x10/0x10
[   67.461215][ T5279]  ? __might_fault+0xaa/0x120
[   67.465895][ T5279]  ? __pfx_lock_release+0x10/0x10
[   67.470922][ T5279]  ? __might_fault+0xaa/0x120
[   67.475617][ T5279]  ? __might_fault+0xc6/0x120
[   67.480296][ T5279]  ? _copy_from_user+0xa6/0xe0
[   67.485067][ T5279]  ? copy_from_sockptr_offset+0x6b/0xb0
[   67.490611][ T5279]  do_ipt_set_ctl+0xe3d/0x1250
[   67.495373][ T5279]  ? __pfx___might_resched+0x10/0x10
[   67.500658][ T5279]  ? __pfx_do_ipt_set_ctl+0x10/0x10
[   67.505849][ T5279]  ? __pfx_lock_release+0x10/0x10
[   67.510883][ T5279]  ? __mutex_unlock_slowpath+0x21d/0x750
[   67.516515][ T5279]  ? __pfx_do_ip_setsockopt+0x10/0x10
[   67.521886][ T5279]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   67.527870][ T5279]  ? __pfx___mutex_lock+0x10/0x10
[   67.532892][ T5279]  ? module_put+0x13a/0x2d0
[   67.537392][ T5279]  nf_setsockopt+0x295/0x2c0
[   67.541982][ T5279]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   67.547885][ T5279]  smc_setsockopt+0x275/0xe50
[   67.552590][ T5279]  ? __pfx_smc_setsockopt+0x10/0x10
[   67.557802][ T5279]  ? aa_sock_opt_perm+0x79/0x120
[   67.562743][ T5279]  ? bpf_lsm_socket_setsockopt+0x9/0x10
[   67.568288][ T5279]  ? security_socket_setsockopt+0x87/0xb0
[   67.574010][ T5279]  ? __pfx_smc_setsockopt+0x10/0x10
[   67.579214][ T5279]  do_sock_setsockopt+0x3af/0x720
[   67.584247][ T5279]  ? __pfx_do_sock_setsockopt+0x10/0x10
[   67.589791][ T5279]  ? __fget_files+0x29/0x470
[   67.594378][ T5279]  ? __fget_files+0x3f6/0x470
[   67.599058][ T5279]  __sys_setsockopt+0x1ae/0x250
[   67.603914][ T5279]  __x64_sys_setsockopt+0xb5/0xd0
[   67.608938][ T5279]  do_syscall_64+0xf3/0x230
[   67.613437][ T5279]  ? clear_bhb_loop+0x35/0x90
[   67.618112][ T5279]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.624102][ T5279] RIP: 0033:0x7f1bd5b75d39
[   67.628520][ T5279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.648217][ T5279] RSP: 002b:00007f1bd6985048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   67.656635][ T5279] RAX: ffffffffffffffda RBX: 00007f1bd5d03fa0 RCX: 00007f1bd5b75d39
[   67.664604][ T5279] RDX: 0000000000000040 RSI: 0004000000000000 RDI: 0000000000000005
[   67.672573][ T5279] RBP: 00007f1bd5bf6766 R08: 0000000000000298 R09: 0000000000000000
[   67.680539][ T5279] R10: 0000000020000300 R11: 0000000000000246 R12: 0000000000000000
[   67.688616][ T5279] R13: 000000000000000b R14: 00007f1bd5d03fa0 R15: 00007ffd319506b8
[   67.696609][ T5279]  </TASK>
[   67.742158][ T5279] Mem-Info:
[   67.745452][ T5279] active_anon:4153 inactive_anon:0 isolated_anon:0
[   67.745452][ T5279]  active_file:1505 inactive_file:38198 isolated_file:0
[   67.745452][ T5279]  unevictable:768 dirty:1816 writeback:0
[   67.745452][ T5279]  slab_reclaimable:9209 slab_unreclaimable:94907
[   67.745452][ T5279]  mapped:14705 shmem:1244 pagetables:744
[   67.745452][ T5279]  sec_pagetables:0 bounce:0
[   67.745452][ T5279]  kernel_misc_reclaimable:0
[   67.745452][ T5279]  free:1393029 free_pcp:373 free_cma:0
[   67.829324][ T5316] mmap: syz.0.59 (5316) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   67.832777][ T5279] Node 0 active_anon:16612kB inactive_anon:0kB active_file:6020kB inactive_file:152708kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:60820kB dirty:7232kB writeback:0kB shmem:3440kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10380kB pagetables:2976kB sec_pagetables:0kB all_unreclaimable? no
[   67.889238][ T5320] loop0: detected capacity change from 0 to 16
[   67.908097][ T5279] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:84kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:32kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[   67.947372][ T5279] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   67.986318][ T5320] erofs: (device loop0): mounted with root inode @ nid 36.
[   68.001134][ T5279] lowmem_reserve[]: 0 2571 2571 0 0
[   68.066880][ T5279] Node 0 DMA32 free:1600244kB boost:0kB min:35108kB low:43884kB high:52660kB reserved_highatomic:0KB active_anon:16572kB inactive_anon:0kB active_file:6020kB inactive_file:152392kB unevictable:1536kB writepending:7220kB present:3129332kB managed:2659844kB mlocked:0kB bounce:0kB free_pcp:3008kB local_pcp:1280kB free_cma:0kB
[   68.150630][ T5279] lowmem_reserve[]: 0 0 0 0 0
[   68.152076][   T29] audit: type=1326 audit(1719281877.890:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5333 comm="syz.2.64" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe11c775d39 code=0x0
[   68.199993][ T5279] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:316kB unevictable:0kB writepending:12kB present:1048576kB managed:360kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:0kB free_cma:0kB
[   68.279785][ T5279] lowmem_reserve[]: 0 0 0 0 0
[   68.302258][ T5279] Node 1 Normal free:3953028kB boost:0kB min:54788kB low:68484kB high:82180kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:84kB unevictable:1536kB writepending:32kB present:4194304kB managed:4109116kB mlocked:0kB bounce:0kB free_pcp:880kB local_pcp:280kB free_cma:0kB
[   68.339074][ T5279] lowmem_reserve[]: 0 0 0 0 0
[   68.344376][ T5279] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[   68.360143][ T5279] Node 0 DMA32: 2*4kB (UM) 32*8kB (UME) 75*16kB (UME) 71*32kB (UME) 42*64kB (UME) 11*128kB (UME) 4*256kB (UME) 4*512kB (UME) 1*1024kB (M) 3*2048kB (UME) 387*4096kB (M) = 1603224kB
[   68.380611][ T5279] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[   68.435618][ T5279] Node 1 Normal: 1*4kB (U) 3*8kB (UM) 2*16kB (UM) 5*32kB (UM) 3*64kB (U) 0*128kB 1*256kB (M) 2*512kB (UM) 1*1024kB (U) 1*2048kB (U) 964*4096kB (M) = 3953308kB
[   68.457040][ T5279] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   68.467729][ T5279] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   68.515650][ T5279] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   68.538599][ T5279] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   68.561422][ T5279] 40964 total pagecache pages
[   68.569168][ T5279] 0 pages in swap cache
[   68.575700][ T5279] Free swap  = 124740kB
[   68.583788][ T5279] Total swap = 124996kB
[   68.590179][ T5279] 2097051 pages RAM
[   68.596362][ T5279] 0 pages HighMem/MovableOnly
[   68.601627][ T5279] 400881 pages reserved
[   68.606824][ T5279] 0 pages cma reserved
[   68.890976][ T5346] loop0: detected capacity change from 0 to 4096
[   68.943504][ T5346] ntfs3: loop0: Failed to load $MFT (-22).
[   69.165266][ T5352] loop2: detected capacity change from 0 to 256
[   69.193583][ T5352] exfat: Deprecated parameter 'utf8'
[   69.212242][ T5352] exfat: Deprecated parameter 'namecase'
[   69.217967][ T5352] exfat: Deprecated parameter 'utf8'
[   69.352907][   T25] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   69.433770][ T5352] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e8072e, utbl_chksum : 0xe619d30d)
[   69.854428][   T25] usb 5-1: Using ep0 maxpacket: 8
[   69.943476][   T25] usb 5-1: New USB device found, idVendor=04bb, idProduct=0901, bcdDevice=56.a0
[   70.081439][   T25] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   70.365543][ T5344] loop1: detected capacity change from 0 to 32768
[   70.454422][ T5344] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.67 (5344)
[   70.468426][   T25] usb 5-1: Product: syz
[   70.473789][   T25] usb 5-1: Manufacturer: syz
[   70.478695][   T25] usb 5-1: SerialNumber: syz
[   70.486353][   T25] usb 5-1: config 0 descriptor??
[   70.728413][ T5344] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   70.755418][   T25] kaweth 5-1:0.0: Firmware present in device.
[   70.761772][ T5344] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[   70.799260][ T5344] BTRFS info (device loop1): using free-space-tree
[   70.841316][ T5370] loop2: detected capacity change from 0 to 256
[   70.952408][   T25] kaweth 5-1:0.0: Statistics collection: 0
[   70.958294][   T25] kaweth 5-1:0.0: Multicast filter limit: 0
[   71.000744][   T25] kaweth 5-1:0.0: MTU: 0
[   71.015384][   T25] kaweth 5-1:0.0: Read MAC address 00:00:00:00:00:00
[   71.177095][ T5341] BTRFS error (device loop1): target device  is invalid!
[   71.314002][ T5096] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   71.368369][   T25] kaweth 5-1:0.0: Error setting SOFS wait
[   71.379507][   T25] kaweth 5-1:0.0: probe with driver kaweth failed with error -5
[   71.408571][   T25] usb 5-1: USB disconnect, device number 2
[   71.880789][ T1241] ieee802154 phy0 wpan0: encryption failed: -22
[   71.887940][ T1241] ieee802154 phy1 wpan1: encryption failed: -22
[   72.087457][ T5401] loop3: detected capacity change from 0 to 256
[   72.135200][ T5401] exfat: Deprecated parameter 'utf8'
[   72.162304][ T5401] exfat: Deprecated parameter 'namecase'
[   72.188394][ T5401] exfat: Deprecated parameter 'utf8'
[   72.255484][ T5401] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e8072e, utbl_chksum : 0xe619d30d)
[   72.642434][ T5417] input: syz0 as /devices/virtual/input/input5
[   73.146326][ T5414] loop0: detected capacity change from 0 to 2048
[   73.451753][ T5414] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.468785][ T5414] ext4 filesystem being mounted at /root/syzkaller.ie3tgC/24/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.668689][ T5429] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   73.864320][ T5088] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.036538][ T5393] loop1: detected capacity change from 0 to 40427
[   74.067746][ T5393] F2FS-fs (loop1): Invalid Fs Meta Ino: node(1) meta(2) root(0)
[   74.089764][    T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!!
