last executing test programs:

10m50.964686747s ago: executing program 32 (id=31):
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x161281, 0x0)
write$binfmt_aout(r0, &(0x7f0000000080)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)={0x0, 0xfffffffc, 0x0, 0x0, 0x0, "0040001e1d113c812e5d6000"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ppoll(&(0x7f0000000140)=[{r0}], 0x1, 0x0, 0x0, 0x0)
ioctl$TCSETSW2(r2, 0x402c542c, &(0x7f0000000000)={0x0, 0x4, 0x10, 0x3, 0x2, "e39af7cf10748aa2f56d59af020e5ec7f4c6b7", 0x9, 0x4})

10m42.794128154s ago: executing program 33 (id=70):
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x20, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', 0x1000000, &(0x7f0000000500)=ANY=[], 0x1, 0x26f, &(0x7f0000000280)="$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")
mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', 0x0, 0x200008, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c5)

10m40.850656603s ago: executing program 34 (id=78):
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000900)=[{{&(0x7f0000000240)={0xa, 0x4e24, 0x9, @dev={0xfe, 0x80, '\x00', 0x14}, 0x6}, 0x1c, &(0x7f00000003c0)=[{&(0x7f0000000280)='Q', 0x1}], 0x1}}], 0x1, 0x4000844)
shutdown(0xffffffffffffffff, 0x1)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f00000000c0)={0x0, 0x3}, 0x8)

9m18.912900289s ago: executing program 1 (id=542):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, 0x0, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

9m18.816015047s ago: executing program 1 (id=543):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000180)=[@in={0x2, 0x4e21, @local}], 0x10)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000040)=0x100, 0x4)
sendmsg$inet_sctp(r0, &(0x7f0000000100)={&(0x7f0000000080)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000280)='4', 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0x4040814)
setsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000300)={0xcf, 0x2, 0x68, 0x7f, 0x5, 0x5, 0x2, 0xfd, 0x67, 0x1, 0x3, 0x7, 0x4}, 0xe)
recvmsg(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=""/246, 0xf6}, 0x0)

9m18.608536384s ago: executing program 1 (id=546):
socket$nl_route(0x10, 0x3, 0x0)
ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, &(0x7f0000000000)={0x1, 0x0, [{0x7, 0x7, 0x3, 0x200, 0x24000}]})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000000)={'vxcan1\x00', &(0x7f0000002fc0)=@ethtool_coalesce={0xf, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

9m18.139925912s ago: executing program 1 (id=549):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f0000002f40)={[{@nodelalloc}, {@dioread_lock}, {@barrier_val={'barrier', 0x3d, 0x4}}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x5}}, {@bh}, {@init_itable}]}, 0xfc, 0x56f, &(0x7f0000003780)="$eJzs3d9rW1UcAPDvTdPup66DMdQHGezByVy6tv6YIDgfRYcDfZ+hzcpouowmHWsduD24F19kCCIOxD/Adx+H/4B/xUAHQ0bRBxEiN73psjZp2i4z2fL5wG3Pyb23535z7vf2nNyEBDC0jqU/chEvR8Q3ScShlnX5yFYeW9tu9eH1mXRJol7/9M8kkuyx5vZJ9vtAVnkpIn79KuJkbnO71eWV+WK5XFrM6hO1hSsT1eWVU5cWinOludLlqenpM29NT737zts9i/X1839//8ndD898fXz1u5/vH76dxNk4mK1rjeMJ3GitHCv+m5VG4+yGDSd70NggSfp9AOzKSJbno5FeAw7FSJb1wPPvy4ioA0Mqkf8wpJrjgObcvkfz4GfGgw/WJkCN2Mda48+vvTYSextzo/2ryWMzo3S+O96D9tM2fvnjzu10ia1fh9jXpQ6wIzduRsTpfH7z9T/Jrn+7d7rx4vHWNrYxbP9/oJ/upuOfN9qN/3Lr459oM/450CZ3d6N7/ufu96CZjtLx33ttx7/rl67xkaz2QmPMN5pcvFQunY6IFyPiRNS73vo4s3qv3mld6/gvXdL2m2PB7Dju5/c8vs9ssVaMiLFdhvyYBzcjXsm3iz9Z7/+kTf+nz8f5bbZxtHTn1U7rusf/dNV/initbf8/6tZk6/uTE43zYaJ5Vmz2162jv3Vqv9/xp/2/f+v4x5PW+7XVnbfx495/Sp3W7fb8H0s+a5SbSXCtWKstTkaMJR9vfnzq0b7NenP7NP4Tx7e+/rU7/9PJ1+fbjP/WkVsdNx2E/p/dUf/vvHDvoy9+6NT+9vr/zUbpRPZIdv1rLztXtnuAT/r8AQAAAAAAwCDJRcTBSHKF9XIuVyisvb/jSOzPlSvV2smLlaXLs9H4rOx4jOaad7oPtbwfYjJ7P2yzPrWhPh0RhyPi25F9jXphplKe7XfwAAAAAAAAAAAAAAAAAAAAMCAOdPj8f+r3kX4fHfDUNb7YYE+/jwLoh65f+d+Lb3oCBlLX/AeeW/Ifhpf8h+El/2F4yX8YXvIfhpf8h+El/wEAAAAAAAAAAAAAAAAAAAAAAAAAAKCnzp87ly711YfXZ9L67NXlpfnK1VOzpep8YWFppjBTWbxSmKtU5sqlwkxlodvfK1cqVyanYunaRK1UrU1Ul1cuLFSWLtcuXFoozpUulEb/l6gAAAAAAAAAAAAAAAAAAADg2VJdXpkvlsulRYWOhfdjIA7jaQa4Zle75wclCoUOhZtZ9+5srz5elAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgg/8CAAD//4yLMZo=")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x125)
unlinkat(r0, &(0x7f0000000140)='./file2\x00', 0x0)

9m17.290152052s ago: executing program 1 (id=556):
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace00000000000000002100000002ff02000000000000000000000000000104004e200023b0"], 0x0)
r0 = epoll_create1(0x0)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[], 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000200)={0xa0000004})

9m16.528932394s ago: executing program 1 (id=559):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x88880, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x210a055, 0x0, 0x0, 0x0, 0x0)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x43000c80)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x58, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000001c0)={0x0, 0x1, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
r3 = dup(r2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)=@arm64={0x6, 0x4, 0x9, '\x00', 0x1})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000000c0)=0xffff)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

9m15.84057278s ago: executing program 35 (id=559):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x88880, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x210a055, 0x0, 0x0, 0x0, 0x0)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x43000c80)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x58, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000001c0)={0x0, 0x1, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
r3 = dup(r2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)=@arm64={0x6, 0x4, 0x9, '\x00', 0x1})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000000c0)=0xffff)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

9m10.597531969s ago: executing program 6 (id=606):
socket$inet(0x2, 0x2, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x8000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe4000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, &(0x7f0000000240)="3b76210fb6150f209e440f20c0663503000000440f22c00fa266ae0bc7bad42a2a0fa7d0440f20c066350d000000440f22c06767f2caab12bad004ec", 0x3c}], 0x1, 0xd, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f00000002c0)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

9m9.97136781s ago: executing program 6 (id=608):
socket$nl_route(0x10, 0x3, 0x0)
ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, &(0x7f0000000000)={0x1, 0x0, [{0x7, 0x7, 0x3, 0x200, 0x24000}]})
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000000)={'vxcan1\x00', &(0x7f0000002fc0)=@ethtool_coalesce={0xf, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

9m9.760063727s ago: executing program 6 (id=610):
r0 = syz_open_dev$loop(&(0x7f00000001c0), 0x1000000000007, 0x28842)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000340)='/sys/power/pm_async', 0x141042, 0xcd)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000080)={r1, 0x543b, {0x0, 0x0, 0x0, 0x0, 0x4000000000000ffd, 0x0, 0x1, 0x3, 0xc, "faf98317e5a1149989fc8dbe43ea6acc96e3a2503dc3bd3fe37d58128bbad0099cebdc25f5ab60c9e6d680f985881a7beda9d69098c8b534464c516bdd8a0f35", "32d8cc26f7061a74df2cfc06c89f3d9e234b30c50997d3bef409ff2176ff7bfe55cd4a5d83cd4a524bd3ffe70c7f3f800b2f7b6aa54cc50a1fcaed1e831fa79a", "67523760fd40f78d2cfc03d81a8ca55ba139c01802c4dae4162e43ac61b7ad33", [0x2, 0x81]}})

9m9.447851793s ago: executing program 6 (id=612):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f0000002f40)={[{@nodelalloc}, {@dioread_lock}, {@barrier_val={'barrier', 0x3d, 0x4}}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x5}}, {@bh}, {@init_itable}]}, 0xfc, 0x56f, &(0x7f0000003780)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
unlinkat(0xffffffffffffffff, &(0x7f0000000140)='./file2\x00', 0x0)

9m8.785107097s ago: executing program 6 (id=616):
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
syz_emit_ethernet(0x83, 0x0, 0x0)
r1 = epoll_create1(0x0)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[], 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000200)={0xa0000004})

9m6.320885398s ago: executing program 6 (id=622):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x6, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
io_setup(0xa24, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000300)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x5, 0x403, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2}])
ptrace$setregs(0xd, r0, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x8a0602)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, &(0x7f0000000000)={0x80000002})
ptrace$getregset(0x4205, r0, 0x2, &(0x7f0000000080)={&(0x7f0000000000)=""/120, 0x78})
ptrace$getregset(0x4204, r0, 0x2, &(0x7f0000000740)={0x0})

9m5.580941489s ago: executing program 36 (id=622):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x6, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
io_setup(0xa24, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000300)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x5, 0x403, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2}])
ptrace$setregs(0xd, r0, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x8a0602)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, &(0x7f0000000000)={0x80000002})
ptrace$getregset(0x4205, r0, 0x2, &(0x7f0000000080)={&(0x7f0000000000)=""/120, 0x78})
ptrace$getregset(0x4204, r0, 0x2, &(0x7f0000000740)={0x0})

9m3.495421839s ago: executing program 4 (id=636):
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[], 0x0)
r1 = epoll_create1(0x0)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[], 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000200)={0xa0000004})

9m3.35731702s ago: executing program 4 (id=637):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x8000, &(0x7f0000000740)=ANY=[@ANYBLOB="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", @ANYBLOB="d23c17f6ec95b3b820b1161ffa233394c6007d8285b061be4d1d842e4a63ec77908347691f71d1e4132f09405a5b81867a01cf3df73c16fd31622d37a921bdbff76ef2fed6da828ab4e0f87928c18c0380050249fb6ab8e225d1f3c041a6377723b83e57fcac059ad433974df43b0efc268cbd67279c5e0f19f5b89100cc35aafb9e96dae3d8afe28e887e01475b9ec063d40d1080f70254a3f65a1c6261571866a21a54d762495480"], 0xf, 0x2a4, &(0x7f0000000480)="$eJzs3T9rc2UUAPBzkzSNOqSIiyJ4QQen0rq6NEoFsZMSQR002BYkCYUWAlYwduoncPR7+BFcXPwGgqvg1g6VKzf33ia16R/65k3h7e83nd7nnvOc3KckU06+eXPY3z1I4uTsz2i1kqhtxVacJ7EWtaj8FI0AAF4c51kW/2QPyWzUFt8NALAMxed/4bF7AQCW47Mvvvyks7Oz/WmatuL19umom0TE8HTULdY7+/FdDGIvNqIdFxHZpSL+6OOd7WikubV4ZzgedfPM4de/l/U7f0dM8jejHWvz8zfTwmX+y1V3aXT2V6o/2vHa/Pz3/p8fw3F0m/Hu2zP9r0c7/vg2DmIQu5HnTvN/3EzTD7Ofz374Kt8mz09q0V2d3DeV1Zd0JAAAAAAAAAAAAAAAAAAAAAAAPAHraZoU43sm83vyS5P5OaNu/WKyvp5WZuf7jKv5QElVqJgPlEU5omecxS/VfJ2NNE2z8sZpfiPeaPhhAQAAAAAAAAAAAAAAAAAAAMgdfX/c7w0Ge4cLCappANXX+h9aZ2vmyltx3O/Vby64ev+9ZqcN5L3eenM0GrGgx3JX8FLez8Irr04P9/MogupgFrrXqx8URY/7vbRcqh5yv5fctVerOrhfZ5ea8ayNZZN/iYvs6pm2Llu9mtVc0NNovjJ36d8sy+5X5/2/ijMqrySTERv3232lDOa+wDxoXT+L324ueONbRn0hbzwAAAAAAAAAAAAAAAAAAMA10y/9zlk8uTW19tyaAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAlm/7+fxW0IuLqlWvBuEy+7Z4yaMbh0SO/RAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJ6A/wIAAP//4ipOSw==")
ftruncate(0xffffffffffffffff, 0x2007ffc)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000280)={0x9f, 0x3, 0x101, "d985bf43e21d4c2b3fd4ae004e237e04bac5953fdac624a23e111d10fdfaae216261142735fd00e45460e99929d0ca257c7a0b026947b22494c5a187b5f22b53e508103d51d02e575ac26e2526202140ffffff2d07000000cd9458bd010166ced797ea32fc300eaee5dbf7606c6fc1dc2f12d4e99e18c3f377500dd7a2c16a2c3f29e4b3aa6496ce6f86bb6e1fea5cc861580a56508fe9be44239567030000"})

9m3.205271093s ago: executing program 4 (id=638):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x92)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000180), 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mountinfo\x00')
r1 = open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x1)
sendfile(r1, r0, 0x0, 0x80000000)

9m3.029274288s ago: executing program 4 (id=639):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000000)='binfmt_misc\x00', 0xc00, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x2a05004, 0x0)
pivot_root(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000000240)='./file0/../file0\x00')

9m2.87933334s ago: executing program 4 (id=640):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x1d0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x10, 0x0)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x400a8, &(0x7f0000000380)=ANY=[], 0x1, 0x0, 0x0)
symlinkat(&(0x7f0000000080)='.\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00')
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x104000, 0x0)
mount$bind(&(0x7f0000000480)='./file0/file0\x00', &(0x7f0000000140)='./file0/file0/../file0\x00', 0x0, 0xa1c08, 0x0)
mount$9p_unix(&(0x7f0000000100)='./file0/file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x12d7498, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='devpts\x00', 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])

9m2.581012624s ago: executing program 4 (id=642):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000080000002d01000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

9m1.89900979s ago: executing program 37 (id=642):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000080000002d01000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

8m37.555007839s ago: executing program 5 (id=744):
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000280)='./file0\x00', 0x800006, &(0x7f0000000000)=ANY=[@ANYBLOB="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"], 0x1, 0x36f, &(0x7f0000000340)="$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")
syz_open_dev$tty1(0xc, 0x4, 0x4)
r0 = userfaultfd(0x80001)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000009, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000002c0)={0xaa, 0x100})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000000000/0x400000)=nil, 0x400000}, 0x1})
syz_read_part_table(0x4034, &(0x7f0000000000)="$eJzszjFKxGAUhdEbTciPpBHshGAQLCV2VtlFNpA1WFuYnVgGF+Dy7FUQiwzMzDnd43HhC0eh/XZ/Lh/XSe6GrOOYlCT1L7PxKc1VuUiX5OXne9726gUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAE7Gcpv1dcpzl5Q2ydtlmqmvcpMMj3/P5+0QkQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAWXu/zzr1VUoyPPxvWieZt73CAAAAAAAAAIAvduBAAAAAAADI/7URqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqrADBwIAAAAAQP6vjVBVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWFHTggAQAAABD0/3U7AgUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4KIAAAD//1e1DFc=")
syz_genetlink_get_family_id$tipc2(&(0x7f00000020c0), 0xffffffffffffffff)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa01, &(0x7f00000000c0)={&(0x7f0000007000/0x3000)=nil, 0x3000})
r1 = open(&(0x7f00000000c0)='./file0\x00', 0x108843, 0x190)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
fcntl$setlease(r1, 0x400, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000180)='fdinfo/4\x00')
read$FUSE(r2, &(0x7f0000000480)={0x2020}, 0x2020)

8m36.279076264s ago: executing program 5 (id=753):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x88880, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x58, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x1a, 0x3, &(0x7f0000000140)=@framed, &(0x7f0000000340)='syzkaller\x00', 0x1, 0xbb, &(0x7f0000000180)=""/187, 0x41000, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x267e}, 0x94)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)=@arm64={0x6, 0x4, 0x9, '\x00', 0x1})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000000c0)=0xffff)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

8m35.83911596s ago: executing program 5 (id=757):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002000), 0x2, 0x0)
r1 = getgid()
syz_mount_image$fuse(&(0x7f0000002040), &(0x7f0000002080)='./file0\x00', 0x2004019, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=r1, @ANYBLOB=',group_id=', @ANYRESDEC=r1], 0xfc, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
syz_fuse_handle_req(r0, &(0x7f0000002180), 0x2000, &(0x7f0000004180)={&(0x7f00000002c0)={0x50, 0x0, 0x0, {0x7, 0x29, 0x0, 0x400000, 0x8000, 0x0, 0x40}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f00000042c0), 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f00000083c0)="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", 0x2000, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x90, 0x0, 0x0, {0x2000003, 0x3, 0x6, 0x0, 0x1ff, 0x3, {0x6, 0x4, 0x7, 0x5, 0x100000001, 0x6, 0x3, 0x0, 0x101, 0x6000, 0x5, 0x0, r1, 0x801, 0x8}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = open(&(0x7f0000000100)='./file0/file1\x00', 0xc03, 0x3c)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000400)={0x53, 0xfffffffffffffffd, 0xffffffffffffff40, 0xd, @buffer={0xe7, 0x40000, &(0x7f0000000480)=""/246}, 0x0, 0x0, 0x1a54, 0x35, 0x3, 0x0})

