last executing test programs:

9m41.461357581s ago: executing program 3 (id=1222):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x10, 0x0, 0x0, 0x70b7, 0x0, 0x0, 0x41000, 0x2c, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000300)={0x4, 0xb, 0x100, 0x3}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='f2fs_truncate_data_blocks_range\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
landlock_create_ruleset(&(0x7f0000000180)={0x3012, 0x1, 0x2}, 0x3d, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x14b6deac033214c2)

9m40.316407689s ago: executing program 3 (id=1223):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x298})
unshare(0x8040600)
r1 = socket(0x22, 0x2, 0x4)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x458, 0x0, 0x2b8, 0xb0000010, 0x2, 0x5c8f0200, 0x388, 0x3a8, 0x3a8, 0x388, 0x3a8, 0x3, 0x0, {[{{@ipv6={@private1, @local, [], [], 'vlan1\x00', 'veth0_to_team\x00'}, 0x0, 0x248, 0x290, 0x700, {}, [@common=@inet=@hashlimit3={{0x158}, {'geneve1\x00', {0xf1, 0x0, 0x33, 0x0, 0x0, 0x1, 0x7fffffff}}}, @common=@unspec=@limit={{0x48}, {0x10000000, 0x3}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x206, 'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@CONNSECMARK={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4b8)
getsockname(r1, 0x0, 0x0)
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000040)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00005cf000/0x4000)=nil, 0x400000, 0x2, 0x2})
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
r4 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r5 = openat$sysfs(0xffffff9c, &(0x7f0000000580)='/sys/kernel/crash_elfcorehdr_size', 0x103700, 0x55)
io_submit(0x0, 0x1, &(0x7f0000000500)=[&(0x7f0000000040)={0x0, 0x4000, 0x0, 0x0, 0x0, r5, &(0x7f0000000000), 0x0, 0x0, 0x0, 0x3}])
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r6 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000380)={r4, 0xe0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000000)=[0x0, 0x0], ""/16, <r7=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200), 0x8, 0xbf, 0x8, 0x0, 0x0}}, 0x10)
futex(&(0x7f0000000400), 0xc, 0x4000000, &(0x7f0000000080), &(0x7f00000004c0), 0x0)
r8 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r8, 0x7a7, &(0x7f0000000080)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r5, 0x7a0, &(0x7f0000000100)={@host})
ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r8, 0x7a5, &(0x7f0000000140)={{@any, 0xffffffff}, 0x1, 0x1})
bind$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0xf8, r7, 0x1, 0x6, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, 0x14)
ioctl(r6, 0x8b2a, &(0x7f0000000040))
syz_init_net_socket$ax25(0x3, 0x2, 0xcf)
ioctl$KDSKBENT(r3, 0x4b47, 0x0)

9m39.223103033s ago: executing program 3 (id=1226):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x103)
mount$nfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000005c0)={[{'ac,'}]})
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000ec0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000240)={0x5, &(0x7f00000001c0)=[{0x9, 0x0, 0xa2, 0x5}, {0x4, 0x8, 0x5, 0x7}, {0xfffc, 0xe, 0x3, 0x2b}, {0x1c5, 0x6, 0x4, 0x9}, {0x2, 0x7, 0x6, 0x2}]}, 0x10)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000040)={0x84, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e23, 0x3, 'dh\x00', 0x1, 0x7, 0x49}, 0x2c)
setsockopt$IP_VS_SO_SET_FLUSH(r3, 0x0, 0x485, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000100000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r4}, 0x10)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'bridge_slave_0\x00', <r8=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000d40)=@bridge_delneigh={0x28, 0x1c, 0x1, 0x2, 0x0, {0x7, 0x0, 0x0, r8, 0x3, 0x7, 0x6}, [@NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}]}, 0x28}, 0x1, 0x0, 0x0, 0x20040051}, 0x4048000)
setsockopt$MRT_ADD_VIF(r1, 0x0, 0xca, &(0x7f0000000180)={0x1, 0x8, 0x56, 0x9, @vifc_lcl_ifindex=r8, @broadcast}, 0x10)
r9 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r9, 0xc08c5332, &(0x7f0000000040)={0x0, 0x0, 0x0, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r9, 0xc08c5334, &(0x7f00000010c0)={0x0, 0x0, 0x0, 'queue0\x00', 0x1})
ioctl$F2FS_IOC_SET_COMPRESS_OPTION(r5, 0x4002f516, &(0x7f0000000000)={0x1})
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)

9m36.852623136s ago: executing program 3 (id=1230):
fsmount(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000200)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="cf002bbd7000ffdbdf2583c3da5508000300", @ANYRES32=r3], 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0), 0x80280, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r6, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$inet6(0xa, 0x1, 0x8010000000000084)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r7 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r7, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount$bind(&(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x12f451, 0x0)
mount$bind(&(0x7f00000000c0)='.\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x80700a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
write$UHID_INPUT(r5, &(0x7f0000001040)={0xfc, {"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", 0x1000}}, 0x1006)

9m32.808821759s ago: executing program 3 (id=1239):
openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x10b200, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$qrtrtun(r2, &(0x7f0000000300)='\x00\x00\x00\x00\x00\x00\x00', 0x7)
r4 = getpid()
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r3, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000003c0)=[0x7], 0x0, 0x0, 0x1, 0x0, r4}}, 0x3c)
r5 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r5, 0x0)

9m31.534760355s ago: executing program 3 (id=1241):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x103)
mount$nfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000005c0)={[{'ac,'}]})
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000ec0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000240)={0x4, &(0x7f00000001c0)=[{0x9, 0x0, 0xa2, 0x5}, {0xfffc, 0xe, 0x3, 0x2b}, {0x1c5, 0x6, 0x4, 0x9}, {0x2, 0x7, 0x6, 0x2}]}, 0x10)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000040)={0x84, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e23, 0x3, 'dh\x00', 0x1, 0x7, 0x49}, 0x2c)
setsockopt$IP_VS_SO_SET_FLUSH(r3, 0x0, 0x485, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'bridge_slave_0\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000d40)=@bridge_delneigh={0x28, 0x1c, 0x1, 0x2, 0x0, {0x7, 0x0, 0x0, r6, 0x3, 0x7, 0x6}, [@NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}]}, 0x28}, 0x1, 0x0, 0x0, 0x20040051}, 0x4048000)
setsockopt$MRT_ADD_VIF(r1, 0x0, 0xca, &(0x7f0000000180)={0x1, 0x8, 0x56, 0x9, @vifc_lcl_ifindex=r6, @broadcast}, 0x10)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r7, 0xc08c5332, &(0x7f0000000040)={0x0, 0x0, 0x0, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r7, 0xc08c5334, &(0x7f00000010c0)={0x0, 0x0, 0x0, 'queue0\x00', 0x1})
ioctl$F2FS_IOC_SET_COMPRESS_OPTION(0xffffffffffffffff, 0x4002f516, &(0x7f0000000000)={0x1})
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)

9m31.197922992s ago: executing program 32 (id=1241):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x103)
mount$nfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000005c0)={[{'ac,'}]})
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000ec0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000240)={0x4, &(0x7f00000001c0)=[{0x9, 0x0, 0xa2, 0x5}, {0xfffc, 0xe, 0x3, 0x2b}, {0x1c5, 0x6, 0x4, 0x9}, {0x2, 0x7, 0x6, 0x2}]}, 0x10)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000040)={0x84, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e23, 0x3, 'dh\x00', 0x1, 0x7, 0x49}, 0x2c)
setsockopt$IP_VS_SO_SET_FLUSH(r3, 0x0, 0x485, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'bridge_slave_0\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000d40)=@bridge_delneigh={0x28, 0x1c, 0x1, 0x2, 0x0, {0x7, 0x0, 0x0, r6, 0x3, 0x7, 0x6}, [@NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}]}, 0x28}, 0x1, 0x0, 0x0, 0x20040051}, 0x4048000)
setsockopt$MRT_ADD_VIF(r1, 0x0, 0xca, &(0x7f0000000180)={0x1, 0x8, 0x56, 0x9, @vifc_lcl_ifindex=r6, @broadcast}, 0x10)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r7, 0xc08c5332, &(0x7f0000000040)={0x0, 0x0, 0x0, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r7, 0xc08c5334, &(0x7f00000010c0)={0x0, 0x0, 0x0, 'queue0\x00', 0x1})
ioctl$F2FS_IOC_SET_COMPRESS_OPTION(0xffffffffffffffff, 0x4002f516, &(0x7f0000000000)={0x1})
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)

14.576170569s ago: executing program 4 (id=2663):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000006080)={0x2020}, 0x2020)

12.726605858s ago: executing program 4 (id=2666):
r0 = socket$inet6(0xa, 0x2, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000080)={{0x1}, &(0x7f0000000000), 0x0}, 0x20)
r1 = socket$kcm(0xa, 0x922000000003, 0x11)
sendmsg$kcm(r1, &(0x7f0000000100)={&(0x7f00000002c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1={0xff, 0x2}}, 0x80, &(0x7f0000001500)=[{&(0x7f0000000000), 0x4c00}], 0x1}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0xc)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
epoll_create1(0x80000)
syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), r3)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f0000000340)={<r5=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r4, 0xc0182101, &(0x7f0000000180)={r5, 0x0, 0x7f})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f0000002780)={<r6=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000080)={r6, 0x3, r4})
sendmsg$NFQNL_MSG_CONFIG(r2, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f0000000140)={0x1c, 0x2, 0x3, 0x201, 0x0, 0x0, {}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}]}, 0x1c}}, 0x0)
close(r2)
recvmsg$kcm(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000340)=""/4106, 0x5a8}], 0x10}, 0x0)
sendmmsg$inet6(r0, &(0x7f0000006c40)=[{{&(0x7f0000000480)={0xa, 0x4e23, 0x6, @loopback, 0x61}, 0x1c, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000029000000370000008900000000000000a228f95a4f7871ba64a0788cc47824522c5b41a9be0bd4528afabcd0c8a13913409e6bc0bffed7378e10853c84dcb8b39183d5491ed1caf1a968f50585405a941936e4821b0f7a366d4c2b03e81e4e82227d"], 0x18}}], 0x1, 0x0)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r2)
sendmsg$NL80211_CMD_REQ_SET_REG(r2, &(0x7f00000013c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000001380)={&(0x7f0000001540)={0x190, r7, 0x100, 0x70bd2c, 0x25dfdbfe, {}, [@NL80211_ATTR_REG_RULES={0x17c, 0x22, 0x0, 0x1, [{0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x9}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x2}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x8}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x5}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x3}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x4}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x7}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x6}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x5}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x2}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x8}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x81}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x45d8}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xfffffffb}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x7}, @NL80211_ATTR_FREQ_RANGE_END={0x8}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x200}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x7}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x540}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xfffffffb}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xfffffffd}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x10000}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x18b}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x2}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x3}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x800}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x40d}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x729}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x8000}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x10000}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x7}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x6d4}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0xac9}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x8}]}, {0x4c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xd5}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xafad06b7}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xa}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x3}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x7}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x7}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x1572711e}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x5}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x1}]}]}]}, 0x190}, 0x1, 0x0, 0x0, 0x40000884}, 0x800)

12.286481829s ago: executing program 5 (id=2671):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000000)={@my=0x0})
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(r1, 0x7b2, &(0x7f0000000100)={&(0x7f0000000780)=[0x0, 0x80, 0x8, 0x3, 0x7, 0x3, 0x59be, 0x4, 0x3, 0x4270, 0x7fff, 0x7, 0x6, 0x9, 0xff, 0x8, 0x4, 0x2, 0x4, 0x81, 0x3, 0x8001, 0x4, 0x7, 0xfffffffd, 0x9, 0x4, 0x7, 0x3, 0xc, 0x3ff, 0x9f1, 0x2, 0xfffffffc, 0xff, 0x7fffffff, 0x3, 0x80000001, 0x0, 0x8, 0x46, 0x4, 0x5, 0x400, 0x3, 0x4, 0x3, 0x4, 0x4956b8a3, 0x0, 0x40, 0x4, 0x26626e6, 0x4, 0xee, 0x7, 0x80000000, 0x8, 0x2, 0xc6, 0x8, 0x2825, 0x7, 0xd1, 0x9, 0x6, 0x9, 0x15f8000, 0x84fa, 0xe59, 0x8, 0x4, 0x3, 0xecc, 0xbb, 0x335, 0xa541, 0x8000, 0x200, 0x4, 0xfff, 0x3, 0x2, 0xf, 0x6, 0xad, 0x21c, 0x7ff, 0x4, 0x81, 0x0, 0x4, 0x6, 0xff, 0x4, 0x3, 0x401, 0xa, 0x6, 0x7f, 0xe, 0x0, 0x9, 0x8001, 0x2, 0x2, 0xfffffffc, 0x0, 0x9, 0x46a, 0x8, 0x1, 0x0, 0x5, 0x7fff, 0x249, 0x1, 0x4, 0x2, 0x0, 0x6, 0x5c, 0x2, 0x4, 0x9, 0x4, 0x4, 0x2, 0xffffffff, 0x6e, 0x8fc1, 0x2, 0x9, 0x7ff, 0x8, 0x8, 0x800, 0x7f, 0x5, 0x7, 0x48d5c339, 0x8, 0x1, 0x1a00000, 0x80, 0x7f, 0xfffffffa, 0x0, 0x3, 0x6, 0x2, 0x0, 0x3f, 0xfff, 0x7, 0x9, 0xc00000, 0x5, 0x5, 0x6, 0xe, 0xfffffff7, 0x100, 0x32bf, 0x4, 0x8, 0x7fff, 0xfffeffff, 0x2, 0x3ff, 0x10000, 0x2, 0x7, 0x10001, 0x7, 0x80, 0xfffffffc, 0x5, 0x3, 0xfffffff2, 0x5, 0x1, 0x1, 0x800, 0x1, 0x4, 0x3, 0x1, 0xb, 0x9, 0x3, 0xd8, 0x9, 0x8, 0x0, 0x1, 0xffffffff, 0xc, 0x0, 0x5, 0x2, 0x10001, 0x2, 0x1, 0xb71, 0xffffffff, 0x7, 0x453, 0x2, 0xa, 0x8, 0xa, 0x1, 0x8000, 0x6, 0xfffffffb, 0x6, 0x6, 0x5, 0x7, 0x3, 0x101, 0x7ff, 0x0, 0x5, 0x1, 0x6, 0xc0000000, 0x10000, 0x5, 0x4, 0xffffffff, 0xff, 0x8000, 0x2, 0x808001, 0x1, 0x100, 0x401, 0x7, 0xbfc, 0x0, 0xc, 0x101, 0x7, 0x2, 0x200, 0xa, 0x101, 0x7, 0xfffffffe, 0xe, 0x4, 0x3, 0x5, 0xfa, 0x81, 0xc0000000, 0x249, 0x8, 0x5, 0x1, 0x9, 0x0, 0xe, 0x0, 0xfffffffa, 0x9, 0x5, 0x80000001, 0xfffffff9, 0x10, 0x0, 0xfffffffc, 0x158, 0x5, 0xc3d9, 0xa5a, 0x9, 0x1ff, 0x1, 0x6, 0x10000, 0x2, 0x81, 0x8, 0x8001, 0xea1, 0x9, 0x7, 0x8, 0x140000, 0x13d, 0xfffff9d4, 0x10001, 0x100, 0xffffffff, 0x3, 0x2, 0x0, 0xf49, 0xa, 0xf8600000, 0x0, 0xfffffff9, 0x92cb, 0x2, 0x4, 0x4, 0x1, 0x8, 0x2, 0x0, 0x40, 0xfffffffa, 0x4, 0x0, 0x9, 0xb497, 0xfffffffb, 0x15, 0x3, 0x9, 0x1000, 0x9, 0x8, 0x0, 0x3, 0x8000, 0x5, 0x2, 0x40, 0x7, 0x594, 0x1000da, 0x4, 0x6, 0xf, 0x8, 0xd, 0x6, 0x1, 0x3, 0x9a6, 0x4, 0x9, 0xf2c, 0x6c, 0xae, 0x7f, 0x4, 0x8, 0xffffffff, 0x6, 0x5, 0x1, 0x800, 0x9, 0x8, 0x8000, 0x40c1, 0x8001, 0x5, 0x9, 0x0, 0x3, 0x3, 0x5, 0x80, 0x0, 0x1c97, 0x9, 0x1000, 0x7, 0x5, 0x9, 0x3ff, 0xffffda79, 0xfffffff7, 0xb70, 0x9, 0x1240, 0x7, 0x6, 0x752b, 0x400, 0x4, 0x80000001, 0x6, 0x4a94, 0x100, 0xb4, 0x101, 0x9, 0x4d, 0x143e, 0x10001, 0x6, 0x800, 0x8, 0x0, 0xfffffffe, 0xb, 0x5, 0x2, 0x3, 0x1, 0xa, 0xfffffffd, 0x7, 0x8, 0x7ff, 0x6, 0x5, 0x3, 0x1, 0x3f, 0x6, 0x9b6b, 0x6, 0x13, 0x5, 0x6, 0x3, 0xb3a0, 0x69f1, 0x4, 0x6, 0x5, 0xde7, 0x2, 0x7, 0x4, 0x80000000, 0xcc, 0xfce, 0x2, 0xe19, 0x5, 0x9, 0x6, 0x3, 0x4, 0x5, 0x0, 0x1, 0x1000, 0x7, 0x4, 0x80, 0xff, 0x0, 0x9, 0x6, 0xeb, 0x8, 0x1741, 0xb646, 0xbc8, 0x7, 0x0, 0x9, 0x4, 0x2, 0xfffffffa, 0x8000, 0xfffffc94, 0x5, 0x9, 0x0, 0x3, 0x4, 0x7257, 0x1b9b, 0x4, 0x100, 0xa, 0x4, 0x1, 0x8, 0xfffffffb, 0xfffffe00, 0x2, 0x8722, 0x101, 0x7, 0xffffaa9c, 0x7, 0x5, 0x80000000, 0x4, 0xcf08, 0xffffffff, 0x9, 0x401, 0x6, 0xff, 0x3, 0x2, 0x8, 0x3ff, 0x2, 0x7, 0x4, 0xffffffff, 0x0, 0xd4, 0x7, 0xa28b, 0x7d3e87f7, 0x1ff, 0x8, 0xe342, 0x9, 0x7, 0x1, 0x20, 0x7, 0x4, 0x80, 0x3, 0x8, 0x6, 0x0, 0x1, 0x4, 0x81, 0x2b94dbb4, 0x0, 0x7e, 0x5, 0x5, 0x4, 0x100, 0x400, 0x253, 0x4, 0xadd, 0x2, 0x2, 0x0, 0x80, 0x4, 0x7e7, 0x2, 0x2, 0x0, 0x120a, 0x40000000, 0x4e, 0x1, 0x4, 0x2, 0xd, 0x2, 0x2000, 0x7d6, 0x300d, 0xa, 0xb, 0x630a, 0x7, 0x5, 0x0, 0x200, 0x9, 0x8000, 0x7, 0xc3b, 0x4c9c, 0x4, 0xffffffff, 0x2, 0x8, 0xfffffffa, 0x200, 0x1, 0xb72, 0x0, 0x80008000, 0x8, 0x81, 0x0, 0x0, 0x0, 0x4, 0xa4aa, 0x6, 0x7fffffff, 0x6b91, 0x6, 0x2, 0x3, 0x400, 0x0, 0x80000000, 0xd, 0x4, 0x0, 0x1, 0x7fffffff, 0x7, 0x8, 0x5, 0xfffffffe, 0x2, 0xdb2, 0x81, 0x98d6, 0x3, 0xd5ae, 0x206, 0xffffffff, 0x4, 0x63, 0x4, 0x9, 0x2, 0xfff, 0x4, 0x2, 0x0, 0x3f1d, 0x4, 0x9, 0x3ff, 0x940, 0xfffffff8, 0x1, 0xff, 0x0, 0xff, 0x8, 0x8, 0x5c200000, 0x2, 0x10000, 0x9, 0x6, 0x2, 0x6, 0x800, 0x5, 0x1, 0xfffffffe, 0x2, 0x3, 0x2, 0x1000, 0x6, 0x8, 0x0, 0x101, 0xfd, 0xf2, 0x8, 0x402, 0x2d, 0xfa, 0xfffffffe, 0x1, 0x10, 0x6, 0x0, 0x8, 0x81, 0x6, 0x7ff, 0x6, 0xfffffffe, 0x3, 0x3, 0x37, 0x8, 0x401, 0xe6, 0x7, 0x8, 0x81, 0x7ff, 0x5, 0x4, 0x8, 0x7, 0x4, 0x800, 0x1, 0x336f, 0x3, 0x0, 0x8000, 0xa2d, 0xfff, 0x50a8, 0x9, 0x2, 0x10000, 0x1000, 0x5, 0x9, 0x4, 0xc9a6, 0x3, 0x4, 0x0, 0xfffffff0, 0x8, 0x3ff, 0xb, 0x9, 0x8, 0x2, 0xffff, 0x3, 0x0, 0xffff, 0xfff, 0x3, 0x8001, 0x5, 0x83, 0x9, 0x6, 0xffffffff, 0x4, 0x9, 0xf3d, 0x6, 0x1, 0x4, 0x36b, 0xa00, 0x300, 0x777, 0xfffffffa, 0x2, 0x7, 0x101, 0xc, 0x7, 0xf9a8, 0xdf, 0xffffffff, 0x1, 0x8, 0x1000, 0x1, 0x5, 0x5, 0x0, 0x60, 0x7, 0x5, 0x8, 0x7, 0x200, 0x81, 0x7ff, 0xd, 0x4, 0x2, 0x8, 0x0, 0x81, 0xac, 0x1, 0x57e, 0x8, 0x80000, 0x8, 0xbc69, 0x6, 0x7, 0x9, 0x1, 0x4, 0x3f6, 0x7, 0x0, 0x8001, 0x3, 0x10000, 0x10001, 0xd, 0x8, 0x9, 0x0, 0x3, 0xfffffffe, 0xfffffffa, 0x1000, 0xfffffffd, 0x40, 0x3, 0x10000, 0x5d3a3577, 0x4, 0xd, 0x1, 0x6, 0x758, 0x7, 0x6da9, 0x4, 0x9, 0xd8db, 0x50, 0xe, 0xa1, 0x6, 0x8, 0xacb, 0xfffffff5, 0xc, 0x2, 0x1000, 0xa9cf, 0x2, 0xffffff9d, 0x1, 0x0, 0x7, 0x0, 0x5, 0x2a5, 0x1, 0x6, 0x54c1, 0x6, 0x8d0, 0x7, 0x9, 0xfffffff9, 0x5, 0x7, 0x400, 0x1, 0x615, 0x6, 0x2, 0x5, 0xd, 0xfffffffe, 0x6, 0x21, 0x5, 0x3, 0x9, 0x8, 0xffff8001, 0x7, 0x7, 0x9, 0x9, 0x7, 0x80000001, 0x101, 0x1, 0xcb, 0x5, 0xffffffff, 0xb4ce, 0x0, 0x0, 0x4, 0x5, 0x8, 0x8, 0x4, 0x99, 0x2, 0x0, 0x5000, 0x4, 0x3, 0x9, 0x1, 0x6, 0x8, 0x1, 0x80000001, 0x9, 0x5, 0x2, 0x0, 0x4, 0x100, 0x7fffffff, 0x674, 0x4, 0x100, 0x8, 0x3, 0x4, 0x5, 0x4a, 0x200, 0x8000, 0x4, 0x60000, 0x2e3e, 0x80, 0xc, 0x4, 0x4, 0x4, 0x1, 0x0, 0x100, 0x101, 0x0, 0x6, 0xffffff80, 0xfc, 0x8, 0x3b2c, 0x800, 0x1, 0x4e, 0xc, 0x4, 0xb528, 0xb1b3, 0x2, 0x13c8, 0x4, 0x6, 0xfffffffb, 0x8a39, 0x1, 0x10000, 0x4, 0x7f, 0x6, 0x1, 0xaae, 0x80000000, 0x2, 0x3, 0x401, 0x3fc, 0x5, 0x3, 0x9, 0x9, 0x8, 0x2, 0x401, 0x0, 0x6, 0x7f, 0x4, 0x71e, 0x81, 0x0, 0x3bc, 0x5, 0x86, 0x2, 0xd4da, 0x0, 0x4, 0x0, 0x9cae, 0x6, 0x3, 0x80000001, 0x3, 0x5, 0x5, 0x2, 0xc, 0x4, 0x30, 0x0, 0xfffffffa, 0x3, 0x6, 0x4, 0x5, 0x4, 0x100, 0x8, 0xeff, 0x6, 0x0, 0x401, 0x10, 0x1, 0x5, 0x9, 0x4788, 0x1, 0x4, 0xd54d, 0x0, 0xfffffffb, 0xc, 0x0, 0x401, 0x5, 0xf, 0x19, 0x8, 0x7, 0xcdb, 0x0, 0x6, 0xc0, 0x925e, 0x6, 0x1, 0x2, 0x0, 0x7, 0x1ff, 0xf, 0x401, 0x80000000, 0xff, 0x8695, 0x9, 0xfffffffd, 0x5], 0x1, 0x400, 0x55fb})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000001780)=ANY=[@ANYBLOB="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"], 0x0, 0x26, 0x0, 0xa, 0x7ff, 0x0, @void, @value}, 0x28)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x18, 0x4, &(0x7f0000000580)=ANY=[@ANYBLOB="b4000000000000007910000000000000c300e4ff50000000950074000000000007cd68541c8ecf9531b5304b5cc21956f2bc86279e6ad8df17d9770ecf3cf86fc3e24813c30a62be8343fd64d83b7a67d4fe75024d408c8c6efad5de675dd7c2fd4bc5150ac10908d8ed5d462d8b3d226984e301c5303515a91caae004c5b15d99b0603e513689df039b1b3be2397b3e4ceded9089bc2e15d40b2051974e6b2478ae72cf47bee3a056433e3c9ec50f965cb28a3e9ed5f403cb7753bb80134316c458ef5fc56add28eb81da659d42e1efe216f3f7fe157783ba79e1b2d5f2212e804de42b27f23214bebff612b6287d969b02d2f8c9fa6eb8da5fb47c68478a3972a3760cab8ed724a951c4e98eb2fcf27e92142b602215c964"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x8001000000000000, 0x40, &(0x7f00000002c0)=@raw={'raw\x00', 0x8, 0x3, 0x228, 0x0, 0x11, 0x148, 0xb8, 0x0, 0x190, 0x2a8, 0x2a8, 0x190, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x6, 0x6, 0xd04, 'netbios-ns\x00', {0x5}}}}, {{@ip={@multicast1, @private=0xa010102, 0xffffffff, 0xffffff00, 'veth1_to_batadv\x00', 'macsec0\x00', {0xff}, {}, 0x6, 0x2, 0x8}, 0x0, 0x70, 0xd8}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x288)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x14}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$IOMMU_VFIO_IOMMU_MAP_DMA(0xffffffffffffffff, 0x3b71, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff})
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = gettid()
r8 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0xfffffffffffffffb]}, 0x8, 0x0)
readv(r8, &(0x7f0000000300)=[{&(0x7f0000000440)=""/172, 0xac}], 0x1)
rt_sigqueueinfo(r7, 0x21, &(0x7f0000000180)={0x0, 0x0, 0xfffffffb})

