last executing test programs:

13m17.130323938s ago: executing program 3 (id=9):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = dup(r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r2=>0x0})
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, 0x0, 0x0)
getsockopt$inet6_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000080))
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_ADD_KEY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)={0x14, r8, 0x607, 0x70bd2b, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x20004080}, 0x24044884)
syz_genetlink_get_family_id$netlbl_mgmt(0x0, r7)
sendmsg$NLBL_MGMT_C_ADDDEF(r7, 0x0, 0xa000000)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newlink={0x68, 0x10, 0x401, 0xfffffffc, 0x80, {0x0, 0x0, 0x0, 0x0, 0x1503}, [@IFLA_LINKINFO={0x40, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x30, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MACADDR_DATA={0x1c, 0x5, 0x0, 0x1, [{0xa, 0x4, @local}, {0xa, 0x4, @local}]}, @IFLA_MACVLAN_MACADDR_MODE={0x8, 0x3, 0x3}, @IFLA_MACVLAN_MODE={0x8, 0x1, 0x10}]}}}, @IFLA_LINK={0x8, 0x5, r2}]}, 0x68}, 0x1, 0x0, 0x0, 0x4001}, 0x0)

13m15.874326823s ago: executing program 3 (id=11):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x2)
ioperm(0x284, 0x7f, 0xe3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003340), 0x0, 0x44010)
r1 = io_uring_setup(0x2c48, 0x0)
mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x200000b)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r1, 0x18, 0x0, 0x1)
socket$inet6(0xa, 0x80001, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000080)={0x1fd, 0x0, 0xdddd1000, 0x1000, &(0x7f0000394000/0x1000)=nil})
userfaultfd(0x80001)
r3 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0301, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, &(0x7f0000001340))
openat$dsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = openat$ttyS3(0xffffff9c, &(0x7f00000001c0), 0x800, 0x0)
ioctl$TIOCSWINSZ(r4, 0x5414, 0x0)
write$dsp(r3, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f3", 0xf)
pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0x1ff, 0x7d, 0x0, 0x8000, 0x4, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
r5 = openat$sysfs(0xffffff9c, 0x0, 0x482000, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x2, 0x0, 0x111}}, 0x20)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
close_range(r6, 0xffffffffffffffff, 0x0)

13m14.22483019s ago: executing program 3 (id=12):
r0 = getpgrp(0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f00000002c0)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
lchown(&(0x7f00000000c0)='./file1\x00', 0xee01, 0x0)
fchownat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xee00, 0x0, 0x100)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(r5, 0xc0d05640, &(0x7f0000000440)={0x1, @pix_mp={0x10001, 0x0, 0x47425247}})
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
connect$inet6(r4, &(0x7f0000000340)={0xa, 0x5, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0xfffffffe}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r4, 0x11a, 0x1, 0x0, 0x0)

13m12.261217446s ago: executing program 3 (id=15):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
memfd_create(0x0, 0xde932a8e875be35)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="340000001900010027bd7000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB], 0x34}, 0x1, 0x0, 0x0, 0x801}, 0x4000000)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xa, 0x0, 0x0)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000080)={0x84, @local, 0x15, 0x3, 'sh\x00', 0x19, 0x5, 0x71}, 0x2c)
r5 = socket$kcm(0xa, 0x2, 0x0)
r6 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_ADDDEST(r6, 0x0, 0x487, &(0x7f0000000000)={{0x84, @private=0xa010102, 0x4e24, 0x3, 'lc\x00', 0x5, 0x8, 0x77}, {@remote, 0x4e20, 0x10000, 0xc, 0x2}}, 0x44)
sendmsg$sock(r5, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0)
sendmsg$sock(r5, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e23, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0xfffffffc}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)={0x20, 0x1a, 0x1, 0x0, 0x0, "", [@typed={0xa, 0x3ffc, 0x0, 0x0, @str=':*^${\x00'}, @nested={0x4, 0x1b}]}, 0x20}], 0x1}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, r8)
sendmsg$ETHTOOL_MSG_STRSET_GET(r8, 0x0, 0x4010000)
r9 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r9, &(0x7f0000000140)={0x1a, 0x207, 0x22, 0x9, 0x0, 0x0, @local}, 0x5e)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)

13m1.680800062s ago: executing program 3 (id=24):
r0 = getpgid(0x0)
syz_open_procfs(r0, &(0x7f0000000180)='setgroups\x00')
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0xd, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
mmap(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x0, 0x2172, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000001000/0x4000)=nil, 0x4000)
syz_kvm_setup_syzos_vm$x86(0xffffffffffffffff, &(0x7f0000001000/0x400000)=nil)
r5 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r5, 0x4010640d, 0x0)
ioctl$DRM_IOCTL_MODE_ATOMIC(r5, 0xc03864bc, &(0x7f0000000040)={0x0, 0x0, 0x0, &(0x7f00000003c0), 0x0, 0x0, 0x0, 0x8000000000009})
ioctl$DRM_IOCTL_MODESET_CTL(r5, 0x40086408, &(0x7f0000000140)={0x6, 0x9})
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r6=>0x0}, &(0x7f0000000080)=0x8)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f0000000440)={r6}, &(0x7f0000000100)=0x8)
socket$inet6_tcp(0xa, 0x1, 0x0)
close(0xffffffffffffffff)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f00000000c0)={0xb, 0x1, 0x4, 0x0, 0x7})
syz_io_uring_setup(0x234, &(0x7f0000000580)={0x0, 0x95f5, 0x10100, 0x0, 0x89}, 0x0, 0x0)
capset(&(0x7f0000000080)={0x20080522}, &(0x7f00000000c0)={0x200000, 0x200000})

12m59.49801713s ago: executing program 3 (id=26):
r0 = syz_open_dev$media(&(0x7f0000000000), 0x33ac98ac, 0x0)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000080)={0x50, 0x0, 0x0, {0x7, 0x29, 0x100009, 0xffffffffc2c4adcc, 0x0, 0x4, 0x0, 0x2000004, 0x0, 0x0, 0x4}}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$ndb(&(0x7f00000000c0), 0x0, 0x0)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$nfc_llcp(r1, &(0x7f0000000080)={0x27, 0x0, 0x0, 0x7, 0x0, 0x6, "750538d1ee602ec4802a04ea7cdcd151bb2cd9893bc31f80718336d9bd3517076db9ad1f6a120d8be6d7f81cd81ec275000386e7d95f0669b740a5418d69d0", 0x10000000000001}, 0x60)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r2 = syz_open_dev$sg(&(0x7f00000001c0), 0x9, 0x4e0900)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000540)={0x53, 0xffffffffffffffff, 0x0, 0x7, @buffer={0x0, 0xf5, &(0x7f0000000240)=""/245}, 0x0, &(0x7f0000000480)=""/116, 0x7fffffff, 0x10020, 0x3, &(0x7f0000000500)})
r3 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r3, &(0x7f0000002700)=""/102392, 0x18ff8)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0xb4)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x60}}, 0x0)
r5 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MIF(r5, 0x29, 0xca, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x20000000}, 0xc)
setsockopt$MRT6_ADD_MIF(r5, 0x29, 0xca, &(0x7f0000000100)={0x0, 0x1, 0x2}, 0xc)
sendmsg(r1, &(0x7f0000000440)={&(0x7f0000000000)=@in6={0xa, 0x4e21, 0x6, @local, 0xe}, 0x80, &(0x7f0000000200)=[{0x0}, {0x0}, {&(0x7f0000000700)="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", 0x7c9}, {0x0}], 0x4, &(0x7f0000001700)=ANY=[@ANYBLOB], 0x1b0}, 0x8004)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r0, 0x80047c05, &(0x7f0000000940)=<r6=>0xffffffffffffffff)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r6, 0x7c81, 0x0)

12m44.031149895s ago: executing program 32 (id=26):
r0 = syz_open_dev$media(&(0x7f0000000000), 0x33ac98ac, 0x0)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000080)={0x50, 0x0, 0x0, {0x7, 0x29, 0x100009, 0xffffffffc2c4adcc, 0x0, 0x4, 0x0, 0x2000004, 0x0, 0x0, 0x4}}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$ndb(&(0x7f00000000c0), 0x0, 0x0)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$nfc_llcp(r1, &(0x7f0000000080)={0x27, 0x0, 0x0, 0x7, 0x0, 0x6, "750538d1ee602ec4802a04ea7cdcd151bb2cd9893bc31f80718336d9bd3517076db9ad1f6a120d8be6d7f81cd81ec275000386e7d95f0669b740a5418d69d0", 0x10000000000001}, 0x60)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r2 = syz_open_dev$sg(&(0x7f00000001c0), 0x9, 0x4e0900)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000540)={0x53, 0xffffffffffffffff, 0x0, 0x7, @buffer={0x0, 0xf5, &(0x7f0000000240)=""/245}, 0x0, &(0x7f0000000480)=""/116, 0x7fffffff, 0x10020, 0x3, &(0x7f0000000500)})
r3 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r3, &(0x7f0000002700)=""/102392, 0x18ff8)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0xb4)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x60}}, 0x0)
r5 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MIF(r5, 0x29, 0xca, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x20000000}, 0xc)
setsockopt$MRT6_ADD_MIF(r5, 0x29, 0xca, &(0x7f0000000100)={0x0, 0x1, 0x2}, 0xc)
sendmsg(r1, &(0x7f0000000440)={&(0x7f0000000000)=@in6={0xa, 0x4e21, 0x6, @local, 0xe}, 0x80, &(0x7f0000000200)=[{0x0}, {0x0}, {&(0x7f0000000700)="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", 0x7c9}, {0x0}], 0x4, &(0x7f0000001700)=ANY=[@ANYBLOB], 0x1b0}, 0x8004)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r0, 0x80047c05, &(0x7f0000000940)=<r6=>0xffffffffffffffff)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r6, 0x7c81, 0x0)

8m46.405865982s ago: executing program 4 (id=488):
sendmsg$nl_route_sched_retired(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000140)=@delchain={0x444, 0x65, 0x8, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0x77ed4e20d97fdfc1, 0xe}, {0xc, 0xffff}, {0x3, 0x5}}, [@f_rsvp6={{0xa}, {0x414, 0x2, [@TCA_RSVP_POLICE={0x410, 0x5, [@TCA_POLICE_AVRATE={0x8, 0x4, 0xf959}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x6, 0x2, 0x2, 0x3f4, 0x4, 0x0, 0x1, 0x3ff, 0xbc, 0xfffffffb, 0x3, 0x8, 0x8, 0x2, 0xab, 0x5, 0x4, 0x3, 0xffffff68, 0x7, 0x3, 0x1, 0x5, 0x5, 0x6, 0xe, 0x3ff, 0x30, 0x6, 0x2, 0xfffffff4, 0x6, 0xfe, 0x80000000, 0x1, 0xfffffffc, 0x5, 0x15, 0xc, 0x0, 0x1, 0x5, 0x8000, 0x38, 0x4, 0x5, 0x9, 0x7402, 0x8, 0xf9b2, 0x0, 0x9, 0x2, 0x6, 0x101, 0x3, 0x80, 0x8, 0x7fff, 0x9, 0x1, 0xffffffff, 0x835d, 0x8, 0x401, 0x5, 0x8, 0x3, 0xede6, 0x5, 0x4, 0x130, 0x2, 0xffffffff, 0x7, 0x2, 0x3, 0x1, 0x1, 0xffff, 0x3, 0x5, 0x7, 0xf8b, 0xf, 0x9, 0x7, 0x4, 0xffffffff, 0x800, 0x8, 0x40, 0xd, 0x1, 0x4d392012, 0x7, 0x1, 0x6, 0x9, 0xc, 0x8, 0x7, 0x10, 0x1, 0x2904ddff, 0x6, 0x6a50, 0x80000001, 0x9, 0x8001, 0x3, 0x4, 0x1ff, 0x2, 0x0, 0x0, 0x1, 0x7, 0x6, 0x6, 0x2, 0x8, 0x5, 0x3ff, 0x8, 0x7ff2, 0x101, 0x4, 0x8001, 0x2, 0x7f, 0x7, 0xbc8, 0x4, 0x5, 0x918c, 0x100, 0x9, 0x9, 0xdc, 0x4, 0x5, 0x5fdb, 0xfc00, 0x0, 0x70, 0x8a1, 0x4, 0xb, 0x6, 0x3, 0x8, 0x0, 0x2, 0x7ff, 0xfffffffc, 0x0, 0x8, 0xc70, 0x4, 0x0, 0x9, 0x9, 0x5, 0x7, 0x3, 0x2, 0x8, 0x7, 0x400, 0x7fffffff, 0xfffffff5, 0x87ae, 0xfffffff9, 0x2, 0x161, 0x8, 0xf42, 0xfff, 0x4, 0x4, 0x200, 0x6, 0x4, 0x5ad, 0x7f, 0x2, 0x3, 0x5, 0x26880df1, 0x6, 0x6, 0x7, 0x6, 0x8, 0x6, 0x0, 0x7, 0x4, 0x9, 0x2, 0xf, 0xcc, 0x0, 0x6, 0xc976, 0x3, 0x3, 0x0, 0xd, 0x2, 0x2, 0x0, 0x101, 0x7, 0x58, 0x5, 0xfffffff8, 0x7, 0x4, 0x2, 0x9, 0x1, 0x8, 0x3, 0x0, 0x3ff, 0x6, 0x9, 0x1, 0x582b, 0xffffff05, 0x3, 0x80000001, 0xb4d, 0x9, 0x9, 0x2, 0x3, 0xa, 0xd, 0x30, 0x8, 0x0, 0x7, 0x1, 0x4, 0x8, 0xe, 0x131, 0x3ff, 0x6, 0x2, 0x7, 0x8000, 0x7]}]}]}}]}, 0x444}, 0x1, 0x0, 0x0, 0x800}, 0x841)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f00000000c0)={0x1f, 0x3}, 0x6)
write$bt_hci(r0, &(0x7f0000000240)=ANY=[], 0x25)

8m45.93699216s ago: executing program 4 (id=490):
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x42, 0x80)
syz_open_dev$vim2m(0x0, 0x0, 0x2)
syz_open_dev$vbi(&(0x7f0000002100), 0x1, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sched_setaffinity(0x0, 0xfffffffffffffe02, &(0x7f00000002c0)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x4040000)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000000000)='./file0\x00', 0x2000898, &(0x7f00000003c0), 0x1, 0x55ae, &(0x7f000000abc0)="$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")
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_dev$dri(0x0, 0x1, 0x0)
acct(&(0x7f0000000180)='./file1\x00')
acct(0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x181c42, 0x56)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000300)='./file0\x00', 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="61636c2c757365725f78617474722c6e6f61636c2c63616368655f73747261746567793d64697361626c65642c6e6f757365725f78617474722c6e6f61636c2c00d4a87b439fa421753f060fe37a330d2dfca47c4e52e78d71fc65b972e2bb306bb4a29b1fe3019842462c5fee84a2e6eb90d57b8725e3a2eff0b0b471dac5c01bee53cd8d"], 0xfe, 0x177, &(0x7f0000000680)="$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")

8m44.524787103s ago: executing program 4 (id=493):
syz_mount_image$bfs(&(0x7f0000000040), &(0x7f0000000000)='./bus\x00', 0x98, &(0x7f00000004c0)=ANY=[], 0xff, 0xa4, &(0x7f00000000c0)="$eJzs0b+pAkEQB+C5e/C4A9EC7OFq0CKswBKMBEEsyFYswdTIwNTkZHFFuGDBQFH4Ptg/P4ZdBuZw3U9jHNFvI/q/eOiT1XoXJf/FKr+gzmeThj655/M8YhYRVaqn7bJZHvMaPF80xd9Hb+sbAAB4XTXIdXTdM53afGk/2RMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAN7kFAAD//z7jFwY=")
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x101442, 0x0)
pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
write$sequencer(r0, &(0x7f0000000040)=[@s={0x5, @SEQ_MIDIPUTC=0xc5, 0x16, 0xcd}], 0x4)

8m42.733330999s ago: executing program 4 (id=495):
syz_mount_image$nilfs2(&(0x7f0000000a40), &(0x7f0000000a80)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00a717cf64394a00dc299b573660f498c4d99aac48af10923f703f53e58070c2bf4575228d0e471df7101ac03b8d48a1b0fc276e395f25b63e9a27cd2ab98888989eec154d97b4dbcf"], 0x1, 0xa09, &(0x7f0000001540)="$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")
truncate(&(0x7f0000001c40)='./file1\x00', 0xe4a0)
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
sendfile(r0, r0, 0x0, 0x800000009)

8m42.413497518s ago: executing program 4 (id=496):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x2008042, &(0x7f00000000c0), 0x1, 0x571, &(0x7f0000000780)="$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")
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000000100)=ANY=[@ANYBLOB="02000000010000000000000302000000", @ANYRES32=0x0, @ANYBLOB="0400000000000000100000000000000020"], 0x2c, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x20080, 0x51)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8})

8m42.017257231s ago: executing program 4 (id=500):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000780)={[{@iocharset={'iocharset', 0x3d, 'cp850'}}, {@fmask={'fmask', 0x3d, 0xa0}}, {@errors_remount}, {@iocharset={'iocharset', 0x3d, 'cp936'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-14'}}, {@dmask}, {@gid}, {@dmask={'dmask', 0x3d, 0x1}}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'iso8859-2'}}]}, 0x1, 0x152f, &(0x7f0000000880)="$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")
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x3000004, 0x3032, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804071, 0x0, 0x0, 0x0, &(0x7f0000000140))
rename(&(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

8m26.497569309s ago: executing program 33 (id=500):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000780)={[{@iocharset={'iocharset', 0x3d, 'cp850'}}, {@fmask={'fmask', 0x3d, 0xa0}}, {@errors_remount}, {@iocharset={'iocharset', 0x3d, 'cp936'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-14'}}, {@dmask}, {@gid}, {@dmask={'dmask', 0x3d, 0x1}}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'iso8859-2'}}]}, 0x1, 0x152f, &(0x7f0000000880)="$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")
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x3000004, 0x3032, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804071, 0x0, 0x0, 0x0, &(0x7f0000000140))
rename(&(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

3m14.380439289s ago: executing program 5 (id=1497):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000406c256d0000000200000109022400010000000009040000010300000009210000000122050009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x22, 0x5, {[@local=@item_4={0x3, 0x2, 0x2, "19fde941"}]}}, 0x0}, 0x0)
syz_usb_control_io(r0, &(0x7f0000000480)={0x2c, 0x0, &(0x7f0000000240)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x3445}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000004c0)={0x24, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="000312"], 0x0, 0x0}, 0x0)
r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x802)
ioctl$EVIOCSKEYCODE(r1, 0x40084504, &(0x7f0000000080)=[0x132a, 0xf0])

3m10.517348798s ago: executing program 5 (id=1510):
pipe(&(0x7f0000000300)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f00000001c0)=0x7ff, 0x4)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x8000002, 0x2000}, 0x1c)
sendto$inet6(r1, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f0000000080)="44f9b108b1cdc885c9c533d21f474bec8bfef1df1e2da71e578dc6b91d09f7ab15378571d8e27546090000006e75436914ab717528ee4b7a9beaf908d11137c11903064e83b4951f4d433a5404970c85d92d7083fd38844cbb0c6c5eb508ddc2dc7a590aa7941b1e9eeb5a688138dea09b776cbfa784cbf550bf3074fb0d775da4df5a3f48bbdf452eeb6b923da9d0e25b80f76a873664b5753444fe05f33e5f91045540836c3cd6af10f0cd018f0c6f57f926ac959a5628c45088fbe0c87fbe6cbcda4662d2a12f6d00"/215, 0xd0d0c2ac, 0x1, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x406f413, 0x0)