[   74.109059][ T5393] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[   74.172129][ T5393] F2FS-fs (loop1): invalid crc value
[   74.215911][ T5411] loop2: detected capacity change from 0 to 32768
[   74.238319][ T5393] F2FS-fs (loop1): Found nat_bits in checkpoint
[   74.296094][ T5411] BTRFS: device fsid 34a2da50-e117-4d40-8878-8e0fb0127b5f devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.90 (5411)
[   74.309873][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   74.365129][ T5411] BTRFS info (device loop2): first mount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f
[   74.388452][ T5411] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm
[   74.418350][ T5411] BTRFS info (device loop2): using free-space-tree
[   74.546706][ T5393] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[   74.573560][ T5393] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   74.653354][ T5438] kvm: emulating exchange as write
[   74.869076][ T5393] syz.1.79: attempt to access beyond end of device
[   74.869076][ T5393] loop1: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[   75.316110][ T5472] overlay: ./file1 is not a directory
[   75.370588][   T29] audit: type=1804 audit(1719281884.950:7): pid=5472 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.90" name="/root/syzkaller.vmHMDR/16/file0/file1" dev="loop2" ino=260 res=1 errno=0
[   75.661233][ T5411] syz.2.90 (5411) used greatest stack depth: 18928 bytes left
[   75.744064][ T5393] syz.1.79: attempt to access beyond end of device
[   75.744064][ T5393] loop1: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[   75.806284][   T29] audit: type=1326 audit(1719281885.500:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5471 comm="syz.3.101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bd5b75d39 code=0x7ffc0000
[   75.908671][   T29] audit: type=1326 audit(1719281885.500:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5471 comm="syz.3.101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bd5b75d39 code=0x7ffc0000
[   75.980546][   T29] audit: type=1326 audit(1719281885.540:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5471 comm="syz.3.101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1bd5b75d39 code=0x7ffc0000
[   76.007919][   T29] audit: type=1326 audit(1719281885.540:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5471 comm="syz.3.101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bd5b75d39 code=0x7ffc0000
[   76.037794][   T29] audit: type=1326 audit(1719281885.540:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5471 comm="syz.3.101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bd5b75d39 code=0x7ffc0000
[   76.104047][ T5095] BTRFS info (device loop2): last unmount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f
[   76.126190][ T5096] syz-executor: attempt to access beyond end of device
[   76.126190][ T5096] loop1: rw=2049, sector=45112, nr_sectors = 8 limit=40427
[   76.132231][   T29] audit: type=1326 audit(1719281885.590:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5471 comm="syz.3.101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1bd5b75d39 code=0x7ffc0000
[   76.155374][ T5096] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   76.343779][ T5482] input: syz0 as /devices/virtual/input/input6
[   77.247245][   T29] audit: type=1326 audit(1719281885.590:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5471 comm="syz.3.101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bd5b75d39 code=0x7ffc0000
[   77.318823][   T46] cfg80211: failed to load regulatory.db
[   77.460953][   T29] audit: type=1326 audit(1719281885.600:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5471 comm="syz.3.101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1bd5b6cba7 code=0x7ffc0000
[   77.532384][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   77.569034][   T29] audit: type=1326 audit(1719281885.600:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5471 comm="syz.3.101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1bd5b11569 code=0x7ffc0000
[   77.913116][ T5492] loop2: detected capacity change from 0 to 164
[   78.078099][ T5492] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[   78.307075][ T5492] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[   78.477915][ T5503] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   79.222556][    T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!!
[   79.231238][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   79.236709][ T5497] loop0: detected capacity change from 0 to 32768
[   79.266610][ T5497] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.109 (5497)
[   79.289366][ T5524] loop2: detected capacity change from 0 to 2048
[   79.332422][ T5497] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   79.332684][ T5524] udf: Unknown parameter 'iocharlt'
[   79.371778][ T5497] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[   79.387070][ T5530] loop1: detected capacity change from 0 to 164
[   79.399406][ T5497] BTRFS info (device loop0): using free-space-tree
[   79.417134][ T5530] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[   79.622097][ T5530] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[   81.072268][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   81.097612][ T5563] syz.4.126 (pid 5563) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[   81.169981][ T5564] input: syz1 as /devices/virtual/input/input7
[   81.270126][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   81.934024][   T29] kauditd_printk_skb: 123 callbacks suppressed
[   81.934043][   T29] audit: type=1326 audit(1719281891.680:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5566 comm="syz.2.129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe11c775d39 code=0x7ffc0000
[   82.043858][   T29] audit: type=1326 audit(1719281891.680:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5566 comm="syz.2.129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe11c775d39 code=0x7ffc0000
[   82.150622][   T29] audit: type=1326 audit(1719281891.680:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5566 comm="syz.2.129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe11c775d39 code=0x7ffc0000
[   82.173769][   T29] audit: type=1326 audit(1719281891.680:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5566 comm="syz.2.129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe11c775d39 code=0x7ffc0000
[   82.219011][ T5088] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   82.270145][   T29] audit: type=1326 audit(1719281891.680:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5566 comm="syz.2.129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe11c775d39 code=0x7ffc0000
[   82.368028][   T29] audit: type=1326 audit(1719281891.710:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5566 comm="syz.2.129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe11c775d39 code=0x7ffc0000
[   82.411010][   T29] audit: type=1326 audit(1719281891.770:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5566 comm="syz.2.129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe11c775d39 code=0x7ffc0000
[   82.437743][   T29] audit: type=1326 audit(1719281891.770:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5566 comm="syz.2.129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe11c76cba7 code=0x7ffc0000
[   82.466128][   T29] audit: type=1326 audit(1719281891.770:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5566 comm="syz.2.129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe11c711569 code=0x7ffc0000
[   82.559957][ T5587] fuseblk: Unknown parameter 'us�r_id'
[   82.616873][   T29] audit: type=1326 audit(1719281891.770:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5566 comm="syz.2.129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe11c76cba7 code=0x7ffc0000
[   82.645150][ T5589] loop2: detected capacity change from 0 to 512
[   82.713240][ T5589] EXT4-fs (loop2): couldn't mount as ext3 due to feature incompatibilities
[   82.918022][ T5589] loop2: detected capacity change from 0 to 16
[   82.966918][ T5589] erofs: (device loop2): mounted with root inode @ nid 36.
[   83.296529][ T5571] loop1: detected capacity change from 0 to 32768
[   83.334263][ T5571] BTRFS: device fsid 34a2da50-e117-4d40-8878-8e0fb0127b5f devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.128 (5571)
[   83.364853][ T5611] bond0: entered promiscuous mode
[   83.372255][ T5611] bond_slave_0: entered promiscuous mode
[   83.378141][ T5611] bond_slave_1: entered promiscuous mode
[   83.395780][ T5611] bridge0: entered promiscuous mode
[   83.548705][ T5571] BTRFS info (device loop1): first mount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f
[   83.563786][ T5571] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm
[   83.579001][ T5571] BTRFS info (device loop1): using free-space-tree
[   83.679917][ T5619] bond0: (slave bond_slave_0): Releasing backup interface
[   83.683424][ T5619] bond_slave_0: left promiscuous mode
[   84.250975][ T5610] bond0: left promiscuous mode
[   84.259712][ T5571] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[   84.340027][ T5610] bond_slave_1: left promiscuous mode
[   84.512796][ T5610] bridge0: left promiscuous mode
[   84.561866][ T5571] BTRFS error (device loop1): open_ctree failed
[   84.563847][ T5612] loop4: detected capacity change from 0 to 32768
[   84.590896][ T5612] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.140 (5612)
[   84.627458][ T5637] loop2: detected capacity change from 0 to 512
[   84.652128][ T5612] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[   84.677685][ T5612] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm
[   84.698773][ T5637] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2234: inode #15: comm syz.2.145: corrupted in-inode xattr: invalid ea_ino
[   84.746774][ T5612] BTRFS info (device loop4): disk space caching is enabled
[   84.760060][ T5639] overlayfs: upper fs does not support tmpfile.
[   84.766982][ T5637] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz.2.145: couldn't read orphan inode 15 (err -117)
[   84.807204][ T5637] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.880083][ T5659] netlink: 'syz.3.151': attribute type 21 has an invalid length.
[   84.888601][ T5659] netlink: 'syz.3.151': attribute type 6 has an invalid length.
[   84.933019][ T5612] BTRFS info (device loop4): rebuilding free space tree
[   84.983677][ T5095] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.027400][ T5612] BTRFS info (device loop4): disabling free space tree
[   85.066990][ T5612] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[   85.093317][ T5612] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[   85.254550][ T5091] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[   85.319802][ T5687] netlink: 8 bytes leftover after parsing attributes in process `syz.1.161'.
[   86.439373][ T5700] loop2: detected capacity change from 0 to 512
[   86.519555][ T5700] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2234: inode #15: comm syz.2.164: corrupted in-inode xattr: invalid ea_ino
[   86.534892][ T5700] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz.2.164: couldn't read orphan inode 15 (err -117)
[   86.563928][ T5700] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.733265][ T5717] loop4: detected capacity change from 0 to 64
[   86.783431][ T5095] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.814683][ T5717] Bluetooth: MGMT ver 1.23
[   86.955653][ T5723] input: syz0 as /devices/virtual/input/input8
[   88.693186][ T5714] loop0: detected capacity change from 0 to 32768
[   88.729120][ T5714] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.170 (5714)
[   88.796650][ T5741] loop2: detected capacity change from 0 to 4096
[   88.819511][ T5714] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[   88.840487][ T5714] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[   88.867074][ T5714] BTRFS info (device loop0): disk space caching is enabled
[   88.898165][ T5741] ntfs3: loop2: failed to convert "0080" to cp864
[   88.939033][ T5745] : entered promiscuous mode
[   89.016099][ T5714] BTRFS info (device loop0): rebuilding free space tree
[   89.063689][ T5766] netlink: 'syz.1.184': attribute type 21 has an invalid length.
[   89.099378][ T5714] BTRFS info (device loop0): disabling free space tree
[   89.106927][ T5766] netlink: 'syz.1.184': attribute type 6 has an invalid length.