11.272012904s ago: executing program 5 (id=2673):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x0, 0x0, &(0x7f00000001c0)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={r0, 0x0, 0x0}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r6 = fanotify_init(0x8, 0x80000)
fanotify_mark(r6, 0x105, 0x4800003a, r5, 0x0)
mkdir(&(0x7f0000000100)='./file1\x00', 0x13b)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})

10.742646973s ago: executing program 4 (id=2674):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x100)
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
setsockopt$inet6_udp_int(r0, 0x11, 0xb, &(0x7f0000001800)=0x8000, 0x4)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace5ffb2e9fc603dd282100000002ff02000000000000000000000000000104004e200023b0"], 0x0)
syz_emit_ethernet(0x2e, &(0x7f0000000040)={@link_local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x2001, 0x0, 0xc, 0x0, @opaque="d2ab154b"}}}}}, 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x707b, 0x100, 0x4, 0x80288}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0x6000, 0x0)
r5 = open(0x0, 0x81, 0x0)
ioctl$BTRFS_IOC_DEFRAG(r5, 0x1260, 0x3)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
r6 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000180), 0x80001, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_GET(r6, &(0x7f00000004c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x890}, 0x20008000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x2000c000})
io_uring_enter(r2, 0x3516, 0x0, 0x4, 0x0, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="04000d80080005"], 0x24}, 0x1, 0x5502000000000000}, 0x0)
socket(0x10, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r6, 0x89f1, &(0x7f0000000000)={'ip6tnl0\x00', &(0x7f0000000080)={'syztnl2\x00', 0x0, 0x29, 0x7d, 0xb, 0x1, 0x51, @private2={0xfc, 0x2, '\x00', 0x1}, @mcast2, 0x7, 0x0, 0x4, 0x40}})
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f00000003c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@uuid_on}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@metacopy_on}]})
r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000042c0)='mounts\x00')
pread64(r8, &(0x7f0000002240)=""/237, 0xed, 0x619)

7.5838523s ago: executing program 1 (id=2685):
mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x1214040, 0x0)
lseek(0xffffffffffffffff, 0x101, 0x1)
getdents64(0xffffffffffffffff, 0x0, 0x6d0821ca1fc60d2f)
openat$vimc1(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)="be", 0x1}], 0x1}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x0, 0x1, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
r3 = dup(r2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)=@x86={0xa, 0x4f, 0x8c, 0x0, 0x6, 0xeb, 0x1, 0x23, 0x7, 0xa0, 0xa, 0x1, 0x0, 0x0, 0xf8df, 0x5, 0x7, 0x2, 0x4, '\x00', 0x0, 0xa7})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000000c0)=0xffff)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
read(0xffffffffffffffff, &(0x7f0000000340)=""/49, 0x31)

7.217453506s ago: executing program 1 (id=2689):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="0c04200010000104000000000000000000480000", @ANYRES32=r0, @ANYBLOB="101000000000000008000d0005000000e4031680a40001800c0007"], 0x40c}}, 0x0)

7.037673262s ago: executing program 4 (id=2690):
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x1, 0x5}}, './file0\x00'})
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x17, 0x6, 0x5, 0x1, 0x20, 0xffffffffffffffff, 0xcccb, '\x00', 0x0, r0, 0x1, 0x3, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
r1 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000001c0)=0x5)
r2 = syz_open_dev$evdev(0x0, 0x0, 0x8840)
getpid()
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
getsockopt$bt_l2cap_L2CAP_LM(r3, 0x6, 0x3, &(0x7f0000000000), 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4000}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}, @IFLA_IFNAME={0x14, 0x3, 'geneve1\x00'}]}, 0x48}}, 0x2000000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x6}, 0x4)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r7 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000400)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000940)=@framed={{0x18, 0x9}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r7}}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r7}, &(0x7f0000000540), &(0x7f0000000580)=r8}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000007c0)={r7, &(0x7f0000000780)}, 0x20)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f00000002c0)={{0x1, 0x1, 0x18, <r9=>r2, {0xffffffffffffffff, 0xffffffffffffffff}}, './file0\x00'})
ioctl$CEC_TRANSMIT(r9, 0xc0386105, &(0x7f0000000300)={0xfffffffffffffffa, 0x2, 0x2, 0x80, 0x6, 0x5, "0b5334c4dd875954c554190e7bd69e5a", 0x64, 0xd, 0xff, 0x5, 0xd, 0x13, 0xf4})
r10 = syz_open_dev$MSR(&(0x7f0000000580), 0xa, 0x0)
read$msr(r10, &(0x7f0000019680)=""/102392, 0x18ff8)
pread64(0xffffffffffffffff, &(0x7f0000032140)=""/102344, 0x18fc8, 0x4000c2a)

6.828819577s ago: executing program 1 (id=2691):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x100}, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
creat(0x0, 0x198)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[], 0x15)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x66960000)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x147c40, 0x0)
preadv2(r0, &(0x7f0000000080)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x1, 0x0, 0x9, 0x0)
dup(0xffffffffffffffff)
semtimedop(0x0, &(0x7f0000000180)=[{0x0, 0xfff}], 0x1, 0x0)
semtimedop(0x0, &(0x7f0000000140)=[{}, {}, {0x0, 0x4, 0x1000}], 0x3, 0x0)
semop(0x0, &(0x7f0000000200)=[{0x4, 0xc, 0x800}], 0x1)

6.480288112s ago: executing program 5 (id=2694):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
socket(0x9, 0x2, 0x12)
socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000940), 0x10)
listen(0xffffffffffffffff, 0x4)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$IPSET_CMD_PROTOCOL(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000004c0)={0x14, 0x1, 0x6, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x2004090)

5.525719456s ago: executing program 0 (id=2695):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'macvlan0\x00'})
socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000080))
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001b00)=ANY=[], 0x18}, 0x1, 0x0, 0x0, 0x4000d}, 0x20040000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000380)=@bpf_tracing={0x1a, 0x0, 0x0, 0x0, 0xe, 0x3b, &(0x7f0000000080)=""/59, 0x40f00, 0x1, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000002c0)={0x5, 0x4, 0x80000000, 0x5}, 0x10, 0x169a0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$FS_IOC_SETFLAGS(r3, 0x40186f40, &(0x7f0000000440)=0x1f)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r5 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_RESET(r5, 0xc01064d1, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x8fff, 0x0)
execve(&(0x7f0000000180)='./file0\x00', 0x0, &(0x7f0000000800)={[&(0x7f0000000940)='\x7f\xb7\xc3\x7f\xa5a\xd6A*c\x9b\xd8R\xf02b\xefA|uiWb\x8f\xee\x1c\xc5\xdb^\x11\x16h\x83\x94y<yN\xfbXh[\xe9\xa9\x1702\x7f\x9e\xf0\x99\xad\xdc;p\x98R\a\xb1\x9d^\x0f\x121\xb3\xab7P\xd6\xcb\x06\xfe2~W\xd9\xad\x80\xd9!\x89%\xb80\xa3l;\x1eK\x90\x15\xc6\x11A\xfc\x7f\xc6\xed\xe7\xa3\x9f\xb4\xce\"\xef\xa8\x86F\x15\xb9\rj\f\xafa\xb0}\xde\'E\x84\xb2bO\xd2\xd4\x85F\xde1e\xe0\xf2\xa0/\xd3<\xda\xfe\x04,\xfa\x97\xb6\xf4\xcf\x0el\xf2\xbd\x18\x88\xd7\x02\xce\x99\x1f\xadj\x89\xd9\xb7\xae9\xb0\xb0{n.\xd7\x87C\x0eh|KZG\x108l\n\xcd\xe9\x04\xafM\xbf\x83#>\x89\xf1Y{\x87\xd5\xf3\xccMr\xc5\xbdT\x9e\xc4\x84\x06\xcd\x8b\xcd\t\x01']})
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f00000001c0)="8e"}, 0x50)

5.448325834s ago: executing program 1 (id=2696):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$OSF_MSG_ADD(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="0815000000051104000000000000000001000005540201"], 0x1508}, 0x1, 0x0, 0x0, 0x24000080}, 0x0) (fail_nth: 2)

5.447140373s ago: executing program 2 (id=2697):
bind$bt_rfcomm(0xffffffffffffffff, &(0x7f0000000040)={0x1f, @none, 0x7}, 0xa)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r0, 0x0, 0xd}, 0x18)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r3 = dup3(r2, r1, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r4, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a, 0x4})
ioctl$BINDER_THREAD_EXIT(r4, 0x40046208, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000580)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x48, 0x0, &(0x7f0000000440)={@flat=@binder={0x73622a85, 0x0, 0x3}, @flat=@weak_handle={0x77682a85, 0x80}, @flat=@binder={0x73622a85, 0x1000}}, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000200)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
accept4(r6, 0x0, 0x0, 0x0)
socket(0x200000000000011, 0x2, 0x1)
pselect6(0x40, &(0x7f00000001c0)={0x1, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f0000000000)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x1, 0x7fffffff}, 0x0, 0x0)

4.825721205s ago: executing program 4 (id=2698):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x48100)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000040)={0x0, 0x0, 0x0, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r0, 0xc08c5335, &(0x7f00000001c0)={0x0, 0x80, 0x1, 'queue0\x00', 0x9})
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.swap.events\x00', 0x275a, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r3, 0x1, 0x41, &(0x7f0000000100)=r2, 0x4)

4.238023577s ago: executing program 5 (id=2699):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000040)={0x5, 0x6, 0x4})
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r1, 0xc00c642d, &(0x7f0000000080)={0x0, 0x80000, <r2=>0xffffffffffffffff})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f0000000700)={0x0, &(0x7f0000000100)=[0x0], 0x0, 0x0, 0x0, 0x1})
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r1, 0x80489439, &(0x7f0000000200))
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x1)
r4 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000000c0)={0x0, 0x36, &(0x7f0000000240)={&(0x7f0000000540)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_TARGET={0x0, 0x3, 0x7}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x2}, 0x2000400c)
r6 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r6, 0xc0189376, &(0x7f0000000340)={{0x1, 0x1, 0x18, r3, {0x9}}, './file0\x00'})
r7 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newtaction={0x48, 0x30, 0x53b, 0x0, 0x0, {0x9}, [{0x34, 0x1, [@m_sample={0x30, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc}, {0xc, 0x4, {0x3}}}}]}]}, 0x48}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000040)=@RTM_NEWMDB={0x38, 0x54, 0x1, 0x1, 0x0, {}, [@MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x1, 0x0, 0x3, {@ip4=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x86dd}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$kcm(r7, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003f000b05d25a806c8c6394f90324fc60100002000a000300053582c137153e3704020180fc0b09000c00", 0x33fe0}], 0x1}, 0x0)
mq_unlink(&(0x7f0000000000)='\x06\x00\a0\x00')
syslog(0x4, &(0x7f0000000140)=""/27, 0x1b)
ioctl$DRM_IOCTL_MODE_CURSOR(r0, 0xc01c64a3, 0x0)

3.846972963s ago: executing program 4 (id=2700):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x100)
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
setsockopt$inet6_udp_int(r0, 0x11, 0xb, &(0x7f0000001800)=0x8000, 0x4)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace5ffb2e9fc603dd282100000002ff02000000000000000000000000000104004e200023b0"], 0x0)
syz_emit_ethernet(0x2e, &(0x7f0000000040)={@link_local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x2001, 0x0, 0xc, 0x0, @opaque="d2ab154b"}}}}}, 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x707b, 0x100, 0x4, 0x80288}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0x6000, 0x0)
r5 = open(0x0, 0x81, 0x0)
ioctl$BTRFS_IOC_DEFRAG(r5, 0x1260, 0x3)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
r6 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000180), 0x80001, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_GET(r6, &(0x7f00000004c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x890}, 0x20008000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x2000c000})
io_uring_enter(r2, 0x3516, 0x0, 0x4, 0x0, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="24000000760009eeffff", @ANYRES32=0x0, @ANYBLOB="04000d80080005"], 0x24}, 0x1, 0x5502000000000000}, 0x0)
socket(0x10, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r6, 0x89f1, &(0x7f0000000000)={'ip6tnl0\x00', &(0x7f0000000080)={'syztnl2\x00', 0x0, 0x29, 0x7d, 0xb, 0x1, 0x51, @private2={0xfc, 0x2, '\x00', 0x1}, @mcast2, 0x7, 0x0, 0x4, 0x40}})
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f00000003c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@uuid_on}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@metacopy_on}]})
r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000042c0)='mounts\x00')
pread64(r8, &(0x7f0000002240)=""/237, 0xed, 0x619)

3.806478099s ago: executing program 0 (id=2701):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001140)='net\x00')
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
symlinkat(&(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000100)='./control\x00')
ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x4, &(0x7f0000000000)=[{0x8, 0x3, 0x8, 0xffff2564}, {0x0, 0x8, 0x2, 0x400}, {0xf, 0x7, 0x2, 0x7}, {0x5, 0xfc, 0x7, 0x5}]})

2.953251045s ago: executing program 1 (id=2702):
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f00000001c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f", 0x25, 0x840, 0x0, 0x0)
r2 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x201)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f00})

2.442925396s ago: executing program 0 (id=2703):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[], 0xc0}}, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0x32600)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r4, &(0x7f0000000280)={0xa, 0x2, 0x0, @mcast2, 0x5e}, 0x1c)
sendmmsg$inet6(r4, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000540)={0x2c, 0x2d, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @typed={0x8, 0x0, 0x0, 0x0, @uid=0xee00}, @nested={0xc, 0x0, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @binary="3170d5cb"}]}]}, 0x2c}], 0x1}, 0x0)

2.442241078s ago: executing program 2 (id=2704):
r0 = syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_S_HW_FREQ_SEEK(r0, 0x40305652, &(0x7f0000000040)={0x7fff, 0x4, 0xfff, 0x7, 0x7, 0x8, 0x7})
ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000080)={0x101, 0x7, 0x4, 0x0, 0x9})
r1 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vxcan1\x00', <r2=>0x0})
bind$can_raw(r1, &(0x7f0000000100)={0x1d, r2}, 0x10)
getsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x6, &(0x7f0000000140), &(0x7f0000000180)=0x4)
syz_open_dev$MSR(&(0x7f00000001c0), 0x4, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_INFO(0xffffffffffffffff, 0xc1205531, &(0x7f0000000200)={0xd4b0, 0x8, 0x7, 0x3ff, '\x00', '\x00', '\x00', 0x3260e37, 0x3596, 0xa, 0xb, "002876efa11b8318ecebed9e03ed5113"})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000340), 0x40000, 0x0)
ioctl$VT_ACTIVATE(r3, 0x5606, 0x7)
r4 = openat(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', 0x624181, 0x0)
ioctl$VHOST_RESET_OWNER(r4, 0xaf02, 0x0)
connect$can_bcm(r4, &(0x7f00000003c0)={0x1d, r2}, 0x10)
write$hidraw(r4, &(0x7f0000000400)="5abd9c23c53c61e20f254c4192f03cfc92125224f80153a7708e35f40738bf205a93b76cc58a61713f688fda5f5df073008d12e401ab0e4362791c31eb6d519bd710614033155851fd7166d3dfc4ef2faa874d5d8f4f7232744782131fbe8735472756459149c13b69758e5b81c7243c20c31b777108aba049d0066bc294834665a606e19fbebdf960caf62cfe79051573861c4bb5088365085ed2413a89f9efff73", 0xa2)
r5 = dup3(r3, r3, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r5, 0x7a0, &(0x7f00000004c0)={@my=0x0, 0x1})
ioctl$VIDIOC_G_SLICED_VBI_CAP(r4, 0xc0745645, &(0x7f0000000500)={0x5, [0xfbff, 0x1, 0xfff8, 0x7, 0x3, 0x600, 0xc, 0x8, 0x1, 0x39b, 0x9, 0x2, 0x6c, 0x9, 0x2874, 0x3, 0x6, 0xc000, 0x800, 0xf67, 0x5, 0x4, 0x7, 0x7a1, 0x3ff, 0xa, 0x7, 0x1, 0x81, 0x5, 0x2, 0x408, 0xa, 0xffcd, 0x9, 0xc83, 0x9, 0x8, 0x9, 0x800, 0x3ff, 0xd, 0x4, 0x0, 0xff, 0x1, 0xf7, 0x531], 0x1})
clock_gettime(0x0, &(0x7f00000005c0)={<r6=>0x0, <r7=>0x0})
sendmsg$can_bcm(r5, &(0x7f00000006c0)={&(0x7f0000000580), 0x10, &(0x7f0000000680)={&(0x7f0000000600)={0x3, 0x80, 0x70000, {}, {r6, r7/1000+10000}, {0x3, 0x0, 0x0, 0x1}, 0x1, @can={{0x2, 0x0, 0x1}, 0x0, 0x2, 0x0, 0x0, "3aa1e45d4df4db24"}}, 0x48}, 0x1, 0x0, 0x0, 0x40}, 0x4c000)
rseq(&(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={0x0, 0x0, 0x3, 0x5, 0x2}, 0x3}, 0x20, 0x1, 0x0)
ioctl$VT_ACTIVATE(r4, 0x5606, 0x1)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000007c0), r5)
sendmsg$NL80211_CMD_REQ_SET_REG(r4, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x24, r8, 0x8, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'a\x00'}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'aa\x00'}]}, 0x24}, 0x1, 0x0, 0x0, 0x4004040}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000900)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000008c0)={<r9=>0xffffffffffffffff}, 0x111, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r4, &(0x7f0000000940)={0x7, 0x8, 0xfa00, {r9, 0xb}}, 0x10)
r10 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000980), 0x800, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000009c0)={<r11=>0x0})
ioctl$DRM_IOCTL_NEW_CTX(r10, 0x40086425, &(0x7f0000000a00)={r11, 0x2})
mount(&(0x7f0000000a40)=@nullb, &(0x7f0000000a80)='./file0\x00', &(0x7f0000000ac0)='nilfs2\x00', 0x880400, &(0x7f0000000b00)='/dev/swradio#\x00')

2.21986171s ago: executing program 5 (id=2705):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
r2 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bb306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
openat$uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000009c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000001fd8)=ANY=[@ANYBLOB="b7000000000000004e0000000000000020a00000000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x8, 0xb579, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xe, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x23)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$sock_inet_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f00000001c0)={'macvtap0\x00', {0x2, 0x4e22, @empty}})
r6 = socket(0x2a, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r7=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=ANY=[@ANYBLOB="7000000010000304000080000000000000007400", @ANYRES32=r7], 0x70}, 0x1, 0x0, 0x0, 0x800}, 0x40)

2.079293083s ago: executing program 2 (id=2706):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000380)=[@in6={0xa, 0x0, 0xfffffffc, @private2={0xfc, 0x2, '\x00', 0x1}, 0x9}], 0x11)
syz_emit_ethernet(0x3a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x6, 0x0, @private=0xa010102, @local, {[@generic={0x7, 0x2}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0)