8m34.818221463s ago: executing program 5 (id=766):
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000000)='.\x02\x00', 0x18c48, &(0x7f0000000480)=ANY=[@ANYBLOB='nojoliet,mode=0x00000000000000e4,dmode=0x0000000000000005,check=relaxed,overriderockperm,utf8,mode=0x0000000000000000,nojoliet,cruft,mode=0xfffffffffffffffb,utf8,session=0x0000000000000043,hide,dmode=0x000000000000001f,uid=', @ANYRESDEC, @ANYBLOB="2c836f64653d3078303030303035303038303030303030310086cb4be138f89f69aed82c696f636861727365743d6d6163696e7569742c66756e633d4250524d5f43484543904771793dc06c06611e04e903f5e2c7602f64a99beff40c21fbbb1601b5869235b81f95cf0a39f6c3195e5125f94f2f8c75c38fc0c09c03ea3fbd2e76cce2a69c86a047ad17d0db289cbb207d32db67514e59f271e76fb943f96cbc734be7f5f87b4f17b44a6eaeb832436386d4060000000000000077d44c6accfaa75c7ae620d71699794e59af4cb377883fc3e4c9dfdb6340cb6395e3776c2b7eede91e42537942c5e62bf46bf7b8542c03f6240d54d761466db4e9134915ca2839bbf4d798c1defbffffff9b142b4e603178a6862a8b03340d309cab1a0cd33fb757910ccc8420000000934038e92ed734e0eb7d200c8283ff14dcc7b61114a4fef9561fa90000000000000000000000000000bbb7d9d89141b840e8d38e45316a131352664cd897520a1623cd7d9aa5ab982fc9968f69a317673f024ce50b536c66a16e97fcc7e57a6d59af60de9e4322d805c67ae041da714d6ee821944f76339c5f456bd13aff607c6edc6a0dee8bfb78ad55679465a6f19f952a32863d527189730988491ebbf21ded552eba02e14b96e9d6332ad7fd17a3836da80b748baaf8a75bf5c89fa9a52b011416df6f0ebd3982e8bf124ff05167f9b431ed898f374b32913783268d757a8310545796d6c0e86463ed4b52c1e05eac06f0e959fb515328fe7e53768189d8ba8fdb64eef6737ea75e1895d8cce69a2563dec5e5e1780d53da1e6f2bd6d2fb02c15c8550dd55b930f8b07ff93cee957431ec71a0c162fa10109f0bfff1a14d42e1202387d4f7838a97f97182f31d1bbaa9e545033dd516d4054d58dfd9fb58cdc109c4a8a497b00132c1abe3"], 0x1, 0x5a7, &(0x7f0000000f80)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)

8m34.275037438s ago: executing program 5 (id=770):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f00000014c0)=[@text64={0x40, &(0x7f0000001500)="267600410f01b00000000066b88e000f00d066420f3a14ce5736430f0164b107b805000000b9060000000f01c1f30f01330f015b7548b80c000000000000000f23d80f21f835800000000f23f8f30fc733", 0x51}], 0x1, 0x43, 0x0, 0x0)
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

8m33.806857936s ago: executing program 5 (id=773):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_emit_ethernet(0x4a, &(0x7f0000000380)={@broadcast, @multicast, @val={@void, {0x8100, 0x0, 0x0, 0x2}}, {@ipv6={0x86dd, @icmpv6={0x7, 0x6, "d172f5", 0x10, 0x3a, 0xff, @private1={0xfc, 0x1, '\x00', 0x1}, @mcast2, {[], @ni={0xc46ee13d8e75c188, 0x0, 0x0, 0xc2, 0x2, 0x9}}}}}}, 0x0)
setsockopt$sock_int(r0, 0x1, 0x23, &(0x7f0000000200)=0x7b, 0x4)
recvmsg(r0, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x20)

8m33.188673086s ago: executing program 38 (id=773):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_emit_ethernet(0x4a, &(0x7f0000000380)={@broadcast, @multicast, @val={@void, {0x8100, 0x0, 0x0, 0x2}}, {@ipv6={0x86dd, @icmpv6={0x7, 0x6, "d172f5", 0x10, 0x3a, 0xff, @private1={0xfc, 0x1, '\x00', 0x1}, @mcast2, {[], @ni={0xc46ee13d8e75c188, 0x0, 0x0, 0xc2, 0x2, 0x9}}}}}}, 0x0)
setsockopt$sock_int(r0, 0x1, 0x23, &(0x7f0000000200)=0x7b, 0x4)
recvmsg(r0, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x20)

1m17.126087396s ago: executing program 8 (id=3853):
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0xa0, 0x0, 0x3, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f0000000240)='./file0\x00', 0x322060, &(0x7f0000000dc0)=ANY=[], 0x1, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040), 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
getdents64(0xffffffffffffffff, &(0x7f0000000100)=""/46, 0x8d)

1m16.321542872s ago: executing program 8 (id=3861):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./bus\x00', 0x400e, &(0x7f0000000280)={[{@i_version}, {@nobh}, {@data_err_ignore}, {@nolazytime}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@acl}]}, 0x1, 0x42f, &(0x7f0000000940)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ftruncate(r2, 0x2000009)
write$RDMA_USER_CM_CMD_SET_OPTION(r1, &(0x7f0000000180)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000100)=0x1, 0xffffffffffffffff, 0x0, 0x1, 0x4}}, 0x20)
write$binfmt_script(r2, &(0x7f0000000140), 0xfcb8)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0x40305829, &(0x7f0000000000)={0x17c04, 0xffffffffffffffff, 0x0, 0x100000001})
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0x0, 0x100000001})

1m15.847353931s ago: executing program 8 (id=3865):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x4, 0xff}, 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f00000021c0)={0xffffffffffffffff, 0x0, 0x0}, 0x10)

1m15.657068696s ago: executing program 8 (id=3867):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0xb, 0x2}]}}, 0x0, 0x26, 0x0, 0x1}, 0x28)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="080000000000000002000040"])

1m15.285305267s ago: executing program 8 (id=3870):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000002100), 0x4009, &(0x7f0000000180)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x3, 0x0, 0x0, 0x0)
r1 = open(&(0x7f0000000000)='.\x00', 0x800000, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r1, 0x40049366, 0x0)

1m15.094140222s ago: executing program 8 (id=3873):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./bus\x00', 0x400e, &(0x7f0000000280)={[{@i_version}, {@nobh}, {@data_err_ignore}, {@nolazytime}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@acl}]}, 0x1, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ftruncate(r2, 0x2000009)
write$RDMA_USER_CM_CMD_SET_OPTION(r1, &(0x7f0000000180)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000100)=0x1, 0xffffffffffffffff, 0x0, 0x1, 0x4}}, 0x20)
write$binfmt_script(r2, &(0x7f0000000140), 0xfcb8)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0x40305829, &(0x7f0000000000)={0x17c04, 0xffffffffffffffff, 0x0, 0x100000001})
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0x0, 0x100000001})

1m0.032573214s ago: executing program 39 (id=3873):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./bus\x00', 0x400e, &(0x7f0000000280)={[{@i_version}, {@nobh}, {@data_err_ignore}, {@nolazytime}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@acl}]}, 0x1, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ftruncate(r2, 0x2000009)
write$RDMA_USER_CM_CMD_SET_OPTION(r1, &(0x7f0000000180)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000100)=0x1, 0xffffffffffffffff, 0x0, 0x1, 0x4}}, 0x20)
write$binfmt_script(r2, &(0x7f0000000140), 0xfcb8)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0x40305829, &(0x7f0000000000)={0x17c04, 0xffffffffffffffff, 0x0, 0x100000001})
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0x0, 0x100000001})

17.834112862s ago: executing program 0 (id=4294):
r0 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCSETD(r0, 0x5423, 0x0)

16.903295799s ago: executing program 0 (id=4298):
r0 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$FOU_CMD_ADD(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000740)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010028bd700002dcdf250100060114000700fe880000000000000000000000000101050002000a00000008000b00", @ANYRES32=r2, @ANYBLOB="77134627b54fbfd6740470c9c9a63476f5efc8c4951bcac8d7e419c37299101681e43a860c4ae5b1b9cc43fc3f22c03c3f481c3637733c9b82c61d5e3875568dd20ca3af1deea0f67a61d1807a0327b0a16d514ce8e49aa8d495a9afb4a88d271659164af70a91c1d758792b31b13ee17cfd75d7e11b9caa2c32867d3ff70f434ac034c11c0f2171e80c1e4d8a0d0b695fd2"], 0x38}, 0x1, 0x0, 0x0, 0x801}, 0x0)

16.729665313s ago: executing program 0 (id=4300):
r0 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8983, &(0x7f0000000040)={0x2, 'vlan1\x00', {}, 0x5})

16.51924523s ago: executing program 0 (id=4302):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f0000002f40)={[{@nodelalloc}, {@dioread_lock}, {@barrier_val={'barrier', 0x3d, 0x4}}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x5}}, {@bh}, {@init_itable}]}, 0xfc, 0x56f, &(0x7f0000003780)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x42, 0x80)
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file1\x00', 0x1c4)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file1\x00', 0x0, 0x0, 0x1400)

15.835340076s ago: executing program 0 (id=4308):
r0 = socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f00000003c0)=[{0x0}], 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000005b80)={@loopback={0xfec0ffffffffffff}, 0x32, r2})
ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000300)={@private1={0xfc, 0x1, '\x00', 0x1}, 0x69, r2})
writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000400)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000200000000000006040000000000f93132", 0x39}], 0x1)

15.323208318s ago: executing program 0 (id=4313):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x2, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000380)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0x2, @loopback, 0x10b}, {0xa, 0x4e23, 0x7, @empty, 0x8}, r1, 0x10007}}, 0x48)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff}, 0x2, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(r2, &(0x7f00000000c0)={0x14, 0x88, 0xfa00, {r3, 0x10, 0x0, @in={0x2, 0x4e23, @empty}}}, 0x90)
close(0x3)

14.721655887s ago: executing program 40 (id=4313):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x2, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000380)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0x2, @loopback, 0x10b}, {0xa, 0x4e23, 0x7, @empty, 0x8}, r1, 0x10007}}, 0x48)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff}, 0x2, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(r2, &(0x7f00000000c0)={0x14, 0x88, 0xfa00, {r3, 0x10, 0x0, @in={0x2, 0x4e23, @empty}}}, 0x90)
close(0x3)

2.465466899s ago: executing program 9 (id=4399):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x4, 0xdd, 0xa}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001801", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x4, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c250000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)=r1}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000300)=@framed={{0x7a, 0xa, 0x0, 0xff00, 0x0, 0x71, 0x10, 0x43}}, &(0x7f0000000480)='syzkaller\x00'}, 0x94)

2.253748766s ago: executing program 3 (id=4401):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c80)={'lo\x00', <r1=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000005b80)={@loopback={0xfec0ffffffffffff}, 0x32, r1})

1.95694177s ago: executing program 9 (id=4403):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="01000000040000000400000009"], 0x50)
close(0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{r1}, &(0x7f0000000000), &(0x7f0000000600)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000400)={r2}, 0xc)

1.942172411s ago: executing program 2 (id=4404):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x5}, 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1, 0x8, 0xb, 0xd}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="1802000004000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b7030000000000fd8500000071000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000680)='sys_exit\x00', r1}, 0x10)

1.845803989s ago: executing program 3 (id=4405):
r0 = socket(0xa, 0x3, 0xff)
connect$inet6(r0, &(0x7f0000000280)={0xa, 0x4e22, 0x2, @loopback, 0x3}, 0x1c)
sendmmsg$inet6(r0, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000040)=[{0x0}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="15000000000000002900000043"], 0x18}}], 0x2, 0x44080)

1.645093106s ago: executing program 9 (id=4407):
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2a, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000059c0)='./bus\x00', 0x1400e, &(0x7f0000000100)={[{@quota}]}, 0x1, 0x441, &(0x7f00000009c0)="$eJzs28tvG8UfAPDvrp3219cvpiqPPoBAQVQ8kiYtpQcuIJA4gIQEh3IMSVqVug1qgkSrCgpC5YgqcUcckfgLOMEFASckrnBHlSrUSwsno7V3E8exncQ4ccGfj7TJzO5EM1/vjD2zEwcwtMayH0nE7oj4NSJGG9mVBcYav+7cujLz560rM0nUam/8kdTL3b51ZaYoWvzdriJTjkg/SeJgm3oXLl0+N12tzl3M8xOL59+dWLh0+Zmz56fPzJ2ZuzB18uTxY5PPnZh6ti9xZnHdPvDB/KH9r7x1/bWZU9ff/vHrpIi/JY4+Get28fFarc/VDdaepnRSHmBD2JBSY5jGSH38j0Yplm/eaLz88UAbB2yqWq1Wu6/z5as14D8siUG3ABiM4oM+W/8WxxZNPe4KN19oLICyuO/kR+NKOdK8zEjL+rafxiLi1NW/vsiO2JznEAAAK3ybzX+ebjf/S6P5udD/8z2USkTcExF7I+JEROyLiHsj6mXvj4gHNlh/6ybJ6vlPeqOnwNYpm/89n+9trZz/FbO/qJTy3J56/CPJ6bPVuaP5a3IkRrZn+ckudXz30i+fdbrWPP/Ljqz+Yi6Yt+NGeXufgm3j5kcRB8rt4k+WdgKSiNgfEQd6rOPsk18d6nRt7fi76MM+U+3LiCca9/9qtMRfSLrvT078L6pzRyeKXrHaTz9fe71T/euKP/nncXaS3f+dEVF0sdXx76kkzfu1Cxuv49pvn3Zc0/TS/2enF6e3JW+uOPf+9OLixcmIbcmr9Xyl+fxUS7mp5fJZ/EcOtx//e2P5lTgYEVknfjAiHoqIh/O2PxIRj0bE4S7x//DiY+/0Hv/myuKfbfv+t9TpWu7/cmJbtJ5pnyid+/6bFZVWNhJ/dv+P11NH8jPZ/V8rrvW0q7feDAAAAP8+aUTsjiQdX0qn6fh443/498XOtDq/sPjU6fn3Lsw2viNQiZG0eNI12vQ8dDJf1hf5sZb8sfy58eelHfX8+Mx8dXbQwcOQ29Vh/Gd+Lw26dcCm830tGF7GPwwv4x+Gl/EPw6vN+N8xiHYAW6/d5/+HA2gHsPVaxr9tPxgi1v8wvMrW+zC0fP7DUFrYEWt/SV5CYlUi0ruiGRI9JtKI6FZm0O9MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/fF3AAAA//+edt38")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x441, 0x20)
fallocate(r0, 0x0, 0x204, 0x4000)
ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, &(0x7f0000000340)={0x5, 0x100000000, 0x1, 0x5, 0x3, 0x0, [{0xfff, 0x1000, 0x8, '\x00', 0x202}, {0x7ff, 0x9774, 0x606, '\x00', 0x4}, {0x96ce, 0x7, 0x5}]})

1.644945205s ago: executing program 2 (id=4408):
syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000280)='./file0\x00', 0x10002, &(0x7f0000000000)={[{@fat=@allow_utime={'allow_utime', 0x3d, 0x3}}, {@fat=@errors_remount}, {@dots}, {@fat=@sys_immutable}, {@dots}]}, 0x1, 0x242, &(0x7f0000000980)="$eJzs3bFqFFEUBuCzyZosaUwtFgM2Vota2Q4SQRwQVqbQyoFok4gwaUarfQyfwcb38TFSpRsxs2bHRG10c7M73wfLPfCzcG6zd4tzZ97cfX90+OHkXfvt89fJJItxxLxtI/ZjK7ajM1qsW+f1TvTNAwBYN7NZlafugdWq67y6FRG7V5LyS5KGAAAAAAAAAAAA+Ge9+f/4Of8fZ+b/AWCTmf/ffHWdV3uL/2+/Mv8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAApHPWtrfbv3xS9wcA/H/OfwAYHuc/AAyP8x8Ahuflq9fP86I4mGXZJOJ03pRN2a1d/vRZcfAgO7e//NZp05TbF/nDLs96+WgUEXuL/NHVvGnKnbh/r8t/ZE9eFJfy3Thc/fYBAAAAAAAAAAAAAAAAAADgRphmF357v386/VPeVb3nA1y6vz+OO+Nr2wYAAAAAAAAAAAAAAAAAAACstZOPn46q4+O3tWJjinh8I9pQrHWR+pcJAAAAAAAAAAAAAAAAAACGZ3npN3UnAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJDO8v3/qytS7xEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYhu8BAAD//z/ok4k=")
syz_emit_ethernet(0x4e, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd61b341af001800fffe880000000000000000000000000101fc00cc00000000000000000000000003ff020708"], 0x0)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x3, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000002000000000000000008082295"], &(0x7f0000000240)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0xffffffffffffff6b, &(0x7f0000000000)="ff", 0x0, 0x149c, 0x503, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe}, 0x48)