[   89.134608][ T5771] loop4: detected capacity change from 0 to 64
[   89.141086][ T5714] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[   89.174764][ T5714] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[   89.277551][ T5774] fuseblk: Unknown parameter 'us�r_id'
[   89.329590][ T5088] BTRFS info (device loop0): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[   89.669742][   T29] kauditd_printk_skb: 18 callbacks suppressed
[   89.669784][   T29] audit: type=1326 audit(1719281899.410:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5783 comm="syz.2.193" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe11c775d39 code=0x0
[   90.356773][ T5796] loop3: detected capacity change from 0 to 4096
[   90.621691][ T5804] evm: overlay not supported
[   90.622176][ T5796] ntfs3: loop3: failed to convert "0080" to cp864
[   90.852243][ T5143] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   90.892703][ T5816] loop2: detected capacity change from 0 to 2048
[   90.921497][ T5816] udf: Unknown parameter 'iocharlt'
[   91.162457][ T5143] usb 5-1: Using ep0 maxpacket: 8
[   91.998167][ T5143] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[   92.072623][ T5143] usb 5-1: config 179 has no interface number 0
[   92.113093][ T5143] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[   92.185926][ T5143] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[   92.198702][ T5830] loop2: detected capacity change from 0 to 512
[   92.203219][ T5143] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[   92.238406][ T5143] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[   92.256323][ T5830] EXT4-fs (loop2): VFS: Can't find ext4 filesystem
[   92.289124][ T5143] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[   92.321041][ T5143] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   92.327885][ T5810] loop1: detected capacity change from 0 to 32768
[   92.351310][ T5808] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[   92.378431][ T5830] netlink: 8 bytes leftover after parsing attributes in process `syz.2.209'.
[   92.402189][ T5810] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.202 (5810)
[   92.447428][ T5810] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   92.478306][ T5810] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[   92.502399][ T5810] BTRFS info (device loop1): using free-space-tree
[   92.660326][    T8] input: Generic X-Box pad as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:179.65/input/input9
[   92.769631][ T5096] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   92.786926][ T5860] bond0: entered promiscuous mode
[   92.792657][ T5860] bond_slave_1: entered promiscuous mode
[   92.798683][ T5860] bridge0: entered promiscuous mode
[   92.939593][    T8] usb 5-1: USB disconnect, device number 3
[   92.945492][    C0] xpad 5-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[   92.945534][    C0] xpad 5-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[   92.977736][    T8] xpad 5-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[   93.060073][ T5861] tipc: Failed to obtain node identity
[   93.072229][ T5861] tipc: Enabling of bearer <ib:caif0> rejected, failed to enable media
[   93.339586][   T29] audit: type=1800 audit(1719281903.080:169): pid=5874 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.217" name="file1" dev="sda1" ino=1962 res=0 errno=0
[   93.627698][ T5859] bond0: left promiscuous mode
[   93.646652][    T8] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   93.652298][   T25] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   93.698377][ T5859] bond_slave_1: left promiscuous mode
[   93.712477][ T5859] bridge0: left promiscuous mode
[   93.849413][   T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 189, changing to 11
[   93.876691][    T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   93.878029][   T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 58801, setting to 1024
[   93.908871][   T25] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   93.930737][   T25] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   93.940378][   T25] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   94.017535][   T25] usb 2-1: config 0 descriptor??
[   94.022964][    T8] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   94.055193][ T5874] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[   94.075224][    T8] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   94.122643][    T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   94.147392][    T8] usb 1-1: config 0 descriptor??
[   94.254488][ T5890] loop4: detected capacity change from 0 to 256
[   94.574555][   T25] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x3
[   94.611894][    T8] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   94.615396][   T25] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x7
[   94.639391][ T5894] syz.3.229: attempt to access beyond end of device
[   94.639391][ T5894] nbd3: rw=0, sector=2, nr_sectors = 1 limit=0
[   94.672995][   T25] plantronics 0003:047F:FFFF.0001: No inputs registered, leaving
[   94.687890][ T5894] hfs: can't find a HFS filesystem on dev nbd3
[   94.718457][    T8] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   94.732510][    T8] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving
[   94.801150][   T25] plantronics 0003:047F:FFFF.0001: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[   94.914592][    T8] plantronics 0003:047F:FFFF.0002: hiddev1,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[   94.976951][    T8] usb 1-1: USB disconnect, device number 3
[   96.158136][ T5874] netlink: 3 bytes leftover after parsing attributes in process `syz.1.217'.
[   96.181568][ T5874] 0����: renamed from caif0
[   96.224879][ T5911] loop3: detected capacity change from 0 to 512
[   96.252580][ T5187] usb 2-1: reset high-speed USB device number 2 using dummy_hcd
[   96.274219][ T5874] 0����: entered allmulticast mode
[   96.279944][ T5874] A link change request failed with some changes committed already. Interface 
60���� may have been left with an inconsistent configuration, please check.
[   96.393804][ T5911] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[   96.394701][ T5917] bond0: entered promiscuous mode
[   96.433787][ T5911] EXT4-fs (loop3): 1 truncate cleaned up
[   96.449212][ T5917] bond_slave_0: entered promiscuous mode
[   96.469293][ T5911] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.510345][ T5917] bond_slave_1: entered promiscuous mode
[   97.079212][ T5921] bond0: (slave bond_slave_0): Releasing backup interface
[   97.121019][ T5921] bond_slave_0: left promiscuous mode
[   97.170961][ T5925] hugetlbfs: Bad value for 'uid'
[   97.190836][   T29] audit: type=1800 audit(1719281906.930:170): pid=5925 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.237" name="bus" dev="sda1" ino=1961 res=0 errno=0
[   97.273178][ T5914] bond0: left promiscuous mode
[   97.285097][ T5925] netlink: 16126 bytes leftover after parsing attributes in process `syz.2.237'.
[   97.294546][ T5914] bond_slave_1: left promiscuous mode
[   97.333783][ T5925] netlink: 105116 bytes leftover after parsing attributes in process `syz.2.237'.
[   97.703900][ T5933] rdma_rxe: rxe_newlink: failed to add bond0
[   98.386330][ T5087] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.530253][ T5919] loop4: detected capacity change from 0 to 32768
[   98.548612][ T5919] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.236 (5919)
[   98.609332][ T5919] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   98.632598][ T5919] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[   98.641317][ T5919] BTRFS info (device loop4): using free-space-tree
[   98.686779][ T2440] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.836136][ T2440] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.002596][ T5091] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   99.016565][ T2440] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.148959][   T25] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   99.177917][ T2440] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.198953][ T5099] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   99.222452][ T5099] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   99.244527][ T5099] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   99.270517][ T5099] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   99.290056][ T5099] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   99.300653][ T5099] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   99.442257][ T5970] rdma_rxe: rxe_newlink: failed to add bond0
[   99.543523][   T46] usb 2-1: USB disconnect, device number 2
[  100.052336][   T25] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  100.066906][   T25] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  100.083303][   T25] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  100.093354][   T25] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  100.104236][   T25] usb 1-1: config 0 descriptor??
[  100.139076][ T5971] Option '��ﻶ�����|ϽX���!>o��٥�������j��q:�7۔tA�?�9-��쯣3�%q�}' to dns_resolver key: bad/missing value
[  100.462055][ T5975] loop4: detected capacity change from 0 to 40427
[  100.491841][ T5975] F2FS-fs (loop4): Mismatch start address, segment0(0) cp_blkaddr(512)
[  100.500247][ T5975] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  100.523218][ T5975] F2FS-fs (loop4): Ignore s_resuid=0, s_resgid=60929 w/o reserve_root
[  100.553567][ T5975] F2FS-fs (loop4): Found nat_bits in checkpoint
[  100.556202][ T5979] loop2: detected capacity change from 0 to 128
[  100.643532][ T5975] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[  100.648566][ T5979] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  100.650712][ T5975] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  100.848641][   T25] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  100.856452][   T25] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  100.866538][   T25] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[  101.000440][ T5984] syz.4.249: attempt to access beyond end of device
[  101.000440][ T5984] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  101.015338][ T5984] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  101.392329][ T5104] Bluetooth: hci0: command tx timeout
[  101.513163][   T25] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  101.562518][ T2440] bridge_slave_1: left allmulticast mode
[  101.568503][ T2440] bridge_slave_1: left promiscuous mode
[  101.574445][   T25] usb 1-1: USB disconnect, device number 4
[  101.606795][ T2440] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.713360][ T2440] bridge_slave_0: left allmulticast mode
[  101.719068][ T2440] bridge_slave_0: left promiscuous mode
[  101.757438][ T2440] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.923294][ T5966] could not allocate digest TFM handle tgr160
[  102.417244][   T29] audit: type=1800 audit(1719281912.152:171): pid=5996 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.256" name="file1" dev="sda1" ino=1950 res=0 errno=0
[  102.619782][ T2440] bond0 (unregistering): (slave bridge0): Releasing backup interface
[  102.658094][ T5095] UDF-fs: error (device loop2): udf_read_inode: (ino 114) failed !bh
[  102.679853][ T5095] UDF-fs: error (device loop2): udf_read_inode: (ino 114) failed !bh
[  102.722262][   T25] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  102.932948][   T25] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 189, changing to 11
[  102.970342][   T25] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 58801, setting to 1024
[  103.022232][   T25] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  103.033582][ T2440] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  103.050754][   T25] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  103.083799][   T25] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  103.096539][ T2440] bond0 (unregistering): Released all slaves
[  103.109871][   T25] usb 1-1: config 0 descriptor??
[  103.130132][ T5996] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  103.472319][ T5104] Bluetooth: hci0: command tx timeout
[  104.533360][   T25] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x3
[  104.564006][   T25] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x7
[  104.591211][   T25] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving
[  104.635429][   T25] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  104.698426][ T6000] loop4: detected capacity change from 0 to 32768
[  104.713782][ T6000] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.259 (6000)
[  104.768236][ T6000] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  104.798382][ T6000] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  104.830762][ T6000] BTRFS info (device loop4): using free-space-tree
[  105.353330][ T5996] netlink: 3 bytes leftover after parsing attributes in process `syz.0.256'.
[  105.372536][ T5996] 0����: renamed from caif0
[  105.448619][ T5996] 0����: entered allmulticast mode
[  105.467475][ T5996] A link change request failed with some changes committed already. Interface 
60���� may have been left with an inconsistent configuration, please check.
[  105.498716][ T5091] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  105.552139][ T5104] Bluetooth: hci0: command tx timeout
[  105.645557][ T5099] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  105.656538][ T2440] hsr_slave_0: left promiscuous mode
[  105.662785][ T5099] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  105.673324][ T5099] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  105.689841][ T5099] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  105.712377][ T2440] hsr_slave_1: left promiscuous mode
[  105.722121][ T5099] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  105.729606][ T5099] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  105.772186][ T2440] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  105.779740][ T2440] batman_adv: batadv0: Removing interface: batadv_slave_0
[  105.803060][ T2440] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  105.812047][ T2440] batman_adv: batadv0: Removing interface: batadv_slave_1
[  105.856877][ T2440] veth1_macvtap: left promiscuous mode
[  105.863608][ T2440] veth0_macvtap: left promiscuous mode
[  105.871697][ T2440] veth1_vlan: left promiscuous mode
[  105.887897][ T2440] veth0_vlan: left promiscuous mode
[  106.385261][ T1714] usb 1-1: reset high-speed USB device number 5 using dummy_hcd
[  107.633763][ T5099] Bluetooth: hci0: command tx timeout
[  107.652267][ T5146] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  107.776774][ T6059] loop0: detected capacity change from 0 to 8192
[  107.786893][ T6059] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  107.797903][ T5099] Bluetooth: hci3: command tx timeout
[  107.842284][ T5146] usb 2-1: Using ep0 maxpacket: 8
[  107.849746][ T5146] usb 2-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=b0.87
[  107.859151][ T5146] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  107.869635][ T5146] usb 2-1: config 0 descriptor??
