last executing test programs:

20.270055525s ago: executing program 3 (id=626):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x1b)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000140), 0x20000, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{}, &(0x7f0000000100), &(0x7f0000000180)}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000980)=ANY=[@ANYRES32, @ANYBLOB, @ANYBLOB="4f69a3e747cb3ab3a16e2513bf95cf0d8a371a0900821c55d40e216f14b9545cbecb3d144cc9b9e793b111f7a7b4ab9769627960f9cc20c0e1fbdbe8c751ba9d0ff919447ae90f1c0371d81c23d5518404a7dd0dda014d128aef278cb86b867d354bae4e6e65b4d02acaf6eb09dc61a0809ee56d8419bb81399d0110f4a0341c93c79d", @ANYBLOB], 0x50)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)

18.745196024s ago: executing program 3 (id=627):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000600)={0x0, 0x0, @pic={0x7, 0xfc, 0xe1, 0x0, 0x6, 0xd9, 0x40, 0x1, 0xfb, 0x0, 0xc, 0x0, 0x0, 0x40, 0x1, 0x5}})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x6e, 0x0, 0x0, 0x21, 0x3, 0x0, 0x106c, 0x80000001, 0x8000000000000, 0x80000004000080, 0x0, 0x8, 0x0, 0x0, 0x0, 0x8004], 0x1, 0x3c4210})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

17.269473701s ago: executing program 1 (id=630):
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x1, 0x0)
pipe2$9p(&(0x7f00000003c0), 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_audit(0x10, 0x3, 0x9)
r0 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = socket$unix(0x1, 0x2, 0x0)
ppoll(&(0x7f0000000300)=[{r1, 0x4236}], 0x1, 0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000080)={<r2=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000300), 0x2, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000100)={0x3, 0x40, 0xfa00, {{0xa, 0xfffb, 0x5, @empty, 0xa098}, {0xa, 0x4ea5, 0x9, @mcast1, 0x8}, r2, 0x8001}}, 0x48)
writev(r0, &(0x7f0000000040)=[{&(0x7f0000000100), 0x86}], 0x2)

13.403498187s ago: executing program 3 (id=635):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0xd, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2000002, 0x200000005c832, 0xffffffffffffffff, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4805}, 0x20000050)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a40000000160a03020000000000000000020000000900020073797a30000000000900010073797a3000000000140003800800014000000000080002400000000014000000110001"], 0x68}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000440)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWFLOWTABLE={0x2c, 0x16, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x2}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0xc, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8, 0x1, 0x1, 0x0, 0x20000}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x54}}, 0x0)
syz_open_procfs(0x0, &(0x7f0000000040)='net/ptype\x00')
socket$packet(0x11, 0x3, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
pipe(&(0x7f00000001c0)={<r5=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
write$binfmt_misc(r6, &(0x7f00000000c0), 0xfdef)
syz_fuse_handle_req(r5, &(0x7f0000004480)="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", 0x2000, &(0x7f0000003280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

11.98435027s ago: executing program 0 (id=637):
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x15, 0x0, 0x6, 0x4, 0x0, 0x1}, 0x50)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x50)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000100)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket(0x1e, 0x805, 0x0)
connect$tipc(r0, &(0x7f00000003c0)=@id={0x1e, 0x3, 0x0, {0x4e21, 0x3}}, 0x10)
close(r0)
r1 = socket(0x2a, 0x2, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x2100)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r3=>0x0})
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000c80)={'ip6gre0\x00'})
socket$xdp(0x2c, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendto$packet(r2, &(0x7f0000000240)="f2435f0100088000000000850800", 0xe, 0x0, &(0x7f0000000200)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c00000013000100000000000000000000000002", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=r3, @ANYBLOB="1400350064756d6d7930"], 0x3c}}, 0x0)
ioctl$SIOCSIFMTU(r1, 0x8922, &(0x7f0000000080)={'dummy0\x00'})

11.98385391s ago: executing program 1 (id=638):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x100)
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
close(r4)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
creat(0x0, 0x18c)
mount$9p_fd(0x0, 0x0, 0x0, 0x200400, 0x0)

11.938873112s ago: executing program 3 (id=639):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x200000a, 0x13, 0xffffffffffffffff, 0x0)
getresgid(0x0, 0x0, 0x0)
pipe(&(0x7f00000000c0))
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$rds(0x15, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x6)
setsockopt$bt_BT_FLUSHABLE(0xffffffffffffffff, 0x112, 0x8, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB="9feb0100180000000000000034000000340000000200000000000000000000030000000003000000020000000000000800000000000000010500000020000000000000000000000a02"], 0x0, 0x4e}, 0x28)
bind$bt_hci(r0, &(0x7f0000000180)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r0, &(0x7f0000000580)=ANY=[@ANYBLOB="5300030002"], 0x8)

10.736361042s ago: executing program 1 (id=640):
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$MRT_ADD_MFC(0xffffffffffffffff, 0x0, 0xcc, 0x0, 0x0)
setsockopt$MRT_ADD_MFC_PROXY(0xffffffffffffffff, 0x0, 0xd2, 0x0, 0x0)
syz_open_dev$sg(0x0, 0x80, 0x40000)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000004540)=[{{0x0, 0x0, &(0x7f0000000280)}}], 0x1, 0x240080e4)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x61, 0x11, 0x8c}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x70)

10.424784091s ago: executing program 2 (id=641):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0xfef3, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd6001010000641100fe8000000000000000000000000000bbfe8000"/51], 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x40000, &(0x7f0000000040)={[], [{@dont_appraise}], 0x3a})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000580)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000001a40)=""/102392, 0x18ff8)
close(0xffffffffffffffff)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
r2 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000500), 0x40002, 0x0)
preadv(r2, &(0x7f0000004040)=[{&(0x7f0000002e00)=""/156, 0x9c}], 0x1, 0x401, 0x0)
r3 = semget(0x0, 0x4, 0x39c)
semctl$SETALL(r3, 0x0, 0x11, &(0x7f0000000240))
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="640000000206010200000000000000000000000015000300686173683a69702c706f72742c6e6574000000000900020073797a32000000000500040000000000140007800800124000000000050015002200000005000500020000000500010006"], 0x64}}, 0x0)
sendmsg$IPSET_CMD_FLUSH(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)={0x1c, 0x4, 0x6, 0x801, 0x0, 0x0, {0x2, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc011}, 0x800)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14080, 0x10000}, [@IFLA_GROUP={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)