1.575658411s ago: executing program 3 (id=4409):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x0, &(0x7f0000000600), 0x1, 0x555, &(0x7f0000000640)="$eJzs3U9oHNUfAPDvzCb59U9+JhURWxQDHipIt9larHpqe7GHggU9iHhoaDc1dNOEJAUTemjBi1BB1KuHXgTP3iV3byKoN48iVJGIJyEyu7PJmuwmIWSdJPP5wOy+N2+T9747vMx7M/NIAKU1lr2kEScj4noSMdJRNhB54Vjrcyt/3LuRbUmsrr71exJJvq/9+SR/P55njkTEd5cjnqxsrnd+cen2RKNRn8vzZxemZ8/OLy6dmZqeuFW/Vb9TO/fq+Qvjr9XO1/Ys1odfffbLlatvPvvxh++/Mvl940wSF2M4L+uMY6+Mxdjad9Ip+14v7HVlBRroOPYcLJX8+A1GxNMxEpW812dGYuphoY0D+mq1ErEKlFSi/0NJtccB7bl9P+bB+9njS60J0Ob4B1rXRuJIc250bCXpmBm15ruje1B/Vsff9059kW3Rp+sQW7n/ICKe6RZ/0mzbaPMqThZ/+q/404gYz9+z/ed2Wf/YhvxBiv9iR/yXd1l/0fEDUE7Ll1on8s3nv3Rt/BNdxj/DXc5du1H0+a/3+G89/kqP8d+1Hdbx80dXPu1V1jn+y7as/vZY8L/w+EHEqa7xJ2vxJ13iz8Y913dYxxs//HalV1nR8a8+ijjddf6zfkcr2fr+5NnJqUZ9vPXatY5vvn3vy171Fx1/dvyP9Yh/q+Of7ZvdYR1fX3s03ats+/jTX4eSt5upoXzPBxMLC3O1iKHk6ub920xE2p9p/44s/hdf2Lr/d4v/aDZ32GH8s+/cXtl9/P2VxX9zl8f/kx3W8de7d5/rVVZ0/AAAAAAAAHCYpM1nOZK0upZO02q1tYb3qTiWNmbmF16anLl752brmY/RGEzbd7pHWvkky9fy52Hb+XMb8i9HxImI+LxytJmv3php3Cw6eAAAAAAAAAAAAAAAAAAAANgnjm9Y//9npbX+HyiJgaIbABRG/4fy0v+hvPR/KC/9H8pL/4fy0v+hvPR/KC/9H8pL/4fy0v8BAAAA4FA68fzyT0lE3H/9aHPLDOVlg4W2DOi3tOgGAIWpFN0AoDBu/UN5meMDyTblR3oVLG/3kwAAAAAAAAAAAADAXjl90vp/KCvr/6G8rP+H8rL+H8rLHB+w/h8AAAAAAAAAAAAA9r/h5pak1Xwt8HCkabUa8f+IGI3BZHKqUR+PiCci4sfK4P+yfK3oRgMAAAAAAAAAAAAAAAAAAMAhM7+4dHui0ajPSUhISKwliv7LBAAAAAAAAAAAAAAAAAAA5bO+6LfolgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAcdb//3//EkXHCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcTP8EAAD//wugIGI=")
quotactl$Q_GETINFO(0xffffffff80000501, &(0x7f0000002b00)=@loop={'/dev/loop', 0x0}, 0xee01, 0xfffffffffffffffe)

1.427355743s ago: executing program 7 (id=4410):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='contention_begin\x00'}, 0x18)
r0 = syz_open_dev$loop(&(0x7f0000000440), 0x7, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000005c0)={r1, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f00", [0x4, 0x40000000000000]}})
r2 = syz_open_dev$loop(&(0x7f0000000300), 0x8f, 0x0)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f0000001280)={r1, 0x0, {0x2a12, 0x80010000, 0x0, 0x0, 0x20000000000004, 0x0, 0x0, 0xe, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7ca64c6a4b4e00d9683dda1af1ea80000000000000000000000deff1200100000000000000000000000000800", "2809e8dbe108038948224ad54afac11d875397bdb22d0000b420a1a93c7540f4767f9e01177d3dd40600000061ac00", "90be8b1c55f96400", [0xe4, 0x3]}})
ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r0)

1.174258584s ago: executing program 7 (id=4411):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x4, 0xdd, 0xa}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001801", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x4, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c250000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)=r1}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000300)=@framed={{0x7a, 0xa, 0x0, 0xff00, 0x0, 0x71, 0x10, 0x43}}, &(0x7f0000000480)='syzkaller\x00'}, 0x94)

1.137380867s ago: executing program 3 (id=4412):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x60902, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000e80)=@newtfilter={0x50, 0x2c, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r3, {0x4, 0x7}, {}, {0xb, 0xe}}, [@filter_kind_options=@f_basic={{0xa}, {0x20, 0x2, [@TCA_BASIC_EMATCHES={0x1c, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8}, @TCA_EMATCH_TREE_LIST={0x10, 0x2, 0x0, 0x1, [@TCF_EM_CONTAINER={0xc, 0x1, 0x0, 0x0, {{0x800, 0x0, 0x4}}}]}]}]}}]}, 0x50}, 0x1, 0x0, 0x0, 0x80}, 0x20000800)

1.051472634s ago: executing program 9 (id=4413):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c80)={'lo\x00', <r1=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000005b80)={@loopback={0xfec0ffffffffffff}, 0x32, r1})

945.416973ms ago: executing program 7 (id=4414):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x3, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18020000415900000000000000000000850000002000000018010000686c6c2500000000002020207b1af8ff00"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x2}, 0x94)

767.382467ms ago: executing program 2 (id=4415):
r0 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0)
getsockname$packet(r2, 0x0, &(0x7f0000000200))
sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000740)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010028bd700002dcdf250100060114000700fe880000000000000000000000000101050002000a00000008000b00", @ANYRES32, @ANYBLOB="77134627b54fbfd6740470c9c9a63476f5efc8c4951bcac8d7e419c37299101681e43a860c4ae5b1b9cc43fc3f22c03c3f481c3637733c9b82c61d5e3875568dd20ca3af1deea0f67a61d1807a0327b0a16d514ce8e49aa8d495a9afb4a88d271659164af70a91c1d758792b31b13ee17cfd75d7e11b9caa2c32867d3ff70f434ac034c11c0f2171e80c1e4d8a0d0b695fd2"], 0x38}, 0x1, 0x0, 0x0, 0x801}, 0x0)

743.806069ms ago: executing program 7 (id=4416):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'syz_tun\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f0000000000), 0x0, 0x200000c4, &(0x7f0000000080)={0x11, 0x88a8, r1, 0x1, 0x8, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x43}}, 0x14)

542.598216ms ago: executing program 2 (id=4417):
r0 = socket(0xa, 0x3, 0xff)
connect$inet6(r0, &(0x7f0000000280)={0xa, 0x4e22, 0x2, @loopback, 0x3}, 0x1c)
sendmmsg$inet6(r0, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000040)=[{0x0}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="15000000000000002900000043"], 0x18}}], 0x2, 0x44080)

507.037419ms ago: executing program 9 (id=4418):
r0 = fsopen(&(0x7f0000000140)='tracefs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x1, 0x0)
inotify_add_watch(r1, 0x0, 0x60000726)

470.584632ms ago: executing program 7 (id=4419):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='contention_begin\x00'}, 0x18)
r0 = syz_open_dev$loop(&(0x7f0000000440), 0x7, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000005c0)={r1, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f00", [0x4, 0x40000000000000]}})
r2 = syz_open_dev$loop(&(0x7f0000000300), 0x8f, 0x0)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f0000001280)={r1, 0x0, {0x2a12, 0x80010000, 0x0, 0x0, 0x20000000000004, 0x0, 0x0, 0xe, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7ca64c6a4b4e00d9683dda1af1ea80000000000000000000000deff1200100000000000000000000000000800", "2809e8dbe108038948224ad54afac11d875397bdb22d0000b420a1a93c7540f4767f9e01177d3dd40600000061ac00", "90be8b1c55f96400", [0xe4, 0x3]}})
ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r0)

320.601724ms ago: executing program 2 (id=4420):
quotactl$Q_GETINFO(0xffffffff80000501, &(0x7f0000002b00)=@loop={'/dev/loop', 0x0}, 0xee01, 0xfffffffffffffffe)

259.344689ms ago: executing program 9 (id=4421):
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000780)='./file0\x00', 0x0, &(0x7f00000007c0), 0x1, 0x73a, &(0x7f0000000800)="$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")
mount$9p_fd(0x0, 0x0, 0x0, 0x1004014, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f00000005c0)='\"', 0x1, 0x4fed0)
sendfile(r0, r0, 0x0, 0xe3aa6ea)

230.308381ms ago: executing program 3 (id=4422):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x4, 0xdd, 0xa}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000180100", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x4, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c250000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)=r1}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000300)=@framed={{0x7a, 0xa, 0x0, 0xff00, 0x0, 0x71, 0x10, 0x43}}, &(0x7f0000000480)='syzkaller\x00'}, 0x94)

207.014793ms ago: executing program 7 (id=4423):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000500)={r1, 0x0, 0x2d, 0x0, @val=@netfilter={0xa, 0x4, 0x600, 0x1}}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x2, 0x0, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20000080, &(0x7f0000006080)={0xa, 0x4e23, 0x4, @loopback, 0x4}, 0x1c)

171.222866ms ago: executing program 2 (id=4424):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x3, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18020000415900000000000000000000850000002000000018010000686c6c2500000000002020207b1af8ff00"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x2}, 0x94)

0s ago: executing program 3 (id=4425):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0, <r1=>0x0}, &(0x7f0000000040)=0xc)
syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x8008, &(0x7f0000000100)={[{@nodots}, {@dots}, {@dots}, {@fat=@gid={'gid', 0x3d, r1}}, {@dots}, {@fat=@usefree}, {@dots}, {@nodots}, {@nodots}, {@fat=@discard}, {@nodots}]}, 0x1, 0x26e, &(0x7f0000000580)="$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")

kernel console output (not intermixed with test programs):