3m8.654593738s ago: executing program 5 (id=1517):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000004300)="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", 0x2000, &(0x7f00000011c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)={0x90, 0x0, 0x3, {0x3, 0x4000000000, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000006300)="c4acef607b9ddcfd235a03c6db2c1419c3332fd94e60bb741ab4a8750cdb46d41965ca8c176409eae88e4d142adc35d20aeb6cee87b470c46a623ffd2c7b92b7b2026c8a2d3a08f7c376bba66ea2fd6bd26a5903aab1fd5f08c5c80a017bd0a1f16e11ed288e1f71fd8f904cd60c2bad8ba59003a9216f171640535484f6706eda84c4a11c63565004ac33cb6040901b5f14b2406a1ddc7ca78fa91f3d575ec92c1c73d56c7d02de887a84a9b88c9b70f0bf2141e1f624e8222a9a63ba199362c8bff33780e6c79435460ada699e037ee7894aeecf7d3b089fa428a18edfe239134a244f69ecda10834e06e1466d95effc76211b61514522c429e80691780744f5e470e417559879fd7c7cdbde84361bb2491dc53a481b3bb5c071926f0c57af8745b52e6b07b053daad9e52a29869f3bee8c9ff43b2e9c20a26035ac89169b7058ee967b44365648f510555c701188079c745776f55748c32867df6e4e78890a32f126197f55113ce4e8c5397224ab6fb9124bdb0050fdb92a42237292668a7aa615216e39f78210b2774f0849a79fd446bdf2ec38d7c61e5384ca5ca6c040522d42102515d86c7743a8f384bf18efffb69d0ad0abb7c48fc8f770152226d05363ea26a7aabb3450905bf28dbc5fadbebe2ea45a4d82e2bcc574bcfd3e3164ee9ce2eb86cf356bd2822699a21dde91d2117e3647d926db9c7bece2484bd81a972c293226a1cbe15f233822fdfd042d6b6515b49f9f1d585b1f0fb596e50eea60ea3f4cc8808b576a1de2c7111df3cef7b090e5b5db7f616d5bc83428b4f55f97e87e43b3360c5099455193584fd94568890e87224bfc9b117d0172d85a176dd2c6828c0144b5398e7354d5923f8014bc3d30860c153696cc776c3982fdef7641bc61d3b21baf0f76adfb94d135ff87393174fd9ca5363e2834a24a06c16522bffb0f60d69cc8440d8a0dfbb47c7d8d6707cd7cbb34fbc8f8d3c4490b31b92806e0d56f83b2a2c7ad88ddb4d0e7dcff8aac6414b8be9c2c9855d5a441f4b34d55fb08306a8fa2832d70023ab0f63ff75629c0e98d64870fd4cd242a6f27fa6163994ec50e18071f5344c6786b01f2d7268930375188e04e0408c973d4872330b96aa88db2fc1860accbccb65f771ced5305891c44ac410541ac980ba50f419503aa058774737c77965db9ec9af213e516fa0a2468d788289337c5babad8c418a3af875ffc8bc39c62e94acf6b1bcbd28274a2e62092f87095958c8bc657ba788907902746872a6441966c9663198d1b54ce5c660ed0b7cfa1d6d3a81de7d16fd017d7f041c30b7f334889feca18596cbf344286563dd59b7c65697c4a3cf587c0682de6fc105628bdd1990dcb3fed18e1192ca07fe4a05be1efbc4057476257a59fcdd24eb040acef0f94ededf984978413ede4793255c0e6b24a5ee1713692149849e60f65c10e437db0a8e97807ea27f0a42f60b5ec86e85ab4eb9a81e2463b00afe7d20cbd30ee600b57202434e1fed80ef2cb45eec5362178b9e490dc0b8a45e10feb8a08138778364a2983a113b671e04d60ab4f18f383300228631cab01302c20c624c8e74bdb6ac3a7cf062f8db96416ff19e42ebb72aed1b46a063cbcb1b16b76abfa628e885cad99ca26b23929ed4602b5e897b019da855b58691503d3021f9c1b314105037a2be7e73d49f8ee9f0a3c3e6e2cec44cb6258d1862c3341b053db1b67640ec14afbbbca41b1b500ee3a0c22a712a02a1b2bfbaaa62ed542fceecc1ee426f9ed748d8656ceab891a9d5a8784ee78e18159abaf531c44829374b4814176534af4adfedb5efead99e214f52b0b2eb9e217c6bbda92a01edb0d5037e2038d8a0fb61f95c377817cf2af1568a66e395596c4045d4be3619adcf70879827dd90c45386c39b0248832254b2f7e646289ecd0aba2a56213e504bcf536ee6567baa25db9fbab142b4a333441778db9b672ccf0154f3f5adaffbf9a36472713077a90fa7828fe58c157593235de0617b7a13c0f269401bceb6f3a5c3eb151c97f3d8ef579f665777f4d801f0df77ae72433c488dabe2504ac0fd0e9703e9b960fcac1063704268e24a40890d627e0f6c38c0cf99b4d11436642dab9452834b13686e8b90cc07e4588c60aed21b90bcf73de85fddd85926557c6aec3510adf2d82f411b16b8013c408cfcb88d519daf256dce2c8a460e82bd0e6bf05c7d901157123dc9b8b1581fbb7bb8127f7adc01c926f6f79bbf666dd35df271cb0816418e71b18653bb1f246d07af5becaeb81abd83ebfce8f874daaf6b6acca7f313ed43570dd6a81548c2d7a0e1cf56124a7a441fe92fd12a5963cf6718543d429499a76f7613cfb7c7f638fbcee879929126cf1cca0c263320d8f34dcd1af2345b9801fcb38b44570bd855dff15ac3c7c11fd18982102258c1ec8941a4eb04b2ecdafa01b8f9fe39e65e40adb8d9a5d972da57a3e7643a518b890845160ca42419e8ce1261a855638e6db7a188c04a68b2afaa9de470283922bd6beadc9ddff314516f0c4e39977f97d79a291bf9d626b471d8bbfe0668cdde8f54a24f31d3928e4e659caebb403902cb27d829bbff401e533bc93d406b6a7113c91d680d424d679df00b9694cfe497cbdabd16841aa1b08e9076ffca9bed761455324fd89338f6cc3223b79a46c8e52aca9a4408edf745c3a02ff52e5314d2f2ecd88d91a45a906bb21dbfe490ca8691dce636424694cdfb7c3cc9e354148b852c52a99d59012bb80360e11d92e9ce2220776f21cce91ba2c1a0c9bd456fad2c17a62bc1ae32ae189b7baf5eafdd0903a02d74e8027c8e884127d0b94ef12e940e3ca65b3d174ba25201b28fe6ca36189e7ed93a6985859463e2d35411957e5c24aa474bac60844aa2828c3c0f8e9199b143ebcd7d56a28794ab54dce479cfe2989838b3fcbfdf146e85cc6176ab35c0da942b5d9351a2fb87266b4870124e38305583bd0e838b31bcaa54ce0c724fc99f2acc3b28d2095fdbd96b736d290bed4745a94b94c89489bed29116839d2ab6a152eadd2a30e71c3a014f41e1554ba238358ba1867e089dd6def8aee0ac338e6da5eb0d0c815c5991a9155ba3f73859eecf57024b5dd65c6d2ec31c9e7339f98ddbad954b121be83cef5cca1606c47e8e8a431615e0d75eface7772d28e3185cdf87581d3f8adf33784aa80880940d86ab881b22b971535f7b83a9f7015e86790dc2520eecf3d1abf1c0dd8c207a22a656b98cb6ec51d8791166d18ab1d6ed43c16050b136d7f55d42492af94d07b1adb562ef07f6a309d884ca55316cbd810905171dd8c6f9a36b855e907b302343d06f0a0d081ad3a710ee9cfc1abfe8005dab815cd26c13236cfa01a7c072e30bab37cc7ab2f3d23796c2a1202f30500a516633e8072483a6d44bdd8fae4622c7e58f083bd70b97f4db8e9bd907be321737b61f18ae1a4d14366131e641851bffdabd5b22e5b731f4c65283ee5403bc31317045372a4fbec67d26df95e0a14888f2bdcb440cd42de4e0bf389a393fc318e18d393310d5aa3778df0fdca87a5801e5e5b891adb64646011f7693b4b0e9b1cbfa1fbc847f9939271c19b8fb4fc9b15b9397a7e221987417ba13a9fc2902ac3a1d58d65b58968df285ad3b3875949857a67d7b33dc1861bd18383428c9ed41c474f3f316c0df272c55806f4454460e64c37adaff5d712ec376ae5d0d1e91bd3bbdf2a0a5507429d53e13de0562a5ba4b02103c12dab0bd4b85bdd290b98c7e1fd9f494501d2c4b824c007f67bc2e8993d4f163b40515da8f2111f4fa519230713844d170f12b4077324312da2ca1c51c8fe1fff0d6dd68eeebae22ad6681a5f277711db0064d3fa25d09cac0e4b280b58c150e73b3885ab3964837cfc34cb29e215bade71b45e19505b356bf8de9f69c4a3741ab016f77a55869edd76bb33edc34a68959c37bdf60926530d3284688aeb17a347251d5501c034dd3902eef528f167cfc5913d02c430d76b50a6860eb84ee5eca2458ce862ad9fcda642b8df177defe8abacebb4bda07c040b4ccd773fd5c9026ac98243ea2a00f8760a2dacf1c371589b7e32f2d2094543a7d87414813f54ab98cf738ed3b3c1f9e9fdc4fe97bab52d172fad00dff94b0b72fa87b2a3372c8fc9af326f4d05ca131dc254d378eaaf2da3aada8815fedc18d252d95629f7b455cfc54983c2f042e5dd2c22d0f70addcc45c03fa3a52e0937e9590722cedcef23401824dd3f2537d28fb10ff13f6e9641c23075a5ca68125e67df28b3231a65d32a97f00117020debb14e19511acbb52e56be81595d8e74eab72e36b8dfc37678c309bb84221e480c9348f6977f8e3f8a47421184276eba93e84e8b7e2105a5a89c08708c0eb8ba7bfe4dd715278be217fafde8047652ab69544bc2d63d72060ac40f104bc5b509b7501ae7ea36e0d19149645d15b5abc68fad73a542662b3df07ab506746d7343e405370238b657cdb960223752b62e86758143474a78ff92696ad8b5c9d2637c8d9810cfa4faf2765efcd7a1a435a60bbf5962223b1fb0975e227abdc7bf80e3adeabc6ead120922beabd707e6d7a42e233c0788c680190e9ffaf0cc145c010c33438121e8206e25342413dddd02ff2c2e4e5299a82e8e85d181148e1e98db886103810230c6a8687de33c4cf7753c333b8d7b6b6b1a18eab53cc395104818709fc11f4995e057d4517828dcb5a9f3baf41ade7101ef40df27c680c8bcbe8bf2368f1d19b46036bf8419516789dc69ee2573ddec41d9ca00fcc710f5635afcf088e0107fb09a87db9ca6fccd0655ec0816ead48371d64e8318b767b95ed6ea89ff919c68cd33cdfa0381b8b7caa545de948b8c46bb879c4470feed0a990056fb2db739225fc768e83d15568d73694e6888da65870e79c4f5e1287f1a8cce359f82c9860e13ff900833dc556d8fd005c38a855ed1efec66b4ba8d1e65db9a999e172101062081354625cea8f1ac0da70d7f2dca34c4204dfdefe456822ae2cd1349f1a2251292ddbb287c5b9ca41c75f45bb4ddd82c277afd37422cc00fe8b7221168b04b6275f8e530757c673b3f515059f8c8421872d07a156a9d061bdbe0c549a52acfb0708682a2573c259225d0e95a16b8d13dcec60ae91c09537e8bea549f748d2e060d8ef856bb496a53f1cee7a7b716c95e7310ff9fa56180f0259df99b5fe06c030015d9cb5bc9ece0cd907d724e1d1a89d3d875970bf144c58260c0dde163a26d4769b33f6de7f181ecabc050797a105fd1ce73ac4d26a153297305b8a3c150beee4b563f468694cf3895c44df56fc8753e3c8182e8e3c9da0314eac9c288978847b92015ddc5711c09210e1f5a684b7f1f149fb0fe8471c30f8a35a58ffc6e2fb797acf9c686fbb8d1ee8d6dac14de44c22a3cdda239235c24ff23de17228aeb354939a80e4a1397b316da5e18f077cc7b8497df214290c33c4b8593db1ab1638698059f29477a091b070f139b3fd2fe3ff55803b6e65abe6dae32eddb18e898e63743ed256801c8bbbf26e21bdff9491ef743341a5159b36b616ea9c700aca9b6486278c7811729e3df91147ad0e25c44e03c9f4b2385aa6cbfc70d8f68d17ac0925d8fe8737b212f708633bacda57b3848667a4f624a4c7edd33a060f82aabe6ac6a19a81a2cf6403189f08d2632260d72630da6ffe46ab9c19456e95e3cfc423940023ba0ad6f1fe2a8755509441e248b291e02e85f7173054ec6597cc712e80751b4078bf8db1177130f0b170be8f3ac79d579e012caed707156f3ba28ddd5ca5d18320fc9f361e88aa93de9127752ea04c7c77425ad30522dfb5f1f10f802c1a9668812ee9e6b4acab25e10dfd2b18387e9f6ac725cd72f5100b6c15265dcfa1dd45f538b76346209e6cab4441013e36e861ae677e980ddd08e9366426f410428b9b0828c9805bcbb667209191e79305ecc15ce9cf30aa829373e4a8152e2c68294dc71b6ab7b551addc661a5a040ca7b79993cf1060c8410fac1e9d3b209319f22c4bab53b1a6585ebb72a579dbce64b107b280b529439cde9d1fa29333ce63dbfd693e0b2fb3633e37304e70fd5b8d04bf47f6630cfdfbf8ad9f7778c88d7ca9705f4694b1d3355c8406adc99e15bb39fdaa8df214e1730b6d05bd5f93349ecbf5b0db04a5fb1bd66c5bc30671a564d46fbfceacc074bb14c31d471593172ffe28c39912ece3f718864ab9e300ca172a7ebfad6fe28a0ef5aafcd3f966a5d7d4d6ff164434b649cfe149505159018d8c00e82afaf7657402109549f7a5a4c8c7dd02d7d2b005a3be97f0a32bdf3d8e449fb4146c9e38a509781246d9fb67ed087148fd8b8fa1abcc5771148c0483aca397b36302459ae43f6f5aff98bd784b8a1e19a05acc632672bdabb32f2aa4d66ba731d6e219d880f4ceb63d30ee61e5e13919352ee32254d48bab3566e13788689e35c3e4c71c244c34b457fa8a23248b9be6fa195a055137a587e73afd4ee521af95040e72851d3b6c06a15c3464c755cba079f1f53d807bedd0382e36c975793bf3f78690cf408a7c502b872a05a5988e6a96b0aaeb0c0075576f295e55a9002caecab04331d06cb042cbe87375e557933e3d5e8763baffb71bab63343e432f62e82bc51b4bcbb8fb93c72dbe0ee310bd0d776109700007d0a1bcbf1655e1354f2f5dbae7d2d569b099003347f9c3f6c5ceadfb113ae3daea860f61e233e68c63386ecafe74c1a7386c97725bb650f298c06ad648662940daa3abf0c6f460bd2875984858a97c1fa921d2a73f6d207163cffb573dd59ef815605824d3e44eb74e22e865c975b5d8b923b063934960d62fa9907baa28c9f0a24f1e5bf731eabe1f6b076ae19b150d5632b307de0741116d5af8c5b4dae3c8ae01808d1a9925cf185c55a335820c1d8b80736bec9a9562d269ff273a040d77babad128d2b71a64d084dd93be96e3b99ffcc037a6db0f296f63438c83789e54635e0c69fe3ebfd3022130523ffa6f2805747b4e97c2fa38e04decd1b037123814be9a38d322d342d07baa37d5b484c32517b74fc636441a08d8424aaeeefb6bb47a8c010d6f1442a6632e808520308ec7ce7f7607ba18cd8b897ca3814834b2f088cde073d93261dac3bb624bcc6839d6249b51a58fcc4db00058484e0c5814004c5da1d4cda1c025883c999fd2ef171a5c3a438cc0fccff03bae681775421d49ddbfb4f74ffcf88992abd6168e58295b91e7cbd442bbf8d7cfb5d3ce080dc2b90961edbca462e843343d129e45cfa28eeb426eeef08a5ee84d7b48c59a6687b8c0f7549375033398a65eb6336e40423c12a55b5bf732a65bcaae27a91fde89318727cd769c0cbece6371b611a0b40a6b14aa40ceb5848b738c13258fb0765cf83c62a2081d3c363cd7d48da0f0b19e884045c44e78bb61bd673c4522e1c50a2a944115a57f4670b8c388858c7f4babae8052ff86f2b6b780e3b1b5e4302fe7aa7321b3a45ae98ba5a74e87ef4cf13046c7b67bff56f9ff6f4224c4d24bd438eb92e3a1a786c50b6d1dbb302b237618ad008fa5aba8c4778ec3735dc483adc99d19ce1c87634d5ff86f06acece91c7a79e1400b6b483285c8e478f43c3fdf22ccf792aec034ffd47e60080e7d4a27b6e48bb0a15aed15d6b84e9b6af83d4de502d70026533db7c881d0b344ce7b732fbb69348aadf44b22dd3921f8eefd5ef2914a7eac8d36b5420163258fc2be1d34bbf49ef5c4c7ad6a09c7292690f569621bfba1c4d9e484acd7d92f58b79bde01dd6ba98f4cad801e902bff0e81ae787c595969187b58ed9bf68b0aeaec069b64f6facbf7f0a4a8a5d3fc401c0e1ac3bef9bafa512e36d5c8d8b135f1a05368255c15b1c976ae93c9c99288fecf018505eed0f089aec2a9ca7b198a0a89671f095092d2a9e7fb90dde3bf586a2f168f2a8329118d04bffb6adabd53f87df50275981c9fd5d69020c8e9750287e5119c1cf347d1c3e4adba1d598446b4c0a479a5475859383e8c82bfe4c6b8560ad55e27f3323d857efcad4b5ee4d83b4dd74458414d2a9ce74ffda8042038caba0098bcfd6b2e2bda9afcc4c5890f38773726aa94791642ff492f8d11c736f397c080d63e2dd24baa37aff0ae46d9c77c5097f84d6e5a90c554436cfa5311e4f31e2386c2c4b04cf44fd118b4eee2326cd1f0a48efeb4c51fbe0f395694b2b40aca9fccfc1eb84283fd53671955b251bcc2253ed3a3fbb906b2b25944fbe6c5b226b05052fec7c9e6b2d4c0a1ae1029ff70900d4634954f025a345731a76ebcfc4e61499d91b888292e6c59a16c34e4d96ac23dbad628988fcb777c4e9c6348389decbce8c9c03420c01bd670280ce1d4d641d2d4b9c3c11ade9d196f8e49290094ed55382b09f0cf0397ffcd9006e38980ee0b3882e7d93e33643c1ed2429cbefba0e1720f69a20024aff6070acd25a3d68b129e3d7699641d20c5b93e8d4b784669e3a22727d687ff1dadfd19c5b44dcf776561eecf2d28c01e683f49b1c204ba45aadf5d84bdde7d2cd53dad97d060664ddefff75f5e413f72be41d6e7c13fcbc481eefdab31fbc500109c8c24756227ff5bb18b148d0a31576d2e427c43472624312a7568d5ad9b5f9a2274549e5180288dbc0c7e046766c174fca0aca1d867fce966bf4d1097efe62ae23c925ac387b368345999a92cd1d44055e178430fad19cbf8b53756df5584503d848e13ab90c338c2aa8346e2b499e5790926cbe359dc30a3d5336293c4990832e998c2901fae3df81ad4f1ec6fd17baf25fa25fa08bb71345a1fec99299e4ee962dab091c16138fe01d5403230fd896b0992a2474fe38e5a7ff15b372e2a7a4a0ff34defe1fba14bfb6f56630aaef274b57fd0999bf77aa79f743e29c60b7d5d1774ffa9591286f809ea6c0dcc1520f5766851e0f9233b4a2e1329e93e043837510f5ef85676590b0540aa7b2b5211d7d38fbc45e2fe3d7993c6bec4ba2205a40819f8a3ef2e71af85162e39f0f859ed446947bc8516eb527c496244488f8663dee31973d91c7be81b746cde97294cbf94e09d155354af76ecac1d968038ed961843350524dbfd6ff46e4e0991aed94c144a403a5be126279a6469f9b7854b839933163c83672275491445ccc81bcabf91a6851101593bdfa0930e1058c972e7e41ad390cc4666575ce29fa80095eceb4cbb035e7e7e5a02be4606004e176db167fb67889912b8381e311c39d4378a088328f3e2cd4733dc55fc2e5a0afa7c928b98f95187a7200d8f78a2619df22a4f9fb433fb4a3a848651abfa90adc22c3bc29c1c386c0bc168c0c7873719f3cd76c49c77a5624a288022ebc89998c94f3bad87cd8bcd58502c38b0ff7ed312614f65ca1ea2f999fdcf2432e49b56c635f78514d9be0a5416e2b1ca8aa1b6f6c15d4ba022e5486afb79935d7021eea7b5d8e41a52b514af162a8b79a65efded6720126b9a5b3965f672d8da1bd9692bc14da0b29bc052e9ad22a59edbd0cb3c71fc304b0b8e296cdde1b259ac35a2e30e0741ec6a1cc4699d956959cfdfe4a91f6460271a70ba883f1b8eb3c1f52c60c361696056a411b74104960528caaa338066d823eec164c9c69d7b80c4d0c2ec7a739155c913810b3f5eb147e89e3b8699a29ca192f20cf8db8a1d7c01cbffdceb9d1a5045f55c8328966b91ee2b8e373d35ce74d35c1bea66316a2c0ea561844dcd6a027c6991038623ef894ed3489b4e04ab7e116973380fff9066eac58a406f78c4656367b57081f7b99030b0b087cbac6fd705d2d135ae4505ebb3c8b5ff3e226c9aa8896ba16600ba3dc89b73f07f9968a05045b34218a9f14a3e507103916f3a0b1f8989ab057b8907041cc1c31905b6e87f10e74e4c196c17e31450419040df59bee49aa554f9661f38435effa292f7ef01cd6173e08a3186f04018c23f37b7953c3f5ca7f83389ccbd539405ace7abb99aa29537eedb79000ee04fe5b72999ee606238874f0fa1b14d8cfc9d9c0c1a1666ca7ccceaefe1cf583157ae6e7dbd70425f487340386cbd141261ecc838482daec473b685e6ec71a23c42fbe89521360d6c6ed42284627655d2eceb9cd0f65df549b0c4efec101dd359ddb53dc99d94df991093459f7842c878b7b49fff2cf850bd924a06d3a3a420ee82dcb39e487c0f61de92ae6f0c8d12cdcc7365f2bee4300ac3842188ec82c76164c33c1d11362c1d9e136e516ae0b91172e252f73958be0913777a29be7da26ae2f7ba9e2a80a67974fe30fde3f6b9aa0b21aedbe0f23f074f962ee846d64116eb14d886ad4aa4166c779e6bf3e7d5ee3d7ff2519351f07595531ac10da596268f65434d9a4779fd8c326a847a44d0ca1cb1d1e764a56c99df167901695de6f07ffa94edf874233b340a524449b19f4cda7712cea4c7e0fcd7879edeec3ea24073354e31989ed1c08bb4bb1bec053c4c6fd352b0c91007623635619e05375728bf575f2e26bf617644f0239123f8ac1ed06767ca7b3096ec91ec1d530b7a0ec855a341ba4f72fdbd40cae0727581dfaf25b00282131bc82b5c44d4089b0b3274520a40c0053b5dd10e59a811023b660ffcb2d7e79b32af9f55ae030eb845a64361d25b175cacb07389957f23c9ff3e52e2bea41a75305377af233336d9a7bf7f9939441b76898b9aa8a596e9261f71c5176aae31270d80576885119fa6324856f1ceef3c6cb2db8a10aadea3c801c267e9987afa360958514bc85bc69c6d59211bbcf2b1312399f74f340fdf10a19145f0129d9cccfa4194bf148493db3a01b81f19aeca63e1074d94cfbb289ba9823646201ce9eb234167086a90241bfaf57c3216fcfcaf39824ff97545135f42c443b65b6369349d89de333fd015507c3a03cd3ee5253abd8fef6fe2248a002f9c70a51ddb89e7fe476163c6b1cce417be229b0e5533b81088370f7ec9468ee0de1f6feedb371dfa850ea5fe35c83ee58533c52a7c758c7adbb0329b3d7b4180be6df7f1d1881fad5a52cd807922d7eaddb13fa65cec8684a2321a4d923fc3fc657bf2ff3c02ffa6845f2eda3e736bed70e6984387cf77531b2e6ac6d67c706f43bb3944b618851abbff019ad48d116a7ca56fa436a58adc82dd5f8cc63fcd56076442ca88e3b3702ad99d6e2c46a561b87c5ac8a94ad77100be0c5d80887ba1283f38017b421c6456ac90bf90c8ce31d011ab997db7215520dda972ff1a78fcc5122e140e51a20bd361566276ae614643344e5b395bed67d8bde8957429c6ffb9147ad00d99ed2baa6766feb100c8b2601fa5f34f6428b9cec3262ee29dd220642df5fdcf2e43cf72ce7c710cce7de6099d76bf0d01f68f60d9fec99f69c0db0465ab3cf4e7a623676dac5fee48f55059140139bc210b1d5a9b2dae02eea4b799f36142286ff85ebffe76ee562d3af670c78633cf314e4d8792a8c6eb40bed1fd7d99603b22f216e260cc7dd59eb226b2a59d946c02b5458e358470be9e8c4fcd5f6403bebbd5de5421f082b39fd77cd590ad96d5ff7d3f1ac38f244742662726cfe70909d04867c869332ded36bac3f819fe173dd7f", 0x2000, &(0x7f0000000380)={&(0x7f0000000080)={0x50, 0xffffffffffffffda, 0x0, {0x7, 0x28, 0x0, 0x10000000, 0x0, 0x0, 0x3, 0xffffffff}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000e00)={0x50, 0x0, r1, {0x7, 0x28, 0x2, 0xc0000, 0xffff, 0x5, 0x0, 0x8000}}, 0x50)
unlink(&(0x7f0000000100)='./file0/file0\x00')

3m8.254299241s ago: executing program 5 (id=1520):
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x2000414, &(0x7f0000000040)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYRES16=0x0, @ANYRES16, @ANYRES16, @ANYRES8], 0x1, 0x2a1, &(0x7f0000000540)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x2020)

3m7.865274705s ago: executing program 5 (id=1521):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x1000001, &(0x7f0000000400))
chdir(&(0x7f0000000700)='./file1\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000840), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r2, 0xc0189378, &(0x7f0000000140)={{0x1, 0x1, 0x18, r1, {r0}}, './file0\x00'})

3m7.469275958s ago: executing program 5 (id=1525):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000180)="420fc7bc4898580000640f01c50f01c566baf80cb864c95782ef66bafc0cec67670f1b0166b8fb008ec046d9c3c442b90a2c81c442812852fcc744240012000000c74424020b000000ff1c24", 0x4c}], 0x1, 0x0, 0x0, 0x0)
getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x80, &(0x7f0000000000)=""/4102, &(0x7f00000010c0)=0x1006)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000005c0)={[0x10009, 0x8, 0x4, 0x4000000080000e52, 0xfffffffffffffffe, 0x1, 0x1043, 0x200000000006, 0x4, 0x5, 0x1, 0x100000000, 0x800000000000001, 0x40000000008, 0x8000000000005, 0x800040066], 0x0, 0x40110})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

3m7.019116914s ago: executing program 34 (id=1525):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000180)="420fc7bc4898580000640f01c50f01c566baf80cb864c95782ef66bafc0cec67670f1b0166b8fb008ec046d9c3c442b90a2c81c442812852fcc744240012000000c74424020b000000ff1c24", 0x4c}], 0x1, 0x0, 0x0, 0x0)
getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x80, &(0x7f0000000000)=""/4102, &(0x7f00000010c0)=0x1006)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000005c0)={[0x10009, 0x8, 0x4, 0x4000000080000e52, 0xfffffffffffffffe, 0x1, 0x1043, 0x200000000006, 0x4, 0x5, 0x1, 0x100000000, 0x800000000000001, 0x40000000008, 0x8000000000005, 0x800040066], 0x0, 0x40110})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

2m55.700931283s ago: executing program 2 (id=1579):
socket$inet6_tcp(0xa, 0x1, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_pressure(r0, &(0x7f0000000040)='cpu.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r1, &(0x7f0000000080)={'some', 0x20, 0x2000000005, 0x20, 0x10000000fffff}, 0x2f)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_pressure(r2, &(0x7f0000000040)='memory.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r3, &(0x7f0000000080)={'some', 0x20, 0x2000000005, 0x20, 0x10000000fffff}, 0x2f)

2m55.345882105s ago: executing program 2 (id=1584):
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x1fc, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{0x4, 0x200, 0x8, 0x4f, 0x81, 0x7, 0xc0, 0x1, 0x7f, 0x6, 0x5f, 0x4, 0x3}, {0x8, 0xaff3, 0x0, 0x8, 0x8, 0xff, 0x8, 0x3, 0xfd, 0x53, 0x1, 0x6, 0xffffffffffffffff}, {0x0, 0x7, 0x0, 0x0, 0x25, 0xf, 0x0, 0xfb, 0x4, 0x15, 0x9a, 0x1, 0x40000000000002}], 0x9})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000180)={[0x0, 0x7fc, 0x800, 0x3, 0x3, 0xffffffffffffffff, 0x4002004c0, 0x1000, 0x3, 0xffd, 0x10, 0x3, 0x0, 0x1, 0x4, 0x800000001], 0xffff1000, 0x4010})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

2m54.953281078s ago: executing program 2 (id=1586):
r0 = syz_usb_connect(0x0, 0x1cb, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000122f0d4071040403dfe4000000010902b901010000003f0904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$rtl8150(r0, 0x0, &(0x7f0000000380)={0x2c, &(0x7f0000000140)={0x40, 0x12}, 0x0, 0x0, 0x0, 0x0})

2m52.809093134s ago: executing program 2 (id=1598):
syz_mount_image$udf(&(0x7f00000004c0), &(0x7f0000000a40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000c40)=ANY=[@ANYBLOB='noadinicb,partition=00000000000000000005,noadinicb,mode=00000000000000000003324,gid=', @ANYRESDEC=0x0, @ANYBLOB="2c766f6c756d653d303030303030303030303030302c0000000000000000501cb5d7c12e5184d12ef849f01234cc0632d887ab83b9a499f253a549724d60457bb58a75adb74f3af03ad3ce885b137f28e47a314f31f232c3a9f530c68d8ba34bf01945e243cbc23403afab131b58d3a2aa64136e0a7c462f6b7050c665746acc89d02bf21ece3866519a7826f4e18fda118954b3c6e9738bfb06d6c52c8d07"], 0x1, 0x489, &(0x7f0000000580)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x2020)

2m52.2095522s ago: executing program 2 (id=1602):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
creat(&(0x7f0000000580)='./file0\x00', 0x0)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x10400}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x20, 0x0, 0x88}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
close(r0)

2m51.460846034s ago: executing program 2 (id=1608):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x8, 0x4}}]}}]}, 0x48}}, 0x20040084)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=@newqdisc={0x8c, 0x28, 0x4ee4e6a52ff56541, 0x4003, 0xfffffe00, {0x0, 0x0, 0x0, r3, {0x7}, {0xffff}, {0x1, 0xffe1}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0xe, [0x4, 0x5, 0x0, 0xf, 0x1, 0x2, 0x4, 0x2, 0xf, 0x6, 0x6, 0x1, 0xb, 0x4, 0x10, 0x8], 0x3, [0xb, 0xa05, 0x7fff, 0x2002, 0x1, 0x4, 0x2, 0xd06, 0xff05, 0x8000, 0xb, 0x3, 0x5, 0x2, 0x5, 0x100], [0x2, 0x5, 0x2, 0xfff5, 0x4, 0x8, 0x7, 0x9, 0x8000, 0x2, 0xc, 0x40, 0x200, 0x3, 0x1, 0x1]}}]}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)

2m50.789238324s ago: executing program 35 (id=1608):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x8, 0x4}}]}}]}, 0x48}}, 0x20040084)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=@newqdisc={0x8c, 0x28, 0x4ee4e6a52ff56541, 0x4003, 0xfffffe00, {0x0, 0x0, 0x0, r3, {0x7}, {0xffff}, {0x1, 0xffe1}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0xe, [0x4, 0x5, 0x0, 0xf, 0x1, 0x2, 0x4, 0x2, 0xf, 0x6, 0x6, 0x1, 0xb, 0x4, 0x10, 0x8], 0x3, [0xb, 0xa05, 0x7fff, 0x2002, 0x1, 0x4, 0x2, 0xd06, 0xff05, 0x8000, 0xb, 0x3, 0x5, 0x2, 0x5, 0x100], [0x2, 0x5, 0x2, 0xfff5, 0x4, 0x8, 0x7, 0x9, 0x8000, 0x2, 0xc, 0x40, 0x200, 0x3, 0x1, 0x1]}}]}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)