2.029226451s ago: executing program 0 (id=2707):
r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000140), 0x40802, 0x0)
syz_io_uring_setup(0x9e, 0x0, &(0x7f00000006c0)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r0, 0x800000000000, &(0x7f0000000100)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1})
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000380)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', 0x0, r0, 0x800000, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000002380)={0x1f, 0x10, &(0x7f0000000400)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@snprintf={{}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}, {}, {0x85, 0x0, 0x0, 0xb3}}]}, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x38, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r5, 0x40345410, &(0x7f0000000440)={{0x1, 0x1, 0x0, 0x0, 0xffffffff}})
r6 = openat$uinput(0xffffffffffffff9c, &(0x7f0000006c00), 0x2, 0x0)
ioctl$UI_END_FF_ERASE(r6, 0x400c55cb, &(0x7f0000006c40)={0x4, 0x6, 0x7})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x18, 0x3, &(0x7f0000000a00)=ANY=[@ANYRES32=0x0, @ANYRES64=r3, @ANYRESOCT=r6, @ANYBLOB="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", @ANYRES64=r4, @ANYRESHEX=r5, @ANYBLOB="8df18c45ff4572dba5c74d5541bfa91732a770954f50fc11797019c426f2867436b83d76ae8e9de00ff0ce51d098ea9a0c046771a42fd618a9a971bbf80050d306d4aee2d457c59fbc7d58ca19a6476dca07647f8df0b430255203dc5996858a2e6529346ba28b948be339fe81eb106dc377a610c9658e69c8a6476549462d00f0d2471c290b6614a1fb", @ANYRES16=r3, @ANYRESDEC=r3], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0xf, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1.766830823s ago: executing program 2 (id=2708):
mknodat$loop(0xffffffffffffff9c, 0x0, 0x1000, 0x1) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) (async)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000480)=[{&(0x7f00000002c0)="94", 0x1}, {0x0}], 0x2) (async)
munlockall()
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=@base={0xc, 0x10000004, 0x4, 0x9, 0x0, r1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
syz_init_net_socket$ax25(0x3, 0x5, 0xc4) (async)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000080)=<r2=>0x0) (async)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000440)='loginuid\x00')
pwritev(r3, &(0x7f0000000500)=[{0x0}, {&(0x7f00000002c0)='2', 0x1}], 0x2, 0x0, 0x0) (async)
ioctl$SIOCAX25ADDUID(r3, 0x89e1, &(0x7f0000000200)={0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, r2}) (async)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_hmac_sha256\x00'}, 0x58) (async)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x1f}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x7}]}, @NFT_MSG_NEWSETELEM={0x30, 0xc, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x4}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0x9c}}, 0x0) (async)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x4080, 0x0) (async, rerun: 64)
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000080)={0x34, 0x0, 0xb97534d5fe9704cf, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}]}, 0x34}, 0x1, 0x0, 0x0, 0x280048d2}, 0x0) (async, rerun: 64)
sendmsg$NL80211_CMD_GET_KEY(r3, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x30, 0x0, 0x10, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x3, 0x49}}}}, [@NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x2}]}, 0x30}, 0x1, 0x0, 0x0, 0x24004040}, 0x648c3dd3883f9e42) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x12, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="180000000100000000000080000000007b010800009faad11a514a15737c8fb0e01dbf9bdbf67889810f263e3c7b290b9fcf51b436bcd9d4cf269798e5eb1753a94185b400f795020b17fa2b869103fe3b64f91136d53a39515953a58a5eb8b43c56a112f257d71f150cb4b0836bccd9322dceb19df377ceb8ba4fe4cede2fb541727b8a8d6990716a8381b3c1d373f236c4e577880ddbe6dd5ad812e88505c8046ef8168ff454e28100000000000000bac538aae91af4a936526d9bdb3756702f429e2fc37f31f2e21fc8cf9df5c4a693d18ca5124a630a3cc7eaa0b496cd7806d58bf2bc9809c7592c96d352d942eba4617e38e848ae790775f1a1de06d64aa1de5f2b0c2bf1968b26b9c9214399a67f6e97ec1e5b845a5a8382f2cecf569d9161d4f80ca9848446ce6ba212a06fc1bda1d33f23e90fbe90adfb4d14cecf"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x14, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r7, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r6, r8, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, 0x0}], 0x1, 0x5a, 0x0, 0x0) (async, rerun: 64)
ioctl$KVM_RUN(r8, 0xae80, 0x0) (rerun: 64)

1.004145213s ago: executing program 0 (id=2709):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
socket(0x9, 0x2, 0x12)
socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000940), 0x10)
listen(0xffffffffffffffff, 0x4)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$IPSET_CMD_PROTOCOL(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000004c0)={0x14, 0x1, 0x6, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x2004090)

1.003387043s ago: executing program 5 (id=2710):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x100)
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
setsockopt$inet6_udp_int(r0, 0x11, 0xb, &(0x7f0000001800)=0x8000, 0x4)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace5ffb2e9fc603dd282100000002ff02000000000000000000000000000104004e200023b0"], 0x0)
syz_emit_ethernet(0x2e, &(0x7f0000000040)={@link_local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x2001, 0x0, 0xc, 0x0, @opaque="d2ab154b"}}}}}, 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x707b, 0x100, 0x4, 0x80288}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0x6000, 0x0)
r5 = open(0x0, 0x81, 0x0)
ioctl$BTRFS_IOC_DEFRAG(r5, 0x1260, 0x3)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
r6 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000180), 0x80001, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_GET(r6, &(0x7f00000004c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x890}, 0x20008000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x2000c000})
io_uring_enter(r2, 0x3516, 0x0, 0x4, 0x0, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="04000d80080005"], 0x24}, 0x1, 0x5502000000000000}, 0x0)
socket(0x10, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r6, 0x89f1, &(0x7f0000000000)={'ip6tnl0\x00', &(0x7f0000000080)={'syztnl2\x00', 0x0, 0x29, 0x7d, 0xb, 0x1, 0x51, @private2={0xfc, 0x2, '\x00', 0x1}, @mcast2, 0x7, 0x0, 0x4, 0x40}})
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f00000003c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@uuid_on}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@metacopy_on}]})
r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000042c0)='mounts\x00')
pread64(r8, &(0x7f0000002240)=""/237, 0xed, 0x619)

967.372338ms ago: executing program 2 (id=2711):
newfstatat(0xffffffffffffff9c, &(0x7f00000066c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1000)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$TOKEN_CREATE(0x24, &(0x7f00000001c0)={0x0, r2}, 0x8)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000340)={0x1, 0x58, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0x10)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7977e659, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000240)='pmap_register\x00', r4, 0x0, 0xf69}, 0x18)
sendmsg$netlink(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400448c0}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x201, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}], {0x14}}, 0x64}, 0x1, 0x0, 0x0, 0x890}, 0x0)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r6, &(0x7f000000c3c0)={0x2020, 0x0, <r7=>0x0}, 0xfd4b)
write$FUSE_INIT(r6, &(0x7f0000000040)={0x50, 0x0, r7, {0x7, 0x1f, 0xffffffff, 0x10400, 0x0, 0xfffc, 0x0, 0x2, 0x0, 0x0, 0x10}}, 0x50)
syz_fuse_handle_req(r6, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x20, 0x0, 0x88, {0x0, 0x10}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r6, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3, 0xe87, 0x0, 0x0, 0x1ffffc, 0xc000}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r8 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
writev(r8, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x56000}], 0x1)
sendmsg$NFT_MSG_GETOBJ(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)={0x28, 0x13, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}]}, 0x28}}, 0x4040040)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)={0x24, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x24004040}, 0x0)

78.927498ms ago: executing program 1 (id=2712):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00'}, 0x10)
sendmsg$NFC_CMD_GET_TARGET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, 0x0, 0x82c}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x40894)
socket$kcm(0xa, 0x6, 0x3a)
socket$kcm(0xa, 0x3, 0x3a)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000000700)="48000000140081fb7059ae08060c04000aff0f0300000400003a000000006fabca1b4e7d06a6bd7c493872f750375ed08a562ad6e74703c48f93b82a02000000461eb886a5e54e8f", 0x48}], 0x1}, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x1f, &(0x7f0000004640)={&(0x7f0000000540)=@newqdisc={0x78, 0x24, 0xf0b, 0x1000000, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x18, 0x2, {{0x0, 0x0, 0x800000, 0x0, 0xffffffff}, 0x20, 0x0, 0x7, 0x8, 0x101, 0x14, 0x0, 0x0, 0x0, 0x0, {0x200}}}}]}, 0x78}}, 0x4080)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = socket$kcm(0x10, 0x2, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_clone3(&(0x7f0000000280)={0x100000800, 0x0, 0x0, 0x0, {0xb}, 0x0, 0x0, 0x0, 0x0}, 0x58)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
prctl$PR_SCHED_CORE(0x3e, 0x5, r5, 0x3, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000032680)=""/102400, 0x19000)
userfaultfd(0x80001)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000700)=ANY=[], 0x4c}, 0x1, 0x0, 0x0, 0x880}, 0x2)
sendmsg$IPSET_CMD_DESTROY(r7, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x8000)
sendmsg$inet(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000011c0)=[{&(0x7f0000000080)="5c00000011006bcc9e3be34c6e17aa310769876c1d0000007ea60864160af36514001ac004000202080002000600010076e6f06cea2618c3ecb525c89c32f292b156a705251e618294ff0051f60a84c9f4d4938037e786a6d0001000", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

587.831µs ago: executing program 0 (id=2713):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
io_setup(0x8, &(0x7f0000000000)=<r1=>0x0)
r2 = eventfd2(0x0, 0x80001)
io_submit(r1, 0x3, &(0x7f00000005c0)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r2, &(0x7f0000000280)="d1f7624a630e53c3", 0x8, 0x2, 0x0, 0x0, r2}, 0x0, 0x0])
writev(r2, &(0x7f00000010c0)=[{&(0x7f0000000000)='\x00\x00\x00\x00\x00\x00\x00\x00', 0x8}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(0xffffffffffffffff, 0xc0182101, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x10000}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
pipe(&(0x7f0000000000))
mlock2(&(0x7f00000a5000/0x2000)=nil, 0x2000, 0x1)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000980)={0x28, 0x1e, 0xa01, 0x0, 0x0, {0x7}, [@nested={0x14, 0x6e, 0x0, 0x1, [@nested={0x10, 0x6c, 0x0, 0x1, [@nested={0xc, 0xb0, 0x0, 0x1, [@nested={0x8, 0x42, 0x0, 0x1, [@nested={0x4, 0x3a}]}]}]}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x800d1}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r7 = syz_open_dev$usbfs(&(0x7f0000000180), 0x204, 0x4e0841)
io_setup(0x80000001, &(0x7f0000000400))
fcntl$dupfd(r7, 0x0, r7)
r8 = socket(0xa, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r8, 0x4000000000000, 0x40, &(0x7f0000000a00)=@raw={'raw\x00', 0xc08, 0x3, 0x440, 0x310, 0x5002004a, 0xb, 0x310, 0xea13, 0x3a8, 0x3c8, 0x3c8, 0x3a8, 0x3c8, 0x3, 0x0, {[{{@ip={@multicast2, @private=0xa010101, 0xff, 0xffffffff, 'bridge0\x00', 'veth0_macvtap\x00', {}, {0xff}, 0x5c, 0x3, 0x2}, 0x0, 0x2c8, 0x310, 0x0, {}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x2, 0x0, [{}, {0x16}, {0x4}, {}, {}, {0x0, 0x0, 0x5e}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x6}, {0x0, 0x0, 0x4}, {}, {0x4, 0x8}, {}, {}, {0x1}, {0x0, 0x0, 0x0, 0x7f}, {0x0, 0x4}, {}, {}, {}, {0xfffc}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {0x0, 0x0, 0x40}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x80}, {}, {}, {}, {}, {}, {0x0, 0x0, 0xfd}]}}, @common=@inet=@socket3={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x4a0)
clock_settime(0x0, &(0x7f0000000240)={0x77359400})

0s ago: executing program 2 (id=2714):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="c8010000", @ANYRES16=r1, @ANYBLOB="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"], 0x1c8}}, 0x0)
r2 = socket(0x10, 0x3, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000400)=@newqdisc={0x48, 0x24, 0xd0f, 0x70bd2c, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0xc}, {0xffff, 0xffff}, {0x0, 0xc}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x14, 0x2, [@TCA_FQ_CODEL_QUANTUM={0x8, 0x6, 0x9}, @TCA_FQ_CODEL_ECN={0x8}]}}]}, 0x48}}, 0x0)
r5 = memfd_secret(0x0)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x34, 0x2, 0x6, 0x101, 0x0, 0x0, {0x1}, [@IPSET_ATTR_REVISION={0x5, 0x4, 0x3}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)

kernel console output (not intermixed with test programs):

