last executing test programs:

3m11.030880969s ago: executing program 0:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000011c0)={'vxcan0\x00', <r1=>0x0})
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f00000011c0)={'vxcan0\x00', <r3=>0x0})
bind$can_j1939(r2, 0x0, 0x0)
connect$can_j1939(r2, &(0x7f0000000080)={0x1d, r3}, 0x18)
writev(r2, &(0x7f0000000240)=[{&(0x7f0000000000)='h', 0xfdef}], 0x1)
connect$can_j1939(r0, &(0x7f0000000080)={0x1d, r1}, 0x18)
writev(r0, &(0x7f0000000240)=[{&(0x7f0000000000)='h', 0xfdef}], 0x1)

1m12.395294612s ago: executing program 0:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000011c0)={'vxcan0\x00', <r1=>0x0})
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f00000011c0)={'vxcan0\x00', <r3=>0x0})
bind$can_j1939(r2, 0x0, 0x0)
connect$can_j1939(r2, &(0x7f0000000080)={0x1d, r3}, 0x18)
writev(r2, &(0x7f0000000240)=[{&(0x7f0000000000)='h', 0xfdef}], 0x1)
connect$can_j1939(r0, &(0x7f0000000080)={0x1d, r1}, 0x18)
writev(r0, &(0x7f0000000240)=[{&(0x7f0000000000)='h', 0xfdef}], 0x1)

1m11.657115198s ago: executing program 0:
r0 = socket(0x3c, 0x2, 0x400)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000280)=0x5)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0}, './bus\x00'})
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000000)='source', &(0x7f0000000100)='c:::\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r3 = open(&(0x7f0000000280)='.\x00', 0x2402, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r4 = socket$inet(0x2, 0x802, 0x1)
connect$inet(r4, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
write(r4, &(0x7f0000000080)="08008edf773c8000", 0xfd)
recvfrom$l2tp(r4, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000300), 0xffffffffffffffff)
r5 = add_key$user(&(0x7f0000000380), &(0x7f0000000000), &(0x7f00000003c0)='X', 0x1, 0xfffffffffffffffe)
r6 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000100)={r5, r6, r6}, 0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={'crct10dif\x00\x00\x00 \x00\x00\x00+\xcc\xff%\xd2cTH,\x00'}})
fcntl$notify(r3, 0x402, 0x8000003d)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r0, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000426bd7000fddbdf250500002100000000000000000800020006000100"], 0x24}, 0x1, 0x0, 0x0, 0x8000080}, 0x50)
fcntl$setsig(r3, 0xa, 0x21)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040))
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0xc3072, 0xffffffffffffffff, 0x0)
pread64(r0, 0x0, 0x0, 0x100008)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r2, 0x2, &(0x7f0000000040)='source', &(0x7f0000000080)='./bus\x00', r3)

55.148832429s ago: executing program 2:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000008c0)={&(0x7f0000000680)='ext4_discard_preallocations\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)