[  107.885421][ T5146] pvrusb2: Hardware description: Terratec Grabster AV400
[  107.892601][ T5146] pvrusb2: **********
[  107.895705][ T2440] team0 (unregistering): Port device team_slave_1 removed
[  107.897992][ T5146] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  107.914248][ T5146] pvrusb2: Important functionality might not be entirely working.
[  107.923762][ T5146] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  107.935213][ T5146] pvrusb2: **********
[  107.961103][ T2440] team0 (unregistering): Port device team_slave_0 removed
[  108.150635][ T6051] loop1: detected capacity change from 0 to 512
[  108.160906][ T6051] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities
[  108.274536][ T1714] usb 1-1: device descriptor read/64, error -71
[  108.293037][ T1972] pvrusb2: Invalid write control endpoint
[  108.305940][ T5146] usb 2-1: USB disconnect, device number 3
[  108.417739][ T1972] pvrusb2: Invalid write control endpoint
[  108.426760][ T1972] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  108.437448][ T1972] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  108.445720][ T1972] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  108.455937][ T1972] pvrusb2: Device being rendered inoperable
[  108.468455][ T1972] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  108.482297][ T1972] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  108.510119][ T1972] pvrusb2: Attached sub-driver cx25840
[  108.524290][ T1972] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  108.545373][ T1972] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  108.555863][ T6042] netlink: 216 bytes leftover after parsing attributes in process `syz.4.266'.
[  108.578430][ T1714] usb 1-1: reset high-speed USB device number 5 using dummy_hcd
[  108.670938][ T5963] chnl_net:caif_netlink_parms(): no params data found
[  108.774063][ T1714] usb 1-1: device firmware changed
[  108.812513][   T46] usb 1-1: USB disconnect, device number 5
[  108.864123][ T5963] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.871271][ T5963] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.895512][ T5963] bridge_slave_0: entered allmulticast mode
[  108.914018][ T6066] netlink: 'syz.4.274': attribute type 29 has an invalid length.
[  108.928931][ T5963] bridge_slave_0: entered promiscuous mode
[  108.955029][ T5963] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.967408][ T5963] bridge0: port 2(bridge_slave_1) entered disabled state
[  108.976284][ T5963] bridge_slave_1: entered allmulticast mode
[  108.984110][ T5963] bridge_slave_1: entered promiscuous mode
[  108.991310][ T6066] netlink: 'syz.4.274': attribute type 29 has an invalid length.
[  109.003811][ T6069] netlink: 'syz.4.274': attribute type 29 has an invalid length.
[  109.047857][ T6066] netlink: 'syz.4.274': attribute type 29 has an invalid length.
[  109.060860][   T46] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  109.120151][ T5963] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.174562][ T6072] Option '
�)-8��7����l,sw��z]7+.`��x�9����R��)�ͱ��E�>wT��NYm2!�����	O����<kZ���Ti' to dns_resolver key: bad/missing value
[  109.192476][ T5963] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.337991][   T46] usb 1-1: config 0 has an invalid descriptor of length 46, skipping remainder of the config
[  109.348687][   T46] usb 1-1: New USB device found, idVendor=0421, idProduct=026c, bcdDevice=1f.2f
[  109.358115][   T46] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  109.370276][   T46] usb 1-1: config 0 descriptor??
[  109.379898][   T46] rndis_host 1-1:0.0: probe with driver rndis_host failed with error -22
[  109.388928][   T46] cdc_acm 1-1:0.0: Control and data interfaces are not separated!
[  109.397176][   T46] cdc_acm 1-1:0.0: This needs exactly 3 endpoints
[  109.410535][   T46] cdc_acm 1-1:0.0: probe with driver cdc_acm failed with error -22
[  109.614748][   T46] usb 1-1: USB disconnect, device number 6
[  109.882245][ T5099] Bluetooth: hci3: command tx timeout
[  110.268130][ T6072] could not allocate digest TFM handle tgr160
[  110.360229][ T5963] team0: Port device team_slave_0 added
[  110.423386][ T6086] loop1: detected capacity change from 0 to 512
[  110.459640][   T29] audit: type=1800 audit(1719281920.189:172): pid=6087 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.279" name="file1" dev="sda1" ino=1954 res=0 errno=0
[  110.486047][ T2440] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.490990][ T6086] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.546678][ T6086] ext4 filesystem being mounted at /root/syzkaller.7FJHJQ/60/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.560497][ T5963] team0: Port device team_slave_1 added
[  110.655234][ T2440] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.686985][ T6086] EXT4-fs error (device loop1): ext4_do_update_inode:5075: inode #2: comm syz.1.280: corrupted inode contents
[  110.712062][ T6086] EXT4-fs error (device loop1): ext4_dirty_inode:5935: inode #2: comm syz.1.280: mark_inode_dirty error
[  110.732704][ T1714] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  110.748648][ T6086] EXT4-fs error (device loop1): ext4_do_update_inode:5075: inode #2: comm syz.1.280: corrupted inode contents
[  110.831348][ T6092] EXT4-fs error (device loop1): ext4_do_update_inode:5075: inode #2: comm syz.1.280: corrupted inode contents
[  110.842303][ T2440] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.869795][ T6092] EXT4-fs error (device loop1): ext4_dirty_inode:5935: inode #2: comm syz.1.280: mark_inode_dirty error
[  110.891830][ T6092] EXT4-fs error (device loop1): ext4_do_update_inode:5075: inode #2: comm syz.1.280: corrupted inode contents
[  110.938376][ T6092] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #2: comm syz.1.280: mark_inode_dirty error
[  110.959745][ T1714] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 189, changing to 11
[  110.979380][ T6092] EXT4-fs error (device loop1): ext4_do_update_inode:5075: inode #2: comm syz.1.280: corrupted inode contents
[  110.979428][ T1714] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 58801, setting to 1024
[  111.002746][ T1714] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  111.008990][ T6092] EXT4-fs error (device loop1): ext4_dirty_inode:5935: inode #2: comm syz.1.280: mark_inode_dirty error
[  111.017445][ T1714] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  111.042203][ T1714] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  111.057075][ T1714] usb 5-1: config 0 descriptor??
[  111.215828][ T6087] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  111.247666][ T2440] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.276756][ T6086] EXT4-fs error (device loop1): ext4_do_update_inode:5075: inode #2: comm syz.1.280: corrupted inode contents
[  111.300799][ T5963] batman_adv: batadv0: Adding interface: batadv_slave_0
[  111.952153][ T5099] Bluetooth: hci3: command tx timeout
[  112.072181][ T5963] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  112.099186][    C1] vkms_vblank_simulate: vblank timer overrun
[  112.125951][ T5963] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  112.205145][ T5096] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.218537][ T5963] batman_adv: batadv0: Adding interface: batadv_slave_1
[  112.228463][ T5963] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  112.254498][    C1] vkms_vblank_simulate: vblank timer overrun
[  112.277069][ T5963] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  113.163560][ T1714] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x3
[  113.171162][ T1714] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x7
[  113.181611][ T1714] plantronics 0003:047F:FFFF.0005: No inputs registered, leaving
[  113.200747][ T1714] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  113.281264][ T6107] loop1: detected capacity change from 0 to 256
[  113.346369][ T6109] netlink: 'syz.0.285': attribute type 29 has an invalid length.
[  113.358099][ T1714] usb 5-1: USB disconnect, device number 4
[  113.376820][ T6109] netlink: 'syz.0.285': attribute type 29 has an invalid length.
[  113.446834][ T6109] netlink: 'syz.0.285': attribute type 29 has an invalid length.
[  113.456957][ T6034] chnl_net:caif_netlink_parms(): no params data found
[  113.479723][ T5963] hsr_slave_0: entered promiscuous mode
[  113.500905][ T5963] hsr_slave_1: entered promiscuous mode
[  113.510772][ T5963] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  113.518576][ T5963] Cannot create hsr debugfs directory
[  113.536241][ T6113] netlink: 'syz.0.285': attribute type 29 has an invalid length.
[  114.032201][ T5099] Bluetooth: hci3: command tx timeout
[  114.385917][ T6119] loop0: detected capacity change from 0 to 2048
[  114.437887][ T2440] bridge_slave_1: left allmulticast mode
[  114.448837][ T2440] bridge_slave_1: left promiscuous mode
[  114.467694][ T2440] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.512998][ T2440] bridge_slave_0: left allmulticast mode
[  114.518697][ T2440] bridge_slave_0: left promiscuous mode
[  114.531601][ T2440] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.819740][ T6128] loop1: detected capacity change from 0 to 4096
[  114.852033][ T6126] loop0: detected capacity change from 0 to 40427
[  114.864118][ T6126] F2FS-fs (loop0): Mismatch start address, segment0(0) cp_blkaddr(512)
[  114.872574][ T6126] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock
[  114.878707][ T6128] NILFS (loop1): invalid segment: Checksum error in segment payload
[  114.886537][ T6126] F2FS-fs (loop0): Ignore s_resuid=0, s_resgid=60929 w/o reserve_root
[  114.897714][ T6128] NILFS (loop1): trying rollback from an earlier position
[  114.919000][ T6126] F2FS-fs (loop0): Found nat_bits in checkpoint
[  114.941019][ T6128] NILFS (loop1): recovery complete
[  114.983271][ T6126] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0
[  114.990411][ T6126] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  115.012444][ T6131] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  115.369089][ T6135] syz.0.291: attempt to access beyond end of device
[  115.369089][ T6135] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  115.385336][ T6135] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  116.670319][ T2440] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  116.683868][ T2440] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  116.698902][ T2440] bond0 (unregistering): Released all slaves
[  116.825802][ T6147] loop1: detected capacity change from 0 to 256
[  116.900330][ T6034] bridge0: port 1(bridge_slave_0) entered blocking state
[  116.910145][ T6034] bridge0: port 1(bridge_slave_0) entered disabled state
[  116.917638][ T6034] bridge_slave_0: entered allmulticast mode
[  116.926106][ T6034] bridge_slave_0: entered promiscuous mode
[  116.964795][ T6034] bridge0: port 2(bridge_slave_1) entered blocking state
[  116.971892][ T6034] bridge0: port 2(bridge_slave_1) entered disabled state
[  116.979934][ T6034] bridge_slave_1: entered allmulticast mode
[  116.988803][ T6034] bridge_slave_1: entered promiscuous mode
[  116.992239][   T46] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  117.057588][ T6034] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  117.130767][ T6034] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  117.194293][   T46] usb 5-1: Using ep0 maxpacket: 8
[  117.203522][   T46] usb 5-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=b0.87
[  117.214361][   T46] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.226803][   T46] usb 5-1: config 0 descriptor??