0-0000-0000-0000-000000000000.
[  520.973722][T16247] fuse: Bad value for 'fd'
[  523.165274][T16279] fuse: Unknown parameter '0x0000000000000003'
[  524.303104][T16293] loop7: detected capacity change from 0 to 512
[  524.858120][T16308] loop9: detected capacity change from 0 to 128
[  525.020616][T16312] syz.7.2864[16312] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  525.020760][T16312] syz.7.2864[16312] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  526.422866][T16336] loop8: detected capacity change from 0 to 512
[  526.526753][T16336] EXT4-fs error (device loop8): ext4_get_branch:178: inode #13: block 2: comm syz.8.2873: invalid block
[  526.569193][T16336] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #13: comm syz.8.2873: invalid indirect mapped block 10 (level 1)
[  526.614209][T16336] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #13: comm syz.8.2873: invalid indirect mapped block 8 (level 1)
[  526.660146][T16336] EXT4-fs (loop8): 1 truncate cleaned up
[  526.677723][T16336] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  526.740576][T16344] syz.2.2875[16344] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  526.740724][T16344] syz.2.2875[16344] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  526.896122][ T8374] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  528.814417][T16382] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2890'.
[  529.938374][T16395] vlan2: entered allmulticast mode
[  529.965996][T16395] bridge0: port 3(vlan2) entered blocking state
[  530.000676][T16395] bridge0: port 3(vlan2) entered disabled state
[  530.024202][T16395] vlan2: entered promiscuous mode
[  530.042747][T16395] bridge0: mtu less than device minimum
[  530.123073][T16399] loop9: detected capacity change from 0 to 128
[  530.183966][T16399] EXT4-fs (loop9): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  530.266377][T13687] udevd[13687]: incorrect ext4 checksum on /dev/loop9
[  530.539112][T16406] loop8: detected capacity change from 0 to 1024
[  530.554649][T16410] loop2: detected capacity change from 0 to 512
[  530.565142][T16406] EXT4-fs: inline encryption not supported
[  530.592697][T16406] EXT4-fs: Ignoring removed i_version option
[  530.617916][T16410] EXT4-fs: Ignoring removed nobh option
[  530.639726][T16406] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  530.694545][T16410] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  530.714591][T16406] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  530.778382][T16410] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.2903: iget: bad i_size value: 38620345925642
[  530.798878][T16410] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.2903: couldn't read orphan inode 15 (err -117)
[  530.857158][T16410] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  530.962296][ T5807] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  530.980259][ T5807] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  530.994724][ T5807] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  531.019236][T16410] EXT4-fs error (device loop2): ext4_lookup:1858: inode #15: comm syz.2.2903: iget: bad i_size value: 38620345925642
[  531.050806][ T5807] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  531.074523][ T5807] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  531.082202][ T5807] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  531.129599][ T9111] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  531.174181][ T8374] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  531.360594][T16424] netlink: 592 bytes leftover after parsing attributes in process `syz.2.2905'.
[  531.548803][T16433] loop9: detected capacity change from 0 to 736
[  531.586637][ T7052] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  531.611944][T16435] loop2: detected capacity change from 0 to 512
[  531.636475][T16435] EXT4-fs: Ignoring removed nobh option
[  531.652445][T16435] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  531.706443][T16435] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.2910: iget: bad i_size value: 38620345925642
[  531.783478][T16435] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.2910: couldn't read orphan inode 15 (err -117)
[  531.820446][T16435] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  531.885587][ T7052] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  531.926679][T16442] loop9: detected capacity change from 0 to 1024
[  531.936978][T16442] EXT4-fs: inline encryption not supported
[  531.948539][T16442] EXT4-fs: Ignoring removed i_version option
[  531.955769][T16442] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  532.033972][ T2933] EXT4-fs error (device loop2): ext4_validate_block_bitmap:430: comm kworker/u4:7: bg 0: block 5: invalid block bitmap
[  532.084379][ T2933] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28
[  532.098412][ T2933] EXT4-fs (loop2): This should not happen!! Data will be lost
[  532.098412][ T2933] 
[  532.119281][ T7052] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  532.139974][T16442] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  532.174525][ T2933] EXT4-fs (loop2): Total free blocks count 0
[  532.206311][   T27] audit: type=1800 audit(1754419136.696:38): pid=16442 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.2912" name="bus" dev="loop9" ino=18 res=0 errno=0
[  532.231910][ T2933] EXT4-fs (loop2): Free/Dirty block details
[  532.237962][ T2933] EXT4-fs (loop2): free_blocks=0
[  532.247729][ T2933] EXT4-fs (loop2): dirty_blocks=64
[  532.253636][ T2933] EXT4-fs (loop2): Block reservation details
[  532.260020][ T2933] EXT4-fs (loop2): i_reserved_data_blocks=64
[  532.290843][ T9111] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  532.308680][ T7052] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  532.365362][T16416] chnl_net:caif_netlink_parms(): no params data found
[  532.392667][ T8462] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  532.698098][T16416] bridge0: port 1(bridge_slave_0) entered blocking state
[  532.710887][T16416] bridge0: port 1(bridge_slave_0) entered disabled state
[  532.741089][T16416] bridge_slave_0: entered allmulticast mode
[  532.774436][T16416] bridge_slave_0: entered promiscuous mode
[  532.810162][T16416] bridge0: port 2(bridge_slave_1) entered blocking state
[  532.827198][T16416] bridge0: port 2(bridge_slave_1) entered disabled state
[  532.849932][T16416] bridge_slave_1: entered allmulticast mode
[  532.871338][T16416] bridge_slave_1: entered promiscuous mode
[  532.984815][T16416] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  532.988802][T16471] loop9: detected capacity change from 0 to 128
[  533.083953][   T27] audit: type=1800 audit(1754419137.556:39): pid=16471 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.2922" name="file2" dev="loop9" ino=1048649 res=0 errno=0
[  533.112360][T16416] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  533.131943][T16471] FAT-fs (loop9): error, clusters badly computed (5 != 1)
[  533.172884][T16471] FAT-fs (loop9): Filesystem has been set read-only
[  533.193784][ T5796] Bluetooth: hci1: command tx timeout
[  533.195921][T16471] FAT-fs (loop9): error, clusters badly computed (6 != 2)
[  533.214188][T16471] FAT-fs (loop9): error, clusters badly computed (7 != 3)
[  533.222231][T16471] FAT-fs (loop9): error, clusters badly computed (8 != 4)
[  533.230256][T16471] FAT-fs (loop9): error, clusters badly computed (9 != 5)
[  533.238661][T16471] FAT-fs (loop9): error, clusters badly computed (10 != 6)
[  533.247541][T16471] FAT-fs (loop9): error, clusters badly computed (11 != 7)
[  533.255740][T16471] FAT-fs (loop9): error, clusters badly computed (12 != 8)
[  533.264089][T16471] FAT-fs (loop9): error, clusters badly computed (13 != 9)
[  533.272555][T16471] FAT-fs (loop9): error, clusters badly computed (14 != 10)
[  533.281932][T16471] FAT-fs (loop9): error, clusters badly computed (15 != 11)
[  533.291092][T16471] FAT-fs (loop9): error, clusters badly computed (16 != 12)
[  533.298849][T16471] FAT-fs (loop9): error, clusters badly computed (17 != 13)
[  533.314056][T16471] FAT-fs (loop9): error, clusters badly computed (18 != 14)
[  533.329777][T16471] FAT-fs (loop9): error, clusters badly computed (19 != 15)
[  533.337854][T16471] FAT-fs (loop9): error, clusters badly computed (20 != 16)
[  533.376971][T16471] FAT-fs (loop9): error, clusters badly computed (21 != 17)
[  533.381327][T16416] team0: Port device team_slave_0 added
[  533.388786][T16471] FAT-fs (loop9): error, clusters badly computed (22 != 18)
[  533.415464][T16471] FAT-fs (loop9): error, clusters badly computed (23 != 19)
[  533.423519][T16416] team0: Port device team_slave_1 added
[  533.556847][T16416] batman_adv: batadv0: Adding interface: batadv_slave_0
[  533.601185][T16416] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  533.663718][T16477] loop9: detected capacity change from 0 to 2048
[  533.678130][T16416] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  533.889119][T16416] batman_adv: batadv0: Adding interface: batadv_slave_1
[  533.896895][T16416] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  533.925876][T16416] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  534.015785][T16485] loop9: detected capacity change from 0 to 1024
[  534.139712][T16485] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  534.272814][T16485] overlayfs: invalid origin (00000079008f0ca2a7141fa4588af7afde10e5ec2a6fe85ba5712e126629d4e3998fc4721cb638f2ef8356049e3448466e2c400d5e8baf843fa399907cb526b7)
[  534.505306][T16416] hsr_slave_0: entered promiscuous mode
[  534.514911][ T8462] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  534.563143][T16416] hsr_slave_1: entered promiscuous mode
[  534.581781][T16500] loop8: detected capacity change from 0 to 128
[  534.624212][T16416] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  534.660711][T16416] Cannot create hsr debugfs directory
[  534.666683][   T27] audit: type=1800 audit(1754419139.146:40): pid=16500 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.2933" name="file1" dev="loop8" ino=1048650 res=0 errno=0
[  535.274375][ T5796] Bluetooth: hci1: command tx timeout
[  536.378620][ T7052] hsr_slave_0: left promiscuous mode
[  536.385699][ T7052] hsr_slave_1: left promiscuous mode
[  536.488435][ T7052] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  536.511394][ T7052] batman_adv: batadv0: Removing interface: batadv_slave_0
[  536.531023][ T7052] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  536.538894][ T7052] batman_adv: batadv0: Removing interface: batadv_slave_1
[  536.557747][ T7052] bridge_slave_1: left allmulticast mode
[  536.565727][ T7052] bridge_slave_1: left promiscuous mode
[  536.577161][ T7052] bridge0: port 2(bridge_slave_1) entered disabled state
[  536.590631][ T7052] bridge_slave_0: left allmulticast mode
[  536.596872][ T7052] bridge_slave_0: left promiscuous mode
[  536.603346][ T7052] bridge0: port 1(bridge_slave_0) entered disabled state
[  536.649998][ T7052] veth1_macvtap: left promiscuous mode
[  536.656270][ T7052] veth0_macvtap: left promiscuous mode
[  536.665717][ T7052] veth1_vlan: left promiscuous mode
[  536.677963][ T7052] veth0_vlan: left promiscuous mode
[  537.355520][ T5796] Bluetooth: hci1: command tx timeout
[  538.017216][T16581] loop9: detected capacity change from 0 to 128
[  538.283090][ T7052] team0 (unregistering): Port device team_slave_1 removed
[  538.385499][T16587] loop8: detected capacity change from 0 to 1024
[  538.438281][ T7052] team0 (unregistering): Port device team_slave_0 removed
[  538.450788][T16587] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  538.557737][T16587] overlayfs: invalid origin (00000079008f0ca2a7141fa4588af7afde10e5ec2a6fe85ba5712e126629d4e3998fc4721cb638f2ef8356049e3448466e2c400d5e8baf843fa399907cb526b7)
[  538.639123][ T7052] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  538.683970][T16593] loop9: detected capacity change from 0 to 512
[  538.739899][ T8374] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  538.750894][ T7052] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  538.816187][   T27] audit: type=1800 audit(1754419143.306:41): pid=16593 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.2959" name="file1" dev="loop9" ino=1048651 res=0 errno=0
[  539.150682][T16597] loop8: detected capacity change from 0 to 8192
[  539.166604][T16597] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  539.438392][ T5796] Bluetooth: hci1: command tx timeout
[  539.571037][T16606] loop8: detected capacity change from 0 to 512
[  539.598804][T16606] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  539.654659][T16606] ext4 filesystem being mounted at /582/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  539.779963][ T8374] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  540.339333][ T7052] bond0 (unregistering): Released all slaves
[  540.602419][T16608] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  540.652904][T16617] loop2: detected capacity change from 0 to 1024
[  540.707233][T16617] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  540.916514][T16627] loop8: detected capacity change from 0 to 512
[  541.016471][T16617] overlayfs: invalid origin (00000079008f0ca2a7141fa4588af7afde10e5ec2a6fe85ba5712e126629d4e3998fc4721cb638f2ef8356049e3448466e2c400d5e8baf843fa399907cb526b7)
[  541.090256][   T27] audit: type=1800 audit(1754419145.586:42): pid=16627 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.2972" name="file1" dev="loop8" ino=1048653 res=0 errno=0
[  541.480292][ T9111] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  541.499815][T16416] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  541.516900][T16640] loop9: detected capacity change from 0 to 1024
[  541.581768][T16416] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  541.606104][T16640] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  541.640357][T16416] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  541.656977][T16640] EXT4-fs error (device loop9): ext4_get_first_dir_block:3606: inode #11: comm syz.9.2976: directory missing '..'
[  541.689534][T16416] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  541.786516][T16646] bridge1: entered allmulticast mode
[  541.816714][ T8462] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  541.828175][T16652] loop8: detected capacity change from 0 to 164
[  542.122275][T16663] loop2: detected capacity change from 0 to 512
[  542.274667][T16416] 8021q: adding VLAN 0 to HW filter on device bond0
[  542.371104][T16416] 8021q: adding VLAN 0 to HW filter on device team0
[  542.413058][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  542.420403][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  542.474417][ T3475] bridge0: port 2(bridge_slave_1) entered blocking state
[  542.481896][ T3475] bridge0: port 2(bridge_slave_1) entered forwarding state
[  542.498215][ T9111] FAT-fs (loop2): error, invalid access to FAT (entry 0x0f0affff)
[  542.527109][ T9111] FAT-fs (loop2): Filesystem has been set read-only
[  542.712829][T16416] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  543.553625][T16416] 8021q: adding VLAN 0 to HW filter on device batadv0
[  543.750205][T16714] support for the xor transformation has been removed.
[  544.723553][T16416] veth0_vlan: entered promiscuous mode
[  544.762787][T16416] veth1_vlan: entered promiscuous mode
[  544.863185][T16416] veth0_macvtap: entered promiscuous mode
[  544.918680][T16416] veth1_macvtap: entered promiscuous mode
[  545.045600][T16416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  545.099507][T16416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  545.125755][T16416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  545.137747][T16416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  545.194071][T16416] batman_adv: batadv0: Interface activated: batadv_slave_0
[  545.623452][T16416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  545.861498][T16416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  546.038447][T16416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  546.102472][T16416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  546.130294][T16416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  546.169875][T16416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  546.212884][T16416] batman_adv: batadv0: Interface activated: batadv_slave_1
[  546.243622][T16416] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  546.278542][T16416] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  546.298014][T16416] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  546.314685][T16416] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  546.633392][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  546.682315][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  546.821153][ T3475] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  546.849872][ T3475] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  546.893714][T16792] loop2: detected capacity change from 0 to 4096
[  546.958907][T16792] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  547.026474][T16803] loop7: detected capacity change from 0 to 128
[  547.102762][T13687] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  547.335418][ T9111] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  548.493511][T16835] loop2: detected capacity change from 0 to 128
[  548.580538][T16835] EXT4-fs (loop2): Test dummy encryption mode enabled
[  548.652312][T16835] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  548.729730][T16835] ext4 filesystem being mounted at /525/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  548.820809][ T5807] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  548.832870][ T5807] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  548.857753][ T5807] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  548.868504][ T5807] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  548.879149][ T5807] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  548.888581][ T5807] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  548.969266][ T9111] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  549.033694][T16853] loop9: detected capacity change from 0 to 1024
[  549.070692][T16853] EXT4-fs: Ignoring removed orlov option
[  549.106974][ T2933] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  549.165056][T16853] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  549.285442][   T27] audit: type=1804 audit(1754419153.776:43): pid=16853 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.9.3032" name="/newroot/598/bus/bus" dev="loop9" ino=18 res=1 errno=0
[  549.463332][ T2933] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  549.635305][ T2933] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  549.852800][ T2933] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  549.931684][ T8462] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  550.256391][T16880] loop7: detected capacity change from 0 to 2048
[  550.339989][T16880]  loop7: p1 < > p3
[  550.446628][T16880] loop7: p3 size 134217728 extends beyond EOD, truncated
[  550.553466][T16889] loop2: detected capacity change from 0 to 128
[  550.611352][T16889] EXT4-fs (loop2): Test dummy encryption mode enabled
[  550.671798][T16889] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  550.772779][T16889] ext4 filesystem being mounted at /530/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  550.959698][ T5807] Bluetooth: hci3: command tx timeout
[  551.031049][ T9111] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  551.105633][T16845] chnl_net:caif_netlink_parms(): no params data found
[  551.577442][T16908] loop9: detected capacity change from 0 to 128
[  551.627775][T16908] FAT-fs (loop9): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  552.046106][T16924] loop9: detected capacity change from 0 to 512
[  552.079238][T16918] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3048'.
[  552.114789][T16924] EXT4-fs error (device loop9): ext4_orphan_get:1399: inode #15: comm syz.9.3047: iget: bad i_size value: 38620345925642
[  552.205219][T16924] EXT4-fs error (device loop9): ext4_orphan_get:1404: comm syz.9.3047: couldn't read orphan inode 15 (err -117)
[  552.277330][T16924] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  552.373719][T16924] EXT4-fs error (device loop9): ext4_lookup:1858: inode #15: comm syz.9.3047: iget: bad i_size value: 38620345925642
[  552.379888][T16845] bridge0: port 1(bridge_slave_0) entered blocking state
[  552.441986][T16845] bridge0: port 1(bridge_slave_0) entered disabled state
[  552.470666][T16845] bridge_slave_0: entered allmulticast mode
[  552.495614][T16931] loop2: detected capacity change from 0 to 128
[  552.510041][T16845] bridge_slave_0: entered promiscuous mode
[  552.539893][T16931] EXT4-fs (loop2): Test dummy encryption mode enabled
[  552.608095][T16931] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  552.642475][T16931] ext4 filesystem being mounted at /534/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  552.656633][ T8462] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  552.865278][T16845] bridge0: port 2(bridge_slave_1) entered blocking state
[  552.907037][ T9111] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  552.916910][T16845] bridge0: port 2(bridge_slave_1) entered disabled state
[  552.943597][T16845] bridge_slave_1: entered allmulticast mode
[  552.958555][T16845] bridge_slave_1: entered promiscuous mode
[  553.040277][ T5807] Bluetooth: hci3: command tx timeout
[  553.517341][T16845] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  553.763286][T16845] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  553.838330][T16950] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3056'.
[  554.392986][T16964] loop9: detected capacity change from 0 to 128
[  554.421141][T16845] team0: Port device team_slave_0 added
[  554.442082][T16845] team0: Port device team_slave_1 added
[  554.474787][T16964] EXT4-fs (loop9): Test dummy encryption mode enabled
[  554.583596][T16964] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  554.747454][T16964] ext4 filesystem being mounted at /608/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  555.007679][ T8462] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  555.111058][ T5807] Bluetooth: hci3: command tx timeout
[  555.370475][T16845] batman_adv: batadv0: Adding interface: batadv_slave_0
[  555.377594][T16845] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  555.418024][T16979] loop7: detected capacity change from 0 to 1024
[  555.449147][T16979] EXT4-fs: Ignoring removed orlov option
[  555.500908][T16845] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  555.719347][ T2933] hsr_slave_0: left promiscuous mode
[  555.818062][ T2933] hsr_slave_1: left promiscuous mode