9.845347148s ago: executing program 0 (id=2400):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x8, 0x4}}]}}]}, 0x48}}, 0x20040084)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x49, &(0x7f0000000540)={&(0x7f00000008c0)=@newqdisc={0x8c, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r4, {0xffff}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x4, [0xc, 0x5, 0x0, 0xf, 0x10, 0x2, 0x4, 0x2, 0xf, 0x6, 0x3, 0x7, 0x8, 0x4, 0x10, 0x4], 0x3, [0xb, 0x3, 0xad1e, 0x2002, 0x1, 0x4, 0x2, 0xd06, 0xff05, 0x2, 0xb, 0x3, 0x5, 0x6, 0xd, 0x100], [0xfff1, 0x5, 0xffff, 0xfff5, 0x4, 0x8, 0x1, 0x9, 0x5, 0x2, 0xc, 0x40, 0xfffc, 0x3, 0x1]}}]}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=@newqdisc={0x8c, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r7, {0x4}, {0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x4, [0xc, 0x9, 0x0, 0xf, 0x10, 0x2, 0x4, 0x2, 0xf, 0x6, 0x6, 0x1, 0x8, 0x1, 0x10, 0x4], 0x3, [0xb, 0x101, 0x7fff, 0x2002, 0x1, 0x4, 0x2, 0xd06, 0xff05, 0x2, 0xb, 0x3, 0x5, 0x6, 0xd, 0x100], [0xfff1, 0x5, 0xffff, 0xfff5, 0x4, 0x8, 0x7, 0x9, 0x401, 0x2, 0xc, 0x40, 0xfffc, 0x3, 0x1]}}]}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
sendmsg$nl_route_sched(r8, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x400dc}, 0x0)

9.845092548s ago: executing program 6 (id=2401):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = fsopen(&(0x7f0000000040)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000000)='name', &(0x7f00000000c0)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f00000003c0)='name', &(0x7f0000000400)='})\x00', 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000001340)={0x11, @multicast2, 0xffff, 0x0, 'wrr\x00'}, 0x2c)

9.761798863s ago: executing program 7 (id=2402):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$sock_SIOCGSKNS(0xffffffffffffffff, 0x894c, 0x0)
setxattr$system_posix_acl(0x0, 0x0, &(0x7f0000000140), 0x24, 0x0)
r3 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r3, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(r3, 0x40946400, &(0x7f00000000c0)={'pcm3724\x00', [0x5c22, 0x2f, 0x1, 0x0, 0x2, 0x8000007, 0xc, 0x7, 0x9, 0xfe, 0x4, 0x1, 0x3, 0x403, 0x6, 0xc, 0xb, 0x1a449, 0x3, 0x41000006, 0x89, 0x7fff, 0xb29, 0x5, 0x7fff, 0x8, 0x5, 0x8, 0x1, 0xffff]})

8.671340907s ago: executing program 6 (id=2404):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000100)={0xa, 0x0, 0xfffffffc, @dev={0xfe, 0x80, '\x00', 0x3}, 0x3}, 0x1c)
sendmsg$inet6(r0, &(0x7f0000001280)={&(0x7f0000000000)={0xa, 0x4e23, 0x2, @private0, 0x6}, 0x1c, &(0x7f00000000c0)=[{&(0x7f0000000140)='X', 0x1}], 0x1}, 0x80)
shutdown(r0, 0x1)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000080)={0x0, 0x1, 0x0, 0x8, 0x2, 0x819}, 0x14)
ioctl$FAT_IOCTL_SET_ATTRIBUTES(r0, 0x40047211, &(0x7f0000000640)=0x8)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240))
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/246, &(0x7f00000000c0)=""/87, 0x0, 0x100000})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0x73, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)

8.601397751s ago: executing program 7 (id=2405):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xc, 0xf}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x80000000, 0x8, 0x2}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x48801}, 0x20008850)
sendmsg$nl_route_sched(r1, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@newtfilter={0x30, 0x2c, 0xd27, 0x70bd28, 0xfffff000, {0x0, 0x0, 0x0, r3, {0xf000, 0xd}, {}, {0xffe0, 0xfff3}}, [@filter_kind_options=@f_fw={{0x7}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x200c8080)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, r7, {0x4, 0xa}, {}, {0xfff2, 0x2}}, [@filter_kind_options=@f_basic={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x8848}, 0x80)
r8 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=@newqdisc={0x6c, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r9, {0x5}, {}, {0x2, 0xfff1}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x3c, 0x2, [@TCA_GRED_PARMS={0x38, 0x1, {0x80000001, 0x3, 0x8, 0xb, 0x9, 0x0, 0x183, 0x5, 0x6402, 0x1, 0x11, 0x9, 0x1a, 0x3, 0xd0b, 0x38f4}}]}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40098}, 0x4000000)

8.561900594s ago: executing program 0 (id=2406):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
syz_usb_connect(0x2, 0x24, &(0x7f0000000080)={{0x12, 0x1, 0x110, 0x6, 0x9b, 0x84, 0x40, 0x5f9, 0xffff, 0xf0f4, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x9, 0x2, 0x20, 0x7, [{{0x9, 0x4, 0x51, 0x7, 0x0, 0x58, 0x7c, 0x69, 0x7}}]}}]}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000009c0000000b"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000010000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000ac03000000000000850000003300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r0}, &(0x7f0000000080), &(0x7f0000000280)=r1}, 0x20)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r1, r3, 0x25, 0x0, @val=@netfilter={0x0, 0x0, 0x6}}, 0x20)
syz_emit_ethernet(0x7a, &(0x7f0000000580)=ANY=[], 0x0)

8.549173255s ago: executing program 6 (id=2407):
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, 0x0, 0x20048804)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffd71, 0xffffffffffffffff}, 0x78)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sysvipc/msg\x00', 0x0, 0x0)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000300)='veth0_to_bridge\x00', 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000001800)={@link_local, @random="50a245d5cde0", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @broadcast}, @address_reply}}}}, 0x0)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000003140)='./bus\x00', 0x1008002, &(0x7f0000000400)={[{@grpquota}, {@delalloc}, {@resuid}, {@errors_remount}, {@dioread_nolock}, {@nojournal_checksum}, {@lazytime}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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")
rename(&(0x7f00000003c0)='./file1\x00', 0x0)
symlink(&(0x7f0000000900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
ioctl$EVIOCGPROP(r2, 0x40047438, &(0x7f0000000180)=""/246)
writev(r2, &(0x7f0000000440)=[{&(0x7f0000000280)="c021", 0x1700}], 0x1)
syz_read_part_table(0x4068, &(0x7f000000c180)="$eJzszzFK9EAUB/B/sl8+owQWQStBXOwldla5RXrZM1irmJtYigfwRJZeIcLq6i6oWIio/H7FzJt58+bNhF+ifomKJHfz2+0kB7MMbfuU/LfMb74WtceptuoyTZKz1dvKxdjffM/bAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAH6Jeicu1zMW7J+d7Gc67nDRJvTtNriapuv0iO8ns6I0ek+Q+SZHkIUk//eI/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB/1OnaauN5/r/caD4ovT7M0FWL8DLJOI7jp9vWSf/I7hwMAAAAMBDyVxnlGO5fBK1eAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4OzAgQAAAAAAkP9rI1RVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVhBw5kAAAAAIT5W+fRfgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4KQAA///A2xLf")

7.459256679s ago: executing program 1 (id=2408):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = socket$unix(0x1, 0x1, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xb}, {0xffff, 0xffff}, {0x0, 0xe}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x100, 0x3, 0x6361, 0x5, 0xfffffffd, 0x40000004}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000001}, 0x20000804)
sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x80000, {0x0, 0x0, 0x0, r6, {}, {0xd, 0xb}, {0xffe0, 0xd}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x14, 0x2, @TCA_ETF_PARMS={0x10, 0x1, {0x9, 0xb, 0x4}}}}]}, 0x40}}, 0x4010004)
ioctl$SIOCSIFHWADDR(r1, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

7.458946049s ago: executing program 7 (id=2409):
prlimit64(0x0, 0xe, &(0x7f0000000300)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
getpid()
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './cgroup.cpu/cpuset.cpus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
open(0x0, 0x1a1342, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x11, 0xa8}, [@ldst={0x6, 0x3}], {0x95, 0x0, 0xc00}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48)
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, 0x0, 0x0)
bpf$BPF_PROG_ATTACH(0x8, 0x0, 0x0)

6.405795601s ago: executing program 7 (id=2410):
openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000100)={0x2710, 0x1, 0xf000, 0x2000, &(0x7f0000a9e000/0x2000)=nil})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, &(0x7f0000000480)={&(0x7f0000000000)=@ipv6_newnexthop={0x1c, 0x68, 0x1, 0x2, 0x25dfdbfe, {0x2}, [@NHA_FDB={0x4}]}, 0x1c}}, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x6, @mcast2={0xff, 0x3}}, 0x1c)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]})
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0xa00, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x82, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0xe42, 0x9, 0xfffffffffffffffb, 0x5, 0x10000, 0x3, 0x4002004c2, 0x100000007ff, 0x1, 0x0, 0x10000000000400, 0x80, 0x8b, 0x0, 0x8, 0x8b], 0x58000, 0x240046})
setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

6.404259711s ago: executing program 0 (id=2411):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_MCE_KILL(0x35, 0x0, 0x8)
prctl$PR_GET_SPECULATION_CTRL(0x35, 0x0, 0x2)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x200000, 0x0, 0xff, 0x0, 0x3ff, 0x72}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x7, 0x4, 0x100, 0x3fe, 0x28}, 0x50)

6.319743386s ago: executing program 1 (id=2412):
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x808}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1500000000"], 0x0}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x10, 0x4, 0x8, 0x2}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0xd, 0x4, 0x4, 0xc, 0x0, r3}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8a00fe00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

6.238531271s ago: executing program 6 (id=2413):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000032680)=""/102392, 0x18ff8)
r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x140, 0x0)
ioctl$RTC_AIE_ON(r4, 0x7001)
ioctl$sock_inet6_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, 0x0)

6.101399079s ago: executing program 7 (id=2414):
listen(0xffffffffffffffff, 0x8)
sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000001640)={&(0x7f00000001c0)=@in6={0xa, 0x4e22, 0x4, @private2, 0x7fd}, 0x1c, &(0x7f0000000280), 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800"], 0x18}, 0x280400d5)
getpid()
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r0, 0x5)
accept(r0, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0x2, 0x4e23, 0x0, @dev}, 0x1c)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00'})
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendto$inet6(r3, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
unshare(0x6a040000)

4.536554641s ago: executing program 0 (id=2415):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$inet6(0xa, 0x2, 0x0)
r2 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000a40)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x0)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000027c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r6, {0x0, 0xd}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8, 0x1, {0x2, 0xb}}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r7)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
sendmmsg$inet(r1, &(0x7f0000004580)=[{{&(0x7f0000000140)={0x2, 0x4e22, @remote}, 0x10, 0x0, 0x0, &(0x7f00000002c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r6, @empty, @dev={0xac, 0x14, 0x14, 0x35}}}}], 0x20}}], 0x1, 0x20000000)

4.253591828s ago: executing program 1 (id=2416):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYRES8=r0, @ANYRES32, @ANYBLOB='\x00\x00\x00:\x00'/20, @ANYRES8=0x0, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_SIOCSPGRP(r2, 0x8902, &(0x7f0000000340)=r0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./file0\x00', 0x10, &(0x7f0000000100)=ANY=[@ANYBLOB="73686f72746e616d653d77696e39352c73686f72746e616d653d77696e6e742c756e695f786c6174653d302c756e695f786c6174653d312c757466383d312c757466383d312c646973636172642c757466383d302c756e695f786c6174653d302c666c7573682c73686f72746e616d653d6d697865642c73686f72746e616d653d6c6f7765722c646f733178666c6f7070792c73686f72746e616d653d77696e6e742c73686f72746e616d653d6c6f7765722c757466382c0014697a7960fb374b722c64329787434c6c9f891d2e309efaf1d4e529e1ba0f697fedffb095592bc19d5a8f8141ee9bf46262f3a2b1452bf206c0e2ae8a465e6e1be6eeb5d588035a24458d476fc1f9a234cdc4ba352a41856102000000000000006357ee95fffb99cde923a6c2e7eee552c60119e2822287367b0526cec2098d6ef88304699e83b0d070ad82774d8cc230dc844fa4ed26ec244085d833e4e2309d01aea46150e5d791371358a8ecd02c1e8795d500af4694cc800962a672fd461d94ad695620623ccf81ae84a48df7d0ffafbb72f694c5e1bb70d4b394fd631e5801e7"], 0x3, 0x2b5, &(0x7f0000000380)="$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")
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000f40)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x94)
r3 = syz_io_uring_setup(0x1714, &(0x7f0000002040)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r4=>0x0, &(0x7f00000000c0)=<r5=>0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x2c, 0x2, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, {0x0, r6}})
io_uring_enter(r3, 0x27e2, 0x0, 0x0, 0x0, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r7, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
remap_file_pages(&(0x7f000044e000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
userfaultfd(0x80001)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000acf000/0x3000)=nil, 0x3000, &(0x7f0000000040)='sched_switch\x00')

3.080907518s ago: executing program 6 (id=2417):
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(0xffffffffffffffff, 0x7b2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x8})
sendmsg$TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x8804)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
getpid()
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='.\x00', &(0x7f0000002280)='vxfs\x00', 0x8018, 0x0)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40186f40, 0x0)

1.70020523s ago: executing program 0 (id=2418):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x18, r1, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x4}]}, 0x18}}, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r2, 0x74)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x30, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1=0xac1414aa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}}, 0x0)

1.52098065s ago: executing program 1 (id=2419):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000600)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x5, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x7fffe, {0x0, 0x0, 0x0, r7, {}, {0xb, 0xb}, {0x2, 0xb}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x6, 0x808, 0x205, 0x1, 0x2c}, 0xb, 0x1, 0x32, 0x5, 0x9, 0x2, 0xc, 0xd, 0x2, 0x1, {0xffff1c72, 0x23, 0x7, 0x8, 0xfffffffe, 0x7583}}}}]}, 0x78}}, 0x8000)
sendto$packet(r4, &(0x7f0000000440)="bad330752181510000316f3a277f953286ddd1dc9119f98ce83de525e4a40e81692d09dc", 0x24, 0x0, &(0x7f0000000080)={0x11, 0x6, r3, 0x1, 0xd8, 0x6, @broadcast}, 0x14)

1.0132178s ago: executing program 1 (id=2420):
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x88}, 0x0)
r0 = syz_open_dev$sndctrl(0x0, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0x40405514, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200010, &(0x7f00000002c0)=ANY=[@ANYBLOB="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", @ANYRESOCT=0x0], 0x3, 0x260, &(0x7f0000000780)="$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")
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x143042, 0x80)
pwritev2(r4, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfe}], 0x1, 0x5405, 0x0, 0x0)

273.031964ms ago: executing program 0 (id=2421):
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x74cf, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000280)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0xef92, 0x0, 0x0, 0x0)
rt_sigsuspend(&(0x7f00000000c0)={[0x8]}, 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = memfd_create(&(0x7f0000000380)='\x1aj~\x97\xc1\x00\x00\x00\xff\x00\x00\x00\x7f\xef_\xd3\xdc=f.z=\x80=8\x1f\x14\xa2&\xbam\v\xa9\f\xf5\x17t\xc9\x80\xf4\xa1\xeb\x907L\x7f \xe3\x19\xcb\xbf\xfc\x00\x00\x00\x00\x15\x00\x00\x00\x00\x00\x00\x00\x00h}\x00\x135V\xd9\xe0\xb0\x17\x01g\xff?\xc8\xfb3\x93\xbc\xcf\xf2\x95\xbeYd,\xb3\x17\xb0L\xe841(\"\xc2K\x11\x81\xef.m\xf7@\xb1\xf9\xee\xce\\\xd9\x03\nHNzF``\xa0\xc4}P\xb3\b\x91\'\x9b~\xcd\xfd\xaa\n\xea\x8dC\x9aQ\n\xce\"\x9cN\xed0\xf0\xc2x\x93h\xe8\\\x18\xd26\xe7\x8d4\x06\xf0\xe3M\xe5\x91\x0f\x85\x97bla\x06\xe1\xba\x1a\x1d \n\fr\xae\x12M\xcb6\xe0\x15\xd5d\x16\xc3\xdf\xa2\x04wB\xd0\x18\xa4\x17|\vH\xf5\xb0\xb5\xc7\x9f`Fz\xa3x\x99\xe17\xd2vAW\xe5\x18)9\xba\xa68A\xf8y\xe6\xac\xda\xc7u\xa9\x00{:\x01\xee,\a:\x06\xad{\x80\xfd\xc7\"\x95\x0f\xe3\x86\x19\xc3\xd2\xf7\x18\xf8\xed\x8b\"\xd8\x8f\xde`\xb0D\xfd\x84\xa3\xd7\xf3R\x8d\x88\xdaJ\xb0\xf8^\xd4>\xc7e\xab\x8f+\xda\x9b\xae\xf2\xca\xb9\xde\xb5\x8f\xdb\xba}\x7f\xf8\xe5i,m\b\xf0\xc7\xe9R\x9cY$\xcb\x00/!Z\xeb\x9bE\xf2\xb9\xcc\xf0\x9c\x02\xfc\x9c\x91q\xba|\x80n\x1f\xffG\xc3\x13\xe7v\xa7\x95md\x0f\xa5\x06\v^n\x84d5o\x02\xb3.\x8dc\x18\xe0\xc2\x9b\xe1D\x0fB] \xdfJGr\xdbc,\xef82%\x97\xe4;u\xa9\xe5\xef*n\xf613\x17\x80[\x90]\xef\xc1\x8e\rD\xd2\xe0\x8c\xf2\x00\x00\x00\x00\x00\x00\x00Gs\xab\x1e\xa13\x93\x8d\x04U\xf5\xb8Th9s3\xc9\xbf\xe5My$\x99.\xf0\xd5\xc8\xb1\xfc4\xe7\x83z\x11a\xb7\xebY\x1d\xcd\x81N\xed\xbd\xa5\xce\xa0f\xe5q2\xbc#w\xe4_\x8a-\xad\xc2/_\xe6\nE\xeb\x9c\x96\xf4`\xa2\x06\xe0\x00\xfb\x99\xbb}\xfb\x052_\x83*B\xf1\xf0\x95\xd2K\xd6\xe5\xb1\x1a\x02,\xbe\xf5\xd0\xd4\xa1A\xf3!\n\xc6b\xeb\x92\xea\xd8\xe1$\xbbUO\x1fS\x02\x9e\xa7|i:\xb1\xf60\xf6M\xe6,\x81=F\xa1\xca\x06\x0e\x14\x89/\xa7\"\x17-h9\x176\x9d\x04\x1el\xdcp\x89\x1b \x93f\x9a\x10\xd9\xa2Y\b\xfalA\xe1\x1bI\xb9\xf8\xa0\xb0\xc2\x04\xedO\n\vj&\xb5\x04\xc3{Yt\xf4rS^\x0e$\xe9\x05\xcd\x9b\x84\x14`\xed\x9e\xbbh\x81h\xf2\xe7\xe2DO\x1a\xe9\xc1\x1cu\xa5\xbd\x90\xbb\x03\xd5\x00\xf2\x83T\xe4\x0eF\x7f\x85\xb5\xe9CJ<F<\xb2aU\x1b\xfc\xeb\x9d\xda\x9b\xd2', 0x2)
write(r5, &(0x7f0000000080)="06", 0x1)
mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r5, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x4)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sendmsg$RDMA_NLDEV_CMD_RES_CM_ID_GET(0xffffffffffffffff, 0x0, 0x2004)

117.427933ms ago: executing program 6 (id=2422):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x41, 0x0)
r1 = dup(r0)
write$P9_RSTATFS(r1, &(0x7f0000000100)={0x43, 0x9, 0x1, {0x7, 0x9, 0x1, 0x0, 0x9, 0x6600000000, 0x4, 0x10, 0x1ff}}, 0x43)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x4, 0x0, 0x0, 0x1b, "0062ba7d820700000000000000000000096304"})
r2 = syz_open_pts(r0, 0x80)
dup3(r2, r0, 0x80000)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0xffffffffffffff2c}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r3 = io_uring_setup(0x4fef, &(0x7f0000000040)={0x0, 0xc8df, 0xc000, 0xa, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x10, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xe}, {0xe, 0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r3, 0x2219, 0x7721, 0x16, 0x0, 0x0)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000180)={0x202, 0x6, 0xd, 0x4, 0x5, "d2000700"})
read(r0, &(0x7f00000002c0)=""/228, 0xe4)

1.17662ms ago: executing program 1 (id=2423):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f0000000180)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0x248)
close(r1)
r2 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x80042, 0x0)
ioctl$PTP_PEROUT_REQUEST2(r2, 0x40043d0d, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bf"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet6_sctp(0xa, 0x5, 0x84)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
getsockopt$bt_hci(r3, 0x84, 0x80, &(0x7f00000010c0)=""/4111, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r4 = syz_io_uring_setup(0x49a, &(0x7f00000000c0)={0x0, 0x79af, 0x3180, 0x8000, 0x40024e}, &(0x7f0000000340)=<r5=>0x0, &(0x7f0000000040)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000001c0)=@IORING_OP_WRITE={0x17, 0x1, 0x6000, @fd=r4, 0x5, &(0x7f0000002100)="dc92e30be7e093c20c535dfbd61d4f8088cee234d51a46a34bd15be39b4f25d216c7e62f232890832c72f45f4da005a03e658e494755b4e1e72917af4bbb4c7115dc54b3c20c60044b0157c4f89145be705ebd0897703ce0f6d7cf445cf4b2ffe5eeaa70c7987fadc9e3ad75702e052b35599103cc7296c583d317965b098dd83aa1ea0c9d7fc6625391559477f58c6f0bc1ca6cb94edbb7233b2317d7c7d7378e130968a4b6052ce3f0ec337321d7652885d23fabb8d607b9992f9d57a3c38f6ae63b17380e3cde12f18e68b2bbe3a0dc037d5593f12144fb668ec3d698d1c552b8d021774e0ebc5903477fc1fc48e72b6e96acc331629a4c357beaa33fdc49658f24fa42880d09fd8a2569a35c6f34aa5fc45a56770a69d5205e8c23ab90e42f590e7e9c8f9801a21c582c773d843a9ad90eb504be6ce41a7d9cad408a72ad3dc302ee842b8aaa442bee1f30ce8ec86ee27b3a2ae1b6d6eb2dc34c3334d1c84a7dc644b4a072221847e87b922eababfd41e38f009b2684d327529a7787eb19f2a7cc6bfbf2b2ec18f88bb3511e60f61803fec17ced4c2fc533f576619e28cb1f42ea9b6690a6cc2b01dd4c581d1628c978b63a1374b3a7caea37aa7f0a6b8e281c0a851c4e2aa31b2a3c300241bea11a1fb8bf570805b961aa023943d9ee611ef035aca1c97442ce6a3ad7961f2987ab337b67eee156a0f7f6b801cdebe69304446cf6d65b34e35796391863b42edff4b4368fc74e3c1f71d960431f57a14d5b8b74808e2e1d367cf55e0384d758a0c176240d28d20a1e2de82825e0c7e718264ea915e524eca3d933278e7167397745116678869454e1f77a4c3c116f126b5b51ed631abea4c32a4928996983b459962db29b5ffb43bef3742b83cbb700c173e47106b7911e52f7c887a03b7d27297f81f014c0b0d399152fa8d66e9d9076d36cb6c1cdddf297311cf8ee07a65c9929dd4b820ba2709da4fa453a400a1dfc1673e97ed293217d8a7760a8d88535a0e7b920d7f8b314ad7732c097398f1af942042c553e1e6b584bb73f792ecf49f923e95ceefb7d81977ef181129f6d56b89bb59c201ef40d3a90e32a2b23a4500f18d78418afad63ee7c863490bb274398c630cc6e9e032d4f11ff4212ff02f87e51d9e10771b073189c0bb8359b559dab5992989c5b378f63217568ea2128ae1387bcfa6d4748be38d8541dcace4eb09e06690ca901939e516b1ce3f09880a4bdca1fab43db25277ae488d64b45fa68e4b3a4ac4f2af7fce6da4ca0a3c14ff29b9b829975c5247639d09376c72bad2a64ec8170753f4b5a18c5034fd8a4fd66fe584fa7e1a384b4ddc5f5692b23d86ea717ef21ff227dc489e48d76d869ecb61a3ef903e919f818f5a4dd12d82fc49e2848b4251cc9aa9f2ca502e612b6998632fc41c5a9438a4d308c402ea018579b693c0e84c37fa24aac995c3dda30b6951f3051efaf94d19bd724c78ea9368e32782b235ca167d9517e18b9b637d17ac95db87ef02377a3bd8ffa133885eced64176e868582d1e6f34283d7e24e54c5dd48ded4f9877db2d7865ad97635d507bbb358f4b3d1c97b2c15cf116d817ffd2ea5533cf9d3f73db3102bcb5f034839ceff483ea03a72f85ba46f428b5a239e9b295ad7b2d42135152ace0371806aa96819ea45977f9ab1c74f6cf722e82f6424707653faf60a942c5293123f6047b768c15046b2c29f4847de27ed8fd2afd73205d4c98b80fb663cb8fd1010419069ad2afeaf00bb7a374a0fbe2b7d4d5557ed1ea939c8e5cc9d44b55c4dd955b04610599fb303938635227f4c842f354775f0c44688909066f03feea7df967ee54db2ac9319cfc243b64f264f8570672e6b2f19324cfa54547b87c8b1d950f0c7ec730b62e4d42e41e2fc0846398d675535e78700ca758000527e713304e982bbaa7d78fe7af4177b8bec686a84059ad92516d48adc0c627e2c6aa99b03a129a8c295f4d61fab97d6248dc40f6ede5e0640b81fd82a4511eae611f8af287827b0c049f4bbf3740d0cb099379f36ee93a919bdefd6e4b2dec858eaa0a389c2f136e0032ada82fcfb8aa9e6976e7702d7e1eb7432e1fb8a8ee7c6c22b66fd39d5cc17bce5aa8019b678f74c16049db3d291820549ac9824c6dff0701ba234f3a8fb80bbda9f1aaf083127b50ab8ab267e52164468a84694a7183a13e775b5af520eb61c08b46887b30e2b79247c1db7ff6a9c68f0a69603e9ba5babf303615d9f2bcd9378ce5768c4fff4a82dcb97eb078a4d1e704d288d17b98f13884875daa6bef09e2395858ef4224afe17ce71df193851caaecaee2a89e917631030f82e3b290b9e42f7e67d733cd0ab8262523b73a371204d73c643233a94b387d848f4ca4c6a5726a65ead17f8de2894cf9276cced8d0928c8b57af2bfe336f310166cc39b65cc15e389b67c5af56eb9b1100b41ee65865667d356f4393db91162ce7a4a11b0ebbd708236fd87436a316ef2575c74674017bd5c553beb8e211b1a761e1e7bf99cef8e4418bf77a740dc12c51d230d1ff0322e9a10b99c5d79491cf80c6d36bad894af5b0933ef5f193ad505885f2a41bbf1d13fe983194ae376348d5f476918c667a0a7517d21056b691f80afb2f619eb3db1963d356144a9047ba5ec9b4d9aa6bd2351bb144ddc0f600c77aa211bafb5e5ac2616f4e56239a6f764efc567ebfd5ec89ab06d3f383db296a05f5ca75925d18ff23bd2eec3985c5cb343025f177d833248f58506369cfac166af49ff33f158f11bdfad69764f5c99b81432776b0608a2bdccf57dab4ba17716b045e9b23957f1efec35a8c49e0abd5339b303835a5c75136b2d19c702c980402d808bcacfc4e7b69421e3983b1a5ae61a071dbe5bfc0a326962eb85c5c1520809c73738e972d44123e1176147e366d4b65403104acbb52b969b6282f5e8c01fd0ee59aaedba9039e9f1fab18b7f380eda5576e6276672ebf5617a6661e814e75ff0ca6f6172ffc56d316e91200d9e1329aa33b2f38b57609f6e5c174e62b0a1233fb292034e04b8f8d44e60c38416bccab9d838b7694d34d9251f5e86b5c3ae645a61cfdca4f4cb836ac9eb2c4014f33f8a2a3ad1f429f7b63bc697f064f447bace4f7e88cbabbf5faf1419bfe56f9b0c6d3a9e5786de7f1002f8688d1ecd78d24c844219d1f6cc46b60ce0bc7b99a551da5187f4303e6f6328055347015df8c7dd2524d1ce23b936a5c1cd4edb11740b79eae3f0762295cd8cff0c2c0aacd0b3079527e624b1842429452278d6d7becca42c044dcdfc8abd7dd6861bf9f47115a4b98966b19e0b1fd0d91c9458b63a69e29e45685e3cc736703465e3fa72906b4fbcb6fde5c2c726e1ef9c827c5e3205daea675ff0b61884e5d8ae6e32d2bc3636ca23e4222668193bccd5606a5abd0f59f98a27b2a90eebe734679b998a9e1bf4fb942989a836b7f36f03d5ba4223f6ce7228367c4b4649a47034554cc1c4a636a31678828b662d18806f9b6b09e1e30868f63cac1c67d3ac8b2479cb5c1abd281df08303acf474f564310e8583bd3e393881a0e26ba63a86ef4993521bf802f83377598322794151eb9db0a3b4a0fb26f5a3a70316193e3cdc5dc81041c0be0baddc3ce291024237024f69c5c3c0032b739c2f88e17d79a2d591c3f0ec8804b556655b3fbce9bf66427490d94c2e25192813e6dcc409383997dce51499e4bbf5ac6e095014d0e81a096f803de18d97890d18b207172c2a1266b45dd48568f93d13d3d93332d9f99c472091d5078910394614ee9a4dbc047cbec1bd21892bab6804e745b8ec93ffe699bfe7d3a864f391da22fa9b749e983259d1ebeaa2a213c13dd49b3641b877b7369142f45fea6ed9e997a2cfe22ad58930ced14c0c2d20959a6c454064153b220d4fa98f8826d49560d459d13786199354eae7d234e717a008142595adee1103711b8aa8465b832d33046b827bd9b507e9db02a5eb6f6e4ba47d6f53c376c853569b4237ab4d2ef8a905621a62a2043b9f906d363e950d876d8c6d255528348682910c5d963e62553d4b9699ae2011c4ba8a76edd1130b4b3efae10a95fbaff906e6b7f688a45ea6d89de42ce5e25ce827357a2c0e95952db0f33d648b3c556f34de8a3592510d254261a0d6beef57cf22621986471d2dc9c3adc58da56c8ddd995219745cf30d49ae6d45817f2304334c7dba5a6314b4b048d708bc639b7f87cedc4d4a1ca87dfd289dc4514ec59e5065a5c315b0952139fdceb9c8", 0xbd0, 0x8})
r7 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000002c0)="2e00000010008188040f80ec59acbc0413010048100000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)