10.027166404s ago: executing program 0 (id=642):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001180), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r4}, 0x2c, {'rootmode', 0x3d, 0x8000}})
read$FUSE(r4, &(0x7f0000004280)={0x2020, 0x0, <r5=>0x0}, 0xffe7)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x84, 0x1e, &(0x7f0000000300), 0x4)
syz_fuse_handle_req(r4, &(0x7f00000082c0)="23db5037805f177d136115e6a1a5903469af39c1fb9cb38215fe64cff9f2f0444a57e22b0cc5cb4f74c9792365400d9e1c68539ea5eff0a5ed0864814d39251bee8dfea69aa052d900bc0c792e1c9752b7d3a3222f6a1ad3e44c1f65617b128aea51911861ca36ba7c96b96b2fba0fdaa49ffb2612f3e81fe565327dd9965a60046442c9dcd0d552c6a00388be3b438a08883c7349761531880294ad9887db97d8c2f74921c57910cf1f5cc528e17bd5c3746b6202f26d621535aac5f7872c2cb3295e42524b5acb249b2d1ac1b53a4e31271decfca3fad2e2f740768adf00875c18cb7d115150f83ceb73f77a1f61f1666c2bb9f6bd9f0fb55b3a619446e32bae2a1d99aa49e5f3822e048f8be44b707f2db10d7916ec9a10a695d573d871cf24959c3d15e61344a68309d186956537c6ea8532fc2e1c7649f8409d8dcde4c8ee1530470ac9c870f9f1837574e444ba6addf5ddb2dec67c0e76df79f265b403818dddb4efc27c90985ed69a48b12056e548f9c99edf80d2b195d26acb1127661727a0600257f4b2546513d03930a0638a71bd3223e51fbb75c832ef737907f2f4d3f0505f431ea02783c798b5c4579c99961fb73dc623a0d99c1b306435464d413b537d42c6444851b36482597140b22fbc0ebc7e795b2f96739bf139f5823bc869ede547da4f394fa1b1787836095e1013264042e53d5006ea059d0488cb2f5ccd44b30d25ea53c2dda71d112d7d441dbfc9f8462c99c098b1958c80b237d83c32f2759c9a9c081d7d7666a477cfda59354309b09f2a8b9f6c3077b0df1e8d0c71ac07232de4f437107cb0eb9b47b2267efe31938a337cf11cadad72ced56895bb14763cca5bdadd245d801e829a1eb3bb4ed851a345918efd2dcf8d38f66badc773068e6a2ef59b2bb838abd8b043cf6ac54550f3fde1bbb9e761095e4b8ef1891757d376be1f778142610c0acbbfc697f51fbb7a1602ed46e82813c74f41ee2bae818174809f3692084bea7310ebec3d6166702ae62aad84313e19b4d145167185ea8d53cb21d099fb592d7d7f8bc305dd375b5c0cd73be44f49ff53cee220085d4706bbf50c6f63b02e7e805e8fa4c73046a57a8700886da29ea53e5a316e7b011c44a0f7be5cc5cb5641ba0069ff591eee18966c7f005ef40046a5fe2bf325b2545b009867761264aa9611d184fa372ba3c5c33d9a50717210f7cec7f6dc4418a87a797eb6aaf6ab3892bd3f559547c88d8c29646c8173fad1588f52beb34ff863be65e7ec1598cfb465f270bd5532fa7035aae077eedbc846058fa19f58ffb1cf0f1863f6d33f2e5c454d18b66be766ca369af2cc9656fa34c6c10e4d4da44ce5e2370aaf60c4e130da331d3489e8f44c600246323409fdd35d11da27128c9d64be65dd3a90c1546a6eb9185cb6d3a4a9cfad0e41ea03896fd2346f745eb3563d7a79fd345b037c040e56f0677840bf9b0d295bcfa98b931464c5ce9fcaf745720deac2d8b4edeffc0fe6f089ed7c3880959fcf8e31f7b7054bc4f5c9d3ed3f66c968d0bc20b2d66c374f030f3f1965f43a98519e527caf693362412d523eeb38c8b016ff77f78f833d7513e4b5a53d5ed5143916673f822ceac9967b8788bc6428283181eaf8d99e48286aacf4f658a903e9f08659450f7f9483807c2e013a1d9d199f18886a8cb4e14d41c71e5731455a4394551281eca12a1bb6ae717f5da2949175d0f1f3d718b761dfc1099c7d9d8928c899ac8e936e69d19fcbfcfdee83b68ef8e15eed41a8ac0d54aa92d7d2ee58bb4799f378225ec9ba4709e5ce2b77208ecc85c22c64967a9ef3360c54d311b8917ceb7b432c90cc5e98de9327c1400f8ec89261b1d77d8874b0bbdd2c5eb59df415705de52b08b0e12c07fb7367c6d461c19f282d51e482cb4fb9ceb0249ac2d6400ca170fbd6c0063224179c616bb030a5c10102aa2eea92f1e6f5828590b250b09e6d1a9535c298a68160b7c281fecdd295dc3396c4e6eb3395d5a677d5fa95a732dfdef81f4346545dd1a74bb3aa9b516699bdf0a59165077ab459a5ffe0dbb3ef8afa7a8382a8441e0c36ffabbed8f93f4bbeb97e5f6a704bf63a0de9ccf8fef643ebc530a80920931002003b027014de317c42f861d98ef4fef66d232d9706e6bd263347384dadadaa43a7e106bbb21bd822d468ace171b3f04b996112135b63dcbd612b5888ec40da583ab549c340ddaf5d7406c3e99322c68874214356c1fd9b5f84348e629cc3487a901d1b7a2fa531b1509ac1c93de3da9f1c3773e3a2aba2b29d2419f240ae6d24ed9f14bf0b9b0f1e740a2db06dab64d6386f950bff4e4c94160ef4b832bbde3af4937b7528658b5c16a51cb22193fe99385721ce5b048d9338e289dcb40683140c413eca52c8e4b64b306f47569477379c864cfb3aa3e349262407d3935ab9a0916eb0f6db2be71a7eb8f9968dfac44995d5bff8ef617fceeaa448f5e5f8d4b39e3512fe7ae9ee1d8a0d5912b6148969ab0325f3f76e2340fbd67ce156bdf638140b3ccdb08e5049db15957915cb05db8901249b10c59cc5c3ff836290e3334eee2df387e44c57b4d6198c3749f5dc57f6c3de115ced6b43cbddd762b58f1fb40b2baf3b381febdc073142e30d2e9a1a69e8d86314221e540f195509d223b206173dc5406865d8064817c30c284c034035a63190ab86df3bae4168c58e01d2251748fd5d9d610024129e83a5730fe83cf0918790e6854ab765c78649b91c06655f0cb9e26d8432df78bbadd99583b6a8afcf177ed6f339e08c0b36a16c6d31d8a24cb6f2bc3ba58d7711b6f8b988dc3e3144be619548457d4f40509f17eeb186cb93a2928ecb951593d1907c8bbb9f4c8999caba3059c8e73dce54ad6f87bcd51d559f7759902b14e68d3b845c0b179b38f4e6f0bd3a89cbcd5ebed9972102048647da1eda5c8456442369f4ae871d4037ba26f27d27371ce57e23adca5af8dc93f934f2ef8d69ad3b2db66657b3868dd839c2b522f5461f24407ef091b77242fc70a48b7eec45f3bcbcfbc6bdc36e4b67295020a345233a32a0a0af4d03a53ef67e69716d5ae35342722afbe7558946475a9ebf5b39c18558a0011f68bc8a78590b0cb63618379a512790c42d94bb239dd3ef5b8d1036cf0391aded8802a7a447c38f231ae611aeeab9bba44cd14369473758b64108d0bc9b6bc9e9b497c2d1d2acbae7c620a55c226cf371331688eaddec61fe961c5fcef71dad45820ed0ac8dc7641d82150f1318ac15aa41e7be585b6a50da1b3cd95239ee61cfde15aba80ae8ebc21ba4540883c6f44cd35b6b97da4640c97f5a2b6efa8d184fec823abc754ab8a0db6c45c2293e90d9c154c4a3e0b9ec2b6113ce6583b80f0d234dec9a9815067244733e2134b9ba93bb9692fb44200bb5501bb109f2401e8baaf0115d795bb0346dfafaf953bed8e9a52a5b9b02d490c55fd89daf311ad5e08b070a9571f696d6df4715c8b69b840e4e03d6f361326e20d9546c47b3a63163e7df9bd260621358c166177ee7c69ed63a8c43dd4a78543aa9f922c0ef527f4aa61ff65bb14595f518412ce25a1e103df89cd4b363593da16c11d80a23a9b5ad8e3a7be8f697cecf82c8fbd889a4f743c839b67f7ba5453b10bbf59b1e4f4e821872c061a4125c0c15c1ca5164efe61a58bb54dcedc849800a6021a448d4660c3b85e2362b7cd8ce95156fbf408a09a30a8ccfc3554004e9f9a35382907eec00617e2ae1f8803146bc8c28b4f3bf3c6b183ae9248e7f05c4adce3e0b7ff29252b5be9b19431e3fe612d471f52c5c34cc12c83049189f4d2e5ca516df78766ba3449d07ef9436c68052c986d9dde8802c931194e2ce34acb8cc26663a09348b15c6c145d26306bded0d1f482803ae6dee26562b03fcb183b69ee4a0491e8776ecdadfca395cb4eac2948d4d64321a4e669f2f663eb54f05f12ed9c685835c3e79f982152dbe701073b9a4ab2932b46ee2424a5e18bbe5f25ce0b898ff6937927f4670defe430ac86021226ae055daf39b535cdc0899fcc99d15e67d66bd2dd89bb21b8d2689a8af10a1b0bd44103c469922c36fc0228d7b6febf5e366dceecf8bb1db385c8ab95d86ff09b76c2fa6282de81fd6864c495a4c8295df61a2548e1b81c3e3f30d7a41216801d6c2d1743f66ae2055756083e8bf403d436b8244ac214f4d84a693d13f299ba267401d094f2df70840e8a980622794212f0992ecf5a47980ab2cf7d5a6f12b0a489af3c3c847ac59bc89f36fbb0e08bf283b68213a17de38b3a45eade6f0b198def408f7711c16367bcc0ded794a9a323c7e7f07fad96ea9c4d7344c26e43844a27c21076b8d7cd07677602d91eac825eb5fd0631755c2dd1dbf7bce3eb3c3f7377fc6080ecd0b894e29769845725943e25932d4249abb4ab78d4e2ff2e2df42c8d884cd6bd13886cef080c6491c217abae0eec6e9d4d49eab6657f15cfd38e6cd6d0bd33198c4685ab302d0f46e42f4a5d5bb7d2840a0a8817b98a856700d4de74351896fe7d7d5a0d1bc57fb4c828aa51f9637807aeb905780f239527ed4affd83f68be8b7ad1e10d9e797ba39cdee24f7be0a0ab0ac22ea3968dac61eb4bdd522c9ce570edf63a439abfd9954bf6a16c88d86157d05477200a83255cde279b454979cee4de00e81cb44acdc4295c877566a749ab5b91d250f03d46ecc14210c196700338eea028c930ce104f20a9e7fabb0ad1d314ec1a2d97d1d1b9e09114dee0e3e513eacede01971ff85dc98634156073df4e8acd6c3aadd615adaffa7a81573813bc4ca21886ddd532021bba5c84b34c34665534db48d61903a03c1cca4ed955ca92c1e33b7664b494e3db6d1e637a49e537808a2669ebeca301691acd4fab0af197b9c7db01b7862466b568ab3a4712a25210264fb297a6b679dfc3fceb65bddd1a23d5b507a0d6da83d73b716d971c5179a92e57b9b93451eb943845a549de737f2d082a83682c32649b4941e787758ead9d2c256b2b4ed1e0255952ce83cccecc39e5bbdd38490f1960b26e5379943be3d9a64b5149c84d577e5fd099560baa292befa06ce9065fb03ed432a9e055ca4ad0e952f8368b3d230fd5239726f79f4c98a0b4a9648382b245d324cb61049562f765f923fc657ef36747658494d78590a1e27a2d09856acf50c3b26271c6d5aa96e8ff9bdb9043859665e21ea53a050c335cac414bbf27b0328ac2c7450acb26b093bf232358afd1135ee50ac3fb26b5f0256ccdd37033c8a59740607cfd549d4c6540afe4a6b4425ae1f633872dcfb5da8d0547cf0c4888817b71fbc7c45b2a641e9c1a76b6a6be124402422ada35edc02ed997d6b87b361aee95a16d2c528d89a52fe40dfd83434969bd86f02e63fc1ae72941209af39a08cfbb4c320bc47d853f5dbaf0cd60ec54608aadbc382fa6b5cab3e9cac57bea26609f4c79f6a6b4eb4a9336fa95783b0c0c366f36d5d6b8310b3cfdb800207919a131bc7f984f7fa11fd0bf2c89e060e9d1286e453fe97363ef72bd6eba29a85ffeccdc3bee72e12284333a5a40622c01619558d2750fc45abfa22059ebdf743f8e50ad29770d19f84d8a34232d6918514769b3bb2a1ea5e59e9556332ba669675764458e9349a1835c501a93e91dd3b31018979880a9913f54ec1e8526b8cffcb776b97fbb9424faa5c5eb60d2ac74955bba4b5182571d0d9f84f0df1baa722b20a78c9c0011c667f688b58489c9e450d83e40ac5eb41c5564b6d76a226448abe4a3f499927074125aa9c0e7e704c36df5bb110a0f15f8433a470e81db414827d5ce21ca1da1c8d51d746d1e1ca110127c15e92afd75d3cd05ce0b632cfa03745de3cdd4b57373d46676583c89f045c26c6fc5793e5489555ced08f83ba351135834a2028113c319af30cc85bc01a7f8208822d7d607aed0d2e12c80aa009100441b75beaccfe0adbda7e8bb870edf4963158794c8c3a5baacf6eec7b5efaefb7602dab8409d161beeb281cba21f1da0ccdc092d0433fb940d79699ffeb87ea775829a6e7e3b308a2ee0b7aec8ac5f35eed61be374c7c77196f7119a8882deff68230f461cb917b0ccb2b8597efcbdd1003b7b77b2c601ebd4b45c35b8426f7b9138ab3df0ec00819604ab8e1e64cf2aa2282b1269585af127a268cd207f964edff172e555398a16df44bdc52889538c3a27f8fbfffb61f7aeb55b259952bbfea81d73058d8b0f78ece9dc08e660437d21d4e3ec38b19e5afda7a6e33023f9158db8a1c14dabd9b8b307ddc66927f7b19df5e0da2237d98ddd890b81f1963808977d02198e8ae2e97419dbb1f8e51cad36a3424b955500fbdaab6ff8dbf028708b1f951fe43864b59b6c2368b816c98023d4480a91b3f1059e9c214bf55a7f8c7da907f79ff5568fd787d3aa022ab9d03cde551f7e3295f02c4f3aa37e4cebdd968c0f82f09eb004fbdb1a4ef3a0d426691bde3964c29ea65622f5d3ffd854053545ba1ec164495e4bef4845439c058f9438d13be7922b656db499c246ee6176a15b97e6a68e42f0c703033b699504e1f92b43054c7237199bd013d96faab47433b6b3f91dc66368706439d4ef7da3942ce8b9c1c9a9d0643fc4540e7d3f1c3821267e866cacd3e904be9f9df80381eec09eb2b0d745ff03ffb199b917a14fdd8fbfbffe8bfb0cf7023aa7183301a8a41e7097ff9f5247f8b78f7d08bbfc596a81047807cf0929677222e7e9e921b294e04088c3746d8dc19294645f1c093a21b4c5e6d92e54dd90465b11dd5d9d42af849070edff4ec63970f4088daaa33afdebb28d01df5ee043a8150ab1b25d864ef31e20c84696596cfbea92d02ea29c4a3933c41ec68aee7d68d7eea7f30d8920e14e62be42bcf856d7a58f46fdb2438b023e974f77281c5a462553627e9614504cbd3f1cae6e0fd9f7e89d9bce48946d0508616fbe542303dc542982c61d7bb4afbf3e76bf1fb2381cdc99f2175ef944dcd826aabdca2b7678db5262733c69ce504c38e7deb7adfb9b6d8bb00d8e4251e0438417ea615cde58bd76c2427b3d7a0578bbbff9fde2abbc5d60307aff0050b18176158aaedb34e283886378ff798b4f74e0a0c95d64271f1916280dd247304d9201c67f5e2640d9706add8703cac81795a0190107e2bb2941ed13738595da1c86ba0f68e2283a435cb5f162c74071a13dfe2266d05abaef080dd6b1dade115e883e04f0bb4be4d91f535ae6f822b02e814e65d2b7807d199a23d3f26209f6c9f93602a3a93ccfdebb5f8161b7928059674e15820d1848a980c8d1af5a73aadc5c402fbb6e730ba51227913ca27f0d78d331d6325d0a7926c238296b2a22b10a69cdffeb087dfe175511ed8e2cde8d7dae140e4ce92f892b129d9940e4a30b19f822ef7611b8750eaea8e55502604b7d2358c09a217af8be6c86d67cf6ff6130c971c9765d56631fe6224fbe1e833d497b534fbf6b030af93691f59295279aa1bdfb5d5d9d4668d5aea70e2b8fc117df0042e91c7e6225f27329727ed6e14a87c7943c040dfee4e5c06a20251c39a45ab4865951b0daefb9c05571fdcc21d1761945bd2b8047ccedd6f1e708646fbe61e75bb2728e8cee893d7e6f642119e786155a6cbab057d6d83b77716145119e974ad7355179d2adc3d748fa249cb58e32e6791d646240c05da4427b2f359976c8fd1486c604cb7ee647e24633d8fca8314cf1f85110ca6351156a2b26e44b040f7d2810acd36f45a3969c1fafd1a7e0bc14fd9b26593375be8e750c3f6534ffb85904d15d75fba05dac4a673de97f7543ee931724cd35474cd7ff5cf3e8abaf206f3030e92895633fa9d8499ea763601560260109dad18bd64b990531fc5377e6eaa5da050b98e1c6515ea48c7de1a15b63283d4a694cbad379356bfdac50e6c343879e29f6b9ab425600d51f257ceb35d0ca00f83cf5bd734223de716747614666ba1f1a8fa756e5f3ff0fc94fa4bd4073bddb0098cf565ee40af5732ee9218d262e5b64ad6b8118c54eeaf7072f2e15514a401779b425fa89d8abb1750e56cc3108dffdcf2d3fd86b8af4560d56f7ff0702154211f9949e3992d93e66892b297fa2d4bfe18de3fd74e96c9d30eb14fd458fdbc9e9a34e00f3280dd732520147fa2a8fa83e91dd0687501466a300015bf888c03fc08190c2753d7719acf6f84885c4c5642f466c1984f15a7716a9b608ee5f1b395726bcc8519766667d24d11e396e62ea39640c9e73e4e9e9e5076d7019ca1bebbd7097807f46b3b6fcb96ed4b433b25ec551fb176a5fa252ed1d81b0350cfdfb8069c9916495bef3a262b6668910896c0b37eee40547c663a901e92f41b417ac50e88d058d021a8f9a5783bd936cca4962bec1c9886689cc547970f9215232596392515182e563f720bb79d29baaabf0e2697de6500bc677e346847011ee3450358c0b16ca528368b5cbb8df5ab974a3cef072d20c9906fa585e0f3083ec6d8507b8561f64e65aa1aecf825fc47ad1459c87771549fd5c9a9cc094e7b1179ee1e90eff7158f28f59f029d90e708f4ec50b4f67d8b4bb7140065528354a7e25d63e92977183a0284ec22aa923210f0bfea89cca53547137381e5de0f60bc484bc2daf129b0380244f1ed4bfb674eb2791e76dce33cae684ad36620d5d67cb587f840caed316b7439b0e8c3de0e065e62680f3997369be3466670278168c9a1a644d870e3a8d0a79b2b720e8c3c51bb9133532beee64319e98714bb2e6d5c0b723962d923b0ef454361d4b3cb470bf8c39031ed4a75267f499741be15aacac92d8e6afdcb01a2e7d2dbf549ceb2a2108c4079c620f05ca1bd31d631c2c8d35ca0d73155f56ed020c25e389db356edf510ae088d11b5e4fed51d0dce4d3aa04924b09c28200ede5bec1a8f38cc5f081055e0f28d75afc4d588ca0e828d00085d150beafdda17b8df9e7d9218ea7d81f2e076412901c5ae04d6929d717fea2fcc8e5a1e69dbd7b5258799a2fa5eb108b6cc35dfab599fb27e6d75f1030b83f452af8137830337141f031942eba83123d3f87b5f01623d4613e5a44b4952c300baf3d4d3dbbfb0ad024a19b3810a174ef8453d85a25822f66e45eba2490f29de1077683ccc32e3517f88b51e010672a982f7c8591450c9ab1573143aefb61c17ebb0c92dcb0494d116b970c2a827a6b3608ae10d583d1f7d092263fa873de9f31cd59bc9491ff012059b63a9120af89477f2ccc34eee7bd66de60af64730c879128b49d31da6400c2471e0d5abf707e560574b477b8e20ca45d92182d639eb434e14aea1a3f91ad8fb60e4859b77389753990513181ea3a82884235e8520294359435cfba220502b591fc28ac36ec697442657d290bd7aad7fce53a3f1766f2bf7d55c24d7c0e9c7a71d6f1282ea1478e0a36378b50e4fee281f686bc53f50138036e2a5d6199d40caff084fde7b63b3c0a47da0791107c3218330f7c2e2c7609aba202fae5290243b6033379eb15edc572eee452008e04c9b53efd5f3d88327317b38934745bc3de4c55bd818febc7a7953bf03c4029f77177c2a974310f0485aa46252f1000dc71934947287c38ea5854f29c7b82f630afb8caf1fd880670307b155a6e7feddc019cfbbbdc18f3bc03da3bd371d93ccbf56bcb39eea55c2d113efc148127c30089d21ce6a5088dbfbcf8f8d75c19456bc962c371548634a95382acb5a0886efc46a87bdc111dc0d1e54084cea0d58054f00762c91d7fe0f0fbcf4c280f29f9cd5999a5e8c6f507f8080d7c7ea9a8685be50722cf1a082f3728dec8d6152cdc72f8da6b1805643c042f4f6780ba79cc8a2165d9d7acec8ab2f421bc3e77b51c62c4bbb262b5674ea7d2dcf9acb894d050e91b052364322a5b08bd9667249571c004fb495da7e24fc5620adda3af6848ccf238911a52bdbff766e4e279ac274afa2c2302faba25b5fe98d972a04aa13f77c0c05d7dd82b0a19f1ded8cf5f99c80e392b0aab1264a29e9fbcf0b69f6b0a9f2332e09ab74dea7277106d0883bb264e279c67e5bc69009225bf4fd1a8532f9392a011b55a73a7cf8d16a59d695b2a65b57fad64a2041f8c28804ee1a48845c5dab757d04f1d95520aa9ddb69904d6529c0e14bd789dfe37067073b3e0e136ae2aebb1c34c55b94ce942f786be4b45f801f35f7c768d91a460b92ffa57ff675f0b4b00437a07f871a8650f21b2bf7c722c1d9e860e8955fef5699ee53a5f6fe46fb9e5e17a1c69fe2538af4718b7215ad2c00c3d420589a8653ee511b809945451fb8205b19ce377c8d0253b05493c557cf2bd8ef208e8fc01beceea1acca38d025f328f28d69bcfaa3adc6d9573a3832dc3f3c758fe08cf9cd0c32acfddae81b3682869e8aa9725b64336252aeb2ee8eb78f0721aa3158217a3009948adb297c5ea45ec26cb6d963c7be47ee1b93fa136ebe73a21936df0148fa311206f8bca2e80719aeca8745ff74ddaad5182644762c66333f942d9a93c467d5f9fd5d0dbbe57480362d4bb0f760294f4eba3e1b08047d256dbda157635d21a43aff3a71f6ad574b402bb36e5270d7ed082c6fbae07771721513ae9ddb22d23b00733046c898ee6ac05ef8a51ce41919e1f241cb98e0592ace68214620ba1a748ef81131661f58f1635713ca2873e150a3e848c8d2ebd039769fda112b73050efa4d1c35dbb46ca5a7b7ccbed1dcded36af272f6838b4c1e7e6778e7e9ca3d794f275d49c9e32e768097349118d2337e7c031ada38d0cc5c04c286ff93083f6d58d73a821118c93432fda9a8c76fa2cbcc093a7decac8e4f001ecc9f67faf1c2f102120f0618469cf653bbd5fcefd4ef2bae86dc4f5393b840f9f47140cf7f46a186c21878a43612a71d3b540b9994f010ab623f878264cf46c7366d0bec5d43d481b47846091fd3cda73a9a28ceb7f839eca695c9f084a16c812475f6575ef2368c88cc6655f47663ef69ce4779fe3ccc4dd85a07a9e4c6f39f42690d231f5727f45c247a53fd8df029fcefda4f328658435892519c17205a3c715ad6bb7387d09a5e387c83f008daf626f5977c66203af1143ef7b59ccd8e3c17bb156bca317861f0b9f222ea63c044075a3a74beaf05c23d0a75caa60397d831bbe507234fff154960faf0f02776d3f9038c955bf0c1ec9c92523cf0b855c18d6ac3b35d437796420ba3dfd581dc6adac64315c1cb1a2c3a45ec4655bb2bd6e0b4a3082281ed0697a213d1d93142e96b4fd57431d2f4547451d008ab58bcd9765ccf3ca3297becd5de9e2be0263cfca09935c9334b5e687bc7e7057dc2ed03873be22200c9fe32a9497dd00a336cf4c723ead302340b5cd1fef8cd88330a9089fc93af4ef739295b94407b291bf33f4f39c936736e1166106428f8796a4b92805f4dfcf46d8692b54e40a9e8584c0eaac4caada87bb33f553eafeef5051b889402176ab766936a38ddd7e5205d2c87e133a02e84ab24ba2d889a4c4db8cbe18b271455e84da716f4a32acdbc0a5aaba25a2ec757c73847dd1c4ccb2967c651e5257692a4553dde227846bfe2977021805f46a287c835ea8dc5", 0x2000, &(0x7f00000015c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x20, 0x0, 0x9c, {0x0, 0xb}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r4, &(0x7f0000004200)={0x50, 0x0, r5, {0x7, 0x2b, 0x0, 0x10004004, 0x0, 0xfffe, 0xff, 0x2, 0x0, 0x0, 0x100}}, 0x50)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
close_range(r3, r4, 0x0)
ioctl$TIOCSSOFTCAR(r6, 0x541a, 0x0)
read$FUSE(r6, 0x0, 0x0)