es leftover after parsing attributes in process `syz.0.1504'.
[  852.269194][T12446] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1504'.
[  853.511659][T12453] 9pnet_fd: Insufficient options for proto=fd
[  854.727277][T12463] 9pnet_fd: Insufficient options for proto=fd
[  855.819595][T12461] netlink: 4280 bytes leftover after parsing attributes in process `syz.5.1508'.
[  855.880133][T12461] netlink: 4280 bytes leftover after parsing attributes in process `syz.5.1508'.
[  855.923639][T12467] loop2: detected capacity change from 0 to 7
[  855.961134][T12467] Dev loop2: unable to read RDB block 7
[  855.982032][T12467]  loop2: unable to read partition table
[  856.023425][T12467] loop2: partition table beyond EOD, truncated
[  856.028391][T12461] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  856.088497][T12467] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  856.825650][ T5837] Bluetooth: hci1: command 0x0406 tx timeout
[  858.676960][T12502] 9pnet_fd: Insufficient options for proto=fd
[  859.942726][T12514] 9pnet_fd: Insufficient options for proto=fd
[  860.108772][T12519] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1520'.
[  861.632501][T12528] overlayfs: failed to resolve './file0': -2
[  863.537570][ T8561] libceph: connect (1)[c::]:6789 error -101
[  863.545849][ T8561] libceph: mon0 (1)[c::]:6789 connect error
[  863.755337][ T9663] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  863.819358][ T8561] libceph: connect (1)[c::]:6789 error -101
[  863.863451][ T8561] libceph: mon0 (1)[c::]:6789 connect error
[  863.985389][ T9663] usb 5-1: Using ep0 maxpacket: 16
[  864.017532][ T9663] usb 5-1: too many endpoints for config 0 interface 0 altsetting 64: 255, using maximum allowed: 30
[  864.119480][ T9663] usb 5-1: config 0 interface 0 altsetting 64 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[  864.139257][T12557] ceph: No mds server is up or the cluster is laggy
[  864.229350][ T9663] usb 5-1: config 0 interface 0 has no altsetting 0
[  864.250594][ T9663] usb 5-1: New USB device found, idVendor=0458, idProduct=5013, bcdDevice= 0.00
[  864.272619][ T9663] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  864.336732][ T9663] usb 5-1: config 0 descriptor??
[  864.536462][T12571] overlayfs: failed to resolve './file1': -2
[  864.812889][ T9663] kye 0003:0458:5013.0002: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  864.934107][T12577] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1533'.
[  865.485820][ T9663] kye 0003:0458:5013.0002: unknown main item tag 0x0
[  865.500097][ T9663] kye 0003:0458:5013.0002: hidraw0: USB HID v0.07 Device [HID 0458:5013] on usb-dummy_hcd.4-1/input0
[  865.512586][ T9663] kye 0003:0458:5013.0002: tablet-enabling feature report not found
[  865.530795][ T9663] kye 0003:0458:5013.0002: tablet enabling failed
[  865.645840][ T9663] usb 5-1: USB disconnect, device number 30
[  865.983906][T12579] fido_id[12579]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  866.291069][T12596] netlink: 'syz.5.1536': attribute type 10 has an invalid length.
[  866.328245][T12596] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  866.477428][   T24] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  867.195411][T12601] gtp0: entered promiscuous mode
[  867.370525][   T24] usb 3-1: device descriptor read/64, error -71
[  867.945243][   T24] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  868.097294][   T24] usb 3-1: device descriptor read/64, error -71
[  868.205530][   T24] usb usb3-port1: attempt power cycle
[  868.312748][T12611] input: syz0 as /devices/virtual/input/input13
[  870.812077][   T24] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  871.033397][   T24] usb 3-1: device descriptor read/8, error -71
[  871.470305][T12626] bridge_slave_0: default FDB implementation only supports local addresses
[  871.936374][T12624] netlink: 52 bytes leftover after parsing attributes in process `syz.5.1546'.
[  872.469420][T12633] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1547'.
[  874.763994][T12653] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1552'.
[  874.777234][T12652] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1553'.
[  875.231336][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  875.238242][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  875.335373][ T9663] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  875.518194][ T9663] usb 5-1: config 15 has an invalid interface number: 207 but max is 0
[  875.538737][ T9663] usb 5-1: config 15 has no interface number 0
[  875.559385][ T9663] usb 5-1: New USB device found, idVendor=1397, idProduct=00bd, bcdDevice=2f.e5
[  875.575834][ T9663] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  875.584014][ T9663] usb 5-1: Product: syz
[  875.588677][ T9663] usb 5-1: Manufacturer: syz
[  875.593289][ T9663] usb 5-1: SerialNumber: syz
[  875.612081][ T9663] usb 5-1: invalid MIDI EP
[  875.622036][ T9663] usb 5-1: snd-bcd2000: error during probing
[  875.625878][T12661] netlink: 'syz.0.1556': attribute type 3 has an invalid length.
[  875.632753][ T9663] snd-bcd2000 5-1:15.207: probe with driver snd-bcd2000 failed with error -22
[  875.646435][T12661] netlink: 'syz.0.1556': attribute type 1 has an invalid length.
[  875.656265][T12661] netlink: 220 bytes leftover after parsing attributes in process `syz.0.1556'.
[  875.773447][T12662] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1556'.
[  875.838927][ T9663] usb 5-1: USB disconnect, device number 31
[  877.085728][ T2156] usb 1-1: new full-speed USB device number 28 using dummy_hcd
[  877.094269][T12679] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1561'.
[  877.440733][ T2156] usb 1-1: not running at top speed; connect to a high speed hub
[  877.544441][ T2156] usb 1-1: config 1 interface 0 altsetting 7 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  877.614096][ T2156] usb 1-1: config 1 interface 0 altsetting 7 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  877.675276][ T2156] usb 1-1: config 1 interface 0 has no altsetting 0
[  877.692838][ T2156] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  877.710318][ T2156] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  877.726819][ T2156] usb 1-1: Product: ј
[  877.879388][ T2156] usb 1-1: Manufacturer: ࠧ
[  877.884046][ T2156] usb 1-1: SerialNumber: А
[  877.907206][T12671] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  878.701297][ T2156] cdc_ether 1-1:1.0: probe with driver cdc_ether failed with error -22
[  878.796235][ T2156] usb 1-1: USB disconnect, device number 28
[  878.899399][T12691] FAULT_INJECTION: forcing a failure.
[  878.899399][T12691] name failslab, interval 1, probability 0, space 0, times 0
[  878.925403][T12691] CPU: 0 UID: 0 PID: 12691 Comm: syz.1.1564 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(full) 
[  878.925437][T12691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  878.925451][T12691] Call Trace:
[  878.925468][T12691]  <TASK>
[  878.925478][T12691]  dump_stack_lvl+0x189/0x250
[  878.925516][T12691]  ? __pfx____ratelimit+0x10/0x10
[  878.925550][T12691]  ? __pfx_dump_stack_lvl+0x10/0x10
[  878.925582][T12691]  ? __pfx__printk+0x10/0x10
[  878.925610][T12691]  ? __pfx___might_resched+0x10/0x10
[  878.925641][T12691]  ? fs_reclaim_acquire+0x7d/0x100
[  878.925677][T12691]  should_fail_ex+0x414/0x560
[  878.925710][T12691]  should_failslab+0xa8/0x100
[  878.925742][T12691]  __kmalloc_noprof+0xcb/0x4f0
[  878.925767][T12691]  ? security_sk_alloc+0x52/0x390
[  878.925798][T12691]  security_sk_alloc+0x52/0x390
[  878.925828][T12691]  sk_prot_alloc+0x101/0x220
[  878.925857][T12691]  sk_alloc+0x3a/0x370
[  878.925887][T12691]  unix_create1+0xb0/0x7c0
[  878.925922][T12691]  unix_create+0x154/0x200
[  878.925951][T12691]  __sock_create+0x4b3/0x9f0
[  878.925984][T12691]  __sys_socketpair+0x23a/0x560
[  878.926014][T12691]  __x64_sys_socketpair+0x9b/0xb0
[  878.926039][T12691]  do_syscall_64+0xfa/0x3b0
[  878.926058][T12691]  ? lockdep_hardirqs_on+0x9c/0x150
[  878.926091][T12691]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  878.926113][T12691]  ? clear_bhb_loop+0x60/0xb0
[  878.926140][T12691]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  878.926161][T12691] RIP: 0033:0x7f947038e929
[  878.926180][T12691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  878.926200][T12691] RSP: 002b:00007f947126a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  878.926223][T12691] RAX: ffffffffffffffda RBX: 00007f94705b5fa0 RCX: 00007f947038e929
[  878.926240][T12691] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000001
[  878.926253][T12691] RBP: 00007f947126a090 R08: 0000000000000000 R09: 0000000000000000
[  878.926266][T12691] R10: 00002000000029c0 R11: 0000000000000246 R12: 0000000000000001
[  878.926280][T12691] R13: 0000000000000000 R14: 00007f94705b5fa0 R15: 00007ffebaa2c1c8
[  878.926313][T12691]  </TASK>
[  879.221660][T12698] 9pnet_fd: Insufficient options for proto=fd
[  880.301251][T12706] netlink: 'syz.4.1569': attribute type 2 has an invalid length.
[  880.390304][T12706] netlink: 'syz.4.1569': attribute type 8 has an invalid length.
[  880.401491][T12706] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1569'.
[  880.595119][T12712] xt_addrtype: ipv6 does not support BROADCAST matching
[  881.461472][T12719] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1572'.
[  881.626571][T12723] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1574'.
[  883.858566][T12739] netlink: 52 bytes leftover after parsing attributes in process `syz.5.1578'.
[  884.654816][T12748] Invalid option length (0) for dns_resolver key
[  885.899099][T12775] netlink: 'syz.1.1590': attribute type 30 has an invalid length.
[  885.938812][T12776] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1589'.
[  886.709134][T12782] bridge_slave_0: default FDB implementation only supports local addresses
[  886.748947][T12788] netlink: 'syz.1.1591': attribute type 1 has an invalid length.
[  887.199199][T12788] bond1 (unregistering): Released all slaves
[  887.363358][T12801] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1592'.
[  887.965974][T12805] netlink: 'syz.0.1595': attribute type 2 has an invalid length.
[  888.000966][T12805] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1595'.
[  889.449713][T12829] overlayfs: failed to resolve './file0': -2
[  889.676511][T12830] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1604'.
[  890.666999][T12842] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1606'.
[  891.712583][T12854] sp0: Synchronizing with TNC
[  893.309774][T12867] FAULT_INJECTION: forcing a failure.
[  893.309774][T12867] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  893.470378][T12867] CPU: 1 UID: 0 PID: 12867 Comm: syz.4.1614 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(full) 
[  893.470413][T12867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  893.470427][T12867] Call Trace:
[  893.470436][T12867]  <TASK>
[  893.470446][T12867]  dump_stack_lvl+0x189/0x250
[  893.470484][T12867]  ? __pfx____ratelimit+0x10/0x10
[  893.470517][T12867]  ? __pfx_dump_stack_lvl+0x10/0x10
[  893.470549][T12867]  ? __pfx__printk+0x10/0x10
[  893.470572][T12867]  ? __might_fault+0xb0/0x130
[  893.470610][T12867]  should_fail_ex+0x414/0x560
[  893.470649][T12867]  _copy_from_iter+0x1db/0x16f0
[  893.470687][T12867]  ? rcu_is_watching+0x15/0xb0
[  893.470721][T12867]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  893.470749][T12867]  ? __pfx__copy_from_iter+0x10/0x10
[  893.470783][T12867]  ? __build_skb_around+0x257/0x3e0
[  893.470812][T12867]  ? netlink_sendmsg+0x642/0xb30
[  893.470839][T12867]  ? skb_put+0x11b/0x210
[  893.470868][T12867]  netlink_sendmsg+0x6b2/0xb30
[  893.470905][T12867]  ? __pfx_netlink_sendmsg+0x10/0x10
[  893.470940][T12867]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  893.470965][T12867]  ? __pfx_netlink_sendmsg+0x10/0x10
[  893.470992][T12867]  __sock_sendmsg+0x219/0x270
[  893.471029][T12867]  ____sys_sendmsg+0x505/0x830
[  893.471063][T12867]  ? __pfx_____sys_sendmsg+0x10/0x10
[  893.471107][T12867]  ? import_iovec+0x74/0xa0
[  893.471132][T12867]  ___sys_sendmsg+0x21f/0x2a0
[  893.471162][T12867]  ? __pfx____sys_sendmsg+0x10/0x10
[  893.471230][T12867]  ? __fget_files+0x2a/0x420
[  893.471258][T12867]  ? __fget_files+0x3a0/0x420
[  893.471298][T12867]  __x64_sys_sendmsg+0x19b/0x260
[  893.471329][T12867]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  893.471368][T12867]  ? __pfx_ksys_write+0x10/0x10
[  893.471390][T12867]  ? rcu_is_watching+0x15/0xb0
[  893.471427][T12867]  ? do_syscall_64+0xbe/0x3b0
[  893.471451][T12867]  do_syscall_64+0xfa/0x3b0
[  893.471469][T12867]  ? lockdep_hardirqs_on+0x9c/0x150
[  893.471501][T12867]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  893.471522][T12867]  ? clear_bhb_loop+0x60/0xb0
[  893.471548][T12867]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  893.471569][T12867] RIP: 0033:0x7fc15338e929
[  893.471588][T12867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  893.471607][T12867] RSP: 002b:00007fc1541d3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  893.471630][T12867] RAX: ffffffffffffffda RBX: 00007fc1535b5fa0 RCX: 00007fc15338e929
[  893.471646][T12867] RDX: 0000000000000084 RSI: 00002000000003c0 RDI: 0000000000000005
[  893.471660][T12867] RBP: 00007fc1541d3090 R08: 0000000000000000 R09: 0000000000000000
[  893.471674][T12867] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  893.471686][T12867] R13: 0000000000000000 R14: 00007fc1535b5fa0 R15: 00007ffcd89c6948
[  893.471719][T12867]  </TASK>
[  894.061138][T12875] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1615'.
[  894.903482][T12886] bridge_slave_0: default FDB implementation only supports local addresses
[  897.092628][T12898] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1621'.
[  897.803708][T12912] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1623'.
[  898.284394][T12915] bridge_slave_0: default FDB implementation only supports local addresses
[  900.318748][T12935] netlink: 'syz.1.1632': attribute type 10 has an invalid length.
[  900.372736][T12935] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  900.605559][T12943] xt_TCPMSS: Only works on TCP SYN packets
[  901.090424][T12950] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1636'.
[  901.109015][T12950] netlink: 188 bytes leftover after parsing attributes in process `syz.1.1636'.
[  901.795097][ T9663] usb 3-1: new full-speed USB device number 17 using dummy_hcd
[  902.243416][T12956] bridge_slave_0: default FDB implementation only supports local addresses
[  902.855663][ T9663] usb 3-1: unable to get BOS descriptor or descriptor too short
[  902.867420][ T9663] usb 3-1: not running at top speed; connect to a high speed hub
[  902.911319][ T9663] usb 3-1: config 129 has an invalid interface number: 135 but max is 0
[  902.944615][ T9663] usb 3-1: config 129 descriptor has 1 excess byte, ignoring
[  902.969761][ T9663] usb 3-1: config 129 has 2 interfaces, different from the descriptor's value: 1
[  903.030010][ T9663] usb 3-1: config 129 has no interface number 1
[  903.048191][ T9663] usb 3-1: config 129 interface 135 altsetting 6 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  903.105150][ T9663] usb 3-1: config 129 interface 135 has no altsetting 0
[  903.137609][ T9663] usb 3-1: New USB device found, idVendor=2040, idProduct=721f, bcdDevice=f2.62
[  903.158939][ T9663] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  903.188116][ T9663] usb 3-1: Product: syz
[  903.200952][ T9663] usb 3-1: Manufacturer: syz
[  903.215047][ T9663] usb 3-1: SerialNumber: syz
[  903.442086][T12969] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1640'.
[  903.469705][ T9663] au0828: au0828: Device initialization failed.
[  903.476275][ T9663] au0828: au0828: Device must be connected to a high-speed USB 2.0 port.
[  903.487507][ T9663] usb 3-1: USB disconnect, device number 17
[  904.061913][T12979] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1641'.
[  905.866982][T12994] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  905.925543][T12994] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  906.114413][ T8561] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  906.589012][ T8561] usb 3-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  906.645068][ T8561] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  906.663444][ T8561] usb 3-1: Product: syz
[  906.683768][ T8561] usb 3-1: Manufacturer: syz
[  906.688686][ T8561] usb 3-1: SerialNumber: syz
[  906.711338][ T8561] usb 3-1: config 0 descriptor??
[  906.945592][ T8561] usb 3-1: Firmware version (0.0) predates our first public release.
[  906.970003][ T8561] usb 3-1: Please update to version 0.2 or newer
[  906.990900][ T8561] usb 3-1: Firmware: build 
[  907.334215][ T8561] usb 3-1: USB disconnect, device number 18
[  907.449098][T13015] bridge_slave_0: default FDB implementation only supports local addresses
[  908.933478][T13014] xt_CT: No such helper "pptp"
[  909.632254][T13021] overlay: ./file0 is not a directory
[  909.787848][T13038] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1652'.
[  909.838256][T13037] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  912.958689][T13068] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1661'.
[  914.749414][T13075] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1663'.
[  915.380711][T13091] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1666'.
[  917.668318][T13114] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1673'.
[  918.421607][T13122] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1677'.
[  918.447211][T13122] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1677'.
[  918.478076][T13125] netlink: 'syz.5.1679': attribute type 10 has an invalid length.
[  918.685621][   T24] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  918.885630][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  918.902359][   T24] usb 1-1: New USB device found, idVendor=0079, idProduct=0006, bcdDevice= 0.00
[  918.925233][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  918.986327][   T24] usb 1-1: config 0 descriptor??
[  919.283448][T13147] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1687'.
[  919.430010][   T24] usbhid 1-1:0.0: can't add hid device: -71
[  919.441205][   T24] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  919.477357][   T24] usb 1-1: USB disconnect, device number 29
[  919.529109][T13152] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  920.165494][T13158] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1689'.
[  921.063743][T13164] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1690'.
[  921.366831][T13168] netlink: 'syz.0.1692': attribute type 10 has an invalid length.
[  921.523366][T13168] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  921.868040][T13182] netlink: 'syz.0.1698': attribute type 64 has an invalid length.
[  921.889723][T13182] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1698'.
[  923.372701][T13193] netlink: 'syz.2.1702': attribute type 10 has an invalid length.
[  923.524855][T13196] netlink: 52 bytes leftover after parsing attributes in process `syz.5.1701'.
[  924.877539][T13209] sctp: [Deprecated]: syz.4.1705 (pid 13209) Use of struct sctp_assoc_value in delayed_ack socket option.
[  924.877539][T13209] Use struct sctp_sack_info instead
[  925.097433][T13209] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1705'.
[  925.275315][T13209] 8021q: adding VLAN 0 to HW filter on device bond1
[  927.344504][T13221] team0 (unregistering): Port device team_slave_0 removed
[  927.359556][T13236] netlink: 204 bytes leftover after parsing attributes in process `syz.5.1712'.
[  927.394641][T13221] team0 (unregistering): Port device team_slave_1 removed
[  927.849549][T13226] vlan2: entered promiscuous mode
[  927.854653][T13226] syz_tun: entered promiscuous mode
[  928.347786][T13250] 9pnet_fd: Insufficient options for proto=fd
[  928.784087][T13259] netlink: 'syz.0.1719': attribute type 29 has an invalid length.
[  928.940710][ T5837] Bluetooth: hci4: unexpected event for opcode 0x041c
[  929.208140][ T5828] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[  929.276987][ T9663] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  929.477813][ T9663] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  929.494381][ T9663] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  929.503311][ T9663] usb 2-1: Product: syz
[  929.510148][ T5828] usb 1-1: config 0 interface 0 altsetting 15 endpoint 0x81 has invalid wMaxPacketSize 0
[  929.519889][ T9663] usb 2-1: Manufacturer: syz
[  929.524887][ T9663] usb 2-1: SerialNumber: syz
[  929.535586][ T5828] usb 1-1: config 0 interface 0 has no altsetting 0
[  929.552180][ T5828] usb 1-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  929.552389][ T9663] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  929.571596][ T5828] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  929.620004][ T5828] usb 1-1: config 0 descriptor??
[  929.723488][ T8561] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  930.202328][ T2156] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  930.803422][T13269] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  930.815588][ T2156] usb 3-1: Using ep0 maxpacket: 32
[  930.830857][ T9501] usb 2-1: USB disconnect, device number 17
[  930.832163][ T2156] usb 3-1: config 0 has an invalid interface number: 51 but max is 0
[  930.954526][ T8561] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive
[  930.975435][ T8561] ath9k_htc: Failed to initialize the device
[  930.986236][ T9501] usb 2-1: ath9k_htc: USB layer deinitialized
[  931.010447][ T5828] usbhid 1-1:0.0: can't add hid device: -71
[  931.022311][ T2156] usb 3-1: config 0 has no interface number 0
[  931.041120][ T5828] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  931.141154][ T2156] usb 3-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  931.425368][ T2156] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  931.458562][ T5828] usb 1-1: USB disconnect, device number 30
[  931.470142][ T2156] usb 3-1: Product: syz
[  931.504133][ T2156] usb 3-1: Manufacturer: syz
[  931.533909][ T2156] usb 3-1: SerialNumber: syz
[  931.920469][ T2156] usb 3-1: config 0 descriptor??
[  932.081466][ T2156] quatech2 3-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  932.371129][ T2156] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  932.486420][ T2156] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  932.747596][    C1] usb 3-1: qt2_read_bulk_callback - non-zero urb status: -71
[  932.749928][ T8561] usb 3-1: USB disconnect, device number 19
[  932.863870][ T8561] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  932.996692][ T8561] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  933.022794][ T8561] quatech2 3-1:0.51: device disconnected
[  933.370358][T13332] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  933.518588][T13335] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  933.670552][T13339] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1743'.
[  934.710421][T13348] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1746'.
[  934.894284][T13356] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1748'.
[  935.168151][   T30] audit: type=1326 audit(1749899199.975:1059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13350 comm="syz.0.1747" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcd10f8e929 code=0x0
[  936.337130][T13367] No such timeout policy "syz1"
[  936.765756][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  936.772168][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  938.093061][T13382] overlayfs: failed to resolve './file0': -2
[  938.285474][T13379] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  938.326925][T13379] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  939.045918][T13397] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1758'.
[  940.732608][T13418] No such timeout policy "syz1"
[  941.876243][T13436] overlayfs: failed to resolve './file0': -2
[  942.985750][ T9501] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  942.997862][T13450] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1772'.
[  943.170271][ T9501] usb 2-1: Using ep0 maxpacket: 16
[  943.288026][ T9501] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  943.335390][ T9501] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  943.348050][T13452] bridge_slave_0: default FDB implementation only supports local addresses
[  943.386493][ T9501] usb 2-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  943.424781][ T9501] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  943.469371][ T9501] usb 2-1: Product: syz
[  943.494370][ T9501] usb 2-1: Manufacturer: syz
[  943.514931][ T9501] usb 2-1: SerialNumber: syz
[  943.554326][ T9501] usb 2-1: config 0 descriptor??
[  943.895582][ T9501] appledisplay 2-1:0.0: Error while getting initial brightness: -110
[  943.988429][ T9501] appledisplay 2-1:0.0: probe with driver appledisplay failed with error -110
[  944.388492][T13475] No such timeout policy "syz1"
[  945.559387][ T9501] usb 2-1: USB disconnect, device number 18
[  946.808073][T13505] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1782'.
[  947.922864][T13508] bridge_slave_0: default FDB implementation only supports local addresses
[  948.526464][T13514] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1787'.
[  948.635422][T13521] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1786'.
[  948.934743][T13528] No such timeout policy "syz1"
[  950.266149][T13548] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(13)
[  950.273053][T13548] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  950.352875][T13548] vhci_hcd vhci_hcd.0: Device attached
[  950.512603][T13559] netlink: 140 bytes leftover after parsing attributes in process `syz.2.1794'.
[  950.524741][T13563] dlm: plock device version mismatch: kernel (1.2.0), user (1145307137.496.0)
[  950.632088][T13551] vhci_hcd: connection closed
[  950.635973][ T6166] vhci_hcd: stop threads
[  950.636866][ T6166] vhci_hcd: release socket
[  950.639494][ T6166] vhci_hcd: disconnect device
[  950.645674][T13303] vhci_hcd: vhci_device speed not set
[  950.682866][T13560] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  950.684015][T13560] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  951.340914][T13560] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  951.340994][T13560] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  951.343823][T13560] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  951.343896][T13560] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  951.479053][T13577] bridge_slave_0: default FDB implementation only supports local addresses