0s ago: executing program 7 (id=2424):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f00000083c0)={{0x1}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r4, 0x40505412, &(0x7f00000000c0)={0x7, 0x9dc5, 0x0, 0x0, 0xf})

kernel console output (not intermixed with test programs):

0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  653.446781][T10371] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  653.471602][T10371] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  653.714015][T10371] usb 1-1: usb_control_msg returned -32
[  653.720903][T10371] usbtmc 1-1:16.0: can't read capabilities
[  654.078038][ T6445] parport1: fix this legacy no-device port driver!
[  654.112203][T11600] usbtmc 1-1:16.0: INITIATE_ABORT_BULK_IN returned 0
[  654.306231][ T5832] usb 2-1: USB disconnect, device number 17
[  654.316553][ T5867] usb 1-1: USB disconnect, device number 26
[  654.537464][T11607] loop2: detected capacity change from 0 to 32768
[  654.559000][T11607] (syz.2.1272,11607,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  654.575733][T11607] (syz.2.1272,11607,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  654.602239][T11607] JBD2: Ignoring recovery information on journal
[  654.670369][T11607] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  655.130905][T11618] 9pnet_fd: Insufficient options for proto=fd
[  655.220179][T11618] netlink: 'syz.1.1275': attribute type 10 has an invalid length.
[  655.378850][ T5772] ocfs2: Unmounting device (7,2) on (node local)
[  655.797135][T11625] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  656.041981][T11630] loop1: detected capacity change from 0 to 256
[  656.055669][T11630] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  656.389745][   T51] Bluetooth: hci1: unexpected event for opcode 0x203b
[  656.471634][T11643] loop5: detected capacity change from 0 to 128
[  656.720571][T11648] hub 1-0:1.0: USB hub found
[  656.727353][T11648] hub 1-0:1.0: 1 port detected
[  657.032006][T11652] netlink: 'syz.2.1288': attribute type 10 has an invalid length.
[  657.971583][T11656] 9pnet_fd: Insufficient options for proto=fd
[  658.048510][T11656] netlink: 'syz.1.1289': attribute type 10 has an invalid length.
[  658.129972][T11659] loop5: detected capacity change from 0 to 256
[  658.160043][T11659] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  658.826670][T11660] loop2: detected capacity change from 0 to 32768
[  658.915242][T11660] JBD2: Ignoring recovery information on journal
[  658.975023][T11660] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  659.374182][T11683] loop1: detected capacity change from 0 to 16
[  659.387604][T11684] loop5: detected capacity change from 0 to 256
[  659.400615][T11684] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  659.429282][T11683] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  659.623301][ T5772] ocfs2: Unmounting device (7,2) on (node local)
[  659.651019][T11671] loop0: detected capacity change from 0 to 32768
[  659.702215][T11671] BTRFS error: device /dev/loop0 already registered with a higher generation, found 8 expect 10
[  659.919905][ T7509] BTRFS error: device /dev/loop0 already registered with a higher generation, found 8 expect 10
[  660.287846][    T8] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  660.430455][T11687] loop1: detected capacity change from 0 to 32768
[  660.458054][   T51] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  660.471188][   T51] Bluetooth: hci1: Injecting HCI hardware error event
[  660.482235][   T51] Bluetooth: hci1: hardware error 0x00
[  660.492261][    T8] usb 1-1: config 0 interface 0 has no altsetting 0
[  660.504666][    T8] usb 1-1: New USB device found, idVendor=0c45, idProduct=760b, bcdDevice= 0.00
[  660.515675][    T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  660.532077][    T8] usb 1-1: config 0 descriptor??
[  660.545838][T11687] XFS (loop1): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[  660.726282][T11687] XFS (loop1): Ending clean mount
[  660.829494][   T27] audit: type=1804 audit(1769712244.870:26): pid=11687 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1299" name="/newroot/350/file0/bus" dev="loop1" ino=6153 res=1 errno=0
[  660.874855][   T27] audit: type=1804 audit(1769712244.900:27): pid=11687 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1299" name="/newroot/350/file0/bus" dev="loop1" ino=6153 res=1 errno=0
[  660.974485][    T8] redragon 0003:0C45:760B.001D: unknown main item tag 0x0
[  660.986856][    T8] redragon 0003:0C45:760B.001D: hidraw0: USB HID v0.01 Device [HID 0c45:760b] on usb-dummy_hcd.0-1/input0
[  661.132935][   T23] XFS (loop1): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xd0, xfs_bnobt block 0x4 
[  661.165264][   T23] XFS (loop1): Unmount and run xfs_repair
[  661.182476][   T23] XFS (loop1): First 128 bytes of corrupted metadata buffer:
[  661.200385][   T23] 00000000: 41 42 33 42 00 00 00 03 ff ff ff ff ff ff ff ff  AB3B............
[  661.213166][ T5832] usb 1-1: USB disconnect, device number 27
[  661.220442][   T23] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 10  ................
[  661.246921][   T23] 00000020: ed 37 bf 6e 74 ea 4e 01 f8 ba 5f ee 27 4b 0f 3a  .7.nt.N..._.'K.:
[  661.267180][T11695] loop5: detected capacity change from 0 to 32768
[  661.280135][   T23] 00000030: 00 00 00 00 f6 3b 25 b5 00 00 00 07 00 00 00 01  .....;%.........
[  661.294758][   T23] 00000040: 00 00 0b fe 00 00 00 02 00 00 0c 20 00 00 13 e0  ........... ....
[  661.317719][   T23] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  661.335898][   T23] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  661.348129][   T23] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  661.364705][ T2922] XFS (loop1): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x4 len 4 error 74
[  661.386257][ T2922] XFS (loop1): page discard on page ffffea00013b0000, inode 0x1809, pos 0.
[  661.412678][    T8] XFS (loop1): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xd0, xfs_bnobt block 0x4 
[  661.430631][    T8] XFS (loop1): Unmount and run xfs_repair
[  661.442593][    T8] XFS (loop1): First 128 bytes of corrupted metadata buffer:
[  661.467404][    T8] 00000000: 41 42 33 42 00 00 00 03 ff ff ff ff ff ff ff ff  AB3B............
[  661.488312][    T8] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 10  ................
[  661.497334][    T8] 00000020: ed 37 bf 6e 74 ea 4e 01 f8 ba 5f ee 27 4b 0f 3a  .7.nt.N..._.'K.:
[  661.519054][    T8] 00000030: 00 00 00 00 f6 3b 25 b5 00 00 00 07 00 00 00 01  .....;%.........
[  661.529852][    T8] 00000040: 00 00 0b fe 00 00 00 02 00 00 0c 20 00 00 13 e0  ........... ....
[  661.538935][    T8] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  661.556972][    T8] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  661.565997][    T8] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  661.575299][ T2922] XFS (loop1): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x4 len 4 error 74
[  661.597986][ T2922] XFS (loop1): page discard on page ffffea00014f8000, inode 0x1809, pos 2097152.
[  661.609674][   T23] XFS (loop1): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xd0, xfs_bnobt block 0x4 
[  661.622824][   T23] XFS (loop1): Unmount and run xfs_repair
[  661.630225][   T23] XFS (loop1): First 128 bytes of corrupted metadata buffer:
[  661.641386][   T23] 00000000: 41 42 33 42 00 00 00 03 ff ff ff ff ff ff ff ff  AB3B............
[  661.653300][   T23] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 10  ................
[  661.669960][   T23] 00000020: ed 37 bf 6e 74 ea 4e 01 f8 ba 5f ee 27 4b 0f 3a  .7.nt.N..._.'K.:
[  661.681427][   T23] 00000030: 00 00 00 00 f6 3b 25 b5 00 00 00 07 00 00 00 01  .....;%.........
[  661.692944][   T23] 00000040: 00 00 0b fe 00 00 00 02 00 00 0c 20 00 00 13 e0  ........... ....
[  661.704199][   T23] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  661.717512][   T23] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  661.726686][   T23] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  661.736103][ T2922] XFS (loop1): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x4 len 4 error 74
[  661.753802][ T2922] XFS (loop1): page discard on page ffffea0001190000, inode 0x1809, pos 4194304.
[  661.764057][    T8] XFS (loop1): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xd0, xfs_bnobt block 0x4 
[  661.790404][    T8] XFS (loop1): Unmount and run xfs_repair
[  661.796214][    T8] XFS (loop1): First 128 bytes of corrupted metadata buffer:
[  661.814404][    T8] 00000000: 41 42 33 42 00 00 00 03 ff ff ff ff ff ff ff ff  AB3B............
[  661.843681][    T8] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 10  ................
[  661.853483][    T8] 00000020: ed 37 bf 6e 74 ea 4e 01 f8 ba 5f ee 27 4b 0f 3a  .7.nt.N..._.'K.:
[  661.864905][    T8] 00000030: 00 00 00 00 f6 3b 25 b5 00 00 00 07 00 00 00 01  .....;%.........
[  661.875429][    T8] 00000040: 00 00 0b fe 00 00 00 02 00 00 0c 20 00 00 13 e0  ........... ....
[  661.918589][    T8] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  661.935344][    T8] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  661.957395][    T8] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  661.967284][ T2922] XFS (loop1): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x4 len 4 error 74
[  661.984368][ T2922] XFS (loop1): page discard on page ffffea00012d0000, inode 0x1809, pos 6291456.
[  661.994589][    T8] XFS (loop1): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xd0, xfs_bnobt block 0x4 
[  662.006519][    T8] XFS (loop1): Unmount and run xfs_repair
[  662.026641][    T8] XFS (loop1): First 128 bytes of corrupted metadata buffer:
[  662.046929][    T8] 00000000: 41 42 33 42 00 00 00 03 ff ff ff ff ff ff ff ff  AB3B............
[  662.063024][    T8] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 10  ................
[  662.074512][    T8] 00000020: ed 37 bf 6e 74 ea 4e 01 f8 ba 5f ee 27 4b 0f 3a  .7.nt.N..._.'K.:
[  662.085997][    T8] 00000030: 00 00 00 00 f6 3b 25 b5 00 00 00 07 00 00 00 01  .....;%.........
[  662.101011][    T8] 00000040: 00 00 0b fe 00 00 00 02 00 00 0c 20 00 00 13 e0  ........... ....
[  662.112879][    T8] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  662.127272][    T8] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  662.159893][    T8] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  662.213580][ T2922] XFS (loop1): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x4 len 4 error 74
[  662.241831][ T2922] XFS (loop1): page discard on page ffffea0000332000, inode 0x1809, pos 8388608.
[  662.253579][    T8] XFS (loop1): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xd0, xfs_bnobt block 0x4 
[  662.276211][    T8] XFS (loop1): Unmount and run xfs_repair
[  662.296871][    T8] XFS (loop1): First 128 bytes of corrupted metadata buffer:
[  662.304751][    T8] 00000000: 41 42 33 42 00 00 00 03 ff ff ff ff ff ff ff ff  AB3B............
[  662.315013][    T8] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 10  ................
[  662.330213][    T8] 00000020: ed 37 bf 6e 74 ea 4e 01 f8 ba 5f ee 27 4b 0f 3a  .7.nt.N..._.'K.:
[  662.358479][    T8] 00000030: 00 00 00 00 f6 3b 25 b5 00 00 00 07 00 00 00 01  .....;%.........
[  662.377846][    T8] 00000040: 00 00 0b fe 00 00 00 02 00 00 0c 20 00 00 13 e0  ........... ....
[  662.389332][    T8] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  662.411721][    T8] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  662.428240][    T8] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  662.437211][ T2922] XFS (loop1): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x4 len 4 error 74
[  662.453620][ T2922] XFS (loop1): page discard on page ffffea0000335000, inode 0x1809, pos 8650752.
[  662.465995][    T8] XFS (loop1): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xd0, xfs_bnobt block 0x4 
[  662.490252][    T8] XFS (loop1): Unmount and run xfs_repair
[  662.496501][    T8] XFS (loop1): First 128 bytes of corrupted metadata buffer:
[  662.517721][    T8] 00000000: 41 42 33 42 00 00 00 03 ff ff ff ff ff ff ff ff  AB3B............
[  662.527454][    T8] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 10  ................
[  662.549574][    T8] 00000020: ed 37 bf 6e 74 ea 4e 01 f8 ba 5f ee 27 4b 0f 3a  .7.nt.N..._.'K.:
[  662.562045][    T8] 00000030: 00 00 00 00 f6 3b 25 b5 00 00 00 07 00 00 00 01  .....;%.........
[  662.597779][    T8] 00000040: 00 00 0b fe 00 00 00 02 00 00 0c 20 00 00 13 e0  ........... ....
[  662.606719][    T8] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  662.623586][   T51] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  662.631587][    T8] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  662.640960][    T8] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  662.650141][ T2922] XFS (loop1): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x4 len 4 error 74
[  662.662177][ T2922] XFS (loop1): page discard on page ffffea0000335c00, inode 0x1809, pos 8781824.
[  662.696268][ T5777] XFS (loop1): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[  662.825352][T11725] loop0: detected capacity change from 0 to 256
[  664.433264][T11725] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  664.690700][T11723] netlink: 'syz.5.1310': attribute type 10 has an invalid length.
[  665.136001][T11714] loop2: detected capacity change from 0 to 32768
[  665.174476][T11714] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  665.225303][T11714] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  665.304599][T11714] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms
[  665.339599][    T8] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  665.355970][    T8] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  665.471711][    T8] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 115ms
[  665.504865][    T8] gfs2: fsid=syz:syz.0: jid=0: Done
[  665.517856][T11714] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  665.577996][T11714] gfs2: fsid=syz:syz.0: can't create logd thread: -4
[  666.745887][T11774] loop0: detected capacity change from 0 to 1024
[  666.851696][T11757] loop5: detected capacity change from 0 to 32768
[  666.885838][T11757] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop5 scanned by syz.5.1316 (11757)
[  666.979274][T11757] BTRFS info (device loop5): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  667.029911][T11757] BTRFS info (device loop5): using crc32c (crc32c-intel) checksum algorithm
[  667.074055][ T1132] hfsplus: b-tree write err: -5, ino 4
[  667.088803][T11757] BTRFS info (device loop5): setting incompat feature flag for COMPRESS_LZO (0x8)
[  667.128938][T11757] BTRFS info (device loop5): use lzo compression, level 0
[  667.157827][T11757] BTRFS info (device loop5): force clearing of disk cache
[  667.165172][T11757] BTRFS info (device loop5): using free space tree
[  667.222856][T11764] loop1: detected capacity change from 0 to 32768
[  667.244244][T11764] (syz.1.1303,11764,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  667.297496][T11796] loop0: detected capacity change from 0 to 128
[  667.375433][T11764] (syz.1.1303,11764,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  667.399935][T11757] BTRFS info (device loop5): enabling ssd optimizations
[  667.407024][T11757] BTRFS info (device loop5): auto enabling async discard
[  667.412676][T11796] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  667.456665][T11757] BTRFS info (device loop5): rebuilding free space tree
[  667.473306][T11764] JBD2: Ignoring recovery information on journal
[  667.488213][T11796] ext4 filesystem being mounted at /319/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  667.605191][T11780] loop2: detected capacity change from 0 to 8192
[  667.640055][T11780] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  667.665355][T11764] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  667.702390][T11780] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal
[  667.715320][T11796] EXT4-fs error (device loop0): ext4_append:79: inode #2: comm syz.0.1321: Logical block already allocated
[  667.746496][T11780] REISERFS (device loop2): using ordered data mode
[  667.793332][T11780] reiserfs: using flush barriers
[  667.839735][T11780] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  667.862458][T11796] EXT4-fs (loop0): Remounting filesystem read-only
[  667.902018][T11780] REISERFS (device loop2): checking transaction log (loop2)
[  667.929057][T11780] REISERFS (device loop2): Using r5 hash to sort names
[  667.964973][T11780] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage.
[  668.069363][ T5769] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  668.207254][T11780] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 3 0(1) DIR], item_len 35, item_location 3257, free_space(entry_count) 2
[  668.263275][T11780] REISERFS error (device loop2): vs-5150 search_by_key: invalid format found in block 540. Fsck?
[  668.277240][ T8541] BTRFS info (device loop5): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  668.303343][T11780] REISERFS (device loop2): Remounting filesystem read-only
[  668.335215][T11780] REISERFS error (device loop2): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 3 0x0 SD] stat data
[  668.395317][T11815] loop0: detected capacity change from 0 to 256
[  668.408264][T11815] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  668.778265][T11821] netlink: 76 bytes leftover after parsing attributes in process `syz.5.1323'.
[  668.933074][ T5777] ocfs2: Unmounting device (7,1) on (node local)
[  669.224934][T11828] loop5: detected capacity change from 0 to 1024
[  669.251475][T11828] EXT4-fs: inline encryption not supported
[  669.264778][T11828] EXT4-fs: Ignoring removed nobh option
[  669.270682][T11828] EXT4-fs: Ignoring removed bh option
[  669.311153][T11828] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  669.407047][T11828] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  669.481151][T11828] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4047: comm syz.5.1326: Allocating blocks 497-513 which overlap fs metadata
[  669.690054][T11838] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4047: comm syz.5.1326: Allocating blocks 497-513 which overlap fs metadata
[  669.952176][ T8541] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  670.388903][T11846] netlink: 'syz.5.1330': attribute type 10 has an invalid length.
[  670.716690][T11854] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=2121810046 (16974480368 ns) > initial count (16681739960 ns). Using initial count to start timer.
[  671.283966][T11865] loop2: detected capacity change from 0 to 256
[  671.315872][T11865] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  671.411205][    T8] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  671.512973][T11868] hub 1-0:1.0: USB hub found
[  671.528732][T11868] hub 1-0:1.0: 1 port detected
[  671.620482][    T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  671.658191][    T8] usb 2-1: New USB device found, idVendor=17ef, idProduct=6047, bcdDevice= 0.00
[  671.679880][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  671.697113][    T8] usb 2-1: config 0 descriptor??
[  671.794993][T11871] 9pnet_fd: Insufficient options for proto=fd
[  671.841470][T11871] netlink: 'syz.5.1339': attribute type 10 has an invalid length.
[  671.851494][T11861] loop0: detected capacity change from 0 to 32768
[  671.872543][T11861] (syz.0.1334,11861,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  671.895837][T11861] (syz.0.1334,11861,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  671.955183][T11861] JBD2: Ignoring recovery information on journal
[  672.034762][T11861] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  672.207792][    T8] lenovo 0003:17EF:6047.001E: hidraw0: USB HID v0.00 Device [HID 17ef:6047] on usb-dummy_hcd.1-1/input0
[  672.809944][ T5769] ocfs2: Unmounting device (7,0) on (node local)
[  673.297150][    T8] usb 2-1: USB disconnect, device number 18
[  673.495385][T11887] netlink: 'syz.2.1343': attribute type 10 has an invalid length.
[  673.651474][T11881] loop5: detected capacity change from 0 to 40427
[  673.685749][T11881] F2FS-fs (loop5): build fault injection attr: rate: 25, type: 0x7ffff
[  673.695980][T11881] F2FS-fs (loop5): build fault injection attr: rate: 0, type: 0x7698c
[  673.706195][T11881] F2FS-fs (loop5): invalid crc value
[  673.727128][T11881] F2FS-fs (loop5): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x21d/0x9b0
[  673.746574][T11881] F2FS-fs (loop5): Found nat_bits in checkpoint
[  673.857488][T11881] F2FS-fs (loop5): inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x68b/0x9b0
[  673.908843][T11881] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  674.046116][T11881] F2FS-fs (loop5): inject dquot initialize in f2fs_dquot_initialize of f2fs_new_inode+0x509/0x1030
[  674.173466][T11899] overlayfs: failed to create directory ./bus/work (errno: 22); mounting read-only
[  674.223273][    C0] F2FS-fs (loop5): inject write IO error in f2fs_write_end_io of blk_update_request+0x597/0xe40
[  674.234728][    C0] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  674.245010][ T8541] F2FS-fs (loop5): do_checkpoint failed err:-5, stop checkpoint
[  674.559800][T11911] 9pnet_fd: Insufficient options for proto=fd
[  674.587813][T11911] netlink: 'syz.2.1350': attribute type 10 has an invalid length.
[  675.234695][T11931] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1356'.
[  675.663792][ T1132] nci: nci_rf_intf_activated_ntf_packet: unsupported activation_rf_tech_and_mode 0x22
[  675.705092][T11947] netlink: 'syz.1.1358': attribute type 10 has an invalid length.
[  675.766768][T11948] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1360'.
[  676.541580][T11964] loop0: detected capacity change from 0 to 256
[  676.564726][T11964] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  676.919464][T11970] loop2: detected capacity change from 0 to 256
[  676.976968][T11970] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  678.172701][T11962] loop1: detected capacity change from 0 to 8192
[  678.268126][T11962] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  678.294580][T11962] REISERFS (device loop1): found reiserfs format "3.5" with non-standard journal
[  678.305838][T11962] REISERFS (device loop1): using ordered data mode
[  678.312909][T11962] reiserfs: using flush barriers
[  678.342728][T11962] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  678.388416][T11962] REISERFS (device loop1): checking transaction log (loop1)
[  678.436443][T11962] REISERFS (device loop1): Using r5 hash to sort names
[  678.456784][T11962] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage.
[  678.467066][T11977] loop2: detected capacity change from 0 to 3
[  678.504500][T11978] 9pnet_fd: Insufficient options for proto=fd
[  678.520231][T11977] ldm_validate_privheads(): Disk read failed.
[  678.534421][T11962] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 3 0(1) DIR], item_len 35, item_location 3257, free_space(entry_count) 2
[  678.567715][T11962] REISERFS error (device loop1): vs-5150 search_by_key: invalid format found in block 540. Fsck?
[  678.597788][T11977] Dev loop2: unable to read RDB block 3
[  678.605328][T11978] netlink: 'syz.0.1369': attribute type 10 has an invalid length.
[  678.613586][T11962] REISERFS (device loop1): Remounting filesystem read-only
[  678.621789][T11962] REISERFS error (device loop1): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 3 0x0 SD] stat data
[  678.622070][T11977]  loop2: unable to read partition table
[  678.681597][T11977] loop2: partition table beyond EOD, truncated
[  678.692847][T11977] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  678.904523][   T51] Bluetooth: hci2: Malformed MSFT vendor event: 0x02
[  679.293597][T11987] netlink: 'syz.2.1373': attribute type 10 has an invalid length.
[  680.435850][T11998] loop2: detected capacity change from 0 to 1024
[  680.444233][T11998] EXT4-fs: inline encryption not supported
[  680.489161][T11998] EXT4-fs: Ignoring removed nobh option
[  680.505114][T11998] EXT4-fs: Ignoring removed bh option
[  680.524773][T11998] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  680.582354][T11998] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  680.619480][T11998] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4047: comm syz.2.1376: Allocating blocks 497-513 which overlap fs metadata
[  680.789479][T11998] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4047: comm syz.2.1376: Allocating blocks 497-513 which overlap fs metadata
[  680.963322][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  681.043554][T12011] netlink: 'syz.0.1386': attribute type 10 has an invalid length.
[  682.043808][T12025] 9pnet_fd: Insufficient options for proto=fd
[  682.080130][T12025] netlink: 'syz.0.1383': attribute type 10 has an invalid length.
[  682.168908][T12017] loop1: detected capacity change from 0 to 32768
[  682.740570][T12022] loop5: detected capacity change from 0 to 32768
[  682.802642][T12022] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  683.024819][T12047] loop1: detected capacity change from 0 to 256
[  683.056419][T12047] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  683.177051][T12022] XFS (loop5): Ending clean mount
[  683.195663][T12022] XFS (loop5): Quotacheck needed: Please wait.
[  683.378616][T12022] XFS (loop5): Quotacheck: Done.
[  683.581831][T12045] loop0: detected capacity change from 0 to 32768
[  683.593251][T12045] BTRFS error: device /dev/loop0 already registered with a higher generation, found 8 expect 10
[  683.697574][ T8541] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  683.753649][T12027] loop2: detected capacity change from 0 to 32768
[  683.802796][T12027] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.1385 (12027)
[  683.920756][T12027] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  683.964094][T12027] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  684.010375][T12027] BTRFS info (device loop2): force clearing of disk cache
[  684.024926][ T6157] BTRFS error: device /dev/loop0 already registered with a higher generation, found 8 expect 10
[  684.076745][T12027] BTRFS info (device loop2): enabling auto defrag
[  684.086827][T12027] BTRFS info (device loop2): enabling ssd optimizations
[  684.213957][T12027] BTRFS info (device loop2): max_inline at 0
[  684.235633][T12055] 9pnet_fd: Insufficient options for proto=fd
[  684.257784][T12055] netlink: 'syz.1.1391': attribute type 10 has an invalid length.
[  684.356274][T12027] BTRFS info (device loop2): enabling disk space caching
[  684.515147][T12027] BTRFS info (device loop2): disk space caching is enabled
[  685.133552][T12075] netlink: 'syz.0.1392': attribute type 10 has an invalid length.
[  685.191819][T12027] BTRFS info (device loop2): rebuilding free space tree
[  685.277083][T12027] BTRFS info (device loop2): disabling free space tree
