last executing test programs:

10.039264975s ago: executing program 1 (id=537):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$MEDIA_IOC_ENUM_LINKS(0xffffffffffffffff, 0xc0287c02, &(0x7f0000000180)={0x80000000, 0x0, 0x0})
ioctl$MEDIA_IOC_SETUP_LINK(0xffffffffffffffff, 0xc0347c03, &(0x7f0000000400)={{0x80000000, 0x0, 0x3}})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)={0x1c, 0x3, 0x1, 0x201, 0x0, 0x0, {0x0, 0x0, 0xa}, [@CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x802}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000844}, 0x8000080)

9.454494264s ago: executing program 0 (id=538):
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x10003}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_io_uring_setup(0x110, 0x0, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_io_uring_submit(r3, r4, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(0xffffffffffffffff, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, 0x0, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r5, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r7, 0xc03064ca, &(0x7f0000000ac0)={0x0, 0x0, 0x5, 0x0, 0x4})
setsockopt$sock_int(r6, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
bind$inet6(r6, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
listen(r6, 0x0)

8.41950911s ago: executing program 2 (id=541):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000340)={[{@shortname_winnt}, {@uni_xlate}, {@fat=@errors_remount}, {@fat=@check_strict}, {@fat=@codepage={'codepage', 0x3d, '932'}}, {@numtail}, {@shortname_mixed}, {@shortname_lower}, {@iocharset={'iocharset', 0x3d, 'cp874'}}, {@shortname_mixed}, {@numtail}, {@iocharset={'iocharset', 0x3d, 'cp866'}}, {@rodir}]}, 0x2a, 0x33c, &(0x7f0000000a40)="$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")
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x4000, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], 0x6, 0x2ab, &(0x7f0000000a80)="$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")
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='blkio.bfq.idle_time\x00', 0x275a, 0x0)
syz_open_dev$sndmidi(0x0, 0x2, 0x141102)

8.280866072s ago: executing program 0 (id=542):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './cgroup\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x2)
mmap$snddsp(&(0x7f00003c6000/0x1000)=nil, 0x1000, 0x2000004, 0x4010, 0xffffffffffffffff, 0x3000)
mbind(&(0x7f0000a45000/0x1000)=nil, 0x1000, 0x2, 0x0, 0x3, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
io_uring_register$IORING_REGISTER_RESTRICTIONS(r4, 0xb, 0x0, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xc)
r6 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
write$sysctl(r6, &(0x7f0000000580)='1\x00', 0x2)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
write$sysctl(r6, &(0x7f0000000000)='2\x00', 0x2)
setsockopt$inet_buf(r5, 0x0, 0x8008000000010, 0x0, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000000)={{0x84, @rand_addr=0x64010100, 0x4e20, 0x3, 'lc\x00', 0x8, 0x323b, 0x55}, {@remote, 0x4e23, 0x2000, 0x0, 0x12d5c, 0x12d5c}}, 0x44)

8.108009365s ago: executing program 3 (id=543):
syz_mount_image$nilfs2(&(0x7f00000005c0), &(0x7f0000000080)='./file0\x00', 0x8, &(0x7f0000000140)=ANY=[@ANYRES64=0x0], 0x1, 0xad4, &(0x7f0000001540)="$eJzs3U2MW0cBAOCxd73JtilxSkKXNLQJhbb8dNPsLuEngqRKhETUVIhLpQgOUZqWiBAkigRUlUhy4karKkic+BGnXqqCkOgFRT1xqUQjVUg9FQ4ciIKIxAECidHuznjtid1n74+fvf4+aTx+b97zzDw/P7/fmQCMrerS68LCTCWEy2+8cuzvD/9tenHM4eYU9aXXyZahWgihEocns897b2I5vnXjxdOd4kqYW3pNw+Gp68157w4hXAh7w5VQD7svX335rbknT1w8fmnf268eurYxtQcAgPHy1SuHFnb95U/377j52gNHwpY0evHN0v55PY7YFvf7j8Qd/7T/Xw3tw5WW0Goqm24yhup0+3QTHaZrzaeWTTfZJf+pLP9al+m2hPfPf6JlXKd6wyhL63E9VKqzbcPV6uzs8jF5WDqun6rMnj977tnnSyoosO7+9WAIYW9LOHqpfXi14Rtxy7Een9UaDm/AZ64x1HqsZ2MIyjqS4cjg8rrZWFZ6nQcUGttL3gABRPn1wjtcyM8srE3z0yZ7y//6E9XO88M6GPT631f+UyXnH+T/64u2OKyfzbo2pXql39G2OJxfR8jvX+r++8uvdLSPza9H1HosZ7frCKNyfaFbOScGXI7V6lb+fL3YrL4Y47QcvpSlt/5+8u90VL5joLN/5+f/BUEY7hDahmtr+axGydsfYHjl98010vXRKL+vL0/fUpC+tSB9uiD9roL0uwvSYZz99ns/CS9VVo7z82P6fs+Hp/Ns98T4A32WJz8f2W/++X2//Vpr/vn9xDDMfn/q6TOfe+bk1eX7/yvN9f92XN/T4UY9/rauxAnS+cL8vHrz3v96ez7VLtPdm5Xnng7TL73f2T5dZefK54SW7cwd5Zhpn297t+n2tE9Xz6abjmFrVt58/+SubL60/5G2q2l5TWb1rWX1mMrKkbYrO2KclwNWI62P3e7/T+vnTKhVnj177szjcTitp3+cqG1ZHH9gwOUG1q7X539mQvvzP9ua42vV1u3C9pXxleXtwuvx89rHzzXzaR8/H4fT/9w3J6aXxs+e/s65Z9a/+jDWnv/hC986de7cme+W/mZ+OoQhKMYq3nx5OIrRz5t02DIs5Vn1m8WKDEExNuGbkjdMwIbb/6PlnYDHzn771HNnnjtzfv7gwfm5uYOfn1/Yv7Rfv791777VhRJKC6ynlT/9sksCAAAAAAAAAAAA9Or7x49dfefNz767/Pz/yvN/6fn/dOdvev7/x9nz//lz8uk5+PQc4I4O6UvTZA2sTmXT1WL4YFbenVk+u7L5PhTjZj9+8fn/lF3ermsqz33Z+FqXwaw5gTvaS5nK2iDJ+wv8aIwvxfhXAUpUme48OsZF7VundT21T9HSLkVD+8CjI31vaW1I7Zik5787tuvU8mXvGEAZWX+DeJyw7DoCnf1jrNr//udKxUsvi9A9TA42v5+N7zrR6LqX3msPNgDro+z+P9N5zxSf/8NXti6GNNn1J9q3l3n7pdCPP7/TPjzs/U9udP55v32Dzr/s+g+6/89m/3c9b/+yHvPqq8v3Pz+/9m5LtmF3r/nn9U/tQO/sL/+bMf9Um0dCb/k3fpnln18Q6tF/s/zv6jH/O+q/Z3X5/y/mnxbbow/1mn91+ZpZtb0c+XnjdP0vP2+c3Mrqn9r2fJ/8v/ZCp/qvsqPG2zF/GGej0s9sv7L9iOZO++r7/40urG//v83CZpu1/D6Mz8QxaUOc7nPI+zvpt/zp/or0P7Ar+/xKwf+b/n9H2xdiXPR7SP3/3r6xfDmvHv/y0/pZj8syDdc6LNvNuq2BUfXeWF3/W4dwcsPz2Fp6HYc+HBmCMjRDY2IV8zX7iSu5/I1GY2NPaBUoNXNKX/5lHyeUnX/Zy79I3v9vvg+f9/+bp+f9/+bpef+/efp0/Ia6pef9/+bLM+//N0+/L/vcvH/gmYL0Dxek7+6c3jxsv79g/j0F6R8pSN/XTD/cNkVKf6Bg/gcL0u9tT9+Spz9UMP/HCtI/XpD+cEH6oy3prX1Ap/RPFMy/2aXnUca1/jDO8ufz/P5hfKTrP91+/zsL0oHR9dPXDhw9+Zuv15ef/59qng9J1/GOxOFaPH76QRzOr3uHluHFtDfj8F+z9GE/3wHjJG8/I/9/f6QgHRhd6T4vv28YQ5WtnUfHuKjdqm77+YyWT8b4UzH+dIwfi/FsjPfH+ECM5wZUPjbG0dd/d+ilysrx/vYsvdf7yfPngdraiQohzPdYnvz8QL/3s+ft+PVrrfmv8nEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA0lSXXhcWZiohXH7jlWNPnzi7f3HM4eYU9aXXyZahWnO+EB6P8USMfxHf3Lrx4unW+HaMK2EuVEKlOT48db2Z090hhAthb7gS6mH35asvvzX35ImLxy/te/vVQ9c2bgkAAADA5vf/AAAA//9LWAnF")
socket$netlink(0x10, 0x3, 0x14)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x48b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x1f, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xf, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r3, 0xc01864c6, 0x0)
ioctl$DRM_IOCTL_MODE_REVOKE_LEASE(r3, 0xc00464c9, &(0x7f0000000140))
setsockopt$inet_sctp_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, 0x0, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
mount$overlay(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000200), 0x0, 0x0)
syz_open_dev$vim2m(0x0, 0x7fff, 0x2)
r4 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_G_FMT(r4, 0xc0285629, &(0x7f0000000080)={0x3, @vbi={0x0, 0x5d7f, 0x80000001, 0x38414261, [0x7, 0x2], [0x5, 0x6], 0x1}})
r5 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
listen(r5, 0x0)
ioctl$SIOCX25SDTEFACILITIES(r5, 0x89eb, &(0x7f0000000180)={0xfffd, 0x101, 0x100, 0x0, 0x4, 0x3c, 0x35, "e75867de0700000000000000000006c000", "399b9bd344a7eddabb6638a300789e9890000100"})

7.76335813s ago: executing program 2 (id=544):
r0 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000001c0), 0x2, 0x141102)
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000), 0x18041, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f00000005c0)={{{@in6=@ipv4={""/10, ""/2, @multicast2}, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@empty}}}, &(0x7f0000000480)=0xffffffffffffffe6)
quotactl$Q_SETINFO(0xffffffff80000601, &(0x7f0000000400)=@nullb, r2, &(0x7f0000000580)={0x7fff, 0x86, 0x1, 0x6})
quotactl_fd$Q_GETNEXTQUOTA(r1, 0xffffffff80000901, r2, &(0x7f0000000380))
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x43, 0x0, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
socket$kcm(0x29, 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x10, 0x7fff0000}]})
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x84)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1700000007"], 0x50)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r3, &(0x7f0000000000), 0xd)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x3, 0x7ffc1ffb}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00', <r5=>0x0})
ioctl$sock_inet6_SIOCADDRT(r4, 0x890b, &(0x7f0000000300)={@loopback, @remote, @private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80040346, r5})

6.621773178s ago: executing program 3 (id=545):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
ppoll(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0)
timerfd_gettime(0xffffffffffffffff, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, 0x0, 0x60042, 0x0)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x483, 0x0, 0x0)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000380)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000140)={0xc, 0x0, <r4=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r2, 0x3ba0, &(0x7f00000000c0)={0x48, 0x2, r4, 0x0, <r5=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_REPLACE(r2, 0x3ba0, &(0x7f0000000180)={0x48, 0xa, r5, 0x0, r3})
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, 0x0)

6.49783207s ago: executing program 2 (id=546):
syz_open_dev$vim2m(&(0x7f0000000040), 0x7, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="01"], 0x48)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = socket(0x25, 0x1, 0x0)
sendmsg$kcm(r1, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x41)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000800)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
r2 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
read$FUSE(r2, &(0x7f00000024c0)={0x2020}, 0x2020)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="02c90010000c0005001203080005000001ff030104"], 0x15)

6.374235892s ago: executing program 1 (id=547):
syz_emit_ethernet(0x36, &(0x7f0000000dc0)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x10}}}}}}, 0x0)

5.391009897s ago: executing program 1 (id=548):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
getpid()
socketpair$unix(0x1, 0x3, 0x0, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000240)={'wlan1\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x1810754, &(0x7f00000001c0)={[{@jqfmt_vfsold}, {@errors_continue}, {@usrquota}, {@prjquota}, {@usrquota}, {@resuid={'resuid', 0x3d, 0xee00}}, {@usrjquota, 0x5}, {@min_batch_time={'min_batch_time', 0x3d, 0xffffffff}}, {@nodiscard}, {@test_dummy_encryption}]}, 0xff, 0x472, &(0x7f0000000980)="$eJzs289rHFUcAPDvzCbpL2tirdXW1garGPyRNGnVHrwoCh4UBD3UY0zSUps20kSwpWgUqUcpeBePgn+BJ0+ingSvepdC0SK0itDIzM5sdre7aX66Ifv5wCbv7byded+d92bezNsJoGsNZn+SiHsi4teI6K9mGwsMVv/dunF54u8blyeSWFh484++vNzNG5cnyqLl53YVmaE0Iv00KTbSaPbipbPj09NTF4r8yNy590ZmL1565sy58dNTp6fOj504cfzY6PPPjT27LnFm8d088OHMwf2vvn319YmTV9/58ZusvvsOVZfXx7FSaZv3B7PA/1zINS97fLUb26RuLyzGmfR0ujYsVyUist3Vm/f//qjE4s7rj1c+6WjlgA2VHbO3tXi7+D+/AGxhSXS6BkBnlCf87Pq3fP2Pw4+Ou/5i9QIoi/tW8aou6ald1/du4PYHI+Lk/D9fZq9oug9R2z99G1gBAKDrfJeNf55uNf5LY19duXuLuaGBiLgvIvZExP0RsTciHojIyz4YEQ+tcPvNU0N3jj/Ta6sKbJmy8d8LxdxW4/ivNqszUClyu/P4e5NTZ6anjhbfyVD0bsvyo61WXq7i5V8+b7f9+vFf9sq2X44Fi5Vc62m6QTc5Pje+XoPS6x9HHOhpFX9SmwlIImJ/RBxY9lrno/h6cmee/Ppgu5J3j38J6zDPtPBVxBPV/T8fTfGXkqXnJ0e2x/TU0ZGyVdzpp5+vvNFu+3Xxl61l4uTt3WsPbJmy/b+zsf3XllXyv/1/JfXztbOx4guSK7991vaasmeV7b8veSuf0y1r8sH43NyF0Yi+5LWI5vfHFj9b5svyWfxDR1r3/z3FZ7L4H46IrBEfiohHIuJwRPxbXEM/GhFHloj/h5cee7fdsjW1/4gdyyzXVhb/ZMvjX639DzTu/5UnKme//3b18Wf7/3ieGireyY9/d9G+OtuLEoutGQAAALa6NP9tfJIO19JpOjxc/Q3/3tiZTs/Mzj11aub985PV39APRG9a3unqr7sfOprMF2us5seKe8Xl8mPFfeMvKjvy/PDEzPRkh2OHbrersf8fLvt/5vdKp2sHbDjPa0H3au7/7R5oBbYe53/oXvo/dC/9H7pXq/7/UVPeXABsTc7/0L30f+he+j90L/0futJanuvfqETPEk/vS2yWRKSbohoSTYlIqif0bWvs3Z0+MgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKyP/wIAAP//NMDzPQ==")
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0xe1, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, &(0x7f0000000000))
socket$nl_generic(0x10, 0x3, 0x10)