10.006036185s ago: executing program 2 (id=643):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000600)={0x0, 0x0, @pic={0x7, 0xfc, 0xe1, 0x0, 0x6, 0xd9, 0x40, 0x1, 0xfb, 0x0, 0xc, 0x0, 0x0, 0x40, 0x1, 0x5}})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x6e, 0x0, 0x0, 0x21, 0x3, 0x0, 0x106c, 0x80000001, 0x8000000000000, 0x80000004000080, 0x0, 0x8, 0x0, 0x0, 0x0, 0x8004], 0x1, 0x3c4210})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

9.657183895s ago: executing program 2 (id=644):
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x10000, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket(0x10, 0x803, 0x0)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f00000001c0)=ANY=[@ANYBLOB="9feb010018000000000000003400000034000000020000000000000002000004000000000000000002000000000000000000000002000000000000000100000000000001"], 0x0, 0x4e}, 0x20)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00')
preadv(r4, &(0x7f00000002c0)=[{&(0x7f0000000340)=""/4096, 0x1000}], 0x1, 0x35, 0x88)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)={0x1b, 0x0, 0x0, 0x1000, 0x0, 0x1, 0x0, '\x00', 0x0, r3, 0x1, 0x1}, 0x50)
r5 = openat$autofs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r6 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r5, 0xc0189378, &(0x7f00000001c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r6}}, './file1\x00'})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={0x0, 0xc0}, 0x1, 0x0, 0x0, 0x40801}, 0x4000000)
syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_pkt_type_change={{0x1d, 0x5}, {0x6, 0x0, 0x2}}}, 0x8)
bpf$OBJ_GET_PROG(0x7, &(0x7f00000000c0)=@o_path={&(0x7f0000000080)='./file0\x00', 0x0, 0x4008}, 0x18)

8.615630486s ago: executing program 0 (id=645):
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x1, 0x0)
pipe2$9p(&(0x7f00000003c0), 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_audit(0x10, 0x3, 0x9)
r0 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = socket$unix(0x1, 0x2, 0x0)
ppoll(&(0x7f0000000300)=[{r1, 0x4236}], 0x1, 0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000080)={<r2=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000300), 0x2, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000100)={0x3, 0x40, 0xfa00, {{0xa, 0xfffb, 0x5, @empty, 0xa098}, {0xa, 0x4ea5, 0x9, @mcast1, 0x8}, r2, 0x8001}}, 0x48)
writev(r0, &(0x7f0000000040)=[{&(0x7f0000000100), 0x86}], 0x2)

8.507435713s ago: executing program 0 (id=646):
r0 = socket$igmp(0x2, 0x3, 0x2)
getsockopt$ARPT_SO_GET_ENTRIES(r0, 0x0, 0x61, 0x0, &(0x7f0000000180))
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_tables_targets\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
ioctl$COMEDI_DEVCONFIG(0xffffffffffffffff, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(0xffffffffffffffff, 0x40946400, &(0x7f00000000c0)={'das16m1\x00', [0x4f2a, 0x7, 0x10000, 0x4, 0x7, 0xcc7, 0x3fe, 0xa, 0xd, 0x6, 0x4000002, 0x1, 0x1, 0x7fff, 0x8, 0x101, 0x1, 0x1a449, 0x3, 0x7fc, 0x89, 0xcaa3, 0x0, 0x9, 0xb, 0xe69, 0x3d, 0x8, 0x4088, 0x0, 0x9]})
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r2, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000480)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
rt_tgsigqueueinfo(r2, r2, 0xe, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
mknodat$loop(0xffffffffffffff9c, 0x0, 0x6004, 0x1)
preadv(r1, &(0x7f0000000080)=[{&(0x7f0000000440)=""/47, 0x2f}], 0x1, 0x1, 0x8)
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000280)='./file1\x00', 0x8008dc, &(0x7f00000002c0)=ANY=[@ANYBLOB='shortname=winnt,uni_xlate=1,rodir,uni_xlate=0,iocharset=macgaelic,shortname=lower,utf8=1,iocharset=iso8859-13,uni_xlate=1,rodir,shortname=win95,shortname=lower,codepage=874,shortname=lower,utf8=0,shortname=lower,uni_xlate=0,uni_xlate=0,nonumtail=0,short\b\x00\x00\x00\x00\x00\x00\x0095,rodir,uni_xlate=0,rodir,shortname=mixed,sFortname=lower,nnonumtail=1,showexec,\x00', @ANYBLOB="b0baffea7e7ba334f8fde1f7928de8eb76582a", @ANYRES16], 0x6, 0x2e7, &(0x7f0000000780)="$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")
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)

7.893059479s ago: executing program 2 (id=647):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmsg(0xffffffffffffffff, 0x0, 0x44004)
r4 = add_key$fscrypt_v1(&(0x7f0000000440), &(0x7f0000000480), &(0x7f00000004c0)={0x0, "3e82554dc8ccfbc2e85ec82d4ee9df60f6ae16b1a5f2c848722ba3b132e4fde178c945bd950b0477e801fc8a1be9b4ebbe9c2289a6b0aa00"}, 0x48, 0xfffffffffffffffe)
pipe2$watch_queue(&(0x7f0000000300)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r4, r5, 0x0)
add_key$fscrypt_v1(&(0x7f0000000440), &(0x7f0000000480), &(0x7f00000004c0)={0x0, "3e82554dc8ccfbc2e85ec82d4ee9df60f6ae16b1a5f2c848722ba3b132e4fde178c945bd950b0477e801fc8a1be9b4ebbe9c2289a6b0aa00"}, 0x48, 0xfffffffffffffffe)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000140)=0x80000041)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x10002, 0x0)
ioctl$TCSETSF(0xffffffffffffffff, 0x5404, 0x0)
openat$misdntimer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r5, 0x80044940, &(0x7f0000000740))
syz_mount_image$nilfs2(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x3000c01, &(0x7f0000000380)=ANY=[], 0x3, 0xa83, &(0x7f0000001a40)="$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")

7.51677895s ago: executing program 1 (id=648):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x100)
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
close(r4)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
creat(0x0, 0x18c)
mount$9p_fd(0x0, 0x0, 0x0, 0x200400, 0x0)

5.47915885s ago: executing program 2 (id=649):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000280)={[{@delalloc}, {@nodelalloc}, {@init_itable_val={'init_itable', 0x3d, 0x3}}, {@inlinecrypt}, {@data_err_ignore}, {@nodiscard}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x5, 0x557, &(0x7f0000000fc0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x104)
r1 = open(0x0, 0x16f07e, 0x88)
fallocate(r1, 0x0, 0x8, 0x1101f0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
shmget$private(0x0, 0x8000, 0x10, &(0x7f0000ff5000/0x8000)=nil)
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x42, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r5 = landlock_create_ruleset(&(0x7f00000002c0)={0x7f6e}, 0x18, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r5, 0x1, &(0x7f0000000000)={0x210a, r4}, 0x0)
landlock_restrict_self(r5, 0x0)
link(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)

5.47756791s ago: executing program 3 (id=650):
r0 = socket$inet6(0xa, 0x80002, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r1, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0xb}, 0xe)
pipe2$9p(0x0, 0x0)
r2 = getpgrp(0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1b5cb000)
r4 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x1, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
write$sndseq(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$sock(r1, &(0x7f0000004100)=[{{0x0, 0x0, 0x0}}], 0xffffff80, 0x0)
setsockopt$inet6_udp_int(r0, 0x11, 0x65, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000002140)={0xa, 0x4e25, 0x1, @mcast2, 0x5}, 0x1c)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, &(0x7f0000000200), 0x4)
sendmsg$sock(r7, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)
sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4001c00)

3.045465292s ago: executing program 3 (id=651):
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x15, 0x0, 0x6, 0x4, 0x0, 0x1}, 0x50)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x50)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000100)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket(0x1e, 0x805, 0x0)
connect$tipc(r0, &(0x7f00000003c0)=@id={0x1e, 0x3, 0x0, {0x4e21, 0x3}}, 0x10)
close(r0)
r1 = socket(0x2a, 0x2, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x2100)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r3=>0x0})
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000c80)={'ip6gre0\x00'})
socket$xdp(0x2c, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendto$packet(r2, &(0x7f0000000240)="f2435f0100088000000000850800", 0xe, 0x0, &(0x7f0000000200)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c00000013000100000000000000000000000002", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=r3, @ANYBLOB="1400350064756d6d7930"], 0x3c}}, 0x0)
ioctl$SIOCSIFMTU(r1, 0x8922, &(0x7f0000000080)={'dummy0\x00'})

3.044182452s ago: executing program 1 (id=659):
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$MRT_ADD_MFC(0xffffffffffffffff, 0x0, 0xcc, 0x0, 0x0)
setsockopt$MRT_ADD_MFC_PROXY(0xffffffffffffffff, 0x0, 0xd2, 0x0, 0x0)
syz_open_dev$sg(0x0, 0x80, 0x40000)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000004540)=[{{0x0, 0x0, &(0x7f0000000280)}}], 0x1, 0x240080e4)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x61, 0x11, 0x8c}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x70)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
mmap(&(0x7f0000200000/0x4000)=nil, 0x4000, 0x200000c, 0x200000006c832, 0xffffffffffffffff, 0x0)

2.451942037s ago: executing program 0 (id=652):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0xfef3, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd6001010000641100fe8000000000000000000000000000bbfe8000"/51], 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x40000, &(0x7f0000000040)={[], [{@dont_appraise}], 0x3a})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000580)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000001a40)=""/102392, 0x18ff8)
close(0xffffffffffffffff)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
r2 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000500), 0x40002, 0x0)
preadv(r2, &(0x7f0000004040)=[{&(0x7f0000002e00)=""/156, 0x9c}], 0x1, 0x401, 0x0)
r3 = semget(0x0, 0x4, 0x39c)
semctl$SETALL(r3, 0x0, 0x11, &(0x7f0000000240))
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="640000000206010200000000000000000000000015000300686173683a69702c706f72742c6e6574000000000900020073797a32000000000500040000000000140007800800124000000000050015002200000005000500020000000500010006"], 0x64}}, 0x0)
sendmsg$IPSET_CMD_FLUSH(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)={0x1c, 0x4, 0x6, 0x801, 0x0, 0x0, {0x2, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc011}, 0x800)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14080, 0x10000}, [@IFLA_GROUP={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)

2.195571182s ago: executing program 0 (id=653):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_BINDTODEVICE_wg(r0, 0x1, 0x19, &(0x7f0000000140)='wg0\x00', 0x4)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x36, 0x36}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
timer_create(0xfffffffffffffffc, 0x0, &(0x7f0000001400)=<r2=>0x0)
ioctl$sock_SIOCBRADDBR(r0, 0x89a0, &(0x7f0000000180)='dummy0\x00')
timer_settime(0x0, 0x1, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
timer_gettime(r2, &(0x7f0000000080))
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
timer_delete(r2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
capset(&(0x7f0000000040)={0x20071026, r1}, &(0x7f0000000100)={0x7, 0x5, 0x3ff, 0xfffffffe, 0xf, 0x2})
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/stat\x00', 0x0, 0x0)
sendfile(r5, r6, 0x0, 0x20000023896)
timerfd_gettime(r6, &(0x7f0000000280))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
futex(&(0x7f0000004000)=0x8007, 0x4, 0x0, 0x0, &(0x7f0000004000)=0x2, 0x2)

13.483749ms ago: executing program 1 (id=654):
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x1, 0x0)
pipe2$9p(&(0x7f00000003c0), 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_audit(0x10, 0x3, 0x9)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0)
socket$unix(0x1, 0x2, 0x0)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000080)={<r1=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000300), 0x2, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000100)={0x3, 0x40, 0xfa00, {{0xa, 0xfffb, 0x5, @empty, 0xa098}, {0xa, 0x4ea5, 0x9, @mcast1, 0x8}, r1, 0x8001}}, 0x48)
writev(r0, &(0x7f0000000040)=[{&(0x7f0000000100), 0x86}], 0x2)