[  555.827530][ T2933] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  555.849645][ T2933] batman_adv: batadv0: Removing interface: batadv_slave_0
[  555.922867][ T2933] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  555.965454][ T2933] batman_adv: batadv0: Removing interface: batadv_slave_1
[  556.027828][ T2933] bridge_slave_1: left allmulticast mode
[  556.077706][ T2933] bridge_slave_1: left promiscuous mode
[  556.098418][ T2933] bridge0: port 2(bridge_slave_1) entered disabled state
[  556.150735][ T2933] bridge_slave_0: left allmulticast mode
[  556.156574][ T2933] bridge_slave_0: left promiscuous mode
[  556.189692][ T2933] bridge0: port 1(bridge_slave_0) entered disabled state
[  556.464817][ T2933] veth1_macvtap: left promiscuous mode
[  556.482049][ T2933] veth0_macvtap: left promiscuous mode
[  556.510025][ T2933] veth1_vlan: left promiscuous mode
[  556.516194][ T2933] veth0_vlan: left promiscuous mode
[  556.540255][T17006] loop9: detected capacity change from 0 to 128
[  556.602161][T17006] EXT4-fs (loop9): Test dummy encryption mode enabled
[  556.697687][T17006] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  556.831990][T17006] ext4 filesystem being mounted at /612/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  557.183088][ T8462] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  557.192687][ T5807] Bluetooth: hci3: command tx timeout
[  559.892782][ T2933] team0 (unregistering): Port device team_slave_1 removed
[  560.088456][ T2933] team0 (unregistering): Port device team_slave_0 removed
[  560.281930][ T2933] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  560.495720][ T2933] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  561.848256][ T2933] bond0 (unregistering): Released all slaves
[  561.935268][T16845] batman_adv: batadv0: Adding interface: batadv_slave_1
[  561.942430][T16845] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  561.971960][T16845] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  561.983640][T16984] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3066'.
[  562.207676][T17028] loop2: detected capacity change from 0 to 1024
[  562.227503][T17028] EXT4-fs: Ignoring removed orlov option
[  562.255940][T16845] hsr_slave_0: entered promiscuous mode
[  562.288890][T16845] hsr_slave_1: entered promiscuous mode
[  562.324047][T17028] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  562.469843][T17035] loop9: detected capacity change from 0 to 512
[  562.504413][T17035] EXT4-fs: Ignoring removed orlov option
[  562.561896][T17035] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  562.578884][T17035] EXT4-fs error (device loop9): ext4_xattr_ibody_find:2244: inode #17: comm syz.9.3077: corrupted in-inode xattr: overlapping e_value 
[  562.625556][   T27] audit: type=1804 audit(1754419167.066:44): pid=17028 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.3074" name="/newroot/541/bus/bus" dev="loop2" ino=18 res=1 errno=0
[  562.685044][T17035] EXT4-fs error (device loop9): ext4_orphan_get:1404: comm syz.9.3077: couldn't read orphan inode 17 (err -117)
[  562.701808][T17044] loop7: detected capacity change from 0 to 128
[  562.796623][T17035] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  562.944198][T17035] EXT4-fs (loop9): shut down requested (1)
[  563.056502][ T8462] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  563.252389][ T9111] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  563.252997][T17050] loop9: detected capacity change from 0 to 128
[  563.316317][T17050] EXT4-fs (loop9): Test dummy encryption mode enabled
[  563.386785][T17050] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  563.439545][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  563.446296][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  563.464639][T17050] ext4 filesystem being mounted at /616/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  563.669791][T17053] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3081'.
[  564.479892][ T8462] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  565.479381][    C0] sched: RT throttling activated
[  565.482730][T17078] autofs4:pid:17078:autofs_fill_super: called with bogus options
[  565.513622][T16845] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  565.599180][T16845] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  565.699713][T16845] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  565.749255][T16845] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  566.102801][T17098] loop2: detected capacity change from 0 to 128
[  566.145867][T17098] EXT4-fs (loop2): Test dummy encryption mode enabled
[  566.173429][T17098] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  566.241230][T17102] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3091'.
[  566.251020][T17095] loop7: detected capacity change from 0 to 8192
[  566.294587][T17095]  loop7: p1 < > p2 p3 p4 < p5 >
[  566.300127][T17098] ext4 filesystem being mounted at /544/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  566.330725][T17095] loop7: p2 size 65536 extends beyond EOD, truncated
[  566.348868][T17095] loop7: p3 start 67108868 is beyond EOD, truncated
[  566.363884][T17095] loop7: p5 size 65536 extends beyond EOD, truncated
[  566.534007][T16845] 8021q: adding VLAN 0 to HW filter on device bond0
[  566.574339][ T9111] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  566.625880][T16845] 8021q: adding VLAN 0 to HW filter on device team0
[  566.701765][ T3475] bridge0: port 1(bridge_slave_0) entered blocking state
[  566.709307][ T3475] bridge0: port 1(bridge_slave_0) entered forwarding state
[  566.807547][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  566.814842][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  566.839722][T17113] autofs4:pid:17113:autofs_fill_super: called with bogus options
[  566.888035][T17023] udevd[17023]: inotify_add_watch(7, /dev/loop7p1, 10) failed: No such file or directory
[  566.915498][T17026] udevd[17026]: inotify_add_watch(7, /dev/loop7p4, 10) failed: No such file or directory
[  566.931827][T17064] udevd[17064]: inotify_add_watch(7, /dev/loop7p5, 10) failed: No such file or directory
[  566.946439][T17022] udevd[17022]: inotify_add_watch(7, /dev/loop7p2, 10) failed: No such file or directory
[  567.160777][T17121] fuse: Bad value for 'fd'
[  567.252638][T17127] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3099'.
[  567.733930][T17145] x_tables: ip_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  567.962708][T16845] 8021q: adding VLAN 0 to HW filter on device batadv0
[  567.991693][T17151] autofs4:pid:17151:autofs_fill_super: called with bogus options
[  568.054857][T17157] fuse: Bad value for 'fd'
[  568.372224][T17167] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3109'.
[  568.577741][T17173] loop7: detected capacity change from 0 to 512
[  569.141022][T17186] loop7: detected capacity change from 0 to 2048
[  569.228456][T17186]  loop7: p1 < > p3
[  569.269915][T17186] loop7: p3 size 134217728 extends beyond EOD, truncated
[  569.364471][T16845] veth0_vlan: entered promiscuous mode
[  569.457724][T16845] veth1_vlan: entered promiscuous mode
[  569.693664][T17208] fuse: Bad value for 'fd'
[  569.733077][T16845] veth0_macvtap: entered promiscuous mode
[  569.845630][T16845] veth1_macvtap: entered promiscuous mode
[  569.938269][T16845] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  569.999427][T16845] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  570.039429][T16845] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  570.069455][T16845] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  570.121365][T16845] batman_adv: batadv0: Interface activated: batadv_slave_0
[  570.172559][T16845] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  570.224395][T16845] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  570.289553][T16845] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  570.345074][T16845] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  570.385026][T16845] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  570.425758][T16845] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  570.471355][T16845] batman_adv: batadv0: Interface activated: batadv_slave_1
[  570.490571][T17216] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3119'.
[  570.554459][T16845] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  570.576245][T16845] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  570.585294][T16845] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  570.594336][T16845] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  571.005450][ T4437] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  571.050143][ T4437] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  571.190800][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  571.259684][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  573.285027][T17262] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3130'.
[  575.392975][ T5796] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  575.404419][ T5796] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  575.415365][ T5796] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  575.437787][ T5796] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  575.448552][ T5796] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  575.486840][ T5796] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  575.814040][T17305] loop8: detected capacity change from 0 to 1024
[  575.879076][T17302] loop2: detected capacity change from 0 to 1764
[  575.899818][T17305] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  576.109997][T17305] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  576.241161][T17310] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  576.801006][T16845] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  577.446038][T17295] chnl_net:caif_netlink_parms(): no params data found
[  577.590027][ T5796] Bluetooth: hci4: command tx timeout
[  578.421441][T17295] bridge0: port 1(bridge_slave_0) entered blocking state
[  578.428774][T17295] bridge0: port 1(bridge_slave_0) entered disabled state
[  578.502722][T17295] bridge_slave_0: entered allmulticast mode
[  578.570479][T17295] bridge_slave_0: entered promiscuous mode
[  578.621504][T17295] bridge0: port 2(bridge_slave_1) entered blocking state
[  578.669630][T17295] bridge0: port 2(bridge_slave_1) entered disabled state
[  578.739654][T17295] bridge_slave_1: entered allmulticast mode
[  578.747399][T17295] bridge_slave_1: entered promiscuous mode
[  579.669563][ T5796] Bluetooth: hci4: command tx timeout
[  579.897360][T17295] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  580.276228][T17387] loop8: detected capacity change from 0 to 1024
[  580.310771][T17389] autofs4:pid:17389:autofs_fill_super: called with bogus options
[  580.369528][T17387] EXT4-fs (loop8): bad geometry: first data block 0 is beyond end of filesystem (0)
[  580.883906][   T11] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  581.119171][T17295] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  581.756516][ T5796] Bluetooth: hci4: command tx timeout
[  581.785859][   T11] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  582.000345][T17420] autofs4:pid:17420:autofs_fill_super: called with bogus options
[  582.131728][T17295] team0: Port device team_slave_0 added
[  582.368889][T17428] loop7: detected capacity change from 0 to 128
[  582.472446][T17023] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  582.480644][   T11] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  582.584088][T17295] team0: Port device team_slave_1 added
[  582.758553][T17438] loop8: detected capacity change from 0 to 512
[  582.867501][T17438] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  582.972181][   T11] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  583.021419][T17438] EXT4-fs (loop8): Couldn't remount RDWR because of unprocessed orphan inode list.  Please umount/remount instead
[  583.128224][T17295] batman_adv: batadv0: Adding interface: batadv_slave_0
[  583.170688][T17295] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  583.215314][T16845] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  583.344474][T17295] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  583.427852][T17295] batman_adv: batadv0: Adding interface: batadv_slave_1
[  583.459467][T17295] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  583.539563][T17295] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  583.580159][T17453] autofs4:pid:17453:autofs_fill_super: called with bogus options
[  583.829673][ T5796] Bluetooth: hci4: command tx timeout
[  583.936294][T17295] hsr_slave_0: entered promiscuous mode
[  584.000090][T17295] hsr_slave_1: entered promiscuous mode
[  584.041334][T17295] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  584.088454][T17462] loop8: detected capacity change from 0 to 128
[  584.089567][T17295] Cannot create hsr debugfs directory
[  584.156776][T17462] EXT4-fs (loop8): Test dummy encryption mode enabled
[  584.257796][T17462] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  584.407168][T17462] ext4 filesystem being mounted at /18/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  584.711464][T16845] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  585.559061][T17473] loop2: detected capacity change from 0 to 512
[  585.613467][T17473] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  585.696128][T17473] EXT4-fs (loop2): 1 truncate cleaned up
[  585.749060][T17473] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  586.051544][ T9111] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  586.508393][T17485] autofs4:pid:17485:autofs_fill_super: called with bogus options
[  586.668110][T17493] loop7: detected capacity change from 0 to 128
[  586.740522][T17023] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  587.249298][T17508] loop7: detected capacity change from 0 to 16
[  587.303708][T17023] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  587.366032][T17508] loop7: detected capacity change from 0 to 1024
[  587.382020][T17023] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  587.392700][T17508] EXT4-fs: Ignoring removed i_version option
[  587.896107][T17295] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  587.905594][T17520] autofs4:pid:17520:autofs_fill_super: called with bogus options
[  587.976911][T17295] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  588.050655][T17295] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  588.115103][T17295] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  588.202834][   T11] hsr_slave_0: left promiscuous mode
[  588.219327][   T11] hsr_slave_1: left promiscuous mode
[  588.235928][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  588.245643][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  588.253854][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  588.268422][   T11] bridge_slave_1: left allmulticast mode
[  588.277041][   T11] bridge_slave_1: left promiscuous mode
[  588.287162][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  588.308729][   T11] bridge_slave_0: left allmulticast mode
[  588.318592][   T11] bridge_slave_0: left promiscuous mode
[  588.325669][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  588.378078][   T11] veth1_macvtap: left promiscuous mode
[  588.388877][   T11] veth0_macvtap: left promiscuous mode
[  588.396343][   T11] veth1_vlan: left promiscuous mode
[  588.402277][   T11] veth0_vlan: left promiscuous mode
[  589.139085][T17551] autofs4:pid:17551:autofs_fill_super: called with bogus options
[  589.337222][T17559] loop7: detected capacity change from 0 to 1024
[  589.371208][T17559] EXT4-fs: Ignoring removed nomblk_io_submit option
[  589.377987][T17559] EXT4-fs: Ignoring removed nobh option
[  590.050315][   T11] team0 (unregistering): Port device team_slave_1 removed
[  590.195584][T17572] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  590.241870][   T11] team0 (unregistering): Port device team_slave_0 removed
[  590.288191][T17577] autofs4:pid:17577:autofs_fill_super: called with bogus options
[  590.444907][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  590.468344][T17582] loop2: detected capacity change from 0 to 16
[  590.493026][T17582] erofs: (device loop2): mounted with root inode @ nid 36.
[  590.668797][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  591.072285][T17591] loop2: detected capacity change from 0 to 512
[  591.174262][T17591] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  591.423470][T17598] loop8: detected capacity change from 0 to 128
[  591.459838][T17598] EXT4-fs (loop8): Test dummy encryption mode enabled
[  591.479955][ T9111] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  591.500639][T17598] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  591.639558][T17598] ext4 filesystem being mounted at /26/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  591.827631][T17605] autofs4:pid:17605:autofs_fill_super: called with bogus options
[  591.850289][T16845] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  592.091717][T17609] loop8: detected capacity change from 0 to 16
[  592.148265][T17609] erofs: (device loop8): mounted with root inode @ nid 36.
[  592.314284][T17611] loop2: detected capacity change from 0 to 4096
[  592.417502][T17611] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  592.734074][ T9111] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  592.794767][T17619] loop8: detected capacity change from 0 to 512
[  592.879672][T17619] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  592.979303][T17624] loop2: detected capacity change from 0 to 164
[  592.989283][T16845] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  593.033354][T17624] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  593.102027][T17624] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  593.117334][T17624] Symlink component flag not implemented
[  593.142579][T17624] Symlink component flag not implemented
[  593.150493][T17624] Symlink component flag not implemented (7)
[  593.157200][T17624] Symlink component flag not implemented (116)
[  593.226048][T17630] loop8: detected capacity change from 0 to 128
[  593.260009][T17630] EXT4-fs (loop8): Test dummy encryption mode enabled
[  593.318046][T17630] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  593.376040][T17630] ext4 filesystem being mounted at /30/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  593.526700][T17633] autofs4:pid:17633:autofs_fill_super: called with bogus options
[  593.635265][T16845] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  593.883694][T17638] loop8: detected capacity change from 0 to 16
[  593.926512][T17638] erofs: (device loop8): mounted with root inode @ nid 36.
[  594.315306][T17648] loop2: detected capacity change from 0 to 512
[  594.385012][T17648] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  594.536452][   T11] bond0 (unregistering): Released all slaves
[  594.618778][ T9111] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  594.743771][T17658] autofs4:pid:17658:autofs_fill_super: called with bogus options
[  594.859264][T17654] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3248'.
[  595.187700][T17674] loop7: detected capacity change from 0 to 16
[  595.221960][T17671] loop2: detected capacity change from 0 to 4096
[  595.284301][T17023] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  595.370050][T17671] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  595.535046][T17295] 8021q: adding VLAN 0 to HW filter on device bond0
[  595.698206][T17295] 8021q: adding VLAN 0 to HW filter on device team0
[  595.799088][ T9111] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  595.839988][ T3494] bridge0: port 1(bridge_slave_0) entered blocking state
[  595.849216][ T3494] bridge0: port 1(bridge_slave_0) entered forwarding state
[  595.935816][ T3494] bridge0: port 2(bridge_slave_1) entered blocking state
[  595.943932][ T3494] bridge0: port 2(bridge_slave_1) entered forwarding state
[  596.202407][T17295] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  596.240866][T17701] autofs4:pid:17701:autofs_fill_super: called with bogus options
[  596.247033][T17295] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  596.448712][T17707] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  596.568436][T17712] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3259'.
[  596.964655][T17295] 8021q: adding VLAN 0 to HW filter on device batadv0
[  597.436206][T17295] veth0_vlan: entered promiscuous mode
[  597.473069][T17295] veth1_vlan: entered promiscuous mode
[  597.528377][T17295] veth0_macvtap: entered promiscuous mode
[  597.551275][T17295] veth1_macvtap: entered promiscuous mode
[  597.568380][T17739] autofs4:pid:17739:autofs_fill_super: called with bogus options
[  597.611433][T17295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  597.634866][T17295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  597.664852][T17295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  597.707919][T17295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  597.728935][T17295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  597.743668][T17295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  597.768102][T17295] batman_adv: batadv0: Interface activated: batadv_slave_0
[  597.799901][T17742] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3267'.
[  597.842811][T17295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  597.857194][T17295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  597.868910][T17295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  597.884056][T17295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  597.895088][T17295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  597.906796][T17295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  597.926659][T17295] batman_adv: batadv0: Interface activated: batadv_slave_1
[  597.954998][T17295] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  597.965066][T17295] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  597.974921][T17745] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  597.977399][T17295] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  598.001042][T17295] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  598.210056][ T7052] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  598.218335][ T7052] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  598.387734][ T1310] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  598.398489][ T1310] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  599.400267][T17766] autofs4:pid:17766:autofs_fill_super: called with bogus options
[  600.823761][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  600.926214][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  601.130965][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  601.233438][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  603.029866][T17796] autofs4:pid:17796:autofs_fill_super: called with bogus options