[  952.015539][T13560] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  952.063664][T13560] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  952.512504][T13585] 9pnet_fd: Insufficient options for proto=fd
[  952.745276][T13574] Bluetooth: hci2: command 0x0406 tx timeout
[  952.820740][T13588] No such timeout policy "syz1"
[  953.460563][T13574] Bluetooth: hci4: command 0x0406 tx timeout
[  953.460650][ T5837] Bluetooth: hci3: command 0x0406 tx timeout
[  953.635521][T13603] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1807'.
[  953.798866][ T5828] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[  954.018648][T13611] netlink: 'syz.5.1810': attribute type 27 has an invalid length.
[  954.040977][ T5837] Bluetooth: hci1: command 0x0406 tx timeout
[  954.044759][ T5828] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  954.165080][T13303] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  954.188242][ T5828] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  954.254454][ T5828] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  954.285071][ T5828] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  954.321630][ T5828] usb 1-1: config 0 descriptor??
[  954.350189][ T5828] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  954.374453][T13303] usb 2-1: config 3 has an invalid interface number: 7 but max is 0
[  954.413510][T13303] usb 2-1: config 3 has no interface number 0
[  954.435452][T13303] usb 2-1: config 3 interface 7 has no altsetting 0
[  954.486159][T13303] usb 2-1: New USB device found, idVendor=06e1, idProduct=a155, bcdDevice=3f.7b
[  954.521592][T13303] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  954.565401][T13303] usb 2-1: Product: syz
[  954.569652][T13303] usb 2-1: Manufacturer: syz
[  954.574281][T13303] usb 2-1: SerialNumber: syz
[  954.835115][ T5837] Bluetooth: hci2: command 0x0406 tx timeout
[  954.889880][T13625] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1816'.
[  954.926172][T13609] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  955.068782][T13631] bridge_slave_0: default FDB implementation only supports local addresses
[  955.082368][T13604] delete_channel: no stack
[  955.087407][T13303] radio-si470x 2-1:3.7: si470x_get_report: usb_control_msg returned -71
[  955.096473][T13303] radio-si470x 2-1:3.7: probe with driver radio-si470x failed with error -5
[  955.113741][T13303] usb 2-1: USB disconnect, device number 19
[  955.553503][T13574] Bluetooth: hci4: command 0x0406 tx timeout
[  955.560044][ T5837] Bluetooth: hci3: command 0x0406 tx timeout
[  956.105101][ T5837] Bluetooth: hci1: command 0x0406 tx timeout
[  956.502011][T13639] 9pnet_fd: Insufficient options for proto=fd
[  956.790066][T13643] No such timeout policy "syz1"
[  960.521097][T13664] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1823'.
[  960.717980][T13307] usb 1-1: USB disconnect, device number 31
[  962.731297][T13687] bridge_slave_0: default FDB implementation only supports local addresses
[  963.867752][T13695] No such timeout policy "syz1"
[  965.229907][T13724] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1839'.
[  965.966147][   T30] audit: type=1326 audit(1749899230.565:1060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13720 comm="syz.1.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f947038e929 code=0x7ffc0000
[  966.110889][T13728] XFS (nullb0): Invalid superblock magic number
[  966.254671][   T30] audit: type=1326 audit(1749899230.565:1061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13720 comm="syz.1.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f947038e929 code=0x7ffc0000
[  966.482864][   T30] audit: type=1326 audit(1749899230.565:1062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13720 comm="syz.1.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f947038e929 code=0x7ffc0000
[  966.617796][   T30] audit: type=1326 audit(1749899230.565:1063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13720 comm="syz.1.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f947038e929 code=0x7ffc0000
[  966.885702][   T30] audit: type=1326 audit(1749899230.565:1064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13720 comm="syz.1.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f947038e929 code=0x7ffc0000
[  966.951871][T13744] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  967.313141][T13742] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1842'.
[  967.859178][   T30] audit: type=1326 audit(1749899230.565:1065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13720 comm="syz.1.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f947038e929 code=0x7ffc0000
[  967.882338][   T30] audit: type=1326 audit(1749899230.565:1066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13720 comm="syz.1.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f947032ab19 code=0x7ffc0000
[  967.904560][   T30] audit: type=1326 audit(1749899230.565:1067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13720 comm="syz.1.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f947032ab19 code=0x7ffc0000
[  968.626854][   T30] audit: type=1326 audit(1749899230.565:1068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13720 comm="syz.1.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f947032ab19 code=0x7ffc0000
[  968.822042][   T30] audit: type=1326 audit(1749899230.565:1069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13720 comm="syz.1.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f947032ab19 code=0x7ffc0000
[  969.576099][T13766] input: syz1 as /devices/virtual/input/input14
[  970.033663][T13769] block device autoloading is deprecated and will be removed.
[  970.086726][T13769] syz.4.1849: attempt to access beyond end of device
[  970.086726][T13769] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  970.608446][T13786] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1851'.
[  971.679510][T13800] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1855'.
[  972.480420][T13810] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1853'.
[  973.085206][T13824] No such timeout policy "syz1"
[  973.855696][T13829] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  974.577846][   T30] kauditd_printk_skb: 57 callbacks suppressed
[  974.577867][   T30] audit: type=1326 audit(1749899239.395:1127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13841 comm="syz.1.1867" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f947038e929 code=0x0
[  975.187682][T13858] wg1 speed is unknown, defaulting to 1000
[  975.475058][T13307] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  975.637532][T13307] usb 3-1: config 0 has no interfaces?
[  975.648493][T13307] usb 3-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  975.665117][T13307] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  975.683646][T13307] usb 3-1: Product: syz
[  975.694741][T13307] usb 3-1: Manufacturer: syz
[  975.712638][T13307] usb 3-1: SerialNumber: syz
[  975.740951][T13307] usb 3-1: config 0 descriptor??
[  975.855370][T13303] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[  975.892870][T13872] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  976.252595][T13303] usb 1-1: config 0 has an invalid interface number: 91 but max is 0
[  976.264179][T13303] usb 1-1: config 0 has no interface number 0
[  976.280808][T13858] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  976.306555][T13303] usb 1-1: config 0 interface 91 has no altsetting 0
[  976.368701][T13878] netlink: 52 bytes leftover after parsing attributes in process `syz.5.1877'.
[  976.416538][T13307] usb 3-1: USB disconnect, device number 20
[  976.871694][T13303] usb 1-1: New USB device found, idVendor=174f, idProduct=5212, bcdDevice=60.41
[  976.881064][T13303] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  977.036023][T13303] usb 1-1: config 0 descriptor??
[  977.268613][T13303] usb 1-1: string descriptor 0 read error: -71
[  977.287438][T13303] usb 1-1: Found UVC 0.00 device <unnamed> (174f:5212)
[  977.377167][T13303] usb 1-1: No valid video chain found.
[  977.537380][T13303] usb 1-1: USB disconnect, device number 32
[  979.734405][T13921] xt_addrtype: ipv6 does not support BROADCAST matching
[  980.637277][T13917] block device autoloading is deprecated and will be removed.
[  984.128613][T13949] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1895'.
[  985.100313][ T9501] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  985.170022][ T5945] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  985.202007][T13303] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  985.216024][ T5945] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  985.281074][ T9501] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  985.311505][ T9501] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  985.381216][ T9501] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  985.390829][T13303] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  985.411675][ T9501] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  985.441166][ T9501] usb 5-1: SerialNumber: syz
[  985.669891][T13958] fuse: Unknown parameter 'fd500000000000000000000010'
[  985.705882][ T9501] usb 5-1: 0:2 : does not exist
[  985.735550][T13303] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  985.808979][ T9501] usb 5-1: USB disconnect, device number 32
[  985.891605][T11996] udevd[11996]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  986.305352][ T9501] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  986.475140][ T9501] usb 2-1: Using ep0 maxpacket: 8
[  986.495953][ T9501] usb 2-1: config index 0 descriptor too short (expected 1298, got 18)
[  986.528100][ T9501] usb 2-1: New USB device found, idVendor=2770, idProduct=9120, bcdDevice=6c.77
[  986.555393][ T9501] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  986.591962][ T9501] usb 2-1: Product: syz
[  986.611687][ T9501] usb 2-1: Manufacturer: syz
[  986.631465][ T9501] usb 2-1: SerialNumber: syz
[  986.787818][ T9501] usb 2-1: config 0 descriptor??
[  986.876878][ T9501] gspca_main: sq905-2.14.0 probing 2770:9120
[  987.065519][T13574] Bluetooth: hci1: command 0x0406 tx timeout
[  987.084617][ T9501] gspca_sq905: sq905_command: usb_control_msg failed (-71)
[  987.141610][ T9501] sq905 2-1:0.0: probe with driver sq905 failed with error -71
[  987.175410][ T9501] usb 2-1: USB disconnect, device number 20
[  987.645539][ T9501] usb 5-1: new full-speed USB device number 33 using dummy_hcd
[  987.819973][ T9501] usb 5-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  987.851647][ T9501] usb 5-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  987.882939][ T9501] usb 5-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  987.935138][ T9501] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  988.985216][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  989.423865][T14032] binder: 14031:14032 ioctl 4008ae6a 200000000240 returned -22
[  989.497496][T14032] binder_alloc: 14031: pid 14031 spamming oneway? 1 buffers allocated for a total size of 4096
[  989.527296][ T9501] aiptek 5-1:17.0: Aiptek using 400 ms programming speed
[  989.588816][ T9501] input: Aiptek as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:17.0/input/input15
[  989.652531][T14035] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1914'.
[  990.661225][ T9501] input: failed to attach handler kbd to device input15, error: -5
[  990.808062][ T9501] usb 5-1: USB disconnect, device number 33
[  992.547994][T14055] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  992.681535][T14061] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1921'.
[  992.726340][T14061] fuse: Bad value for 'fd'
[  993.037023][T14063] bridge_slave_0: default FDB implementation only supports local addresses
[  993.418722][T14075] netlink: 'syz.5.1929': attribute type 11 has an invalid length.
[  993.427538][T14075] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1929'.
[  994.328586][T14089] bridge_slave_0: default FDB implementation only supports local addresses
[  995.175399][T14105] overlayfs: failed to get index nlink (file1/file0, err=-61)
[  995.206290][T14105] evm: overlay not supported
[  996.303714][T14119] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1937'.
[  996.825164][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  996.892861][T14126] bridge_slave_0: default FDB implementation only supports local addresses
[  997.968559][T14137] bridge_slave_0: default FDB implementation only supports local addresses
[  998.110096][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  998.122443][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  999.310177][T14160] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1949'.
[  999.397938][T14160] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 41729 - 0
[  999.466877][T14163] 9pnet_fd: Insufficient options for proto=fd
[  999.515211][T14160] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 41729 - 0
[  999.555172][T14160] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 41729 - 0
[  999.614835][T14160] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 41729 - 0
[  999.655856][T14160] geneve2: entered promiscuous mode
[  999.755163][T14160] geneve2: entered allmulticast mode
[  999.778079][T14170] bridge_slave_0: default FDB implementation only supports local addresses
[  999.912436][T14146] overlayfs: failed to resolve './file1': -2
[ 1003.125547][T14217] No such timeout policy "syz1"
[ 1004.675139][ T9501] usb 1-1: new full-speed USB device number 33 using dummy_hcd
[ 1004.869821][ T9501] usb 1-1: not running at top speed; connect to a high speed hub
[ 1004.887129][ T9501] usb 1-1: config 1 interface 0 altsetting 7 endpoint 0x82 has invalid maxpacket 512, setting to 64
[ 1004.903528][ T9501] usb 1-1: config 1 interface 0 altsetting 7 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1004.964446][ T9501] usb 1-1: config 1 interface 0 has no altsetting 0
[ 1005.001406][ T9501] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1005.035003][ T9501] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1005.111900][ T9501] usb 1-1: Product: ј
[ 1005.125527][ T9501] usb 1-1: Manufacturer: ࠧ
[ 1005.198897][ T9501] usb 1-1: SerialNumber: А
[ 1005.569650][T14233] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1005.963375][ T9501] cdc_ether 1-1:1.0: probe with driver cdc_ether failed with error -22
[ 1006.000736][ T9501] usb 1-1: USB disconnect, device number 33
[ 1006.281679][T14247] overlayfs: failed to resolve './file1': -2
[ 1007.031405][T14257] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[ 1007.136429][T14241] overlayfs: failed to resolve './file1': -2
[ 1007.357320][T14260] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1008.015209][T14267] No such timeout policy "syz1"
[ 1010.905231][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[ 1011.090574][T11996] udevd[11996]: inotify_add_watch(7, /dev/nbd0, 10) failed: No such file or directory
[ 1012.593847][T14320] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[ 1012.830259][T14329] FAULT_INJECTION: forcing a failure.
[ 1012.830259][T14329] name failslab, interval 1, probability 0, space 0, times 0
[ 1012.913816][T14329] CPU: 1 UID: 0 PID: 14329 Comm: syz.1.1989 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(full) 
[ 1012.913847][T14329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1012.913862][T14329] Call Trace:
[ 1012.913871][T14329]  <TASK>
[ 1012.913888][T14329]  dump_stack_lvl+0x189/0x250
[ 1012.913928][T14329]  ? __pfx____ratelimit+0x10/0x10
[ 1012.913962][T14329]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1012.913994][T14329]  ? __pfx__printk+0x10/0x10
[ 1012.914030][T14329]  should_fail_ex+0x414/0x560
[ 1012.914063][T14329]  should_failslab+0xa8/0x100
[ 1012.914093][T14329]  __kmalloc_cache_noprof+0x70/0x3d0
[ 1012.914118][T14329]  ? smack_populate_secattr+0xd0/0x350
[ 1012.914147][T14329]  smack_populate_secattr+0xd0/0x350
[ 1012.914175][T14329]  smk_import_entry+0x118/0x1d0
[ 1012.914201][T14329]  smk_write_net6addr+0x512/0x13e0
[ 1012.914234][T14329]  ? __lock_acquire+0xab9/0xd20
[ 1012.914276][T14329]  ? __pfx_smk_write_net6addr+0x10/0x10
[ 1012.914304][T14329]  ? rcu_read_lock_any_held+0xb3/0x120
[ 1012.914351][T14329]  ? __pfx_smk_write_net6addr+0x10/0x10
[ 1012.914384][T14329]  vfs_write+0x27e/0xa90
[ 1012.914420][T14329]  ? __pfx_vfs_write+0x10/0x10
[ 1012.914447][T14329]  ? __fget_files+0x2a/0x420
[ 1012.914480][T14329]  ? __fget_files+0x3a0/0x420
[ 1012.914507][T14329]  ? __fget_files+0x2a/0x420
[ 1012.914546][T14329]  ksys_write+0x145/0x250
[ 1012.914574][T14329]  ? __pfx_ksys_write+0x10/0x10
[ 1012.914596][T14329]  ? rcu_is_watching+0x15/0xb0
[ 1012.914635][T14329]  ? do_syscall_64+0xbe/0x3b0
[ 1012.914660][T14329]  do_syscall_64+0xfa/0x3b0
[ 1012.914679][T14329]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1012.914710][T14329]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1012.914732][T14329]  ? clear_bhb_loop+0x60/0xb0
[ 1012.914759][T14329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1012.914780][T14329] RIP: 0033:0x7f947038e929
[ 1012.914805][T14329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1012.914825][T14329] RSP: 002b:00007f947126a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1012.914848][T14329] RAX: ffffffffffffffda RBX: 00007f94705b5fa0 RCX: 00007f947038e929
[ 1012.914863][T14329] RDX: 000000000000009a RSI: 0000200000000300 RDI: 0000000000000003
[ 1012.914884][T14329] RBP: 00007f947126a090 R08: 0000000000000000 R09: 0000000000000000
[ 1012.914898][T14329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1012.914911][T14329] R13: 0000000000000000 R14: 00007f94705b5fa0 R15: 00007ffebaa2c1c8
[ 1012.914945][T14329]  </TASK>
[ 1013.239703][T14337] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1991'.
[ 1013.692288][T14344] netlink: 'syz.5.1993': attribute type 4 has an invalid length.
[ 1013.705361][ T5828] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[ 1013.720996][T14344] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1993'.
[ 1014.023727][ T5828] usb 3-1: Using ep0 maxpacket: 8
[ 1014.116283][ T5828] usb 3-1: config index 0 descriptor too short (expected 74, got 45)
[ 1014.116333][ T5828] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024
[ 1014.116353][ T5828] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1014.116372][ T5828] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 30768, setting to 1024
[ 1014.116391][ T5828] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[ 1014.116409][ T5828] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1014.116440][ T5828] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1014.116457][ T5828] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1016.078333][ T5828] usb 3-1: usb_control_msg returned -71
[ 1016.236975][ T5828] usbtmc 3-1:16.0: can't read capabilities
[ 1016.280373][ T5828] usb 3-1: USB disconnect, device number 21
[ 1021.886402][T14419] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2010'.
[ 1026.649725][T14445] netlink: 9 bytes leftover after parsing attributes in process `syz.0.2017'.
[ 1026.933869][T14453] bridge_slave_0: left allmulticast mode
[ 1026.948275][T14453] bridge_slave_0: left promiscuous mode
[ 1026.967933][T14453] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1026.979885][T14453] bridge_slave_1: left allmulticast mode
[ 1026.985176][ T8561] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[ 1026.993994][T14453] bridge_slave_1: left promiscuous mode
[ 1027.002121][T14453] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1027.157131][T14453] bond0: (slave bond_slave_0): Releasing backup interface
[ 1027.170530][ T8561] usb 1-1: too many configurations: 189, using maximum allowed: 8
[ 1027.186672][T14453] bond0: (slave bond_slave_1): Releasing backup interface
[ 1027.195359][ T8561] usb 1-1: config index 0 descriptor too short (expected 65178, got 72)
[ 1027.205742][ T8561] usb 1-1: config index 1 descriptor too short (expected 65178, got 72)
[ 1027.219238][ T8561] usb 1-1: config index 2 descriptor too short (expected 65178, got 72)
[ 1027.232700][T14453] team0: Port device team_slave_0 removed
[ 1027.247410][ T8561] usb 1-1: config index 3 descriptor too short (expected 65178, got 72)
[ 1027.267090][T14453] team0: Port device team_slave_1 removed
[ 1027.274710][ T8561] usb 1-1: config index 4 descriptor too short (expected 65178, got 72)
[ 1027.283419][T14453] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1027.292213][ T8561] usb 1-1: config index 5 descriptor too short (expected 65178, got 72)
[ 1027.301427][T14453] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1027.319915][ T8561] usb 1-1: config index 6 descriptor too short (expected 65178, got 72)
[ 1027.333270][T14453] bond0: (slave macvlan0): Releasing backup interface
[ 1027.338959][ T8561] usb 1-1: config index 7 descriptor too short (expected 65178, got 72)
[ 1027.371501][T14453] bond0: (slave wlan1): Releasing backup interface
[ 1027.376910][ T8561] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1027.416384][ T8561] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1027.429643][ T8561] usb 1-1: Product: syz
[ 1027.434488][ T8561] usb 1-1: Manufacturer: syz
[ 1027.439893][ T8561] usb 1-1: SerialNumber: syz
[ 1027.445283][ T5828] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[ 1027.462259][ T8561] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1027.483646][T13303] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1027.625444][ T5828] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[ 1028.066458][ T5828] usb 1-1: USB disconnect, device number 34
[ 1028.988740][T13303] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[ 1029.025227][T13303] ath9k_htc: Failed to initialize the device
[ 1029.109027][ T5828] usb 1-1: ath9k_htc: USB layer deinitialized
[ 1031.570476][T14492] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2027'.
[ 1032.291485][T14499] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode
[ 1032.332263][T14499] mac80211_hwsim hwsim2 wlan0: left promiscuous mode
[ 1032.409388][T14503] netlink: 'syz.2.2032': attribute type 2 has an invalid length.
[ 1032.617710][T14503] netlink: 'syz.2.2032': attribute type 1 has an invalid length.
[ 1032.758111][T14508] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2031'.
[ 1033.156044][T14503] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2032'.
[ 1033.689980][T14512] FAULT_INJECTION: forcing a failure.
[ 1033.689980][T14512] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1033.703540][T14512] CPU: 0 UID: 0 PID: 14512 Comm: syz.4.2035 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(full) 
[ 1033.703570][T14512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1033.703584][T14512] Call Trace:
[ 1033.703592][T14512]  <TASK>
[ 1033.703601][T14512]  dump_stack_lvl+0x189/0x250
[ 1033.703639][T14512]  ? __pfx____ratelimit+0x10/0x10
[ 1033.703670][T14512]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1033.703700][T14512]  ? __pfx__printk+0x10/0x10
[ 1033.703721][T14512]  ? __might_fault+0xb0/0x130
[ 1033.703757][T14512]  should_fail_ex+0x414/0x560
[ 1033.703790][T14512]  _copy_from_user+0x2d/0xb0
[ 1033.703812][T14512]  __sys_bpf+0x1ed/0x860
[ 1033.703841][T14512]  ? __pfx___sys_bpf+0x10/0x10
[ 1033.703880][T14512]  ? ksys_write+0x22a/0x250
[ 1033.703906][T14512]  ? __pfx_ksys_write+0x10/0x10
[ 1033.703937][T14512]  __x64_sys_bpf+0x7c/0x90
[ 1033.703962][T14512]  do_syscall_64+0xfa/0x3b0
[ 1033.703980][T14512]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1033.704011][T14512]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1033.704033][T14512]  ? clear_bhb_loop+0x60/0xb0
[ 1033.704058][T14512]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1033.704079][T14512] RIP: 0033:0x7fc15338e929
[ 1033.704097][T14512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1033.704115][T14512] RSP: 002b:00007fc1541d3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1033.704137][T14512] RAX: ffffffffffffffda RBX: 00007fc1535b5fa0 RCX: 00007fc15338e929
[ 1033.704153][T14512] RDX: 0000000000000094 RSI: 0000200000000540 RDI: 0000000000000005
[ 1033.704167][T14512] RBP: 00007fc1541d3090 R08: 0000000000000000 R09: 0000000000000000
[ 1033.704180][T14512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1033.704193][T14512] R13: 0000000000000001 R14: 00007fc1535b5fa0 R15: 00007ffcd89c6948
[ 1033.704224][T14512]  </TASK>
[ 1033.891197][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1035.086524][T14522] IPv6: sit1: Disabled Multicast RS
[ 1035.280623][T14522] sit1: entered allmulticast mode
[ 1036.000950][T14544] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2041'.
[ 1036.775983][T14547] netlink: 'syz.1.2042': attribute type 11 has an invalid length.
[ 1038.041480][T14569] mac80211_hwsim hwsim16 wlan0: entered promiscuous mode
[ 1038.116369][T14569] mac80211_hwsim hwsim16 wlan0: left promiscuous mode
[ 1038.737064][T14581] netlink: 52 bytes leftover after parsing attributes in process `syz.5.2052'.
[ 1039.034344][T14582] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2051'.
[ 1039.705190][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[ 1042.405062][ T2156] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[ 1042.567526][ T2156] usb 5-1: config 160 has an invalid interface number: 200 but max is 0
[ 1042.605096][ T2156] usb 5-1: config 160 has an invalid descriptor of length 89, skipping remainder of the config
[ 1042.645294][ T2156] usb 5-1: config 160 has no interface number 0
[ 1042.651749][ T2156] usb 5-1: config 160 interface 200 has no altsetting 0
[ 1042.672665][ T2156] usb 5-1: New USB device found, idVendor=18bb, idProduct=2070, bcdDevice=87.0b
[ 1042.707246][ T2156] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1042.735490][ T2156] usb 5-1: Product: syz
[ 1042.740104][ T2156] usb 5-1: Manufacturer: syz
[ 1042.745541][ T2156] usb 5-1: SerialNumber: syz
[ 1043.269354][ T2156] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[ 1043.312756][ T2156] usb 5-1: MIDIStreaming interface descriptor not found
[ 1043.538927][ T2156] usb 5-1: USB disconnect, device number 34
[ 1043.968184][T14629] No such timeout policy "syz1"
[ 1044.515806][T14632] udevd[14632]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:160.200/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1044.858927][T14636] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[ 1045.870725][T14646] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2068'.