5.390234927s ago: executing program 2 (id=549):
syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f0000000100)='./file1\x00', 0x2008054, &(0x7f0000000140)=ANY=[], 0x0, 0xf43, &(0x7f0000002d80)="$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")
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
socket$nl_xfrm(0x10, 0x3, 0x6)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x0, 0x0)
socket(0x2, 0x80805, 0x0)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000040)={0x84, @dev={0xac, 0x14, 0x14, 0x2d}, 0x4e24, 0x1, 'wrr\x00', 0x1, 0x2, 0x6a}, 0x2c)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000400)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x15d74000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0)
write$dsp(0xffffffffffffffff, &(0x7f0000002000), 0x0)
keyctl$setperm(0x5, 0x0, 0x1100100)
setsockopt$IP_VS_SO_SET_ADDDEST(r0, 0x0, 0x487, &(0x7f0000000000)={{0x84, @dev={0xac, 0x14, 0x14, 0x3f}, 0x4e21, 0x3, 'wrr\x00', 0x4, 0xb, 0x77}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x4e23, 0x2, 0xcd, 0x12d5f, 0x3}}, 0x44)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x118}}, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000100)={'nr0\x00', 0x2000})
ioctl$sock_SIOCETHTOOL(r0, 0x89f1, &(0x7f00000002c0)={'ip6tnl0\x00', &(0x7f0000000000)=@ethtool_cmd={0x0, 0x0, 0x0, 0x200, 0x2, 0x0, 0x0, 0x0, 0xdb, 0x4, 0x0, 0xfffff7fc, 0x4, 0x0, 0xff, 0x47, [0xfffffffc, 0x80]}})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'ip6gre0\x00'})
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r4, 0x40086e8b, &(0x7f0000000080)={@desc={0x200000, 0x0, @desc2}})

5.389393657s ago: executing program 3 (id=550):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, 0x2}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
close(0x3)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000540)=@newtaction={0x130, 0x30, 0xb, 0x0, 0x0, {}, [{0x11c, 0x1, [@m_mpls={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_MPLS_PROTO={0x6, 0x4, 0x8808}, @TCA_MPLS_PARMS={0x1c, 0x2, {{0x9, 0x62, 0x6, 0x36e, 0x4}, 0x3}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}, @m_mirred={0xc4, 0x1a, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x5, 0x6, 0x5, 0x31, 0x1c}, 0x2}}]}, {0x75, 0x6, "a9f504661fb29fda02fb100035575f6286b16acc46924f6009c9bf2fb011b0a4b1b8762772936db97f236422bd0e05e13f551119198b899d07eb90d8d5417483d03a8d37dc7ab6f3749561073b6a51caf6404288c3185884c2b75fe7455bd455e84d55de3556c6fdfd2a07f510018bab3f"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x1}}}}]}]}, 0x130}}, 0x10000000)

4.981488383s ago: executing program 3 (id=551):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x4, 0x80000001}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000680)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f000000abc0)=""/102392, 0x18ff8)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=@newlink={0x44, 0x10, 0x801, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x10290}, [@IFLA_AF_SPEC={0x1c, 0x1a, 0x0, 0x1, [@AF_INET={0x18, 0x2, 0x0, 0x1, {0x14, 0x1, 0x0, 0x1, [{0x8, 0xd}, {0x8, 0xb}]}}]}, @IFLA_GROUP={0x8}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000000}, 0x4008040)

3.964776169s ago: executing program 1 (id=552):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='projid_map\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = shmget$private(0x0, 0x8000, 0x10, &(0x7f0000ff5000/0x8000)=nil)
shmat(r3, &(0x7f0000ff9000/0x1000)=nil, 0x5000)
mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000fff000/0x1000)=nil)
shmdt(0x0)
r4 = shmget$private(0x0, 0x1000, 0x40, &(0x7f0000884000/0x1000)=nil)
shmctl$IPC_INFO(r4, 0x3, &(0x7f0000000300)=""/251)
read$FUSE(r0, &(0x7f0000006280)={0x2020}, 0x2020)

3.964390199s ago: executing program 0 (id=553):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000004000000000000000000008500000050000000850000005000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r0}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2000008, &(0x7f00000001c0)={[{@grpid}, {@auto_da_alloc}, {@minixdf}, {@noinit_itable}, {@init_itable}]}, 0xff, 0x52e, &(0x7f0000000640)="$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")

3.727464462s ago: executing program 3 (id=554):
r0 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000001c0), 0x2, 0x141102)
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000), 0x18041, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f00000005c0)={{{@in6=@ipv4={""/10, ""/2, @multicast2}, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@empty}}}, &(0x7f0000000480)=0xffffffffffffffe6)
quotactl$Q_SETINFO(0xffffffff80000601, &(0x7f0000000400)=@nullb, r2, &(0x7f0000000580)={0x7fff, 0x86, 0x1, 0x6})
quotactl_fd$Q_GETNEXTQUOTA(r1, 0xffffffff80000901, r2, &(0x7f0000000380))
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x43, 0x0, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
socket$kcm(0x29, 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x10, 0x7fff0000}]})
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x84)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1700000007"], 0x50)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r3, &(0x7f0000000000), 0xd)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x3, 0x7ffc1ffb}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00', <r5=>0x0})
ioctl$sock_inet6_SIOCADDRT(r4, 0x890b, &(0x7f0000000300)={@loopback, @remote, @private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80040346, r5})

3.297318009s ago: executing program 0 (id=555):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$MEDIA_IOC_ENUM_LINKS(0xffffffffffffffff, 0xc0287c02, &(0x7f0000000180)={0x80000000, 0x0, 0x0})
ioctl$MEDIA_IOC_SETUP_LINK(0xffffffffffffffff, 0xc0347c03, &(0x7f0000000400)={{0x80000000, 0x0, 0x3}})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)={0x1c, 0x3, 0x1, 0x201, 0x0, 0x0, {0x0, 0x0, 0xa}, [@CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x802}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000844}, 0x8000080)

2.944210315s ago: executing program 3 (id=556):
r0 = syz_mount_image$btrfs(&(0x7f00000051c0), &(0x7f0000005200)='./file0\x00', 0x1204408, &(0x7f00000003c0)={[{@compress_force}, {@clear_cache}, {@nodatasum}, {@nossd}, {}, {@space_cache_v1}]}, 0x0, 0x51ab, &(0x7f000000a440)="$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")
ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000000440)={0x2, 0x4, {0xffffffffffffffff, @struct={0xfffffffd}, 0x0, 0x5, 0x0, 0x0, 0x0, 0xfffffffffffffffb, 0x0, @struct={0x0, 0xce82}, 0x4000, 0x3, [0x0, 0x8, 0x1000000000]}, {0xfffffffffffffffe, @usage=0x9, 0x0, 0xffffffffffffffff, 0x1, 0x1, 0x0, 0x8, 0x58a, @struct={0x2, 0xf136}, 0x3, 0xa, [0x4, 0x1, 0x2, 0xfffffffffffffffc, 0x0, 0x1]}, {0x6, @struct={0x4, 0x8}, 0x0, 0x7, 0x807fc, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff, 0x4a, @struct={0x0, 0x6}, 0xffffffff, 0x4, [0x80000000, 0x800004, 0x0, 0x3ff, 0x80]}})
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x4000044)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
getsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x23, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000800)='./file0\x00', &(0x7f0000000840)='system.posix_acl_access\x00', 0x0, 0x0, 0x0)

1.91316361s ago: executing program 2 (id=557):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000780)=@gettaction={0x14, 0x32, 0x1, 0x70bd29, 0x25dfdbfc}, 0x14}}, 0x0)
getsockname$packet(r4, &(0x7f00000001c0)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=@newqdisc={0x44, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0x2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x6, 0x2, 0x9}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000680)=@newtfilter={0x38, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0xfffa, 0x4}, {}, {0x1c, 0xfff9}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x38}}, 0x24000000)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r6, &(0x7f00000002c0), 0x40000000000009f, 0x0)
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x2)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0xf00000000000000}, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000400)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000001b80)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0xce56fe61a68fc369, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x1, 0x5514, &(0x7f0000005d80)="$eJzs3M1rI2UYAPAn7Xa/XYt48LYDi9DCJmy67aK3qrv4gV3KqgdPmiZpyG6SKU2a1p48eBQPnv0nRMGTR/8GD569iQfFm6BkZqpbP8ClSWPb3w8mz7xv3jzzvGFZeGZKAjiz5pNffirFtbgUEbMRcTUiOy8VR2Y1D89FxPWImHnsKBXzf0ycj4jLEXFtlDzPWSre+vTm8MbKj2/8/PW3F85d+fyr76a3a2Dano+I7lZ+vtvNY9rK48NivjZsZ7G7PCxi/kb3UTFO87jb3Mgy7NYO1tWyeLuVr0+3dvqjuNmp1Uex1d7M5rd6+QX7w9ZBnuwDD2vb2bjR3Mhiu59msbWf17W3n//ftt8f5HkaRb4PsvQxGBzEfL6518z3s/Uoi/XeoJjP86aN5t4oDotYXC7qaaeR1bFxlG/6/+3Ndm9nLxk2t/vttJesVKovVKp3ytXttNEcNJfLtW7jznKy0OqMlpUHzVp3tZWmrU6zUk+7i8lCq14vV6vJwt3mRrvWS6rVyu3KrfLKYnF2M3n1/jtJp5EsjOLL7d7OoN3pJ5vpdpJ/YjFZqtx+cTG5UU3eWltP1h/cu7e2/vZ7d9+9/9La668Ui/5WVrKwdGtpqVy9VV6qLp6h/X9UFD3G/cORlJ5s+YVJ1QFwguj/gWmYXP+//SBi8v1/6P/H4kT1vxPr/z87s/uHI3nC/h8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgNPj+7kvXstO5vPxlWL+qWLqmWJcioiZiPjtH8zG+UM5Z4s8c/+yfu4vNXxTiizD6BoXiuNyRKwWx69PT/pbAAAAgNPryw+vf5J36/nL/LQL4jjlN21mrr4/pnyliJib/2FM2WZGL8+OKVn27/tc7I0pW3YD6+KYkuW33M6NK9t/MnsoXHwslPIwc6zlAAAAx+JwJ3C8XQgAAADH6eNpF8B0lOLgUebBs+DsL+//fCB46dAIAAAAOIFK0y4AAAAAmLis//f7fwAAAHC65b//BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAv7NzP7lpA1EcgJ8NLvSfiqru26N0B8foEbrssuIAvQRHoFfIBTgD2eUIEUR4HBSiJIrisa2Q75PMMBb8/IzwYmakAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALp0Wa0X//9+/9c2Z7dv54WX/dG2bgAAAHgLttV6Ub+Zpf7H5vzn5tTXpl9ERBkRD43dR/HuJHPU5FSPfL66V8NFRJ1wuMakOT5ExM/muP7S9a8AAAAA52uzXM3TaD29zIYuiD6lSZvy069MeUVEVLOrTGnlIe9bprD6/z2OP5nS6gmsaaawNOU2zpX2LPXjfpy1m95pitSUT38/270DAAA9Gp00/Y5CAAAA6NPvoQtgGEXcLmUelwInqWmW996f9AAAAIBXqBi6AAAAAKBz9fjf/n8AAABw3tL+fwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHRpW60Xm+Vq3jZnt28nz90AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADADfvzjgIhEAZhsHd9ZzL3P6w0aGpqUgXCx98YDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAvPndX/5PTI0zydxrY+l5JFk7NbZOjb1z4+gP4+vXAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABc7M9tCoAgEIbBrezrX3j/w8YLeoYIZkB42EVBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBH7hnLOLXO2BJPVbVME3vGvaqOrBJnVokrF/p4sPUPfwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwMvO/bzGUcUBAH8zs7NJq+IaZQ8RseBBLzbd1tbexIMSPPgnCCHd1titP9ocbClCLt4k515EjyKCEm/9H3puoZd662EPFTxX5lcy+XFYhZ3ZZD8fePO+Mwzzvm8WQr77XgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADsM/5wL06yQ6+I4/Law2d317P+0YE+c3/78XLWsjhqMunj4Y36SdSvnSw2nwwAAADzIanq+xDCk3RnNevjXl7/p9U9Wc3/00tFXNXzB+v+qq9q/6z9+cfT13YH6hXjZA+9ujEanjucSmd6s5xhz1+e4KZO/ubz716S/AOJP9l6dZzm7zP64cGDj7p5uDD9dAGA/+ds1ZdB9ftQ1g/aTAyAudGpFd5V/Z/02s0JAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoAnjrfBCFUchhOXOXpx59Ozu+lH9/e3Hy1W7dO/edv2Z2SPSEMLVjdHwXFhscDaz7dbtO9fXRqPhzeaDN0MIbY3+QTn9659NcHMIU0rjTEtvfs6CuPywZyWf4xG0+EMJAIATKS1bVtc/SXdWs2vRUgjPf95f/79di8OE9f/Tzy89rI9Vr/8Hjc1w9q1s3vh65dbtO+9u3Fi7Nrw2/PK984P3BxcuX7x4eSX/rqQ4tp0mAAAAx1i3bPX6P146vP5/uhaHCev/b34cfFcfK1H/H2lv0a/tTAAAAObbK2f++Ts64nrU7YZv1zY3bw6K4+75+eLYQqr/2ULZ6vV/stR2VgAAAEATxlvRvvX/K7U4TLj+/+Ivr/9Wf2YSQjhVrv+fXf9qdKW56cy0qfzx8EL5cDsLAAAAKOvxUwfW/9N8/3+8u+UhDiG881YRl/8GcKL6P/n4+1/rY9X3/19oboozKe4X7yPv+yF0+m1nBAAAwEm2mLdeXv//le6sfvH76U+79v8DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANO3fAAAA///FdTwZ")
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events.local\x00', 0x275a, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r7, 0xc020f509, &(0x7f0000000100)={0x3})
bpf$PROG_LOAD(0x5, 0x0, 0x0)

852.463997ms ago: executing program 1 (id=558):
syz_open_dev$vim2m(&(0x7f0000000040), 0x7, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="01"], 0x48)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = socket(0x25, 0x1, 0x0)
sendmsg$kcm(r1, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x41)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000800)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
r2 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
read$FUSE(r2, &(0x7f00000024c0)={0x2020}, 0x2020)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="02c90010000c0005001203080005000001ff030104"], 0x15)

510.617342ms ago: executing program 2 (id=559):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000340)={[{@shortname_winnt}, {@uni_xlate}, {@fat=@errors_remount}, {@fat=@check_strict}, {@fat=@codepage={'codepage', 0x3d, '932'}}, {@numtail}, {@shortname_mixed}, {@shortname_lower}, {@iocharset={'iocharset', 0x3d, 'cp874'}}, {@shortname_mixed}, {@numtail}, {@iocharset={'iocharset', 0x3d, 'cp866'}}, {@rodir}]}, 0x2a, 0x33c, &(0x7f0000000a40)="$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")
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x4000, &(0x7f0000000140)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c636865636b3d7374726963742c756d61736b3d30303030303030303030303030303030303133363033302c756e695f786c6174653d312c756e695f786c6174653d302c666d61736b3d30303030303030303030303030303030303030303034302c757466383d302c6e6f6e756d7461696c3d302c73686f72746e616d653d77696e39352c73686f72746e616d653d6c6f7765722c73686f72746e616d653d77696e6e742c756e695f786c6174653d312c74696d655f6f66667365743d3078303030303030303030303030303166622c666c7573682c756e695f786c6174653d302c73686f72746e616d653d77696e39352c00208893fdd4787adad4209069"], 0x6, 0x2ab, &(0x7f0000000a80)="$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")
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='blkio.bfq.idle_time\x00', 0x275a, 0x0)
syz_open_dev$sndmidi(0x0, 0x2, 0x141102)

509.870722ms ago: executing program 1 (id=560):
sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x3, 0x0, 0x2, 0x7, 0x0, 0x700, 0x0, [@sadb_key={0x2, 0x9, 0x8, 0x0, 'd'}, @sadb_address={0x3, 0x6, 0xb8, 0x0, 0x0, @in={0x2, 0x0, @private}}]}, 0x38}, 0x1, 0x7}, 0x0)
syz_usb_connect$cdc_ncm(0x4, 0xd1, &(0x7f0000000040)=ANY=[@ANYBLOB="12011003020000182505a1a44000010203010902bf0002010650000900000000020d00000524060001082400a9b30d240f010a0000000300ff000606241a05001407240a050905580c240c00000000a90c0900030424020204240200042402024424"], 0x0)
r0 = syz_usb_connect(0x2, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="120100002d3d6a08c6050592ac29000000010902240003000000000904020000ff4f9b000904b000003a3846000904"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f00000000c0), 0x10)