[  685.317993][T12027] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  685.368082][T12027] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  685.481594][ T5772] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  685.571416][ T6445] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  685.636305][ T7509] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 11 /dev/loop2 scanned by udevd (7509)
[  685.715262][T12082] loop5: detected capacity change from 0 to 2048
[  685.779247][T12082] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  685.802348][ T6445] usb 2-1: Using ep0 maxpacket: 32
[  685.868388][ T6445] usb 2-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f
[  685.875158][T12082] ext4 filesystem being mounted at /205/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  685.937800][ T6445] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  685.952834][T12082] EXT4-fs (loop5): shut down requested (0)
[  685.975689][ T6445] usb 2-1: Product: syz
[  685.997702][ T6445] usb 2-1: Manufacturer: syz
[  686.002391][ T6445] usb 2-1: SerialNumber: syz
[  686.041571][ T6445] usb 2-1: config 0 descriptor??
[  686.106349][T12091] loop0: detected capacity change from 0 to 128
[  686.200142][ T8541] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  686.222695][T12091] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  686.288005][T12091] ext4 filesystem being mounted at /342/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  686.452970][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  686.464204][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  686.480176][   T27] audit: type=1800 audit(1769712270.520:28): pid=12091 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1396" name="file1" dev="loop0" ino=12 res=0 errno=0
[  686.568998][ T6445] airspy 2-1:0.0: Board ID: 00
[  686.577764][ T6445] airspy 2-1:0.0: Firmware version: 
[  686.774114][ T5769] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  686.961273][T12084] loop2: detected capacity change from 0 to 32768
[  686.979872][T12084] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop2 scanned by syz.2.1395 (12084)
[  687.037200][T12084] BTRFS info (device loop2): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  687.073609][T12084] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  687.085611][T12084] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_LZO (0x8)
[  687.103962][T12084] BTRFS info (device loop2): use lzo compression, level 0
[  687.125432][T12084] BTRFS info (device loop2): force clearing of disk cache
[  687.158688][T12084] BTRFS info (device loop2): using free space tree
[  687.196280][ T6445] airspy 2-1:0.0: usb_control_msg() failed -71 request 12
[  687.226040][ T6445] airspy 2-1:0.0: Registered as swradio24
[  687.237791][ T6445] airspy 2-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[  687.298164][ T6445] usb 2-1: USB disconnect, device number 19
[  687.335972][T12084] BTRFS info (device loop2): enabling ssd optimizations
[  687.343542][T12084] BTRFS info (device loop2): auto enabling async discard
[  687.386065][T12084] BTRFS info (device loop2): rebuilding free space tree
[  687.729623][T12129] loop5: detected capacity change from 0 to 256
[  687.857074][ T5772] BTRFS info (device loop2): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  687.954438][T12133] loop1: detected capacity change from 0 to 256
[  688.003617][T12133] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  688.059869][T12133] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  688.081347][T12133] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  688.793947][T12152] loop0: detected capacity change from 0 to 256
[  688.817959][T12152] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  689.181992][T12158] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1413'.
[  689.243341][T12159] netlink: 'syz.1.1412': attribute type 10 has an invalid length.
[  689.319449][T12161] loop5: detected capacity change from 0 to 512
[  689.338350][T12161] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  689.378377][T12161] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  689.394202][T12161] ext4 filesystem being mounted at /213/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  689.537166][ T8541] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  689.831154][T12171] loop5: detected capacity change from 0 to 256
[  690.672881][T12171] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  690.868074][ T5832] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  690.976137][   T27] audit: type=1326 audit(1769712275.020:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12175 comm="syz.1.1419" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7faabc39aeb9 code=0x0
[  691.098435][ T5832] usb 3-1: Using ep0 maxpacket: 32
[  691.118381][ T5832] usb 3-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f
[  691.133490][ T5832] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  691.157738][ T5832] usb 3-1: Product: syz
[  691.161995][ T5832] usb 3-1: Manufacturer: syz
[  691.166635][ T5832] usb 3-1: SerialNumber: syz
[  691.190347][ T5832] usb 3-1: config 0 descriptor??
[  691.335414][T12174] loop0: detected capacity change from 0 to 32768
[  691.383102][T12174] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[  691.531351][T12186] 9pnet_fd: Insufficient options for proto=fd
[  691.573655][T12186] netlink: 'syz.5.1421': attribute type 10 has an invalid length.
[  691.797280][ T5832] airspy 3-1:0.0: Board ID: 00
[  691.861932][ T5832] airspy 3-1:0.0: Firmware version: 
[  692.425693][ T5769] ocfs2: Unmounting device (7,0) on (node local)
[  692.466836][ T5832] airspy 3-1:0.0: usb_control_msg() failed -71 request 12
[  692.501831][ T5832] airspy 3-1:0.0: Registered as swradio24
[  692.528034][ T5832] airspy 3-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[  692.575932][ T5832] usb 3-1: USB disconnect, device number 25
[  692.592825][T12192] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1424'.
[  692.664646][T12192] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  692.673756][T12192] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  692.682748][T12192] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  692.691733][T12192] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  692.736318][T12192] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1424'.
[  692.787774][ T1188] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  692.879656][   T51] Bluetooth: hci0: Malformed MSFT vendor event: 0x02
[  692.998178][ T1188] usb 2-1: Using ep0 maxpacket: 16
[  693.015633][ T1188] usb 2-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3
[  693.025571][ T1188] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  693.033962][ T1188] usb 2-1: Product: syz
[  693.047867][ T1188] usb 2-1: Manufacturer: syz
[  693.053218][ T1188] usb 2-1: SerialNumber: syz
[  693.070914][ T1188] usb 2-1: config 0 descriptor??
[  693.419839][T12212] loop5: detected capacity change from 0 to 256
[  693.464519][T12212] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  693.545886][ T1188] dvb-usb: found a 'AME DTV-5100 USB2.0 DVB-T' in warm state.
[  693.594326][ T1188] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  693.607812][ T1188] dvbdev: DVB: registering new adapter (AME DTV-5100 USB2.0 DVB-T)
[  693.617290][T12209] netlink: 'syz.2.1428': attribute type 10 has an invalid length.
[  693.621276][ T1188] usb 2-1: media controller created
[  693.658482][ T1188] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  693.803048][ T1188] zl10353_read_register: readreg error (reg=127, ret==0)
[  693.812136][ T1188] dvb-usb: no frontend was attached by 'AME DTV-5100 USB2.0 DVB-T'
[  693.820512][ T1188] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully initialized and connected.
[  694.471425][   T23] usb 2-1: USB disconnect, device number 20
[  694.571446][   T23] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully deinitialized and disconnected.
[  694.938312][ T1188] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  695.137761][ T1188] usb 6-1: Using ep0 maxpacket: 32
[  695.152892][ T1188] usb 6-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f
[  695.171752][ T1188] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  695.191972][ T1188] usb 6-1: Product: syz
[  695.196301][ T1188] usb 6-1: Manufacturer: syz
[  695.205919][ T1188] usb 6-1: SerialNumber: syz
[  695.226431][ T1188] usb 6-1: config 0 descriptor??
[  695.627752][   T23] usb 3-1: new full-speed USB device number 26 using dummy_hcd
[  695.662616][ T1188] airspy 6-1:0.0: Board ID: 00
[  695.667747][ T1188] airspy 6-1:0.0: Firmware version: 
[  695.694638][T12249] loop1: detected capacity change from 0 to 32768
[  695.767824][T12249] overlayfs: upper fs needs to support d_type.
[  695.775033][T12249] overlayfs: upper fs does not support tmpfile.
[  695.800578][T12249] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  695.823817][   T23] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  695.862803][   T23] usb 3-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  695.885485][   T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  695.920422][   T23] usb 3-1: config 0 descriptor??
[  695.929315][T12251] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  696.154786][T12257] netlink: 'syz.1.1447': attribute type 1 has an invalid length.
[  696.287933][ T1188] airspy 6-1:0.0: usb_control_msg() failed -71 request 12
[  696.311179][ T1188] airspy 6-1:0.0: Registered as swradio24
[  696.317004][ T1188] airspy 6-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[  696.353520][ T1188] usb 6-1: USB disconnect, device number 7
[  696.464442][   T23] elan 0003:04F3:0755.001F: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.2-1/input0
[  696.488406][T12263] netlink: 'syz.0.1457': attribute type 10 has an invalid length.
[  696.656560][ T1188] usb 3-1: USB disconnect, device number 26
[  696.912717][T12269] only policy match revision 0 supported
[  696.912787][T12269] unable to load match
[  697.298458][T12276] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1454'.
[  698.328053][T12308] loop5: detected capacity change from 0 to 256
[  698.353072][T12308] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  699.336247][T12318] 9pnet_fd: Insufficient options for proto=fd
[  699.375865][T12318] netlink: 'syz.1.1470': attribute type 10 has an invalid length.
[  700.408679][T12329] loop5: detected capacity change from 0 to 131072
[  700.446882][T12329] F2FS-fs (loop5): Wrong CP boundary, start(512) end(1536) blocks(0)
[  700.455440][T12329] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  700.468550][T12329] F2FS-fs (loop5): invalid crc value
[  700.490176][T12329] F2FS-fs (loop5): Found nat_bits in checkpoint
[  700.558798][T12329] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  700.565940][T12329] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[  701.043702][T12350] overlayfs: failed to clone upperpath
[  701.685901][T12366] 9pnet_fd: Insufficient options for proto=fd
[  701.731264][T12366] netlink: 'syz.0.1488': attribute type 10 has an invalid length.
[  702.766901][T12382] loop5: detected capacity change from 0 to 256
[  702.850771][T12382] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  704.007778][ T6445] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  704.162839][T12407] 9pnet_fd: Insufficient options for proto=fd
[  704.176709][T12407] netlink: 'syz.1.1499': attribute type 10 has an invalid length.
[  704.210393][ T6445] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  704.232044][ T6445] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  704.253344][ T6445] usb 6-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  704.265183][ T6445] usb 6-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  704.283530][ T6445] usb 6-1: Manufacturer: syz
[  704.310174][ T6445] usb 6-1: config 0 descriptor??
[  704.842985][T12410] netlink: 'syz.2.1501': attribute type 10 has an invalid length.
[  705.140582][ T6445] input: syz as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:256C:006D.0020/input/input18
[  706.511945][ T6445] input: syz as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:256C:006D.0020/input/input19
[  706.841073][ T6445] input: syz Touch Strip as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:256C:006D.0020/input/input20
[  706.899690][ T6445] input: syz Dial as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:256C:006D.0020/input/input21
[  706.962859][ T6445] uclogic 0003:256C:006D.0020: input,hidraw0: USB HID v0.00 Keypad [syz] on usb-dummy_hcd.5-1/input0
[  706.994170][T12426] loop2: detected capacity change from 0 to 1024
[  707.022280][T12426] EXT4-fs: Ignoring removed bh option
[  707.034995][ T6445] usb 6-1: USB disconnect, device number 8
[  707.109034][T12426] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  707.255143][T12427] fido_id[12427]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/6-1/report_descriptor': No such file or directory
[  707.347831][   T27] audit: type=1800 audit(1769712291.360:30): pid=12426 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1508" name="file1" dev="loop2" ino=15 res=0 errno=0
[  707.721122][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  709.114657][T12459] 9pnet_fd: Insufficient options for proto=fd
[  709.169139][T12459] netlink: 'syz.2.1513': attribute type 10 has an invalid length.
[  709.647149][T12467] netlink: 'syz.0.1516': attribute type 10 has an invalid length.
[  709.811619][T12472] loop5: detected capacity change from 0 to 128
[  709.835129][T12472] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  709.886862][T12472] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  710.589257][   T49] netdevsim netdevsim5 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  710.615564][   T49] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  710.833339][   T49] netdevsim netdevsim5 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  710.860170][   T49] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  711.014745][   T49] netdevsim netdevsim5 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  711.053846][   T49] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  711.102568][T12488] overlayfs: failed to verify index (index/00fb21000176b82ac3c9d44309bcfbcafae088836e7c2c38ed7208000000000000, ftype=8000, err=-61)
[  711.143145][T12488] overlayfs: failed index dir cleanup (-61)
[  711.166276][T12488] overlayfs: try deleting index dir or mounting with '-o index=off' to disable inodes index.
[  711.221296][   T49] netdevsim netdevsim5 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  711.264305][   T49] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  711.594944][ T5779] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  711.612748][ T5779] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  711.621885][ T5779] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  711.639358][ T5779] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  711.648080][ T5779] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  711.657195][ T5779] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  711.906980][T12507] fuse: Bad value for 'fd'
[  712.132595][T12502] netlink: 'syz.0.1532': attribute type 10 has an invalid length.
[  712.458276][T12524] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  713.936441][ T5779] Bluetooth: hci0: command tx timeout
[  714.397224][T12500] chnl_net:caif_netlink_parms(): no params data found
[  714.847041][T12500] bridge0: port 1(bridge_slave_0) entered blocking state
[  714.908589][T12500] bridge0: port 1(bridge_slave_0) entered disabled state
[  714.915901][T12500] bridge_slave_0: entered allmulticast mode
[  714.939489][T12500] bridge_slave_0: entered promiscuous mode
[  714.959422][T12500] bridge0: port 2(bridge_slave_1) entered blocking state
[  714.966619][T12500] bridge0: port 2(bridge_slave_1) entered disabled state
[  714.998372][T12500] bridge_slave_1: entered allmulticast mode
[  715.007100][T12500] bridge_slave_1: entered promiscuous mode
[  715.214232][T12500] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  715.262703][T12500] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  715.552512][T12500] team0: Port device team_slave_0 added
[  715.624644][T12500] team0: Port device team_slave_1 added
[  715.914758][T12500] batman_adv: batadv0: Adding interface: batadv_slave_0
[  715.947845][T12500] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  715.988113][ T5779] Bluetooth: hci0: command tx timeout
[  716.007677][T12500] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  716.059730][T12500] batman_adv: batadv0: Adding interface: batadv_slave_1
[  716.066810][T12500] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  716.166759][T12500] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  716.244187][   T49] hsr_slave_0: left promiscuous mode
[  716.257474][   T49] hsr_slave_1: left promiscuous mode
[  716.273317][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  716.297381][   T49] batman_adv: batadv0: Removing interface: batadv_slave_0
[  716.322127][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  716.331375][   T49] batman_adv: batadv0: Removing interface: batadv_slave_1
[  716.368759][   T49] bridge_slave_1: left allmulticast mode
[  716.405236][   T49] bridge_slave_1: left promiscuous mode
[  716.424475][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[  716.467060][   T49] bridge_slave_0: left allmulticast mode
[  716.474258][   T49] bridge_slave_0: left promiscuous mode
[  716.485203][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[  716.558788][   T49] veth1_macvtap: left promiscuous mode
[  716.568004][   T49] veth0_macvtap: left promiscuous mode
[  716.576019][   T49] veth1_vlan: left promiscuous mode
[  716.594947][   T49] veth0_vlan: left promiscuous mode
[  718.058184][ T5779] Bluetooth: hci0: command tx timeout
[  719.749862][   T49] team0 (unregistering): Port device team_slave_1 removed
[  719.925204][   T49] team0 (unregistering): Port device team_slave_0 removed
[  719.981766][T12632] kvm: user requested TSC rate below hardware speed
[  720.054387][T12632] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3596000302 (14384001208 ns) > initial count (4696682236 ns). Using initial count to start timer.
[  720.099754][   T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  720.110396][T12632] kvm: kvm [12631]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc2) = 0x9d00
[  720.138347][ T5779] Bluetooth: hci0: command tx timeout
[  720.145372][T12632] kvm: kvm [12631]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc1) = 0x9d00
[  720.222535][T12632] kvm: vcpu 0: requested 14336 ns lapic timer period limited to 200000 ns
[  720.255977][   T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  721.088864][   T49] bond0 (unregistering): (slave team0): Releasing backup interface
[  721.152485][   T49] bond0 (unregistering): Released all slaves
[  721.561603][T12500] hsr_slave_0: entered promiscuous mode
[  721.598818][T12500] hsr_slave_1: entered promiscuous mode
[  721.620987][T12500] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  721.637792][T12500] Cannot create hsr debugfs directory
[  721.788351][T12666] overlayfs: failed to clone upperpath
[  722.120620][T12675] overlayfs: failed to clone upperpath
[  722.337123][T12500] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  722.396548][T12500] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  722.438250][T12500] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  722.470661][T12500] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  722.834058][T12500] 8021q: adding VLAN 0 to HW filter on device bond0
[  722.912039][T12500] 8021q: adding VLAN 0 to HW filter on device team0
[  722.936607][ T1132] bridge0: port 1(bridge_slave_0) entered blocking state
[  722.943986][ T1132] bridge0: port 1(bridge_slave_0) entered forwarding state
[  722.988973][ T2922] bridge0: port 2(bridge_slave_1) entered blocking state
[  722.996183][ T2922] bridge0: port 2(bridge_slave_1) entered forwarding state
[  723.418846][ T5867] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  723.536503][T12500] 8021q: adding VLAN 0 to HW filter on device batadv0
[  723.624902][ T5867] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  723.650552][ T5867] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  723.680688][ T5867] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  723.711234][ T5867] usb 3-1: config 0 descriptor??
[  723.730087][ T5867] pwc: Askey VC010 type 2 USB webcam detected.
[  724.136853][ T5867] pwc: recv_control_msg error -32 req 02 val 2b00
[  724.167330][ T5867] pwc: recv_control_msg error -32 req 02 val 2700
[  724.194677][ T5867] pwc: recv_control_msg error -32 req 02 val 2c00
[  724.218501][ T5867] pwc: recv_control_msg error -32 req 04 val 1000
[  724.255939][ T5867] pwc: recv_control_msg error -32 req 04 val 1300
[  724.354965][T12500] veth0_vlan: entered promiscuous mode
[  724.408652][T12500] veth1_vlan: entered promiscuous mode
[  724.483026][ T5867] pwc: recv_control_msg error -71 req 02 val 2000
[  724.508169][ T5867] pwc: recv_control_msg error -71 req 02 val 2100
[  724.536532][ T5867] pwc: recv_control_msg error -71 req 04 val 1500
[  724.550606][T12500] veth0_macvtap: entered promiscuous mode
[  724.560160][ T5867] pwc: recv_control_msg error -71 req 02 val 2500
[  724.592799][T12500] veth1_macvtap: entered promiscuous mode
[  724.599232][ T5867] pwc: recv_control_msg error -71 req 02 val 2400
[  724.617859][ T5867] pwc: recv_control_msg error -71 req 02 val 2600
[  724.640511][ T5867] pwc: recv_control_msg error -71 req 02 val 2900
[  724.678252][ T5867] pwc: recv_control_msg error -71 req 02 val 2800
[  724.685049][T12500] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  724.685139][T12500] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  724.707086][T12500] batman_adv: batadv0: Interface activated: batadv_slave_0
[  724.716025][T12500] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  724.716049][T12500] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  724.738636][T12500] batman_adv: batadv0: Interface activated: batadv_slave_1
[  724.806342][T12500] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  724.821232][T12500] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  724.835234][T12500] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  724.847058][T12500] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  724.862634][ T5867] pwc: recv_control_msg error -71 req 04 val 1100
[  724.877739][ T5867] pwc: recv_control_msg error -71 req 04 val 1200
[  724.917435][ T5867] pwc: Registered as video103.
[  724.935993][ T5867] input: PWC snapshot button as /devices/platform/dummy_hcd.2/usb3/3-1/input/input22
[  725.009075][ T5867] usb 3-1: USB disconnect, device number 27
[  725.210749][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  725.254364][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  725.283161][T12770] loop2: detected capacity change from 0 to 128
[  725.369780][T12770] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  725.394529][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  725.414270][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  725.443834][T12770] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  725.766117][T12781] fuse: Bad value for 'fd'
[  726.447188][T12779] loop6: detected capacity change from 0 to 32768
[  726.749574][T12779] UFO tlock:0xffffc9000287a4c8
[  726.763524][   T12] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  726.784439][T12779] MetaData crosses page boundary!!
[  726.812656][T12779] lblock = 66f800, size  = 16781312
[  726.827782][T12779] CPU: 0 PID: 12779 Comm: syz.6.1526 Not tainted syzkaller #0
[  726.835342][T12779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  726.845447][T12779] Call Trace:
[  726.848775][T12779]  <TASK>
[  726.851766][T12779]  dump_stack_lvl+0x18c/0x250
[  726.856546][T12779]  ? show_regs_print_info+0x20/0x20
[  726.861803][T12779]  ? load_image+0x400/0x400
[  726.866399][T12779]  ? folio_unlock+0x118/0x2e0
[  726.871144][T12779]  __get_metapage+0xaac/0xfa0
[  726.875894][T12779]  dtSearch+0x591/0x21b0
[  726.880238][T12779]  dtDelete+0x128/0x2d40
[  726.884544][T12779]  ? dtSearch+0x1d20/0x21b0
[  726.889092][T12779]  ? __kmem_cache_free+0xba/0x1e0
[  726.894185][T12779]  ? dtInsertEntry+0x13e0/0x13e0
[  726.899188][T12779]  ? dtSearch+0x1d20/0x21b0
[  726.903787][T12779]  jfs_rename+0xc6d/0x1800
[  726.908284][T12779]  ? jfs_mknod+0x9c0/0x9c0
[  726.913319][T12779]  ? down_write_nested+0x175/0x200
[  726.918505][T12779]  ? take_dentry_name_snapshot+0xc7/0x160
[  726.924311][T12779]  ? try_break_deleg+0x79/0x120
[  726.929228][T12779]  ? jfs_mknod+0x9c0/0x9c0
[  726.933733][T12779]  vfs_rename+0xba2/0xed0
[  726.938139][T12779]  ? __ia32_sys_link+0x90/0x90
[  726.942973][T12779]  ? d_alloc+0x1eb/0x250
[  726.947370][T12779]  ? bpf_lsm_path_rename+0x9/0x10
[  726.952447][T12779]  ? security_path_rename+0x17c/0x200
[  726.957889][T12779]  do_renameat2+0x8e9/0xce0
[  726.962451][T12779]  ? __lock_acquire+0x7d40/0x7d40
[  726.967548][T12779]  ? fsnotify_move+0x4e0/0x4e0
[  726.972369][T12779]  ? __check_object_size+0x506/0xa20
[  726.977728][T12779]  ? strncpy_from_user+0x197/0x2d0
[  726.982896][T12779]  ? getname_flags+0x20a/0x500
[  726.987758][T12779]  __x64_sys_rename+0x86/0x90
[  726.992500][T12779]  do_syscall_64+0x55/0xa0
[  726.996975][T12779]  ? clear_bhb_loop+0x40/0x90
[  727.001704][T12779]  ? clear_bhb_loop+0x40/0x90
[  727.006438][T12779]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  727.012386][T12779] RIP: 0033:0x7f6ea019aeb9
[  727.016853][T12779] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  727.036609][T12779] RSP: 002b:00007f6ea1105028 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  727.045095][T12779] RAX: ffffffffffffffda RBX: 00007f6ea0415fa0 RCX: 00007f6ea019aeb9
[  727.053131][T12779] RDX: 0000000000000000 RSI: 0000200000000640 RDI: 00002000000000c0
[  727.061151][T12779] RBP: 00007f6ea0208c1f R08: 0000000000000000 R09: 0000000000000000
[  727.069170][T12779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  727.077186][T12779] R13: 00007f6ea0416038 R14: 00007f6ea0415fa0 R15: 00007fffaf17e738
[  727.085235][T12779]  </TASK>
[  727.120105][T12779] bread failed!
[  727.123985][T12779] jfs_rename did not expect dtDelete to return rc = -5
[  727.161431][T12779] ERROR: (device loop6): jfs_rename: 
[  727.161431][T12779] 
[  727.178306][T12779] ERROR: (device loop6): remounting filesystem as read-only
[  727.314021][   T12] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  727.542754][   T12] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  728.865866][   T12] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  729.120804][   T51] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  729.133137][   T51] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  729.143468][   T51] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  729.152130][   T51] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  729.164512][   T51] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  729.175744][   T51] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  731.247973][ T5779] Bluetooth: hci2: command tx timeout