0s ago: executing program 2 (id=663):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, &(0x7f0000000200)=ANY=[], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$kcm(0x21, 0x2, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_open_dev$vbi(0x0, 0x0, 0x2)
socket$netlink(0x10, 0x3, 0x8000000004)
sched_setscheduler(0x0, 0x3, 0x0)
close(r0)
r4 = socket(0xa, 0x5, 0x0)
setsockopt$inet_sctp_SCTP_INITMSG(r4, 0x84, 0x2, &(0x7f00000001c0)={0x0, 0x1, 0xf, 0xafc}, 0x8)
r5 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r6=>0xffffffffffffffff})
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route_sched(r5, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@newtaction={0x98, 0x30, 0x1, 0x70bd28, 0x0, {0x0, 0x0, 0x6a00}, [{0x84, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x2, 0x0, 0xfffffffe}, 0x2, r7}}]}, {0x4, 0xa}, {0xc}, {0xc}}}, @m_mpls={0x30, 0x2, 0x0, 0x0, {{0x9}, {0x3}, {0x4}, {0xc}, {0xc}}}]}]}, 0x98}}, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.82' (ED25519) to the list of known hosts.
[   77.437380][ T5756] cgroup: Unknown subsys name 'net'
[   77.600854][ T5756] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   79.270018][ T5756] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   81.153948][ T5781] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   81.162273][ T5780] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   81.170348][ T5781] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   81.178529][ T5780] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   81.187205][ T5783] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   81.187312][ T5781] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   81.197123][ T5783] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   81.206966][ T5781] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   81.211745][ T5786] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   81.216429][ T5781] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   81.231577][ T5781] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   81.233072][ T5786] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   81.242780][ T5781] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   81.253020][ T5786] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   81.255778][ T5781] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   81.262622][ T5786] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   81.268770][ T5781] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   81.277841][ T5786] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   81.281488][ T5780] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   81.307091][ T5780] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   81.314296][ T5083] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   81.323736][ T5780] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   81.350533][ T5783] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   81.367394][ T5777] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   81.767888][ T5769] chnl_net:caif_netlink_parms(): no params data found
[   81.926682][ T5770] chnl_net:caif_netlink_parms(): no params data found
[   81.953368][ T5768] chnl_net:caif_netlink_parms(): no params data found
[   82.069682][ T5769] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.079639][ T5769] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.087354][ T5769] bridge_slave_0: entered allmulticast mode
[   82.095417][ T5769] bridge_slave_0: entered promiscuous mode
[   82.116410][ T5771] chnl_net:caif_netlink_parms(): no params data found
[   82.150541][ T5769] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.159832][ T5769] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.167127][ T5769] bridge_slave_1: entered allmulticast mode
[   82.174815][ T5769] bridge_slave_1: entered promiscuous mode
[   82.198932][ T5768] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.206356][ T5768] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.214044][ T5768] bridge_slave_0: entered allmulticast mode
[   82.220995][ T5768] bridge_slave_0: entered promiscuous mode
[   82.229860][ T5768] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.237404][ T5768] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.245726][ T5768] bridge_slave_1: entered allmulticast mode
[   82.255010][ T5768] bridge_slave_1: entered promiscuous mode
[   82.313407][ T5770] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.320664][ T5770] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.327979][ T5770] bridge_slave_0: entered allmulticast mode
[   82.335084][ T5770] bridge_slave_0: entered promiscuous mode
[   82.343461][ T5770] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.350625][ T5770] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.358170][ T5770] bridge_slave_1: entered allmulticast mode
[   82.365628][ T5770] bridge_slave_1: entered promiscuous mode
[   82.421139][ T5768] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   82.436724][ T5769] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   82.449297][ T5769] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   82.478859][ T5768] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   82.512218][ T5770] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   82.557706][ T5770] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   82.578187][ T5771] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.588191][ T5771] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.595951][ T5771] bridge_slave_0: entered allmulticast mode
[   82.604090][ T5771] bridge_slave_0: entered promiscuous mode
[   82.627363][ T5768] team0: Port device team_slave_0 added
[   82.636875][ T5769] team0: Port device team_slave_0 added
[   82.647694][ T5769] team0: Port device team_slave_1 added
[   82.666795][ T5771] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.674092][ T5771] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.681249][ T5771] bridge_slave_1: entered allmulticast mode
[   82.688536][ T5771] bridge_slave_1: entered promiscuous mode
[   82.708011][ T5768] team0: Port device team_slave_1 added
[   82.740973][ T5770] team0: Port device team_slave_0 added
[   82.783019][ T5770] team0: Port device team_slave_1 added
[   82.791493][ T5771] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   82.813576][ T5768] batman_adv: batadv0: Adding interface: batadv_slave_0
[   82.820563][ T5768] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   82.847951][ T5768] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   82.862503][ T5768] batman_adv: batadv0: Adding interface: batadv_slave_1
[   82.869670][ T5768] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   82.896083][ T5768] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   82.931303][ T5769] batman_adv: batadv0: Adding interface: batadv_slave_0
[   82.938510][ T5769] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   82.964535][ T5769] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   82.978068][ T5769] batman_adv: batadv0: Adding interface: batadv_slave_1
[   82.985178][ T5769] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   83.011525][ T5769] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   83.025502][ T5771] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   83.049201][ T5770] batman_adv: batadv0: Adding interface: batadv_slave_0
[   83.056288][ T5770] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   83.084206][ T5770] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   83.097635][ T5770] batman_adv: batadv0: Adding interface: batadv_slave_1
[   83.104795][ T5770] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   83.131117][ T5770] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   83.188567][ T5771] team0: Port device team_slave_0 added
[   83.233766][ T5771] team0: Port device team_slave_1 added
[   83.258668][ T5768] hsr_slave_0: entered promiscuous mode
[   83.266224][ T5768] hsr_slave_1: entered promiscuous mode
[   83.279408][ T5769] hsr_slave_0: entered promiscuous mode
[   83.286448][ T5769] hsr_slave_1: entered promiscuous mode
[   83.293280][ T5769] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   83.301208][ T5769] Cannot create hsr debugfs directory
[   83.323214][ T5779] Bluetooth: hci0: command tx timeout
[   83.347694][ T5770] hsr_slave_0: entered promiscuous mode
[   83.354362][ T5770] hsr_slave_1: entered promiscuous mode
[   83.360599][ T5770] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   83.369486][ T5770] Cannot create hsr debugfs directory
[   83.402231][ T5779] Bluetooth: hci1: command tx timeout
[   83.402252][ T5777] Bluetooth: hci3: command tx timeout
[   83.402541][ T5777] Bluetooth: hci2: command tx timeout
[   83.456877][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_0
[   83.464783][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   83.491200][ T5771] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   83.504060][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_1
[   83.511055][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   83.537252][ T5771] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   83.724959][ T5771] hsr_slave_0: entered promiscuous mode
[   83.732211][ T5771] hsr_slave_1: entered promiscuous mode
[   83.738756][ T5771] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   83.746440][ T5771] Cannot create hsr debugfs directory
[   84.018910][ T5768] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   84.043812][ T5768] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   84.057794][ T5768] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   84.075370][ T5768] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   84.167393][ T5770] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   84.179077][ T5770] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   84.206795][ T5770] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   84.216790][ T5770] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   84.319746][ T5769] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   84.330373][ T5769] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   84.344928][ T5769] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   84.357536][ T5769] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   84.469695][ T5771] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   84.488989][ T5771] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   84.499473][ T5771] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   84.518850][ T5771] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   84.560730][ T5768] 8021q: adding VLAN 0 to HW filter on device bond0
[   84.610053][ T5768] 8021q: adding VLAN 0 to HW filter on device team0
[   84.670372][ T5769] 8021q: adding VLAN 0 to HW filter on device bond0
[   84.700807][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.708272][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   84.729938][ T5770] 8021q: adding VLAN 0 to HW filter on device bond0
[   84.741185][ T5769] 8021q: adding VLAN 0 to HW filter on device team0
[   84.773179][ T1071] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.780375][ T1071] bridge0: port 2(bridge_slave_1) entered forwarding state
[   84.791685][ T1071] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.798953][ T1071] bridge0: port 1(bridge_slave_0) entered forwarding state
[   84.823153][ T5770] 8021q: adding VLAN 0 to HW filter on device team0
[   84.859105][ T1071] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.866355][ T1071] bridge0: port 2(bridge_slave_1) entered forwarding state
[   84.894013][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.901308][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   84.944509][ T1085] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.951690][ T1085] bridge0: port 2(bridge_slave_1) entered forwarding state
[   84.990302][ T5771] 8021q: adding VLAN 0 to HW filter on device bond0
[   85.119211][ T5771] 8021q: adding VLAN 0 to HW filter on device team0
[   85.168799][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.176040][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   85.239157][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.246423][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   85.403270][ T5777] Bluetooth: hci0: command tx timeout
[   85.482585][ T5777] Bluetooth: hci2: command tx timeout
[   85.488076][ T5777] Bluetooth: hci1: command tx timeout
[   85.501030][   T51] Bluetooth: hci3: command tx timeout
[   85.537182][ T5768] 8021q: adding VLAN 0 to HW filter on device batadv0
[   85.715473][ T5768] veth0_vlan: entered promiscuous mode
[   85.737333][ T5770] 8021q: adding VLAN 0 to HW filter on device batadv0
[   85.747716][ T5769] 8021q: adding VLAN 0 to HW filter on device batadv0
[   85.797909][ T5768] veth1_vlan: entered promiscuous mode
[   85.917883][ T5769] veth0_vlan: entered promiscuous mode
[   85.947148][ T5769] veth1_vlan: entered promiscuous mode
[   85.956711][ T5768] veth0_macvtap: entered promiscuous mode
[   85.974714][ T5770] veth0_vlan: entered promiscuous mode
[   85.995216][ T5771] 8021q: adding VLAN 0 to HW filter on device batadv0
[   86.008855][ T5768] veth1_macvtap: entered promiscuous mode
[   86.053362][ T5770] veth1_vlan: entered promiscuous mode
[   86.079233][ T5768] batman_adv: batadv0: Interface activated: batadv_slave_0
[   86.097497][ T5769] veth0_macvtap: entered promiscuous mode
[   86.110363][ T5769] veth1_macvtap: entered promiscuous mode
[   86.144782][ T5768] batman_adv: batadv0: Interface activated: batadv_slave_1
[   86.187164][ T5768] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   86.196649][ T5768] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   86.209427][ T5768] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   86.218341][ T5768] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   86.249225][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   86.260382][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.273172][ T5769] batman_adv: batadv0: Interface activated: batadv_slave_0
[   86.312715][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   86.325261][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.337668][ T5769] batman_adv: batadv0: Interface activated: batadv_slave_1
[   86.357043][ T5771] veth0_vlan: entered promiscuous mode
[   86.368932][ T5770] veth0_macvtap: entered promiscuous mode
[   86.396038][ T5769] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   86.405323][ T5769] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   86.416446][ T5769] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   86.425425][ T5769] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   86.441730][ T5770] veth1_macvtap: entered promiscuous mode
[   86.528920][ T5771] veth1_vlan: entered promiscuous mode
[   86.569785][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   86.588209][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.598188][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   86.609359][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.623823][ T5770] batman_adv: batadv0: Interface activated: batadv_slave_0
[   86.638168][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.639511][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   86.647276][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.666252][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.681460][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   86.697519][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.710606][ T5770] batman_adv: batadv0: Interface activated: batadv_slave_1
[   86.757670][ T5770] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   86.768664][ T5770] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   86.777592][ T5770] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   86.786530][ T5770] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   86.838473][ T5771] veth0_macvtap: entered promiscuous mode
[   86.856750][ T1113] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.866114][ T1113] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.917778][ T5771] veth1_macvtap: entered promiscuous mode
[   86.945318][ T1113] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.955225][ T1113] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.034089][ T1113] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.036505][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   87.058543][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   87.069001][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   87.074217][ T1113] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.081265][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   87.103866][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   87.119330][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   87.166237][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_0
[   87.205451][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   87.234473][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   87.249182][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   87.262260][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   87.277239][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   87.288080][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   87.301475][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_1
[   87.343037][ T5771] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   87.352422][ T5771] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   87.361179][ T5771] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   87.381080][ T5771] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   87.405126][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.413348][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.482439][ T5777] Bluetooth: hci0: command tx timeout
[   87.562423][   T51] Bluetooth: hci1: command tx timeout
[   87.562668][ T5779] Bluetooth: hci3: command tx timeout
[   87.568252][ T5777] Bluetooth: hci2: command tx timeout
[   87.695196][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.721661][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.784943][ T5864] netlink: 'syz.1.2': attribute type 4 has an invalid length.
[   88.024019][ T5865] netlink: 'syz.1.2': attribute type 4 has an invalid length.