303.750025ms ago: executing program 0 (id=561):
r0 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0x3cfa, 0x0, 0x2002, 0x3b9}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r0, 0x47f6, 0x0, 0x2, 0x0, 0x0)

0s ago: executing program 0 (id=562):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.70' (ED25519) to the list of known hosts.
[   82.644071][ T5757] cgroup: Unknown subsys name 'net'
[   82.788074][ T5757] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   84.527034][ T5757] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   86.256569][ T5769] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   86.265941][ T5769] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   86.276485][ T5769] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   86.284881][ T5769] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   86.291933][ T5774] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   86.293054][ T5769] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   86.300809][ T5774] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   86.307675][ T5769] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   86.314553][ T5774] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   86.329587][ T5774] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   86.337468][ T5774] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   86.344933][ T5774] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   86.369965][ T5774] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   86.379260][ T5774] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   86.388249][ T5774] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   86.400776][ T5774] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   86.402956][ T5083] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   86.416911][ T5083] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   86.424425][ T5083] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   86.451334][ T5083] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   86.463001][ T5083] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   86.471996][ T5083] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   86.485636][ T5083] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   86.493548][ T5083] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   86.872372][ T5767] chnl_net:caif_netlink_parms(): no params data found
[   86.984289][ T5772] chnl_net:caif_netlink_parms(): no params data found
[   87.093790][ T5768] chnl_net:caif_netlink_parms(): no params data found
[   87.169214][ T5767] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.177284][ T5767] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.184708][ T5767] bridge_slave_0: entered allmulticast mode
[   87.192376][ T5767] bridge_slave_0: entered promiscuous mode
[   87.202516][ T5767] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.209810][ T5767] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.218121][ T5767] bridge_slave_1: entered allmulticast mode
[   87.225633][ T5767] bridge_slave_1: entered promiscuous mode
[   87.258106][ T5772] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.265625][ T5772] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.273225][ T5772] bridge_slave_0: entered allmulticast mode
[   87.280872][ T5772] bridge_slave_0: entered promiscuous mode
[   87.289901][ T5772] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.297995][ T5772] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.305265][ T5772] bridge_slave_1: entered allmulticast mode
[   87.313250][ T5772] bridge_slave_1: entered promiscuous mode
[   87.368128][ T5767] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   87.400250][ T5780] chnl_net:caif_netlink_parms(): no params data found
[   87.423287][ T5767] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   87.454389][ T5772] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   87.561798][ T5772] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   87.618772][ T5767] team0: Port device team_slave_0 added
[   87.660584][ T5768] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.668612][ T5768] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.675885][ T5768] bridge_slave_0: entered allmulticast mode
[   87.684840][ T5768] bridge_slave_0: entered promiscuous mode
[   87.694092][ T5768] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.701637][ T5768] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.709200][ T5768] bridge_slave_1: entered allmulticast mode
[   87.717031][ T5768] bridge_slave_1: entered promiscuous mode
[   87.725780][ T5767] team0: Port device team_slave_1 added
[   87.862877][ T5772] team0: Port device team_slave_0 added
[   87.872873][ T5768] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   87.884369][ T5772] team0: Port device team_slave_1 added
[   87.892236][ T5767] batman_adv: batadv0: Adding interface: batadv_slave_0
[   87.899383][ T5767] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   87.925366][ T5767] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   87.962918][ T5768] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   87.998151][ T5767] batman_adv: batadv0: Adding interface: batadv_slave_1
[   88.005166][ T5767] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   88.032189][ T5767] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   88.044029][ T5780] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.051657][ T5780] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.059168][ T5780] bridge_slave_0: entered allmulticast mode
[   88.066491][ T5780] bridge_slave_0: entered promiscuous mode
[   88.075248][ T5780] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.082516][ T5780] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.089815][ T5780] bridge_slave_1: entered allmulticast mode
[   88.097324][ T5780] bridge_slave_1: entered promiscuous mode
[   88.171255][ T5768] team0: Port device team_slave_0 added
[   88.181271][ T5768] team0: Port device team_slave_1 added
[   88.188040][ T5772] batman_adv: batadv0: Adding interface: batadv_slave_0
[   88.195042][ T5772] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   88.222349][ T5772] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   88.253830][ T5780] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   88.274824][ T5772] batman_adv: batadv0: Adding interface: batadv_slave_1
[   88.282537][ T5772] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   88.309099][ T5772] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   88.335400][ T5780] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   88.363495][ T5768] batman_adv: batadv0: Adding interface: batadv_slave_0
[   88.370915][ T5768] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   88.398251][ T5768] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   88.399024][   T50] Bluetooth: hci0: command tx timeout
[   88.415068][ T5083] Bluetooth: hci1: command tx timeout
[   88.422547][ T5767] hsr_slave_0: entered promiscuous mode
[   88.429831][ T5767] hsr_slave_1: entered promiscuous mode
[   88.456519][ T5083] Bluetooth: hci2: command tx timeout
[   88.469813][ T5768] batman_adv: batadv0: Adding interface: batadv_slave_1
[   88.477268][ T5768] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   88.503765][ T5768] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   88.536638][ T5083] Bluetooth: hci3: command tx timeout
[   88.544946][ T5780] team0: Port device team_slave_0 added
[   88.584556][ T5772] hsr_slave_0: entered promiscuous mode
[   88.592036][ T5772] hsr_slave_1: entered promiscuous mode
[   88.598716][ T5772] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   88.606818][ T5772] Cannot create hsr debugfs directory
[   88.633783][ T5780] team0: Port device team_slave_1 added
[   88.737457][ T5780] batman_adv: batadv0: Adding interface: batadv_slave_0
[   88.744474][ T5780] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   88.772128][ T5780] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   88.785752][ T5780] batman_adv: batadv0: Adding interface: batadv_slave_1
[   88.793432][ T5780] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   88.819857][ T5780] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   88.835183][ T5768] hsr_slave_0: entered promiscuous mode
[   88.841880][ T5768] hsr_slave_1: entered promiscuous mode
[   88.848328][ T5768] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   88.855939][ T5768] Cannot create hsr debugfs directory
[   88.980179][ T5780] hsr_slave_0: entered promiscuous mode
[   88.986998][ T5780] hsr_slave_1: entered promiscuous mode
[   88.993187][ T5780] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   89.001541][ T5780] Cannot create hsr debugfs directory
[   89.321428][ T5767] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   89.335718][ T5767] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   89.353846][ T5767] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   89.383583][ T5767] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   89.440457][ T5772] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   89.460052][ T5772] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   89.472055][ T5772] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   89.490797][ T5772] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   89.612448][ T5768] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   89.638187][ T5768] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   89.653144][ T5768] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   89.666524][ T5768] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   89.764425][ T5780] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   89.793439][ T5780] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   89.818870][ T5780] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   89.831099][ T5780] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   89.858900][ T5767] 8021q: adding VLAN 0 to HW filter on device bond0
[   89.933573][ T5772] 8021q: adding VLAN 0 to HW filter on device bond0
[   89.943537][ T5767] 8021q: adding VLAN 0 to HW filter on device team0
[   89.962828][ T1073] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.970285][ T1073] bridge0: port 1(bridge_slave_0) entered forwarding state
[   90.014266][ T2985] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.021737][ T2985] bridge0: port 2(bridge_slave_1) entered forwarding state
[   90.044363][ T5772] 8021q: adding VLAN 0 to HW filter on device team0
[   90.070459][ T1073] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.077705][ T1073] bridge0: port 1(bridge_slave_0) entered forwarding state
[   90.088419][ T1073] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.095681][ T1073] bridge0: port 2(bridge_slave_1) entered forwarding state
[   90.185960][ T5768] 8021q: adding VLAN 0 to HW filter on device bond0
[   90.244407][ T5768] 8021q: adding VLAN 0 to HW filter on device team0
[   90.310551][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.317824][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[   90.344057][   T59] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.351343][   T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[   90.407091][ T5780] 8021q: adding VLAN 0 to HW filter on device bond0
[   90.457791][ T5083] Bluetooth: hci1: command tx timeout
[   90.463295][ T5083] Bluetooth: hci0: command tx timeout
[   90.510619][ T5780] 8021q: adding VLAN 0 to HW filter on device team0
[   90.534277][ T5768] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   90.545471][ T5768] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   90.550710][ T5083] Bluetooth: hci2: command tx timeout
[   90.592911][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.600617][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   90.617868][ T5083] Bluetooth: hci3: command tx timeout
[   90.644853][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.652137][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   90.823115][ T5767] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.908958][ T5772] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.981807][ T5767] veth0_vlan: entered promiscuous mode
[   91.034366][ T5768] 8021q: adding VLAN 0 to HW filter on device batadv0
[   91.064423][ T5767] veth1_vlan: entered promiscuous mode
[   91.112040][ T5772] veth0_vlan: entered promiscuous mode
[   91.164394][ T5767] veth0_macvtap: entered promiscuous mode
[   91.200752][ T5772] veth1_vlan: entered promiscuous mode
[   91.226070][ T5768] veth0_vlan: entered promiscuous mode
[   91.243150][ T5767] veth1_macvtap: entered promiscuous mode
[   91.283554][ T5768] veth1_vlan: entered promiscuous mode
[   91.301410][ T5767] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.322180][ T5772] veth0_macvtap: entered promiscuous mode
[   91.344797][ T5767] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.360830][ T5767] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.370748][ T5767] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.380242][ T5767] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.389717][ T5767] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.402521][ T5772] veth1_macvtap: entered promiscuous mode
[   91.434909][ T5780] 8021q: adding VLAN 0 to HW filter on device batadv0
[   91.458686][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   91.470731][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.483896][ T5772] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.539418][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   91.550176][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.563221][ T5772] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.603658][ T5768] veth0_macvtap: entered promiscuous mode
[   91.618455][ T5772] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.630716][ T5772] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.640131][ T5772] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.649847][ T5772] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.670008][ T5768] veth1_macvtap: entered promiscuous mode
[   91.768192][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   91.779236][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.789560][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   91.801844][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.813287][ T5768] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.836641][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.845537][ T5780] veth0_vlan: entered promiscuous mode
[   91.853293][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.878183][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   91.891499][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.902559][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   91.913827][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.925192][ T5768] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.942625][ T5768] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.952570][ T5768] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.962601][ T5768] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.971734][ T5768] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   92.015621][ T5780] veth1_vlan: entered promiscuous mode
[   92.095787][ T2908] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.110954][ T2908] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.187989][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.195898][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.211837][ T5780] veth0_macvtap: entered promiscuous mode
[   92.232794][ T5780] veth1_macvtap: entered promiscuous mode
[   92.261949][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.270402][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.298951][    T8] cfg80211: failed to load regulatory.db
[   92.359989][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.381908][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.389041][ T5780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   92.405775][ T5780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   92.417296][ T5780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   92.428762][ T5780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   92.439317][ T5780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   92.450339][ T5780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   92.490207][ T5780] batman_adv: batadv0: Interface activated: batadv_slave_0
[   92.513855][ T5861] syz.2.3[5861]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   92.535390][ T5861] loop2: detected capacity change from 0 to 256
[   92.535772][ T5780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   92.546685][ T5083] Bluetooth: hci0: command tx timeout
[   92.559652][   T50] Bluetooth: hci1: command tx timeout
[   92.568628][ T5780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   92.579158][ T5780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   92.590794][ T5780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   92.601833][ T5780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   92.613080][ T5780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   92.628135][ T5780] batman_adv: batadv0: Interface activated: batadv_slave_1
[   92.635432][   T50] Bluetooth: hci2: command tx timeout
[   92.657034][ T1073] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.666284][ T1073] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.673386][ T5861] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x6ffffea4, utbl_chksum : 0xe619d30d)
[   92.694156][ T5780] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   92.703811][   T50] Bluetooth: hci3: command tx timeout
[   92.722600][ T5780] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   92.741967][ T5780] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   92.764572][ T5780] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.078596][ T2908] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.100515][ T2908] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.223153][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.235043][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.456578][   T42] usb 1-1: new full-speed USB device number 2 using dummy_hcd
[   93.473326][ T5869] loop3: detected capacity change from 0 to 512
[   93.547206][ T5869] Quota error (device loop3): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[   93.595350][ T5869] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[   93.636682][ T5869] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.4: Failed to acquire dquot type 1
[   93.659036][ T5869] EXT4-fs (loop3): 1 truncate cleaned up