[ 1047.043931][T14657] FAULT_INJECTION: forcing a failure.
[ 1047.043931][T14657] name failslab, interval 1, probability 0, space 0, times 0
[ 1047.056832][T14657] CPU: 0 UID: 0 PID: 14657 Comm: syz.4.2070 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(full) 
[ 1047.056861][T14657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1047.056875][T14657] Call Trace:
[ 1047.056884][T14657]  <TASK>
[ 1047.056894][T14657]  dump_stack_lvl+0x189/0x250
[ 1047.056932][T14657]  ? __pfx____ratelimit+0x10/0x10
[ 1047.056965][T14657]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1047.057005][T14657]  ? __pfx__printk+0x10/0x10
[ 1047.057030][T14657]  ? __pfx___might_resched+0x10/0x10
[ 1047.057062][T14657]  ? fs_reclaim_acquire+0x7d/0x100
[ 1047.057099][T14657]  should_fail_ex+0x414/0x560
[ 1047.057133][T14657]  should_failslab+0xa8/0x100
[ 1047.057164][T14657]  __kmalloc_noprof+0xcb/0x4f0
[ 1047.057189][T14657]  ? tomoyo_encode+0x28b/0x550
[ 1047.057226][T14657]  tomoyo_encode+0x28b/0x550
[ 1047.057266][T14657]  tomoyo_realpath_from_path+0x58d/0x5d0
[ 1047.057312][T14657]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 1047.057340][T14657]  tomoyo_path_number_perm+0x1e8/0x5a0
[ 1047.057372][T14657]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1047.057402][T14657]  ? rcu_is_watching+0x15/0xb0
[ 1047.057436][T14657]  ? trace_irq_disable+0x37/0x110
[ 1047.057462][T14657]  ? preempt_schedule_irq+0xde/0x150
[ 1047.057502][T14657]  ? __lock_acquire+0xab9/0xd20
[ 1047.057554][T14657]  ? __fget_files+0x2a/0x420
[ 1047.057587][T14657]  ? __fget_files+0x2a/0x420
[ 1047.057614][T14657]  ? __fget_files+0x3a0/0x420
[ 1047.057642][T14657]  ? __fget_files+0x2a/0x420
[ 1047.057676][T14657]  security_file_ioctl+0xcb/0x2d0
[ 1047.057708][T14657]  __se_sys_ioctl+0x47/0x170
[ 1047.057735][T14657]  do_syscall_64+0xfa/0x3b0
[ 1047.057757][T14657]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1047.057778][T14657]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[ 1047.057803][T14657]  ? clear_bhb_loop+0x60/0xb0
[ 1047.057830][T14657]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1047.057851][T14657] RIP: 0033:0x7fc15338e929
[ 1047.057870][T14657] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1047.057889][T14657] RSP: 002b:00007fc154191038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1047.057912][T14657] RAX: ffffffffffffffda RBX: 00007fc1535b6160 RCX: 00007fc15338e929
[ 1047.057928][T14657] RDX: 0000200000002380 RSI: 00000000c058534f RDI: 0000000000000006
[ 1047.057942][T14657] RBP: 00007fc154191090 R08: 0000000000000000 R09: 0000000000000000
[ 1047.057957][T14657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1047.057969][T14657] R13: 0000000000000000 R14: 00007fc1535b6160 R15: 00007ffcd89c6948
[ 1047.058011][T14657]  </TASK>
[ 1047.058228][T14657] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1049.239783][T14679] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2076'.
[ 1049.396323][T14682] netlink: 60 bytes leftover after parsing attributes in process `syz.5.2074'.
[ 1049.935046][   T10] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[ 1050.989691][   T10] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[ 1051.005010][   T10] usb 1-1: config 0 has no interface number 0
[ 1051.011188][   T10] usb 1-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[ 1051.027012][ T2156] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[ 1051.054992][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1051.066756][   T10] usb 1-1: config 0 descriptor??
[ 1051.090266][   T10] usb 1-1: selecting invalid altsetting 1
[ 1051.105700][   T10] dvb_ttusb_budget: ttusb_init_controller: error
[ 1051.112109][   T10] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB)
[ 1051.417965][T14705] No such timeout policy "syz1"
[ 1052.020150][ T2156] usb 3-1: Using ep0 maxpacket: 8
[ 1052.029326][ T2156] usb 3-1: config 0 has an invalid interface number: 55 but max is 0
[ 1052.038324][ T2156] usb 3-1: config 0 has no interface number 0
[ 1052.044483][ T2156] usb 3-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1052.053883][   T10] DVB: Unable to find symbol cx22700_attach()
[ 1052.058785][ T2156] usb 3-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[ 1052.079007][ T2156] usb 3-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1052.218541][ T2156] usb 3-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1052.361102][ T2156] usb 3-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[ 1052.451688][ T2156] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1052.683563][ T2156] usb 3-1: config 0 descriptor??
[ 1052.732408][ T2156] ldusb 3-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[ 1052.824349][   T10] DVB: Unable to find symbol tda10046_attach()
[ 1052.843395][   T10] dvb_ttusb_budget: no frontend driver found for device [0b48:1005]
[ 1052.906605][T14708] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1052.945474][T14708] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1054.099340][   T10] usb 3-1: USB disconnect, device number 22
[ 1054.110502][ T5828] usb 1-1: USB disconnect, device number 35
[ 1054.144758][   T10] ldusb 3-1:0.55: LD USB Device #0 now disconnected
[ 1054.226899][T14720] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[ 1054.469034][T14722] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2087'.
[ 1055.555946][T14743] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2093'.
[ 1055.581795][T14743] openvswitch: netlink: nsh attribute has 1 unknown bytes.
[ 1055.886309][T14743] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1057.872987][ T5828] usb 5-1: new low-speed USB device number 35 using dummy_hcd
[ 1058.491087][T13303] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[ 1058.715378][ T5828] usb 5-1: config index 0 descriptor too short (expected 6427, got 27)
[ 1058.723718][ T5828] usb 5-1: config 0 has an invalid interface number: 21 but max is 0
[ 1058.772661][ T5828] usb 5-1: config 0 has no interface number 0
[ 1058.867749][ T5828] usb 5-1: config 0 interface 21 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1059.549195][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1059.664277][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1061.385291][ T5828] usb 5-1: config 0 interface 21 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[ 1061.405954][ T5828] usb 5-1: config 0 interface 21 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[ 1061.420412][ T5828] usb 5-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4
[ 1061.432589][ T5828] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1061.551335][ T5828] usb 5-1: config 0 descriptor??
[ 1061.588698][ T5828] usb 5-1: can't set config #0, error -71
[ 1061.616637][ T5828] usb 5-1: USB disconnect, device number 35
[ 1061.895514][T14778] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[ 1061.995053][ T5828] usb 5-1: new full-speed USB device number 36 using dummy_hcd
[ 1062.341535][ T5828] usb 5-1: not running at top speed; connect to a high speed hub
[ 1062.352128][ T5828] usb 5-1: config 1 interface 0 altsetting 7 endpoint 0x82 has invalid maxpacket 512, setting to 64
[ 1062.374159][ T5828] usb 5-1: config 1 interface 0 altsetting 7 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1062.633809][T14789] xt_addrtype: ipv6 does not support BROADCAST matching
[ 1063.310286][ T5828] usb 5-1: config 1 interface 0 has no altsetting 0
[ 1063.320421][ T5828] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1063.329756][ T5828] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1063.478569][T14795] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode
[ 1063.574684][ T5828] usb 5-1: Product: ј
[ 1063.579352][ T5828] usb 5-1: Manufacturer: ࠧ
[ 1063.584500][ T5828] usb 5-1: SerialNumber: А
[ 1063.613568][T14771] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1064.373291][T14795] mac80211_hwsim hwsim2 wlan0: left promiscuous mode
[ 1064.394033][ T5828] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -22
[ 1064.439768][ T5828] usb 5-1: USB disconnect, device number 36
[ 1065.108390][T14810] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2111'.
[ 1065.415143][ T2156] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[ 1065.508580][T14821] netlink: 830 bytes leftover after parsing attributes in process `syz.5.2115'.
[ 1065.641309][ T2156] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1065.648408][T14824] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[ 1065.665289][ T2156] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 3
[ 1065.688620][ T2156] usb 5-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00
[ 1065.720489][ T2156] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1065.754384][ T2156] usb 5-1: config 0 descriptor??
[ 1066.286454][T14812] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1066.311658][T14812] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1066.393800][ T2156] Bluetooth: Can't get state to change to load configuration err
[ 1066.412964][ T2156] Bluetooth: Loading sysconfig file failed
[ 1066.422004][ T2156] ath3k 5-1:0.0: probe with driver ath3k failed with error -16
[ 1066.453374][ T2156] usb 5-1: USB disconnect, device number 37
[ 1066.473658][T14840] program syz.5.2121 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1066.785210][   T10] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[ 1066.874342][T14852] random: crng reseeded on system resumption
[ 1066.967508][   T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[ 1067.001878][   T10] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[ 1067.015119][   T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[ 1067.035049][   T10] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[ 1067.065409][   T10] usb 2-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[ 1067.116774][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1067.384362][   T10] usb 2-1: config 0 descriptor??
[ 1068.081503][T14866] bridge_slave_0: default FDB implementation only supports local addresses
[ 1068.181424][T14850] overlayfs: failed to resolve './file1': -2
[ 1069.542660][   T10] hdpvr 2-1:0.0: unexpected answer of status request, len -71
[ 1069.572854][   T10] hdpvr 2-1:0.0: device init failed
[ 1069.601592][   T10] hdpvr 2-1:0.0: probe with driver hdpvr failed with error -12
[ 1069.657668][   T10] usb 2-1: USB disconnect, device number 22
[ 1069.863966][T14889] netlink: 'syz.4.2135': attribute type 12 has an invalid length.
[ 1069.975580][T14889] netlink: 132 bytes leftover after parsing attributes in process `syz.4.2135'.
[ 1070.405038][T14891] veth2: entered promiscuous mode
[ 1070.410139][T14891] veth2: entered allmulticast mode
[ 1074.382971][T14918] netlink: zone id is out of range
[ 1074.388445][T14918] netlink: zone id is out of range
[ 1074.393677][T14918] netlink: zone id is out of range
[ 1074.399039][T14918] netlink: zone id is out of range
[ 1074.404262][T14918] netlink: zone id is out of range
[ 1074.409569][T14918] netlink: zone id is out of range
[ 1074.414809][T14918] netlink: zone id is out of range
[ 1074.420097][T14918] netlink: zone id is out of range
[ 1074.425580][T14918] netlink: zone id is out of range
[ 1074.430795][T14918] netlink: zone id is out of range
[ 1074.938255][T14919] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode
[ 1075.044901][T14919] mac80211_hwsim hwsim2 wlan0: left promiscuous mode
[ 1075.819166][T14922] overlayfs: failed to resolve './file1': -2
[ 1076.129460][   T10] usb 1-1: new high-speed USB device number 36 using dummy_hcd
[ 1076.310852][   T10] usb 1-1: config 29 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[ 1076.354260][   T10] usb 1-1: New USB device found, idVendor=2040, idProduct=1605, bcdDevice= a.94
[ 1076.565298][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1077.233078][ T2156] usb 1-1: USB disconnect, device number 36
[ 1077.299338][T14952] @: renamed from vlan0 (while UP)
[ 1078.254467][T14960] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2157'.
[ 1078.308206][T14962] xt_time: invalid argument - start or stop time greater than 23:59:59
[ 1078.605688][T14975] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2153'.
[ 1079.015945][T14980] IPVS: set_ctl: invalid protocol: 22 224.0.0.2:20001
[ 1080.788614][T14991] overlayfs: failed to resolve './file1': -2
[ 1081.407794][T14993] syz.1.2165: vmalloc error: size 2768896, failed to allocated page array size 5408, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1081.499485][T14993] CPU: 0 UID: 0 PID: 14993 Comm: syz.1.2165 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(full) 
[ 1081.499520][T14993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1081.499534][T14993] Call Trace:
[ 1081.499544][T14993]  <TASK>
[ 1081.499553][T14993]  dump_stack_lvl+0x189/0x250
[ 1081.499596][T14993]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1081.499632][T14993]  ? __pfx__printk+0x10/0x10
[ 1081.499656][T14993]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1081.499697][T14993]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1081.499738][T14993]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[ 1081.499794][T14993]  warn_alloc+0x214/0x310
[ 1081.499832][T14993]  ? __pfx_warn_alloc+0x10/0x10
[ 1081.499873][T14993]  ? __get_vm_area_node+0x28f/0x300
[ 1081.499908][T14993]  ? vb2_vmalloc_alloc+0xef/0x340
[ 1081.499934][T14993]  __vmalloc_node_range_noprof+0x67e/0x12f0
[ 1081.499993][T14993]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1081.500029][T14993]  ? __kasan_kmalloc+0x93/0xb0
[ 1081.500059][T14993]  vmalloc_user_noprof+0xad/0xf0
[ 1081.500095][T14993]  ? vb2_vmalloc_alloc+0xef/0x340
[ 1081.500119][T14993]  vb2_vmalloc_alloc+0xef/0x340
[ 1081.500141][T14993]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[ 1081.500165][T14993]  __vb2_queue_alloc+0x9c2/0x15a0
[ 1081.500227][T14993]  vb2_core_reqbufs+0xc31/0x1420
[ 1081.500282][T14993]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[ 1081.500315][T14993]  ? vb2_verify_memory_type+0x1fc/0x570
[ 1081.500351][T14993]  ? vb2_reqbufs+0x3a9/0x630
[ 1081.500393][T14993]  v4l2_m2m_ioctl_reqbufs+0x10d/0x200
[ 1081.500423][T14993]  __video_do_ioctl+0xc9b/0xdb0
[ 1081.500456][T14993]  ? __pfx___video_do_ioctl+0x10/0x10
[ 1081.500492][T14993]  video_usercopy+0x871/0x14f0
[ 1081.500526][T14993]  ? __pfx___video_do_ioctl+0x10/0x10
[ 1081.500550][T14993]  ? __pfx_video_usercopy+0x10/0x10
[ 1081.500572][T14993]  ? smack_file_ioctl+0x2a9/0x340
[ 1081.500617][T14993]  ? __fget_files+0x2a/0x420
[ 1081.500646][T14993]  ? __fget_files+0x3a0/0x420
[ 1081.500680][T14993]  v4l2_ioctl+0x18a/0x1e0
[ 1081.500703][T14993]  ? __pfx_v4l2_ioctl+0x10/0x10
[ 1081.500725][T14993]  __se_sys_ioctl+0xf9/0x170
[ 1081.500751][T14993]  do_syscall_64+0xfa/0x3b0
[ 1081.500771][T14993]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1081.500804][T14993]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1081.500826][T14993]  ? clear_bhb_loop+0x60/0xb0
[ 1081.500854][T14993]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1081.500875][T14993] RIP: 0033:0x7f947038e929
[ 1081.500895][T14993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1081.500915][T14993] RSP: 002b:00007f947126a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1081.500938][T14993] RAX: ffffffffffffffda RBX: 00007f94705b5fa0 RCX: 00007f947038e929
[ 1081.500955][T14993] RDX: 00002000000000c0 RSI: 00000000c0145608 RDI: 0000000000000003
[ 1081.500969][T14993] RBP: 00007f9470410b39 R08: 0000000000000000 R09: 0000000000000000
[ 1081.500983][T14993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1081.500996][T14993] R13: 0000000000000000 R14: 00007f94705b5fa0 R15: 00007ffebaa2c1c8
[ 1081.501030][T14993]  </TASK>
[ 1081.501619][T14993] Mem-Info:
[ 1081.818122][T14993] active_anon:2461 inactive_anon:7310 isolated_anon:23
[ 1081.818122][T14993]  active_file:14639 inactive_file:41367 isolated_file:0
[ 1081.818122][T14993]  unevictable:768 dirty:174 writeback:0
[ 1081.818122][T14993]  slab_reclaimable:11031 slab_unreclaimable:123290
[ 1081.818122][T14993]  mapped:30955 shmem:5088 pagetables:1301
[ 1081.818122][T14993]  sec_pagetables:0 bounce:0
[ 1081.818122][T14993]  kernel_misc_reclaimable:0
[ 1081.818122][T14993]  free:1260551 free_pcp:14501 free_cma:0
[ 1081.945437][T14993] Node 0 active_anon:6836kB inactive_anon:24984kB active_file:58244kB inactive_file:165468kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:123508kB dirty:464kB writeback:96kB shmem:11848kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12400kB pagetables:4976kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1082.056296][T14993] Node 1 active_anon:0kB inactive_anon:0kB active_file:320kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:88kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1082.187782][T14993] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1082.253839][T14993] lowmem_reserve[]: 0 2501 2503 2503 2503
[ 1082.267045][T14993] Node 0 DMA32 free:1112180kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:1232kB inactive_anon:25736kB active_file:56480kB inactive_file:165408kB unevictable:1536kB writepending:460kB present:3129332kB managed:2561488kB mlocked:0kB bounce:0kB free_pcp:64424kB local_pcp:45024kB free_cma:0kB
[ 1082.445198][T14993] lowmem_reserve[]: 0 0 1 1 1
[ 1082.450026][T14993] Node 0 Normal free:20kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:48kB active_file:1764kB inactive_file:60kB unevictable:0kB writepending:0kB present:1048580kB managed:1904kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[ 1082.550132][T14993] lowmem_reserve[]: 0 0 0 0 0
[ 1082.560242][T14993] Node 1 Normal free:3914892kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:320kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:5536kB local_pcp:0kB free_cma:0kB
[ 1082.610046][T14993] lowmem_reserve[]: 0 0 0 0 0
[ 1082.614985][T14993] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1082.628497][T14993] Node 0 DMA32: 4*4kB (UE) 20*8kB (E) 22*16kB (E) 87*32kB (ME) 223*64kB (UME) 136*128kB (UME) 37*256kB (ME) 38*512kB (UME) 32*1024kB (ME) 2*2048kB (M) 246*4096kB (UM) = 1108400kB
[ 1082.646648][T14993] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[ 1082.659420][T14993] Node 1 Normal: 173*4kB (UME) 45*8kB (UME) 35*16kB (UME) 268*32kB (UME) 111*64kB (UE) 14*128kB (UME) 4*256kB (UM) 3*512kB (UM) 2*1024kB (UM) 2*2048kB (U) 949*4096kB (ME) = 3914892kB
[ 1082.684759][T14993] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1082.705253][T14993] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1082.715139][T14993] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1082.725281][T14993] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1082.735755][T14993] 63075 total pagecache pages
[ 1082.740608][T14993] 0 pages in swap cache
[ 1082.744897][T14993] Free swap  = 124996kB
[ 1082.749394][T14993] Total swap = 124996kB
[ 1082.764801][T14993] 2097051 pages RAM
[ 1082.769086][T14993] 0 pages HighMem/MovableOnly
[ 1082.773909][T14993] 424572 pages reserved
[ 1082.783902][T14993] 0 pages cma reserved
[ 1083.708302][T15039] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2176'.
[ 1084.225903][T15040] FAULT_INJECTION: forcing a failure.
[ 1084.225903][T15040] name failslab, interval 1, probability 0, space 0, times 0
[ 1084.239125][T15040] CPU: 1 UID: 0 PID: 15040 Comm: syz.5.2177 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(full) 
[ 1084.239152][T15040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1084.239165][T15040] Call Trace:
[ 1084.239173][T15040]  <TASK>
[ 1084.239181][T15040]  dump_stack_lvl+0x189/0x250
[ 1084.239218][T15040]  ? __pfx____ratelimit+0x10/0x10
[ 1084.239260][T15040]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1084.239291][T15040]  ? __pfx__printk+0x10/0x10
[ 1084.239317][T15040]  ? __pfx___might_resched+0x10/0x10
[ 1084.239346][T15040]  ? fs_reclaim_acquire+0x7d/0x100
[ 1084.239381][T15040]  should_fail_ex+0x414/0x560
[ 1084.239415][T15040]  should_failslab+0xa8/0x100
[ 1084.239446][T15040]  __kmalloc_cache_noprof+0x70/0x3d0
[ 1084.239473][T15040]  ? __kthread_create_on_node+0xef/0x3e0
[ 1084.239507][T15040]  ? __pfx_rxrpc_io_thread+0x10/0x10
[ 1084.239536][T15040]  __kthread_create_on_node+0xef/0x3e0
[ 1084.239575][T15040]  ? __pfx___kthread_create_on_node+0x10/0x10
[ 1084.239621][T15040]  ? __lock_acquire+0xab9/0xd20
[ 1084.239651][T15040]  ? __pfx_rxrpc_io_thread+0x10/0x10
[ 1084.239676][T15040]  ? __pfx_rxrpc_io_thread+0x10/0x10
[ 1084.239703][T15040]  kthread_create_on_node+0xdd/0x130
[ 1084.239743][T15040]  ? __pfx_kthread_create_on_node+0x10/0x10
[ 1084.239783][T15040]  ? do_raw_spin_unlock+0x122/0x240
[ 1084.239810][T15040]  rxrpc_lookup_local+0xe70/0x1410
[ 1084.239849][T15040]  ? __pfx_rxrpc_lookup_local+0x10/0x10
[ 1084.239876][T15040]  ? __pfx_rxrpc_encap_rcv+0x10/0x10
[ 1084.239900][T15040]  ? __pfx_rxrpc_encap_err_rcv+0x10/0x10
[ 1084.239930][T15040]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1084.239965][T15040]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1084.239999][T15040]  ? do_raw_spin_unlock+0x122/0x240
[ 1084.240028][T15040]  rxrpc_sendmsg+0x399/0x710
[ 1084.240059][T15040]  ? __pfx_rxrpc_sendmsg+0x10/0x10
[ 1084.240084][T15040]  __sock_sendmsg+0x219/0x270
[ 1084.240120][T15040]  ____sys_sendmsg+0x505/0x830
[ 1084.240154][T15040]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1084.240193][T15040]  ? import_iovec+0x74/0xa0
[ 1084.240219][T15040]  ___sys_sendmsg+0x21f/0x2a0
[ 1084.240258][T15040]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1084.240331][T15040]  ? __fget_files+0x2a/0x420
[ 1084.240358][T15040]  ? __fget_files+0x3a0/0x420
[ 1084.240398][T15040]  __x64_sys_sendmsg+0x19b/0x260
[ 1084.240428][T15040]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1084.240468][T15040]  ? __pfx_ksys_write+0x10/0x10
[ 1084.240490][T15040]  ? rcu_is_watching+0x15/0xb0
[ 1084.240528][T15040]  ? do_syscall_64+0xbe/0x3b0
[ 1084.240552][T15040]  do_syscall_64+0xfa/0x3b0
[ 1084.240570][T15040]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1084.240601][T15040]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1084.240623][T15040]  ? clear_bhb_loop+0x60/0xb0
[ 1084.240650][T15040]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1084.240670][T15040] RIP: 0033:0x7f2f44f8e929
[ 1084.240690][T15040] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1084.240708][T15040] RSP: 002b:00007f2f45dce038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1084.240730][T15040] RAX: ffffffffffffffda RBX: 00007f2f451b6160 RCX: 00007f2f44f8e929
[ 1084.240746][T15040] RDX: 000000000000ff00 RSI: 0000200000000000 RDI: 0000000000000007
[ 1084.240760][T15040] RBP: 00007f2f45dce090 R08: 0000000000000000 R09: 0000000000000000
[ 1084.240773][T15040] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1084.240786][T15040] R13: 0000000000000000 R14: 00007f2f451b6160 R15: 00007ffe30ac9ae8
[ 1084.240820][T15040]  </TASK>
[ 1085.062837][T15047] SET target dimension over the limit!
[ 1085.085183][T15045] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2175'.
[ 1086.475152][   T10] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[ 1086.630516][   T10] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[ 1086.643065][   T10] usb 3-1: config 0 has no interface number 0
[ 1086.685969][   T10] usb 3-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[ 1086.710742][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1086.731714][   T10] usb 3-1: Product: syz
[ 1086.739454][   T10] usb 3-1: Manufacturer: syz
[ 1086.744106][   T10] usb 3-1: SerialNumber: syz
[ 1086.785242][   T10] usb 3-1: config 0 descriptor??
[ 1086.851140][T15062] overlayfs: failed to resolve './file1': -2
[ 1087.002510][   T10] usb 3-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[ 1087.040890][   T10] usb 3-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1087.088850][   T10] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[ 1087.131584][   T10] usb 3-1: media controller created
[ 1087.200844][   T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1087.211832][T15064] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1087.385461][T15064] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1087.413010][T15064] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1087.433731][T15064] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1087.487217][T15064] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1087.534470][T15064] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1087.565146][T15064] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1087.613815][T15064] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1087.639556][   T10] i2c i2c-1: ec100: i2c rd failed=-71 reg=33
[ 1087.716426][   T10] usb 3-1: USB disconnect, device number 23
[ 1088.060080][T15076] bridge_slave_0: default FDB implementation only supports local addresses
[ 1088.320377][T15079] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2188'.
[ 1088.772224][T13303] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[ 1088.966954][T13303] usb 5-1: Using ep0 maxpacket: 8
[ 1089.090470][T13303] usb 5-1: config 2 has an invalid interface number: 31 but max is 0
[ 1089.104613][T13303] usb 5-1: config 2 has no interface number 0
[ 1089.174794][T15089] vivid-000: disconnect
[ 1089.802299][T13303] usb 5-1: config 2 interface 31 has no altsetting 0
[ 1089.827449][T13303] usb 5-1: New USB device found, idVendor=1a86, idProduct=e092, bcdDevice=53.3f
[ 1089.860707][T13303] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1090.387903][T13303] usb 5-1: Product: syz
[ 1090.392143][T13303] usb 5-1: Manufacturer: syz
[ 1090.400721][T13303] usb 5-1: SerialNumber: syz
[ 1091.742844][T13303] ch9200 5-1:2.31: probe with driver ch9200 failed with error -71
[ 1092.467178][T13303] usb 5-1: USB disconnect, device number 38
[ 1092.858152][T15110] fuse: Unknown parameter 'gVC��{�[zف�'
[ 1093.792216][T15089] vivid-000: reconnect
[ 1095.385230][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[ 1098.281404][T15134] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2200'.
[ 1098.921021][T15139] mkiss: ax0: crc mode is auto.
[ 1099.054764][T15144] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2202'.
[ 1099.903012][T15161] 9pnet_fd: Insufficient options for proto=fd
[ 1102.717590][T15187] netlink: 52 bytes leftover after parsing attributes in process `syz.5.2213'.
[ 1102.745258][T15192] Cannot find add_set index 0 as target
[ 1105.928421][T15207] xt_addrtype: ipv6 does not support BROADCAST matching
[ 1106.273040][T15216] tmpfs: Cannot enable quota on remount
[ 1106.543060][T15222] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2222'.
[ 1107.344411][T15231] 9pnet_fd: Insufficient options for proto=fd