[   88.085586][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.141083][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.745451][ T1071] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.753747][ T1071] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.092263][    T0] NOHZ tick-stop error: local softirq work is pending, handler #c0!!!
[   89.732435][ T5777] Bluetooth: hci0: command tx timeout
[   89.738445][ T5777] Bluetooth: hci3: command tx timeout
[   89.746735][ T5777] Bluetooth: hci1: command tx timeout
[   89.965825][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   89.982741][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   89.992625][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   90.218282][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[   91.243656][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   91.247259][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   91.348678][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   91.447986][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   91.642554][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   92.696126][ T1192] cfg80211: failed to load regulatory.db
[   92.795014][ T5886] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   94.568007][ T5779] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[   94.576666][ T5779] Bluetooth: hci2: Injecting HCI hardware error event
[   94.585888][ T5779] Bluetooth: hci2: hardware error 0x00
[   95.056107][ T5897] syz.3.12[5897]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   95.296080][ T5897] loop3: detected capacity change from 0 to 40427
[   95.333626][ T5897] F2FS-fs (loop3): build fault injection attr: rate: 690, type: 0x7ffff
[   95.342822][ T5897] F2FS-fs (loop3): Image doesn't support compression
[   95.349546][ T5897] F2FS-fs (loop3): Image doesn't support compression
[   95.376889][ T5897] F2FS-fs (loop3): invalid crc value
[   95.397931][ T5897] F2FS-fs (loop3): Found nat_bits in checkpoint
[   95.447788][ T5897] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   95.663143][ T5901] F2FS-fs (loop3): inject lock_op in f2fs_trylock_op of f2fs_write_single_data_page+0x99c/0x1a00
[   95.682421][ T5901] syz.3.12: attempt to access beyond end of device
[   95.682421][ T5901] loop3: rw=2049, sector=77824, nr_sectors = 136 limit=40427
[   95.730171][   T28] audit: type=1800 audit(1770087897.761:2): pid=5901 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.12" name="file1" dev="loop3" ino=10 res=0 errno=0
[   95.814305][ T5901] syz.3.12: attempt to access beyond end of device
[   95.814305][ T5901] loop3: rw=2049, sector=77960, nr_sectors = 800 limit=40427
[   96.244066][ T5769] syz-executor: attempt to access beyond end of device
[   96.244066][ T5769] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   96.289032][ T5769] F2FS-fs (loop3): Remounting filesystem read-only
[   96.784720][ T5905] syzkaller0: entered promiscuous mode
[   96.790280][ T5905] syzkaller0: entered allmulticast mode
[   96.842051][ T5779] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[   97.365476][ T5913] loop0: detected capacity change from 0 to 8
[   98.372862][ T5909] tipc: Started in network mode
[   98.378007][ T5909] tipc: Node identity 5e5b677bc28b, cluster identity 4711
[   98.440292][ T5909] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   98.515138][ T5906] tipc: Disabling bearer <eth:syzkaller0>
[   99.824709][ T5928] tty tty20: ldisc open failed (-12), clearing slot 19
[  100.080926][ T5933] netlink: 8 bytes leftover after parsing attributes in process `syz.0.21'.
[  100.090056][ T5933] netlink: 12 bytes leftover after parsing attributes in process `syz.0.21'.
[  100.127562][ T5933] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  100.136919][ T5933] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  100.145745][ T5933] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  100.155498][ T5933] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  100.170625][   T28] audit: type=1804 audit(1770087902.321:3): pid=5930 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.20" name="/newroot/7/file1" dev="fuse" ino=1 res=1 errno=0
[  100.230009][ T5935] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  100.251791][ T5936] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  100.263300][ T5936] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  100.781121][   T27] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  101.162209][   T27] usb 2-1: Using ep0 maxpacket: 16
[  101.279477][   T27] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  101.314579][   T27] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  101.334186][   T27] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  101.354464][   T27] usb 2-1: Product: syz
[  101.358711][   T27] usb 2-1: Manufacturer: syz
[  101.399414][   T27] usb 2-1: SerialNumber: syz
[  101.437846][   T27] usb 2-1: config 0 descriptor??
[  103.059902][   T27] em28xx 2-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  103.104960][   T27] em28xx 2-1:0.0: DVB interface 0 found: bulk
[  103.492332][ T5958] syzkaller0: entered promiscuous mode
[  103.497968][ T5958] syzkaller0: entered allmulticast mode
[  103.769426][   T27] em28xx 2-1:0.0: unknown em28xx chip ID (0)
[  104.305313][   T27] em28xx 2-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  104.542110][ T5779] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  104.552560][   T27] em28xx 2-1:0.0: board has no eeprom
[  104.587739][ T5779] Bluetooth: hci1: Injecting HCI hardware error event
[  104.596154][ T5777] Bluetooth: hci1: hardware error 0x00
[  105.236565][   T28] audit: type=1804 audit(1770087907.391:4): pid=5965 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.33" name="/newroot/8/file1" dev="fuse" ino=1 res=1 errno=0
[  107.319532][ T5940] em28xx 2-1:0.0: writing to i2c device at 0xfe00 failed (error=-5)
[  107.329483][ T5777] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  107.343412][   T27] em28xx 2-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  107.351308][   T27] em28xx 2-1:0.0: dvb set to bulk mode.
[  107.358246][   T23] em28xx 2-1:0.0: Binding DVB extension
[  107.440306][   T23] em28xx 2-1:0.0: Registering input extension
[  107.467969][ T5976] syzkaller0: entered promiscuous mode
[  107.477394][ T5976] syzkaller0: entered allmulticast mode
[  107.533215][    T9] usb 2-1: USB disconnect, device number 2
[  107.646154][    T9] em28xx 2-1:0.0: Disconnecting em28xx
[  107.667183][    T9] em28xx 2-1:0.0: Closing input extension
[  107.752461][    T9] em28xx 2-1:0.0: Freeing device
[  108.066972][ T5987] loop1: detected capacity change from 0 to 128
[  108.744242][ T5987] =======================================================
[  108.744242][ T5987] WARNING: The mand mount option has been deprecated and
[  108.744242][ T5987]          and is ignored by this kernel. Remove the mand
[  108.744242][ T5987]          option from the mount to silence this warning.
[  108.744242][ T5987] =======================================================
[  108.851775][ T5983] loop0: detected capacity change from 0 to 764
[  108.977855][ T5987] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  109.011029][ T5987] ext4 filesystem being mounted at /10/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  109.681989][ T5998] binder: 5997:5998 ioctl c0306201 200000000280 returned -14
[  109.715432][ T5768] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  111.721864][    C0] sched: RT throttling activated
[  118.762884][ T6030] overlayfs: failed to create directory ./file0/work (errno: 22); mounting read-only
[  118.778437][   T28] audit: type=1804 audit(1770087920.931:5): pid=6033 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.46" name="/newroot/11/file1" dev="fuse" ino=1 res=1 errno=0
[  119.600068][ T6037] loop2: detected capacity change from 0 to 128
[  119.948398][ T6037] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  121.126376][ T6050] tty tty22: ldisc open failed (-12), clearing slot 21
[  121.202230][ T6037] ext4 filesystem being mounted at /11/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  121.214967][ T6047] loop3: detected capacity change from 0 to 764
[  123.351510][ T5771] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  125.276095][ T6079] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[  125.304326][ T6079] cramfs: wrong magic
[  127.023284][ T6084] syzkaller0: entered promiscuous mode
[  127.028841][ T6084] syzkaller0: entered allmulticast mode
[  127.066147][ T6084] tipc: Started in network mode
[  127.081393][ T6084] tipc: Node identity a6e8a45b478, cluster identity 4711
[  127.092383][ T6084] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  127.122447][ T6083] tipc: Resetting bearer <eth:syzkaller0>
[  127.219234][ T6083] tipc: Disabling bearer <eth:syzkaller0>
[  127.253070][ T6086] syzkaller0: entered promiscuous mode
[  127.277226][ T6086] syzkaller0: entered allmulticast mode
[  129.273592][ T6095] loop3: detected capacity change from 0 to 128
[  129.286650][ T6089] nbd0: detected capacity change from 0 to 127
[  129.372361][ T6095] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  129.411501][ T6089] netlink: 64 bytes leftover after parsing attributes in process `syz.0.61'.
[  129.423285][ T5777] block nbd0: Receive control failed (result -104)
[  129.432844][ T6095] ext4 filesystem being mounted at /13/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  129.674835][ T6103] loop1: detected capacity change from 0 to 764
[  130.080892][ T6108] syzkaller0: entered promiscuous mode
[  130.086799][ T6108] syzkaller0: entered allmulticast mode
[  130.097372][ T5769] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  133.166491][ T1284] ieee802154 phy0 wpan0: encryption failed: -22
[  133.173390][ T1284] ieee802154 phy1 wpan1: encryption failed: -22
[  133.338289][ T6122] loop1: detected capacity change from 0 to 8
[  133.387418][ T5855] IPVS: starting estimator thread 0...
[  133.862030][ T6123] IPVS: using max 17 ests per chain, 40800 per kthread
[  134.242662][ T6125] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  134.372738][ T6129] syzkaller0: entered promiscuous mode
[  134.531940][ T6129] syzkaller0: entered allmulticast mode
[  135.056328][ T6130] tipc: Resetting bearer <eth:syzkaller0>
[  135.123001][ T6124] tipc: Resetting bearer <eth:syzkaller0>
[  136.830442][   T28] audit: type=1326 audit(1770087937.291:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6135 comm="syz.1.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f593b99aeb9 code=0x7ffc0000
[  136.902063][   T28] audit: type=1326 audit(1770087937.291:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6135 comm="syz.1.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f593b99aeb9 code=0x7ffc0000
[  136.942921][ T6124] tipc: Disabling bearer <eth:syzkaller0>
[  136.985660][   T28] audit: type=1326 audit(1770087939.011:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6135 comm="syz.1.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f593b99aeb9 code=0x7ffc0000
[  137.055467][    T9] tipc: Node number set to 2630903675
[  137.071979][   T28] audit: type=1326 audit(1770087939.011:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6135 comm="syz.1.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f593b99aeb9 code=0x7ffc0000
[  137.132033][   T28] audit: type=1326 audit(1770087939.011:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6135 comm="syz.1.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f593b99aeb9 code=0x7ffc0000
[  137.222005][   T28] audit: type=1326 audit(1770087939.011:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6135 comm="syz.1.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f593b99aeb9 code=0x7ffc0000
[  137.272298][   T28] audit: type=1326 audit(1770087939.011:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6135 comm="syz.1.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f593b99aeb9 code=0x7ffc0000
[  137.471878][   T28] audit: type=1326 audit(1770087939.021:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6135 comm="syz.1.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f593b99aeb9 code=0x7ffc0000
[  137.534367][   T28] audit: type=1326 audit(1770087939.031:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6135 comm="syz.1.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f593b99aeb9 code=0x7ffc0000
[  137.565727][   T28] audit: type=1326 audit(1770087939.031:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6135 comm="syz.1.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f593b99aeb9 code=0x7ffc0000
[  145.147238][ T6212] Zero length message leads to an empty skb
[  146.323940][ T6219] dummy0: entered promiscuous mode
[  146.352233][ T6219] vlan2: entered promiscuous mode
[  146.733085][ T6227] syz.3.97 uses obsolete (PF_INET,SOCK_PACKET)
[  146.748248][ T6227] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  148.891031][ T6239] loop1: detected capacity change from 0 to 1024
[  149.039832][ T6239] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  149.376231][ T6239] ext4 filesystem being mounted at /28/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.004749][ T6239] EXT4-fs error (device loop1): ext4_map_blocks:718: inode #15: comm syz.1.100: lblock 0 mapped to illegal pblock 0 (length 6)
[  150.025873][ T6239] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117
[  150.038271][ T6239] EXT4-fs (loop1): This should not happen!! Data will be lost
[  150.038271][ T6239] 
[  150.695823][ T6250] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[  150.712222][ T6250] cramfs: wrong magic
[  152.136933][ T1085] EXT4-fs error (device loop1): ext4_map_blocks:718: inode #15: block 8: comm kworker/u4:7: lblock 8 mapped to illegal pblock 8 (length 8)
[  152.178856][   T28] kauditd_printk_skb: 29 callbacks suppressed
[  152.178871][   T28] audit: type=1326 audit(1770087954.331:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6252 comm="syz.2.103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f214159aeb9 code=0x7ffc0000
[  152.236261][ T6257] random: crng reseeded on system resumption
[  152.699598][ T1085] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  152.757691][ T1085] EXT4-fs (loop1): This should not happen!! Data will be lost
[  152.757691][ T1085] 
[  152.776159][   T28] audit: type=1326 audit(1770087954.331:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6252 comm="syz.2.103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f214159ab4b code=0x7ffc0000
[  152.809057][   T28] audit: type=1326 audit(1770087954.331:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6252 comm="syz.2.103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f214159ab4b code=0x7ffc0000
[  152.850192][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  152.871744][   T28] audit: type=1326 audit(1770087954.331:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6252 comm="syz.2.103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f214159ab4b code=0x7ffc0000
[  152.952060][   T28] audit: type=1326 audit(1770087954.331:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6252 comm="syz.2.103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f214159ab4b code=0x7ffc0000
[  154.209886][   T28] audit: type=1326 audit(1770087954.331:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6252 comm="syz.2.103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f214159ab4b code=0x7ffc0000
[  154.281276][   T28] audit: type=1326 audit(1770087954.331:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6252 comm="syz.2.103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f214159ab4b code=0x7ffc0000
[  154.315036][   T28] audit: type=1326 audit(1770087954.331:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6252 comm="syz.2.103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f214159ab4b code=0x7ffc0000
[  154.345906][   T28] audit: type=1326 audit(1770087954.331:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6252 comm="syz.2.103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f214159ab4b code=0x7ffc0000
[  154.601371][   T28] audit: type=1326 audit(1770087954.331:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6252 comm="syz.2.103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f214159ab4b code=0x7ffc0000
[  160.292467][   T55] block nbd0: Possible stuck request ffff888021f48000: control (read@0,1024B). Runtime 30 seconds
[  160.304760][   T55] block nbd0: Possible stuck request ffff888021f48200: control (read@1024,3072B). Runtime 30 seconds
[  161.577012][ T6298] loop2: detected capacity change from 0 to 8
[  163.284749][ T6313] loop0: detected capacity change from 0 to 1024
[  163.309723][ T6313] EXT4-fs: Ignoring removed orlov option
[  163.329321][ T6313] EXT4-fs: Ignoring removed bh option
[  163.351676][ T6313] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[  163.671096][ T6315] loop3: detected capacity change from 0 to 32768
[  163.684377][ T6315] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop3 scanned by syz.3.119 (6315)
[  163.717722][ T6315] BTRFS info (device loop3): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  163.728664][ T6315] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  163.737630][ T6315] BTRFS info (device loop3): enabling disk space caching
[  163.745635][ T6315] BTRFS info (device loop3): force clearing of disk cache
[  163.753262][ T6315] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  163.763139][ T6315] BTRFS info (device loop3): use zstd compression, level 3
[  163.770480][ T6315] BTRFS info (device loop3): disk space caching is enabled
[  165.770428][ T6315] BTRFS info (device loop3): enabling ssd optimizations
[  165.777617][ T6315] BTRFS info (device loop3): auto enabling async discard
[  167.273884][ T6315] BTRFS info (device loop3): rebuilding free space tree
[  167.323496][ T6338] syzkaller0: entered promiscuous mode
[  167.355707][ T6315] BTRFS info (device loop3): disabling free space tree
[  167.362869][ T6315] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  167.364127][ T6338] syzkaller0: entered allmulticast mode
[  167.372945][ T6315] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  167.637569][ T5769] BTRFS info (device loop3): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  170.146102][ T6359] syzkaller0: entered promiscuous mode
[  170.151672][ T6359] syzkaller0: entered allmulticast mode
[  170.378003][ T6363] tipc: Started in network mode
[  170.387785][ T6363] tipc: Node identity 2eef6437c328, cluster identity 4711