[  731.261813][ T6445] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  731.487931][ T6445] usb 7-1: Using ep0 maxpacket: 8
[  731.512005][ T6445] usb 7-1: config 0 has no interfaces?
[  731.521642][ T6445] usb 7-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=c4.6d
[  731.534270][ T6445] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  731.543565][ T6445] usb 7-1: Product: syz
[  731.551333][ T6445] usb 7-1: Manufacturer: syz
[  731.556210][ T6445] usb 7-1: SerialNumber: syz
[  731.604607][T12830] chnl_net:caif_netlink_parms(): no params data found
[  731.607975][ T6445] usb 7-1: config 0 descriptor??
[  732.177237][T12830] bridge0: port 1(bridge_slave_0) entered blocking state
[  732.194195][T12830] bridge0: port 1(bridge_slave_0) entered disabled state
[  732.202191][T12830] bridge_slave_0: entered allmulticast mode
[  732.211311][T12830] bridge_slave_0: entered promiscuous mode
[  732.289552][T12830] bridge0: port 2(bridge_slave_1) entered blocking state
[  732.297002][T12830] bridge0: port 2(bridge_slave_1) entered disabled state
[  732.305512][T12830] bridge_slave_1: entered allmulticast mode
[  732.316343][T12830] bridge_slave_1: entered promiscuous mode
[  732.411202][T12830] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  732.462280][T12830] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  733.627726][ T5779] Bluetooth: hci2: command tx timeout
[  733.741083][T12830] team0: Port device team_slave_0 added
[  733.765719][T12830] team0: Port device team_slave_1 added
[  733.849740][ T5817] usb 7-1: USB disconnect, device number 2
[  733.959213][   T12] hsr_slave_0: left promiscuous mode
[  734.039781][   T12] hsr_slave_1: left promiscuous mode
[  734.048107][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  734.055588][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  734.072410][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  734.083170][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  734.113785][   T12] bridge_slave_1: left allmulticast mode
[  734.122235][   T12] bridge_slave_1: left promiscuous mode
[  734.129800][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  734.139465][   T12] bridge_slave_0: left allmulticast mode
[  734.145175][   T12] bridge_slave_0: left promiscuous mode
[  734.151946][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  734.223384][   T12] veth1_macvtap: left promiscuous mode
[  734.229268][   T12] veth0_macvtap: left promiscuous mode
[  734.248322][   T12] veth1_vlan: left promiscuous mode
[  734.253771][   T12] veth0_vlan: left promiscuous mode
[  734.356444][   T12] infiniband : set down
[  734.496673][T12925] 9pnet_fd: Insufficient options for proto=fd
[  734.937981][    T8] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  735.031404][T12937] overlayfs: failed to clone upperpath
[  735.137828][    T8] usb 7-1: Using ep0 maxpacket: 32
[  735.159075][    T8] usb 7-1: config 0 has an invalid interface number: 184 but max is 0
[  735.167328][    T8] usb 7-1: config 0 has no interface number 0
[  735.176489][    T8] usb 7-1: config 0 interface 184 has no altsetting 0
[  735.195382][    T8] usb 7-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  735.205515][    T8] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  735.218797][    T8] usb 7-1: Product: syz
[  735.223025][    T8] usb 7-1: Manufacturer: syz
[  735.231795][    T8] usb 7-1: SerialNumber: syz
[  735.252540][    T8] usb 7-1: config 0 descriptor??
[  735.282410][    T8] smsc75xx v1.0.0
[  735.420542][   T49] smc: removing ib device 
[  735.648115][ T5779] Bluetooth: hci2: command tx timeout
[  736.030021][   T12] team0 (unregistering): Port device team_slave_1 removed
[  736.124561][   T12] team0 (unregistering): Port device team_slave_0 removed
[  736.226129][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  736.323696][    T8] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  736.336561][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  736.346124][    T8] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  736.776404][    T8] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000010: -71
[  736.790853][    T8] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): Failed to write HW_CFG: -71
[  736.804204][    T8] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  736.815320][    T8] smsc75xx: probe of 7-1:0.184 failed with error -71
[  736.827879][    T8] usb 7-1: USB disconnect, device number 3
[  736.985714][   T12] bond0 (unregistering): (slave team0): Releasing backup interface
[  736.994599][T12934] infiniband syz1: ib_query_port failed (-19)
[  737.057207][   T12] bond0 (unregistering): Released all slaves
[  737.230960][ T5817] infiniband : ib_query_port failed (-19)
[  737.279870][T12830] batman_adv: batadv0: Adding interface: batadv_slave_0
[  737.286888][T12830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  737.348381][T12830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  737.411404][T12830] batman_adv: batadv0: Adding interface: batadv_slave_1
[  737.420136][T12830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  737.498848][T12830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  737.728263][ T5779] Bluetooth: hci2: command tx timeout
[  737.771903][T12830] hsr_slave_0: entered promiscuous mode
[  737.818601][T12830] hsr_slave_1: entered promiscuous mode
[  737.935796][T12958] 9pnet_fd: Insufficient options for proto=fd
[  738.133721][T12958] netlink: 'syz.0.1651': attribute type 10 has an invalid length.
[  738.599880][T12963] loop6: detected capacity change from 0 to 32768
[  738.764728][T12963] ocfs2: Mounting device (7,6) on (node local, slot 0) with writeback data mode.
[  739.105784][T12830] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  739.213003][T12830] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  739.274265][T12830] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  739.381624][T12830] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  739.611362][T12500] ocfs2: Unmounting device (7,6) on (node local)
[  739.611572][   T12] IPVS: stop unused estimator thread 0...
[  739.876663][T12830] 8021q: adding VLAN 0 to HW filter on device bond0
[  739.933613][T12830] 8021q: adding VLAN 0 to HW filter on device team0
[  739.985414][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[  739.992618][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[  740.062035][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  740.069285][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  740.154823][T12998] 9pnet_fd: Insufficient options for proto=fd
[  740.177298][T12998] netlink: 'syz.0.1658': attribute type 10 has an invalid length.
[  740.593090][T13007] block device autoloading is deprecated and will be removed.
[  740.691764][T12830] 8021q: adding VLAN 0 to HW filter on device batadv0
[  741.111987][T13031] 9pnet_fd: Insufficient options for proto=fd
[  741.163639][T13031] netlink: 'syz.1.1661': attribute type 10 has an invalid length.
[  741.443378][T12830] veth0_vlan: entered promiscuous mode
[  741.465275][T12830] veth1_vlan: entered promiscuous mode
[  741.539178][T12830] veth0_macvtap: entered promiscuous mode
[  741.551119][T12830] veth1_macvtap: entered promiscuous mode
[  741.591308][T12830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  741.602994][T12830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  741.628989][T12830] batman_adv: batadv0: Interface activated: batadv_slave_0
[  741.665972][T12830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  741.677287][T12830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  741.694030][T12830] batman_adv: batadv0: Interface activated: batadv_slave_1
[  741.723246][T12830] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  741.732295][ T5832] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  741.747093][T12830] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  741.762838][T12830] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  741.773287][T12830] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  741.979852][ T5832] usb 7-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac
[  742.018024][ T5832] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  742.972233][ T5832] usb 7-1: Product: syz
[  742.976497][ T5832] usb 7-1: Manufacturer: syz
[  742.987175][ T5832] usb 7-1: SerialNumber: syz
[  743.028354][ T2962] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  743.067057][ T2962] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  743.090200][ T5832] usb 7-1: config 0 descriptor??
[  743.217771][ T5832] gspca_main: sunplus-2.14.0 probing 055f:c230
[  743.250862][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  743.259435][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  743.686672][T13071] 9pnet_fd: Insufficient options for proto=fd
[  743.760068][T13074] overlayfs: failed to clone upperpath
[  743.768268][T13071] netlink: 'syz.1.1671': attribute type 10 has an invalid length.
[  745.064242][ T5832] gspca_sunplus: reg_r err -110
[  745.137310][ T5832] sunplus: probe of 7-1:0.0 failed with error -110
[  745.608224][ T6445] usb 7-1: USB disconnect, device number 4
[  746.229303][T13106] loop7: detected capacity change from 0 to 256
[  746.353408][T13106] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  747.893799][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  748.806106][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  749.687117][T13168] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1692'.
[  749.862809][T13142] loop6: detected capacity change from 0 to 32768
[  749.909006][T13142] XFS (loop6): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  750.037846][T13142] XFS (loop6): Ending clean mount
[  750.081235][T13142] XFS (loop6): Quotacheck needed: Please wait.
[  750.222844][T13142] XFS (loop6): Quotacheck: Done.
[  750.375291][   T27] audit: type=1800 audit(1769712334.420:31): pid=13142 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1686" name="file1" dev="loop6" ino=6150 res=0 errno=0
[  750.466715][   T27] audit: type=1800 audit(1769712334.460:32): pid=13142 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1686" name="file1" dev="loop6" ino=6150 res=0 errno=0
[  750.642035][T13195] loop7: detected capacity change from 0 to 2048
[  750.713493][T12500] XFS (loop6): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  750.746281][T13195] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  750.768958][T13195] ext4 filesystem being mounted at /8/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  751.436803][T13195] EXT4-fs error (device loop7): ext4_validate_block_bitmap:439: comm syz.7.1696: bg 0: block 345: padding at end of block bitmap is not set
[  751.454861][T13195] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117
[  751.468160][T13195] EXT4-fs (loop7): This should not happen!! Data will be lost
[  751.468160][T13195] 
[  751.794561][   T33] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 2031 with error 28
[  751.812646][   T33] EXT4-fs (loop7): This should not happen!! Data will be lost
[  751.812646][   T33] 
[  751.824603][   T33] EXT4-fs (loop7): Total free blocks count 0
[  751.831830][   T33] EXT4-fs (loop7): Free/Dirty block details
[  751.839277][   T33] EXT4-fs (loop7): free_blocks=0
[  751.844428][   T33] EXT4-fs (loop7): dirty_blocks=2032
[  751.850335][   T33] EXT4-fs (loop7): Block reservation details
[  751.966245][T13217] loop6: detected capacity change from 0 to 256
[  751.990331][T13217] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  752.974807][T13243] overlayfs: failed to clone upperpath
[  753.207769][T10371] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  753.417716][T10371] usb 7-1: Using ep0 maxpacket: 32
[  753.430988][T10371] usb 7-1: config 0 has no interfaces?
[  753.443418][T10371] usb 7-1: New USB device found, idVendor=04dd, idProduct=8005, bcdDevice=3b.fa
[  753.477699][T10371] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  753.485781][T10371] usb 7-1: Product: syz
[  753.508673][T10371] usb 7-1: Manufacturer: syz
[  753.513370][T10371] usb 7-1: SerialNumber: syz
[  753.548856][T10371] usb 7-1: config 0 descriptor??
[  753.565680][T13239] loop7: detected capacity change from 0 to 32768
[  753.635858][T13239] XFS (loop7): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  753.737480][T13239] XFS (loop7): Ending clean mount
[  753.764645][T13239] XFS (loop7): Quotacheck needed: Please wait.
[  753.963105][T13239] XFS (loop7): Quotacheck: Done.
[  754.091461][   T27] audit: type=1800 audit(1769712338.140:33): pid=13239 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1707" name="file1" dev="loop7" ino=6150 res=0 errno=0
[  754.193265][   T27] audit: type=1800 audit(1769712338.180:34): pid=13239 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1707" name="file1" dev="loop7" ino=6150 res=0 errno=0
[  754.332177][T12830] XFS (loop7): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  754.593332][ T5867] usb 7-1: USB disconnect, device number 5
[  756.053715][T13327] loop7: detected capacity change from 0 to 256
[  756.073843][T13327] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  757.928670][T13365] overlayfs: failed to clone upperpath
[  758.547288][T13386] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1742'.
[  758.868397][T13394] loop7: detected capacity change from 0 to 256
[  758.915720][T13394] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  759.647440][T13361] loop6: detected capacity change from 0 to 65536
[  759.824293][T13361] XFS (loop6): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  759.955346][T13361] XFS (loop6): Ending clean mount
[  760.000879][T13361] XFS (loop6): Quotacheck needed: Please wait.
[  760.084070][ T2922] XFS (loop6): Metadata CRC error detected at xfs_agf_read_verify+0x196/0x260, xfs_agf block 0x1 
[  760.125432][ T2922] XFS (loop6): Unmount and run xfs_repair
[  760.144546][ T2922] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[  760.172561][ T2922] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00  XAGF..........@.
[  760.195746][ T2922] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  760.223377][ T2922] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 01 00 00 04  ................
[  760.247831][ T2922] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00  ......?...?.....
[  760.275182][ T2922] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  760.305439][ T2922] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  760.332636][ T2922] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  760.357977][ T2922] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  760.382166][ T2922] XFS (loop6): metadata I/O error in "xfs_read_agf+0x294/0x590" at daddr 0x1 len 1 error 74
[  760.433358][T13361] XFS (loop6): Quotacheck: Unsuccessful (Error -117): Disabling quotas.
[  760.683391][  T786] XFS (loop6): Metadata CRC error detected at xfs_agf_read_verify+0x196/0x260, xfs_agf block 0x1 
[  760.739222][  T786] XFS (loop6): Unmount and run xfs_repair
[  760.745052][  T786] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[  760.819392][  T786] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00  XAGF..........@.
[  760.844466][  T786] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  760.872852][  T786] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 01 00 00 04  ................
[  760.882237][  T786] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00  ......?...?.....
[  760.891698][  T786] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  760.901141][  T786] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  760.911324][  T786] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  760.937675][  T786] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  760.967734][  T786] XFS (loop6): Metadata CRC error detected at xfs_agf_read_verify+0x196/0x260, xfs_agf block 0x8001 
[  760.981328][T13361] XFS (loop6): metadata I/O error in "xfs_read_agf+0x294/0x590" at daddr 0x1 len 1 error 74
[  760.999014][T13361] XFS (loop6): page discard on page ffffea000157dd80, inode 0x2a, pos 64512.
[  761.020444][  T786] XFS (loop6): Unmount and run xfs_repair
[  761.026274][  T786] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[  761.036755][T13361] XFS (loop6): Metadata CRC error detected at xfs_agf_read_verify+0x196/0x260, xfs_agf block 0x1 
[  761.050780][T13361] XFS (loop6): Unmount and run xfs_repair
[  761.058089][  T786] 00000000: 58 41 47 46 00 00 00 01 00 00 00 01 00 00 40 00  XAGF..........@.
[  761.061036][T13361] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[  761.078412][  T786] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  761.094393][T13361] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00  XAGF..........@.
[  761.103802][T13361] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  761.114528][T13361] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 01 00 00 04  ................
[  761.123716][T13361] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00  ......?...?.....
[  761.132707][  T786] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00 04  ................
[  761.132806][  T786] 00000030: 00 00 00 04 00 00 3b 5f 00 00 3b 5c 00 00 00 00  ......;_..;\....
[  761.132823][  T786] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  761.132839][  T786] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  761.132855][  T786] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  761.132871][  T786] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  761.207812][T13436] XFS (loop6): metadata I/O error in "xfs_read_agf+0x294/0x590" at daddr 0x8001 len 1 error 74
[  761.240745][T13361] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  761.276170][T13436] XFS (loop6): page discard on page ffffea000147f600, inode 0x2b, pos 0.
[  761.285439][T13361] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  761.335563][T13361] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  761.380497][T13361] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  761.423172][T13361] XFS (loop6): metadata I/O error in "xfs_read_agf+0x294/0x590" at daddr 0x1 len 1 error 74
[  761.473878][T13361] XFS (loop6): page discard on page ffffea000169cc00, inode 0x2a, pos 65536.
[  761.501412][T12765] XFS (loop6): Metadata CRC error detected at xfs_agf_read_verify+0x196/0x260, xfs_agf block 0x1 
[  761.516641][T12765] XFS (loop6): Unmount and run xfs_repair
[  761.542736][T12765] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[  761.562184][T12765] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00  XAGF..........@.
[  761.587736][T12765] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  761.606998][T12765] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 01 00 00 04  ................
[  761.627450][T12765] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00  ......?...?.....
[  761.645370][T12765] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  761.683886][T12765] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  761.704416][T12765] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  761.733529][T12765] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  761.753897][T13361] XFS (loop6): metadata I/O error in "xfs_read_agf+0x294/0x590" at daddr 0x1 len 1 error 74
[  761.782412][T13361] XFS (loop6): page discard on page ffffea000126df00, inode 0x2a, pos 98304.
[  761.804387][  T786] XFS (loop6): Metadata CRC error detected at xfs_agf_read_verify+0x196/0x260, xfs_agf block 0x1 
[  761.837687][  T786] XFS (loop6): Unmount and run xfs_repair
[  761.852290][  T786] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[  761.872259][  T786] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00  XAGF..........@.
[  761.943172][T13461] loop7: detected capacity change from 0 to 256
[  761.979682][T13461] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  762.062221][  T786] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  762.076603][  T786] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 01 00 00 04  ................
[  762.086207][  T786] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00  ......?...?.....
[  762.108122][  T786] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  762.117567][  T786] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  762.134945][  T786] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  762.144459][  T786] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  762.178017][T13361] XFS (loop6): metadata I/O error in "xfs_read_agf+0x294/0x590" at daddr 0x1 len 1 error 74
[  762.207903][T13361] XFS (loop6): page discard on page ffffea00015bf000, inode 0x2a, pos 114688.
[  762.238691][ T1188] XFS (loop6): Metadata CRC error detected at xfs_agf_read_verify+0x196/0x260, xfs_agf block 0x1 
[  762.272357][ T1188] XFS (loop6): Unmount and run xfs_repair
[  762.291660][ T1188] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[  762.327621][ T1188] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00  XAGF..........@.
[  762.373530][ T1188] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  762.409428][ T1188] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 01 00 00 04  ................
[  762.433376][ T1188] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00  ......?...?.....
[  762.445285][ T1188] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  762.482375][ T1188] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  762.512779][ T1188] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  762.540756][ T1188] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  762.559143][T13361] XFS (loop6): metadata I/O error in "xfs_read_agf+0x294/0x590" at daddr 0x1 len 1 error 74
[  762.575850][T13361] XFS (loop6): page discard on page ffffea000157ddc0, inode 0x2a, pos 122880.
[  762.587399][T13361] XFS (loop6): Metadata CRC error detected at xfs_agf_read_verify+0x196/0x260, xfs_agf block 0x1 
[  762.604529][T13361] XFS (loop6): Unmount and run xfs_repair
[  762.613426][T13361] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[  762.625021][T13361] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00  XAGF..........@.
[  762.646554][T13361] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  762.658264][T13361] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 01 00 00 04  ................
[  762.667191][T13361] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00  ......?...?.....
[  762.684836][T13361] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  762.695124][T13361] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  762.706526][T13361] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  762.716697][T13361] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  762.730172][T13361] XFS (loop6): metadata I/O error in "xfs_read_agf+0x294/0x590" at daddr 0x1 len 1 error 74
[  762.743165][T13361] XFS (loop6): page discard on page ffffea000157de00, inode 0x2a, pos 126976.
[  762.783578][T12500] XFS (loop6): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  762.962966][T13478] loop7: detected capacity change from 0 to 512
[  763.076246][T13478] EXT4-fs (loop7): revision level too high, forcing read-only mode
[  763.165215][T13478] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  763.227981][T13478] System zones: 0-1, 15-15, 18-18, 34-34
[  763.258128][T13478] EXT4-fs (loop7): orphan cleanup on readonly fs
[  763.264673][T13478] Quota error (device loop7): v2_read_header: Failed header read: expected=8 got=0
[  763.311641][T13478] EXT4-fs warning (device loop7): ext4_enable_quotas:7184: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  763.386227][T13478] EXT4-fs (loop7): Cannot turn on quotas: error -22
[  763.417084][T13478] EXT4-fs error (device loop7): ext4_validate_block_bitmap:439: comm syz.7.1758: bg 0: block 40: padding at end of block bitmap is not set
[  763.492388][T13478] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6653: Corrupt filesystem
[  763.513416][T13478] EXT4-fs (loop7): 1 truncate cleaned up
[  763.536683][T13478] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  763.819283][T12830] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  765.196324][T13513] 9pnet_fd: Insufficient options for proto=fd
[  765.392060][T13513] netlink: 'syz.1.1769': attribute type 10 has an invalid length.
[  765.815562][T13530] loop6: detected capacity change from 0 to 128
[  765.903394][T13530] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  765.941209][T13530] ext4 filesystem being mounted at /25/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  765.999062][   T27] audit: type=1326 audit(1769712350.050:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13534 comm="syz.0.1775" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f81c959aeb9 code=0x0
[  766.309092][T12500] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  767.092146][T13581] 9pnet_fd: Insufficient options for proto=fd
[  767.213072][T13581] netlink: 'syz.0.1782': attribute type 10 has an invalid length.
[  767.358943][T13593] 9pnet_fd: Insufficient options for proto=fd
[  767.384621][T13593] netlink: 'syz.7.1784': attribute type 10 has an invalid length.
[  767.466536][T13593] 8021q: adding VLAN 0 to HW filter on device team0
[  767.481352][T13593] bond0: (slave team0): Enslaving as an active interface with an up link
[  768.748100][ T5817] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  768.929966][ T5817] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  768.948884][ T5817] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  768.966546][ T5817] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  768.981329][ T5817] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  768.990975][ T5817] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  769.006711][ T5817] usb 8-1: config 0 descriptor??
[  769.030930][T13631] 9pnet_fd: Insufficient options for proto=fd
[  769.060748][T13631] netlink: 'syz.1.1795': attribute type 10 has an invalid length.
[  769.455911][ T5817] plantronics 0003:047F:FFFF.0021: No inputs registered, leaving
[  769.504662][ T5817] plantronics 0003:047F:FFFF.0021: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.7-1/input0
[  769.827061][ T5817] usb 8-1: USB disconnect, device number 2
[  769.836284][T13613] usb 8-1: string descriptor 0 read error: -19
[  769.878923][T13654] overlayfs: failed to clone upperpath
[  769.888276][T12766] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  770.098245][T12766] usb 7-1: Using ep0 maxpacket: 16
[  770.112684][T12766] usb 7-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3
[  770.122174][T12766] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  770.146060][T12766] usb 7-1: Product: syz
[  770.157784][T12766] usb 7-1: Manufacturer: syz