54.209137006s ago: executing program 2:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x3, 0x4, &(0x7f0000000000)=@framed={{}, [@func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffc}]}, &(0x7f0000000040)='syzkaller\x00'}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x8002, 0x0, 0x1}, 0x48)
close(r0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@bloom_filter={0x1e, 0x7, 0x8, 0x47, 0xc, r1, 0xffffffff, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x3, 0x3, 0xe}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x8, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000432e00000063012000000000009500000000000000"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$ITER_CREATE(0x21, &(0x7f0000000000)={r3}, 0x8)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r6}, 0x10)
r8 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r7}, 0x8)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000180)={0x5, <r9=>0x0}, 0x8)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r8, <r10=>0xffffffffffffffff}, &(0x7f00000004c0), &(0x7f0000000500)=r8}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000600)={{r8, <r11=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)='%ps    \x00'}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x2b, 0x58, &(0x7f0000002240)=""/88, 0x41000, 0x0, '\x00', 0x0, 0x8, 0xffffffffffffffff, 0x8, &(0x7f00000000c0)={0x2, 0x5}, 0x8, 0x10, &(0x7f0000000140)={0x2, 0xd, 0x13a7, 0x2}, 0x10, r9, r5, 0x1, &(0x7f0000000640)=[r10, r8, r11], &(0x7f0000000680)=[{0x5, 0x5, 0x10, 0x5}], 0x10, 0x1ff}, 0x90)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000300)={r11}, 0x4)
write$cgroup_int(r8, &(0x7f00000001c0), 0xfffffdef)
close(r8)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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"/997], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000100), 0x10}, 0x14)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000880)={r11, &(0x7f0000000780)="237a511316e42da4d6b2b6cde58612477ee0cf8e9df2337cbd731f9367698b80670908785c97701a8d6b086a055643bc608a8eb212c3a789ba03d00342a1168dce6d47a5c152b157f2650dca3a8b662ffa0878acbd317b2c8b79464a88b07fa5e1d552f459c9d7789ec0f4e18ed753bc30ac2c072feec67f121151fee5cc7d7a95415d2e06e1c114b1d3ea99e9f142878c698724cbc62947454c52986bdb3e10736400b54f968f1fdd94c343d8870711c2c31b97251b85164003c93c8c70b8b36f50e840b9ad263d60c810d0f91ce422e756efcd7d9db3e966e2e05ee69b13deb2712c337b545b6379ac8ea2"}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r12, 0x1f2f, 0xe, 0x0, &(0x7f0000000040)="fdfffd0700"/14, 0x0, 0x8, 0x0, 0x1ab, 0x0, &(0x7f0000000380)="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", &(0x7f0000000080)="bde7df240d4c99a0fb3469d03ad8ce2f5d08e69fba3e4ec87c0a1a0c2d5493858c95fd1352aec0fb545524a7b21a"}, 0x21)
bpf$PROG_LOAD(0x5, &(0x7f0000001fc0)={0x11, 0x29, &(0x7f0000002080)=ANY=[@ANYBLOB="1800000001800000000000000300000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000000000095000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000005000000850000000600000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b702000000000000850000008600000018120000", @ANYRES32=r10, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000030000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000008500000082000000bf91000000000000b7020000000000008500000085000000b70000000000000095000000000000009a39133a3607bb7f4a58997fece77ee62c4e840b8d747109b68d32c25786b0593243612f30e5ff33d99ddbfec9b0890524029c75d959c246f045840dcd22ec13c21c5a8a9d4aa0e1289e1c54d4e6cfa4140647c42baabe244e165e98c032a14843704a"], &(0x7f0000000b40)='syzkaller\x00', 0x0, 0x1000, &(0x7f0000000b80)=""/4096, 0x41000, 0x4, '\x00', 0x0, 0x27, r8, 0x8, &(0x7f0000001e80)={0x9, 0x4}, 0x8, 0x10, &(0x7f0000001ec0)={0x3, 0x7, 0x80, 0x100}, 0x10, r9, r12, 0x5, &(0x7f0000001f00)=[r11, 0xffffffffffffffff], &(0x7f0000001f40)=[{0x2, 0x3, 0xc, 0x9}, {0x2, 0x3, 0x10}, {0x2, 0x4, 0x7, 0x8}, {0x3, 0x1, 0x0, 0x3}, {0x1, 0x3, 0xe, 0xa}], 0x10, 0x5}, 0x90)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000180)={0x2, 0x4, 0x8, 0x1, 0x80, r4, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x48)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000300)={0x5, <r13=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0xd, 0x2d, &(0x7f0000000100)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x40}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@printk={@lld}, @cb_func, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x8ca}}, @map_val={0x18, 0x4, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x6}, @initr0={0x18, 0x0, 0x0, 0x0, 0x9b18, 0x0, 0x0, 0x0, 0x4}, @map_val={0x18, 0xa, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0xffff}, @map_val={0x18, 0xb, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x6}, @call={0x85, 0x0, 0x0, 0x4a}, @call={0x85, 0x0, 0x0, 0x4a}, @cb_func={0x18, 0x9, 0x4, 0x0, 0x1}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000280)='syzkaller\x00', 0x2d6ba56c, 0xef, &(0x7f00000003c0)=""/239, 0x0, 0x10, '\x00', 0x0, 0x1, r1, 0x8, 0x0, 0x0, 0x10, &(0x7f00000002c0)={0x5, 0x9, 0x0, 0x6}, 0x10, r13, 0xffffffffffffffff, 0x2, 0x0, &(0x7f0000000600)=[{0x4, 0x5, 0x0, 0xb}, {0x1, 0x3, 0x8, 0x1}], 0x10, 0x5}, 0x90)
r14 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x4, [@typedef={0x2}]}, {0x0, [0x0, 0x61]}}, 0x0, 0x28}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000000000000000000009500a500000000003e62782f6b62fe583a205a2a93679f78609d6ca7f05ba88e8460d0693a8e47c2857ff1c02f24ca929b6aec07a02b58cbd88131bb0d547c9bab43442e4535f88409162afd1ed8ff5a113677be48432632a733fb0c58fcdba24799f692860f292f268d00eac7dd739212a24e74fef584daca158d64b64536a0c21a0ab5a3e038038aaef7bd2ea0621eb7be6fc89005be16748d73f3a1887006e10ed1fb7d9eb609d12ae5bcfd530400e18f6ad05fe15db26a4951f34aa257313b453b"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xb, r14, 0x8, 0x0, 0x0, 0x14, 0x0, 0xff3d}, 0x80)

52.151600571s ago: executing program 2:
syz_mount_image$msdos(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x80c406, &(0x7f00000005c0)=ANY=[], 0xff, 0x2c6, &(0x7f0000000440)="$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")
syz_open_dev$tty1(0xc, 0x4, 0x1)
prlimit64(0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000000c0)={'ip6gre0\x00', &(0x7f00000009c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}, @loopback}})

50.765833311s ago: executing program 2:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000740)='cgroup2\x00', 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
getdents(r0, 0xfffffffffffffffd, 0x58)