[  170.406025][ T6363] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  170.433993][ T6364] syzkaller0: entered promiscuous mode
[  170.462030][ T6364] syzkaller0: entered allmulticast mode
[  170.562781][ T6362] tipc: Resetting bearer <eth:syzkaller0>
[  170.661023][ T6360] tipc: Resetting bearer <eth:syzkaller0>
[  170.784385][ T6360] tipc: Disabling bearer <eth:syzkaller0>
[  174.394796][ T6393] syzkaller0: entered promiscuous mode
[  174.400447][ T6393] syzkaller0: entered allmulticast mode
[  175.287155][ T6405] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  175.302349][ T6405] tipc: Resetting bearer <eth:syzkaller0>
[  177.123967][ T6399] tipc: Disabling bearer <eth:syzkaller0>
[  177.168135][   T27] tipc: Node number set to 3781731419
[  177.756757][ T6410] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[  177.774681][ T6410] cramfs: wrong magic
[  178.949484][   T28] kauditd_printk_skb: 19 callbacks suppressed
[  178.949501][   T28] audit: type=1804 audit(1770087981.101:74): pid=6408 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.148" name="/newroot/39/file1" dev="fuse" ino=1 res=1 errno=0
[  179.144881][ T6414] kvm: pic: level sensitive irq not supported
[  179.145393][ T6414] kvm: pic: level sensitive irq not supported
[  179.163543][ T6414] kvm: pic: single mode not supported
[  179.169695][ T6414] kvm: pic: level sensitive irq not supported
[  179.189692][ T6414] kvm: pic: single mode not supported
[  179.196112][ T6414] kvm: pic: level sensitive irq not supported
[  179.212636][ T6414] kvm: pic: single mode not supported
[  179.218813][ T6414] kvm: pic: level sensitive irq not supported
[  179.237006][ T6414] kvm: pic: level sensitive irq not supported
[  179.250434][ T6414] kvm: pic: single mode not supported
[  179.265021][ T6414] kvm: pic: single mode not supported
[  179.270514][ T6414] kvm: pic: level sensitive irq not supported
[  179.288733][ T6414] kvm: pic: single mode not supported
[  179.295085][ T6414] kvm: pic: level sensitive irq not supported
[  179.311551][ T6414] kvm: pic: single mode not supported
[  184.866270][ T6452] syzkaller0: entered promiscuous mode
[  184.877446][ T6452] syzkaller0: entered allmulticast mode
[  185.037648][ T6456] loop3: detected capacity change from 0 to 8
[  186.605938][ T6461] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[  186.626021][ T6461] cramfs: wrong magic
[  187.753425][ T6460] netlink: 'syz.0.161': attribute type 1 has an invalid length.
[  187.992650][ T6460] 8021q: adding VLAN 0 to HW filter on device bond1
[  188.029875][ T6464] vlan2: entered allmulticast mode
[  188.058035][ T6464] veth0_to_bond: entered allmulticast mode
[  188.105718][ T6464] bond1: (slave vlan2): making interface the new active one
[  188.117795][ T6464] bond1: (slave vlan2): Enslaving as an active interface with an up link
[  191.402225][ T6482] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  191.403281][ T6482] syzkaller0: entered promiscuous mode
[  191.403302][ T6482] syzkaller0: entered allmulticast mode
[  191.497887][ T6482] tipc: Resetting bearer <eth:syzkaller0>
[  191.550592][   T55] block nbd0: Possible stuck request ffff888021f48000: control (read@0,1024B). Runtime 60 seconds
[  191.550672][   T55] block nbd0: Possible stuck request ffff888021f48200: control (read@1024,3072B). Runtime 60 seconds
[  191.603981][ T6480] tipc: Resetting bearer <eth:syzkaller0>
[  191.717270][ T6480] tipc: Disabling bearer <eth:syzkaller0>
[  191.988509][ T6492] netlink: 4 bytes leftover after parsing attributes in process `syz.3.164'.
[  191.997719][ T6492] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  192.854480][ T6492] batman_adv: batadv0: Removing interface: batadv_slave_1
[  193.214690][ T6516] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  193.223680][ T6516] syzkaller0: entered promiscuous mode
[  193.229522][ T6516] syzkaller0: entered allmulticast mode
[  194.083364][ T6526] tipc: Resetting bearer <eth:syzkaller0>
[  194.151408][ T6512] tipc: Resetting bearer <eth:syzkaller0>
[  194.188156][ T6512] tipc: Disabling bearer <eth:syzkaller0>
[  194.528427][ T1284] ieee802154 phy0 wpan0: encryption failed: -22
[  194.535405][ T1284] ieee802154 phy1 wpan1: encryption failed: -22
[  200.571101][ T6566] DRBG: could not allocate CTR cipher TFM handle: ctr(aes)
[  201.761932][   T28] audit: type=1326 audit(1770088003.911:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6576 comm="syz.0.183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f018899aeb9 code=0x7ffc0000
[  201.835880][   T28] audit: type=1326 audit(1770088003.941:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6576 comm="syz.0.183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f018899aeb9 code=0x7ffc0000
[  205.946974][ T6604] loop1: detected capacity change from 0 to 16
[  205.987697][ T6604] erofs: (device loop1): mounted with root inode @ nid 36.
[  206.477659][ T6607] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  206.498668][ T6607] syzkaller0: entered promiscuous mode
[  206.511914][ T6607] syzkaller0: entered allmulticast mode
[  206.574459][ T6607] tipc: Resetting bearer <eth:syzkaller0>
[  206.652491][ T6606] tipc: Resetting bearer <eth:syzkaller0>
[  207.071261][ T6606] tipc: Disabling bearer <eth:syzkaller0>
[  207.249417][   T51] Bluetooth: hci3: command 0x0406 tx timeout
[  207.255864][ T5783] Bluetooth: hci0: command 0x0406 tx timeout
[  209.660271][ T6624] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  209.796926][ T6627] loop3: detected capacity change from 0 to 8
[  211.023237][ T6631] loop1: detected capacity change from 0 to 8192
[  212.745743][ T6647] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[  212.761985][ T6647] cramfs: wrong magic
[  222.382258][   T55] block nbd0: Possible stuck request ffff888021f48000: control (read@0,1024B). Runtime 90 seconds
[  222.393338][   T55] block nbd0: Possible stuck request ffff888021f48200: control (read@1024,3072B). Runtime 90 seconds
[  226.402572][ T6710] loop3: detected capacity change from 0 to 40427
[  226.428018][ T6710] F2FS-fs (loop3): Insane cp_payload (553648128 >= 504)
[  226.435225][ T6710] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  226.476420][ T6710] F2FS-fs (loop3): heap/no_heap options were deprecated
[  226.494035][ T6710] F2FS-fs (loop3): invalid crc value
[  226.579720][ T6710] F2FS-fs (loop3): Found nat_bits in checkpoint
[  226.641969][ T6710] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  226.649093][ T6710] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  227.004717][ T6716] syz.3.216: attempt to access beyond end of device
[  227.004717][ T6716] loop3: rw=2049, sector=53248, nr_sectors = 8 limit=40427
[  227.019831][ T6716] F2FS-fs (loop3): Remounting filesystem read-only
[  227.030665][ T6716] syz.3.216: attempt to access beyond end of device
[  227.030665][ T6716] loop3: rw=2049, sector=53288, nr_sectors = 8 limit=40427
[  227.044943][ T6716] F2FS-fs (loop3): Remounting filesystem read-only
[  228.982432][ T6724] loop2: detected capacity change from 0 to 32768
[  230.782097][ T6724] XFS (loop2): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  230.816217][ T6724] XFS (loop2): Ending clean mount
[  232.664837][ T5771] XFS (loop2): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  234.786810][ T6756] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  234.811037][ T6756] syzkaller0: entered promiscuous mode
[  234.831983][ T6756] syzkaller0: entered allmulticast mode
[  234.901097][ T6756] tipc: Resetting bearer <eth:syzkaller0>
[  234.943424][ T6755] tipc: Resetting bearer <eth:syzkaller0>
[  235.534689][ T6766] Device name cannot be null; rc = [-22]
[  235.658430][ T6755] tipc: Disabling bearer <eth:syzkaller0>
[  239.833594][ T6780] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  239.840290][ T6780] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  239.954513][ T6780] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  239.962186][ T5777] Bluetooth: hci0: command 0x0406 tx timeout
[  239.984928][ T6780] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  240.087587][ T6790] bond_slave_0: entered promiscuous mode
[  240.093778][ T6790] bond_slave_1: entered promiscuous mode
[  240.110026][ T6790] vlan3: entered promiscuous mode
[  240.115316][ T6790] bond0: entered promiscuous mode
[  240.576414][ T6797] virt_wifi0 speed is unknown, defaulting to 1000
[  240.583832][ T6797] virt_wifi0 speed is unknown, defaulting to 1000
[  240.603393][ T6797] virt_wifi0 speed is unknown, defaulting to 1000
[  240.650188][ T6797] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  240.721411][ T6797] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  240.893839][ T6797] virt_wifi0 speed is unknown, defaulting to 1000
[  240.912130][ T6797] virt_wifi0 speed is unknown, defaulting to 1000
[  240.931010][ T6797] virt_wifi0 speed is unknown, defaulting to 1000
[  240.949213][ T6797] virt_wifi0 speed is unknown, defaulting to 1000
[  241.647691][ T6799] loop3: detected capacity change from 0 to 32768
[  241.699025][ T6799] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  241.723648][ T6805] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  241.751025][ T6805] syzkaller0: entered promiscuous mode
[  241.781606][ T6805] syzkaller0: entered allmulticast mode
[  241.800148][ T6799] XFS (loop3): Ending clean mount
[  241.826431][ T6799] XFS (loop3): Quotacheck needed: Please wait.
[  241.934313][ T6805] tipc: Resetting bearer <eth:syzkaller0>
[  241.950809][ T6799] XFS (loop3): Quotacheck: Done.
[  241.962116][ T5777] Bluetooth: hci3: command 0x0406 tx timeout
[  242.052138][ T5777] Bluetooth: hci0: command 0x0406 tx timeout
[  242.148633][ T6804] tipc: Resetting bearer <eth:syzkaller0>
[  242.227939][ T6804] tipc: Disabling bearer <eth:syzkaller0>
[  244.473595][ T5777] Bluetooth: hci3: command 0x0406 tx timeout
[  244.570061][ T5769] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  244.580793][ T6826] syzkaller0: entered promiscuous mode
[  244.673935][ T6826] syzkaller0: entered allmulticast mode
[  247.511124][ T6840] loop0: detected capacity change from 0 to 40427
[  247.728539][ T6840] F2FS-fs (loop0): Insane cp_payload (553648128 >= 504)
[  247.735689][ T6840] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  247.747190][ T6840] F2FS-fs (loop0): heap/no_heap options were deprecated
[  247.756075][ T6840] F2FS-fs (loop0): invalid crc value
[  248.033556][ T6840] F2FS-fs (loop0): Found nat_bits in checkpoint
[  248.108556][ T6840] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  248.115910][ T6840] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  248.535629][ T6850] syz.0.250: attempt to access beyond end of device
[  248.535629][ T6850] loop0: rw=2049, sector=53248, nr_sectors = 8 limit=40427
[  248.549858][ T6850] F2FS-fs (loop0): Remounting filesystem read-only
[  248.557528][ T6850] syz.0.250: attempt to access beyond end of device
[  248.557528][ T6850] loop0: rw=2049, sector=53280, nr_sectors = 8 limit=40427
[  248.571648][ T6850] F2FS-fs (loop0): Remounting filesystem read-only
[  250.829869][ T6859] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  250.853951][ T6859] syzkaller0: entered promiscuous mode
[  250.859905][ T6859] syzkaller0: entered allmulticast mode
[  250.926202][ T6859] tipc: Resetting bearer <eth:syzkaller0>
[  250.949680][ T6858] tipc: Resetting bearer <eth:syzkaller0>
[  251.033655][ T6858] tipc: Disabling bearer <eth:syzkaller0>
[  253.879377][   T55] block nbd0: Possible stuck request ffff888021f48000: control (read@0,1024B). Runtime 120 seconds
[  253.890652][   T55] block nbd0: Possible stuck request ffff888021f48200: control (read@1024,3072B). Runtime 120 seconds
[  254.083320][ T6876] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  254.122156][ T6876] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  255.100306][ T6883] loop0: detected capacity change from 0 to 1024
[  255.258606][ T6883] warning: `syz.0.255' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  255.454288][ T6886] loop2: detected capacity change from 0 to 40427
[  255.480425][ T6886] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504)
[  255.487554][ T6886] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  255.496970][ T6886] F2FS-fs (loop2): heap/no_heap options were deprecated
[  255.512912][ T6886] F2FS-fs (loop2): invalid crc value
[  255.567736][ T6886] F2FS-fs (loop2): Found nat_bits in checkpoint
[  255.632702][ T6886] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  255.639833][ T6886] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  256.242592][ T1284] ieee802154 phy0 wpan0: encryption failed: -22
[  256.248997][ T1284] ieee802154 phy1 wpan1: encryption failed: -22
[  256.256638][ T5777] Bluetooth: hci0: command 0x0406 tx timeout
[  256.262808][ T5777] Bluetooth: hci3: command 0x0406 tx timeout
[  256.434204][ T6896] syz.2.256: attempt to access beyond end of device
[  256.434204][ T6896] loop2: rw=2049, sector=53248, nr_sectors = 8 limit=40427
[  256.449176][ T6896] F2FS-fs (loop2): Remounting filesystem read-only
[  256.459499][ T6896] syz.2.256: attempt to access beyond end of device
[  256.459499][ T6896] loop2: rw=2049, sector=53272, nr_sectors = 8 limit=40427
[  256.474143][ T6896] F2FS-fs (loop2): Remounting filesystem read-only
[  266.594002][ T6928] loop1: detected capacity change from 0 to 1024
[  267.072764][ T6937] syz.1.263: attempt to access beyond end of device
[  267.072764][ T6937] loop1: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  267.086781][ T6937] Buffer I/O error on dev loop1, logical block 2889, async page read
[  267.095557][ T6937] syz.1.263: attempt to access beyond end of device
[  267.095557][ T6937] loop1: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  267.117961][ T6937] Buffer I/O error on dev loop1, logical block 2889, async page read
[  267.208518][   T28] audit: type=1800 audit(1770088069.281:77): pid=6937 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.263" name="file1" dev="loop1" ino=20 res=0 errno=0
[  269.359165][ T6951] Illegal XDP return value 4294967294 on prog  (id 11) dev syz_tun, expect packet loss!
[  271.296468][ T6960] tipc: Started in network mode
[  271.419208][ T6960] tipc: Node identity 12372b21a011, cluster identity 4711
[  271.462993][ T6960] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  271.753540][ T6960] tipc: Resetting bearer <eth:syzkaller0>
[  274.385867][ T6958] tipc: Disabling bearer <eth:syzkaller0>
[  274.668822][    T8] tipc: Node number set to 2988845857
[  275.235414][ T6982] netlink: set zone limit has 8 unknown bytes
[  280.750362][   T28] audit: type=1107 audit(1770088082.901:78): pid=6998 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  281.140620][ T7010] loop1: detected capacity change from 0 to 40427
[  281.152146][ T7010] F2FS-fs (loop1): Insane cp_payload (553648128 >= 504)
[  281.159192][ T7010] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  281.172252][ T7010] F2FS-fs (loop1): heap/no_heap options were deprecated
[  281.180315][ T7010] F2FS-fs (loop1): invalid crc value
[  281.206827][ T7010] F2FS-fs (loop1): Found nat_bits in checkpoint
[  281.388467][ T7010] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  281.395804][ T7010] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  281.727917][ T7022] syz.1.282: attempt to access beyond end of device
[  281.727917][ T7022] loop1: rw=2049, sector=53248, nr_sectors = 8 limit=40427
[  281.742073][ T7022] F2FS-fs (loop1): Remounting filesystem read-only
[  281.751002][ T7022] syz.1.282: attempt to access beyond end of device
[  281.751002][ T7022] loop1: rw=2049, sector=53288, nr_sectors = 8 limit=40427
[  281.765189][ T7022] F2FS-fs (loop1): Remounting filesystem read-only
[  283.939923][ T7035] xt_CT: No such helper "snmp_trap"
[  284.126659][   T55] block nbd0: Possible stuck request ffff888021f48000: control (read@0,1024B). Runtime 150 seconds
[  284.138240][   T55] block nbd0: Possible stuck request ffff888021f48200: control (read@1024,3072B). Runtime 150 seconds
[  287.044875][ T7057] process 'syz.2.295' launched './file0' with NULL argv: empty string added
[  289.953497][ T7076] loop2: detected capacity change from 0 to 1024
[  295.715737][ T7092] loop3: detected capacity change from 0 to 32768
[  296.014771][ T7094] snd_dummy snd_dummy.0: control 0:57412:0:syz0:0 is already present
[  302.126786][ T7127] 8021q: adding VLAN 0 to HW filter on device bond0
[  302.147107][ T7127] team0: Port device bond0 added
[  302.350596][ T7129] netlink: 'syz.0.314': attribute type 16 has an invalid length.
[  302.370231][ T7136] netlink: 8 bytes leftover after parsing attributes in process `syz.2.315'.
[  302.380524][ T7129] netlink: 'syz.0.314': attribute type 17 has an invalid length.
[  302.865453][ T7129] bridge0: port 1(bridge_slave_0) entered disabled state
[  303.123419][ T7129] bridge0: port 2(bridge_slave_1) entered disabled state
[  303.163439][ T7136] netlink: 68 bytes leftover after parsing attributes in process `syz.2.315'.
[  307.388510][ T7152] netlink: 8 bytes leftover after parsing attributes in process `syz.1.320'.
[  309.602980][ T7165] loop1: detected capacity change from 0 to 32768
[  309.633308][ T7165] (syz.1.325,7165,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  309.640170][ T7165] (syz.1.325,7165,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  309.735796][ T7170] netlink: set zone limit has 8 unknown bytes
[  310.376046][ T7165] (syz.1.325,7165,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[  310.393003][ T7165] (syz.1.325,7165,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[  310.416847][ T7165] JBD2: Ignoring recovery information on journal
[  310.476754][ T7165] (syz.1.325,7165,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[  310.494917][ T7165] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  310.522102][ T7165] (syz.1.325,7165,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[  310.579151][ T7165] (syz.1.325,7165,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC.
[  311.558735][ T7165] (syz.1.325,7165,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x1cec3d0f, computed 0xd2ffbdfe. Applying ECC.
[  311.678537][ T7165] (syz.1.325,7165,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x2c7b5077, computed 0x4d558a87. Applying ECC.
[  311.692777][ T7165] (syz.1.325,7165,0):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x2c7b5077, computed 0x5d2751af
[  311.705705][ T7165] (syz.1.325,7165,0):ocfs2_read_quota_phys_block:160 ERROR: status = -5