[  117.237156][ T6034] team0: Port device team_slave_0 added
[  117.245157][   T46] pvrusb2: Hardware description: Terratec Grabster AV400
[  117.253937][   T46] pvrusb2: **********
[  117.257952][   T46] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  117.272612][   T29] audit: type=1800 audit(1719281927.019:173): pid=6150 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.295" name="file1" dev="sda1" ino=1954 res=0 errno=0
[  117.301885][   T46] pvrusb2: Important functionality might not be entirely working.
[  117.309308][ T6034] team0: Port device team_slave_1 added
[  117.338570][   T46] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  117.367907][   T46] pvrusb2: **********
[  117.582369][ T5145] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  117.604810][ T6142] loop4: detected capacity change from 0 to 512
[  117.648563][ T6142] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities
[  117.689215][ T6154] x_tables: duplicate underflow at hook 3
[  117.762587][ T1972] pvrusb2: Invalid write control endpoint
[  117.772838][   T46] usb 5-1: USB disconnect, device number 5
[  117.786902][ T2440] hsr_slave_0: left promiscuous mode
[  117.807997][ T5145] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 189, changing to 11
[  117.835692][ T2440] hsr_slave_1: left promiscuous mode
[  117.844126][ T1972] pvrusb2: Invalid write control endpoint
[  117.849868][ T1972] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  117.850733][ T5145] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 58801, setting to 1024
[  117.879173][ T5145] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  117.889349][ T1972] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  117.892832][ T2440] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  117.911619][ T1972] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  117.921931][ T5145] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  117.922072][ T5145] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.925069][ T5145] usb 1-1: config 0 descriptor??
[  117.933173][ T1972] pvrusb2: Device being rendered inoperable
[  117.940376][ T2440] batman_adv: batadv0: Removing interface: batadv_slave_0
[  117.951201][ T1972] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  117.962730][ T6150] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  117.982776][ T1972] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  117.998634][ T2440] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  118.000459][ T1972] pvrusb2: Attached sub-driver cx25840
[  118.016440][ T2440] batman_adv: batadv0: Removing interface: batadv_slave_1
[  118.022616][ T6157] loop1: detected capacity change from 0 to 2048
[  118.062206][ T1972] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  118.079464][ T1972] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  118.089302][ T2440] veth1_macvtap: left promiscuous mode
[  118.095495][ T2440] veth0_macvtap: left promiscuous mode
[  118.101841][ T2440] veth1_vlan: left promiscuous mode
[  118.107786][ T2440] veth0_vlan: left promiscuous mode
[  118.471867][ T5145] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x3
[  118.489750][ T5145] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x7
[  118.498494][ T5145] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[  118.518222][ T5145] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  119.972172][ T5145] usb 1-1: reset high-speed USB device number 7 using dummy_hcd
[  120.410284][ T2440] team0 (unregistering): Port device team_slave_1 removed
[  120.537620][ T2440] team0 (unregistering): Port device team_slave_0 removed
[  120.617130][ T6175] loop1: detected capacity change from 0 to 32768
[  120.702733][ T6175] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  120.886265][ T6175] XFS (loop1): Ending clean mount
[  120.992787][ T6175] XFS (loop1): Quotacheck needed: Please wait.
[  121.124484][ T6175] XFS (loop1): Quotacheck: Done.
[  121.258149][ T6034] batman_adv: batadv0: Adding interface: batadv_slave_0
[  121.270243][ T6034] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  121.297389][ T6034] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  121.316202][ T6034] batman_adv: batadv0: Adding interface: batadv_slave_1
[  121.332163][ T6034] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  121.363704][ T6034] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  121.379493][ T5096] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  121.425149][ T6150] netlink: 3 bytes leftover after parsing attributes in process `syz.0.295'.
[  121.434396][ T6150] 1����: renamed from 
60����
[  121.441286][ T6150] A link change request failed with some changes committed already. Interface 
61���� may have been left with an inconsistent configuration, please check.
[  121.836512][ T6034] hsr_slave_0: entered promiscuous mode
[  121.853714][ T6200] loop1: detected capacity change from 0 to 2048
[  121.860710][ T6034] hsr_slave_1: entered promiscuous mode
[  121.889092][ T6034] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  121.898130][ T6034] Cannot create hsr debugfs directory
[  121.959249][ T6203] loop0: detected capacity change from 0 to 256
[  122.248191][   T29] audit: type=1326 audit(1719281931.919:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6199 comm="syz.4.315" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1adbd75d39 code=0x0
[  122.548556][   T46] usb 1-1: USB disconnect, device number 7
[  123.006785][ T6213] netlink: 'syz.0.318': attribute type 15 has an invalid length.
[  123.031577][ T6213] netlink: 8 bytes leftover after parsing attributes in process `syz.0.318'.
[  123.297230][ T5963] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  123.318379][ T5963] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  123.396938][ T5963] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  123.415534][ T5963] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  123.495345][ T6211] loop1: detected capacity change from 0 to 32768
[  123.531501][ T6211] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  123.625338][ T6211] XFS (loop1): Ending clean mount
[  123.637474][ T5963] 8021q: adding VLAN 0 to HW filter on device bond0
[  123.639307][ T6211] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  123.685139][ T5096] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  123.744375][ T5963] 8021q: adding VLAN 0 to HW filter on device team0
[  123.805719][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  123.812922][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  123.891878][ T5145] bridge0: port 2(bridge_slave_1) entered blocking state
[  123.899108][ T5145] bridge0: port 2(bridge_slave_1) entered forwarding state
[  123.956000][ T6034] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  123.979498][ T6034] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  124.001005][ T6034] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  124.017371][ T6034] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  124.146562][ T6238] loop0: detected capacity change from 0 to 256
[  124.525742][ T6034] 8021q: adding VLAN 0 to HW filter on device bond0
[  124.628449][ T6034] 8021q: adding VLAN 0 to HW filter on device team0
[  124.717439][ T1714] bridge0: port 1(bridge_slave_0) entered blocking state
[  124.724583][ T1714] bridge0: port 1(bridge_slave_0) entered forwarding state
[  124.778755][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[  124.786063][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[  124.967972][ T6256] loop4: detected capacity change from 0 to 256
[  125.026454][ T6256] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  125.040858][ T5963] 8021q: adding VLAN 0 to HW filter on device batadv0
[  125.354089][   T29] audit: type=1326 audit(1719281935.099:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6265 comm="syz.1.336" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc546775d39 code=0x0
[  125.382848][   T46] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  125.416803][ T5963] veth0_vlan: entered promiscuous mode
[  125.450228][ T5963] veth1_vlan: entered promiscuous mode
[  125.496612][ T6034] 8021q: adding VLAN 0 to HW filter on device batadv0
[  125.527610][ T5963] veth0_macvtap: entered promiscuous mode
[  125.551693][ T5963] veth1_macvtap: entered promiscuous mode
[  125.586548][ T5963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  125.588285][   T46] usb 1-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  125.599976][ T5963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.608209][   T46] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  125.627562][   T46] usb 1-1: Product: syz
[  125.631027][ T5963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  125.631735][   T46] usb 1-1: Manufacturer: syz
[  125.631753][   T46] usb 1-1: SerialNumber: syz
[  125.636719][   T46] usb 1-1: config 0 descriptor??
[  125.643483][ T5963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.666936][ T5963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  125.677558][ T5963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.689387][ T5963] batman_adv: batadv0: Interface activated: batadv_slave_0
[  125.715528][ T5963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  125.726784][ T5963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.737764][ T5963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  125.748403][ T5963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.758640][ T5963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  125.769358][ T5963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.780563][ T5963] batman_adv: batadv0: Interface activated: batadv_slave_1
[  125.801756][ T5963] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  125.810905][ T5963] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  125.823659][ T5963] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  125.832853][ T5963] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  125.847572][ T6034] veth0_vlan: entered promiscuous mode
[  125.863419][   T46] usb 1-1: USB disconnect, device number 8
[  125.929451][ T6034] veth1_vlan: entered promiscuous mode
[  125.988893][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  125.999148][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  126.058362][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  126.067467][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  126.105774][ T6034] veth0_macvtap: entered promiscuous mode
[  126.137726][ T6034] veth1_macvtap: entered promiscuous mode
[  126.275936][ T6034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.299013][ T6034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.312333][ T6034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.329256][ T6034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.341634][ T6280] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  126.360351][ T6034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.362343][ T6280] ip6t_srh: unknown srh match flags  4020
[  126.371336][ T6034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.393723][ T6034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.405724][ T6034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.418091][ T6034] batman_adv: batadv0: Interface activated: batadv_slave_0
[  126.475124][ T6034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  126.497042][ T6034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.517320][ T6034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  126.542099][ T6034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.565163][ T6034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  126.586156][ T6034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.602143][   T46] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  126.618365][ T6290] loop3: detected capacity change from 0 to 2048
[  126.631564][ T6034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  126.651701][ T6034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.665061][ T6034] batman_adv: batadv0: Interface activated: batadv_slave_1
[  126.689294][ T6290]  loop3: p1 < > p3 p4 < >
[  126.705783][ T6034] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  126.711145][ T6290] loop3: p3 start 4284289 is beyond EOD, 
[  126.724100][ T6034] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  126.725060][ T6290] truncated
[  126.729959][ T6034] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  126.761177][ T6034] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  126.825226][   T46] usb 2-1: config 0 has an invalid interface association descriptor of length 5, skipping
[  126.836045][ T6290] affs: No valid root block on device loop3p4
[  126.844639][   T46] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  126.887612][   T46] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  126.900821][   T46] usb 2-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice= 9.99
[  126.920446][ T6296] loop0: detected capacity change from 0 to 2048
[  126.931656][   T46] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.959217][   T46] usb 2-1: config 0 descriptor??
[  126.976497][ T6296] hpfs: hpfs_map_sector(): read error
[  127.137784][ T2426] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.152625][ T6304] ip6t_srh: unknown srh match flags  4020
[  127.159575][ T2426] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.252556][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.281224][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.431398][ T6306] loop0: detected capacity change from 0 to 4096
[  127.702298][    T8] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  127.842185][ T5187] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  127.907512][    T8] usb 5-1: config 0 has more interface descriptors, than it declares in bNumInterfaces, ignoring interface number: 0
[  127.936017][    T8] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  127.981401][    T8] usb 5-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  127.996193][    T8] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  128.011039][    T8] usb 5-1: New USB device found, idVendor=1908, idProduct=1315, bcdDevice= 0.00
[  128.021143][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  128.060229][ T6323] hsr_slave_0: left promiscuous mode
[  128.067863][    T8] usb 5-1: config 0 descriptor??