[ 1108.565570][T15239] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2226'.
[ 1110.076324][T15254] netlink: 184 bytes leftover after parsing attributes in process `syz.5.2230'.
[ 1110.659768][T15256] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2224'.
[ 1110.668885][T15256] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2224'.
[ 1110.677970][T15256] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2224'.
[ 1112.495099][   T10] usb 3-1: new full-speed USB device number 24 using dummy_hcd
[ 1112.551356][T15272] FAULT_INJECTION: forcing a failure.
[ 1112.551356][T15272] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1112.694884][T15272] CPU: 1 UID: 0 PID: 15272 Comm: syz.0.2234 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(full) 
[ 1112.694918][T15272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1112.694932][T15272] Call Trace:
[ 1112.694940][T15272]  <TASK>
[ 1112.694950][T15272]  dump_stack_lvl+0x189/0x250
[ 1112.694986][T15272]  ? __pfx____ratelimit+0x10/0x10
[ 1112.695019][T15272]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1112.695049][T15272]  ? __pfx__printk+0x10/0x10
[ 1112.695069][T15272]  ? __might_fault+0xb0/0x130
[ 1112.695105][T15272]  should_fail_ex+0x414/0x560
[ 1112.695138][T15272]  _copy_from_user+0x2d/0xb0
[ 1112.695160][T15272]  __ia32_sys_rt_sigreturn+0x228/0x7b0
[ 1112.695193][T15272]  ? __pfx___ia32_sys_rt_sigreturn+0x10/0x10
[ 1112.695275][T15272]  do_syscall_64+0xfa/0x3b0
[ 1112.695297][T15272]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1112.695318][T15272]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[ 1112.695338][T15272]  ? clear_bhb_loop+0x60/0xb0
[ 1112.695363][T15272]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1112.695383][T15272] RIP: 0033:0x7fcd10f2ab19
[ 1112.695403][T15272] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[ 1112.695420][T15272] RSP: 002b:00007fcd11df9a80 EFLAGS: 00000202 ORIG_RAX: 000000000000000f
[ 1112.695441][T15272] RAX: ffffffffffffffda RBX: 00007fcd111b5fa0 RCX: 00007fcd10f2ab19
[ 1112.695455][T15272] RDX: 00007fcd11df9a80 RSI: 00007fcd11df9bb0 RDI: 0000000000000021
[ 1112.695469][T15272] RBP: 00007fcd11dfa090 R08: 0000000000000000 R09: 0000000000000000
[ 1112.695482][T15272] R10: 0000000000000ce2 R11: 0000000000000202 R12: 0000000000000002
[ 1112.695493][T15272] R13: 0000000000000000 R14: 00007fcd111b5fa0 R15: 00007fff54296288
[ 1112.695525][T15272]  </TASK>
[ 1112.703948][T15273] input: syz0 as /devices/virtual/input/input17
[ 1112.907507][   T10] usb 3-1: not running at top speed; connect to a high speed hub
[ 1112.917108][   T10] usb 3-1: config 1 interface 0 altsetting 7 endpoint 0x82 has invalid maxpacket 512, setting to 64
[ 1113.193663][   T10] usb 3-1: config 1 interface 0 altsetting 7 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1113.398312][   T10] usb 3-1: config 1 interface 0 has no altsetting 0
[ 1113.596545][   T10] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1113.621553][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1113.631745][   T10] usb 3-1: Product: ј
[ 1113.640823][   T10] usb 3-1: Manufacturer: ࠧ
[ 1113.647150][   T10] usb 3-1: SerialNumber: А
[ 1113.664175][T15267] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1113.690403][T15281] 9pnet_fd: Insufficient options for proto=fd
[ 1113.897463][   T10] cdc_ether 3-1:1.0: probe with driver cdc_ether failed with error -22
[ 1114.716066][   T10] usb 3-1: USB disconnect, device number 24
[ 1115.539629][T15295] netlink: 104 bytes leftover after parsing attributes in process `syz.5.2240'.
[ 1117.561765][T15312] FAULT_INJECTION: forcing a failure.
[ 1117.561765][T15312] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1117.591871][T15312] CPU: 1 UID: 0 PID: 15312 Comm: syz.2.2244 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(full) 
[ 1117.591903][T15312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1117.591916][T15312] Call Trace:
[ 1117.591925][T15312]  <TASK>
[ 1117.591935][T15312]  dump_stack_lvl+0x189/0x250
[ 1117.591971][T15312]  ? __pfx____ratelimit+0x10/0x10
[ 1117.592003][T15312]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1117.592034][T15312]  ? __pfx__printk+0x10/0x10
[ 1117.592059][T15312]  ? __pfx_copy_data+0x10/0x10
[ 1117.592092][T15312]  should_fail_ex+0x414/0x560
[ 1117.592125][T15312]  _copy_to_user+0x31/0xb0
[ 1117.592147][T15312]  ? __pfx_virtio_read+0x10/0x10
[ 1117.592169][T15312]  rng_dev_read+0x3f2/0x770
[ 1117.592200][T15312]  ? __pfx_rng_dev_read+0x10/0x10
[ 1117.592228][T15312]  ? bpf_lsm_file_permission+0x9/0x20
[ 1117.592254][T15312]  ? security_file_permission+0x75/0x290
[ 1117.592283][T15312]  ? rw_verify_area+0x258/0x650
[ 1117.592303][T15312]  vfs_readv+0x5a7/0x850
[ 1117.592325][T15312]  ? __pfx_rng_dev_read+0x10/0x10
[ 1117.592349][T15312]  ? __pfx_vfs_readv+0x10/0x10
[ 1117.592382][T15312]  ? __fget_files+0x2a/0x420
[ 1117.592405][T15312]  ? __fget_files+0x3a0/0x420
[ 1117.592424][T15312]  ? __fget_files+0x2a/0x420
[ 1117.592451][T15312]  __x64_sys_preadv+0x197/0x2a0
[ 1117.592472][T15312]  ? __pfx___x64_sys_preadv+0x10/0x10
[ 1117.592489][T15312]  ? rcu_is_watching+0x15/0xb0
[ 1117.592515][T15312]  ? do_syscall_64+0xbe/0x3b0
[ 1117.592531][T15312]  do_syscall_64+0xfa/0x3b0
[ 1117.592544][T15312]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1117.592566][T15312]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1117.592581][T15312]  ? clear_bhb_loop+0x60/0xb0
[ 1117.592599][T15312]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1117.592613][T15312] RIP: 0033:0x7f9afa98e929
[ 1117.592627][T15312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1117.592639][T15312] RSP: 002b:00007f9afb7e5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1117.592655][T15312] RAX: ffffffffffffffda RBX: 00007f9afabb5fa0 RCX: 00007f9afa98e929
[ 1117.592667][T15312] RDX: 0000000000000001 RSI: 0000200000000040 RDI: 0000000000000003
[ 1117.592676][T15312] RBP: 00007f9afb7e5090 R08: 0000000000000000 R09: 0000000000000000
[ 1117.592685][T15312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1117.592693][T15312] R13: 0000000000000000 R14: 00007f9afabb5fa0 R15: 00007ffdfd240de8
[ 1117.592716][T15312]  </TASK>
[ 1117.836563][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1118.168684][T15318] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2245'.
[ 1119.092761][T15293] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1119.111015][T15284] kthread_run failed with err -4
[ 1119.565961][T15327] 9pnet_fd: Insufficient options for proto=fd
[ 1120.004721][T15335] No such timeout policy "syz1"
[ 1121.079112][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1121.325082][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1122.805916][T15363] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2258'.
[ 1124.971856][T15382] No such timeout policy "syz1"
[ 1126.503687][T15396] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2265'.
[ 1127.059928][T15410] xt_addrtype: ipv6 does not support BROADCAST matching
[ 1128.455250][T13303] usb 5-1: new high-speed USB device number 39 using dummy_hcd
[ 1128.639492][T13303] usb 5-1: config 0 has no interfaces?
[ 1128.673845][T13303] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 1128.723685][T13303] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1128.770266][T13303] usb 5-1: Product: syz
[ 1128.784177][T13303] usb 5-1: Manufacturer: syz
[ 1128.796820][T13303] usb 5-1: SerialNumber: syz
[ 1128.817934][T13303] usb 5-1: config 0 descriptor??
[ 1131.621863][T13303] usb 5-1: USB disconnect, device number 39
[ 1131.779001][ T5828] usb 1-1: new high-speed USB device number 37 using dummy_hcd
[ 1131.945117][ T5828] usb 1-1: device descriptor read/64, error -71
[ 1132.215097][ T5828] usb 1-1: new high-speed USB device number 38 using dummy_hcd
[ 1132.585274][ T5828] usb 1-1: device descriptor read/64, error -71
[ 1132.795338][ T5828] usb usb1-port1: attempt power cycle
[ 1133.033291][T15460] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1133.316938][   T30] audit: type=1326 audit(1749899398.125:1128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15469 comm="syz.0.2285" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcd10f8e929 code=0x0
[ 1133.458011][T15476] 9pnet_fd: Insufficient options for proto=fd
[ 1133.761492][T15481] xt_addrtype: ipv6 does not support BROADCAST matching
[ 1136.043506][T15509] overlayfs: failed to resolve './file0': -2
[ 1138.724740][T15535] IPVS: set_ctl: invalid protocol: 22 224.0.0.2:20001
[ 1138.786872][ T5828] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[ 1139.132107][T15536] bridge_slave_0: default FDB implementation only supports local addresses
[ 1139.166187][ T5828] usb 3-1: config 0 has an invalid interface number: 228 but max is 0
[ 1139.350586][ T5828] usb 3-1: config 0 has no interface number 0
[ 1139.403869][ T5828] usb 3-1: config 0 interface 228 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[ 1139.448003][ T5828] usb 3-1: New USB device found, idVendor=057c, idProduct=2200, bcdDevice=34.b1
[ 1139.469445][ T5828] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1139.495006][ T5828] usb 3-1: Product: syz
[ 1139.509473][ T5828] usb 3-1: Manufacturer: syz
[ 1139.515320][ T5828] usb 3-1: SerialNumber: syz
[ 1139.531133][ T5828] usb 3-1: config 0 descriptor??
[ 1139.554724][ T5828] bfusb 3-1:0.228: probe with driver bfusb failed with error -5
[ 1139.566792][T15541] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2301'.
[ 1139.772731][ T5828] usb 3-1: USB disconnect, device number 25
[ 1141.304799][T15558] bond_slave_1: entered promiscuous mode
[ 1141.339579][T15558] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2305'.
[ 1141.466104][T15569] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2306'.
[ 1141.501723][T15558] bond0: (slave bond_slave_1): Releasing backup interface
[ 1141.534159][T15558] bond_slave_1 (unregistering): left promiscuous mode
[ 1142.104569][T15576] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2309'.
[ 1143.115315][T15583] IPVS: set_ctl: invalid protocol: 22 224.0.0.2:20001
[ 1144.515090][T15593] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2312'.
[ 1144.524227][T15593] net_ratelimit: 7 callbacks suppressed
[ 1144.524245][T15593] openvswitch: netlink: Flow key attr not present in new flow.
[ 1144.703625][T15603] ubi31: attaching mtd0
[ 1144.709090][T15603] ubi31 error: ubi_attach_mtd_dev: bad VID header (16) or data offsets (80)
[ 1146.654343][T15622] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2316'.
[ 1148.412582][T15643] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2321'.
[ 1149.160792][T15657] IPVS: set_ctl: invalid protocol: 22 224.0.0.2:20001
[ 1151.855952][ T5828] usb 1-1: new high-speed USB device number 40 using dummy_hcd
[ 1152.218789][T13307] usb 2-1: new full-speed USB device number 23 using dummy_hcd
[ 1152.489045][ T5828] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 1152.510246][ T5828] usb 1-1: config 7 has an invalid interface number: 181 but max is 0
[ 1152.533156][ T5828] usb 1-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[ 1152.573554][ T5828] usb 1-1: config 7 has no interface number 0
[ 1152.607396][ T5828] usb 1-1: config 7 interface 181 altsetting 3 endpoint 0xA has invalid wMaxPacketSize 0
[ 1152.642905][ T5828] usb 1-1: config 7 interface 181 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1152.667244][T13307] usb 2-1: config 0 has an invalid interface number: 200 but max is 0
[ 1152.704523][T13307] usb 2-1: config 0 has no interface number 0
[ 1152.717359][ T5828] usb 1-1: config 7 interface 181 has no altsetting 0
[ 1152.740384][T13307] usb 2-1: config 0 interface 200 altsetting 2 endpoint 0x4 has invalid wMaxPacketSize 0
[ 1152.781292][T13307] usb 2-1: config 0 interface 200 has no altsetting 0
[ 1152.789184][ T5828] usb 1-1: New USB device found, idVendor=054c, idProduct=06c3, bcdDevice=2a.3d
[ 1152.845123][ T5828] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1152.859588][ T5828] usb 1-1: Product: syz
[ 1152.864518][ T5828] usb 1-1: Manufacturer: syz
[ 1152.871002][T13307] usb 2-1: New USB device found, idVendor=0b57, idProduct=852a, bcdDevice=6d.39
[ 1152.881209][ T5828] usb 1-1: SerialNumber: syz
[ 1152.894000][T13307] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1152.906058][T13307] usb 2-1: Product: syz
[ 1152.911284][T13307] usb 2-1: Manufacturer: syz
[ 1152.916609][T13307] usb 2-1: SerialNumber: syz
[ 1152.924659][T13307] usb 2-1: config 0 descriptor??
[ 1153.064459][T15694] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2334'.
[ 1153.131607][T15677] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1153.201739][T15677] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1153.233343][ T5828] port100 1-1:7.181: NFC: Could not find bulk-in or bulk-out endpoint
[ 1154.171156][ T5828] usb 1-1: USB disconnect, device number 40
[ 1154.391645][T13307] input: Hanwang Art Master III 1308 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.200/input/input18
[ 1154.540863][T13307] usb 2-1: USB disconnect, device number 23
[ 1155.051110][T15715] IPVS: set_ctl: invalid protocol: 22 224.0.0.2:20001
[ 1157.678636][T13307] usb 1-1: new full-speed USB device number 41 using dummy_hcd
[ 1158.328136][T15740] No such timeout policy "syz1"
[ 1161.413982][T15759] IPVS: set_ctl: invalid protocol: 22 224.0.0.2:20001
[ 1163.297386][T15779] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[ 1163.994172][   T30] audit: type=1326 audit(1749899428.805:1129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15780 comm="syz.0.2358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd10f8e929 code=0x7ffc0000
[ 1164.025893][   T30] audit: type=1326 audit(1749899428.835:1130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15780 comm="syz.0.2358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fcd10f8e929 code=0x7ffc0000
[ 1164.048707][   T30] audit: type=1326 audit(1749899428.835:1131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15780 comm="syz.0.2358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd10f8e929 code=0x7ffc0000
[ 1164.199962][   T30] audit: type=1326 audit(1749899428.835:1132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15780 comm="syz.0.2358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd10f8e929 code=0x7ffc0000
[ 1164.317023][   T30] audit: type=1326 audit(1749899428.835:1133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15780 comm="syz.0.2358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fcd10f8e929 code=0x7ffc0000
[ 1164.405174][   T30] audit: type=1326 audit(1749899428.835:1134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15780 comm="syz.0.2358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd10f8e929 code=0x7ffc0000
[ 1164.410612][T15771] syz.2.2354 (15771): drop_caches: 2
[ 1164.651341][   T30] audit: type=1326 audit(1749899428.835:1135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15780 comm="syz.0.2358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7fcd10f8e929 code=0x7ffc0000
[ 1165.660123][   T30] audit: type=1326 audit(1749899428.835:1136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15780 comm="syz.0.2358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fcd10f858e7 code=0x7ffc0000
[ 1165.821889][T15799] No such timeout policy "syz1"
[ 1166.216899][   T30] audit: type=1326 audit(1749899428.835:1137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15780 comm="syz.0.2358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fcd10f2ab19 code=0x7ffc0000
[ 1166.239607][   T30] audit: type=1326 audit(1749899428.835:1138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15780 comm="syz.0.2358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd10f8e929 code=0x7ffc0000
[ 1166.475653][T15804] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2363'.
[ 1167.702488][T15819] ubi31: attaching mtd0
[ 1167.707000][T15819] ubi31 error: ubi_attach_mtd_dev: bad VID header (16) or data offsets (80)
[ 1168.335576][T15820] overlayfs: failed to resolve './file0': -2
[ 1169.881652][T15839] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[ 1170.516063][T15854] overlayfs: failed to resolve './file0': -2
[ 1170.922201][T15847] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1170.944147][T15847] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1170.986353][T15847] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1171.005343][T15847] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1171.273486][T15859] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2377'.
[ 1171.379407][T13307] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[ 1171.704945][T15866] mac80211_hwsim hwsim10 wlan0: entered promiscuous mode
[ 1171.815043][T13307] usb 2-1: Using ep0 maxpacket: 8
[ 1171.874084][T13307] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[ 1171.894816][T13307] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1171.905354][T15872] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2379'.
[ 1171.936339][T13307] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1171.995125][T13307] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1172.205051][T13307] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1172.240477][T13307] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1172.277785][T13307] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1172.286575][T13574] Bluetooth: hci2: command 0x0406 tx timeout
[ 1172.309849][T15881] overlayfs: failed to resolve './file0': -2
[ 1172.930166][T13307] usb 2-1: usb_control_msg returned -71
[ 1172.936119][T13307] usbtmc 2-1:16.0: can't read capabilities
[ 1172.950639][T13307] usb 2-1: USB disconnect, device number 24
[ 1172.985606][T13574] Bluetooth: hci3: command 0x0406 tx timeout
[ 1173.072801][T13574] Bluetooth: hci1: command 0x0406 tx timeout
[ 1173.073362][ T5837] Bluetooth: hci4: command 0x0406 tx timeout
[ 1173.187262][T15887] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[ 1174.832771][T15901] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2389'.
[ 1175.122770][T15913] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2388'.
[ 1175.873320][T15916] mac80211_hwsim hwsim8 wlan0: entered promiscuous mode
[ 1176.843864][T15920] overlayfs: failed to resolve './file0': -2
[ 1177.035825][T15926] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2394'.
[ 1177.220444][T15929] program syz.0.2395 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1177.500475][T15936] netlink: 'syz.5.2397': attribute type 2 has an invalid length.
[ 1181.064626][T15976] overlayfs: failed to resolve './file0': -2
[ 1181.832287][T15977] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2405'.
[ 1182.072132][T15975] kvm: pic: non byte write
[ 1182.087434][T15991] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[ 1182.108392][T15975] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1182.221056][T15999] ieee802154 phy0 wpan0: encryption failed: -22
[ 1182.583793][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1182.590428][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1186.032900][T16036] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2422'.
[ 1186.175807][T16041] overlayfs: missing 'lowerdir'
[ 1188.274627][T16060] IPVS: set_ctl: invalid protocol: 22 224.0.0.2:20001
[ 1189.357925][T16077] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[ 1189.434139][T16080] ubi31: attaching mtd0
[ 1189.451435][T16081] xt_addrtype: ipv6 does not support BROADCAST matching
[ 1189.467521][T16080] ubi31: scanning is finished
[ 1189.472354][T16080] ubi31: empty MTD device detected
[ 1189.895800][T16085] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2437'.
[ 1190.994814][T16080] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[ 1191.002660][T16080] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[ 1191.014281][T16080] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[ 1191.598094][T16080] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[ 1191.859988][T16080] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[ 1191.860157][T16080] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[ 1191.860231][T16080] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 191980816
[ 1191.860311][T16080] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[ 1192.139378][T16094] ubi31: background thread "ubi_bgt31d" started, PID 16094
[ 1195.638760][T16124] nbd: nbd5 already in use
[ 1195.901054][T16130] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[ 1196.253515][T16140] kvm: emulating exchange as write
[ 1197.053636][T16138] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2450'.
[ 1197.176076][T16151] netlink: 27 bytes leftover after parsing attributes in process `syz.5.2454'.
[ 1200.903333][T16177] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[ 1202.215310][T16193] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2466'.
[ 1202.317950][T16195] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2467'.
[ 1203.445349][T16210] netlink: 52 bytes leftover after parsing attributes in process `syz.5.2470'.
[ 1204.385194][T16213] bridge_slave_0: default FDB implementation only supports local addresses
[ 1204.460401][T16214] IPVS: set_ctl: invalid protocol: 22 224.0.0.2:20001
[ 1205.354094][T16227] No such timeout policy "syz1"
[ 1206.465195][T16235] No such timeout policy "syz1"
[ 1207.520685][T16250] xt_addrtype: ipv6 does not support BROADCAST matching
[ 1208.025145][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[ 1211.373936][T16289] ubi: mtd0 is already attached to ubi31
[ 1211.527633][T16290] IPVS: set_ctl: invalid protocol: 22 224.0.0.2:20001
[ 1212.209591][T16286] [U] ^E
[ 1212.854809][T16300] input: syz1 as /devices/virtual/input/input19
[ 1213.271355][T16310] bridge_slave_0: default FDB implementation only supports local addresses
[ 1214.287950][T16318] No such timeout policy "syz1"
[ 1214.835885][T16323] IPVS: set_ctl: invalid protocol: 22 224.0.0.2:20001
[ 1218.678134][T16348] ubi: mtd0 is already attached to ubi31
[ 1219.586534][T16357] xt_addrtype: ipv6 does not support BROADCAST matching
[ 1220.171633][T16366] bridge_slave_0: default FDB implementation only supports local addresses
[ 1221.506593][T16377] overlayfs: failed to resolve './file0': -2
[ 1222.373012][T16383] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[ 1223.417521][T16389] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2515'.
[ 1224.055102][T13307] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[ 1224.217499][T13307] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1224.250244][T13307] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1224.274977][T13307] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1224.325111][T13307] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1224.367616][T13307] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1224.398768][T16405] FAULT_INJECTION: forcing a failure.
[ 1224.398768][T16405] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1224.425340][T16405] CPU: 0 UID: 0 PID: 16405 Comm: syz.5.2520 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(full) 
[ 1224.425373][T16405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1224.425388][T16405] Call Trace:
[ 1224.425397][T16405]  <TASK>
[ 1224.425407][T16405]  dump_stack_lvl+0x189/0x250
[ 1224.425446][T16405]  ? __pfx____ratelimit+0x10/0x10
[ 1224.425480][T16405]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1224.425513][T16405]  ? __pfx__printk+0x10/0x10
[ 1224.425545][T16405]  ? __might_fault+0xb0/0x130
[ 1224.425585][T16405]  should_fail_ex+0x414/0x560
[ 1224.425619][T16405]  copy_fpstate_to_sigframe+0xa8d/0xce0
[ 1224.425652][T16405]  ? copy_fpstate_to_sigframe+0x181/0xce0
[ 1224.425686][T16405]  ? __pfx_copy_fpstate_to_sigframe+0x10/0x10
[ 1224.425710][T16405]  ? seqcount_lockdep_reader_access+0x15f/0x1c0
[ 1224.425739][T16405]  ? read_tsc+0x9/0x20
[ 1224.425762][T16405]  ? ktime_get+0x1cb/0x1f0
[ 1224.425789][T16405]  ? __lock_acquire+0xab9/0xd20
[ 1224.425826][T16405]  ? fpu__alloc_mathframe+0xad/0x130
[ 1224.425856][T16405]  get_sigframe+0x58d/0x7d0
[ 1224.425889][T16405]  ? __pfx_get_sigframe+0x10/0x10
[ 1224.425915][T16405]  ? irqentry_exit+0x74/0x90
[ 1224.425945][T16405]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1224.425984][T16405]  x64_setup_rt_frame+0x15c/0xd40
[ 1224.426015][T16405]  ? _raw_spin_unlock_irq+0x29/0x50
[ 1224.426047][T16405]  ? _raw_spin_unlock_irq+0x2e/0x50
[ 1224.426075][T16405]  ? get_signal+0x1122/0x1310
[ 1224.426115][T16405]  ? __pfx_x64_setup_rt_frame+0x10/0x10
[ 1224.426153][T16405]  arch_do_signal_or_restart+0x3dc/0x750
[ 1224.426181][T16405]  ? __fget_files+0x3a0/0x420
[ 1224.426215][T16405]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1224.426260][T16405]  ? exit_to_user_mode_loop+0x40/0x110
[ 1224.426293][T16405]  exit_to_user_mode_loop+0x75/0x110
[ 1224.426323][T16405]  do_syscall_64+0x2bd/0x3b0
[ 1224.426342][T16405]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1224.426373][T16405]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1224.426396][T16405]  ? clear_bhb_loop+0x60/0xb0
[ 1224.426423][T16405]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1224.426443][T16405] RIP: 0033:0x7f2f44f8d3df
[ 1224.426463][T16405] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 1224.426482][T16405] RSP: 002b:00007f2f45e10030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1224.426505][T16405] RAX: 0000000000000001 RBX: 0000000000000004 RCX: 00007f2f44f8d3df
[ 1224.426517][T16405] RDX: 0000000000000001 RSI: 00007f2f45e10090 RDI: 0000000000000004
[ 1224.426539][T16405] RBP: 00007f2f45e10090 R08: 0000000000000000 R09: 00007f2f45e0fdf7
[ 1224.426553][T16405] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 1224.426566][T16405] R13: 0000000000000000 R14: 00007f2f451b5fa0 R15: 00007ffe30ac9ae8
[ 1224.426599][T16405]  </TASK>
[ 1224.440188][T13307] usb 3-1: config 0 descriptor??
[ 1224.741721][T16409] No such timeout policy "syz1"
[ 1225.330762][T16420] overlayfs: failed to resolve './file0': -2
[ 1225.966764][T16423] netlink: 'syz.2.2519': attribute type 2 has an invalid length.
[ 1226.566403][T16421] IPVS: set_ctl: invalid protocol: 22 224.0.0.2:20001
[ 1227.052642][T13307] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[ 1228.112716][T13307] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[ 1228.176362][T16414] [U] ^E
[ 1228.260144][T13307] usb 3-1: USB disconnect, device number 26
[ 1230.430145][T16459] binder: 16458:16459 ioctl c018620b 200000000700 returned -14
[ 1230.749425][T16466] xt_addrtype: ipv6 does not support BROADCAST matching
[ 1231.045126][   T10] usb 1-1: new high-speed USB device number 42 using dummy_hcd
[ 1231.399637][   T10] usb 1-1: device descriptor read/64, error -71
[ 1231.705381][   T10] usb 1-1: new high-speed USB device number 43 using dummy_hcd