[   93.677125][ T5869] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   93.694685][ T5869] ext4 filesystem being mounted at /0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.713057][   T42] usb 1-1: config 0 has an invalid interface number: 176 but max is 2
[   93.722905][   T50] Bluetooth: Wrong link type (-71)
[   93.736944][   T42] usb 1-1: config 0 has an invalid interface number: 36 but max is 2
[   93.745109][   T42] usb 1-1: config 0 has no interface number 0
[   93.754375][   T42] usb 1-1: config 0 has no interface number 1
[   93.761021][   T42] usb 1-1: config 0 interface 36 altsetting 15 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[   93.774598][   T42] usb 1-1: config 0 interface 36 has no altsetting 0
[   93.782464][   T42] usb 1-1: New USB device found, idVendor=05c6, idProduct=9205, bcdDevice=29.ac
[   93.792110][   T42] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   93.805820][   T42] usb 1-1: config 0 descriptor??
[   93.983229][ T5780] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.051876][   T42] qcserial 1-1:0.2: Qualcomm USB modem converter detected
[   94.586208][   T27] audit: type=1804 audit(1751341134.278:2): pid=5861 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.3" name="/newroot/0/file2/bus" dev="loop2" ino=1048593 res=1 errno=0
[   94.616519][   T50] Bluetooth: hci0: command tx timeout
[   94.622042][   T50] Bluetooth: hci1: command tx timeout
[   94.667616][ T5887] loop1: detected capacity change from 0 to 4096
[   94.681094][ T5887] =======================================================
[   94.681094][ T5887] WARNING: The mand mount option has been deprecated and
[   94.681094][ T5887]          and is ignored by this kernel. Remove the mand
[   94.681094][ T5887]          option from the mount to silence this warning.
[   94.681094][ T5887] =======================================================
[   94.709416][ T5884] loop3: detected capacity change from 0 to 4096
[   94.725305][ T5083] Bluetooth: hci2: command tx timeout
[   94.776261][ T5083] Bluetooth: hci3: command tx timeout
[   94.972941][ T5887] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[   95.330040][ T5887] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 4096)
[   95.391610][ T5890] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   95.553920][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   95.576920][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   95.656371][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   95.680973][    T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!!
[   96.579714][   T42] usb 1-1: USB disconnect, device number 2
[   96.607525][   T42] qcserial 1-1:0.2: device disconnected
[   96.613949][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   97.067763][ T5083] Bluetooth: Wrong link type (-71)
[   97.415899][ T5098] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   98.282825][ T5921] netlink: 4 bytes leftover after parsing attributes in process `syz.2.17'.
[   98.304137][ T5098] usb 2-1: config index 0 descriptor too short (expected 45, got 36)
[   98.320149][ T5098] usb 2-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[   98.331453][ T5098] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   98.366421][ T5098] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   98.386271][ T5098] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   98.413869][ T5098] usb 2-1: config 0 descriptor??
[   98.436809][ T5906] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   98.473686][ T5098] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[   98.532571][ T5928] loop2: detected capacity change from 0 to 1024
[   98.556594][ T5928] EXT4-fs: Ignoring removed nomblk_io_submit option
[   98.614274][ T5928] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.801789][ T5767] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.865554][ T5934] loop0: detected capacity change from 0 to 4096
[   98.928754][ T5934] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[   98.945476][ T5934] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 4096)
[   98.982018][ T5937] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   99.204039][ T5919] loop3: detected capacity change from 0 to 40427
[   99.295973][ T5919] F2FS-fs (loop3): Invalid Fs Meta Ino: node(1) meta(2) root(0)
[   99.312627][ T5919] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[   99.627452][ T5919] F2FS-fs (loop3): build fault injection attr: rate: 18446, type: 0x7ffff
[   99.831136][ T5919] F2FS-fs (loop3): invalid crc value
[   99.896034][ T5919] F2FS-fs (loop3): Found nat_bits in checkpoint
[  100.822341][ T5919] F2FS-fs (loop3): Start checkpoint disabled!
[  100.954158][ T5759] usb 2-1: USB disconnect, device number 2
[  101.011468][ T5919] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  101.031022][ T5919] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  101.040910][ T5083] Bluetooth: Wrong link type (-71)
[  101.330473][ T5964] warning: `syz.2.30' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  102.184089][   T59] kworker/u4:4: attempt to access beyond end of device
[  102.184089][   T59] loop3: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  102.220721][   T59] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  102.233105][   T59] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  102.240348][   T59] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  102.262112][ T5972] loop2: detected capacity change from 0 to 1024
[  102.680377][ T5978] autofs4:pid:5978:autofs_fill_super: called with bogus options
[  102.824305][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  102.926199][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[  102.935206][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  103.576363][ T5759] usb 2-1: new full-speed USB device number 3 using dummy_hcd
[  104.117789][ T5759] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  104.274368][ T5759] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  104.624469][ T5759] usb 2-1: string descriptor 0 read error: -71
[  104.657630][ T5759] usb 2-1: New USB device found, idVendor=060b, idProduct=700a, bcdDevice= 0.00
[  104.685876][ T5759] usb 2-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  104.715615][ T5759] usb 2-1: config 0 descriptor??
[  104.872665][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[  104.881579][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  104.927682][ T5759] usb 2-1: can't set config #0, error -71
[  104.936430][ T5759] usb 2-1: USB disconnect, device number 3
[  107.971616][ T5999] loop1: detected capacity change from 0 to 32768
[  108.041571][ T5999] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  108.072223][ T6012] netlink: 28 bytes leftover after parsing attributes in process `syz.0.43'.
[  108.274488][ T5999] XFS (loop1): Ending clean mount
[  108.679433][   T27] audit: type=1804 audit(1751341148.378:3): pid=6023 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.40" name="/newroot/10/file1/file1" dev="loop1" ino=6150 res=1 errno=0
[  109.409134][   T27] audit: type=1800 audit(1751341148.378:4): pid=6023 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.40" name="file1" dev="loop1" ino=6150 res=0 errno=0
[  109.461040][ T6027] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  110.168588][   T27] audit: type=1800 audit(1751341149.608:5): pid=6028 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="iou-wrk-6023" name="file0" dev="loop1" ino=6148 res=0 errno=0
[  110.203601][   T27] audit: type=1800 audit(1751341149.608:6): pid=6028 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="iou-wrk-6023" name="file0" dev="loop1" ino=6148 res=0 errno=0
[  110.224560][   T27] audit: type=1800 audit(1751341149.608:7): pid=6028 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="iou-wrk-6023" name="file0" dev="loop1" ino=6148 res=0 errno=0
[  110.246379][   T27] audit: type=1800 audit(1751341149.618:8): pid=6028 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="iou-wrk-6023" name="file0" dev="loop1" ino=6148 res=0 errno=0
[  110.267703][   T27] audit: type=1800 audit(1751341149.618:9): pid=6028 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="iou-wrk-6023" name="file0" dev="loop1" ino=6148 res=0 errno=0
[  110.455767][   T27] audit: type=1800 audit(1751341149.618:10): pid=6028 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="iou-wrk-6023" name="file0" dev="loop1" ino=6148 res=0 errno=0
[  110.478095][   T27] audit: type=1800 audit(1751341149.618:11): pid=6028 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="iou-wrk-6023" name="file0" dev="loop1" ino=6148 res=0 errno=0
[  111.366280][   T27] audit: type=1800 audit(1751341149.618:12): pid=6028 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="iou-wrk-6023" name="file0" dev="loop1" ino=6148 res=0 errno=0
[  113.246849][ T6041] loop0: detected capacity change from 0 to 4096
[  113.346365][ T6041] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  113.427755][ T5772] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  113.440952][ T6041] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 4096)
[  113.543666][ T6044] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  113.868316][ T6047] loop2: detected capacity change from 0 to 512
[  114.143141][ T6047] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  114.213135][ T6047] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  114.943697][ T6047] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2867: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  114.963835][ T6047] EXT4-fs (loop2): 1 truncate cleaned up
[  114.979668][ T6047] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.553375][ T5767] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.554458][ T6059] loop0: detected capacity change from 0 to 128
[  115.587646][ T6059] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  115.740483][ T6060] loop1: detected capacity change from 0 to 8
[  115.788468][   T27] kauditd_printk_skb: 238 callbacks suppressed
[  115.788483][   T27] audit: type=1800 audit(1751341155.488:251): pid=6062 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.53" name="file1" dev="loop0" ino=94 res=0 errno=0
[  115.859121][ T6059] UDF-fs: error (device loop0): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  116.444983][ T6070] autofs4:pid:6070:autofs_fill_super: called with bogus options
[  117.484566][ T6072] loop0: detected capacity change from 0 to 512
[  117.518080][ T6063] loop2: detected capacity change from 0 to 32768
[  117.561164][ T6072] Quota error (device loop0): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  117.578888][ T6063] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  117.642235][ T6063] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  117.651171][ T6072] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  117.666363][ T6072] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.57: Failed to acquire dquot type 1
[  117.706527][ T6063] syz.2.54: attempt to access beyond end of device
[  117.706527][ T6063] loop2: rw=12288, sector=6192449487651092, nr_sectors = 2 limit=32768
[  117.729066][ T6066] loop3: detected capacity change from 0 to 32768
[  117.756260][ T6063] gfs2: fsid=syz:syz.0: can't lookup journal index: 0
[  117.772231][ T6066] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.52 (6066)
[  117.833487][ T6072] EXT4-fs (loop0): 1 truncate cleaned up
[  117.868594][ T6072] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.888243][ T6066] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  117.908649][ T6066] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  117.952175][ T6072] ext4 filesystem being mounted at /19/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.977076][ T6066] BTRFS info (device loop3): using free space tree
[  118.220627][ T5768] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.249905][ T6066] BTRFS info (device loop3): enabling ssd optimizations
[  118.270912][ T6066] BTRFS info (device loop3): auto enabling async discard
[  118.289063][ T6094] process 'syz.2.58' launched './file1' with NULL argv: empty string added
[  118.751368][ T5780] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  118.984604][ T6102] loop2: detected capacity change from 0 to 4096
[  119.075723][ T6102] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  119.119818][ T6102] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 4096)
[  119.153408][ T6108] Zero length message leads to an empty skb
[  119.189603][ T6109] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  119.524292][ T6110] loop1: detected capacity change from 0 to 128
[  120.100314][ T6119] autofs4:pid:6119:autofs_fill_super: called with bogus options
[  122.529742][ T6139] netlink: 88 bytes leftover after parsing attributes in process `syz.3.67'.
[  122.557296][ T6139] netlink: 16 bytes leftover after parsing attributes in process `syz.3.67'.
[  122.846017][ T6146] loop2: detected capacity change from 0 to 512
[  123.041880][ T6146] Quota error (device loop2): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  123.116402][ T6146] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  123.161117][ T6146] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.70: Failed to acquire dquot type 1
[  123.218423][ T6153] loop0: detected capacity change from 0 to 8
[  123.244418][ T6146] EXT4-fs (loop2): 1 truncate cleaned up
[  123.282802][ T6146] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  123.334666][ T6146] ext4 filesystem being mounted at /18/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  123.408210][ T6156] loop3: detected capacity change from 0 to 64
[  124.528532][ T5767] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.173083][ T6175] autofs4:pid:6175:autofs_fill_super: called with bogus options
[  128.664142][ T6167] loop1: detected capacity change from 0 to 32768
[  128.804017][ T6183] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  129.024048][ T6193] loop0: detected capacity change from 0 to 64
[  129.843291][ T5779] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by udevd (5779)
[  133.060449][ T6224] loop3: detected capacity change from 0 to 128
[  133.265929][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  133.276739][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  133.455216][ T6227] autofs4:pid:6227:autofs_fill_super: called with bogus options
[  134.546468][   T23] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  134.673669][ T6240] loop1: detected capacity change from 0 to 64
[  136.906762][   T23] usb 3-1: Using ep0 maxpacket: 8
[  137.054224][ T6238] trusted_key: encrypted_key: insufficient parameters specified
[  137.259089][   T23] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  137.271351][   T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  137.279523][   T23] usb 3-1: Product: syz
[  137.286408][   T23] usb 3-1: config 0 descriptor??
[  137.293254][   T23] usb 3-1: can't set config #0, error -71
[  137.300802][   T23] usb 3-1: USB disconnect, device number 2
[  138.847628][ T6256] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  140.586747][ T6266] autofs4:pid:6266:autofs_fill_super: called with bogus options
[  141.335163][ T6274] loop1: detected capacity change from 0 to 64
[  141.426745][ T6275] netlink: 8 bytes leftover after parsing attributes in process `syz.1.105'.
[  142.804617][ T6292] loop3: detected capacity change from 0 to 4096
[  142.851283][ T6292] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  142.931555][ T6292] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 4096)
[  142.978750][ T6295] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  145.880606][ T6311] loop3: detected capacity change from 0 to 512
[  146.138062][ T6314] loop1: detected capacity change from 0 to 32768
[  146.146185][ T6314] XFS: ikeep mount option is deprecated.
[  146.240982][ T6314] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  146.424355][ T6314] XFS (loop1): Ending clean mount
[  146.439919][ T6314] XFS (loop1): Quotacheck needed: Please wait.
[  146.603016][ T6314] XFS (loop1): Quotacheck: Done.
[  149.486377][ T6311] syz.3.114: vmalloc error: size 16777216, failed to allocated page array size 32768, mode:0xc42(GFP_NOFS|__GFP_HIGHMEM), nodemask=(null),cpuset=syz3,mems_allowed=0-1
[  149.504507][ T6311] CPU: 0 PID: 6311 Comm: syz.3.114 Not tainted 6.6.95-syzkaller #0
[  149.512461][ T6311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  149.522564][ T6311] Call Trace:
[  149.525879][ T6311]  <TASK>
[  149.528854][ T6311]  dump_stack_lvl+0x16c/0x230
[  149.533591][ T6311]  ? show_regs_print_info+0x20/0x20
[  149.538808][ T6311]  ? load_image+0x3b0/0x3b0
[  149.543334][ T6311]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  149.549766][ T6311]  ? cpuset_print_current_mems_allowed+0x2e3/0x360
[  149.556300][ T6311]  warn_alloc+0x210/0x300
[  149.560665][ T6311]  ? zone_watermark_ok_safe+0x230/0x230
[  149.566226][ T6311]  ? _raw_spin_unlock+0x28/0x40
[  149.571093][ T6311]  ? ext4_fill_super+0x5d47/0x6620
[  149.576241][ T6311]  __vmalloc_node_range+0x662/0x1320
[  149.581545][ T6311]  ? __asan_memset+0x22/0x40
[  149.586182][ T6311]  ? free_vm_area+0x50/0x50
[  149.590704][ T6311]  ? kvmalloc_node+0x70/0x180
[  149.595396][ T6311]  ? rcu_is_watching+0x15/0xb0
[  149.600263][ T6311]  ? kvmalloc_node+0x70/0x180
[  149.604959][ T6311]  ? trace_kmalloc+0x1f/0xa0
[  149.609565][ T6311]  kvmalloc_node+0x13f/0x180
[  149.614175][ T6311]  ? ext4_expand_extra_isize_ea+0xd60/0x19e0
[  149.620172][ T6311]  ext4_expand_extra_isize_ea+0xd60/0x19e0
[  149.626018][ T6311]  __ext4_expand_extra_isize+0x306/0x400
[  149.631671][ T6311]  __ext4_mark_inode_dirty+0x45d/0x6e0
[  149.637158][ T6311]  ext4_evict_inode+0x7ed/0xea0
[  149.642026][ T6311]  ? _raw_spin_unlock+0x28/0x40
[  149.646908][ T6311]  ? ext4_inode_is_fast_symlink+0x350/0x350
[  149.652930][ T6311]  ? do_raw_spin_unlock+0x121/0x230
[  149.658183][ T6311]  ? ext4_inode_is_fast_symlink+0x350/0x350
[  149.664117][ T6311]  evict+0x486/0x870
[  149.668045][ T6311]  ? __lock_acquire+0x7c80/0x7c80
[  149.673103][ T6311]  ? proc_nr_inodes+0x230/0x230
[  149.677976][ T6311]  ? do_raw_spin_unlock+0x121/0x230
[  149.683217][ T6311]  ? _raw_spin_unlock+0x28/0x40
[  149.688190][ T6311]  ? iput+0x70a/0x920
[  149.692199][ T6311]  ext4_orphan_cleanup+0xbd4/0x1400
[  149.697427][ T6311]  ? ext4_orphan_del+0xba0/0xba0
[  149.702384][ T6311]  ? errseq_check_and_advance+0x66/0x120
[  149.708044][ T6311]  ext4_fill_super+0x5d47/0x6620
[  149.713024][ T6311]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  149.719313][ T6311]  ? vscnprintf+0x80/0x80
[  149.723686][ T6311]  ? down_read_killable+0x340/0x340
[  149.728966][ T6311]  ? setup_bdev_super+0x56b/0x660
[  149.734037][ T6311]  get_tree_bdev+0x3e4/0x510
[  149.738656][ T6311]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  149.744923][ T6311]  ? setup_bdev_super+0x660/0x660