[  128.119747][ T5187] usb 4-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  128.124552][    T8] usb-storage 5-1:0.0: USB Mass Storage device detected
[  128.136529][ T6323] hsr_slave_1: left promiscuous mode
[  128.161459][    T8] usb-storage 5-1:0.0: Quirks match for vid 1908 pid 1315: 20000
[  128.170684][ T5187] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  128.187749][ T5187] usb 4-1: Product: syz
[  128.200897][ T5187] usb 4-1: Manufacturer: syz
[  128.215451][ T5187] usb 4-1: SerialNumber: syz
[  128.228252][ T5187] usb 4-1: config 0 descriptor??
[  128.365037][ T5187] usb 5-1: USB disconnect, device number 6
[  128.598875][    T8] usb 4-1: USB disconnect, device number 2
[  128.616074][ T6329] loop0: detected capacity change from 0 to 2048
[  128.637234][ T6329] hpfs: hpfs_map_sector(): read error
[  128.645766][ T6318] loop2: detected capacity change from 0 to 32768
[  128.665828][ T6318] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.357 (6318)
[  128.702162][ T6318] BTRFS info (device loop2): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  128.718207][ T6318] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  128.731601][ T6318] BTRFS info (device loop2): using free-space-tree
[  129.141545][ T6354] ip6t_srh: unknown srh match flags  4020
[  129.199964][ T6356] loop0: detected capacity change from 0 to 256
[  129.348785][ T5141] usb 2-1: USB disconnect, device number 4
[  129.446418][ T6364] netlink: 'syz.4.367': attribute type 29 has an invalid length.
[  129.454803][ T6364] netlink: 'syz.4.367': attribute type 29 has an invalid length.
[  129.474017][ T6364] netlink: 'syz.4.367': attribute type 29 has an invalid length.
[  129.484346][ T6364] netlink: 'syz.4.367': attribute type 29 has an invalid length.
[  129.634722][ T6368] loop1: detected capacity change from 0 to 256
[  129.789322][ T6372] hsr_slave_0: left promiscuous mode
[  129.821478][ T6372] hsr_slave_1: left promiscuous mode
[  130.244445][ T6380] loop0: detected capacity change from 0 to 40427
[  130.257153][ T6380] F2FS-fs (loop0): Mismatch start address, segment0(0) cp_blkaddr(512)
[  130.265493][ T6380] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock
[  130.290759][ T6380] F2FS-fs (loop0): Ignore s_resuid=0, s_resgid=60929 w/o reserve_root
[  130.329290][ T6380] F2FS-fs (loop0): Found nat_bits in checkpoint
[  130.365914][ T6380] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0
[  130.373088][ T6380] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  130.638356][ T6390] syz.0.374: attempt to access beyond end of device
[  130.638356][ T6390] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  130.652258][ T6390] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  131.294424][ T6034] BTRFS info (device loop2): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  131.329819][ T6402] loop1: detected capacity change from 0 to 512
[  131.375451][ T6402] EXT4-fs: Ignoring removed mblk_io_submit option
[  131.479073][ T6402] EXT4-fs error (device loop1): __ext4_iget:4906: inode #11: block 1: comm syz.1.380: invalid block
[  131.529800][ T6402] EXT4-fs error (device loop1): ext4_orphan_get:1399: comm syz.1.380: couldn't read orphan inode 11 (err -117)
[  131.580192][ T6408] loop4: detected capacity change from 0 to 128
[  131.623314][ T6402] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.784977][ T6413] loop3: detected capacity change from 0 to 512
[  131.828997][ T5096] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.936705][ T6413] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.971254][ T6413] ext4 filesystem being mounted at /root/syzkaller.XWuTs2/10/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.007978][ T6417] Illegal XDP return value 4294967294 on prog  (id 67) dev N/A, expect packet loss!
[  132.040462][   T29] audit: type=1800 audit(1719281941.779:176): pid=6423 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.385" name="bus" dev="sda1" ino=1964 res=0 errno=0
[  132.065361][   T29] audit: type=1800 audit(1719281941.789:177): pid=6423 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.385" name="bus" dev="sda1" ino=1964 res=0 errno=0
[  132.350569][   T29] audit: type=1804 audit(1719281942.089:178): pid=6432 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.383" name="/root/syzkaller.XWuTs2/10/file0/bus" dev="loop3" ino=18 res=1 errno=0
[  132.588267][ T6429] loop4: detected capacity change from 0 to 40427
[  132.597669][ T6429] F2FS-fs (loop4): Mismatch start address, segment0(0) cp_blkaddr(512)
[  132.606144][ T6429] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  132.630665][ T6429] F2FS-fs (loop4): Ignore s_resuid=0, s_resgid=60929 w/o reserve_root
[  132.671878][ T6429] F2FS-fs (loop4): Found nat_bits in checkpoint
[  132.735782][ T5963] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.771210][ T6429] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[  132.779761][ T6429] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  133.151554][ T6449] syz.4.389: attempt to access beyond end of device
[  133.151554][ T6449] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  133.165548][ T6449] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  133.428337][ T1241] ieee802154 phy0 wpan0: encryption failed: -22
[  133.442128][ T1241] ieee802154 phy1 wpan1: encryption failed: -22
[  133.745623][ T6452] loop1: detected capacity change from 0 to 512
[  133.793260][ T6431] loop0: detected capacity change from 0 to 32768
[  133.823410][ T6431] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.390 (6431)
[  133.823538][ T6452] netlink: 'syz.1.396': attribute type 5 has an invalid length.
[  133.858404][ T6431] BTRFS info (device loop0): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  133.887396][ T6431] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm
[  133.917400][ T6431] BTRFS info (device loop0): using free-space-tree
[  134.052885][ T6464] bridge0: port 3(gretap0) entered blocking state
[  134.060355][ T6464] bridge0: port 3(gretap0) entered disabled state
[  134.071142][ T6464] gretap0: entered allmulticast mode
[  134.085452][ T6464] gretap0: entered promiscuous mode
[  134.096752][ T6464] bridge0: port 3(gretap0) entered blocking state
[  134.103696][ T6464] bridge0: port 3(gretap0) entered forwarding state
[  134.222646][ T6452] SET target dimension over the limit!
[  134.861542][   T29] audit: type=1800 audit(1719281944.599:179): pid=6478 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.400" name="bus" dev="sda1" ino=1948 res=0 errno=0
[  134.888475][   T29] audit: type=1800 audit(1719281944.629:180): pid=6478 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.400" name="bus" dev="sda1" ino=1948 res=0 errno=0
[  134.894376][ T6441] loop2: detected capacity change from 0 to 32768
[  135.041569][ T6479] loop1: detected capacity change from 0 to 4096
[  135.044068][ T6441] XFS (loop2): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  135.062252][ T6479] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[  135.193829][ T6479] ntfs3: loop1: Failed to initialize $Extend/$Reparse.
[  135.233739][ T6441] XFS (loop2): Ending clean mount
[  135.319935][ T6496] RDS: rds_bind could not find a transport for 7274:5f77:6966:6900::, load rds_tcp or rds_rdma?
[  135.546029][ T6479] ntfs3: loop1: ino=1b, "file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" failed to parse mft record
[  135.737435][ T6441] syz.2.393 (6441) used greatest stack depth: 16752 bytes left
[  135.739849][ T6503] loop4: detected capacity change from 0 to 164
[  135.754271][ T6479] ntfs3: loop1: ino=1b, "file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" attr_set_size
[  135.823856][ T6034] XFS (loop2): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  136.158421][ T5096] ntfs3: loop1: ino=1a, ntfs_sync_fs failed, -22.
[  136.369381][ T5088] BTRFS info (device loop0): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  136.551054][ T6507] loop1: detected capacity change from 0 to 2048
[  136.594097][ T6507] hpfs: hpfs_map_sector(): read error
[  136.660163][ T6509] loop3: detected capacity change from 0 to 2048
[  136.671039][ T6509] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  136.748664][ T6512] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  136.943933][   T29] audit: type=1800 audit(1719281946.679:181): pid=6522 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.412" name="bus" dev="sda1" ino=1950 res=0 errno=0
[  137.000889][   T29] audit: type=1800 audit(1719281946.709:182): pid=6522 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.412" name="bus" dev="sda1" ino=1950 res=0 errno=0
[  137.170470][ T6534] loop0: detected capacity change from 0 to 164
[  137.362447][ T6542] netlink: 'syz.2.404': attribute type 29 has an invalid length.
[  137.392603][ T6542] netlink: 'syz.2.404': attribute type 29 has an invalid length.
[  137.444640][ T6542] netlink: 'syz.2.404': attribute type 29 has an invalid length.
[  137.489179][ T6542] netlink: 'syz.2.404': attribute type 29 has an invalid length.
[  137.510425][ T6547] loop4: detected capacity change from 0 to 512
[  137.553762][ T6547] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  137.651850][ T6547] capability: warning: `syz.4.422' uses deprecated v2 capabilities in a way that may be insecure
[  137.690849][   T29] audit: type=1800 audit(1719281947.429:183): pid=6559 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.427" name="bus" dev="sda1" ino=1965 res=0 errno=0
[  137.738196][   T29] audit: type=1800 audit(1719281947.459:184): pid=6559 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.427" name="bus" dev="sda1" ino=1965 res=0 errno=0
[  137.767048][ T5091] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.069705][ T6571] loop3: detected capacity change from 0 to 4096
[  138.093638][ T6571] NILFS (loop3): invalid segment: Checksum error in segment payload
[  138.122520][ T6573] netlink: 'syz.2.435': attribute type 29 has an invalid length.
[  138.127161][ T6571] NILFS (loop3): trying rollback from an earlier position
[  138.139877][ T6573] netlink: 'syz.2.435': attribute type 29 has an invalid length.
[  138.169492][ T6573] netlink: 'syz.2.435': attribute type 29 has an invalid length.
[  138.178088][ T6571] NILFS (loop3): recovery complete
[  138.184741][ T6573] netlink: 'syz.2.435': attribute type 29 has an invalid length.
[  138.203197][ T6577] No control pipe specified
[  138.212554][ T6578] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  139.189835][   T29] audit: type=1800 audit(1719281948.929:185): pid=6593 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.442" name="bus" dev="sda1" ino=1960 res=0 errno=0
[  139.249692][   T29] audit: type=1800 audit(1719281948.969:186): pid=6593 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.442" name="bus" dev="sda1" ino=1960 res=0 errno=0
[  139.294483][ T6599] loop3: detected capacity change from 0 to 64
[  139.564322][ T6607] netlink: 24 bytes leftover after parsing attributes in process `syz.1.450'.