[ 1231.865745][   T10] usb 1-1: device descriptor read/64, error -71
[ 1232.080236][T16479] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2537'.
[ 1232.103337][   T10] usb usb1-port1: attempt power cycle
[ 1232.475140][   T10] usb 1-1: new high-speed USB device number 44 using dummy_hcd
[ 1232.518145][   T10] usb 1-1: device descriptor read/8, error -71
[ 1232.804672][   T10] usb 1-1: new high-speed USB device number 45 using dummy_hcd
[ 1233.143017][   T10] usb 1-1: device descriptor read/8, error -71
[ 1233.328005][   T10] usb usb1-port1: unable to enumerate USB device
[ 1233.418150][T16495] ubi: mtd0 is already attached to ubi31
[ 1234.195461][T16499] IPVS: set_ctl: invalid protocol: 22 224.0.0.2:20001
[ 1235.026603][T16509] fuse: blksize only supported for fuseblk
[ 1235.079428][T16511] 9pnet_fd: Insufficient options for proto=fd
[ 1236.952580][T16523] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[ 1237.005551][T16527] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[ 1242.535085][T13307] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[ 1242.685285][T13307] usb 2-1: Using ep0 maxpacket: 8
[ 1242.735829][T13307] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1242.798371][T13307] usb 2-1: config 0 has an invalid interface number: 104 but max is 0
[ 1242.825838][T13307] usb 2-1: config 0 has no interface number 0
[ 1242.838309][T13307] usb 2-1: config 0 interface 104 altsetting 129 endpoint 0x8 has invalid maxpacket 512, setting to 64
[ 1242.864923][T13307] usb 2-1: config 0 interface 104 has no altsetting 0
[ 1242.902461][T13307] usb 2-1: New USB device found, idVendor=2c7c, idProduct=0195, bcdDevice=2f.46
[ 1242.926163][T13307] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1242.940414][T13307] usb 2-1: Product: syz
[ 1242.956132][T13307] usb 2-1: Manufacturer: syz
[ 1242.960795][T13307] usb 2-1: SerialNumber: syz
[ 1242.983191][T13307] usb 2-1: config 0 descriptor??
[ 1243.335472][T13307] option 2-1:0.104: GSM modem (1-port) converter detected
[ 1243.565464][T13307] usb 2-1: USB disconnect, device number 25
[ 1243.660867][T13307] option 2-1:0.104: device disconnected
[ 1244.029117][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1244.038574][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1244.696117][T16574] IPVS: set_ctl: invalid protocol: 22 224.0.0.2:20001
[ 1244.896568][T16571] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2570'.
[ 1245.370436][T16578] [U] ^E
[ 1246.169691][T16591] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2575'.
[ 1248.490709][T16612] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2581'.
[ 1248.951929][T16629] IPVS: set_ctl: invalid protocol: 22 224.0.0.2:20001
[ 1250.332264][T16642] bridge_slave_0: default FDB implementation only supports local addresses
[ 1251.161341][T16646] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2590'.
[ 1256.585707][T16675] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2595'.
[ 1257.295968][T16697] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2602'.
[ 1257.678312][T16700] 9pnet_fd: Insufficient options for proto=fd
[ 1259.161376][T13303] usb 2-1: new full-speed USB device number 26 using dummy_hcd
[ 1260.078419][T16720] Cannot find add_set index 0 as target
[ 1260.177631][T13303] usb 2-1: not running at top speed; connect to a high speed hub
[ 1260.218077][T13303] usb 2-1: config 1 interface 0 altsetting 7 endpoint 0x82 has invalid maxpacket 512, setting to 64
[ 1260.242580][T13303] usb 2-1: config 1 interface 0 altsetting 7 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1260.260984][T13303] usb 2-1: config 1 interface 0 has no altsetting 0
[ 1260.270887][T13303] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1260.303659][T13303] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1260.344308][T13303] usb 2-1: Product: ј
[ 1260.363533][T13303] usb 2-1: Manufacturer: ࠧ
[ 1260.383331][T13303] usb 2-1: SerialNumber: А
[ 1260.421305][T16712] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1260.534787][T16724] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[ 1260.703289][T13303] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -22
[ 1260.756579][T13303] usb 2-1: USB disconnect, device number 26
[ 1261.630045][T16736] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2612'.
[ 1262.477024][T16750] bridge_slave_0: default FDB implementation only supports local addresses
[ 1263.408846][T16756] 9pnet_fd: Insufficient options for proto=fd
[ 1263.639219][T16759] ubi: mtd0 is already attached to ubi31
[ 1263.726834][T16762] overlayfs: failed to resolve './file0': -2
[ 1265.395707][T16770] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2619'.
[ 1266.590613][T16776] Cannot find add_set index 0 as target
[ 1268.401474][T16787] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2625'.
[ 1268.444034][T16777] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1268.547208][T16796] ubi: mtd0 is already attached to ubi31
[ 1269.534182][T16809] No such timeout policy "syz1"
[ 1270.254964][ T5828] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[ 1270.262799][T13307] usb 5-1: new full-speed USB device number 40 using dummy_hcd
[ 1270.279883][T16816] 9pnet_fd: Insufficient options for proto=fd
[ 1270.497880][ T5828] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1270.511538][ T5828] usb 2-1: New USB device found, idVendor=046d, idProduct=c50c, bcdDevice= 0.00
[ 1270.521539][ T5828] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1271.017515][T16823] xt_addrtype: ipv6 does not support BROADCAST matching
[ 1271.496717][T13307] usb 5-1: not running at top speed; connect to a high speed hub
[ 1271.517928][ T5828] usb 2-1: config 0 descriptor??
[ 1271.525642][T13307] usb 5-1: config 1 interface 0 altsetting 7 endpoint 0x82 has invalid maxpacket 512, setting to 64
[ 1271.921261][T13307] usb 5-1: config 1 interface 0 altsetting 7 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1272.004751][T13307] usb 5-1: config 1 interface 0 has no altsetting 0
[ 1272.057635][T13307] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1272.082598][T13307] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1272.346412][ T5828] logitech 0003:046D:C50C.0004: unbalanced delimiter at end of report description
[ 1272.355870][T13307] usb 5-1: Product: ј
[ 1272.361024][T13307] usb 5-1: Manufacturer: ࠧ
[ 1272.367191][ T5828] logitech 0003:046D:C50C.0004: parse failed
[ 1272.373336][ T5828] logitech 0003:046D:C50C.0004: probe with driver logitech failed with error -22
[ 1272.383225][T13307] usb 5-1: SerialNumber: А
[ 1272.391553][T13307] usb 5-1: can't set config #1, error -71
[ 1272.399997][T13307] usb 5-1: USB disconnect, device number 40
[ 1273.067922][ T5828] usb 2-1: USB disconnect, device number 27
[ 1273.375206][T16833] usb 1-1: new low-speed USB device number 46 using dummy_hcd
[ 1274.985602][T16837] ubi: mtd0 is already attached to ubi31
[ 1275.651991][T16838] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2636'.
[ 1275.719970][T16845] ubi: mtd0 is already attached to ubi31
[ 1277.376400][T16866] xt_addrtype: ipv6 does not support BROADCAST matching
[ 1277.376524][T16867] No such timeout policy "syz1"
[ 1277.769818][T16871] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2644'.
[ 1278.498081][T16875] 9pnet_fd: Insufficient options for proto=fd
[ 1279.545230][T16833] usb 5-1: new full-speed USB device number 41 using dummy_hcd
[ 1279.943114][T16833] usb 5-1: not running at top speed; connect to a high speed hub
[ 1279.969849][T16833] usb 5-1: config 1 interface 0 altsetting 7 endpoint 0x82 has invalid maxpacket 512, setting to 64
[ 1280.011531][T16833] usb 5-1: config 1 interface 0 altsetting 7 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1280.062806][T16833] usb 5-1: config 1 interface 0 has no altsetting 0
[ 1280.074231][T16833] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1280.095502][T16833] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1280.103566][T16833] usb 5-1: Product: ј
[ 1280.160286][T16833] usb 5-1: Manufacturer: ࠧ
[ 1280.208812][T16833] usb 5-1: SerialNumber: А
[ 1280.355920][T16876] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1280.764290][T16833] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -22
[ 1280.887808][T16833] usb 5-1: USB disconnect, device number 41
[ 1280.979516][T16907] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2655'.
[ 1281.262702][T16911] ubi: mtd0 is already attached to ubi31
[ 1281.750485][T16918] xt_addrtype: ipv6 does not support BROADCAST matching
[ 1282.638382][T16932] 9pnet_fd: Insufficient options for proto=fd
[ 1284.585735][T16953] xt_CT: No such helper "pptp"
[ 1285.019916][T16966] netlink: 64 bytes leftover after parsing attributes in process `syz.5.2668'.
[ 1285.726349][T16979] No such timeout policy "syz1"
[ 1288.676405][T16989] overlayfs: failed to resolve './file1': -2
[ 1289.962469][ T5828] kernel write not supported for file /input/event2 (pid: 5828 comm: kworker/1:3)
[ 1290.289604][T17047] tmpfs: Unknown parameter 'usrquota��@'
[ 1291.359004][T17074] netlink: 80 bytes leftover after parsing attributes in process `syz.0.2693'.
[ 1292.013212][T17055] [U] ^E
[ 1292.750508][T17086] ubi: mtd0 is already attached to ubi31
[ 1293.215147][T17085] FAULT_INJECTION: forcing a failure.
[ 1293.215147][T17085] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1293.275287][T17088] binder: BINDER_SET_CONTEXT_MGR already set
[ 1293.281342][T17088] binder: 17083:17088 ioctl 4018620d 200000000040 returned -16
[ 1293.290808][T17085] CPU: 0 UID: 0 PID: 17085 Comm: syz.1.2696 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(full) 
[ 1293.290839][T17085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1293.290854][T17085] Call Trace:
[ 1293.290863][T17085]  <TASK>
[ 1293.290874][T17085]  dump_stack_lvl+0x189/0x250
[ 1293.290913][T17085]  ? __pfx____ratelimit+0x10/0x10
[ 1293.290947][T17085]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1293.290981][T17085]  ? __pfx__printk+0x10/0x10
[ 1293.291004][T17085]  ? __might_fault+0xb0/0x130
[ 1293.291045][T17085]  should_fail_ex+0x414/0x560
[ 1293.291080][T17085]  _copy_from_user+0x2d/0xb0
[ 1293.291104][T17085]  kstrtouint_from_user+0xc4/0x170
[ 1293.291140][T17085]  ? __pfx_kstrtouint_from_user+0x10/0x10
[ 1293.291192][T17085]  proc_fail_nth_write+0x88/0x240
[ 1293.291224][T17085]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1293.291263][T17085]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1293.291297][T17085]  vfs_write+0x27e/0xa90
[ 1293.291333][T17085]  ? __pfx_vfs_write+0x10/0x10
[ 1293.291360][T17085]  ? __fget_files+0x2a/0x420
[ 1293.291396][T17085]  ? __fget_files+0x3a0/0x420
[ 1293.291423][T17085]  ? __fget_files+0x2a/0x420
[ 1293.291463][T17085]  ksys_write+0x145/0x250
[ 1293.291493][T17085]  ? __pfx_ksys_write+0x10/0x10
[ 1293.291515][T17085]  ? rcu_is_watching+0x15/0xb0
[ 1293.291553][T17085]  ? do_syscall_64+0xbe/0x3b0
[ 1293.291578][T17085]  do_syscall_64+0xfa/0x3b0
[ 1293.291600][T17085]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1293.291621][T17085]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[ 1293.291642][T17085]  ? clear_bhb_loop+0x60/0xb0
[ 1293.291669][T17085]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1293.291691][T17085] RIP: 0033:0x7f947038d3df
[ 1293.291718][T17085] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 1293.291738][T17085] RSP: 002b:00007f947126a030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1293.291761][T17085] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f947038d3df
[ 1293.291776][T17085] RDX: 0000000000000001 RSI: 00007f947126a0a0 RDI: 0000000000000004
[ 1293.291789][T17085] RBP: 00007f947126a090 R08: 0000000000000000 R09: 0000000000000000
[ 1293.291803][T17085] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 1293.291815][T17085] R13: 0000000000000000 R14: 00007f94705b5fa0 R15: 00007ffebaa2c1c8
[ 1293.291849][T17085]  </TASK>
[ 1294.265160][T17098] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2699'.
[ 1294.322822][   T30] kauditd_printk_skb: 31 callbacks suppressed
[ 1294.323262][   T30] audit: type=1326 audit(1749899558.915:1170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17093 comm="syz.0.2701" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fcd10f8e929 code=0x0
[ 1294.423350][T17100] netlink: 212376 bytes leftover after parsing attributes in process `syz.5.2699'.
[ 1295.825026][T17126] netlink: 80 bytes leftover after parsing attributes in process `syz.5.2705'.
[ 1296.636113][T17141] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2711'.
[ 1296.846112][T17102] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2700'.
[ 1296.908042][T17102] overlayfs: failed to resolve './file1': -2
[ 1297.510291][T17155] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2712'.
[ 1403.314810][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1403.321830][    C1] rcu: 	0-...!: (1 GPs behind) idle=fe6c/1/0x4000000000000000 softirq=88968/88978 fqs=0
[ 1403.332788][    C1] rcu: 	(detected by 1, t=10505 jiffies, g=71913, q=260 ncpus=2)
[ 1403.340570][    C1] Sending NMI from CPU 1 to CPUs 0:
[ 1403.340609][    C0] NMI backtrace for cpu 0
[ 1403.340626][    C0] CPU: 0 UID: 0 PID: 17164 Comm: syz.2.2714 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(full) 
[ 1403.340649][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1403.340661][    C0] RIP: 0010:debug_lockdep_rcu_enabled+0x0/0x40
[ 1403.340696][    C0] Code: 86 c9 24 f6 90 0f 0b 90 90 90 eb c4 cc cc cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <f3> 0f 1e fa 31 c0 83 3d 27 b7 40 04 00 74 1e 83 3d 4a e7 40 04 00
[ 1403.340713][    C0] RSP: 0018:ffffc90000007c68 EFLAGS: 00000046
[ 1403.340731][    C0] RAX: dffffc0000000000 RBX: ffff8880785a3328 RCX: 1ffff1100f0b4665
[ 1403.340745][    C0] RDX: 0000000000010000 RSI: 0000000000000001 RDI: 0000000000000000
[ 1403.340757][    C0] RBP: 0000000000000002 R08: 0000000000000003 R09: 0000000000000004
[ 1403.340768][    C0] R10: dffffc0000000000 R11: fffff52000000f7c R12: ffff8880785a3340
[ 1403.340782][    C0] R13: ffff8880785a3000 R14: dffffc0000000000 R15: ffff8880790f3400
[ 1403.340796][    C0] FS:  00007f9afb7e56c0(0000) GS:ffff888125c84000(0000) knlGS:0000000000000000
[ 1403.340812][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1403.340825][    C0] CR2: 00007fcd11d96d58 CR3: 0000000063986000 CR4: 00000000003526f0
[ 1403.340840][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1403.340851][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1403.340862][    C0] Call Trace:
[ 1403.340871][    C0]  <IRQ>
[ 1403.340878][    C0]  advance_sched+0x142/0xc90
[ 1403.340907][    C0]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 1403.340933][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1403.340963][    C0]  ? __pfx_advance_sched+0x10/0x10
[ 1403.340986][    C0]  __hrtimer_run_queues+0x529/0xc60
[ 1403.341024][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 1403.341049][    C0]  ? read_tsc+0x9/0x20
[ 1403.341076][    C0]  hrtimer_interrupt+0x45b/0xaa0
[ 1403.341118][    C0]  __sysvec_apic_timer_interrupt+0x108/0x410
[ 1403.341148][    C0]  sysvec_apic_timer_interrupt+0xa1/0xc0
[ 1403.341174][    C0]  </IRQ>
[ 1403.341180][    C0]  <TASK>
[ 1403.341187][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1403.341206][    C0] RIP: 0010:lock_acquire+0x175/0x360
[ 1403.341230][    C0] Code: 00 00 00 00 9c 8f 44 24 30 f7 44 24 30 00 02 00 00 0f 85 cd 00 00 00 f7 44 24 08 00 02 00 00 74 01 fb 65 48 8b 05 2b 9b fb 10 <48> 3b 44 24 58 0f 85 f2 00 00 00 48 83 c4 60 5b 41 5c 41 5d 41 5e
[ 1403.341246][    C0] RSP: 0018:ffffc90003deee70 EFLAGS: 00000206
[ 1403.341260][    C0] RAX: ded1cedfa553bb00 RBX: 0000000000000000 RCX: ded1cedfa553bb00
[ 1403.341273][    C0] RDX: 0000000000030000 RSI: ffffffff8db59cf2 RDI: ffffffff8be1b380
[ 1403.341286][    C0] RBP: ffffffff893e440f R08: ffffc90003deec90 R09: 0000000000000020
[ 1403.341299][    C0] R10: dffffc0000000000 R11: ffffffff819e9520 R12: 0000000000000000
[ 1403.341312][    C0] R13: ffff88814d1b5070 R14: 0000000000000001 R15: 0000000000000246
[ 1403.341326][    C0]  ? sk_common_release+0xbf/0x2e0
[ 1403.341344][    C0]  ? __pfx_hlock_conflict+0x10/0x10
[ 1403.341379][    C0]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 1403.341409][    C0]  ? sk_common_release+0xbf/0x2e0
[ 1403.341426][    C0]  _raw_write_lock_bh+0x36/0x50
[ 1403.341451][    C0]  ? sk_common_release+0xbf/0x2e0
[ 1403.341473][    C0]  sk_common_release+0xbf/0x2e0
[ 1403.341493][    C0]  inet_release+0x187/0x210
[ 1403.341523][    C0]  sock_release+0x82/0x150
[ 1403.341550][    C0]  wg_socket_init+0x830/0xa60
[ 1403.341578][    C0]  ? wg_socket_init+0x162/0xa60
[ 1403.341606][    C0]  ? __pfx_wg_socket_init+0x10/0x10
[ 1403.341646][    C0]  ? __pfx_wg_receive+0x10/0x10
[ 1403.341675][    C0]  ? __lock_acquire+0xab9/0xd20
[ 1403.341704][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1403.341734][    C0]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 1403.341760][    C0]  ? wg_set_device+0x736/0x1fe0
[ 1403.341784][    C0]  wg_set_device+0x7f8/0x1fe0
[ 1403.341811][    C0]  ? __pfx___nla_validate_parse+0x10/0x10
[ 1403.341839][    C0]  ? __pfx_wg_set_device+0x10/0x10
[ 1403.341892][    C0]  ? __nla_parse+0x40/0x60
[ 1403.341933][    C0]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[ 1403.341966][    C0]  genl_family_rcv_msg_doit+0x212/0x300
[ 1403.341997][    C0]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1403.342031][    C0]  ? bpf_lsm_capable+0x9/0x20
[ 1403.342058][    C0]  ? security_capable+0x7e/0x2e0
[ 1403.342088][    C0]  genl_rcv_msg+0x60e/0x790
[ 1403.342117][    C0]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1403.342141][    C0]  ? ref_tracker_free+0x63a/0x7d0
[ 1403.342164][    C0]  ? __pfx_wg_set_device+0x10/0x10
[ 1403.342184][    C0]  ? __pfx_ref_tracker_free+0x10/0x10
[ 1403.342213][    C0]  netlink_rcv_skb+0x208/0x470
[ 1403.342234][    C0]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1403.342260][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1403.342289][    C0]  ? down_read+0x1ad/0x2e0
[ 1403.342308][    C0]  genl_rcv+0x28/0x40
[ 1403.342331][    C0]  netlink_unicast+0x75b/0x8d0
[ 1403.342355][    C0]  netlink_sendmsg+0x805/0xb30
[ 1403.342382][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1403.342407][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1403.342428][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1403.342449][    C0]  __sock_sendmsg+0x219/0x270
[ 1403.342483][    C0]  ____sys_sendmsg+0x505/0x830
[ 1403.342509][    C0]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1403.342536][    C0]  ? import_iovec+0x74/0xa0
[ 1403.342555][    C0]  ___sys_sendmsg+0x21f/0x2a0
[ 1403.342578][    C0]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1403.342621][    C0]  ? __fget_files+0x2a/0x420
[ 1403.342644][    C0]  ? __fget_files+0x3a0/0x420
[ 1403.342673][    C0]  __x64_sys_sendmsg+0x19b/0x260
[ 1403.342697][    C0]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1403.342726][    C0]  ? rcu_is_watching+0x15/0xb0
[ 1403.342755][    C0]  ? do_syscall_64+0xbe/0x3b0
[ 1403.342773][    C0]  do_syscall_64+0xfa/0x3b0
[ 1403.342788][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1403.342814][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1403.342831][    C0]  ? clear_bhb_loop+0x60/0xb0
[ 1403.342851][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1403.342869][    C0] RIP: 0033:0x7f9afa98e929
[ 1403.342886][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1403.342901][    C0] RSP: 002b:00007f9afb7e5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1403.342918][    C0] RAX: ffffffffffffffda RBX: 00007f9afabb5fa0 RCX: 00007f9afa98e929
[ 1403.342931][    C0] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[ 1403.342942][    C0] RBP: 00007f9afaa10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1403.342953][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1403.342964][    C0] R13: 0000000000000000 R14: 00007f9afabb5fa0 R15: 00007ffdfd240de8
[ 1403.342994][    C0]  </TASK>
[ 1403.343597][    C1] rcu: rcu_preempt kthread starved for 10505 jiffies! g71913 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[ 1404.006532][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1404.016530][    C1] rcu: RCU grace-period kthread stack dump:
[ 1404.022442][    C1] task:rcu_preempt     state:R  running task     stack:27320 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00004000
[ 1404.035986][    C1] Call Trace:
[ 1404.039294][    C1]  <TASK>
[ 1404.042256][    C1]  __schedule+0x16a2/0x4cb0
[ 1404.046822][    C1]  ? do_raw_spin_unlock+0x122/0x240
[ 1404.052057][    C1]  ? schedule+0x165/0x360
[ 1404.056425][    C1]  ? __lock_acquire+0xab9/0xd20
[ 1404.061317][    C1]  ? __pfx___schedule+0x10/0x10
[ 1404.066244][    C1]  ? schedule+0x91/0x360
[ 1404.070529][    C1]  schedule+0x165/0x360
[ 1404.074742][    C1]  schedule_timeout+0x12b/0x270
[ 1404.079632][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[ 1404.085042][    C1]  ? __pfx_process_timeout+0x10/0x10
[ 1404.090380][    C1]  ? prepare_to_swait_event+0x341/0x380
[ 1404.095966][    C1]  rcu_gp_fqs_loop+0x301/0x1540
[ 1404.100863][    C1]  ? __pfx_rcu_gp_init+0x10/0x10
[ 1404.105839][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1404.111090][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[ 1404.116409][    C1]  ? _raw_spin_unlock_irq+0x2e/0x50
[ 1404.121660][    C1]  rcu_gp_kthread+0x99/0x390
[ 1404.126293][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1404.131527][    C1]  ? __kthread_parkme+0x7b/0x200
[ 1404.136506][    C1]  ? __kthread_parkme+0x1a1/0x200
[ 1404.141583][    C1]  kthread+0x70e/0x8a0
[ 1404.145691][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1404.150939][    C1]  ? __pfx_kthread+0x10/0x10
[ 1404.155563][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1404.160801][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1404.166037][    C1]  ? __pfx_kthread+0x10/0x10
[ 1404.170659][    C1]  ret_from_fork+0x3fc/0x770
[ 1404.175295][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[ 1404.180455][    C1]  ? __switch_to_asm+0x39/0x70
[ 1404.185247][    C1]  ? __switch_to_asm+0x33/0x70
[ 1404.190036][    C1]  ? __pfx_kthread+0x10/0x10
[ 1404.194663][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1404.199474][    C1]  </TASK>
[ 1404.202517][    C1] rcu: Stack dump where RCU GP kthread last ran:
[ 1404.208871][    C1] CPU: 1 UID: 0 PID: 17161 Comm: modprobe Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(full) 
[ 1404.220808][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1404.230905][    C1] RIP: 0010:smp_call_function_many_cond+0xf69/0x12d0
[ 1404.237651][    C1] Code: 00 45 8b 2f 44 89 ee 83 e6 01 31 ff e8 50 78 0b 00 41 83 e5 01 49 bd 00 00 00 00 00 fc ff df 75 07 e8 fb 73 0b 00 eb 37 f3 90 <43> 0f b6 04 2c 84 c0 75 10 41 f7 07 01 00 00 00 74 1e e8 e0 73 0b
[ 1404.257303][    C1] RSP: 0018:ffffc9000417f5a0 EFLAGS: 00000293
[ 1404.263416][    C1] RAX: ffffffff81b4da60 RBX: ffff8880b873c9c0 RCX: ffff888059369e00
[ 1404.271423][    C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 1404.279427][    C1] RBP: ffffc9000417f700 R08: ffffffff8f9fe5f7 R09: 1ffffffff1f3fcbe
[ 1404.287427][    C1] R10: dffffc0000000000 R11: fffffbfff1f3fcbf R12: 1ffff110170c868d
[ 1404.295432][    C1] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff8880b8643468
[ 1404.303435][    C1] FS:  0000000000000000(0000) GS:ffff888125d84000(0000) knlGS:0000000000000000
[ 1404.312389][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1404.319002][    C1] CR2: 00007fa449780e9c CR3: 000000000df38000 CR4: 00000000003526f0
[ 1404.327007][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1404.335001][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1404.343002][    C1] Call Trace:
[ 1404.346309][    C1]  <TASK>
[ 1404.349280][    C1]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[ 1404.355662][    C1]  ? __pfx_flush_tlb_func+0x10/0x10
[ 1404.360892][    C1]  ? rcu_is_watching+0x15/0xb0
[ 1404.365701][    C1]  ? __pfx_flush_tlb_func+0x10/0x10
[ 1404.370925][    C1]  on_each_cpu_cond_mask+0x3f/0x80
[ 1404.376079][    C1]  flush_tlb_mm_range+0x6b1/0x12c0
[ 1404.381229][    C1]  ? free_pgd_range+0x144b/0x14c0
[ 1404.386294][    C1]  ? __pfx_flush_tlb_mm_range+0x10/0x10
[ 1404.391885][    C1]  tlb_flush_mmu+0x1a7/0x680
[ 1404.396527][    C1]  tlb_finish_mmu+0xc3/0x1d0
[ 1404.401153][    C1]  ? free_pgd_range+0x144b/0x14c0
[ 1404.406222][    C1]  free_ldt_pgtables+0x17b/0x320
[ 1404.411204][    C1]  ? __pfx_free_ldt_pgtables+0x10/0x10
[ 1404.416721][    C1]  ? down_read+0x1ad/0x2e0
[ 1404.421173][    C1]  exit_mmap+0x17c/0xb50
[ 1404.425446][    C1]  ? uprobe_clear_state+0x20f/0x290
[ 1404.430683][    C1]  ? __pfx_exit_mmap+0x10/0x10
[ 1404.435477][    C1]  ? __mutex_unlock_slowpath+0x1cd/0x700
[ 1404.441164][    C1]  ? __pfx_exit_aio+0x10/0x10
[ 1404.445889][    C1]  ? uprobe_clear_state+0x274/0x290
[ 1404.451114][    C1]  ? mm_update_next_owner+0xa7/0x870
[ 1404.456454][    C1]  __mmput+0x118/0x420
[ 1404.460579][    C1]  exit_mm+0x1da/0x2c0
[ 1404.464686][    C1]  ? __pfx_exit_mm+0x10/0x10
[ 1404.469311][    C1]  ? hrtimer_try_to_cancel+0x3d9/0x420
[ 1404.474822][    C1]  ? rcu_is_watching+0x15/0xb0
[ 1404.479633][    C1]  do_exit+0x640/0x22e0
[ 1404.483844][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1404.489270][    C1]  ? __pfx_do_exit+0x10/0x10
[ 1404.493924][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1404.499170][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1404.504424][    C1]  do_group_exit+0x21c/0x2d0
[ 1404.509068][    C1]  __x64_sys_exit_group+0x3f/0x40
[ 1404.514136][    C1]  x64_sys_call+0x21ba/0x21c0
[ 1404.518863][    C1]  do_syscall_64+0xfa/0x3b0
[ 1404.523403][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1404.528655][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1404.534759][    C1]  ? clear_bhb_loop+0x60/0xb0
[ 1404.539487][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1404.545425][    C1] RIP: 0033:0x7fa4498df6c5
[ 1404.549879][    C1] Code: Unable to access opcode bytes at 0x7fa4498df69b.
[ 1404.556926][    C1] RSP: 002b:00007ffe8b9545c8 EFLAGS: 00000202 ORIG_RAX: 00000000000000e7
[ 1404.565373][    C1] RAX: ffffffffffffffda RBX: 00007fa4499e0fe8 RCX: 00007fa4498df6c5
[ 1404.573471][    C1] RDX: 00000000000000e7 RSI: ffffffffffffff88 RDI: 0000000000000001
[ 1404.581481][    C1] RBP: 0000000000000001 R08: 00007ffe8b954558 R09: 0000000000000000
[ 1404.589499][    C1] R10: 00007ffe8b9543f0 R11: 0000000000000202 R12: 0000000000000000
[ 1404.597501][    C1] R13: 0000000000000001 R14: 00007fa4499df680 R15: 00007fa4499e1000
[ 1404.605526][    C1]  </TASK>