[  149.749965][ T6311]  ? apparmor_capable+0x137/0x1a0
[  149.755006][ T6311]  ? bpf_lsm_capable+0x9/0x10
[  149.759700][ T6311]  ? security_capable+0x89/0xb0
[  149.764572][ T6311]  vfs_get_tree+0x8c/0x280
[  149.769013][ T6311]  do_new_mount+0x24b/0xa40
[  149.773553][ T6311]  __se_sys_mount+0x2da/0x3c0
[  149.778286][ T6311]  ? __x64_sys_mount+0xc0/0xc0
[  149.783089][ T6311]  ? lockdep_hardirqs_on+0x98/0x150
[  149.788307][ T6311]  ? __x64_sys_mount+0x20/0xc0
[  149.793095][ T6311]  do_syscall_64+0x55/0xb0
[  149.797531][ T6311]  ? clear_bhb_loop+0x40/0x90
[  149.802212][ T6311]  ? clear_bhb_loop+0x40/0x90
[  149.806926][ T6311]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  149.812854][ T6311] RIP: 0033:0x7fe807d900ca
[  149.817296][ T6311] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.836923][ T6311] RSP: 002b:00007fe808b25e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  149.845357][ T6311] RAX: ffffffffffffffda RBX: 00007fe808b25ef0 RCX: 00007fe807d900ca
[  149.853358][ T6311] RDX: 00002000000002c0 RSI: 00002000000001c0 RDI: 00007fe808b25eb0
[  149.861352][ T6311] RBP: 00002000000002c0 R08: 00007fe808b25ef0 R09: 0000000000800700
[  149.869362][ T6311] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  149.877359][ T6311] R13: 00007fe808b25eb0 R14: 0000000000000464 R15: 000000000000002c
[  149.885365][ T6311]  </TASK>
[  150.826169][ T6311] Mem-Info:
[  150.836324][ T6311] active_anon:9592 inactive_anon:0 isolated_anon:0
[  150.836324][ T6311]  active_file:1346 inactive_file:39960 isolated_file:0
[  150.836324][ T6311]  unevictable:858 dirty:223 writeback:0
[  150.836324][ T6311]  slab_reclaimable:10128 slab_unreclaimable:94437
[  150.836324][ T6311]  mapped:25678 shmem:5615 pagetables:589
[  150.836324][ T6311]  sec_pagetables:0 bounce:0
[  150.836324][ T6311]  kernel_misc_reclaimable:0
[  150.836324][ T6311]  free:1361539 free_pcp:10947 free_cma:0
[  150.881789][    C0] vkms_vblank_simulate: vblank timer overrun
[  150.890612][ T6311] Node 0 active_anon:38368kB inactive_anon:0kB active_file:5384kB inactive_file:159640kB unevictable:1896kB isolated(anon):0kB isolated(file):0kB mapped:102712kB dirty:892kB writeback:0kB shmem:20924kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11576kB pagetables:2356kB sec_pagetables:0kB all_unreclaimable? no
[  150.923190][    C0] vkms_vblank_simulate: vblank timer overrun
[  150.929825][ T6311] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  150.960093][    C0] vkms_vblank_simulate: vblank timer overrun
[  150.990521][ T5772] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  151.026304][ T6311] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  151.058130][ T6311] lowmem_reserve[]: 0 2525 2526 2526 2526
[  151.075435][ T6311] Node 0 DMA32 free:1538416kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:38224kB inactive_anon:0kB active_file:5384kB inactive_file:158320kB unevictable:1896kB writepending:892kB present:3129332kB managed:2589664kB mlocked:372kB bounce:0kB free_pcp:20516kB local_pcp:9308kB free_cma:0kB
[  151.106169][    C0] vkms_vblank_simulate: vblank timer overrun
[  151.136237][ T6311] lowmem_reserve[]: 0 0 1 1 1
[  151.148794][ T6311] Node 0 Normal free:20kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1320kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  151.178900][    C0] vkms_vblank_simulate: vblank timer overrun
[  151.192187][ T6311] lowmem_reserve[]: 0 0 0 0 0
[  151.213767][ T6311] Node 1 Normal free:3892136kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:23844kB local_pcp:11808kB free_cma:0kB
[  151.247381][    C0] vkms_vblank_simulate: vblank timer overrun
[  151.254990][ T6311] lowmem_reserve[]: 0 0 0 0 0
[  151.276946][ T6311] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  151.291789][ T6311] Node 0 DMA32: 56*4kB (UM) 1144*8kB (UM) 447*16kB (U) 89*32kB (UE) 99*64kB (ME) 80*128kB (UME) 39*256kB (UM) 19*512kB (UME) 6*1024kB (UM) 3*2048kB (ME) 359*4096kB (M) = 1538416kB
[  151.313470][ T6311] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[  151.332132][ T6311] Node 1 Normal: 230*4kB (UME) 52*8kB (UME) 31*16kB (UME) 40*32kB (UME) 20*64kB (UE) 7*128kB (UME) 1*256kB (U) 3*512kB (UME) 2*1024kB (UE) 2*2048kB (UE) 947*4096kB (M) = 3892136kB
[  151.351819][ T6311] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  151.362458][ T6311] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  151.372234][ T6311] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  151.383329][ T6311] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  151.428428][ T6311] 47011 total pagecache pages
[  151.448940][ T6311] 0 pages in swap cache
[  151.476263][ T6311] Free swap  = 124996kB
[  151.483752][ T6311] Total swap = 124996kB
[  151.490444][ T6311] 2097051 pages RAM
[  151.513988][ T6311] 0 pages HighMem/MovableOnly
[  151.524786][ T6311] 416121 pages reserved
[  151.706276][ T6311] 0 pages cma reserved
[  154.092666][ T6345] loop2: detected capacity change from 0 to 40427
[  154.125489][ T6345] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  154.133824][ T6345] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  154.149239][ T6345] F2FS-fs (loop2): invalid crc value
[  154.169226][ T6346] loop1: detected capacity change from 0 to 64
[  154.207367][ T6311] EXT4-fs error (device loop3): ext4_xattr_inode_iget:436: comm syz.3.114: Parent and EA inode have the same ino 15
[  154.282640][ T6345] F2FS-fs (loop2): Found nat_bits in checkpoint
[  154.322420][ T6311] EXT4-fs (loop3): Remounting filesystem read-only
[  154.340311][ T6311] EXT4-fs warning (device loop3): ext4_evict_inode:272: xattr delete (err -5)
[  154.440310][ T6351] netlink: 8 bytes leftover after parsing attributes in process `syz.1.119'.
[  154.623986][ T6311] EXT4-fs (loop3): 1 orphan inode deleted
[  154.633881][ T6311] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  154.666698][ T6311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.696274][ T6345] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  154.703482][ T6345] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  154.951048][ T5767] syz-executor: attempt to access beyond end of device
[  154.951048][ T5767] loop2: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  155.050806][ T5767] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  156.495112][ T6360] Bluetooth: MGMT ver 1.22
[  156.510555][   T27] audit: type=1326 audit(1751341196.208:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6358 comm="syz.3.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  156.684179][   T27] audit: type=1326 audit(1751341196.228:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6358 comm="syz.3.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  157.019795][   T27] audit: type=1326 audit(1751341196.228:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6358 comm="syz.3.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  157.281507][   T27] audit: type=1326 audit(1751341196.238:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6358 comm="syz.3.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  157.543096][   T27] audit: type=1326 audit(1751341196.238:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6358 comm="syz.3.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  157.783467][   T27] audit: type=1326 audit(1751341196.238:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6358 comm="syz.3.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  157.997044][   T27] audit: type=1326 audit(1751341196.238:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6358 comm="syz.3.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  158.241771][   T27] audit: type=1326 audit(1751341196.238:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6358 comm="syz.3.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  158.463483][   T27] audit: type=1326 audit(1751341196.238:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6358 comm="syz.3.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  158.689904][   T27] audit: type=1326 audit(1751341196.248:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6358 comm="syz.3.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  159.198985][ T6365] loop2: detected capacity change from 0 to 4096
[  159.225506][ T6365] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  159.244306][ T6365] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 4096)
[  159.466604][ T6374] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  159.466604][ T6374] The task syz.3.127 (6374) triggered the difference, watch for misbehavior.
[  159.471388][ T6374] netlink: 12 bytes leftover after parsing attributes in process `syz.3.127'.
[  160.334908][ T6376] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  160.371653][ T5779] udevd[5779]: incorrect nilfs2 checksum on /dev/loop2
[  160.970237][ T6380] tmpfs: Bad value for 'mpol'
[  161.251757][ T6384] loop1: detected capacity change from 0 to 512
[  161.743223][ T6386] loop0: detected capacity change from 0 to 64
[  161.918558][ T6391] netlink: 8 bytes leftover after parsing attributes in process `syz.0.132'.
[  162.401495][ T6384] __quota_error: 60 callbacks suppressed
[  162.401514][ T6384] Quota error (device loop1): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  162.456533][ T6384] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  162.467240][ T6384] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.131: Failed to acquire dquot type 1
[  162.837223][ T6384] EXT4-fs (loop1): 1 truncate cleaned up
[  162.975904][ T6384] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.210801][ T6384] ext4 filesystem being mounted at /28/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  163.302974][ T5772] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.452791][ T6404] loop0: detected capacity change from 0 to 2048
[  163.557457][ T6404] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.769008][ T5768] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.417976][ T6402] loop3: detected capacity change from 0 to 32768
[  164.474609][ T6402] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  164.625008][ T6402] XFS (loop3): Ending clean mount
[  164.715059][ T6412] loop0: detected capacity change from 0 to 32768
[  164.876461][ T6412] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  164.908563][   T27] audit: type=1804 audit(1751341204.608:322): pid=6402 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.135" name="/newroot/33/file1/file1" dev="loop3" ino=6150 res=1 errno=0
[  165.043003][   T27] audit: type=1800 audit(1751341204.608:323): pid=6402 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.135" name="file1" dev="loop3" ino=6150 res=0 errno=0
[  166.259327][   T27] audit: type=1800 audit(1751341205.928:324): pid=6435 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="iou-wrk-6402" name="file0" dev="loop3" ino=6148 res=0 errno=0
[  166.269934][ T6412] XFS (loop0): Ending clean mount
[  166.356342][   T27] audit: type=1800 audit(1751341205.928:325): pid=6435 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="iou-wrk-6402" name="file0" dev="loop3" ino=6148 res=0 errno=0
[  166.393913][   T27] audit: type=1800 audit(1751341205.928:326): pid=6435 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="iou-wrk-6402" name="file0" dev="loop3" ino=6148 res=0 errno=0
[  166.446281][   T27] audit: type=1800 audit(1751341205.928:327): pid=6435 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="iou-wrk-6402" name="file0" dev="loop3" ino=6148 res=0 errno=0
[  166.496762][   T27] audit: type=1800 audit(1751341205.928:328): pid=6435 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="iou-wrk-6402" name="file0" dev="loop3" ino=6148 res=0 errno=0
[  166.541793][ T5768] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  166.551233][   T27] audit: type=1800 audit(1751341205.928:329): pid=6435 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="iou-wrk-6402" name="file0" dev="loop3" ino=6148 res=0 errno=0
[  167.071764][ T5780] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  167.256610][ T6445] mmap: syz.1.143 (6445) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  167.303051][ T6449] loop2: detected capacity change from 0 to 8
[  167.846582][ T6452] loop3: detected capacity change from 0 to 40427
[  167.918435][ T6448] loop0: detected capacity change from 0 to 4096
[  167.937796][ T6452] F2FS-fs (loop3): invalid crc value
[  167.968689][ T6452] F2FS-fs (loop3): Found nat_bits in checkpoint
[  167.971378][ T6454] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  168.019387][ T6452] F2FS-fs (loop3): Start checkpoint disabled!
[  168.031596][ T6452] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  170.137352][ T2908] kworker/u4:6: attempt to access beyond end of device
[  170.137352][ T2908] loop3: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  170.197951][ T2908] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  170.492815][ T6458] loop1: detected capacity change from 0 to 512
[  170.563099][ T6458] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  170.753908][ T6458] UDF-fs: error (device loop1): udf_verify_fi: directory (ino 21) has entry past directory size at pos 128
[  171.948014][ T6470] loop3: detected capacity change from 0 to 64
[  176.262625][ T6486] loop2: detected capacity change from 0 to 32768
[  176.271845][ T6486] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.155 (6486)
[  176.301768][ T6486] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  176.338120][ T6486] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  176.455461][ T6486] BTRFS info (device loop2): setting nodatacow, compression disabled
[  176.627146][ T6504] loop3: detected capacity change from 0 to 8
[  176.754045][ T6486] BTRFS info (device loop2): setting datacow
[  176.914645][ T6486] BTRFS info (device loop2): doing ref verification
[  177.078220][ T6486] BTRFS info (device loop2): force clearing of disk cache
[  177.109122][ T6486] BTRFS info (device loop2): turning off barriers
[  177.115685][ T6486] BTRFS info (device loop2): enabling ssd optimizations
[  177.123046][ T6486] BTRFS info (device loop2): using spread ssd allocation scheme
[  177.130869][ T6486] BTRFS info (device loop2): not using ssd optimizations
[  177.138156][ T6486] BTRFS info (device loop2): not using spread ssd allocation scheme
[  177.146337][ T6486] BTRFS info (device loop2): using free space tree
[  177.153394][ T6486] workqueue: Failed to create a rescuer kthread for wq "btrfs-worker": -EINTR
[  177.164504][ T6486] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR
[  177.175093][ T6486] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[  177.382752][ T6486] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[  177.481057][ T6513] netlink: 128 bytes leftover after parsing attributes in process `syz.0.160'.
[  178.039312][ T6486] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[  178.039960][ T6486] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[  178.045581][ T6513] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  178.052204][ T6486] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  178.109248][ T6486] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  178.183380][ T6486] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  178.241486][ T6486] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  178.255409][ T6486] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  178.276846][ T6486] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  178.311240][ T6486] BTRFS error (device loop2): open_ctree failed: -12
[  178.345205][ T5902] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by udevd (5902)
[  182.974153][ T6563] loop2: detected capacity change from 0 to 256
[  183.102921][ T6558] loop3: detected capacity change from 0 to 40427
[  183.116202][ T6558] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  183.124020][ T6558] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  183.141437][ T6558] F2FS-fs (loop3): invalid crc value
[  183.187947][ T6558] F2FS-fs (loop3): Found nat_bits in checkpoint
[  183.257666][ T6558] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  183.264802][ T6558] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  183.685360][ T5780] syz-executor: attempt to access beyond end of device
[  183.685360][ T5780] loop3: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  184.427966][ T6577] netlink: 4768 bytes leftover after parsing attributes in process `syz.0.175'.
[  184.464104][ T5780] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  185.221110][ T6565] loop1: detected capacity change from 0 to 32768
[  185.277237][ T6565] XFS: noikeep mount option is deprecated.
[  185.283194][ T6565] XFS: noikeep mount option is deprecated.
[  185.364888][ T6565] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  185.685052][ T6599] loop2: detected capacity change from 0 to 8
[  186.074071][ T6565] XFS (loop1): Ending clean mount
[  186.100914][ T6565] XFS (loop1): Quotacheck needed: Please wait.
[  186.194204][ T6565] XFS (loop1): Quotacheck: Done.
[  186.565566][ T5772] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  188.415450][ T6615] loop3: detected capacity change from 0 to 4096
[  188.776545][ T6619] netlink: 4 bytes leftover after parsing attributes in process `syz.1.182'.
[  188.785944][ T6619] netlink: zone id is out of range
[  188.791371][ T6619] netlink: set zone limit has 4 unknown bytes
[  193.982992][ T6656] loop2: detected capacity change from 0 to 512
[  194.012856][ T6656] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  194.099336][ T6656] UDF-fs: error (device loop2): udf_verify_fi: directory (ino 21) has entry past directory size at pos 128
[  194.146383][ T6657] loop1: detected capacity change from 0 to 4096
[  194.749044][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  194.755748][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  198.381604][ T6694] syz.0.205: attempt to access beyond end of device
[  198.381604][ T6694] nbd0: rw=0, sector=0, nr_sectors = 1 limit=0
[  198.395261][ T6694] (syz.0.205,6694,0):ocfs2_get_sector:1772 ERROR: status = -5
[  198.404250][ T6694] (syz.0.205,6694,0):ocfs2_sb_probe:749 ERROR: status = -5
[  198.425629][ T6694] (syz.0.205,6694,0):ocfs2_fill_super:990 ERROR: superblock probe failed!
[  198.442742][ T6694] (syz.0.205,6694,0):ocfs2_fill_super:1178 ERROR: status = -5
[  198.882533][ T6701] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  200.742593][ T6708] loop0: detected capacity change from 0 to 4096
[  200.811684][ T6708] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  200.862015][ T6708] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 4096)
[  201.248991][ T6714] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  203.251659][ T6733] loop2: detected capacity change from 0 to 65