[  603.107984][T17799] 9pnet_fd: Insufficient options for proto=fd
[  603.445888][ T5807] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  603.457347][ T5807] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  603.468641][ T5807] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  603.480720][ T5807] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  603.491248][ T5807] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  603.500199][ T5807] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  604.663491][T17824] loop7: detected capacity change from 0 to 1024
[  604.716221][T17824] EXT4-fs: inline encryption not supported
[  604.770440][T17824] EXT4-fs: Ignoring removed i_version option
[  604.984894][T17803] chnl_net:caif_netlink_parms(): no params data found
[  605.310202][T17832] autofs4:pid:17832:autofs_fill_super: called with bogus options
[  605.606261][ T5807] Bluetooth: hci2: command tx timeout
[  606.341283][   T11] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  606.429272][T17803] bridge0: port 1(bridge_slave_0) entered blocking state
[  606.446340][T17803] bridge0: port 1(bridge_slave_0) entered disabled state
[  606.466514][T17803] bridge_slave_0: entered allmulticast mode
[  606.490384][T17803] bridge_slave_0: entered promiscuous mode
[  606.638035][   T11] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  606.670113][T17803] bridge0: port 2(bridge_slave_1) entered blocking state
[  606.699749][T17803] bridge0: port 2(bridge_slave_1) entered disabled state
[  606.707352][T17803] bridge_slave_1: entered allmulticast mode
[  606.761083][T17803] bridge_slave_1: entered promiscuous mode
[  607.030011][   T11] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  607.247910][T17803] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  607.503295][   T11] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  607.588830][T17803] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  607.625947][T17873] netlink: 'syz.9.3307': attribute type 4 has an invalid length.
[  607.673465][ T5807] Bluetooth: hci2: command tx timeout
[  607.895703][T17803] team0: Port device team_slave_0 added
[  607.964190][T17803] team0: Port device team_slave_1 added
[  608.191975][T17803] batman_adv: batadv0: Adding interface: batadv_slave_0
[  608.229165][T17803] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  608.319715][T17803] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  608.350023][T17803] batman_adv: batadv0: Adding interface: batadv_slave_1
[  608.364549][T17803] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  608.504404][T17803] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  608.902984][T17803] hsr_slave_0: entered promiscuous mode
[  608.921201][T17803] hsr_slave_1: entered promiscuous mode
[  608.934422][T17803] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  608.950589][T17803] Cannot create hsr debugfs directory
[  609.749752][ T5807] Bluetooth: hci2: command tx timeout
[  611.830061][ T5807] Bluetooth: hci2: command tx timeout
[  611.982657][T17803] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  612.066036][T17803] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  612.106298][T17803] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  612.128196][T17986] overlayfs: workdir and upperdir must be separate subtrees
[  612.220522][T17803] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  612.365345][   T11] hsr_slave_0: left promiscuous mode
[  612.382501][   T11] hsr_slave_1: left promiscuous mode
[  612.391651][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  612.418406][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  612.447086][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  612.465798][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  612.495644][   T11] vlan2: left promiscuous mode
[  612.513330][   T11] bridge0: port 3(vlan2) entered disabled state
[  612.538366][   T11] bridge_slave_1: left allmulticast mode
[  612.564700][   T11] bridge_slave_1: left promiscuous mode
[  612.589973][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  612.625589][   T11] bridge_slave_0: left promiscuous mode
[  612.656473][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  612.706902][   T11] veth1_macvtap: left promiscuous mode
[  612.715774][   T11] veth0_macvtap: left promiscuous mode
[  612.722337][   T11] veth1_vlan: left promiscuous mode
[  612.727900][   T11] veth0_vlan: left promiscuous mode
[  613.474423][T18031] loop7: detected capacity change from 0 to 256
[  614.417751][T18057] loop8: detected capacity change from 0 to 128
[  614.438821][T18057] EXT4-fs (loop8): Test dummy encryption mode enabled
[  614.511807][T18057] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  614.559546][T18057] ext4 filesystem being mounted at /76/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  614.612254][   T27] audit: type=1800 audit(1754419219.096:45): pid=18057 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.3372" name="file0" dev="loop8" ino=12 res=0 errno=0
[  614.730892][T16845] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  614.836843][   T11] team0 (unregistering): Port device team_slave_1 removed
[  614.965269][   T11] team0 (unregistering): Port device team_slave_0 removed
[  615.071062][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  615.236843][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  616.794595][T18122] fuse: Unknown parameter 'grou00000000000000000000'
[  617.459320][   T11] bond0 (unregistering): Released all slaves
[  617.611953][T18144] loop9: detected capacity change from 0 to 128
[  617.631692][T18144] EXT4-fs (loop9): Test dummy encryption mode enabled
[  617.681737][T18144] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  617.695246][T18147] fuse: Unknown parameter 'grou00000000000000000000'
[  617.724407][T18144] ext4 filesystem being mounted at /44/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  617.784625][   T27] audit: type=1800 audit(1754419222.276:46): pid=18144 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.3406" name="file0" dev="loop9" ino=12 res=0 errno=0
[  617.935144][T17295] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  618.049919][T17803] 8021q: adding VLAN 0 to HW filter on device bond0
[  618.134018][T17803] 8021q: adding VLAN 0 to HW filter on device team0
[  618.149437][ T7052] bridge0: port 1(bridge_slave_0) entered blocking state
[  618.156817][ T7052] bridge0: port 1(bridge_slave_0) entered forwarding state
[  618.235435][ T7052] bridge0: port 2(bridge_slave_1) entered blocking state
[  618.242698][ T7052] bridge0: port 2(bridge_slave_1) entered forwarding state
[  618.850369][T18175] fuse: Unknown parameter 'grou00000000000000000000'
[  619.037242][T17803] 8021q: adding VLAN 0 to HW filter on device batadv0
[  619.138273][T17803] veth0_vlan: entered promiscuous mode
[  619.182091][T17803] veth1_vlan: entered promiscuous mode
[  619.246369][T17803] veth0_macvtap: entered promiscuous mode
[  619.268059][T17803] veth1_macvtap: entered promiscuous mode
[  619.314770][T17803] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  619.330856][T17803] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  619.365523][T17803] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  619.386615][T17803] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  619.407049][T17803] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  619.420920][T17803] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  619.454229][T17803] batman_adv: batadv0: Interface activated: batadv_slave_0
[  619.502276][T17803] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  619.533728][T17803] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  619.546735][T17803] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  619.562324][T17803] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  619.580092][T17803] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  619.591590][T17803] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  619.603682][T17803] batman_adv: batadv0: Interface activated: batadv_slave_1
[  619.623868][T17803] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  619.633632][T17803] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  619.645078][T17803] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  619.654896][T17803] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  619.813916][ T1310] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  619.836947][ T1310] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  619.868054][ T2933] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  619.882275][ T2933] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  620.446030][T18206] fuse: Unknown parameter 'group_i00000000000000000000'
[  621.022892][T18220] loop7: detected capacity change from 0 to 1024
[  621.061852][T17023] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  621.257924][T18226] fuse: Unknown parameter 'group_i00000000000000000000'
[  622.309093][T18251] loop7: detected capacity change from 0 to 512
[  623.153827][T18284] loop9: detected capacity change from 0 to 128
[  624.880512][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  624.887166][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  626.203928][   T27] audit: type=1326 audit(1754419230.696:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18326 comm="syz.7.3476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb256f85b27 code=0x7ffc0000
[  626.270393][ T2933] kworker/u4:7: attempt to access beyond end of device
[  626.270393][ T2933] loop9: rw=1, sector=145, nr_sectors = 896 limit=128
[  626.325798][   T27] audit: type=1326 audit(1754419230.696:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18326 comm="syz.7.3476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb256f2ad69 code=0x7ffc0000
[  626.356653][   T27] audit: type=1326 audit(1754419230.696:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18326 comm="syz.7.3476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb256f85b27 code=0x7ffc0000
[  626.447780][   T27] audit: type=1326 audit(1754419230.696:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18326 comm="syz.7.3476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb256f2ad69 code=0x7ffc0000
[  626.562955][   T27] audit: type=1326 audit(1754419230.696:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18326 comm="syz.7.3476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb256f85b27 code=0x7ffc0000
[  626.667796][   T27] audit: type=1326 audit(1754419230.696:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18326 comm="syz.7.3476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb256f2ad69 code=0x7ffc0000
[  626.738006][   T27] audit: type=1326 audit(1754419230.726:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18326 comm="syz.7.3476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb256f85b27 code=0x7ffc0000
[  626.899454][   T27] audit: type=1326 audit(1754419230.726:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18326 comm="syz.7.3476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb256f2ad69 code=0x7ffc0000
[  627.009441][   T27] audit: type=1326 audit(1754419230.726:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18326 comm="syz.7.3476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb256f8eb69 code=0x7ffc0000
[  627.119718][   T27] audit: type=1326 audit(1754419230.726:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18326 comm="syz.7.3476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb256f85b27 code=0x7ffc0000
[  628.530892][T18364] loop9: detected capacity change from 0 to 512
[  628.558795][T18364] EXT4-fs: Ignoring removed i_version option
[  628.600926][T18364] EXT4-fs: Ignoring removed nobh option
[  628.624165][T18364] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  628.679687][T18366] fuseblk: Bad value for 'fd'
[  628.739791][T18364] EXT4-fs (loop9): 1 truncate cleaned up
[  628.754534][T18364] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  628.925150][T18375] loop8: detected capacity change from 0 to 256
[  629.045491][T17295] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  629.094795][T18375] FAT-fs (loop8): Directory bread(block 64) failed
[  629.107298][T18375] FAT-fs (loop8): Directory bread(block 65) failed
[  629.115970][T18375] FAT-fs (loop8): Directory bread(block 66) failed
[  629.124125][T18375] FAT-fs (loop8): Directory bread(block 67) failed
[  629.133610][T18375] FAT-fs (loop8): Directory bread(block 68) failed
[  629.142328][T18375] FAT-fs (loop8): Directory bread(block 69) failed
[  629.149314][T18375] FAT-fs (loop8): Directory bread(block 70) failed
[  629.159010][T18375] FAT-fs (loop8): Directory bread(block 71) failed
[  629.167558][T18375] FAT-fs (loop8): Directory bread(block 72) failed
[  629.174629][T18375] FAT-fs (loop8): Directory bread(block 73) failed
[  629.317017][T18384] fuse: Bad value for 'user_id'
[  629.633434][T18398] fuseblk: Bad value for 'fd'
[  630.207120][T18414] fuse: Bad value for 'fd'
[  630.483231][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  630.492106][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  630.500962][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  630.840711][T18427] loop7: detected capacity change from 0 to 2048
[  630.903975][T18427]  loop7: p1 < > p3
[  630.937528][T18427] loop7: p3 size 134217728 extends beyond EOD, truncated
[  631.585998][T18448] fuse: Bad value for 'fd'
[  631.890730][T18453] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  632.260291][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[  632.829574][T18476] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  633.270055][T18486] fuse: Bad value for 'fd'
[  633.743917][T18505] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  635.097238][T18525] fuse: Bad value for 'fd'
[  635.524322][T18533] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  636.085309][T18545] fuse: Bad value for 'fd'
[  636.869506][    T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!!
[  637.417915][T18561] loop7: detected capacity change from 0 to 1024
[  637.546257][T17023] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  638.332856][T18572] fuse: Bad value for 'fd'
[  638.583578][T18581] loop8: detected capacity change from 0 to 512
[  638.594506][T18581] EXT4-fs: Ignoring removed i_version option
[  638.611712][T18581] EXT4-fs: Ignoring removed nobh option
[  638.632131][T18581] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  638.667611][T18581] EXT4-fs (loop8): 1 truncate cleaned up
[  638.676367][T18581] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  638.793038][T16845] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  639.109748][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  639.809039][T18599] loop2: detected capacity change from 0 to 2048
[  639.892297][T18599]  loop2: p1 < > p4
[  639.905180][T18599] loop2: p4 size 8388608 extends beyond EOD, truncated
[  640.159774][T18611] fuse: Invalid rootmode
[  640.288116][T18614] loop2: detected capacity change from 0 to 512
[  640.317923][T18614] EXT4-fs: Ignoring removed i_version option
[  640.349397][T18614] EXT4-fs: Ignoring removed nobh option
[  640.402070][T18614] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  640.524451][T18617] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  640.552482][T18614] EXT4-fs (loop2): 1 truncate cleaned up
[  640.570315][T18614] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  640.654167][T17022] udevd[17022]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  640.688501][T17023] udevd[17023]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  640.900613][T17803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  641.065023][T18637] loop9: detected capacity change from 0 to 2048
[  641.432060][T18637] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  641.590016][T18637] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  641.645898][T18637] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 1 with error 28
[  641.646768][T18651] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 159 with max blocks 1 with error 28
[  641.698948][T18653] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  641.712064][T18637] EXT4-fs (loop9): This should not happen!! Data will be lost
[  641.712064][T18637] 
[  641.719665][T18651] EXT4-fs (loop9): This should not happen!! Data will be lost
[  641.719665][T18651] 
[  641.732035][T18651] EXT4-fs (loop9): Total free blocks count 0
[  641.738684][T18651] EXT4-fs (loop9): Free/Dirty block details
[  641.745031][T18637] EXT4-fs (loop9): Total free blocks count 0
[  641.745056][T18637] EXT4-fs (loop9): Free/Dirty block details
[  641.782955][T18654] fuse: Invalid rootmode
[  642.134696][T18664] loop7: detected capacity change from 0 to 512
[  642.154487][T18664] EXT4-fs: Ignoring removed i_version option
[  642.169041][T18664] EXT4-fs: Ignoring removed nobh option
[  642.585463][T18677] fuse: Invalid rootmode
[  642.765453][T18684] loop2: detected capacity change from 0 to 2048
[  642.801265][T18684] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  642.892425][T18684] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  642.928313][T18690] loop8: detected capacity change from 0 to 512
[  642.941307][T18684] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 1 with error 28
[  642.955015][T18691] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 159 with max blocks 1 with error 28
[  642.979770][T18690] EXT4-fs: Ignoring removed i_version option
[  642.998783][T18690] EXT4-fs: Ignoring removed nobh option
[  642.999428][T18692] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  643.016732][T18684] EXT4-fs (loop2): This should not happen!! Data will be lost
[  643.016732][T18684] 
[  643.016760][T18684] EXT4-fs (loop2): Total free blocks count 0
[  643.016776][T18684] EXT4-fs (loop2): Free/Dirty block details
[  643.016792][T18684] EXT4-fs (loop2): free_blocks=2415919104
[  643.016810][T18684] EXT4-fs (loop2): dirty_blocks=48
[  643.016824][T18684] EXT4-fs (loop2): Block reservation details
[  643.060899][T18690] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  643.112986][T18690] EXT4-fs (loop8): 1 truncate cleaned up
[  643.130949][T18690] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  643.242150][T16845] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  643.651413][T18712] fuse: Bad value for 'rootmode'
[  643.881041][T18719] loop2: detected capacity change from 0 to 512
[  643.889046][T18719] EXT4-fs: Ignoring removed i_version option
[  643.898236][T18719] EXT4-fs: Ignoring removed nobh option
[  643.908015][T18719] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  644.013062][T18719] EXT4-fs (loop2): 1 truncate cleaned up
[  644.052785][T18719] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  644.190400][T18726] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  644.245505][T17803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  645.710605][T18740] overlayfs: failed to resolve './file1': -2
[  646.832787][T18747] fuse: Bad value for 'fd'
[  648.960219][T18780] fuse: Bad value for 'rootmode'
[  649.994643][T18813] fuse: Unknown parameter 'use00000000000000000000'
[  650.292394][T18821] overlayfs: missing 'lowerdir'
[  650.761519][T18839] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  650.786930][T18839] overlayfs: failed to set xattr on upper
[  650.806274][T18839] overlayfs: ...falling back to redirect_dir=nofollow.
[  650.815962][T18841] fuse: Unknown parameter 'use00000000000000000000'
[  650.827854][T18839] overlayfs: ...falling back to index=off.
[  650.834497][T18839] overlayfs: ...falling back to uuid=null.
[  650.968035][T18843] fuse: Bad value for 'fd'
[  651.403240][T18850] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  651.772488][T18869] fuse: Unknown parameter 'use00000000000000000000'
[  651.811003][T18872] fuse: Bad value for 'fd'
[  652.272790][T18889] loop8: detected capacity change from 0 to 128
[  652.326029][   T27] kauditd_printk_skb: 1948 callbacks suppressed
[  652.326061][   T27] audit: type=1800 audit(1754419256.816:2005): pid=18889 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.3680" name="bus" dev="loop8" ino=1048676 res=0 errno=0
[  652.454677][T18893] syz.8.3680: attempt to access beyond end of device
[  652.454677][T18893] loop8: rw=2049, sector=585, nr_sectors = 456 limit=128
[  652.470170][T18894] fuse: Bad value for 'fd'
[  652.524708][T18896] fuse: Unknown parameter 'user_i00000000000000000000'
[  652.937086][T18908] loop7: detected capacity change from 0 to 128
[  653.306531][T18925] fuse: Unknown parameter 'user_i00000000000000000000'
[  653.896890][T18946] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  653.922860][T18946] overlayfs: failed to set xattr on upper
[  653.943079][T18946] overlayfs: ...falling back to redirect_dir=nofollow.
[  653.967736][T18946] overlayfs: ...falling back to index=off.
[  653.987637][T18946] overlayfs: ...falling back to uuid=null.
[  654.627005][T18953] fuse: Unknown parameter 'user_i00000000000000000000'
[  654.960699][T18959] trusted_key: syz.7.3708 sent an empty control message without MSG_MORE.
[  655.616413][T18981] fuse: Unknown parameter 'user_id00000000000000000000'
[  655.887632][ T6000] kernel write not supported for file bpf-prog (pid: 6000 comm: kworker/1:4)
[  655.914385][T18987] loop2: detected capacity change from 0 to 2048
[  655.974505][T18987]  loop2: p1 < > p3
[  655.992319][T18987] loop2: p3 size 134217728 extends beyond EOD, truncated
[  656.257461][T19001] loop9: detected capacity change from 0 to 128
[  656.590100][T19007] fuse: Unknown parameter 'user_id00000000000000000000'
[  656.630038][T19009] loop2: detected capacity change from 0 to 512
[  656.660227][T19009] EXT4-fs: Ignoring removed i_version option
[  656.690910][T19009] EXT4-fs: Ignoring removed nobh option
[  656.713701][T19009] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  656.778767][T19009] EXT4-fs (loop2): 1 truncate cleaned up
[  656.844751][T19009] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  657.227569][T17803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  657.669605][ T5796] Bluetooth: hci1: command 0x0406 tx timeout
[  658.017217][T19042] fuse: Unknown parameter 'user_id00000000000000000000'
[  658.147419][T19046] loop8: detected capacity change from 0 to 512
[  658.178974][T19046] EXT4-fs: Ignoring removed i_version option
[  658.194291][T19046] EXT4-fs: Ignoring removed nobh option
[  658.223136][T19046] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  658.269048][T19046] EXT4-fs (loop8): 1 truncate cleaned up
[  658.291274][T19046] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  658.453757][T19052] overlayfs: missing 'lowerdir'