[  311.715561][ T7165] (syz.1.325,7165,0):ocfs2_quota_read:201 ERROR: status = -5
[  311.723560][ T7165] Quota error (device loop1): find_tree_dqentry: Can't read quota tree block 5
[  311.737593][ T7165] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  311.747558][ T7165] (syz.1.325,7165,0):ocfs2_acquire_dquot:878 ERROR: status = -5
[  311.763096][ T7165] (syz.1.325,7165,0):ocfs2_mknod:314 ERROR: status = -5
[  311.772223][ T7165] (syz.1.325,7165,0):ocfs2_mknod:502 ERROR: status = -5
[  311.779770][ T7165] (syz.1.325,7165,0):ocfs2_create:676 ERROR: status = -5
[  312.715756][ T7183] ocfs2: Unmounting device (7,1) on (node local)
[  314.735502][   T55] block nbd0: Possible stuck request ffff888021f48000: control (read@0,1024B). Runtime 180 seconds
[  314.751963][   T55] block nbd0: Possible stuck request ffff888021f48200: control (read@1024,3072B). Runtime 180 seconds
[  315.210070][ T7205] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  316.935182][ T7202] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  317.062971][    C1] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  317.392460][ T7221] xt_socket: unknown flags 0x48
[  317.416442][ T1284] ieee802154 phy0 wpan0: encryption failed: -22
[  317.433792][ T1284] ieee802154 phy1 wpan1: encryption failed: -22
[  321.307236][ T7248] hub 8-0:1.0: USB hub found
[  321.315632][ T7248] hub 8-0:1.0: 1 port detected
[  322.389530][ T7255] loop2: detected capacity change from 0 to 512
[  322.399124][ T7255] ext4: Unknown parameter 'smackfstransmute'
[  328.037955][ T7285] loop2: detected capacity change from 0 to 128
[  328.048808][ T7285] EXT4-fs: Ignoring removed nobh option
[  328.923485][ T7285] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  328.936780][ T7285] ext4 filesystem being mounted at /80/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  329.057563][ T7281] virt_wifi0 speed is unknown, defaulting to 1000
[  329.167152][ T5771] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  330.316518][ T7303] netlink: 'syz.2.354': attribute type 21 has an invalid length.
[  334.128948][ T5138] udevd[5138]: worker [5977] /devices/virtual/block/nbd0 timeout; kill it
[  334.193576][ T5138] udevd[5138]: seq 10547 '/devices/virtual/block/nbd0' killed
[  335.920657][ T7315] loop2: detected capacity change from 0 to 512
[  335.954381][ T7315] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  335.967885][ T7315] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  336.217082][ T7315] EXT4-fs error (device loop2): ext4_orphan_get:1398: inode #15: comm syz.2.356: inode has both inline data and extents flags
[  336.234014][ T7315] EXT4-fs error (device loop2): ext4_orphan_get:1403: comm syz.2.356: couldn't read orphan inode 15 (err -117)
[  336.254842][ T7315] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  337.046607][ T5771] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  339.303774][ T7333] loop0: detected capacity change from 0 to 32768
[  339.354946][ T7333] (syz.0.358,7333,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  339.371079][ T7333] (syz.0.358,7333,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  339.474113][ T7333] (syz.0.358,7333,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[  339.488334][ T7333] (syz.0.358,7333,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[  339.511848][ T7333] JBD2: Ignoring recovery information on journal
[  340.050424][ T7333] (syz.0.358,7333,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[  340.065248][ T7333] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  340.077664][ T7333] (syz.0.358,7333,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[  340.104883][ T7333] (syz.0.358,7333,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC.
[  340.350021][ T7333] (syz.0.358,7333,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x1cec3d0f, computed 0xd2ffbdfe. Applying ECC.
[  340.392249][ T7333] (syz.0.358,7333,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x2c7b5077, computed 0x4d558a87. Applying ECC.
[  340.405825][ T7333] (syz.0.358,7333,1):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x2c7b5077, computed 0x5d2751af
[  340.418516][ T7333] (syz.0.358,7333,1):ocfs2_read_quota_phys_block:160 ERROR: status = -5
[  340.427114][ T7333] (syz.0.358,7333,1):ocfs2_quota_read:201 ERROR: status = -5
[  340.434723][ T7333] Quota error (device loop0): find_tree_dqentry: Can't read quota tree block 5
[  340.444010][ T7333] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[  340.453528][ T7333] (syz.0.358,7333,1):ocfs2_acquire_dquot:878 ERROR: status = -5
[  340.461346][ T7333] (syz.0.358,7333,1):ocfs2_mknod:314 ERROR: status = -5
[  340.468423][ T7333] (syz.0.358,7333,1):ocfs2_mknod:502 ERROR: status = -5
[  340.475479][ T7333] (syz.0.358,7333,1):ocfs2_create:676 ERROR: status = -5
[  340.633951][ T7347] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  341.359744][ T7333] ocfs2: Unmounting device (7,0) on (node local)
[  344.868431][ T7392] Bluetooth: MGMT ver 1.22
[  344.875487][ T7392] Bluetooth: hci0: service_discovery: expected 4 bytes, got 7 bytes
[  345.439469][ T7393] netlink: 'syz.3.374': attribute type 1 has an invalid length.
[  345.540686][   T55] block nbd0: Possible stuck request ffff888021f48000: control (read@0,1024B). Runtime 210 seconds
[  345.555036][   T55] block nbd0: Possible stuck request ffff888021f48200: control (read@1024,3072B). Runtime 210 seconds
[  348.556592][ T7394] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  348.699608][ T7396] veth3: entered promiscuous mode
[  348.743374][ T7396] bond1: (slave veth3): Enslaving as a backup interface with a down link
[  348.762141][ T5777] Bluetooth: hci3: command 0x0406 tx timeout
[  348.781814][ T7401] netlink: 28 bytes leftover after parsing attributes in process `syz.3.374'.
[  348.802218][ T1085] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  348.824160][ T7401] 8021q: adding VLAN 0 to HW filter on device bond1
[  348.963301][   T11] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  351.387794][ T7421] loop2: detected capacity change from 0 to 32768
[  351.413028][ T7421] (syz.2.377,7421,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  351.426828][ T7421] (syz.2.377,7421,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  351.492615][ T7421] (syz.2.377,7421,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[  351.506975][ T7421] (syz.2.377,7421,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[  351.523531][ T7421] JBD2: Ignoring recovery information on journal
[  351.628239][ T7421] (syz.2.377,7421,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[  351.642601][ T7421] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  351.667180][ T7421] (syz.2.377,7421,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[  352.002694][ T7421] (syz.2.377,7421,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC.
[  352.815880][ T7421] (syz.2.377,7421,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x1cec3d0f, computed 0xd2ffbdfe. Applying ECC.
[  352.877939][ T7421] (syz.2.377,7421,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x2c7b5077, computed 0x4d558a87. Applying ECC.
[  352.891432][ T7421] (syz.2.377,7421,1):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x2c7b5077, computed 0x5d2751af
[  352.904631][ T7421] (syz.2.377,7421,1):ocfs2_read_quota_phys_block:160 ERROR: status = -5
[  352.913068][ T7421] (syz.2.377,7421,1):ocfs2_quota_read:201 ERROR: status = -5
[  352.920467][ T7421] Quota error (device loop2): find_tree_dqentry: Can't read quota tree block 5
[  352.929552][ T7421] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  352.939370][ T7421] (syz.2.377,7421,1):ocfs2_acquire_dquot:878 ERROR: status = -5
[  352.947221][ T7421] (syz.2.377,7421,1):ocfs2_mknod:314 ERROR: status = -5
[  352.954306][ T7421] (syz.2.377,7421,1):ocfs2_mknod:502 ERROR: status = -5
[  352.961285][ T7421] (syz.2.377,7421,1):ocfs2_create:676 ERROR: status = -5
[  353.125898][ T7421] ocfs2: Unmounting device (7,2) on (node local)
[  357.151202][ T7443] overlayfs: failed to clone upperpath
[  361.313660][ T7469] netlink: 8 bytes leftover after parsing attributes in process `syz.1.387'.
[  361.322772][ T7469] netlink: 8 bytes leftover after parsing attributes in process `syz.1.387'.
[  361.618183][ T7476] netlink: 12 bytes leftover after parsing attributes in process `syz.0.398'.
[  361.706922][ T7476] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  361.822137][ T7476] netlink: 28 bytes leftover after parsing attributes in process `syz.0.398'.
[  361.863595][ T7476] 8021q: adding VLAN 0 to HW filter on device bond2
[  364.172566][ T7492] netlink: 4 bytes leftover after parsing attributes in process `syz.2.401'.
[  364.181455][ T7492] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  364.189141][ T7492] batman_adv: batadv0: Removing interface: batadv_slave_0
[  364.213575][ T7492] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  364.221073][ T7492] batman_adv: batadv0: Removing interface: batadv_slave_1
[  365.987682][ T7507] loop3: detected capacity change from 0 to 32768
[  367.159013][ T7507] (syz.3.406,7507,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  367.176251][ T7507] (syz.3.406,7507,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  367.200772][ T7507] (syz.3.406,7507,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[  367.216632][ T7507] (syz.3.406,7507,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[  367.231957][ T7507] JBD2: Ignoring recovery information on journal
[  367.304756][ T7507] (syz.3.406,7507,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[  367.320404][ T7507] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  367.333795][ T7507] (syz.3.406,7507,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[  367.384362][ T7507] (syz.3.406,7507,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC.
[  367.574754][ T7507] (syz.3.406,7507,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x1cec3d0f, computed 0xd2ffbdfe. Applying ECC.
[  367.600494][ T7507] (syz.3.406,7507,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x2c7b5077, computed 0x4d558a87. Applying ECC.
[  367.616247][ T7507] (syz.3.406,7507,0):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x2c7b5077, computed 0x5d2751af
[  367.629738][ T7507] (syz.3.406,7507,0):ocfs2_read_quota_phys_block:160 ERROR: status = -5
[  367.638281][ T7507] (syz.3.406,7507,0):ocfs2_quota_read:201 ERROR: status = -5
[  367.645921][ T7507] Quota error (device loop3): find_tree_dqentry: Can't read quota tree block 5
[  367.655752][ T7507] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  367.665425][ T7507] (syz.3.406,7507,0):ocfs2_acquire_dquot:878 ERROR: status = -5
[  367.675741][ T7507] (syz.3.406,7507,0):ocfs2_mknod:314 ERROR: status = -5
[  367.683026][ T7507] (syz.3.406,7507,0):ocfs2_mknod:502 ERROR: status = -5
[  367.690090][ T7507] (syz.3.406,7507,0):ocfs2_create:676 ERROR: status = -5
[  368.010953][ T7507] ocfs2: Unmounting device (7,3) on (node local)
[  369.273054][ T7526] overlayfs: failed to clone lowerpath
[  369.877812][ T7540] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  373.452843][ T7605] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  375.818807][   T55] block nbd0: Possible stuck request ffff888021f48000: control (read@0,1024B). Runtime 240 seconds
[  375.830251][   T55] block nbd0: Possible stuck request ffff888021f48200: control (read@1024,3072B). Runtime 240 seconds
[  376.902870][   T28] audit: type=1326 audit(1770088179.061:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.3.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f930c79aeb9 code=0x7ffc0000
[  376.927217][   T28] audit: type=1326 audit(1770088179.061:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.3.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f930c79aeb9 code=0x7ffc0000
[  376.951246][   T28] audit: type=1326 audit(1770088179.061:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.3.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f930c79aeb9 code=0x7ffc0000
[  376.976848][   T28] audit: type=1326 audit(1770088179.081:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.3.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f930c794cd7 code=0x7ffc0000
[  377.000491][   T28] audit: type=1326 audit(1770088179.081:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.3.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f930c73c2d9 code=0x7ffc0000
[  377.026960][   T28] audit: type=1326 audit(1770088179.081:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.3.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f930c79aeb9 code=0x7ffc0000
[  377.056360][   T28] audit: type=1326 audit(1770088179.101:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.3.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f930c794cd7 code=0x7ffc0000
[  377.094115][   T28] audit: type=1326 audit(1770088179.101:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.3.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f930c73c2d9 code=0x7ffc0000
[  377.129281][   T28] audit: type=1326 audit(1770088179.101:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.3.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f930c79aeb9 code=0x7ffc0000
[  377.167377][   T28] audit: type=1326 audit(1770088179.131:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.3.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f930c794cd7 code=0x7ffc0000
[  379.076813][ T1284] ieee802154 phy0 wpan0: encryption failed: -22
[  379.083392][ T1284] ieee802154 phy1 wpan1: encryption failed: -22
[  380.119073][ T5758] IPVS: starting estimator thread 0...
[  380.463588][ T7666] IPVS: using max 15 ests per chain, 36000 per kthread
[  381.042452][ T7675] netlink: 12 bytes leftover after parsing attributes in process `syz.2.437'.
[  386.101265][   T28] kauditd_printk_skb: 14 callbacks suppressed
[  386.101284][   T28] audit: type=1326 audit(1770088187.391:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7696 comm="syz.3.444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f930c79aeb9 code=0x7ffc0000
[  386.203720][ T7704] fuse: Bad value for 'fd'
[  386.218517][   T28] audit: type=1326 audit(1770088187.391:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7696 comm="syz.3.444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f930c79aeb9 code=0x7ffc0000
[  386.312008][   T28] audit: type=1326 audit(1770088187.391:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7696 comm="syz.3.444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f930c79aeb9 code=0x7ffc0000
[  386.445184][   T28] audit: type=1326 audit(1770088187.401:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7696 comm="syz.3.444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f930c79aeb9 code=0x7ffc0000
[  389.712340][ T7739] netlink: 'syz.3.448': attribute type 39 has an invalid length.
[  389.854973][ T7741] netlink: 12 bytes leftover after parsing attributes in process `syz.2.456'.
[  389.929550][ T7745] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  389.972100][ T7748] netlink: 28 bytes leftover after parsing attributes in process `syz.2.456'.
[  390.007093][ T7748] 8021q: adding VLAN 0 to HW filter on device bond1
[  394.152931][ T7779] netlink: 'syz.3.462': attribute type 1 has an invalid length.
[  394.161545][ T7779] netlink: 'syz.3.462': attribute type 2 has an invalid length.
[  396.724827][ T7800] xt_TCPMSS: Only works on TCP SYN packets
[  406.182487][ T7860] (null): rxe_set_mtu: Set mtu to 1024
[  406.305181][ T7860] infiniband : set active
[  406.309911][ T7860] infiniband : added veth0_vlan
[  406.372342][ T7860] RDS/IB: : added
[  406.377052][ T7860] smc: adding ib device  with port count 1
[  406.383242][ T7860] smc:    ib device  port 1 has pnetid 
[  406.923838][   T55] block nbd0: Possible stuck request ffff888021f48000: control (read@0,1024B). Runtime 270 seconds
[  406.948749][   T55] block nbd0: Possible stuck request ffff888021f48200: control (read@1024,3072B). Runtime 270 seconds
[  410.028412][ T7875] ptrace attach of "./syz-executor exec"[5768] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[  414.293233][ T7916] netlink: 8 bytes leftover after parsing attributes in process `syz.3.504'.
[  414.795473][ T7916] bond0: option lp_interval: invalid value (0)
[  414.801945][ T7916] bond0: option lp_interval: allowed values 1 - 2147483647
[  418.200943][ T7958] netlink: 68 bytes leftover after parsing attributes in process `syz.0.519'.
[  421.379259][ T5836] libceph: connect (1)[c::]:6789 error -101
[  421.408767][ T5836] libceph: mon0 (1)[c::]:6789 connect error
[  421.457893][ T7975] ceph: No mds server is up or the cluster is laggy
[  425.405901][ T8023] lo speed is unknown, defaulting to 1000
[  425.412346][ T8023] lo speed is unknown, defaulting to 1000
[  425.425796][ T8023] lo speed is unknown, defaulting to 1000
[  425.607015][ T8023] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  425.802473][ T8023] lo speed is unknown, defaulting to 1000
[  425.809966][ T8023] lo speed is unknown, defaulting to 1000
[  425.817442][ T8023] lo speed is unknown, defaulting to 1000
[  425.824886][ T8023] lo speed is unknown, defaulting to 1000
[  440.121868][   T55] block nbd0: Possible stuck request ffff888021f48000: control (read@0,1024B). Runtime 300 seconds
[  440.133748][   T55] block nbd0: Possible stuck request ffff888021f48200: control (read@1024,3072B). Runtime 300 seconds
[  440.472794][ T1284] ieee802154 phy0 wpan0: encryption failed: -22
[  440.479200][ T1284] ieee802154 phy1 wpan1: encryption failed: -22
[  441.755798][ T8095] capability: warning: `syz.2.559' uses deprecated v2 capabilities in a way that may be insecure
[  442.957193][ T8113] overlayfs: failed to clone upperpath
[  450.391208][ T8157] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  455.538038][ T8189] 9pnet_virtio: no channels available for device syz
[  455.923227][   T28] audit: type=1326 audit(1770088258.081:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8192 comm="syz.1.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f593b99aeb9 code=0x7ffc0000
[  456.003882][   T28] audit: type=1326 audit(1770088258.101:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8192 comm="syz.1.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f593b99aeb9 code=0x7ffc0000
[  456.075225][ T8195] netlink: 8 bytes leftover after parsing attributes in process `syz.2.583'.