[  203.498229][ T6733] BFS-fs: bfs_fill_super(): Impossible last inode number 2097665 > 513 on loop2
[  206.631531][ T6758] loop3: detected capacity change from 0 to 4096
[  206.653948][ T6758] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  206.691763][ T6758] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 4096)
[  206.809116][ T5902] udevd[5902]: incorrect nilfs2 checksum on /dev/loop3
[  206.816556][ T6766] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  210.144697][ T6791] netlink: 64 bytes leftover after parsing attributes in process `syz.2.233'.
[  210.220850][ T6791] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  211.068729][ T6796] loop2: detected capacity change from 0 to 512
[  211.103047][ T6796] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  212.224515][ T6792] Bluetooth: hci0: command 0x0406 tx timeout
[  212.231562][ T6792] Bluetooth: hci2: command 0x0406 tx timeout
[  212.237929][ T6792] Bluetooth: hci1: command 0x0406 tx timeout
[  212.244262][ T6792] Bluetooth: hci3: command 0x0406 tx timeout
[  216.971911][ T6841] netlink: 276 bytes leftover after parsing attributes in process `syz.2.244'.
[  216.981234][ T6841] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  225.659010][ T6910] loop2: detected capacity change from 0 to 4096
[  230.889122][ T6960] loop1: detected capacity change from 0 to 4096
[  232.184728][ T6969] loop0: detected capacity change from 0 to 256
[  232.284002][ T6969] FAT-fs (loop0): Directory bread(block 64) failed
[  232.318563][ T6969] FAT-fs (loop0): Directory bread(block 65) failed
[  232.331111][ T6969] FAT-fs (loop0): Directory bread(block 66) failed
[  232.369154][ T6971] loop3: detected capacity change from 0 to 4096
[  232.376573][ T6969] FAT-fs (loop0): Directory bread(block 67) failed
[  232.413648][ T6971] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  232.428851][ T6969] FAT-fs (loop0): Directory bread(block 68) failed
[  232.469479][ T6971] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 4096)
[  232.529095][ T6969] FAT-fs (loop0): Directory bread(block 69) failed
[  232.740744][ T6969] FAT-fs (loop0): Directory bread(block 70) failed
[  232.933894][ T6969] FAT-fs (loop0): Directory bread(block 71) failed
[  233.072723][ T6977] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  233.111240][ T6969] FAT-fs (loop0): Directory bread(block 72) failed
[  233.262337][ T6969] FAT-fs (loop0): Directory bread(block 73) failed
[  235.357437][ T6993] kvm: kvm [6992]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x0
[  235.384618][ T6993] kvm: kvm [6992]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0x0
[  235.443315][ T6993] kvm: kvm [6992]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x20
[  235.473634][ T6993] kvm: kvm [6992]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x186) = 0x20
[  236.228658][ T7004] loop3: detected capacity change from 0 to 4096
[  237.574770][ T7022] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  239.051024][ T7038] loop1: detected capacity change from 0 to 4096
[  239.111925][ T7038] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  239.177031][ T7038] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 4096)
[  239.339400][ T7044] loop0: detected capacity change from 0 to 8
[  240.077157][ T7046] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  241.295360][ T7050] loop0: detected capacity change from 0 to 4096
[  242.500293][ T5083] Bluetooth: Wrong link type (-22)
[  245.417452][ T7070] loop2: detected capacity change from 0 to 256
[  245.425397][ T7070] FAT-fs (loop2): Unrecognized mount option "shortnamewin95" or missing value
[  246.472325][ T7080] netlink: 332 bytes leftover after parsing attributes in process `syz.2.309'.
[  246.482292][ T7080] netlink: 'syz.2.309': attribute type 9 has an invalid length.
[  246.490212][ T7080] netlink: 160 bytes leftover after parsing attributes in process `syz.2.309'.
[  247.548676][ T7076] loop1: detected capacity change from 0 to 40427
[  247.576298][ T7076] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  247.584096][ T7076] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  247.643268][ T7076] F2FS-fs (loop1): invalid crc value
[  247.668670][ T7076] F2FS-fs (loop1): Found nat_bits in checkpoint
[  247.943683][ T7076] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  247.951048][ T7076] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  248.829729][ T7095] netlink: 12 bytes leftover after parsing attributes in process `syz.0.311'.
[  248.845339][ T7095] IPv6: NLM_F_CREATE should be specified when creating new route
[  249.117168][ T5772] syz-executor: attempt to access beyond end of device
[  249.117168][ T5772] loop1: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  249.483015][ T5772] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  250.571208][ T7100] loop2: detected capacity change from 0 to 4096
[  253.090521][ T7108] loop3: detected capacity change from 0 to 32768
[  253.350955][ T7126] loop2: detected capacity change from 0 to 40427
[  253.363209][ T7126] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  253.371171][ T7126] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  253.371320][ T5779] I/O error, dev loop3, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  253.446347][ T7126] F2FS-fs (loop2): invalid crc value
[  253.461372][ T7126] F2FS-fs (loop2): Found nat_bits in checkpoint
[  253.548962][ T7126] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  253.556362][ T7126] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  254.130279][ T5767] syz-executor: attempt to access beyond end of device
[  254.130279][ T5767] loop2: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  254.159103][ T5767] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  254.307028][ T7136] loop1: detected capacity change from 0 to 64
[  254.470511][ T7137] netlink: 24 bytes leftover after parsing attributes in process `syz.1.324'.
[  255.663950][ T7141] loop1: detected capacity change from 0 to 4096
[  256.141673][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  256.149039][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  257.085813][ T7139] loop3: detected capacity change from 0 to 32768
[  257.095274][ T7150] netlink: 12 bytes leftover after parsing attributes in process `syz.2.323'.
[  257.116306][ T7139] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.325 (7139)
[  257.139543][ T7150] IPv6: NLM_F_CREATE should be specified when creating new route
[  257.189076][ T7139] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  257.215590][ T7139] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  257.237089][ T7139] BTRFS info (device loop3): using free space tree
[  258.465364][ T7139] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  258.476246][ T7173] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  258.654565][ T7139] BTRFS error (device loop3): open_ctree failed: -12
[  259.765642][ T5779] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by udevd (5779)
[  260.406704][ T7207] netlink: 12 bytes leftover after parsing attributes in process `syz.0.342'.
[  260.418190][ T5759] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  261.804368][ T5759] usb 2-1: Using ep0 maxpacket: 16
[  261.813293][ T5759] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  261.836367][ T5759] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  261.872615][ T5759] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  261.945073][ T5759] usb 2-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00
[  262.000935][ T5759] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  262.027776][ T5759] usb 2-1: config 0 descriptor??
[  262.087619][ T5759] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input5
[  262.191468][ T5124] pxrc 2-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  262.247587][ T5124] pxrc 2-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  262.265430][ T5124] pxrc 2-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  262.294235][ T5759] usb 2-1: USB disconnect, device number 4
[  262.660557][ T5083] Bluetooth: Wrong link type (-22)
[  264.765030][ T7239] loop1: detected capacity change from 0 to 4096
[  264.791310][ T7239] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  264.857437][ T7239] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 4096)
[  264.929854][ T7243] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  265.876819][ T7252] netlink: 12 bytes leftover after parsing attributes in process `syz.2.354'.
[  268.041981][ T7264] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  268.992650][ T5083] Bluetooth: Wrong link type (-22)
[  272.052449][ T7284] netlink: 4 bytes leftover after parsing attributes in process `syz.2.362'.
[  272.151387][ T7286] netlink: set zone limit has 8 unknown bytes
[  272.780498][ T7290] netlink: 12 bytes leftover after parsing attributes in process `syz.3.365'.
[  272.793230][ T7290] IPv6: NLM_F_CREATE should be specified when creating new route
[  274.249847][ T5083] Bluetooth: Wrong link type (-22)
[  277.018376][ T7322] netlink: 1752 bytes leftover after parsing attributes in process `syz.3.374'.
[  277.068417][ T7324] loop1: detected capacity change from 0 to 512
[  277.261040][ T7324] EXT4-fs error (device loop1): ext4_xattr_inode_iget:436: comm syz.1.375: Parent and EA inode have the same ino 15
[  277.360182][ T7324] EXT4-fs (loop1): Remounting filesystem read-only
[  277.581890][ T7331] netlink: 12 bytes leftover after parsing attributes in process `syz.0.377'.
[  277.641473][ T7324] EXT4-fs warning (device loop1): ext4_evict_inode:255: couldn't mark inode dirty (err -5)
[  277.656348][ T7324] EXT4-fs (loop1): 1 orphan inode deleted
[  277.665674][ T7324] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  277.830427][ T5772] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  278.006789][ T7328] loop3: detected capacity change from 0 to 32768
[  278.235631][ T7328] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  278.246471][ T7328] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  278.255292][ T7328] BTRFS info (device loop3): using free space tree
[  279.387021][ T5083] Bluetooth: Wrong link type (-22)
[  279.629250][ T7328] BTRFS info (device loop3): enabling ssd optimizations
[  279.748051][ T7328] BTRFS info (device loop3): auto enabling async discard
[  280.398570][ T5780] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  280.468644][ T7369] netlink: 1752 bytes leftover after parsing attributes in process `syz.2.384'.
[  281.620014][ T7374] sp0: Synchronizing with TNC
[  282.326842][ T7389] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  283.370846][ T7397] netlink: 276 bytes leftover after parsing attributes in process `syz.2.392'.
[  283.380107][ T7397] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  286.032266][ T7399] loop2: detected capacity change from 0 to 32768
[  286.122796][ T7399] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.393 (7399)
[  286.270046][ T7399] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  286.361239][ T7399] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  286.429570][ T7408] loop3: detected capacity change from 0 to 8
[  286.578186][ T7399] BTRFS info (device loop2): using free space tree
[  287.244095][ T7425] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  288.110766][   T27] kauditd_printk_skb: 235 callbacks suppressed
[  288.110814][   T27] audit: type=1326 audit(1751341327.808:565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7428 comm="syz.1.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  289.690535][ T7433] loop3: detected capacity change from 0 to 2048
[  290.644477][   T27] audit: type=1326 audit(1751341327.838:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7428 comm="syz.1.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  290.694274][ T7399] BTRFS error (device loop2): open_ctree failed: -4
[  290.697800][ T7434] (unnamed net_device) (uninitialized): option resend_igmp: invalid value (2520)
[  290.714234][ T7434] (unnamed net_device) (uninitialized): option resend_igmp: allowed values 0 - 255
[  290.774323][ T7433] Alternate GPT is invalid, using primary GPT.
[  290.783199][ T7433]  loop3: p1 p2 p3
[  290.868794][   T27] audit: type=1326 audit(1751341327.838:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7428 comm="syz.1.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  291.115121][   T27] audit: type=1326 audit(1751341327.838:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7428 comm="syz.1.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  291.175669][   T27] audit: type=1326 audit(1751341327.838:569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7428 comm="syz.1.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  291.200379][   T27] audit: type=1326 audit(1751341327.838:570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7428 comm="syz.1.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  291.222812][   T27] audit: type=1326 audit(1751341327.838:571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7428 comm="syz.1.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  291.247998][   T27] audit: type=1326 audit(1751341327.848:572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7428 comm="syz.1.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  291.291326][   T27] audit: type=1326 audit(1751341327.848:573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7428 comm="syz.1.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  291.384471][   T27] audit: type=1326 audit(1751341327.848:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7428 comm="syz.1.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  291.719316][ T5909] udevd[5909]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[  291.954613][ T5902] udevd[5902]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  292.203203][ T5782] udevd[5782]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[  293.944434][ T7467] loop1: detected capacity change from 0 to 1024
[  294.034555][ T7467] hfsplus: bad catalog entry type
[  294.158593][ T1073] hfsplus: b-tree write err: -5, ino 4
[  294.257312][ T7445] loop2: detected capacity change from 0 to 32768
[  294.323205][ T7469] netlink: 48 bytes leftover after parsing attributes in process `syz.3.412'.
[  294.359818][ T7445] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[  294.616364][ T7445] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  294.765726][   T27] kauditd_printk_skb: 61 callbacks suppressed
[  294.765812][   T27] audit: type=1326 audit(1751341334.458:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7476 comm="syz.3.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  295.120836][   T27] audit: type=1326 audit(1751341334.458:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7476 comm="syz.3.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  297.136318][   T27] audit: type=1326 audit(1751341334.458:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7476 comm="syz.3.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  297.159633][   T27] audit: type=1326 audit(1751341334.458:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7476 comm="syz.3.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  297.236446][   T27] audit: type=1326 audit(1751341334.498:640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7476 comm="syz.3.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  297.273710][   T27] audit: type=1326 audit(1751341334.498:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7476 comm="syz.3.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  297.311072][ T5767] ocfs2: Unmounting device (7,2) on (node local)
[  297.336346][   T27] audit: type=1326 audit(1751341334.508:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7476 comm="syz.3.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  297.363323][   T27] audit: type=1326 audit(1751341334.508:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7476 comm="syz.3.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  297.392092][   T27] audit: type=1326 audit(1751341334.508:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7476 comm="syz.3.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  297.420273][   T27] audit: type=1326 audit(1751341334.508:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7476 comm="syz.3.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  298.891357][ T7490] mkiss: ax0: crc mode is auto.
[  300.096578][ T5083] Bluetooth: Wrong link type (-22)
[  300.201171][ T7480] loop2: detected capacity change from 0 to 32768
[  300.284217][ T7480] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  300.518531][ T7480] XFS (loop2): Ending clean mount
[  300.536460][   T27] kauditd_printk_skb: 61 callbacks suppressed
[  300.536477][   T27] audit: type=1326 audit(1751341340.228:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7512 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  300.601364][   T27] audit: type=1326 audit(1751341340.228:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7512 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  300.652885][   T27] audit: type=1326 audit(1751341340.228:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7512 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  300.726275][   T27] audit: type=1326 audit(1751341340.228:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7512 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  300.814626][ T5767] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  300.835052][   T27] audit: type=1326 audit(1751341340.228:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7512 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  301.588182][   T27] audit: type=1326 audit(1751341340.228:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7512 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  301.734893][   T27] audit: type=1326 audit(1751341340.228:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7512 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  301.758084][   T27] audit: type=1326 audit(1751341340.228:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7512 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  301.843343][   T27] audit: type=1326 audit(1751341340.228:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7512 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  301.964698][   T27] audit: type=1326 audit(1751341340.228:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7512 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  302.594927][ T5083] Bluetooth: Wrong link type (-22)
[  305.760544][   T27] kauditd_printk_skb: 83 callbacks suppressed