[  139.612275][ T5140] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  140.041757][ T6615] loop0: detected capacity change from 0 to 2048
[  140.205755][ T6615] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  140.504259][ T6618] bridge0: port 3(gretap0) entered blocking state
[  140.510922][ T6618] bridge0: port 3(gretap0) entered disabled state
[  140.517839][ T6618] gretap0: entered allmulticast mode
[  140.527355][ T6618] gretap0: entered promiscuous mode
[  140.534667][ T6618] bridge0: port 3(gretap0) entered blocking state
[  140.541244][ T6618] bridge0: port 3(gretap0) entered forwarding state
[  140.549880][ T6626] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  140.571441][ T6615] syz.0.453: attempt to access beyond end of device
[  140.571441][ T6615] loop0: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  140.571744][ T5140] usb 5-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  140.642062][ T5140] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  140.672032][ T5140] usb 5-1: Product: syz
[  140.678654][ T5140] usb 5-1: Manufacturer: syz
[  140.693771][ T5140] usb 5-1: SerialNumber: syz
[  140.725376][ T5140] usb 5-1: config 0 descriptor??
[  140.944883][ T6629] loop2: detected capacity change from 0 to 1024
[  140.980809][ T6629] EXT4-fs (loop2): stripe (205) is not aligned with cluster size (16), stripe is disabled
[  140.991135][    T8] usb 5-1: USB disconnect, device number 7
[  141.033316][ T6629] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.656413][ T6634] loop0: detected capacity change from 0 to 32768
[  141.675972][ T6634] bcachefs (/dev/loop0): error validating superblock: Invalid superblock section journal_v2: duplicate journal buckets in ranges 9-1073741824016, 24-25
[  141.675972][ T6634] journal_v2 (size 40):
[  141.675972][ T6634] Buckets:  9-1073741824016 24-25
[  141.675972][ T6634] 
[  141.881244][ T6643] loop1: detected capacity change from 0 to 40427
[  141.916963][ T6643] F2FS-fs (loop1): invalid crc value
[  141.920798][ T6645] pimreg: entered allmulticast mode
[  141.924559][ T6643] F2FS-fs (loop1): Found nat_bits in checkpoint
[  141.980474][ T6645] lo: entered allmulticast mode
[  142.002953][ T6645] lo: left allmulticast mode
[  142.007742][ T6645] pimreg: left allmulticast mode
[  142.076073][ T6643] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  142.080508][ T6649] netlink: 24 bytes leftover after parsing attributes in process `syz.4.463'.
[  142.185460][   T29] audit: type=1804 audit(1719281951.929:187): pid=6643 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.461" name="/root/syzkaller.7FJHJQ/111/file0/file0" dev="loop1" ino=10 res=1 errno=0
[  142.489601][ T6656] loop0: detected capacity change from 0 to 2048
[  142.530841][ T5096] syz-executor: attempt to access beyond end of device
[  142.530841][ T5096] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  142.540790][ T6661] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  142.559541][ T5096] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  142.579165][ T6034] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.663537][ T6663] loop3: detected capacity change from 0 to 2048
[  142.682567][ T6663] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  142.773962][ T6668] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  142.774383][ T6663] syz.3.469: attempt to access beyond end of device
[  142.774383][ T6663] loop3: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  142.885901][ T6670] loop0: detected capacity change from 0 to 512
[  142.910220][ T6670] EXT4-fs (loop0): orphan cleanup on readonly fs
[  142.927469][ T6670] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[  142.940614][ T6670] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.473: invalid indirect mapped block 2683928664 (level 1)
[  142.961455][ T6670] EXT4-fs (loop0): Remounting filesystem read-only
[  142.973953][ T6670] EXT4-fs (loop0): 1 truncate cleaned up
[  142.981013][ T6670] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  143.031642][ T6670] overlayfs: failed to get redirect (-5)
[  143.048529][ T6670] overlayfs: failed to get redirect (-5)
[  143.056383][ T6670] overlayfs: failed to get redirect (-5)
[  143.077423][ T6670] overlayfs: failed to get redirect (-5)
[  143.084371][ T6670] overlayfs: failed to get redirect (-5)
[  143.097090][ T6670] overlayfs: failed to get redirect (-5)
[  143.104976][ T6670] overlayfs: failed to get redirect (-5)
[  143.111539][ T6670] overlayfs: failed to get redirect (-5)
[  143.128086][ T6670] overlayfs: failed to get redirect (-5)
[  143.157603][ T6670] overlayfs: failed to get redirect (-5)
[  143.197477][ T5088] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.411074][ T6678] netlink: 12 bytes leftover after parsing attributes in process `syz.4.478'.
[  161.436209][ T6678] netlink: 31 bytes leftover after parsing attributes in process `syz.4.478'.
[  161.451469][ T6676] netlink: 'syz.0.474': attribute type 1 has an invalid length.
[  161.457366][ T6678] netlink: 'syz.4.478': attribute type 2 has an invalid length.
[  161.482024][ T6678] netlink: 'syz.4.478': attribute type 2 has an invalid length.
[  161.494325][ T6678] netlink: 31 bytes leftover after parsing attributes in process `syz.4.478'.
[  161.550596][ T6676] bond1: entered promiscuous mode
[  161.565317][ T6688] netlink: 24 bytes leftover after parsing attributes in process `syz.1.479'.
[  161.632466][ T6687] bond1: (slave ip6gretap1): making interface the new active one
[  161.673232][ T6687] ip6gretap1: entered promiscuous mode
[  161.699381][ T6687] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  161.726062][ T6696] loop1: detected capacity change from 0 to 164
[  161.784281][ T6700] netlink: 8 bytes leftover after parsing attributes in process `syz.4.484'.
[  162.093419][ T6706] loop4: detected capacity change from 0 to 4096
[  162.198969][ T6683] loop2: detected capacity change from 0 to 32768
[  162.211423][ T6683] bcachefs (/dev/loop2): error validating superblock: Invalid superblock section journal_v2: duplicate journal buckets in ranges 9-1073741824016, 24-25
[  162.211423][ T6683] journal_v2 (size 40):
[  162.211423][ T6683] Buckets:  9-1073741824016 24-25
[  162.211423][ T6683] 
[  162.392168][ T5141] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  162.424437][ T6717] loop4: detected capacity change from 0 to 47
[  162.602087][ T5141] usb 4-1: Using ep0 maxpacket: 8
[  162.610114][ T5141] usb 4-1: unable to get BOS descriptor or descriptor too short
[  162.642735][ T6722] netlink: 20 bytes leftover after parsing attributes in process `syz.2.493'.
[  162.648215][ T5141] usb 4-1: New USB device found, idVendor=1410, idProduct=7041, bcdDevice=19.d8
[  162.661430][ T5141] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  162.688498][ T5141] usb 4-1: Product: syz
[  162.705628][ T5141] usb 4-1: Manufacturer: syz
[  162.710261][ T5141] usb 4-1: SerialNumber: syz
[  162.736656][ T5141] usb 4-1: config 0 descriptor??
[  163.005066][ T6737] netlink: 'syz.1.498': attribute type 1 has an invalid length.
[  163.119775][ T6737] bond1: entered promiscuous mode
[  163.276007][ T6743] bond1: (slave ip6gretap1): making interface the new active one
[  163.308637][ T6743] ip6gretap1: entered promiscuous mode
[  163.324679][ T6743] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  163.568614][   T29] audit: type=1800 audit(1719281973.309:188): pid=6754 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.506" name="bus" dev="sda1" ino=1940 res=0 errno=0
[  163.637361][   T29] audit: type=1800 audit(1719281973.349:189): pid=6754 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.506" name="bus" dev="sda1" ino=1940 res=0 errno=0
[  163.900353][ T6764] loop2: detected capacity change from 0 to 4096
[  163.925174][ T6768] loop4: detected capacity change from 0 to 2048
[  163.951593][ T6769] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  164.069795][ T6764] ntfs3: loop2: failed to convert "0080" to koi8-ru
[  164.136674][ T6750] loop0: detected capacity change from 0 to 32768
[  164.164304][ T6750] bcachefs (/dev/loop0): error validating superblock: Invalid superblock section journal_v2: duplicate journal buckets in ranges 9-1073741824016, 24-25
[  164.164304][ T6750] journal_v2 (size 40):
[  164.164304][ T6750] Buckets:  9-1073741824016 24-25
[  164.164304][ T6750] 
[  164.171155][ T6773] netlink: 'syz.1.516': attribute type 1 has an invalid length.
[  164.242863][ T6773] bond2: entered promiscuous mode
[  164.265628][ T6779] Bluetooth: MGMT ver 1.23
[  164.313628][ T6777] bond2: (slave ip6gretap2): making interface the new active one
[  164.349408][ T6777] ip6gretap2: entered promiscuous mode
[  164.389199][ T6783] loop2: detected capacity change from 0 to 47
[  164.424065][ T6777] bond2: (slave ip6gretap2): Enslaving as an active interface with an up link
[  165.089299][ T5141] hub 4-1:0.0: bad descriptor, ignoring hub
[  165.094845][ T6801] loop1: detected capacity change from 0 to 512
[  165.111434][ T5141] hub 4-1:0.0: probe with driver hub failed with error -5
[  165.132373][ T6801] EXT4-fs (loop1): orphan cleanup on readonly fs
[  165.133635][ T5141] option 4-1:0.0: GSM modem (1-port) converter detected
[  165.159718][ T6801] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  165.205863][ T6801] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.525: invalid indirect mapped block 2683928664 (level 1)
[  165.230175][ T6786] loop4: detected capacity change from 0 to 32768
[  165.244833][ T6801] EXT4-fs (loop1): Remounting filesystem read-only
[  165.255713][ T5141] usb 4-1: USB disconnect, device number 3
[  165.262668][ T6801] EXT4-fs (loop1): 1 truncate cleaned up
[  165.274419][ T5141] option 4-1:0.0: device disconnected
[  165.290076][ T6786] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  165.301127][ T6801] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  165.341553][ T6804] loop3: detected capacity change from 0 to 4096
[  165.374632][ T6801] ovl_get_redirect_xattr: 1 callbacks suppressed
[  165.374652][ T6801] overlayfs: failed to get redirect (-5)
[  165.388765][ T6801] overlayfs: failed to get redirect (-5)
[  165.397033][ T6801] overlayfs: failed to get redirect (-5)
[  165.400842][ T6786] XFS (loop4): Ending clean mount
[  165.403929][ T6801] overlayfs: failed to get redirect (-5)
[  165.420095][ T6801] overlayfs: failed to get redirect (-5)
[  165.427157][ T6801] overlayfs: failed to get redirect (-5)
[  165.433958][ T6801] overlayfs: failed to get redirect (-5)
[  165.440643][ T6801] overlayfs: failed to get redirect (-5)
[  165.449049][ T6801] overlayfs: failed to get redirect (-5)
[  165.457368][ T6801] overlayfs: failed to get redirect (-5)
[  165.523572][ T5096] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.563909][ T5091] XFS (loop4): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  165.578079][ T6804] ntfs3: loop3: failed to convert "0080" to koi8-ru
[  165.872504][ T6826] xt_ecn: cannot match TCP bits for non-tcp packets
[  165.880412][ T6828] dccp_flush_write_queue: CCID did not manage to send all packets
[  165.903030][ T6830] No control pipe specified
[  166.406648][ T6840] RDS: rds_bind could not find a transport for 7274:5f77:6966:6900::, load rds_tcp or rds_rdma?