[  770.166409][T12766] usb 7-1: SerialNumber: syz
[  770.192660][T12766] usb 7-1: config 0 descriptor??
[  770.294385][T13663] overlayfs: failed to clone upperpath
[  770.642862][T12766] dvb-usb: found a 'AME DTV-5100 USB2.0 DVB-T' in warm state.
[  770.720921][T13677] loop7: detected capacity change from 0 to 256
[  770.758964][T13677] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  770.912995][T12766] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  770.947149][T12766] dvbdev: DVB: registering new adapter (AME DTV-5100 USB2.0 DVB-T)
[  770.972822][T12766] usb 7-1: media controller created
[  771.014672][T12766] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  771.071728][T12766] zl10353_read_register: readreg error (reg=127, ret==0)
[  771.088254][T12766] dvb-usb: no frontend was attached by 'AME DTV-5100 USB2.0 DVB-T'
[  771.105131][T12766] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully initialized and connected.
[  771.139866][T12766] usb 7-1: USB disconnect, device number 6
[  771.248961][T12766] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully deinitialized and disconnected.
[  771.645030][T13695] overlayfs: failed to clone lowerpath
[  771.907009][T13704] 9pnet_fd: Insufficient options for proto=fd
[  771.981846][T13704] netlink: 'syz.0.1812': attribute type 10 has an invalid length.
[  772.162826][T13714] netlink: 'syz.6.1815': attribute type 10 has an invalid length.
[  772.513135][ T6445] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  773.000811][T13714] 8021q: adding VLAN 0 to HW filter on device team0
[  773.032755][T13714] bond0: (slave team0): Enslaving as an active interface with an up link
[  773.067662][ T6445] usb 8-1: Using ep0 maxpacket: 16
[  773.092617][ T6445] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  773.121980][ T6445] usb 8-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  773.136567][ T6445] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  773.171187][ T6445] usb 8-1: Product: syz
[  773.181461][ T6445] usb 8-1: Manufacturer: syz
[  773.194799][ T6445] usb 8-1: SerialNumber: syz
[  773.203609][ T6445] usb 8-1: config 0 descriptor??
[  773.259296][ T6445] em28xx 8-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  773.275483][ T6445] em28xx 8-1:0.0: DVB interface 0 found: bulk
[  774.743609][ T6445] em28xx 8-1:0.0: unknown em28xx chip ID (0)
[  775.294763][T13760] 9pnet_fd: Insufficient options for proto=fd
[  775.381433][T13760] netlink: 'syz.0.1826': attribute type 10 has an invalid length.
[  775.395508][ T6445] em28xx 8-1:0.0: read from i2c device at 0xa0 failed with unknown error (status=65)
[  775.412243][ T6445] em28xx 8-1:0.0: board has no eeprom
[  775.657768][ T6445] em28xx 8-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  775.668183][ T6445] em28xx 8-1:0.0: dvb set to bulk mode.
[  775.674722][   T23] em28xx 8-1:0.0: Binding DVB extension
[  775.698384][T12766] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  775.711414][ T6445] usb 8-1: USB disconnect, device number 3
[  775.729678][ T6445] em28xx 8-1:0.0: Disconnecting em28xx
[  775.919411][T12766] usb 7-1: Using ep0 maxpacket: 8
[  775.945850][   T23] em28xx 8-1:0.0: Registering input extension
[  775.946202][T12766] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  775.961311][ T6445] em28xx 8-1:0.0: Closing input extension
[  776.009783][T12766] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  776.063871][T12766] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  776.094496][ T6445] em28xx 8-1:0.0: Freeing device
[  776.153287][T12766] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  776.194658][T12766] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  776.245438][T12766] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  776.265505][T12766] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  776.399216][T13775] netlink: 'syz.0.1829': attribute type 10 has an invalid length.
[  776.509916][T12766] usb 7-1: GET_CAPABILITIES returned 0
[  776.526593][T12766] usbtmc 7-1:16.0: can't read capabilities
[  777.557748][ T6445] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  777.800752][ T6445] usb 8-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  777.815807][T12766] usb 7-1: USB disconnect, device number 7
[  777.834960][T13764] usbtmc 7-1:16.0: usb_control_msg returned -71
[  777.873359][ T6445] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  777.909285][ T6445] usb 8-1: config 0 descriptor??
[  777.959798][ T6445] gspca_main: STV06xx-2.14.0 probing 046d:0870
[  779.134850][T13819] 9pnet_fd: Insufficient options for proto=fd
[  779.169921][ T6445] usb 8-1: USB disconnect, device number 4
[  779.199299][T13819] netlink: 'syz.6.1838': attribute type 10 has an invalid length.
[  780.155311][T13853] 9pnet_fd: Insufficient options for proto=fd
[  780.179988][T13853] netlink: 'syz.7.1842': attribute type 10 has an invalid length.
[  780.992812][T13858] netlink: 'syz.6.1843': attribute type 10 has an invalid length.
[  781.604610][T13866] sctp: [Deprecated]: syz.0.1846 (pid 13866) Use of int in max_burst socket option deprecated.
[  781.604610][T13866] Use struct sctp_assoc_value instead
[  781.854503][T13871] 0x000000000005-0x00000000000b : ""
[  781.906048][T13871] ftl_cs: FTL header corrupt!
[  782.245184][T13888] 9pnet_fd: Insufficient options for proto=fd
[  782.306154][T13888] netlink: 'syz.0.1851': attribute type 10 has an invalid length.
[  782.724742][T13898] 9pnet_fd: Insufficient options for proto=fd
[  782.801786][T13898] netlink: 'syz.1.1853': attribute type 10 has an invalid length.
[  784.568344][ T6445] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  784.757786][ T6445] usb 8-1: Using ep0 maxpacket: 16
[  784.769064][ T6445] usb 8-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3
[  784.805329][ T6445] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  784.847047][ T6445] usb 8-1: Product: syz
[  784.857743][ T6445] usb 8-1: Manufacturer: syz
[  784.862434][ T6445] usb 8-1: SerialNumber: syz
[  784.887295][ T6445] usb 8-1: config 0 descriptor??
[  784.989686][   T27] audit: type=1326 audit(1769712369.040:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13927 comm="syz.6.1859" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6ea019aeb9 code=0x0
[  785.310310][ T6445] dvb-usb: found a 'AME DTV-5100 USB2.0 DVB-T' in warm state.
[  785.326484][ T6445] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  785.353463][ T6445] dvbdev: DVB: registering new adapter (AME DTV-5100 USB2.0 DVB-T)
[  785.369842][ T6445] usb 8-1: media controller created
[  785.434676][ T6445] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  785.564449][ T6445] zl10353_read_register: readreg error (reg=127, ret==0)
[  785.580227][ T6445] dvb-usb: no frontend was attached by 'AME DTV-5100 USB2.0 DVB-T'
[  785.588694][ T6445] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully initialized and connected.
[  785.645295][T13953] 9pnet_fd: Insufficient options for proto=fd
[  785.702057][T13953] netlink: 'syz.1.1864': attribute type 10 has an invalid length.
[  785.999344][T13960] 9pnet_fd: Insufficient options for proto=fd
[  786.028331][T13960] netlink: 'syz.6.1865': attribute type 10 has an invalid length.
[  786.236284][T12766] usb 8-1: USB disconnect, device number 5
[  786.782422][T12766] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully deinitialized and disconnected.
[  787.489414][T13986] netlink: 'syz.6.1871': attribute type 10 has an invalid length.
[  789.940669][T13998] 9pnet_fd: Insufficient options for proto=fd
[  789.998940][T13998] netlink: 'syz.6.1875': attribute type 10 has an invalid length.
[  790.812647][T14018] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1879'.
[  791.357921][T14041] netlink: 'syz.0.1883': attribute type 10 has an invalid length.
[  791.451224][T14014] loop7: detected capacity change from 0 to 32768
[  791.629186][T14014] overlayfs: upper fs needs to support d_type.
[  791.654364][T14014] overlayfs: upper fs does not support tmpfile.
[  791.685344][T14014] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  792.027081][T14066] 9pnet_fd: Insufficient options for proto=fd
[  792.080507][T14066] netlink: 'syz.1.1889': attribute type 10 has an invalid length.
[  793.500932][T14104] netlink: 'syz.1.1898': attribute type 10 has an invalid length.
[  794.527286][T14099] loop6: detected capacity change from 0 to 32768
[  794.651718][T14099] overlayfs: upper fs needs to support d_type.
[  794.677728][T14099] overlayfs: upper fs does not support tmpfile.
[  794.703505][T14099] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  794.840238][T14135] overlayfs: failed to clone upperpath
[  795.697394][T14157] netlink: 'syz.0.1908': attribute type 10 has an invalid length.
[  796.218540][T14179] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1913'.
[  796.538229][ T1188] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  796.555266][T14149] loop6: detected capacity change from 0 to 32768
[  796.643334][T14149] XFS (loop6): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[  796.747161][T14149] XFS (loop6): Ending clean mount
[  796.779682][ T1188] usb 8-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  796.823347][ T1188] usb 8-1: config 0 interface 0 has no altsetting 0
[  796.835962][ T1188] usb 8-1: New USB device found, idVendor=046a, idProduct=0023, bcdDevice= 0.00
[  796.864780][ T1188] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  796.894565][ T1188] usb 8-1: config 0 descriptor??
[  796.930437][ T1188] usbhid 8-1:0.0: can't add hid device: -22
[  796.936516][ T1188] usbhid: probe of 8-1:0.0 failed with error -22
[  796.985893][   T23] XFS (loop6): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xd0, xfs_bnobt block 0x4 
[  797.017053][T14207] 9pnet_fd: Insufficient options for proto=fd
[  797.047546][   T23] XFS (loop6): Unmount and run xfs_repair
[  797.056487][T14207] netlink: 'syz.1.1919': attribute type 10 has an invalid length.
[  797.065783][   T23] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[  797.077248][   T23] 00000000: 41 42 33 42 00 00 00 03 ff ff ff ff ff ff ff ff  AB3B............
[  797.103876][   T23] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 10  ................
[  797.122293][   T23] 00000020: ed 37 bf 6e 74 ea 4e 01 f8 ba 5f ee 27 4b 0f 3a  .7.nt.N..._.'K.:
[  797.134565][   T23] 00000030: 00 00 00 00 f6 3b 25 b5 00 00 00 07 00 00 00 01  .....;%.........
[  797.144386][   T23] 00000040: 00 00 0b fe 00 00 00 02 00 00 0c 20 00 00 13 e0  ........... ....
[  797.154806][   T23] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  797.191824][   T23] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  797.208237][   T23] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  797.229981][T14149] XFS (loop6): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x4 len 4 error 74
[  797.251702][T14149] XFS (loop6): page discard on page ffffea00016b9000, inode 0x180a, pos 0.
[  797.274646][T14149] XFS (loop6): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xd0, xfs_bnobt block 0x4 
[  797.311651][T14149] XFS (loop6): Unmount and run xfs_repair
[  797.333210][T14149] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[  797.359214][T14149] 00000000: 41 42 33 42 00 00 00 03 ff ff ff ff ff ff ff ff  AB3B............
[  797.393459][T14149] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 10  ................
[  797.424463][T14149] 00000020: ed 37 bf 6e 74 ea 4e 01 f8 ba 5f ee 27 4b 0f 3a  .7.nt.N..._.'K.:
[  797.454969][T14149] 00000030: 00 00 00 00 f6 3b 25 b5 00 00 00 07 00 00 00 01  .....;%.........
[  797.485388][T14149] 00000040: 00 00 0b fe 00 00 00 02 00 00 0c 20 00 00 13 e0  ........... ....
[  797.517018][T14149] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  797.550880][T14149] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  797.585714][T14149] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  797.616890][T14149] XFS (loop6): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x4 len 4 error 74
[  797.651444][T14149] XFS (loop6): page discard on page ffffea00016a8d00, inode 0x180a, pos 32768.
[  797.678588][ T1188] XFS (loop6): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xd0, xfs_bnobt block 0x4 
[  797.691569][ T1188] XFS (loop6): Unmount and run xfs_repair
[  797.698551][ T1188] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[  797.706289][ T1188] 00000000: 41 42 33 42 00 00 00 03 ff ff ff ff ff ff ff ff  AB3B............
[  797.717828][ T1188] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 10  ................
[  797.736319][ T1188] 00000020: ed 37 bf 6e 74 ea 4e 01 f8 ba 5f ee 27 4b 0f 3a  .7.nt.N..._.'K.:
[  797.745838][ T1188] 00000030: 00 00 00 00 f6 3b 25 b5 00 00 00 07 00 00 00 01  .....;%.........
[  797.757621][ T1188] 00000040: 00 00 0b fe 00 00 00 02 00 00 0c 20 00 00 13 e0  ........... ....
[  797.766632][ T1188] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  797.791370][ T1188] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  797.824135][ T1188] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  797.833766][T14149] XFS (loop6): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x4 len 4 error 74
[  797.858036][T14149] XFS (loop6): page discard on page ffffea00012ddb00, inode 0x180a, pos 49152.
[  797.899271][ T5867] XFS (loop6): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xd0, xfs_bnobt block 0x4 
[  797.929080][ T5867] XFS (loop6): Unmount and run xfs_repair
[  797.938081][ T5867] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[  797.957673][ T5867] 00000000: 41 42 33 42 00 00 00 03 ff ff ff ff ff ff ff ff  AB3B............
[  797.987890][ T5867] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 10  ................
[  798.007532][ T5867] 00000020: ed 37 bf 6e 74 ea 4e 01 f8 ba 5f ee 27 4b 0f 3a  .7.nt.N..._.'K.:
[  798.024559][ T5867] 00000030: 00 00 00 00 f6 3b 25 b5 00 00 00 07 00 00 00 01  .....;%.........
[  798.055404][ T5867] 00000040: 00 00 0b fe 00 00 00 02 00 00 0c 20 00 00 13 e0  ........... ....
[  798.078700][ T5867] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  798.097923][ T5867] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  798.113466][ T5867] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  798.147351][T14149] XFS (loop6): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x4 len 4 error 74
[  798.165820][T14149] XFS (loop6): page discard on page ffffea000164fb80, inode 0x180a, pos 57344.
[  798.186225][ T5867] XFS (loop6): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xd0, xfs_bnobt block 0x4 
[  798.202119][ T5867] XFS (loop6): Unmount and run xfs_repair
[  798.221381][ T5867] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[  798.237726][ T5867] 00000000: 41 42 33 42 00 00 00 03 ff ff ff ff ff ff ff ff  AB3B............
[  798.256306][ T5867] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 10  ................
[  798.273918][ T5867] 00000020: ed 37 bf 6e 74 ea 4e 01 f8 ba 5f ee 27 4b 0f 3a  .7.nt.N..._.'K.:
[  798.288119][ T5867] 00000030: 00 00 00 00 f6 3b 25 b5 00 00 00 07 00 00 00 01  .....;%.........
[  798.299402][ T5867] 00000040: 00 00 0b fe 00 00 00 02 00 00 0c 20 00 00 13 e0  ........... ....
[  798.311660][ T5867] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  798.320993][ T5867] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  798.331098][ T5867] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  798.341299][T14149] XFS (loop6): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x4 len 4 error 74
[  798.353102][T14149] XFS (loop6): page discard on page ffffea000164fbc0, inode 0x180a, pos 61440.
[  798.392096][T14220] netlink: 'syz.1.1923': attribute type 10 has an invalid length.
[  798.596172][T12500] XFS (loop6): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[  798.832594][T14226] binder: 14225:14226 unknown command 0
[  798.838492][T14226] binder: 14225:14226 ioctl c0306201 200000000080 returned -22
[  798.849918][T14226] binder: 14225:14226 ioctl c0306201 2000000003c0 returned -14
[  799.507485][T14238] 9pnet_fd: Insufficient options for proto=fd
[  799.534669][T14238] netlink: 'syz.7.1931': attribute type 10 has an invalid length.
[  800.667964][   T27] audit: type=1326 audit(1769712384.700:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14243 comm="syz.7.1934" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7989f9aeb9 code=0x0
[  800.852454][T14250] loop6: detected capacity change from 0 to 512
[  800.938535][T14250] EXT4-fs: Ignoring removed nobh option
[  801.006755][T14250] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #11: comm syz.6.1926: invalid indirect mapped block 256 (level 2)
[  801.034779][T14250] EXT4-fs (loop6): Remounting filesystem read-only
[  801.041779][T14250] EXT4-fs (loop6): 2 truncates cleaned up
[  801.048964][T14250] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  802.214447][T12500] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  802.870898][T14278] 9pnet_fd: Insufficient options for proto=fd
[  802.988792][T14278] netlink: 'syz.0.1942': attribute type 10 has an invalid length.
[  803.850624][T14286] fuse: Bad value for 'fd'
[  804.124658][T14292] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  804.150177][T14292] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  805.742609][   T23] usb 8-1: USB disconnect, device number 6
[  806.219697][T14312] 9pnet_fd: Insufficient options for proto=fd
[  806.244632][T14312] netlink: 'syz.7.1955': attribute type 10 has an invalid length.
[  807.512179][T14336] loop6: detected capacity change from 0 to 256
[  807.564274][T14336] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  808.380302][T14359] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  808.454044][T14367] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1970'.
[  809.648333][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  809.654904][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  810.036128][T14373] syz.0.1975: attempt to access beyond end of device
[  810.036128][T14373] loop1: rw=4096, sector=2, nr_sectors = 2 limit=0
[  810.899260][T14387] netlink: 'syz.7.1977': attribute type 10 has an invalid length.
[  811.121388][T14373] EXT4-fs (loop1): unable to read superblock
[  812.490032][T14403] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1981'.
[  812.745690][T14409] loop7: detected capacity change from 0 to 1024
[  812.762568][T14409] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  812.818338][T14409] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  812.954964][T14409] EXT4-fs error (device loop7) in ext4_reserve_inode_write:5920: Out of memory
[  813.018804][T14409] EXT4-fs (loop7): Remounting filesystem read-only
[  813.175558][T12830] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  813.358038][T14423] netlink: 'syz.1.1988': attribute type 10 has an invalid length.
[  813.408285][T14425] loop7: detected capacity change from 0 to 8192
[  813.425736][T14425] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  813.441589][T14425] REISERFS (device loop7): found reiserfs format "3.5" with non-standard journal
[  813.453391][T14425] REISERFS (device loop7): using ordered data mode
[  813.462545][T14425] reiserfs: using flush barriers
[  813.473359][T14425] REISERFS (device loop7): journal params: device loop7, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  813.526339][T14425] REISERFS (device loop7): checking transaction log (loop7)
[  813.546810][T14425] REISERFS (device loop7): Using r5 hash to sort names
[  813.572059][T14425] REISERFS (device loop7): Created .reiserfs_priv - reserved for xattr storage.
[  813.763445][T14431] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4 0(1) DIR], item_len 35, item_location 3542, free_space(entry_count) 2
[  813.793034][T14431] REISERFS error (device loop7): vs-5150 search_by_key: invalid format found in block 532. Fsck?
[  813.806175][T14431] REISERFS (device loop7): Remounting filesystem read-only
[  813.823649][T14431] REISERFS error (device loop7): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 4 0x0 SD] stat data
[  813.896483][T14431] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4 0(1) DIR], item_len 35, item_location 150, free_space(entry_count) 2
[  813.915188][T14431] REISERFS error (device loop7): vs-5150 search_by_key: invalid format found in block 532. Fsck?
[  813.939561][T14431] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4 0(1) DIR], item_len 35, item_location 150, free_space(entry_count) 2
[  813.956668][T14431] REISERFS error (device loop7): vs-5150 search_by_key: invalid format found in block 532. Fsck?
[  813.977766][T14431] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4 0(1) DIR], item_len 35, item_location 150, free_space(entry_count) 2
[  813.996079][T14431] REISERFS error (device loop7): vs-5150 search_by_key: invalid format found in block 532. Fsck?
[  814.007335][T14431] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4 0(1) DIR], item_len 35, item_location 150, free_space(entry_count) 2
[  814.023186][T14431] REISERFS error (device loop7): vs-5150 search_by_key: invalid format found in block 532. Fsck?
[  814.044385][T14431] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4 0(1) DIR], item_len 35, item_location 150, free_space(entry_count) 2
[  814.060403][T14431] REISERFS error (device loop7): vs-5150 search_by_key: invalid format found in block 532. Fsck?
[  814.071444][T14431] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4 0(1) DIR], item_len 35, item_location 150, free_space(entry_count) 2
[  814.149868][T14431] REISERFS error (device loop7): vs-5150 search_by_key: invalid format found in block 532. Fsck?
[  814.175502][T14431] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4 0(1) DIR], item_len 35, item_location 150, free_space(entry_count) 2
[  814.192868][T14431] REISERFS error (device loop7): vs-5150 search_by_key: invalid format found in block 532. Fsck?
[  814.221481][T14431] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4 0(1) DIR], item_len 35, item_location 150, free_space(entry_count) 2
[  814.272249][T14431] REISERFS error (device loop7): vs-5150 search_by_key: invalid format found in block 532. Fsck?
[  814.307781][T14431] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4 0(1) DIR], item_len 35, item_location 150, free_space(entry_count) 2
[  814.364977][T14440] loop6: detected capacity change from 0 to 256
[  814.407238][T14440] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  814.520774][T14431] REISERFS error (device loop7): vs-5150 search_by_key: invalid format found in block 532. Fsck?
[  814.534194][T14431] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4 0(1) DIR], item_len 35, item_location 150, free_space(entry_count) 2
[  814.560560][T14431] REISERFS error (device loop7): vs-5150 search_by_key: invalid format found in block 532. Fsck?
[  814.572766][T14431] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4 0(1) DIR], item_len 35, item_location 150, free_space(entry_count) 2
[  814.598130][T14431] REISERFS error (device loop7): vs-5150 search_by_key: invalid format found in block 532. Fsck?
[  814.641166][T14431] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4 0(1) DIR], item_len 35, item_location 150, free_space(entry_count) 2
[  814.687285][T14431] REISERFS error (device loop7): vs-5150 search_by_key: invalid format found in block 532. Fsck?
[  814.720410][T14431] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4 0(1) DIR], item_len 35, item_location 150, free_space(entry_count) 2
[  814.756667][T14431] REISERFS error (device loop7): vs-5150 search_by_key: invalid format found in block 532. Fsck?
[  814.787823][T14431] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4 0(1) DIR], item_len 35, item_location 150, free_space(entry_count) 2
[  814.807637][T14431] REISERFS error (device loop7): vs-5150 search_by_key: invalid format found in block 532. Fsck?
[  814.827787][T14431] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4 0(1) DIR], item_len 35, item_location 150, free_space(entry_count) 2
[  814.867747][T14431] REISERFS error (device loop7): vs-5150 search_by_key: invalid format found in block 532. Fsck?
[  814.887744][T14431] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4 0(1) DIR], item_len 35, item_location 150, free_space(entry_count) 2
[  814.911005][T14431] REISERFS error (device loop7): vs-5150 search_by_key: invalid format found in block 532. Fsck?
[  814.926677][T14431] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4 0(1) DIR], item_len 35, item_location 150, free_space(entry_count) 2
[  814.948934][T14431] REISERFS error (device loop7): vs-5150 search_by_key: invalid format found in block 532. Fsck?
[  815.288442][T14447] loop7: detected capacity change from 0 to 256
[  815.314297][T14447] exFAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  815.345238][T14447] exFAT-fs (loop7): Medium has reported failures. Some data may be lost.
[  815.383508][T14447] exFAT-fs (loop7): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d)
[  815.747195][T14462] overlayfs: failed to clone upperpath
[  819.148157][T14506] syz.6.2013: attempt to access beyond end of device
[  819.148157][T14506] loop13: rw=4096, sector=2, nr_sectors = 2 limit=0
[  819.185132][T14506] EXT4-fs (loop13): unable to read superblock
[  821.244459][T14562] 9pnet_fd: Insufficient options for proto=fd
[  821.291310][T14562] netlink: 'syz.6.2032': attribute type 10 has an invalid length.
[  822.411948][   T27] audit: type=1326 audit(1769712406.460:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14609 comm="syz.0.2050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81c959aeb9 code=0x7ffc0000
[  822.439768][   T27] audit: type=1326 audit(1769712406.490:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14609 comm="syz.0.2050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81c959aeb9 code=0x7ffc0000
[  822.498944][T14612] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  822.516751][   T27] audit: type=1326 audit(1769712406.490:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14609 comm="syz.0.2050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81c959aeb9 code=0x7ffc0000
[  822.553487][   T27] audit: type=1326 audit(1769712406.490:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14609 comm="syz.0.2050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81c959aeb9 code=0x7ffc0000
[  822.585960][   T27] audit: type=1326 audit(1769712406.510:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14609 comm="syz.0.2050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f81c959aeb9 code=0x7ffc0000
[  822.623434][   T27] audit: type=1326 audit(1769712406.510:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14609 comm="syz.0.2050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81c959aeb9 code=0x7ffc0000
[  822.650975][   T27] audit: type=1326 audit(1769712406.510:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14609 comm="syz.0.2050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81c959aeb9 code=0x7ffc0000