[  305.760583][   T27] audit: type=1326 audit(1751341343.748:800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7542 comm="syz.1.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  305.936234][ T7547] netlink: 12 bytes leftover after parsing attributes in process `syz.0.432'.
[  306.047969][ T7547] IPv6: NLM_F_CREATE should be specified when creating new route
[  306.132220][   T27] audit: type=1326 audit(1751341343.748:801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7542 comm="syz.1.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  306.395831][   T27] audit: type=1326 audit(1751341343.758:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7542 comm="syz.1.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  306.418519][   T27] audit: type=1326 audit(1751341343.758:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7542 comm="syz.1.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  306.441312][   T27] audit: type=1326 audit(1751341343.758:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7542 comm="syz.1.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  306.464181][   T27] audit: type=1326 audit(1751341343.758:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7542 comm="syz.1.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  306.487554][   T27] audit: type=1326 audit(1751341343.758:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7542 comm="syz.1.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  306.510700][   T27] audit: type=1326 audit(1751341343.758:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7542 comm="syz.1.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  306.533462][   T27] audit: type=1326 audit(1751341343.758:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7542 comm="syz.1.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  306.568561][   T27] audit: type=1326 audit(1751341343.758:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7542 comm="syz.1.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  307.755468][ T7563] loop3: detected capacity change from 0 to 8
[  308.597962][ T5083] Bluetooth: Wrong link type (-22)
[  308.642416][   T41] Bluetooth: hci4: Frame reassembly failed (-84)
[  309.045763][ T7579] netlink: 276 bytes leftover after parsing attributes in process `syz.2.444'.
[  309.055132][ T7579] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  310.696921][ T5769] Bluetooth: hci4: command 0x1003 tx timeout
[  310.754707][ T7588] netlink: 12 bytes leftover after parsing attributes in process `syz.2.447'.
[  310.767033][ T7588] IPv6: NLM_F_CREATE should be specified when creating new route
[  311.431769][ T5083] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  312.038037][ T7602] loop3: detected capacity change from 0 to 8
[  312.787269][ T5833] usb 3-1: new full-speed USB device number 3 using dummy_hcd
[  312.794988][ T5759] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  313.061304][ T5083] Bluetooth: Wrong link type (-22)
[  313.351471][ T5759] usb 2-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  313.362643][ T5833] usb 3-1: config 0 has an invalid interface number: 176 but max is 2
[  313.374915][ T5833] usb 3-1: config 0 has an invalid interface number: 36 but max is 2
[  313.385017][ T5759] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  313.400286][ T5833] usb 3-1: config 0 has no interface number 0
[  313.409187][ T5759] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  313.418662][ T5833] usb 3-1: config 0 has no interface number 1
[  313.429870][ T5833] usb 3-1: config 0 interface 36 altsetting 15 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  313.443323][ T5759] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  313.455752][ T5759] usb 2-1: config 0 descriptor??
[  313.463103][ T5833] usb 3-1: config 0 interface 36 has no altsetting 0
[  313.476359][ T7594] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  313.487637][ T5759] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  313.495752][ T5833] usb 3-1: New USB device found, idVendor=05c6, idProduct=9205, bcdDevice=29.ac
[  313.507459][ T5833] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  313.522106][ T5833] usb 3-1: config 0 descriptor??
[  313.826008][ T7614] netlink: 276 bytes leftover after parsing attributes in process `syz.0.455'.
[  313.835427][ T7614] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  314.209503][ T5833] qcserial 3-1:0.2: Qualcomm USB modem converter detected
[  314.689015][ T5833] usb 3-1: USB disconnect, device number 3
[  314.697224][ T5833] qcserial 3-1:0.2: device disconnected
[  314.810415][   T27] kauditd_printk_skb: 425 callbacks suppressed
[  314.810430][   T27] audit: type=1326 audit(1751341354.508:1235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7621 comm="syz.0.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  314.841485][   T27] audit: type=1326 audit(1751341354.508:1236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7621 comm="syz.0.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  314.876598][   T27] audit: type=1326 audit(1751341354.538:1237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7621 comm="syz.0.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  314.903958][   T27] audit: type=1326 audit(1751341354.538:1238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7621 comm="syz.0.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  314.929159][   T27] audit: type=1326 audit(1751341354.538:1239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7621 comm="syz.0.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  314.952230][   T27] audit: type=1326 audit(1751341354.538:1240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7621 comm="syz.0.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  314.984678][   T27] audit: type=1326 audit(1751341354.538:1241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7621 comm="syz.0.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  315.024029][   T27] audit: type=1326 audit(1751341354.568:1242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7621 comm="syz.0.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  315.047173][   T27] audit: type=1326 audit(1751341354.568:1243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7621 comm="syz.0.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  315.075204][   T27] audit: type=1326 audit(1751341354.568:1244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7621 comm="syz.0.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  315.140954][ T7626] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  315.158330][ T7626] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  315.591161][ T7630] loop2: detected capacity change from 0 to 1764
[  315.747666][ T7630] iso9660: Corrupted directory entry in block 2 of inode 1920
[  315.809593][ T7630] iso9660: Corrupted directory entry in block 2 of inode 1920
[  315.817928][ T7630] overlayfs: failed to resolve './file1': -2
[  315.989889][ T7630] iso9660: Corrupted directory entry in block 2 of inode 1920
[  316.676206][    T9] usb 2-1: USB disconnect, device number 5
[  316.866038][    C1] sched: RT throttling activated
[  317.022950][ T7633] mkiss: ax0: crc mode is auto.
[  320.759495][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  320.791199][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  321.198192][ T7639] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  323.511209][   T27] kauditd_printk_skb: 12 callbacks suppressed
[  323.511224][   T27] audit: type=1326 audit(1751341363.208:1257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7653 comm="syz.1.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  323.563996][   T27] audit: type=1326 audit(1751341363.258:1258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7653 comm="syz.1.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  323.815770][   T27] audit: type=1326 audit(1751341363.258:1259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7653 comm="syz.1.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  323.868460][   T27] audit: type=1326 audit(1751341363.258:1260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7653 comm="syz.1.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  323.895157][   T27] audit: type=1326 audit(1751341363.258:1261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7653 comm="syz.1.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  323.918162][   T27] audit: type=1326 audit(1751341363.258:1262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7653 comm="syz.1.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  323.942047][   T27] audit: type=1326 audit(1751341363.258:1263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7653 comm="syz.1.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  323.953622][ T7666] netlink: 284 bytes leftover after parsing attributes in process `syz.2.470'.
[  323.967610][   T27] audit: type=1326 audit(1751341363.298:1264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7653 comm="syz.1.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  323.990134][ T7666] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  324.116384][   T27] audit: type=1326 audit(1751341363.298:1265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7653 comm="syz.1.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  324.276556][   T27] audit: type=1326 audit(1751341363.298:1266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7653 comm="syz.1.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fe78e929 code=0x7ffc0000
[  324.674758][ T7673] mkiss: ax0: crc mode is auto.
[  329.028118][ T7685] loop2: detected capacity change from 0 to 256
[  329.287997][   T27] kauditd_printk_skb: 33 callbacks suppressed
[  329.288051][   T27] audit: type=1326 audit(1751341368.988:1300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.0.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  329.351742][   T27] audit: type=1326 audit(1751341368.988:1301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.0.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  329.382004][   T27] audit: type=1326 audit(1751341369.018:1302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.0.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  329.443471][   T27] audit: type=1326 audit(1751341369.018:1303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.0.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  329.533447][   T27] audit: type=1326 audit(1751341369.018:1304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.0.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  329.575290][   T27] audit: type=1326 audit(1751341369.018:1305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.0.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  329.688080][   T27] audit: type=1326 audit(1751341369.018:1306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.0.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  329.769309][   T27] audit: type=1326 audit(1751341369.018:1307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.0.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  329.928615][   T27] audit: type=1326 audit(1751341369.028:1308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.0.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  330.005492][   T27] audit: type=1326 audit(1751341369.028:1309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.0.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227978e929 code=0x7ffc0000
[  330.328173][ T7701] loop2: detected capacity change from 0 to 512
[  330.444868][ T7701] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.485: Failed to acquire dquot type 1
[  330.544595][ T7701] EXT4-fs (loop2): 1 truncate cleaned up
[  330.581973][ T7701] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  330.596363][ T7701] ext4 filesystem being mounted at /129/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  330.644244][ T7691] loop3: detected capacity change from 0 to 32768
[  330.922111][ T5767] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  332.710253][ T7724] mkiss: ax0: crc mode is auto.
[  332.945728][ T7725] loop3: detected capacity change from 0 to 256
[  337.236858][ T7743] netlink: 276 bytes leftover after parsing attributes in process `syz.2.496'.
[  337.245957][ T7743] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  338.305135][ T7755] loop3: detected capacity change from 0 to 256
[  338.837008][ T7755] FAT-fs (loop3): Directory bread(block 64) failed
[  338.870572][ T7755] FAT-fs (loop3): Directory bread(block 65) failed
[  338.878017][ T7755] FAT-fs (loop3): Directory bread(block 66) failed
[  338.904879][ T7755] FAT-fs (loop3): Directory bread(block 67) failed
[  338.940326][ T7755] FAT-fs (loop3): Directory bread(block 68) failed
[  338.951339][ T7755] FAT-fs (loop3): Directory bread(block 69) failed
[  338.961387][ T7755] FAT-fs (loop3): Directory bread(block 70) failed
[  338.973087][ T7755] FAT-fs (loop3): Directory bread(block 71) failed
[  338.981614][ T7755] FAT-fs (loop3): Directory bread(block 72) failed
[  338.992638][ T7755] FAT-fs (loop3): Directory bread(block 73) failed
[  339.117282][ T7759] loop2: detected capacity change from 0 to 512
[  339.541899][ T7759] EXT4-fs (loop2): Test dummy encryption mode enabled
[  339.592129][ T7759] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[  339.618958][ T7759] EXT4-fs (loop2): Errors on filesystem, clearing orphan list.
[  339.642837][ T7759] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  339.978280][ T7759] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  340.124645][ T5767] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  340.857181][ T7781] netlink: 276 bytes leftover after parsing attributes in process `syz.2.507'.
[  340.866370][ T7781] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  344.017898][   T27] kauditd_printk_skb: 89 callbacks suppressed
[  344.017913][   T27] audit: type=1326 audit(1751341383.718:1397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7796 comm="syz.2.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bbd18e929 code=0x7ffc0000
[  344.036168][ T5859] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  344.193967][   T27] audit: type=1326 audit(1751341383.718:1398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7796 comm="syz.2.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bbd18e929 code=0x7ffc0000
[  344.278875][   T27] audit: type=1326 audit(1751341383.748:1399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7796 comm="syz.2.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f2bbd18e929 code=0x7ffc0000
[  344.302135][    C0] vkms_vblank_simulate: vblank timer overrun
[  344.309294][   T27] audit: type=1326 audit(1751341383.748:1400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7796 comm="syz.2.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bbd18e929 code=0x7ffc0000
[  344.331640][    C0] vkms_vblank_simulate: vblank timer overrun
[  344.345609][   T27] audit: type=1326 audit(1751341383.758:1401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7796 comm="syz.2.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bbd18e929 code=0x7ffc0000
[  344.363807][ T5859] usb 2-1: Using ep0 maxpacket: 32
[  344.367998][    C0] vkms_vblank_simulate: vblank timer overrun
[  344.400778][   T27] audit: type=1326 audit(1751341383.778:1402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7796 comm="syz.2.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bbd18e929 code=0x7ffc0000
[  344.428730][   T27] audit: type=1326 audit(1751341383.778:1403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7796 comm="syz.2.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2bbd18e929 code=0x7ffc0000
[  344.438812][ T5859] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  344.451364][    C0] vkms_vblank_simulate: vblank timer overrun
[  344.491040][   T27] audit: type=1326 audit(1751341383.778:1404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7796 comm="syz.2.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bbd18e929 code=0x7ffc0000
[  344.524066][   T27] audit: type=1326 audit(1751341383.778:1405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7796 comm="syz.2.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bbd18e929 code=0x7ffc0000
[  344.537654][ T5859] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  344.560088][   T27] audit: type=1326 audit(1751341383.778:1406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7796 comm="syz.2.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bbd18e929 code=0x7ffc0000
[  344.582392][    C0] vkms_vblank_simulate: vblank timer overrun
[  344.586095][ T5859] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  344.641833][ T5859] usb 2-1: config 0 descriptor??
[  344.657708][ T5859] hub 2-1:0.0: bad descriptor, ignoring hub
[  344.663731][ T5859] hub: probe of 2-1:0.0 failed with error -5
[  344.685652][ T5859] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  345.121691][ T7807] loop3: detected capacity change from 0 to 2048
[  345.156412][ T7807] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  345.179117][ T7808] loop2: detected capacity change from 0 to 8
[  347.550801][    T9] usb 2-1: USB disconnect, device number 6
[  348.871102][ T7831] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  349.555336][ T7833] netlink: 1752 bytes leftover after parsing attributes in process `syz.2.524'.
[  351.277839][ T7855] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  351.406191][   T54] usb 3-1: new full-speed USB device number 4 using dummy_hcd
[  352.218112][   T54] usb 3-1: config 0 has an invalid interface number: 176 but max is 2
[  352.237976][   T54] usb 3-1: config 0 has an invalid interface number: 36 but max is 2
[  352.261004][   T27] kauditd_printk_skb: 66 callbacks suppressed
[  352.261018][   T27] audit: type=1326 audit(1751341391.948:1473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7859 comm="syz.3.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  352.310730][   T54] usb 3-1: config 0 has no interface number 0
[  352.342648][   T54] usb 3-1: config 0 has no interface number 1
[  352.362852][   T27] audit: type=1326 audit(1751341391.948:1474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7859 comm="syz.3.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  352.369603][   T54] usb 3-1: config 0 interface 36 altsetting 15 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  352.392729][   T27] audit: type=1326 audit(1751341391.948:1475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7859 comm="syz.3.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  352.446588][   T27] audit: type=1326 audit(1751341391.948:1476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7859 comm="syz.3.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  352.469770][   T54] usb 3-1: config 0 interface 36 has no altsetting 0