[  456.086521][ T8195] bond0: option lp_interval: invalid value (0)
[  456.242043][   T28] audit: type=1326 audit(1770088258.111:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8192 comm="syz.1.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f593b99aeb9 code=0x7ffc0000
[  456.264454][   T28] audit: type=1326 audit(1770088258.111:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8192 comm="syz.1.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f593b99aeb9 code=0x7ffc0000
[  456.339612][ T8195] bond0: option lp_interval: allowed values 1 - 2147483647
[  457.022166][   T28] audit: type=1326 audit(1770088258.111:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8192 comm="syz.1.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f593b99aeb9 code=0x7ffc0000
[  457.133233][   T28] audit: type=1326 audit(1770088258.121:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8192 comm="syz.1.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f593b99aeb9 code=0x7ffc0000
[  457.630642][   T28] audit: type=1326 audit(1770088258.121:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8192 comm="syz.1.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f593b99aeb9 code=0x7ffc0000
[  458.307769][   T28] audit: type=1326 audit(1770088258.121:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8192 comm="syz.1.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f593b99aeb9 code=0x7ffc0000
[  458.344250][ T8205] ceph: No mds server is up or the cluster is laggy
[  458.354247][ T5758] libceph: connect (1)[c::]:6789 error -101
[  458.360314][ T5758] libceph: mon0 (1)[c::]:6789 connect error
[  458.560582][   T28] audit: type=1326 audit(1770088258.121:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8192 comm="syz.1.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=179 compat=0 ip=0x7f593b99aeb9 code=0x7ffc0000
[  458.750980][   T28] audit: type=1326 audit(1770088258.121:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8192 comm="syz.1.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f593b99aeb9 code=0x7ffc0000
[  459.198133][ T5779] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  470.272071][ T8313] batman_adv: batadv0: Adding interface: dummy0
[  470.289012][ T8313] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  470.343713][ T8313] batman_adv: batadv0: Interface activated: dummy0
[  470.376181][ T8314] batadv0: mtu less than device minimum
[  470.392050][   T55] block nbd0: Possible stuck request ffff888021f48000: control (read@0,1024B). Runtime 330 seconds
[  470.403743][   T55] block nbd0: Possible stuck request ffff888021f48200: control (read@1024,3072B). Runtime 330 seconds
[  470.418907][ T8314] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  470.431559][ T8314] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  470.443493][ T8314] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  470.455322][ T8314] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  470.467101][ T8314] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  470.478884][ T8314] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  470.490878][ T8314] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  470.502657][ T8314] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  470.514454][ T8314] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  471.788991][   T28] kauditd_printk_skb: 53 callbacks suppressed
[  471.789009][   T28] audit: type=1326 audit(1770088273.841:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.3.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f930c79aeb9 code=0x7ffc0000
[  471.818333][   T28] audit: type=1326 audit(1770088273.841:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.3.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f930c79aeb9 code=0x7ffc0000
[  471.842212][   T28] audit: type=1326 audit(1770088273.841:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.3.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f930c79aeb9 code=0x7ffc0000
[  471.867664][   T28] audit: type=1326 audit(1770088273.841:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.3.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f930c79aeb9 code=0x7ffc0000
[  471.892316][   T28] audit: type=1326 audit(1770088273.841:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.3.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f930c79aeb9 code=0x7ffc0000
[  471.915127][   T28] audit: type=1326 audit(1770088273.841:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.3.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f930c79aeb9 code=0x7ffc0000
[  471.937942][   T28] audit: type=1326 audit(1770088273.841:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.3.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f930c79aeb9 code=0x7ffc0000
[  471.960808][   T28] audit: type=1326 audit(1770088273.841:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.3.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f930c79aeb9 code=0x7ffc0000
[  471.985595][   T28] audit: type=1326 audit(1770088273.841:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.3.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f930c79aeb9 code=0x7ffc0000
[  472.041307][   T28] audit: type=1326 audit(1770088273.841:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.3.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f930c79aeb9 code=0x7ffc0000
[  474.985484][ T8338] ceph: No source
[  474.995195][ T8338] kAFS: unable to lookup cell '\/'
[  479.964229][ T8363] batman_adv: batadv0: Adding interface: dummy0
[  479.988409][ T8363] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  480.045266][ T8363] batman_adv: batadv0: Interface activated: dummy0
[  480.087945][ T8364] net_ratelimit: 10 callbacks suppressed
[  480.087964][ T8364] batadv0: mtu less than device minimum
[  480.129305][ T8364] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  480.142006][ T8364] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  480.154734][ T8364] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  480.167346][ T8364] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  480.179955][ T8364] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  480.192626][ T8364] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  480.205212][ T8364] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  480.217822][ T8364] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  480.230478][ T8364] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  480.435465][ T8366] infiniband : set active
[  481.016270][ T8373] fuse: Bad value for 'fd'
[  490.548885][   T29] INFO: task udevd:5977 blocked for more than 143 seconds.
[  490.557171][   T29]       Not tainted syzkaller #0
[  490.576992][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  490.612000][   T29] task:udevd           state:D stack:24968 pid:5977  ppid:5138   flags:0x00004006
[  490.659659][   T29] Call Trace:
[  490.663120][   T29]  <TASK>
[  490.666132][   T29]  __schedule+0x1553/0x45a0
[  490.670723][   T29]  ? asan.module_dtor+0x20/0x20
[  490.675823][   T29]  ? mark_lock+0x94/0x320
[  490.680306][   T29]  ? lock_chain_count+0x20/0x20
[  490.685373][   T29]  ? _raw_spin_lock_irq+0xbb/0xf0
[  490.690599][   T29]  ? _raw_spin_lock_irqsave+0x100/0x100
[  490.696399][   T29]  schedule+0xbd/0x170
[  490.700618][   T29]  io_schedule+0x80/0xd0
[  490.705864][   T29]  folio_wait_bit_common+0x714/0xfa0
[  490.711332][   T29]  ? folio_wait_bit+0x30/0x30
[  490.716246][   T29]  ? _compound_head+0x120/0x120
[  490.721264][   T29]  ? filemap_add_folio+0x192/0x3c0
[  490.733977][   T29]  ? __filemap_get_folio+0x704/0xbb0
[  490.745276][   T29]  ? blkdev_writepage+0x30/0x30
[  490.750479][ T8423] batman_adv: batadv0: Adding interface: dummy0
[  490.757507][   T29]  do_read_cache_folio+0x1c0/0x7d0
[  490.766608][ T8423] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  490.776689][   T29]  ? blkdev_writepage+0x30/0x30
[  490.800115][   T29]  read_part_sector+0xd2/0x340
[  490.805384][   T29]  adfspart_check_POWERTEC+0x93/0xed0
[  490.811005][ T8423] batman_adv: batadv0: Interface activated: dummy0
[  490.820985][   T29]  ? adfspart_check_ADFS+0x620/0x620
[  490.826487][   T29]  ? put_partition+0x370/0x370
[  490.838069][   T29]  ? alloc_pages+0x4dc/0x740
[  490.845355][   T29]  bdev_disk_changed+0x740/0x1420
[  490.852943][   T29]  ? bdev_resize_partition+0xf0/0xf0
[  490.858766][   T29]  ? iput+0x343/0x920
[  490.866157][   T29]  blkdev_get_whole+0x30d/0x390
[  490.884449][ T8428] net_ratelimit: 10 callbacks suppressed
[  490.884468][ T8428] batadv0: mtu less than device minimum
[  490.901745][   T29]  blkdev_get_by_dev+0x279/0x600
[  490.916373][   T29]  blkdev_open+0x152/0x360
[  490.925280][   T29]  ? blkdev_mmap+0x1b0/0x1b0
[  490.932348][ T8428] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  490.944982][ T8428] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  490.957589][ T8428] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  490.970151][ T8428] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  490.982981][ T8428] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  490.995747][ T8428] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  491.008327][ T8428] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  491.021026][ T8428] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  491.033843][ T8428] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  491.069093][   T29]  do_dentry_open+0x8c6/0x1500
[  491.074272][   T29]  path_openat+0x27f1/0x3230
[  491.078956][   T29]  ? do_sys_openat2+0xda/0x1d0
[  491.088551][   T29]  ? verify_lock_unused+0x140/0x140
[  491.094222][   T29]  ? do_filp_open+0x430/0x430
[  491.101710][   T29]  ? __virt_addr_valid+0x18c/0x540
[  491.116620][   T29]  do_filp_open+0x1f5/0x430
[  491.121490][   T29]  ? vfs_tmpfile+0x490/0x490
[  491.129830][   T29]  ? _raw_spin_unlock+0x28/0x40
[  491.135211][   T29]  ? alloc_fd+0x58f/0x630
[  491.140163][   T29]  do_sys_openat2+0x134/0x1d0
[  491.148495][   T29]  ? do_sys_open+0xe0/0xe0
[  491.153769][   T29]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  491.160014][   T29]  ? lock_chain_count+0x20/0x20
[  491.188737][   T29]  __x64_sys_openat+0x139/0x160
[  491.197251][   T29]  do_syscall_64+0x55/0xa0
[  491.206197][   T29]  ? clear_bhb_loop+0x40/0x90
[  491.211125][   T29]  ? clear_bhb_loop+0x40/0x90
[  491.219317][   T29]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  491.225490][   T29] RIP: 0033:0x7fb6fa8a7407
[  491.230072][   T29] RSP: 002b:00007fff0fe82430 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[  491.239967][   T29] RAX: ffffffffffffffda RBX: 00007fb6fafbb880 RCX: 00007fb6fa8a7407
[  491.249046][   T29] RDX: 00000000000a0800 RSI: 00005593104cc3f0 RDI: ffffffffffffff9c
[  491.257794][   T29] RBP: 00005593104c2910 R08: 0000000000000000 R09: 0000000000000000
[  491.265970][   T29] R10: 0000000000000000 R11: 0000000000000202 R12: 000055931058c4d0
[  491.274131][   T29] R13: 00005593104da410 R14: 0000000000000000 R15: 000055931058c4d0
[  491.291312][   T29]  </TASK>
[  491.310210][   T29] 
[  491.310210][   T29] Showing all locks held in the system:
[  491.334035][ T8431] netlink: 32 bytes leftover after parsing attributes in process `syz.2.663'.
[  491.349296][ T8431] netlink: 32 bytes leftover after parsing attributes in process `syz.2.663'.
[  491.368538][   T29] 2 locks held by kworker/0:0/8:
[  491.376228][   T29] 1 lock held by khungtaskd/29:
[  491.383408][   T29]  #0: ffffffff8d131fe0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x290
[  491.396796][   T29] 2 locks held by kworker/u4:9/1113:
[  491.404313][   T29] 2 locks held by getty/5529:
[  491.409868][   T29]  #0: ffff88814c9420a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  491.474620][   T29]  #1: ffffc9000326e2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x433/0x1390
[  491.514167][   T29] 1 lock held by udevd/5977:
[  491.519678][   T29]  #0: ffff888021e724c8 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_get_by_dev+0x121/0x600
[  491.579797][   T29] 2 locks held by syz.3.651/8422:
[  491.671250][   T29]  #0: ffff88804a8b6220 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: sock_close+0x9b/0x230
[  491.705781][   T29]  #1: ffffffff8d1379b8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x306/0x880
[  491.730896][   T29] 
[  491.741028][   T29] =============================================
[  491.741028][   T29] 
[  491.750265][   T29] NMI backtrace for cpu 1
[  491.754653][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted syzkaller #0
[  491.761892][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  491.771985][   T29] Call Trace:
[  491.775298][   T29]  <TASK>
[  491.778267][   T29]  dump_stack_lvl+0x18c/0x250
[  491.783002][   T29]  ? show_regs_print_info+0x20/0x20
[  491.788247][   T29]  ? load_image+0x400/0x400
[  491.792822][   T29]  nmi_cpu_backtrace+0x3a6/0x3e0
[  491.797812][   T29]  ? nmi_trigger_cpumask_backtrace+0x2f0/0x2f0
[  491.804015][   T29]  ? _printk+0xde/0x130
[  491.808211][   T29]  ? load_image+0x400/0x400
[  491.812762][   T29]  ? load_image+0x400/0x400
[  491.817309][   T29]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  491.823448][   T29]  nmi_trigger_cpumask_backtrace+0x17a/0x2f0
[  491.829483][   T29]  watchdog+0xf3d/0xf80
[  491.833688][   T29]  ? watchdog+0x1e1/0xf80
[  491.838068][   T29]  kthread+0x2fa/0x390
[  491.842187][   T29]  ? hungtask_pm_notify+0x90/0x90
[  491.847257][   T29]  ? kthread_blkcg+0xd0/0xd0
[  491.851912][   T29]  ret_from_fork+0x48/0x80
[  491.856370][   T29]  ? kthread_blkcg+0xd0/0xd0
[  491.861095][   T29]  ret_from_fork_asm+0x11/0x20
[  491.865979][   T29]  </TASK>
[  491.870057][   T29] Sending NMI from CPU 1 to CPUs 0:
[  491.875504][    C0] NMI backtrace for cpu 0
[  491.875515][    C0] CPU: 0 PID: 8430 Comm: syz.2.663 Not tainted syzkaller #0
[  491.875530][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  491.875539][    C0] RIP: 0010:kasan_check_range+0x1bc/0x290
[  491.875569][    C0] Code: dc 4d 01 f3 49 8d 5c 24 07 4d 85 e4 49 0f 49 dc 48 83 e3 f8 49 29 dc 74 0e 41 80 3b 00 75 6b 49 ff c3 49 ff cc 75 f2 5b 41 5c <41> 5d 41 5e 41 5f 5d c3 45 84 ff 0f 85 91 00 00 00 41 f7 c7 00 ff
[  491.875582][    C0] RSP: 0018:ffffc900195275f8 EFLAGS: 00000256
[  491.875597][    C0] RAX: 0000000000000001 RBX: 0000000000000000 RCX: ffffffff8a8cd257
[  491.875607][    C0] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffff8880579fd530
[  491.875617][    C0] RBP: ffffc90019527710 R08: ffff8880579fd537 R09: 1ffff1100af3faa6
[  491.875629][    C0] R10: dffffc0000000000 R11: ffffed100af3faa7 R12: 1ffff920032a4ec8
[  491.875641][    C0] R13: ffff8880579fd530 R14: ffffed100af3faa7 R15: 1ffff1100af3faa6
[  491.875653][    C0] FS:  00007f21424576c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  491.875666][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  491.875677][    C0] CR2: 0000001b2d90bff8 CR3: 0000000077c44000 CR4: 00000000003506f0
[  491.875692][    C0] Call Trace:
[  491.875699][    C0]  <TASK>
[  491.875707][    C0]  __mutex_unlock_slowpath+0x1a7/0x6c0
[  491.875736][    C0]  ? mutex_unlock+0x10/0x10
[  491.875764][    C0]  ? refcount_dec_and_test+0x4f/0x70
[  491.875782][    C0]  __unix_dgram_recvmsg+0xa04/0xd80
[  491.875812][    C0]  ? unix_unhash+0x10/0x10
[  491.875837][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[  491.875858][    C0]  ? mark_lock+0x94/0x320
[  491.875875][    C0]  ? unix_dgram_recvmsg+0xad/0xd0
[  491.875899][    C0]  ? unix_dgram_sendmsg+0x16d0/0x16d0
[  491.875925][    C0]  sock_recvmsg_nosec+0x82/0xd0
[  491.875950][    C0]  ____sys_recvmsg+0x4e8/0x5e0
[  491.875972][    C0]  ? __sys_recvmsg_sock+0x50/0x50
[  491.875995][    C0]  ? import_iovec+0x73/0xa0
[  491.876022][    C0]  ___sys_recvmsg+0x216/0x590
[  491.876040][    C0]  ? __sys_recvmsg+0x2a0/0x2a0
[  491.876065][    C0]  ? __lock_acquire+0x7d40/0x7d40
[  491.876087][    C0]  ? __might_fault+0xc6/0x120
[  491.876102][    C0]  ? __might_fault+0xaa/0x120
[  491.876119][    C0]  do_recvmmsg+0x39a/0x870
[  491.876138][    C0]  ? __sys_recvmmsg+0x290/0x290
[  491.876160][    C0]  ? __ia32_sys_get_robust_list+0x110/0x110
[  491.876175][    C0]  ? rcu_read_lock_sched_held+0x8a/0x110
[  491.876201][    C0]  __x64_sys_recvmmsg+0x199/0x250
[  491.876218][    C0]  ? do_recvmmsg+0x870/0x870
[  491.876235][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[  491.876253][    C0]  do_syscall_64+0x55/0xa0
[  491.876275][    C0]  ? clear_bhb_loop+0x40/0x90
[  491.876300][    C0]  ? clear_bhb_loop+0x40/0x90
[  491.876319][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  491.876336][    C0] RIP: 0033:0x7f214159aeb9
[  491.876350][    C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  491.876362][    C0] RSP: 002b:00007f2142457028 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  491.876377][    C0] RAX: ffffffffffffffda RBX: 00007f2141816090 RCX: 00007f214159aeb9
[  491.876388][    C0] RDX: 0000000000010106 RSI: 00002000000000c0 RDI: 0000000000000005
[  491.876398][    C0] RBP: 00007f2141608c1f R08: 0000000000000000 R09: 0000000000000000
[  491.876408][    C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  491.876416][    C0] R13: 00007f2141816128 R14: 00007f2141816090 R15: 00007fff157ebb48
[  491.876436][    C0]  </TASK>
[  492.243610][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  492.250540][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted syzkaller #0
[  492.257785][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  492.267997][   T29] Call Trace:
[  492.271422][   T29]  <TASK>
[  492.274499][   T29]  dump_stack_lvl+0x18c/0x250
[  492.279243][   T29]  ? show_regs_print_info+0x20/0x20
[  492.284659][   T29]  ? load_image+0x400/0x400
[  492.289375][   T29]  panic+0x2dc/0x730
[  492.293342][   T29]  ? schedule_preempt_disabled+0x20/0x20
[  492.299012][   T29]  ? bpf_jit_dump+0xd0/0xd0
[  492.303572][   T29]  ? __irq_work_queue_local+0x13a/0x3b0
[  492.309325][   T29]  ? nmi_trigger_cpumask_backtrace+0x2a4/0x2f0
[  492.315631][   T29]  watchdog+0xf7c/0xf80
[  492.320099][   T29]  ? watchdog+0x1e1/0xf80
[  492.324613][   T29]  kthread+0x2fa/0x390
[  492.328706][   T29]  ? hungtask_pm_notify+0x90/0x90
[  492.333766][   T29]  ? kthread_blkcg+0xd0/0xd0
[  492.338566][   T29]  ret_from_fork+0x48/0x80
[  492.343015][   T29]  ? kthread_blkcg+0xd0/0xd0
[  492.347644][   T29]  ret_from_fork_asm+0x11/0x20
[  492.352454][   T29]  </TASK>
[  492.356076][   T29] Kernel Offset: disabled
[  492.360415][   T29] Rebooting in 86400 seconds..