[  658.583533][T16845] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  658.737247][T19061] overlayfs: failed to clone upperpath
[  659.742478][T19073] fuse: Bad value for 'fd'
[  659.769691][T19074] overlayfs: failed to clone upperpath
[  659.853473][T19079] overlayfs: missing 'lowerdir'
[  659.945957][T19081] loop9: detected capacity change from 0 to 512
[  659.954875][T19081] EXT4-fs: Ignoring removed i_version option
[  659.974114][T19081] EXT4-fs: Ignoring removed nobh option
[  659.983629][T19081] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  660.019951][T19081] EXT4-fs (loop9): 1 truncate cleaned up
[  660.053989][T19081] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  660.252910][T17295] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  660.273808][T19087] fuse: Bad value for 'fd'
[  660.678608][T19100] fuse: Bad value for 'fd'
[  660.898274][T19108] loop9: detected capacity change from 0 to 1024
[  660.910073][T19107] overlayfs: missing 'workdir'
[  660.911838][T19108] EXT4-fs: Ignoring removed mblk_io_submit option
[  660.952824][T19108] EXT4-fs: inline encryption not supported
[  660.984291][T19108] EXT4-fs (loop9): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  661.021649][T19108] EXT4-fs error (device loop9): ext4_orphan_get:1425: comm syz.9.3763: bad orphan inode 11
[  661.112546][T19108] EXT4-fs (loop9): Remounting filesystem read-only
[  661.139600][T19108] ext4_test_bit(bit=10, block=4) = 1
[  661.144999][T19108] is_bad_inode(inode)=0
[  661.149211][T19108] NEXT_ORPHAN(inode)=3254779904
[  661.154703][T19108] max_ino=32
[  661.157966][T19108] i_nlink=0
[  661.163423][T19108] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  661.252005][T19108] EXT4-fs: Cannot change journaled quota options when quota turned on
[  661.282546][T19117] loop2: detected capacity change from 0 to 512
[  661.319416][T19117] EXT4-fs: Ignoring removed i_version option
[  661.341476][T17295] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  661.362588][T19117] EXT4-fs: Ignoring removed nobh option
[  661.413647][T19117] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  661.457611][T19117] EXT4-fs (loop2): 1 truncate cleaned up
[  661.480621][T19117] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  661.545148][T19124] fuse: Bad value for 'fd'
[  661.644265][T17803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  661.723902][T19128] loop9: detected capacity change from 0 to 16
[  661.763437][T19128] erofs: (device loop9): mounted with root inode @ nid 36.
[  665.550780][T19180] syz.9.3793[19180] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  665.551053][T19180] syz.9.3793[19180] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  665.900299][T19184] syz.9.3795[19184] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  665.912324][T19184] syz.9.3795[19184] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  666.667965][T19194] overlayfs: missing 'lowerdir'
[  666.897336][T19198] syz.2.3801[19198] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  666.897482][T19198] syz.2.3801[19198] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  668.147435][T19216] overlayfs: missing 'lowerdir'
[  670.614100][T19242] overlayfs: missing 'workdir'
[  670.656117][T19243] overlayfs: failed to clone upperpath
[  670.664549][T19245] syz.8.3819[19245] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  670.664813][T19245] syz.8.3819[19245] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  670.905449][T19253] loop2: detected capacity change from 0 to 2048
[  670.961617][T19253]  loop2: p1 < > p3
[  670.979035][T19253] loop2: p3 size 134217728 extends beyond EOD, truncated
[  671.356540][T19267] overlayfs: missing 'workdir'
[  671.492851][T19271] syz.8.3831[19271] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  671.493113][T19271] syz.8.3831[19271] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  672.066458][T19290] overlayfs: missing 'workdir'
[  672.118691][T19293] syz.9.3840[19293] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  672.118961][T19293] syz.9.3840[19293] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  672.699268][T19310] loop9: detected capacity change from 0 to 2048
[  672.772609][T19310]  loop9: p1 < > p3
[  672.783589][T19310] loop9: p3 size 134217728 extends beyond EOD, truncated
[  672.847171][T19315] syz.2.3850[19315] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  672.847447][T19315] syz.2.3850[19315] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  673.039507][ T5796] Bluetooth: hci3: command 0x0406 tx timeout
[  673.857687][T19339] loop8: detected capacity change from 0 to 512
[  673.870792][T19341] syz.7.3862[19341] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  673.871061][T19341] syz.7.3862[19341] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  673.888822][T19339] EXT4-fs: Ignoring removed i_version option
[  673.924050][T19339] EXT4-fs: Ignoring removed nobh option
[  673.952238][T19339] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  674.013309][T19339] EXT4-fs (loop8): 1 truncate cleaned up
[  674.026502][T19339] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  674.214792][T16845] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  674.702530][T19359] overlayfs: missing 'lowerdir'
[  675.226306][T19372] loop2: detected capacity change from 0 to 2048
[  675.246002][T19376] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  675.260962][T19376] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  675.296719][T19372]  loop2: p1 < > p3
[  675.312209][T19372] loop2: p3 size 134217728 extends beyond EOD, truncated
[  676.882704][T19415] kvm: requested 5028 ns i8254 timer period limited to 200000 ns
[  679.105184][T19472] netlink: 'syz.9.3915': attribute type 10 has an invalid length.
[  679.139058][T19472] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  682.381927][T19517] 9pnet_virtio: no channels available for device syz
[  682.754811][T19528] netlink: 'syz.9.3939': attribute type 1 has an invalid length.
[  682.836406][T19528] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  682.852949][ T2933] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  682.854059][T19528] 8021q: adding VLAN 0 to HW filter on device bond1
[  682.891057][T19528] veth3: entered promiscuous mode
[  682.902598][T19528] bond1: (slave veth3): Enslaving as a backup interface with a down link
[  683.012835][ T7052] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  683.088838][T19443] Set syz1 is full, maxelem 65536 reached
[  683.923880][T19550] loop2: detected capacity change from 0 to 2048
[  683.963112][T19550]  loop2: p1 < > p3
[  683.987209][T19550] loop2: p3 size 134217728 extends beyond EOD, truncated
[  684.251702][T17023] udevd[17023]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  684.262028][T17022] udevd[17022]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  685.296551][T19568] 9pnet_fd: Insufficient options for proto=fd
[  685.321158][T19571] kvm_pr_unimpl_wrmsr: 12 callbacks suppressed
[  685.321181][T19571] kvm: kvm [19569]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000
[  685.345654][T19571] kvm: kvm [19569]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000
[  685.365490][T19571] kvm: kvm [19569]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000
[  686.282239][T19595] kvm: pic: non byte write
[  686.307972][T19591] kvm: vcpu 0: requested 242 ns lapic timer period limited to 200000 ns
[  686.325500][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  686.332252][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  686.875839][T19596] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  688.114274][T19619] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  688.121740][T19619] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  688.843047][T19640] overlayfs: failed to clone upperpath
[  689.153436][ T5807] Bluetooth: hci2: Malformed LE Event: 0x0b
[  689.408413][T19652] loop2: detected capacity change from 0 to 2048
[  689.486659][T19652]  loop2: p1 < > p3
[  689.498009][T19652] loop2: p3 size 134217728 extends beyond EOD, truncated
[  689.795930][T17023] udevd[17023]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  689.813032][T17022] udevd[17022]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  691.011750][ T5796] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  691.024673][ T5796] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  691.038269][ T5796] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  691.047685][ T5796] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  691.057477][ T5796] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  691.066101][ T5796] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  691.289166][   T61] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  691.561243][   T61] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  691.893950][   T61] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  692.072986][   T61] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  692.939628][T19685] chnl_net:caif_netlink_parms(): no params data found
[  693.109550][ T5796] Bluetooth: hci0: command tx timeout
[  693.144574][T19718] netlink: 'syz.9.4014': attribute type 10 has an invalid length.
[  693.778725][T19685] bridge0: port 1(bridge_slave_0) entered blocking state
[  693.806948][T19685] bridge0: port 1(bridge_slave_0) entered disabled state
[  693.839611][T19685] bridge_slave_0: entered allmulticast mode
[  693.861929][T19685] bridge_slave_0: entered promiscuous mode
[  693.988431][T19685] bridge0: port 2(bridge_slave_1) entered blocking state
[  694.019278][T19685] bridge0: port 2(bridge_slave_1) entered disabled state
[  694.058083][T19685] bridge_slave_1: entered allmulticast mode
[  694.101339][T19685] bridge_slave_1: entered promiscuous mode
[  694.267414][T19747] fuse: Bad value for 'user_id'
[  694.434884][T19685] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  694.486766][T19685] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  694.766401][T19756] loop9: detected capacity change from 0 to 128
[  694.891339][T19756] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  695.031022][T19756] ext4 filesystem being mounted at /211/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  695.198353][ T5796] Bluetooth: hci0: command tx timeout
[  695.223515][T19685] team0: Port device team_slave_0 added
[  695.271808][T19685] team0: Port device team_slave_1 added
[  695.436650][T17295] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  695.882649][T19685] batman_adv: batadv0: Adding interface: batadv_slave_0
[  695.939541][T19685] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  696.003961][T19779] loop2: detected capacity change from 0 to 1024
[  696.018561][T19779] EXT4-fs: inline encryption not supported
[  696.026612][T19779] EXT4-fs: Ignoring removed i_version option
[  696.036583][T19685] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  696.059857][T19779] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  696.143671][T19685] batman_adv: batadv0: Adding interface: batadv_slave_1
[  696.152511][T19685] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  696.155093][T19779] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  696.184286][T19685] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  696.333086][T17803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  696.622997][T19685] hsr_slave_0: entered promiscuous mode
[  696.636774][T19685] hsr_slave_1: entered promiscuous mode
[  696.645384][T19685] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  696.657435][T19685] Cannot create hsr debugfs directory
[  696.882147][   T61] hsr_slave_0: left promiscuous mode
[  696.897898][   T61] hsr_slave_1: left promiscuous mode
[  696.914696][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  696.929830][   T61] batman_adv: batadv0: Removing interface: batadv_slave_0
[  696.953186][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  696.971582][   T61] batman_adv: batadv0: Removing interface: batadv_slave_1
[  696.994334][   T61] bridge_slave_1: left allmulticast mode
[  697.016331][   T61] bridge_slave_1: left promiscuous mode
[  697.038319][   T61] bridge0: port 2(bridge_slave_1) entered disabled state
[  697.072709][   T61] bridge_slave_0: left allmulticast mode
[  697.091660][   T61] bridge_slave_0: left promiscuous mode
[  697.097616][   T61] bridge0: port 1(bridge_slave_0) entered disabled state
[  697.228528][   T61] veth1_macvtap: left promiscuous mode
[  697.238216][   T61] veth0_macvtap: left promiscuous mode
[  697.255004][   T61] veth1_vlan: left promiscuous mode
[  697.263337][   T61] veth0_vlan: left promiscuous mode
[  697.269698][ T5796] Bluetooth: hci0: command tx timeout
[  698.646862][ T5796] Bluetooth: hci4: command 0x0406 tx timeout
[  699.350108][ T5807] Bluetooth: hci0: command tx timeout
[  699.943372][   T61] team0 (unregistering): Port device team_slave_1 removed
[  700.036940][   T61] team0 (unregistering): Port device team_slave_0 removed
[  700.146216][   T61] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  700.226257][   T61] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  702.528002][   T61] bond0 (unregistering): Released all slaves
[  702.762191][T19873] loop9: detected capacity change from 0 to 1024
[  702.774992][T19873] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  702.813486][T19873] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  702.880350][T19873] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  702.887985][T19802] team0: Device ipvlan2 failed to register rx_handler
[  702.912744][T19873] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 65 with error 28
[  702.953595][T19873] EXT4-fs (loop9): This should not happen!! Data will be lost
[  702.953595][T19873] 
[  702.978913][T19873] EXT4-fs (loop9): Total free blocks count 0
[  702.986320][T19873] EXT4-fs (loop9): Free/Dirty block details
[  702.992787][T19873] EXT4-fs (loop9): free_blocks=20480
[  702.998659][T19873] EXT4-fs (loop9): dirty_blocks=96
[  703.005545][T19873] EXT4-fs (loop9): Block reservation details
[  703.012255][T19873] EXT4-fs (loop9): i_reserved_data_blocks=6
[  703.221385][   T11] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  705.209656][T19916] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4064'.
[  705.277198][T19916] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4064'.
[  706.765642][T19941] loop2: detected capacity change from 0 to 512
[  706.905263][T19941] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  706.973848][T19941] ext4 filesystem being mounted at /153/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  707.130759][T17803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  707.173149][T19951] fuse: Bad value for 'rootmode'
[  707.225112][T19947] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  707.638199][T19960] loop9: detected capacity change from 0 to 8192
[  707.688316][T19960]  loop9: p2 p3 p4[EZD]
[  707.718229][T19960] loop9: p3 start 360447 is beyond EOD, truncated
[  707.738632][T19960] loop9: p4 size 262912 extends beyond EOD, truncated
[  708.902581][T17022] udevd[17022]: inotify_add_watch(7, /dev/loop9p4, 10) failed: No such file or directory
[  708.916709][T17023] udevd[17023]: inotify_add_watch(7, /dev/loop9p2, 10) failed: No such file or directory
[  708.992052][T19685] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  709.077356][T19685] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  709.200684][T19986] fuse: Bad value for 'rootmode'
[  709.222195][T19685] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  709.310331][T19685] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  709.613120][T19685] 8021q: adding VLAN 0 to HW filter on device bond0
[  709.714210][T19685] 8021q: adding VLAN 0 to HW filter on device team0
[  709.775272][   T61] bridge0: port 1(bridge_slave_0) entered blocking state
[  709.782586][   T61] bridge0: port 1(bridge_slave_0) entered forwarding state
[  709.815134][   T61] bridge0: port 2(bridge_slave_1) entered blocking state
[  709.822697][   T61] bridge0: port 2(bridge_slave_1) entered forwarding state
[  711.384645][T19685] 8021q: adding VLAN 0 to HW filter on device batadv0
[  711.423994][T20036] loop2: detected capacity change from 0 to 2048
[  711.549954][T20036]  loop2: p1 < > p3
[  711.562683][T20036] loop2: p3 size 134217728 extends beyond EOD, truncated
[  711.580928][T19685] veth0_vlan: entered promiscuous mode
[  711.704177][T19685] veth1_vlan: entered promiscuous mode
[  711.922991][T19685] veth0_macvtap: entered promiscuous mode
[  711.959244][T19685] veth1_macvtap: entered promiscuous mode
[  712.024849][T19685] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  712.059076][T19685] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  712.070378][T19685] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  712.081618][T19685] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  712.092540][T19685] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  712.104304][T19685] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  712.117783][T19685] batman_adv: batadv0: Interface activated: batadv_slave_0
[  712.134298][T19685] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  712.179431][T19685] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  712.198012][T19685] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  712.209566][T19685] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  712.223166][T19685] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  712.236564][T19685] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  712.266546][T19685] batman_adv: batadv0: Interface activated: batadv_slave_1
[  712.356557][T19685] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  712.390964][T19685] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  712.418537][T19685] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  712.469632][T19685] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  712.726976][ T4437] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  712.759507][ T4437] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  712.850962][   T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  712.894382][   T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  714.247092][T20090] loop9: detected capacity change from 0 to 512
[  714.433981][T20090] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  714.446494][T20098] fuse: Unknown parameter 'use00000000000000000000'
[  714.543871][T20090] ext4 filesystem being mounted at /243/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  714.768828][T17295] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  715.084319][T20105] kvm: kvm [20103]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x5e7d
[  715.155214][T20105] kvm: kvm [20103]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0xa3b1
[  715.207433][T20105] kvm: kvm [20103]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x9681
[  715.266048][T20105] kvm_intel: kvm [20103]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0xbb6a
[  715.283457][T20105] kvm_intel: kvm [20103]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0xbe81
[  715.369685][T20105] kvm_intel: kvm [20103]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0xbb6a
[  715.448684][T20105] kvm_intel: kvm [20103]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0xbe81
[  715.538863][T20122] 9pnet: p9_errstr2errno: server reported unknown error 18446744
[  715.571930][T20105] kvm_intel: kvm [20103]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0xbb6a
[  715.649240][T20125] fuse: Unknown parameter 'user_i00000000000000000000'
[  715.798394][T20130] loop0: detected capacity change from 0 to 512
[  715.925925][T20130] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  715.982972][T20130] ext4 filesystem being mounted at /5/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  716.147497][T19685] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  716.625657][T20156] loop2: detected capacity change from 0 to 512
[  716.692528][T20158] fuse: Unknown parameter 'user_i00000000000000000000'
[  716.728835][T20156] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  716.981304][T17803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  717.736759][T20183] netlink: 'syz.0.4145': attribute type 10 has an invalid length.
[  717.771142][T20183] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  717.881263][T20190] fuse: Unknown parameter 'user_i00000000000000000000'
[  718.126391][T20194] loop0: detected capacity change from 0 to 512
[  718.173040][T20194] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  718.451355][T19685] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  718.907526][T20226] fuse: Unknown parameter 'user_id00000000000000000000'
[  720.098905][T20262] loop0: detected capacity change from 0 to 512
[  720.142626][T20262] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  720.357805][T19685] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  722.341354][T20304] loop9: detected capacity change from 0 to 512
[  722.425534][T20304] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  722.485625][T20311] netlink: 40 bytes leftover after parsing attributes in process `syz.7.4182'.
[  722.541153][T20311] netlink: 40 bytes leftover after parsing attributes in process `syz.7.4182'.
[  722.564584][T17295] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  722.836624][T20319] loop9: detected capacity change from 0 to 512
[  722.931822][T20319] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  722.984726][T20319] ext4 filesystem being mounted at /259/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  723.145942][T17295] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  723.350056][T20334] netlink: 'syz.2.4190': attribute type 10 has an invalid length.
[  723.362371][T20336] loop9: detected capacity change from 0 to 512
[  723.388887][T20334] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  723.426300][T20336] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  723.477097][T20336] ext4 filesystem being mounted at /260/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  723.636503][T20348] loop2: detected capacity change from 0 to 512
[  723.646209][T20349] netlink: 40 bytes leftover after parsing attributes in process `syz.7.4193'.
[  723.674745][T20349] netlink: 40 bytes leftover after parsing attributes in process `syz.7.4193'.
[  723.696175][T20348] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  723.944971][T17295] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  724.162174][T17803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  724.372731][T20371] loop2: detected capacity change from 0 to 512
[  724.478142][T20371] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  724.587710][T20371] ext4 filesystem being mounted at /182/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  724.806603][T17803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  724.867236][T20387] loop0: detected capacity change from 0 to 512