[  352.469820][   T54] usb 3-1: New USB device found, idVendor=05c6, idProduct=9205, bcdDevice=29.ac
[  352.469844][   T54] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  352.502230][   T54] usb 3-1: config 0 descriptor??
[  352.517005][ T7864] loop3: detected capacity change from 0 to 512
[  352.546151][   T27] audit: type=1326 audit(1751341391.958:1477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7859 comm="syz.3.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  352.594353][ T7864] Quota error (device loop3): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  352.613782][   T27] audit: type=1326 audit(1751341391.958:1478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7859 comm="syz.3.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  352.778272][ T7864] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  352.799611][ T7864] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.536: Failed to acquire dquot type 1
[  352.816519][   T27] audit: type=1326 audit(1751341391.958:1479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7859 comm="syz.3.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  352.883060][ T7864] EXT4-fs (loop3): 1 truncate cleaned up
[  352.916907][ T7864] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  352.920315][   T54] qcserial 3-1:0.2: Qualcomm USB modem converter detected
[  352.940857][   T27] audit: type=1326 audit(1751341391.958:1480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7859 comm="syz.3.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  352.983592][ T7864] ext4 filesystem being mounted at /124/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  353.038035][ T5759] usb 3-1: USB disconnect, device number 4
[  353.062054][ T5759] qcserial 3-1:0.2: device disconnected
[  354.137421][ T5780] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  354.310665][ T7881] loop2: detected capacity change from 0 to 256
[  354.366955][ T7881] FAT-fs (loop2): Directory bread(block 64) failed
[  354.385920][ T7881] FAT-fs (loop2): Directory bread(block 65) failed
[  354.409813][ T7881] FAT-fs (loop2): Directory bread(block 66) failed
[  354.424053][ T7881] FAT-fs (loop2): Directory bread(block 67) failed
[  354.437389][ T7881] FAT-fs (loop2): Directory bread(block 68) failed
[  354.444098][ T7881] FAT-fs (loop2): Directory bread(block 69) failed
[  354.455583][ T7881] FAT-fs (loop2): Directory bread(block 70) failed
[  354.501912][ T7881] FAT-fs (loop2): Directory bread(block 71) failed
[  354.513633][ T7881] FAT-fs (loop2): Directory bread(block 72) failed
[  354.525948][ T7881] FAT-fs (loop2): Directory bread(block 73) failed
[  354.646114][ T7887] loop3: detected capacity change from 0 to 2048
[  354.696266][ T7888] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  355.227865][ T7893] overlayfs: missing 'lowerdir'
[  356.325180][ T7901] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  357.046391][ T5083] Bluetooth: Wrong link type (-22)
[  357.051777][ T5083] Bluetooth: hci1: link tx timeout
[  357.057499][ T5083] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[  357.494574][ T7911] loop1: detected capacity change from 0 to 512
[  357.598301][ T7911] EXT4-fs (loop1): Test dummy encryption mode enabled
[  357.618334][ T7910] loop2: detected capacity change from 0 to 4096
[  357.635442][ T7911] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[  357.644079][ T7910] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  357.669861][ T7911] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[  357.786311][ T7910] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 4096)
[  357.797902][ T7911] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  357.880848][ T7918] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  358.220936][ T7906] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  358.562387][ T5772] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  359.111478][ T5083] Bluetooth: hci1: command 0x0406 tx timeout
[  359.322881][   T27] kauditd_printk_skb: 36 callbacks suppressed
[  359.322896][   T27] audit: type=1326 audit(1751341399.018:1517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7927 comm="syz.3.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  359.636231][   T27] audit: type=1326 audit(1751341399.058:1518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7927 comm="syz.3.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  359.680978][   T27] audit: type=1326 audit(1751341399.068:1519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7927 comm="syz.3.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  359.703407][    C0] vkms_vblank_simulate: vblank timer overrun
[  359.715054][   T27] audit: type=1326 audit(1751341399.068:1520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7927 comm="syz.3.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  359.737382][    C0] vkms_vblank_simulate: vblank timer overrun
[  359.786229][   T27] audit: type=1326 audit(1751341399.068:1521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7927 comm="syz.3.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  359.808527][    C0] vkms_vblank_simulate: vblank timer overrun
[  359.828483][   T27] audit: type=1326 audit(1751341399.068:1522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7927 comm="syz.3.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  359.912485][   T27] audit: type=1326 audit(1751341399.068:1523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7927 comm="syz.3.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  359.965640][   T27] audit: type=1326 audit(1751341399.068:1524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7927 comm="syz.3.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  359.987986][    C0] vkms_vblank_simulate: vblank timer overrun
[  360.033145][   T27] audit: type=1326 audit(1751341399.068:1525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7927 comm="syz.3.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  360.055836][    C0] vkms_vblank_simulate: vblank timer overrun
[  360.106126][   T27] audit: type=1326 audit(1751341399.068:1526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7927 comm="syz.3.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe807d8e929 code=0x7ffc0000
[  360.803680][ T7937] loop3: detected capacity change from 0 to 32768
[  360.837105][ T7937] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 scanned by syz.3.556 (7937)
[  361.108449][ T7937] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  361.621494][ T7937] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm
[  361.625389][ T7943] loop2: detected capacity change from 0 to 40427
[  361.656538][ T7937] BTRFS info (device loop3): force zlib compression, level 3
[  361.664118][ T7937] BTRFS info (device loop3): force clearing of disk cache
[  361.671441][ T7937] BTRFS info (device loop3): setting nodatasum
[  361.686219][ T7937] BTRFS info (device loop3): allowing degraded mounts
[  361.693682][ T7937] BTRFS info (device loop3): enabling disk space caching
[  361.704680][ T7937] BTRFS info (device loop3): disk space caching is enabled
[  361.767434][ T7943] F2FS-fs (loop2): Found nat_bits in checkpoint
[  361.836822][ T7943] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  361.917222][ T5769] Bluetooth: Wrong link type (-22)
[  361.924152][ T5769] Bluetooth: hci2: link tx timeout
[  361.931058][ T5769] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa
[  362.079242][ T5767] syz-executor: attempt to access beyond end of device
[  362.079242][ T5767] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  362.105444][ T5767] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  362.140655][ T7937] BTRFS info (device loop3): auto enabling async discard
[  362.174097][ T7937] BTRFS info (device loop3): rebuilding free space tree
[  362.323045][ T7937] BTRFS info (device loop3): disabling free space tree
[  362.346653][ T7937] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  362.376257][ T7937] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  362.516127][ T5859] usb 2-1: new full-speed USB device number 7 using dummy_hcd
[  362.575531][ T7937] BTRFS info (device loop3): balance: start -susage=34359738372,drange=7..526332,limit=0..6
[  362.662826][ T7970] ------------[ cut here ]------------
[  362.669033][ T7970] BTRFS: Transaction aborted (error -28)
[  362.704815][ T7970] WARNING: CPU: 0 PID: 7970 at fs/btrfs/block-group.c:3924 btrfs_chunk_alloc+0xe42/0xfe0
[  362.714918][ T7970] Modules linked in:
[  362.719500][ T7970] CPU: 0 PID: 7970 Comm: syz.3.556 Not tainted 6.6.95-syzkaller #0
[  362.728139][ T5859] usb 2-1: config 0 has an invalid interface number: 176 but max is 2
[  362.728165][ T5859] usb 2-1: config 0 has an invalid interface number: 36 but max is 2
[  362.736778][ T7970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  362.755492][ T7970] RIP: 0010:btrfs_chunk_alloc+0xe42/0xfe0
[  362.761631][ T7970] Code: c7 80 fd ee 8a 89 ee e8 5c 72 b7 fd 0f 0b 4c 89 fb e9 2f fe ff ff e8 dd 0d ed fd 48 c7 c7 80 fd ee 8a 44 89 f6 e8 3e 72 b7 fd <0f> 0b 4c 89 fb e9 7c fe ff ff e8 bf 0d ed fd 48 c7 c7 80 fd ee 8a
[  362.781751][ T7970] RSP: 0018:ffffc9000ba8ee90 EFLAGS: 00010246
[  362.788250][ T7970] RAX: a0b255da5d70a800 RBX: ffff88807dafc001 RCX: 0000000000080000
[  362.796199][ T5859] usb 2-1: config 0 has no interface number 0
[  362.796574][ T7970] RDX: ffffc9000d66e000 RSI: 000000000002dbba RDI: 000000000002dbbb
[  362.810822][ T7970] RBP: 0000000000000000 R08: ffff8880b8f28c13 R09: 1ffff110171e5182
[  362.816078][ T5859] usb 2-1: config 0 has no interface number 1
[  362.819481][ T7970] R10: dffffc0000000000 R11: ffffed10171e5183 R12: ffff88805f4ad000
[  362.819507][ T7970] R13: dffffc0000000000 R14: ffffffffffffffe4 R15: ffff888060d78000
[  362.819527][ T7970] FS:  00007fe808b266c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  362.819550][ T7970] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  362.819567][ T7970] CR2: 00007f22799b7bac CR3: 000000002f5ae000 CR4: 00000000003506f0
[  362.819589][ T7970] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  362.819604][ T7970] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  362.819620][ T7970] Call Trace:
[  362.819631][ T7970]  <TASK>
[  362.819668][ T7970]  find_free_extent+0x4b82/0x56f0
[  362.819763][ T7970]  ? unwind_get_return_address+0x91/0xc0
[  362.819824][ T7970]  btrfs_reserve_extent+0x2fb/0x660
[  362.819878][ T7970]  ? btrfs_free_extent+0x470/0x470
[  362.819936][ T7970]  ? do_raw_spin_unlock+0x121/0x230
[  362.819974][ T7970]  ? btrfs_use_block_rsv+0x2fc/0x7f0
[  362.820003][ T7970]  btrfs_alloc_tree_block+0x1ec/0x1310
[  362.866389][ T5859] usb 2-1: config 0 interface 36 altsetting 15 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  362.866424][ T5859] usb 2-1: config 0 interface 36 has no altsetting 0
[  362.866461][ T5859] usb 2-1: New USB device found, idVendor=05c6, idProduct=9205, bcdDevice=29.ac
[  362.866484][ T5859] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  362.898547][ T5859] usb 2-1: config 0 descriptor??
[  362.899883][ T7970]  ? alloc_reserved_file_extent+0x580/0x580
[  362.975425][ T7970]  ? read_extent_buffer+0x140/0x2e0
[  362.980792][ T7970]  ? __asan_memcpy+0x40/0x70
[  362.985476][ T7970]  btrfs_force_cow_block+0x433/0x1b80
[  362.991020][ T7970]  ? btrfs_qgroup_trace_subtree_after_cow+0x1a6/0x1130
[  362.998179][ T7970]  ? btrfs_block_can_be_shared+0x350/0x350
[  363.004080][ T7970]  ? down_write_nested+0x169/0x1f0
[  363.009458][ T7970]  btrfs_cow_block+0x3cb/0x7e0
[  363.014341][ T7970]  btrfs_search_slot+0xb43/0x27e0
[  363.019827][ T7970]  ? btrfs_find_item+0x4d0/0x4d0
[  363.025386][ T7970]  btrfs_lookup_xattr+0xf1/0x1c0
[  363.030616][ T7970]  ? btrfs_match_dir_item_name+0x1f0/0x1f0
[  363.036585][ T7970]  ? rcu_is_watching+0x15/0xb0
[  363.041437][ T7970]  ? kmem_cache_alloc+0x14d/0x2e0
[  363.046604][ T7970]  ? btrfs_setxattr+0xf0/0x7d0
[  363.051451][ T7970]  btrfs_setxattr+0x256/0x7d0
[  363.056279][ T7970]  btrfs_setxattr_trans+0x107/0x2b0
[  363.061560][ T7970]  __btrfs_set_acl+0x22d/0x300
[  363.066499][ T7970]  btrfs_set_acl+0x132/0x1f0
[  363.071179][ T7970]  ? __btrfs_set_acl+0x300/0x300
[  363.076297][ T7970]  ? down_write+0x162/0x1f0
[  363.080886][ T7970]  ? evm_revalidate_status+0x4f/0xb0
[  363.086331][ T7970]  ? ima_inode_set_acl+0x81/0x180
[  363.091529][ T7970]  ? make_vfsuid+0x51/0xb0
[  363.096161][ T7970]  ? inode_owner_or_capable+0xf0/0x1c0
[  363.101714][ T7970]  vfs_set_acl+0x803/0xa60
[  363.106395][ T7970]  path_setxattr+0x39f/0x550
[  363.111063][ T7970]  ? simple_xattrs_free+0x150/0x150
[  363.113391][ T5859] qcserial 2-1:0.2: Qualcomm USB modem converter detected
[  363.116423][ T7970]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  363.116464][ T7970]  ? lock_chain_count+0x20/0x20
[  363.116502][ T7970]  __x64_sys_lsetxattr+0xb8/0xd0
[  363.116544][ T7970]  do_syscall_64+0x55/0xb0
[  363.116578][ T7970]  ? clear_bhb_loop+0x40/0x90
[  363.116600][ T7970]  ? clear_bhb_loop+0x40/0x90
[  363.116626][ T7970]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  363.116663][ T7970] RIP: 0033:0x7fe807d8e929
[  363.116686][ T7970] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  363.116708][ T7970] RSP: 002b:00007fe808b26038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  363.116747][ T7970] RAX: ffffffffffffffda RBX: 00007fe807fb6080 RCX: 00007fe807d8e929
[  363.116766][ T7970] RDX: 0000000000000000 RSI: 0000200000000840 RDI: 0000200000000800
[  363.116784][ T7970] RBP: 00007fe807e10b39 R08: 0000000000000000 R09: 0000000000000000
[  363.218005][ T7970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  363.226114][ T7970] R13: 0000000000000000 R14: 00007fe807fb6080 R15: 00007ffd23debfb8
[  363.234706][ T7970]  </TASK>
[  363.238085][ T7970] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  363.245436][ T7970] CPU: 0 PID: 7970 Comm: syz.3.556 Not tainted 6.6.95-syzkaller #0
[  363.253434][ T7970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  363.263535][ T7970] Call Trace:
[  363.266840][ T7970]  <TASK>
[  363.269794][ T7970]  dump_stack_lvl+0x16c/0x230
[  363.274518][ T7970]  ? show_regs_print_info+0x20/0x20
[  363.279755][ T7970]  ? load_image+0x3b0/0x3b0
[  363.284302][ T7970]  panic+0x2c0/0x710
[  363.288229][ T7970]  ? bpf_jit_dump+0xd0/0xd0
[  363.292777][ T7970]  __warn+0x2e0/0x470
[  363.296786][ T7970]  ? btrfs_chunk_alloc+0xe42/0xfe0
[  363.301930][ T7970]  ? btrfs_chunk_alloc+0xe42/0xfe0
[  363.307064][ T7970]  report_bug+0x2be/0x4f0
[  363.311426][ T7970]  ? btrfs_chunk_alloc+0xe42/0xfe0
[  363.316567][ T7970]  ? btrfs_chunk_alloc+0xe42/0xfe0
[  363.321718][ T7970]  ? btrfs_chunk_alloc+0xe44/0xfe0
[  363.326861][ T7970]  handle_bug+0xcf/0x120
[  363.331191][ T7970]  exc_invalid_op+0x1a/0x50
[  363.335734][ T7970]  asm_exc_invalid_op+0x1a/0x20
[  363.340623][ T7970] RIP: 0010:btrfs_chunk_alloc+0xe42/0xfe0
[  363.346395][ T7970] Code: c7 80 fd ee 8a 89 ee e8 5c 72 b7 fd 0f 0b 4c 89 fb e9 2f fe ff ff e8 dd 0d ed fd 48 c7 c7 80 fd ee 8a 44 89 f6 e8 3e 72 b7 fd <0f> 0b 4c 89 fb e9 7c fe ff ff e8 bf 0d ed fd 48 c7 c7 80 fd ee 8a
[  363.366115][ T7970] RSP: 0018:ffffc9000ba8ee90 EFLAGS: 00010246
[  363.372211][ T7970] RAX: a0b255da5d70a800 RBX: ffff88807dafc001 RCX: 0000000000080000
[  363.380205][ T7970] RDX: ffffc9000d66e000 RSI: 000000000002dbba RDI: 000000000002dbbb
[  363.388263][ T7970] RBP: 0000000000000000 R08: ffff8880b8f28c13 R09: 1ffff110171e5182
[  363.396278][ T7970] R10: dffffc0000000000 R11: ffffed10171e5183 R12: ffff88805f4ad000
[  363.404801][ T7970] R13: dffffc0000000000 R14: ffffffffffffffe4 R15: ffff888060d78000
[  363.412834][ T7970]  find_free_extent+0x4b82/0x56f0
[  363.417944][ T7970]  ? unwind_get_return_address+0x91/0xc0
[  363.423623][ T7970]  btrfs_reserve_extent+0x2fb/0x660
[  363.429039][ T7970]  ? btrfs_free_extent+0x470/0x470
[  363.434202][ T7970]  ? do_raw_spin_unlock+0x121/0x230
[  363.439457][ T7970]  ? btrfs_use_block_rsv+0x2fc/0x7f0
[  363.444772][ T7970]  btrfs_alloc_tree_block+0x1ec/0x1310
[  363.450283][ T7970]  ? alloc_reserved_file_extent+0x580/0x580
[  363.456313][ T7970]  ? read_extent_buffer+0x140/0x2e0
[  363.461623][ T7970]  ? __asan_memcpy+0x40/0x70
[  363.466342][ T7970]  btrfs_force_cow_block+0x433/0x1b80
[  363.471752][ T7970]  ? btrfs_qgroup_trace_subtree_after_cow+0x1a6/0x1130
[  363.478641][ T7970]  ? btrfs_block_can_be_shared+0x350/0x350
[  363.484567][ T7970]  ? down_write_nested+0x169/0x1f0
[  363.489719][ T7970]  btrfs_cow_block+0x3cb/0x7e0
[  363.494535][ T7970]  btrfs_search_slot+0xb43/0x27e0
[  363.499624][ T7970]  ? btrfs_find_item+0x4d0/0x4d0
[  363.504611][ T7970]  btrfs_lookup_xattr+0xf1/0x1c0
[  363.509958][ T7970]  ? btrfs_match_dir_item_name+0x1f0/0x1f0
[  363.515814][ T7970]  ? rcu_is_watching+0x15/0xb0
[  363.520705][ T7970]  ? kmem_cache_alloc+0x14d/0x2e0
[  363.525904][ T7970]  ? btrfs_setxattr+0xf0/0x7d0
[  363.530746][ T7970]  btrfs_setxattr+0x256/0x7d0
[  363.535575][ T7970]  btrfs_setxattr_trans+0x107/0x2b0
[  363.540846][ T7970]  __btrfs_set_acl+0x22d/0x300
[  363.545684][ T7970]  btrfs_set_acl+0x132/0x1f0
[  363.550326][ T7970]  ? __btrfs_set_acl+0x300/0x300
[  363.555298][ T7970]  ? down_write+0x162/0x1f0
[  363.559843][ T7970]  ? evm_revalidate_status+0x4f/0xb0
[  363.565159][ T7970]  ? ima_inode_set_acl+0x81/0x180
[  363.570226][ T7970]  ? make_vfsuid+0x51/0xb0
[  363.574770][ T7970]  ? inode_owner_or_capable+0xf0/0x1c0
[  363.580273][ T7970]  vfs_set_acl+0x803/0xa60
[  363.584724][ T7970]  path_setxattr+0x39f/0x550
[  363.589357][ T7970]  ? simple_xattrs_free+0x150/0x150
[  363.594609][ T7970]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  363.600629][ T7970]  ? lock_chain_count+0x20/0x20
[  363.605524][ T7970]  __x64_sys_lsetxattr+0xb8/0xd0
[  363.610505][ T7970]  do_syscall_64+0x55/0xb0
[  363.614956][ T7970]  ? clear_bhb_loop+0x40/0x90
[  363.619687][ T7970]  ? clear_bhb_loop+0x40/0x90
[  363.624523][ T7970]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  363.630457][ T7970] RIP: 0033:0x7fe807d8e929
[  363.634899][ T7970] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  363.654577][ T7970] RSP: 002b:00007fe808b26038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  363.663028][ T7970] RAX: ffffffffffffffda RBX: 00007fe807fb6080 RCX: 00007fe807d8e929
[  363.671032][ T7970] RDX: 0000000000000000 RSI: 0000200000000840 RDI: 0000200000000800
[  363.679114][ T7970] RBP: 00007fe807e10b39 R08: 0000000000000000 R09: 0000000000000000
[  363.687114][ T7970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  363.695105][ T7970] R13: 0000000000000000 R14: 00007fe807fb6080 R15: 00007ffd23debfb8
[  363.703129][ T7970]  </TASK>
[  363.706512][ T7970] Kernel Offset: disabled
[  363.710949][ T7970] Rebooting in 86400 seconds..