[  822.685494][   T27] audit: type=1326 audit(1769712406.520:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14609 comm="syz.0.2050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81c959aeb9 code=0x7ffc0000
[  822.713019][   T27] audit: type=1326 audit(1769712406.520:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14609 comm="syz.0.2050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81c959aeb9 code=0x7ffc0000
[  822.759502][   T27] audit: type=1326 audit(1769712406.520:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14609 comm="syz.0.2050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f81c955b78e code=0x7ffc0000
[  822.844071][T14618] 9pnet_fd: Insufficient options for proto=fd
[  822.899652][T14618] netlink: 'syz.0.2052': attribute type 10 has an invalid length.
[  822.994540][T14623] fuse: Bad value for 'fd'
[  823.174481][T14628] syz.7.2058: attempt to access beyond end of device
[  823.174481][T14628] loop15: rw=4096, sector=2, nr_sectors = 2 limit=0
[  823.194153][T14628] EXT4-fs (loop15): unable to read superblock
[  823.682050][T14634] overlayfs: failed to clone upperpath
[  823.967122][T14645] netlink: 'syz.7.2066': attribute type 10 has an invalid length.
[  824.114797][    C0] vcan0: j1939_tp_rxtimer: 0xffff888025ada800: rx timeout, send abort
[  824.614948][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805e574c00: rx timeout, send abort
[  824.627703][    C0] vcan0: j1939_tp_rxtimer: 0xffff888025ada800: abort rx timeout. Force session deactivation
[  825.123317][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805e574c00: abort rx timeout. Force session deactivation
[  826.273700][T14670] tipc: Failed to remove unknown binding: 66,1,1/0:1091126838/1091126840
[  826.310121][T14672] 9pnet_fd: Insufficient options for proto=fd
[  826.353575][T14672] netlink: 'syz.1.2069': attribute type 10 has an invalid length.
[  826.870116][T14686] netlink: 'syz.7.2078': attribute type 10 has an invalid length.
[  828.647163][T14708] overlayfs: failed to clone upperpath
[  829.472748][T14735] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  829.651206][T14743] overlayfs: failed to clone upperpath
[  830.567531][T14782] overlayfs: failed to clone upperpath
[  830.673085][T14787] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2117'.
[  831.276512][T14797] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2117'.
[  831.643647][T14838] overlayfs: failed to clone upperpath
[  832.066008][T14853] overlayfs: failed to clone upperpath
[  832.681659][   T27] kauditd_printk_skb: 9 callbacks suppressed
[  832.681675][   T27] audit: type=1326 audit(1769712416.730:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14873 comm="syz.1.2150" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7faabc39aeb9 code=0x0
[  832.891056][T14882] netlink: 'syz.0.2152': attribute type 10 has an invalid length.
[  835.024571][T14930] netlink: 'syz.0.2171': attribute type 10 has an invalid length.
[  837.014199][T14927] Bluetooth: hci0: command 0x0406 tx timeout
[  837.221124][T14971] netlink: 'syz.6.2185': attribute type 10 has an invalid length.
[  839.014798][T14995] overlayfs: failed to clone upperpath
[  843.226917][T15059] overlayfs: failed to clone upperpath
[  843.520503][T15068] netlink: 60 bytes leftover after parsing attributes in process `syz.6.2213'.
[  845.034345][T15084] netlink: 'syz.0.2219': attribute type 4 has an invalid length.
[  848.061342][T15143] fuse: Unknown parameter '9p'
[  848.495000][T15156] fuse: Bad value for 'fd'
[  850.121532][T15166] 9pnet_fd: Insufficient options for proto=fd
[  852.378628][T14927] Bluetooth: hci2: command 0x0406 tx timeout
[  852.983697][T15226] 9pnet_fd: Insufficient options for proto=fd
[  853.079901][T15226] netlink: 'syz.1.2271': attribute type 10 has an invalid length.
[  854.570054][T15238] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2274'.
[  855.334115][T15264] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2284'.
[  855.395479][T15266] 9pnet_fd: Insufficient options for proto=fd
[  855.602517][T15266] netlink: 'syz.7.2282': attribute type 10 has an invalid length.
[  855.628251][T15272] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2287'.
[  855.826085][T15276] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2287'.
[  858.602294][T15303] ptrace attach of "./syz-executor exec"[5777] was attempted by ""[15303]
[  858.957914][T15309] 9pnet_fd: Insufficient options for proto=fd
[  858.988206][T15309] netlink: 'syz.0.2297': attribute type 10 has an invalid length.
[  859.834599][T15327] 9pnet_fd: Insufficient options for proto=fd
[  859.874318][T15327] netlink: 'syz.6.2300': attribute type 10 has an invalid length.
[  859.913636][T15328] netlink: 'syz.1.2301': attribute type 10 has an invalid length.
[  860.047656][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805ebdbc00: rx timeout, send abort
[  860.547887][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805ebdac00: rx timeout, send abort
[  860.556381][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805ebdbc00: abort rx timeout. Force session deactivation
[  860.881252][T15356] 9pnet_fd: Insufficient options for proto=fd
[  860.941134][T15356] netlink: 'syz.6.2310': attribute type 10 has an invalid length.
[  861.056301][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805ebdac00: abort rx timeout. Force session deactivation
[  862.628419][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805f2c6000: rx timeout, send abort
[  863.128601][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805f2c5c00: rx timeout, send abort
[  863.137793][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805f2c6000: abort rx timeout. Force session deactivation
[  863.178444][T15394] 9pnet_fd: Insufficient options for proto=fd
[  863.198287][T15394] netlink: 'syz.1.2318': attribute type 10 has an invalid length.
[  863.243559][T15395] netlink: 'syz.0.2319': attribute type 10 has an invalid length.
[  863.354224][T15400] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  863.637629][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805f2c5c00: abort rx timeout. Force session deactivation
[  865.200735][T15415] 9pnet_fd: Insufficient options for proto=fd
[  865.284599][T15415] netlink: 'syz.6.2325': attribute type 10 has an invalid length.
[  867.387461][T15458] netlink: 'syz.7.2335': attribute type 10 has an invalid length.
[  867.852900][ T5779] Bluetooth: hci0: unexpected event for opcode 0x2043
[  868.088030][T15472] 9pnet_fd: Insufficient options for proto=fd
[  868.126787][T15472] netlink: 'syz.0.2341': attribute type 10 has an invalid length.
[  869.404810][T15487] netem: change failed
[  869.592514][T15500] bridge_slave_1: entered promiscuous mode
[  870.582160][T15512] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2354'.
[  870.686819][T15518] 9pnet_fd: Insufficient options for proto=fd
[  870.771887][T15518] netlink: 'syz.6.2358': attribute type 10 has an invalid length.
[  870.788195][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  870.794604][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  871.944232][ T5779] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  871.953410][ T5779] Bluetooth: hci0: Injecting HCI hardware error event
[  871.965744][T14927] Bluetooth: hci0: hardware error 0x00
[  872.173306][T15542] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  874.529571][T14927] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  877.097052][T15574] netlink: 'syz.1.2370': attribute type 10 has an invalid length.
[  880.870561][T15606] bond0: entered allmulticast mode
[  880.875899][T15606] team0: entered allmulticast mode
[  882.706584][T15631] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  882.773200][T15633] netlink: 'syz.7.2387': attribute type 10 has an invalid length.
[  882.792004][T15633] netlink: 40 bytes leftover after parsing attributes in process `syz.7.2387'.
[  882.958731][T15633] team0: Port device geneve0 added
[  883.880119][T15646] 9pnet_fd: Insufficient options for proto=fd
[  884.845384][T15655] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2393'.
[  885.052515][T15653] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  885.344847][T15667] overlayfs: failed to clone upperpath
[  888.664453][T10371] IPVS: starting estimator thread 0...
[  889.169833][T15700] IPVS: using max 18 ests per chain, 43200 per kthread
[  890.568331][T15728] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  898.660741][    C0] ------------[ cut here ]------------
[  898.666935][    C0] WARNING: CPU: 0 PID: 15809 at net/mac80211/tx.c:5031 __ieee80211_beacon_get+0x1233/0x1600
[  898.677355][    C0] Modules linked in:
[  898.681384][    C0] CPU: 0 PID: 15809 Comm: syz.7.2424 Not tainted syzkaller #0
[  898.688911][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  898.699013][    C0] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600
[  898.705363][    C0] Code: 24 4c 89 e7 e8 5e 86 c2 f7 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 59 ce 84 f7 0f 0b e9 f6 f7 ff ff e8 4d ce 84 f7 <0f> 0b e9 48 fb ff ff e8 41 ce 84 f7 48 c7 c7 e0 4c 64 8e 4c 89 e6
[  898.725137][    C0] RSP: 0000:ffffc90000007a18 EFLAGS: 00010246
[  898.731284][    C0] RAX: ffffffff8a0244d3 RBX: ffffffff8a0232d6 RCX: ffff8880292a9e00
[  898.739306][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  898.747296][    C0] RBP: 0000000000000000 R08: ffff8880292a9e00 R09: 0000000000000003
[  898.755348][    C0] R10: 0000000000000007 R11: 0000000000000100 R12: ffff88805ebce3c0
[  898.763410][    C0] R13: dffffc0000000000 R14: ffff88805ebce8b0 R15: ffff888026592824
[  898.771477][    C0] FS:  00007f798af186c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  898.780457][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  898.787083][    C0] CR2: 000055556a9ad4a0 CR3: 000000004bddb000 CR4: 00000000003506f0
[  898.795220][    C0] Call Trace:
[  898.798558][    C0]  <IRQ>
[  898.801441][    C0]  ? __ieee80211_beacon_get+0x36/0x1600
[  898.807058][    C0]  ieee80211_beacon_get_tim+0xbf/0x580
[  898.812685][    C0]  ? ieee80211_beacon_get_template_ema_list+0x90/0x90
[  898.819506][    C0]  mac80211_hwsim_beacon_tx+0x3c7/0x780
[  898.825079][    C0]  __iterate_interfaces+0x243/0x500
[  898.830332][    C0]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[  898.836595][    C0]  ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[  898.843846][    C0]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[  898.850154][    C0]  ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[  898.857231][    C0]  mac80211_hwsim_beacon+0xbb/0x1b0
[  898.862486][    C0]  __hrtimer_run_queues+0x52a/0xc40
[  898.867751][    C0]  ? hw_scan_work+0xf60/0xf60
[  898.872448][    C0]  ? hrtimer_interrupt+0x9c0/0x9c0
[  898.877634][    C0]  ? ktime_get_update_offsets_now+0x3d2/0x3f0
[  898.883764][    C0]  hrtimer_run_softirq+0x187/0x2b0
[  898.888959][    C0]  handle_softirqs+0x280/0x820
[  898.893749][    C0]  ? __irq_exit_rcu+0xd3/0x190
[  898.898597][    C0]  ? do_softirq+0x1a0/0x1a0
[  898.903135][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  898.908405][    C0]  __irq_exit_rcu+0xd3/0x190
[  898.913024][    C0]  ? irq_exit_rcu+0x20/0x20
[  898.917622][    C0]  irq_exit_rcu+0x9/0x20
[  898.921887][    C0]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  898.927600][    C0]  </IRQ>
[  898.930561][    C0]  <TASK>
[  898.933499][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  898.939523][    C0] RIP: 0010:unwind_next_frame+0x621/0x2970
[  898.945342][    C0] Code: 02 4b 8d 1c 64 48 01 db 48 01 c3 74 77 e8 f7 d6 4b 00 4c 8b 24 24 4c 8d 73 04 4c 8d 7b 05 4c 89 f0 48 c1 e8 03 42 0f b6 04 28 <84> c0 0f 85 d0 1c 00 00 4c 89 f8 48 c1 e8 03 42 0f b6 04 28 84 c0
[  898.965078][    C0] RSP: 0000:ffffc9001465e5f8 EFLAGS: 00000a03
[  898.971213][    C0] RAX: 0000000000000000 RBX: ffffffff8f193370 RCX: ffff8880292a9e00
[  898.979233][    C0] RDX: 0000000000000000 RSI: ffffffff81db9ef9 RDI: ffffffff81db9a92
[  898.987326][    C0] RBP: ffffc9001465e718 R08: ffffc9001465e790 R09: 0000000000000004
[  898.995360][    C0] R10: 0000000000000004 R11: 0000000000000000 R12: ffffc9001465e6c8
[  899.003463][    C0] R13: dffffc0000000000 R14: ffffffff8f193374 R15: ffffffff8f193375
[  899.011506][    C0]  ? vma_alloc_folio+0x479/0x8f0
[  899.016746][    C0]  ? vma_alloc_folio+0x12/0x8f0
[  899.021690][    C0]  ? unwind_next_frame+0x609/0x2970
[  899.026925][    C0]  ? vma_alloc_folio+0x479/0x8f0
[  899.031979][    C0]  ? vma_alloc_folio+0x47a/0x8f0
[  899.037077][    C0]  ? vma_alloc_folio+0x47a/0x8f0
[  899.042101][    C0]  ? stack_trace_save+0x100/0x100
[  899.047171][    C0]  arch_stack_walk+0x144/0x190
[  899.051998][    C0]  ? vma_alloc_folio+0x47a/0x8f0
[  899.056984][    C0]  stack_trace_save+0xaa/0x100
[  899.061803][    C0]  ? stack_trace_snprint+0xf0/0xf0
[  899.067022][    C0]  ? mark_lock+0x94/0x320
[  899.071409][    C0]  save_stack+0x125/0x230
[  899.075764][    C0]  ? __reset_page_owner+0x190/0x190
[  899.081012][    C0]  ? seqcount_lockdep_reader_access+0x10a/0x190
[  899.087305][    C0]  ? post_alloc_hook+0x1c1/0x200
[  899.092466][    C0]  ? get_page_from_freelist+0x1951/0x19e0
[  899.098321][    C0]  ? __alloc_pages+0x1f0/0x460
[  899.103109][    C0]  ? __folio_alloc+0x10/0x20
[  899.107919][    C0]  ? vma_alloc_folio+0x47a/0x8f0
[  899.112873][    C0]  ? get_page_from_freelist+0x6a8/0x19e0
[  899.118565][    C0]  ? __lock_acquire+0x7d40/0x7d40
[  899.123619][    C0]  __set_page_owner+0x1d/0x60
[  899.128436][    C0]  post_alloc_hook+0x1c1/0x200
[  899.133227][    C0]  get_page_from_freelist+0x1951/0x19e0
[  899.139024][    C0]  ? mark_lock+0x94/0x320
[  899.143401][    C0]  ? __next_zones_zonelist+0x9d/0x130
[  899.148850][    C0]  ? prepare_alloc_pages+0x366/0x5f0
[  899.154343][    C0]  __alloc_pages+0x1f0/0x460
[  899.159019][    C0]  ? zone_statistics+0x170/0x170
[  899.164021][    C0]  __folio_alloc+0x10/0x20
[  899.168507][    C0]  vma_alloc_folio+0x47a/0x8f0
[  899.173380][    C0]  ? mpol_shared_policy_lookup+0x14b/0x1e0
[  899.179264][    C0]  shmem_alloc_folio+0x1a9/0x2a0
[  899.184253][    C0]  ? folio_put+0xd0/0xd0
[  899.188578][    C0]  ? __vm_enough_memory+0x11b/0x370
[  899.193932][    C0]  ? shmem_inode_acct_block+0x35e/0x460
[  899.199550][    C0]  shmem_alloc_and_acct_folio+0x1e6/0x6d0
[  899.205381][    C0]  ? put_swap_device+0x230/0x230
[  899.210364][    C0]  ? xas_load+0x12b/0x140
[  899.214721][    C0]  ? filemap_get_entry+0xce/0x3f0
[  899.219808][    C0]  ? filemap_get_entry+0xce/0x3f0
[  899.224861][    C0]  ? filemap_get_entry+0x379/0x3f0
[  899.230028][    C0]  ? page_cache_prev_miss+0x390/0x390
[  899.235618][    C0]  shmem_get_folio_gfp+0xcde/0x2aa0
[  899.240888][    C0]  shmem_write_begin+0xf2/0x420
[  899.245861][    C0]  generic_perform_write+0x2fe/0x5c0
[  899.251205][    C0]  ? generic_file_direct_write+0x3e0/0x3e0
[  899.257027][    C0]  ? down_write+0x16e/0x200
[  899.261584][    C0]  ? file_update_time+0x98/0x1a0
[  899.266540][    C0]  shmem_file_write_iter+0xfb/0x120
[  899.271789][    C0]  __kernel_write_iter+0x28c/0x690
[  899.276949][    C0]  ? vfs_read+0x970/0x970
[  899.281371][    C0]  ? get_dump_page+0x156/0x200
[  899.286281][    C0]  ? __asan_memset+0x22/0x40
[  899.290949][    C0]  ? iov_iter_bvec+0xd4/0x1b0
[  899.295659][    C0]  dump_user_range+0x420/0x860
[  899.300499][    C0]  ? dump_skip+0x40/0x40
[  899.304758][    C0]  ? dump_emit+0x78/0xe0
[  899.309054][    C0]  ? dump_emit+0xa6/0xe0
[  899.313394][    C0]  ? elf_core_dump+0x2bae/0x3770
[  899.318396][    C0]  elf_core_dump+0x31d0/0x3770
[  899.323215][    C0]  ? load_elf_binary+0x2860/0x2860
[  899.328377][    C0]  ? dump_vma_snapshot+0xbe8/0x1090
[  899.333590][    C0]  ? verify_lock_unused+0x140/0x140
[  899.338938][    C0]  ? mas_next_slot+0x94f/0x980
[  899.343764][    C0]  ? rcu_read_lock_any_held+0xb4/0x140
[  899.349274][    C0]  ? 0xffffffffff600000
[  899.353460][    C0]  do_coredump+0x17cc/0x24d0
[  899.358115][    C0]  ? nfs_stat_to_errno+0x1a0/0x1a0
[  899.363257][    C0]  ? lock_chain_count+0x20/0x20
[  899.368155][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  899.373468][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[  899.378799][    C0]  get_signal+0x1133/0x13f0
[  899.383428][    C0]  arch_do_signal_or_restart+0xc2/0x800
[  899.389027][    C0]  ? get_sigframe_size+0x20/0x20
[  899.394075][    C0]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  899.400131][    C0]  ? exit_to_user_mode_loop+0x3b/0x110
[  899.405636][    C0]  exit_to_user_mode_loop+0x70/0x110
[  899.411082][    C0]  exit_to_user_mode_prepare+0xee/0x180
[  899.416664][    C0]  irqentry_exit_to_user_mode+0x9/0x30
[  899.422296][    C0]  exc_page_fault+0x8c/0x100
[  899.426935][    C0]  asm_exc_page_fault+0x26/0x30
[  899.431851][    C0] RIP: 0033:0x7f7989f9aec1
[  899.436293][    C0] Code: 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  899.455999][    C0] RSP: 002b:fffffffffffffe70 EFLAGS: 00010217
[  899.462127][    C0] RAX: 0000000000000000 RBX: 00007f798a216090 RCX: 00007f7989f9aeb9
[  899.470150][    C0] RDX: 0000000000000000 RSI: fffffffffffffe70 RDI: 0000000000008000
[  899.478253][    C0] RBP: 00007f798a008c1f R08: 0000000000000000 R09: 0000000000000000
[  899.486783][    C0] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  899.494847][    C0] R13: 00007f798a216128 R14: 00007f798a216090 R15: 00007ffd1b048748
[  899.502938][    C0]  </TASK>
[  899.505990][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  899.513733][    C0] CPU: 0 PID: 15809 Comm: syz.7.2424 Not tainted syzkaller #0
[  899.521291][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  899.531544][    C0] Call Trace:
[  899.534881][    C0]  <IRQ>
[  899.537829][    C0]  dump_stack_lvl+0x18c/0x250
[  899.542589][    C0]  ? show_regs_print_info+0x20/0x20
[  899.547813][    C0]  ? load_image+0x400/0x400
[  899.552349][    C0]  panic+0x2dc/0x730
[  899.556275][    C0]  ? bpf_jit_dump+0xd0/0xd0
[  899.560814][    C0]  __warn+0x2e0/0x470
[  899.564835][    C0]  ? __ieee80211_beacon_get+0x1233/0x1600
[  899.570626][    C0]  ? __ieee80211_beacon_get+0x1233/0x1600
[  899.577333][    C0]  report_bug+0x2be/0x4f0
[  899.581708][    C0]  ? __ieee80211_beacon_get+0x1233/0x1600
[  899.587493][    C0]  ? __ieee80211_beacon_get+0x1233/0x1600
[  899.593263][    C0]  ? __ieee80211_beacon_get+0x1235/0x1600
[  899.598999][    C0]  handle_bug+0xcf/0x120
[  899.603397][    C0]  exc_invalid_op+0x1a/0x50
[  899.607990][    C0]  asm_exc_invalid_op+0x1a/0x20
[  899.612948][    C0] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600
[  899.619383][    C0] Code: 24 4c 89 e7 e8 5e 86 c2 f7 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 59 ce 84 f7 0f 0b e9 f6 f7 ff ff e8 4d ce 84 f7 <0f> 0b e9 48 fb ff ff e8 41 ce 84 f7 48 c7 c7 e0 4c 64 8e 4c 89 e6
[  899.639117][    C0] RSP: 0000:ffffc90000007a18 EFLAGS: 00010246
[  899.645309][    C0] RAX: ffffffff8a0244d3 RBX: ffffffff8a0232d6 RCX: ffff8880292a9e00
[  899.653317][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  899.661359][    C0] RBP: 0000000000000000 R08: ffff8880292a9e00 R09: 0000000000000003
[  899.669353][    C0] R10: 0000000000000007 R11: 0000000000000100 R12: ffff88805ebce3c0
[  899.677333][    C0] R13: dffffc0000000000 R14: ffff88805ebce8b0 R15: ffff888026592824
[  899.685329][    C0]  ? __ieee80211_beacon_get+0x36/0x1600
[  899.691099][    C0]  ? __ieee80211_beacon_get+0x1233/0x1600
[  899.696875][    C0]  ? __ieee80211_beacon_get+0x1233/0x1600
[  899.702630][    C0]  ? __ieee80211_beacon_get+0x36/0x1600
[  899.708213][    C0]  ieee80211_beacon_get_tim+0xbf/0x580
[  899.713760][    C0]  ? ieee80211_beacon_get_template_ema_list+0x90/0x90
[  899.720553][    C0]  mac80211_hwsim_beacon_tx+0x3c7/0x780
[  899.726122][    C0]  __iterate_interfaces+0x243/0x500
[  899.731340][    C0]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[  899.737604][    C0]  ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[  899.744874][    C0]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[  899.751257][    C0]  ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[  899.758674][    C0]  mac80211_hwsim_beacon+0xbb/0x1b0
[  899.764008][    C0]  __hrtimer_run_queues+0x52a/0xc40
[  899.769365][    C0]  ? hw_scan_work+0xf60/0xf60
[  899.774104][    C0]  ? hrtimer_interrupt+0x9c0/0x9c0
[  899.779454][    C0]  ? ktime_get_update_offsets_now+0x3d2/0x3f0
[  899.785568][    C0]  hrtimer_run_softirq+0x187/0x2b0
[  899.790715][    C0]  handle_softirqs+0x280/0x820
[  899.795520][    C0]  ? __irq_exit_rcu+0xd3/0x190
[  899.800330][    C0]  ? do_softirq+0x1a0/0x1a0
[  899.804852][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  899.810090][    C0]  __irq_exit_rcu+0xd3/0x190
[  899.814718][    C0]  ? irq_exit_rcu+0x20/0x20
[  899.819266][    C0]  irq_exit_rcu+0x9/0x20
[  899.823530][    C0]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  899.829197][    C0]  </IRQ>
[  899.832221][    C0]  <TASK>
[  899.835155][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  899.841166][    C0] RIP: 0010:unwind_next_frame+0x621/0x2970
[  899.847077][    C0] Code: 02 4b 8d 1c 64 48 01 db 48 01 c3 74 77 e8 f7 d6 4b 00 4c 8b 24 24 4c 8d 73 04 4c 8d 7b 05 4c 89 f0 48 c1 e8 03 42 0f b6 04 28 <84> c0 0f 85 d0 1c 00 00 4c 89 f8 48 c1 e8 03 42 0f b6 04 28 84 c0
[  899.866966][    C0] RSP: 0000:ffffc9001465e5f8 EFLAGS: 00000a03
[  899.873056][    C0] RAX: 0000000000000000 RBX: ffffffff8f193370 RCX: ffff8880292a9e00
[  899.881126][    C0] RDX: 0000000000000000 RSI: ffffffff81db9ef9 RDI: ffffffff81db9a92
[  899.889144][    C0] RBP: ffffc9001465e718 R08: ffffc9001465e790 R09: 0000000000000004
[  899.897163][    C0] R10: 0000000000000004 R11: 0000000000000000 R12: ffffc9001465e6c8
[  899.905151][    C0] R13: dffffc0000000000 R14: ffffffff8f193374 R15: ffffffff8f193375
[  899.913257][    C0]  ? vma_alloc_folio+0x479/0x8f0
[  899.918215][    C0]  ? vma_alloc_folio+0x12/0x8f0
[  899.923105][    C0]  ? unwind_next_frame+0x609/0x2970
[  899.928316][    C0]  ? vma_alloc_folio+0x479/0x8f0
[  899.933352][    C0]  ? vma_alloc_folio+0x47a/0x8f0
[  899.938296][    C0]  ? vma_alloc_folio+0x47a/0x8f0
[  899.943239][    C0]  ? stack_trace_save+0x100/0x100
[  899.948277][    C0]  arch_stack_walk+0x144/0x190
[  899.953063][    C0]  ? vma_alloc_folio+0x47a/0x8f0
[  899.958014][    C0]  stack_trace_save+0xaa/0x100
[  899.962792][    C0]  ? stack_trace_snprint+0xf0/0xf0
[  899.967935][    C0]  ? mark_lock+0x94/0x320
[  899.972281][    C0]  save_stack+0x125/0x230
[  899.976639][    C0]  ? __reset_page_owner+0x190/0x190
[  899.981852][    C0]  ? seqcount_lockdep_reader_access+0x10a/0x190
[  899.988220][    C0]  ? post_alloc_hook+0x1c1/0x200
[  899.993307][    C0]  ? get_page_from_freelist+0x1951/0x19e0
[  899.999040][    C0]  ? __alloc_pages+0x1f0/0x460
[  900.003832][    C0]  ? __folio_alloc+0x10/0x20
[  900.008574][    C0]  ? vma_alloc_folio+0x47a/0x8f0
[  900.013544][    C0]  ? get_page_from_freelist+0x6a8/0x19e0
[  900.019623][    C0]  ? __lock_acquire+0x7d40/0x7d40
[  900.024662][    C0]  __set_page_owner+0x1d/0x60
[  900.029357][    C0]  post_alloc_hook+0x1c1/0x200
[  900.034141][    C0]  get_page_from_freelist+0x1951/0x19e0
[  900.039706][    C0]  ? mark_lock+0x94/0x320
[  900.044048][    C0]  ? __next_zones_zonelist+0x9d/0x130
[  900.049449][    C0]  ? prepare_alloc_pages+0x366/0x5f0
[  900.054816][    C0]  __alloc_pages+0x1f0/0x460
[  900.059427][    C0]  ? zone_statistics+0x170/0x170
[  900.064397][    C0]  __folio_alloc+0x10/0x20
[  900.069188][    C0]  vma_alloc_folio+0x47a/0x8f0
[  900.073994][    C0]  ? mpol_shared_policy_lookup+0x14b/0x1e0
[  900.079918][    C0]  shmem_alloc_folio+0x1a9/0x2a0
[  900.084969][    C0]  ? folio_put+0xd0/0xd0
[  900.089243][    C0]  ? __vm_enough_memory+0x11b/0x370
[  900.094481][    C0]  ? shmem_inode_acct_block+0x35e/0x460
[  900.100056][    C0]  shmem_alloc_and_acct_folio+0x1e6/0x6d0
[  900.105859][    C0]  ? put_swap_device+0x230/0x230
[  900.110819][    C0]  ? xas_load+0x12b/0x140
[  900.115161][    C0]  ? filemap_get_entry+0xce/0x3f0
[  900.120196][    C0]  ? filemap_get_entry+0xce/0x3f0
[  900.125232][    C0]  ? filemap_get_entry+0x379/0x3f0
[  900.130390][    C0]  ? page_cache_prev_miss+0x390/0x390
[  900.135788][    C0]  shmem_get_folio_gfp+0xcde/0x2aa0
[  900.141027][    C0]  shmem_write_begin+0xf2/0x420
[  900.145894][    C0]  generic_perform_write+0x2fe/0x5c0
[  900.151208][    C0]  ? generic_file_direct_write+0x3e0/0x3e0
[  900.157039][    C0]  ? down_write+0x16e/0x200
[  900.161572][    C0]  ? file_update_time+0x98/0x1a0
[  900.166531][    C0]  shmem_file_write_iter+0xfb/0x120
[  900.171745][    C0]  __kernel_write_iter+0x28c/0x690
[  900.176880][    C0]  ? vfs_read+0x970/0x970
[  900.181254][    C0]  ? get_dump_page+0x156/0x200
[  900.186066][    C0]  ? __asan_memset+0x22/0x40
[  900.190698][    C0]  ? iov_iter_bvec+0xd4/0x1b0
[  900.195478][    C0]  dump_user_range+0x420/0x860
[  900.200263][    C0]  ? dump_skip+0x40/0x40
[  900.204518][    C0]  ? dump_emit+0x78/0xe0
[  900.208952][    C0]  ? dump_emit+0xa6/0xe0
[  900.213205][    C0]  ? elf_core_dump+0x2bae/0x3770
[  900.218169][    C0]  elf_core_dump+0x31d0/0x3770
[  900.222954][    C0]  ? load_elf_binary+0x2860/0x2860
[  900.228337][    C0]  ? dump_vma_snapshot+0xbe8/0x1090
[  900.233564][    C0]  ? verify_lock_unused+0x140/0x140
[  900.238846][    C0]  ? mas_next_slot+0x94f/0x980
[  900.243688][    C0]  ? rcu_read_lock_any_held+0xb4/0x140
[  900.249235][    C0]  ? 0xffffffffff600000
[  900.253440][    C0]  do_coredump+0x17cc/0x24d0
[  900.258180][    C0]  ? nfs_stat_to_errno+0x1a0/0x1a0
[  900.263329][    C0]  ? lock_chain_count+0x20/0x20
[  900.268201][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  900.273412][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[  900.278623][    C0]  get_signal+0x1133/0x13f0
[  900.283238][    C0]  arch_do_signal_or_restart+0xc2/0x800
[  900.288807][    C0]  ? get_sigframe_size+0x20/0x20
[  900.293759][    C0]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  900.299872][    C0]  ? exit_to_user_mode_loop+0x3b/0x110
[  900.305352][    C0]  exit_to_user_mode_loop+0x70/0x110
[  900.310771][    C0]  exit_to_user_mode_prepare+0xee/0x180
[  900.316457][    C0]  irqentry_exit_to_user_mode+0x9/0x30
[  900.322012][    C0]  exc_page_fault+0x8c/0x100
[  900.326644][    C0]  asm_exc_page_fault+0x26/0x30
[  900.331551][    C0] RIP: 0033:0x7f7989f9aec1
[  900.335981][    C0] Code: 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  900.355691][    C0] RSP: 002b:fffffffffffffe70 EFLAGS: 00010217
[  900.361864][    C0] RAX: 0000000000000000 RBX: 00007f798a216090 RCX: 00007f7989f9aeb9
[  900.369868][    C0] RDX: 0000000000000000 RSI: fffffffffffffe70 RDI: 0000000000008000
[  900.377859][    C0] RBP: 00007f798a008c1f R08: 0000000000000000 R09: 0000000000000000
[  900.385936][    C0] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  900.394012][    C0] R13: 00007f798a216128 R14: 00007f798a216090 R15: 00007ffd1b048748
[  900.402034][    C0]  </TASK>
[  900.405677][    C0] Kernel Offset: disabled
[  900.410118][    C0] Rebooting in 86400 seconds..