[  167.979644][ T6859] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  168.789393][ T6878] netlink: 8 bytes leftover after parsing attributes in process `syz.2.548'.
[  168.834638][ T6870] loop3: detected capacity change from 0 to 1024
[  169.058313][ T6885] RDS: rds_bind could not find a transport for 7274:5f77:6966:6900::, load rds_tcp or rds_rdma?
[  170.057212][ T6898] loop4: detected capacity change from 0 to 47
[  170.174719][ T6905] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[  170.202473][ T2426] Bluetooth: hci5: Frame reassembly failed (-84)
[  171.590758][ T6934] loop2: detected capacity change from 0 to 1024
[  171.605336][ T6897] loop0: detected capacity change from 0 to 40427
[  171.619317][ T6897] F2FS-fs (loop0): invalid crc value
[  171.668893][ T6897] F2FS-fs (loop0): Found nat_bits in checkpoint
[  171.857004][ T6897] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  172.251383][ T6897] syz.0.558: attempt to access beyond end of device
[  172.251383][ T6897] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  172.273661][ T5104] Bluetooth: hci5: command 0x1003 tx timeout
[  172.294782][ T5099] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  172.307009][ T6897] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  172.425408][ T6931] loop3: detected capacity change from 0 to 40427
[  172.439901][ T6931] F2FS-fs (loop3): invalid crc value
[  172.474353][ T6931] F2FS-fs (loop3): Found nat_bits in checkpoint
[  172.492849][ T5088] syz-executor: attempt to access beyond end of device
[  172.492849][ T5088] loop0: rw=524288, sector=45064, nr_sectors = 8 limit=40427
[  172.543326][ T5088] syz-executor: attempt to access beyond end of device
[  172.543326][ T5088] loop0: rw=0, sector=45064, nr_sectors = 8 limit=40427
[  172.632673][ T6931] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  172.746966][   T29] audit: type=1804 audit(1719281982.489:190): pid=6931 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.570" name="/root/syzkaller.XWuTs2/45/file0/file0" dev="loop3" ino=10 res=1 errno=0
[  173.080980][ T6962] loop2: detected capacity change from 0 to 512
[  173.112370][ T5963] syz-executor: attempt to access beyond end of device
[  173.112370][ T5963] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  173.138526][ T5963] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  173.162347][ T6962] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found
[  173.169792][ T6962] UDF-fs: Scanning with blocksize 512 failed
[  173.190387][ T6962] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found
[  173.242302][ T6962] UDF-fs: Scanning with blocksize 1024 failed
[  173.268864][ T6962] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found
[  173.299721][ T6962] UDF-fs: Scanning with blocksize 2048 failed
[  173.341913][ T6962] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  173.363219][   T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.422634][ T6962] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  173.603225][ T6034] BUG: unable to handle page fault for address: ffffffffffffffeb
[  173.603243][ T6034] #PF: supervisor read access in kernel mode
[  173.603253][ T6034] #PF: error_code(0x0000) - not-present page
[  173.603264][ T6034] PGD e136067 P4D e136067 PUD e138067 PMD 0 
[  173.603292][ T6034] Oops: Oops: 0000 [#1] PREEMPT SMP KASAN PTI
[  173.603319][ T6034] CPU: 0 UID: 0 PID: 6034 Comm: syz-executor Not tainted 6.10.0-rc5-next-20240624-syzkaller #0
[  173.603339][ T6034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  173.603347][ T6034] RIP: 0010:__brelse+0x38/0xa0
[  173.603377][ T6034] Code: 48 83 c3 60 48 89 df be 04 00 00 00 e8 a1 e9 dc ff 48 89 d8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 0f b6 04 08 84 c0 75 44 <8b> 2b 31 ff 89 ee e8 0d 49 76 ff 85 ed 74 17 e8 c4 44 76 ff 48 89
[  173.603390][ T6034] RSP: 0018:ffffc90004d67c68 EFLAGS: 00010246
[  173.603404][ T6034] RAX: 0000000000000000 RBX: ffffffffffffffeb RCX: dffffc0000000000
[  173.603417][ T6034] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffffffffffeb
[  173.603428][ T6034] RBP: 0000000000000008 R08: ffffffffffffffee R09: 1ffffffffffffffd
[  173.603440][ T6034] R10: dffffc0000000000 R11: fffffbfffffffffe R12: 0000000000000008
[  173.603452][ T6034] R13: ffff888022e80000 R14: 0000000000000000 R15: dffffc0000000000
[  173.603469][ T6034] FS:  0000555561b1c500(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000
[  173.603484][ T6034] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  173.603496][ T6034] CR2: ffffffffffffffeb CR3: 0000000021230000 CR4: 00000000003506f0
[  173.603511][ T6034] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  173.603520][ T6034] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  173.603531][ T6034] Call Trace:
[  173.603538][ T6034]  <TASK>
[  173.603545][ T6034]  ? __die_body+0x88/0xe0
[  173.603568][ T6034]  ? page_fault_oops+0x8e4/0xcc0
[  173.603590][ T6034]  ? __pfx_page_fault_oops+0x10/0x10
[  173.603609][ T6034]  ? is_prefetch+0x4ed/0x780
[  173.603627][ T6034]  ? schedule+0x90/0x320
[  173.603646][ T6034]  ? schedule+0x90/0x320
[  173.603664][ T6034]  ? schedule+0x155/0x320
[  173.603683][ T6034]  ? __pfx_is_prefetch+0x10/0x10
[  173.603706][ T6034]  ? __bad_area_nosemaphore+0x118/0x770
[  173.603723][ T6034]  ? __pfx_bit_wait_io+0x10/0x10
[  173.603747][ T6034]  ? __pfx_bit_wait_io+0x10/0x10
[  173.603768][ T6034]  ? __pfx___bad_area_nosemaphore+0x10/0x10
[  173.603786][ T6034]  ? spurious_kernel_fault+0x11e/0x5d0
[  173.603808][ T6034]  ? exc_page_fault+0x5c8/0x8c0
[  173.603834][ T6034]  ? asm_exc_page_fault+0x26/0x30
[  173.603875][ T6034]  ? __brelse+0x38/0xa0
[  173.603893][ T6034]  ? __brelse+0x1f/0xa0
[  173.603908][ T6034]  udf_sb_free_partitions+0x1d5/0x540
[  173.603931][ T6034]  udf_put_super+0x113/0x160
[  173.603948][ T6034]  ? __pfx_udf_put_super+0x10/0x10
[  173.603968][ T6034]  generic_shutdown_super+0x136/0x2d0
[  173.603987][ T6034]  kill_block_super+0x44/0x90
[  173.604006][ T6034]  deactivate_locked_super+0xc4/0x130
[  173.604024][ T6034]  cleanup_mnt+0x41f/0x4b0
[  173.604046][ T6034]  ? lockdep_hardirqs_on+0x99/0x150
[  173.604069][ T6034]  task_work_run+0x24f/0x310
[  173.604095][ T6034]  ? __pfx_task_work_run+0x10/0x10
[  173.604113][ T6034]  ? __x64_sys_umount+0x123/0x170
[  173.604130][ T6034]  ? syscall_exit_to_user_mode+0xa3/0x370
[  173.604147][ T6034]  syscall_exit_to_user_mode+0x168/0x370
[  173.604162][ T6034]  do_syscall_64+0x100/0x230
[  173.604177][ T6034]  ? clear_bhb_loop+0x35/0x90
[  173.604194][ T6034]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.604210][ T6034] RIP: 0033:0x7fbccab77067
[  173.604224][ T6034] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  173.604237][ T6034] RSP: 002b:00007fff813b3798 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  173.604252][ T6034] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fbccab77067
[  173.604261][ T6034] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff813b3850
[  173.604271][ T6034] RBP: 00007fff813b3850 R08: 0000000000000000 R09: 0000000000000000
[  173.604282][ T6034] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff813b4900
[  173.604292][ T6034] R13: 00007fbccabe3672 R14: 000000000002a345 R15: 00007fff813b4940
[  173.604311][ T6034]  </TASK>
[  173.604316][ T6034] Modules linked in:
[  173.604335][ T6034] CR2: ffffffffffffffeb
[  173.604348][ T6034] ---[ end trace 0000000000000000 ]---
[  173.900730][ T6975] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[  173.904195][ T6034] RIP: 0010:__brelse+0x38/0xa0
[  173.915462][ T2470] Bluetooth: hci2: Frame reassembly failed (-84)
[  173.920521][ T6034] Code: 48 83 c3 60 48 89 df be 04 00 00 00 e8 a1 e9 dc ff 48 89 d8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 0f b6 04 08 84 c0 75 44 <8b> 2b 31 ff 89 ee e8 0d 49 76 ff 85 ed 74 17 e8 c4 44 76 ff 48 89
[  173.920539][ T6034] RSP: 0018:ffffc90004d67c68 EFLAGS: 00010246
[  173.920557][ T6034] RAX: 0000000000000000 RBX: ffffffffffffffeb RCX: dffffc0000000000
[  174.075592][ T6034] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffffffffffeb
[  174.083575][ T6034] RBP: 0000000000000008 R08: ffffffffffffffee R09: 1ffffffffffffffd
[  174.091564][ T6034] R10: dffffc0000000000 R11: fffffbfffffffffe R12: 0000000000000008
[  174.099551][ T6034] R13: ffff888022e80000 R14: 0000000000000000 R15: dffffc0000000000
[  174.107538][ T6034] FS:  0000555561b1c500(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000
[  174.116488][ T6034] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  174.123087][ T6034] CR2: ffffffffffffffeb CR3: 0000000021230000 CR4: 00000000003506f0
[  174.131081][ T6034] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  174.139069][ T6034] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  174.147061][ T6034] Kernel panic - not syncing: Fatal exception
[  174.153251][ T6034] Kernel Offset: disabled
[  174.157560][ T6034] Rebooting in 86400 seconds..