[  724.923295][T20387] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  725.348739][T19685] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  726.111444][T20432] loop9: detected capacity change from 0 to 512
[  726.163111][T20432] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  726.184995][T20432] ext4 filesystem being mounted at /265/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  726.404197][T20432] EXT4-fs warning (device loop9): ext4_dirblock_csum_verify:406: inode #2: comm syz.9.4219: No space for directory leaf checksum. Please run e2fsck -D.
[  726.424564][T20442] loop0: detected capacity change from 0 to 512
[  726.459642][T20432] EXT4-fs error (device loop9): __ext4_find_entry:1696: inode #2: comm syz.9.4219: checksumming directory block 0
[  726.509043][T20442] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  726.694864][T17295] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  726.750702][T17295] EXT4-fs error (device loop9): __ext4_get_inode_loc:4483: comm syz-executor: Invalid inode table block 3874091957 in block_group 0
[  726.784512][T17295] EXT4-fs error (device loop9) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  726.818988][T17295] EXT4-fs error (device loop9): ext4_quota_off:7222: inode #4: comm syz-executor: mark_inode_dirty error
[  726.873083][T19685] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  728.648833][T20523] overlayfs: failed to clone lowerpath
[  728.678722][T20523] overlayfs: failed to clone upperpath
[  728.877524][T20527] fuse: Unknown parameter '0x0000000000000004'
[  729.350186][ T5796] Bluetooth: hci2: command 0x0406 tx timeout
[  729.560092][T20557] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  730.027464][T20575] loop0: detected capacity change from 0 to 512
[  730.123223][T20575] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #15: comm syz.0.4269: casefold flag without casefold feature
[  730.213736][T20575] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.4269: couldn't read orphan inode 15 (err -117)
[  730.228603][T20582] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  730.275464][T20575] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  730.487337][T19685] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  730.608418][T20596] loop2: detected capacity change from 0 to 2048
[  730.693548][T20596]  loop2: p1 < > p3
[  730.707939][T20596] loop2: p3 size 134217728 extends beyond EOD, truncated
[  731.014209][T20608] loop0: detected capacity change from 0 to 512
[  731.118952][T20608] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  731.147887][T20608] ext4 filesystem being mounted at /46/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  731.403603][T19685] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  731.438226][T20623] loop9: detected capacity change from 0 to 512
[  732.082328][T20646] loop0: detected capacity change from 0 to 512
[  732.865728][T20642] netlink: 'syz.7.4289': attribute type 10 has an invalid length.
[  732.901457][T20642] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  733.736501][T20686] loop0: detected capacity change from 0 to 1024
[  733.747600][T20687] loop2: detected capacity change from 0 to 2048
[  733.766446][T20686] EXT4-fs: Ignoring removed bh option
[  733.779465][T20687] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  733.809886][T20686] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  733.856899][T20687] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  733.926281][T20686] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  734.011028][T20686] EXT4-fs error (device loop0): ext4_find_dest_de:2115: inode #12: block 7: comm syz.0.4302: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[  734.041627][T20686] EXT4-fs (loop0): Remounting filesystem read-only
[  734.108243][T20700] overlayfs: failed to create directory ./bus/work (errno: 5); mounting read-only
[  734.124865][T20700] overlayfs: failed to get uuid (/file0, err=-5); falling back to uuid=null.
[  734.138934][T17803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  734.658388][T19685] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  735.596478][T20737] netlink: 'syz.2.4315': attribute type 10 has an invalid length.
[  736.520555][ T5796] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  736.532369][ T5796] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  736.548933][ T5796] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  736.587993][ T5796] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  736.605678][ T5796] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  736.619487][ T5796] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  737.277891][T20781] netlink: 'syz.7.4323': attribute type 10 has an invalid length.
[  737.486320][T20761] chnl_net:caif_netlink_parms(): no params data found
[  737.523977][T20789] loop9: detected capacity change from 0 to 512
[  737.558487][T20789] EXT4-fs: Ignoring removed i_version option
[  737.599645][T20789] EXT4-fs: Ignoring removed nobh option
[  737.637877][T20789] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  737.668104][T20789] EXT4-fs (loop9): 1 truncate cleaned up
[  737.705319][T20789] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  737.804759][T20795] loop2: detected capacity change from 0 to 512
[  737.835409][T20795] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  737.878993][T17295] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  737.904763][T20795] EXT4-fs (loop2): 1 truncate cleaned up
[  737.918622][T20795] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  737.977169][T20798] netlink: 'syz.7.4326': attribute type 10 has an invalid length.
[  738.002071][T20761] bridge0: port 1(bridge_slave_0) entered blocking state
[  738.060193][T20761] bridge0: port 1(bridge_slave_0) entered disabled state
[  738.083552][T20761] bridge_slave_0: entered allmulticast mode
[  738.134942][T20761] bridge_slave_0: entered promiscuous mode
[  738.167119][T20761] bridge0: port 2(bridge_slave_1) entered blocking state
[  738.203682][T17803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  738.209546][T20761] bridge0: port 2(bridge_slave_1) entered disabled state
[  738.260524][T20761] bridge_slave_1: entered allmulticast mode
[  738.268149][T20761] bridge_slave_1: entered promiscuous mode
[  738.538007][T20761] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  738.583484][T20761] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  738.633106][T20823] binfmt_misc: register: failed to install interpreter file ./bus
[  738.709845][ T5796] Bluetooth: hci0: command tx timeout
[  738.718323][T20761] team0: Port device team_slave_0 added
[  738.743845][T20761] team0: Port device team_slave_1 added
[  739.047442][T20832] loop2: detected capacity change from 0 to 512
[  739.060642][T20761] batman_adv: batadv0: Adding interface: batadv_slave_0
[  739.068241][T20761] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  739.125395][T20761] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  739.158363][T20761] batman_adv: batadv0: Adding interface: batadv_slave_1
[  739.193617][T20761] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  739.198901][T20832] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  739.275956][T20832] ext4 filesystem being mounted at /212/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  739.302676][T20761] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  739.497995][T20832] Quota error (device loop2): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[  739.530929][T20832] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  739.550949][T20761] hsr_slave_0: entered promiscuous mode
[  739.562780][T20832] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.4336: Failed to acquire dquot type 0
[  739.580796][T20761] hsr_slave_1: entered promiscuous mode
[  739.594103][T20832] overlayfs: failed to set uuid (/file0, err=-117); falling back to uuid=null.
[  739.606353][T20832] Quota error (device loop2): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[  739.664731][T20832] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  739.713616][T20832] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.4336: Failed to acquire dquot type 0
[  739.773108][T20832] overlayfs: failed to verify origin (/, ino=2, err=-117)
[  739.797627][T20832] overlayfs: failed to verify upper root origin
[  739.976575][T17803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  740.457089][T20862] loop2: detected capacity change from 0 to 512
[  740.500917][T20862] EXT4-fs: Ignoring removed bh option
[  740.519430][T20862] EXT4-fs: Ignoring removed nomblk_io_submit option
[  740.548289][T20862] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  740.581237][T20862] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2244: inode #15: comm syz.2.4342: corrupted in-inode xattr: e_value out of bounds
[  740.621211][T20862] EXT4-fs (loop2): Remounting filesystem read-only
[  740.635659][T20862] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  740.661370][T20862] EXT4-fs warning (device loop2): __ext4fs_dirhash:283: invalid/unsupported hash tree version 62
[  740.789627][ T5796] Bluetooth: hci0: command tx timeout
[  740.803864][T17803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  741.818151][T20904] batadv_slave_0: entered promiscuous mode
[  741.838683][T20903] batadv_slave_0: left promiscuous mode
[  742.048531][T20915] loop2: detected capacity change from 0 to 164
[  742.063536][T20915] rock: corrupted directory entry. extent=32, offset=0, size=65773
[  742.249670][T20761] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  742.293024][T20761] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  742.326941][T20761] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  742.523605][T20761] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  742.820147][T20761] 8021q: adding VLAN 0 to HW filter on device bond0
[  742.869525][ T5796] Bluetooth: hci0: command tx timeout
[  742.889469][T20761] 8021q: adding VLAN 0 to HW filter on device team0
[  742.921218][T19858] bridge0: port 1(bridge_slave_0) entered blocking state
[  742.928866][T19858] bridge0: port 1(bridge_slave_0) entered forwarding state
[  743.005484][T19858] bridge0: port 2(bridge_slave_1) entered blocking state
[  743.012965][T19858] bridge0: port 2(bridge_slave_1) entered forwarding state
[  743.418187][T20953] loop2: detected capacity change from 0 to 2048
[  743.433879][T20956] netlink: 'syz.9.4364': attribute type 10 has an invalid length.
[  743.507191][T20953]  loop2: p1 < > p3
[  743.533043][T20953] loop2: p3 size 134217728 extends beyond EOD, truncated
[  743.809713][T20967] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4366'.
[  743.861512][T20968] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4366'.
[  744.050198][T20761] 8021q: adding VLAN 0 to HW filter on device batadv0
[  744.247800][T20761] veth0_vlan: entered promiscuous mode
[  744.355480][T20761] veth1_vlan: entered promiscuous mode
[  744.468180][T20761] veth0_macvtap: entered promiscuous mode
[  744.514965][T20761] veth1_macvtap: entered promiscuous mode
[  744.528368][T20989] loop9: detected capacity change from 0 to 512
[  744.652072][T20761] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  744.708371][T20761] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  744.710335][T20989] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  744.720105][T20761] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  744.742445][T20761] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  744.753847][T20761] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  744.779493][T20761] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  744.799356][T20761] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  744.819688][T20761] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  744.840007][T20989] ext4 filesystem being mounted at /303/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  744.863899][T20761] batman_adv: batadv0: Interface activated: batadv_slave_0
[  744.893105][T20761] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  744.902414][T21002] loop2: detected capacity change from 0 to 2048
[  744.936330][T20761] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  744.950491][ T5796] Bluetooth: hci0: command tx timeout
[  744.979557][T20989] EXT4-fs warning (device loop9): ext4_dirblock_csum_verify:406: inode #2: comm syz.9.4372: No space for directory leaf checksum. Please run e2fsck -D.
[  744.996247][T20761] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  745.043680][T20761] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  745.054217][T20989] EXT4-fs error (device loop9): __ext4_find_entry:1696: inode #2: comm syz.9.4372: checksumming directory block 0
[  745.079213][T20761] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  745.098684][T20761] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  745.157028][T20761] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  745.172325][T20761] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  745.195960][T17295] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  745.196197][T20761] batman_adv: batadv0: Interface activated: batadv_slave_1
[  745.225013][T17295] EXT4-fs error (device loop9): __ext4_get_inode_loc:4483: comm syz-executor: Invalid inode table block 3874091957 in block_group 0
[  745.226566][T21002]  loop2: p1 < > p3
[  745.257243][T21002] loop2: p3 size 134217728 extends beyond EOD, truncated
[  745.271966][T17295] EXT4-fs error (device loop9) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  745.314356][T21005] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4376'.
[  745.327725][T17295] EXT4-fs error (device loop9): ext4_quota_off:7222: inode #4: comm syz-executor: mark_inode_dirty error
[  745.358727][T21007] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4376'.
[  745.386565][T20761] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  745.422992][T20761] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  745.456148][T20761] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  745.492321][T20761] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  745.737891][T17022] udevd[17022]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  745.775854][T17023] udevd[17023]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  745.941334][T19858] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  745.970287][T19858] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  746.073948][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  746.102956][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  746.428168][T21038] loop9: detected capacity change from 0 to 1024
[  746.467953][T21040] loop3: detected capacity change from 0 to 2048
[  746.549923][T21038] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  746.550768][T21040] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  746.678522][T17295] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  746.713748][T21040] ext4 filesystem being mounted at /0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  746.971469][T20761] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  747.074065][T21056] loop9: detected capacity change from 0 to 512
[  747.156872][T21056] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  747.216857][T21056] ext4 filesystem being mounted at /308/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  747.531953][T21074] loop3: detected capacity change from 0 to 1024
[  747.609713][T21074] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  747.632995][T21076] loop2: detected capacity change from 0 to 2048
[  747.688684][T17295] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  747.769625][T21076]  loop2: p1 < > p3
[  747.775496][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  747.782225][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  747.802794][T21076] loop2: p3 size 134217728 extends beyond EOD, truncated
[  747.864494][T20761] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  748.481898][T21103] loop2: detected capacity change from 0 to 512
[  748.515944][T21103] FAT-fs (loop2): bogus logical sector size 2223
[  748.547469][T21103] FAT-fs (loop2): Can't find a valid FAT filesystem
[  748.580255][T21105] loop9: detected capacity change from 0 to 512
[  748.629475][T21105] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  748.688484][T21108] loop3: detected capacity change from 0 to 1024
[  748.700686][T21105] EXT4-fs (loop9): 1 truncate cleaned up
[  748.729064][T21105] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  748.739033][T21108] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  749.179109][T20761] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  749.204297][T17295] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  750.024003][T21145] loop9: detected capacity change from 0 to 2048
[  750.072441][T21151] BUG: assuming non migratable context at include/linux/filter.h:599
[  750.111020][T21145] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  750.132058][T21145] ext4 filesystem being mounted at /314/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  750.138631][T21151] in_atomic(): 0, irqs_disabled(): 0, migration_disabled() 0 pid: 21151, name: syz.7.4423
[  750.177488][T21158] loop3: detected capacity change from 0 to 512
[  750.186800][T21151] 2 locks held by syz.7.4423/21151:
[  750.192279][T21151]  #0: ffffffff8cd2fba0 (rcu_read_lock){....}-{1:2}, at: ip6_send_skb+0x10f/0x380
[  750.202064][T21151]  #1: ffffffff8cd2fba0 (rcu_read_lock){....}-{1:2}, at: nf_hook+0x9e/0x370
[  750.211093][T21151] CPU: 1 PID: 21151 Comm: syz.7.4423 Not tainted 6.6.101-syzkaller #0
[  750.219488][T21151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  750.229620][T21151] Call Trace:
[  750.232934][T21151]  <TASK>
[  750.235965][T21151]  dump_stack_lvl+0x16c/0x230
[  750.240689][T21151]  ? show_regs_print_info+0x20/0x20
[  750.245924][T21151]  ? nf_nat_inet_fn+0x93e/0xbc0
[  750.250820][T21151]  __cant_migrate+0x234/0x2e0
[  750.255788][T21151]  ? __cant_sleep+0x210/0x210
[  750.260673][T21151]  ? nf_nat_ipv6_fn+0x21b/0x2d0
[  750.265823][T21151]  nf_hook_run_bpf+0x90/0x1e0
[  750.270841][T21151]  ? ip6table_filter_table_init+0xb0/0xb0
[  750.276672][T21151]  ? bpf_nf_link_attach+0x810/0x810
[  750.282091][T21151]  ? nf_nat_ipv6_out+0x2f3/0x380
[  750.287067][T21151]  ? bpf_nf_link_attach+0x810/0x810
[  750.292552][T21151]  nf_hook_slow+0xbd/0x200
[  750.297004][T21151]  nf_hook+0x215/0x370
[  750.301185][T21151]  ? nf_hook+0x9e/0x370
[  750.305452][T21151]  ? ip6_make_skb+0x4c0/0x4c0
[  750.310151][T21151]  ? ip6_output+0x3b0/0x3b0
[  750.314675][T21151]  ? ip6_dst_hoplimit+0x350/0x350
[  750.319820][T21151]  ? ip6_setup_cork+0xa2f/0xfe0
[  750.324700][T21151]  ? __ip6_local_out+0x880/0x880
[  750.329657][T21151]  ? read_lock_is_recursive+0x20/0x20
[  750.335062][T21151]  ip6_output+0x272/0x3b0
[  750.339424][T21151]  ? ip6_output+0x3b0/0x3b0
[  750.344140][T21151]  ? ip6_send_skb+0x10f/0x380
[  750.348832][T21151]  ip6_send_skb+0x1d5/0x380
[  750.353355][T21151]  udp_v6_send_skb+0xbbb/0x1860
[  750.358248][T21151]  udpv6_sendmsg+0x1bb8/0x22f0
[  750.363052][T21151]  ? ip_skb_dst_mtu+0x9c0/0x9c0
[  750.367937][T21151]  ? udp_v6_early_demux+0xf60/0xf60
[  750.373265][T21151]  ? lock_chain_count+0x20/0x20
[  750.378143][T21151]  ? _local_bh_enable+0xa0/0xa0
[  750.383026][T21151]  ? inet_send_prepare+0x1b3/0x260
[  750.388154][T21151]  ? inet_send_prepare+0x1b3/0x260
[  750.393391][T21151]  ? inet6_sendmsg+0x5f/0xd0
[  750.398016][T21151]  __sys_sendto+0x46a/0x620
[  750.402645][T21151]  ? __ia32_sys_getpeername+0x90/0x90
[  750.408070][T21151]  ? aa_af_perm+0x2b0/0x2b0
[  750.412635][T21151]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  750.418704][T21151]  ? lock_chain_count+0x20/0x20
[  750.423601][T21151]  __x64_sys_sendto+0xde/0xf0
[  750.428401][T21151]  do_syscall_64+0x55/0xb0
[  750.432847][T21151]  ? clear_bhb_loop+0x40/0x90
[  750.437589][T21151]  ? clear_bhb_loop+0x40/0x90
[  750.442570][T21151]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  750.448592][T21151] RIP: 0033:0x7fb256f8eb69
[  750.453406][T21151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  750.473148][T21151] RSP: 002b:00007fb257dda038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  750.481676][T21151] RAX: ffffffffffffffda RBX: 00007fb2571b5fa0 RCX: 00007fb256f8eb69
[  750.489690][T21151] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  750.497679][T21151] RBP: 00007fb257011df1 R08: 0000200000006080 R09: 000000000000001c
[  750.505785][T21151] R10: 0000000020000080 R11: 0000000000000246 R12: 0000000000000000
[  750.513784][T21151] R13: 0000000000000000 R14: 00007fb2571b5fa0 R15: 00007ffe598a9c18
[  750.522237][T21151]  </TASK>
[  750.525418][    C1] vkms_vblank_simulate: vblank timer overrun
[  750.624200][T17022] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  750.818208][T17295] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  751.021203][   T58] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  751.102749][   T58] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  751.172889][   T58] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  751.248113][   T58] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  752.287364][   T58] bond0: (slave wlan1): Releasing backup interface
[  752.524781][   T58] hsr_slave_0: left promiscuous mode
[  752.532837][   T58] hsr_slave_1: left promiscuous mode
[  752.540336][   T58] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  752.548756][   T58] batman_adv: batadv0: Removing interface: batadv_slave_0
[  752.559888][   T58] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  752.567873][   T58] batman_adv: batadv0: Removing interface: batadv_slave_1
[  752.577346][   T58] bridge_slave_1: left allmulticast mode
[  752.587217][   T58] bridge_slave_1: left promiscuous mode
[  752.599775][   T58] bridge0: port 2(bridge_slave_1) entered disabled state
[  752.610840][   T58] bridge_slave_0: left allmulticast mode
[  752.616655][   T58] bridge_slave_0: left promiscuous mode
[  752.622530][   T58] bridge0: port 1(bridge_slave_0) entered disabled state
[  752.672202][   T58] veth1_macvtap: left promiscuous mode
[  752.681414][   T58] veth0_macvtap: left promiscuous mode
[  752.687671][   T58] veth1_vlan: left promiscuous mode
[  752.698167][   T58] veth0_vlan: left promiscuous mode
[  753.608825][   T58] team0 (unregistering): Port device team_slave_1 removed
[  753.697032][   T58] team0 (unregistering): Port device team_slave_0 removed
[  753.767044][   T58] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  753.835458][   T58] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  754.624123][   T58] bond0 (unregistering): Released all slaves