49.583970244s ago: executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./mnt\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000))
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SFACILITIES(r0, 0x89e3, &(0x7f0000000880)={0x76, 0x0, 0xa, 0xc, 0xa5f})
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_submit(0x0, 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
pipe(&(0x7f0000000240)={<r2=>0xffffffffffffffff})
vmsplice(r2, &(0x7f0000000080)=[{&(0x7f0000000180)="1a", 0x1}], 0x1, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, 0x0)
r5 = openat$capi20(0xffffffffffffff9c, &(0x7f0000001f80), 0x0, 0x0)
ioctl$CAPI_MANUFACTURER_CMD(r5, 0xc0104320, 0x0)
ioctl$UI_DEV_DESTROY(r4, 0x5502)
socket$inet_udplite(0x2, 0x2, 0x88)
setuid(0x0)
syz_emit_vhci(0x0, 0x63)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x3)
mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='mnt/encrypted_dir\x00', 0x0)
r6 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r6, 0x800c6613, &(0x7f0000000540)=@v2={0x2, @aes256={0x7, 0x8}, 0x0, '\x00', @a})

47.423898093s ago: executing program 0:
syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f00000015c0)='./file0\x00', 0x0, &(0x7f0000001600), 0x0, 0x559e, &(0x7f0000005680)="$eJzs3X9sVeX9B/BzWwoN+C39jhUYfxAgBoMkyJYtjqB4MQa24eKlgsKcCEQlBivYRDcYqUWSZcaghU4EF5GQaDJjscM/FMywy7CMZfzY5hZjs4JSaZZsAzVrHDG69N77XO49l9tembNOXy/SnvPcz3me+9yT88d9X/qcGwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEAURUcSc9+d0f3i0ZE1X77/Hz+e+OjGn4zfvX/roVvu23T/gjMjbto5a1nf+mlN8zdsbDjS/PS+ObdGUSLdL5Htf9u136q/88bbvlsdBly+MLOtrS31lJmuJzON4QUP9vcr/FkRRVFVbIDK7PbV7E5FwQC53cbiAQf0Tuui6O7J8ya1dT01bklyYU/xS6df9VBPYKhkr6ue89dSMv27InZErp136SUKLtFM//gF96m8CADgY5mZSm9yb0ezb3Fz7eZ4PdZOxtotsXZ4h9CS37gYmXGHl5rnpHh9iOaZzESFESXnGatnz3+unYr3j7VjUeNjzLPw0GykqS41z7Wx+lDNEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCzZOzxo2tWtD2y575fdtQceff9OVc+8KWOw22LT4y8eunKHWum/HTWsr7105rmb9jYcKT56X1zbo2i2nS/RKZ74kTL5b9NjZ3fvXfcG427n6vpq8yOG7bD8g6OXg87s0ZH0cq8Sk8Y9q81UZQqLKSb0Y7iwl3pnW+HAgAAAJ8nX0n/rsi1M3GwqqCdSKfJRPpfkAmL77Quiu6ePG9SW9dT45YkF/Zc/HipEuMlLzherl17/ieRF4xD/I2Pd74eDm0sGmdg8RHjef7SMWPefmty/eSvT5v7xA3PjOru+r8nZ2xJ/bGu5oUrru+tf/a6ovxfO3D+D2dO/gcAAOA/If/HxxnYYPn/jqVTt7z+i2Grft3a8MTB+h1/bv3OMzsXneq54Ud9L09N3v7o1UX5f1LBUxbl/zDjkP8roovL/wAAAPBZ9t/O/8micQY2WP5vONM3+wcHX6vr+PucxXt+9dAVi8+e/tv8U7t3DV9zR8v6uoeuLMr/M8vL/8Pypx0e/F2Y8OrRUTSz/JMKAAAAFAj/737+o4WQ1zOfHMTz+rX/vKp5380ffPMbD97zpzff/s2xA7MnrdteN/PgyzfVf1j5ve3dRfk/WV7+r/p0Xi4AAABQhuePrpw773jPucfPvtB18vDu3pMznjyzrqnvdOslLatXbTr2WlH+T5WX/0cMzcsBAAAALuDeO59bsfnVl/oe2H/X2Ck9FVc1XpK4ZduOqU0TPuq8tPfy7VuL8v/y8vL/yOw2u/Ih06kz/BVC6+goqu7fWZspHIparskVAAAAgE9IyOlbP1ixbOzOsb3jj59+rObQG4dn/2Vt55yN13RXdW/uXNZ4WdH9AkJiL3X//3Cng7D+v+D+f0Xr//MKmbv+zXZjAAAAAL6Iitfzh9vjZ765oNT375e7/n9J3cQTiba33lv11XMHzo1ZsP/7129aV9/be8+El37/wz9M/6i6KP83l5f/K/O3n+T3/wEAAMBF+F/7/r+lReMMbLD7/zdV9DWsWrd3+uota7csTCw7UH3qwdV731+w5l9Tb36+qea6A0X5v6W8/B+2o/JfXkc4P5tGR9H4/p3s3QR/Hqa7OlZor8orZE58rMeNoUe20D4ir5C2Ntbja6OjaHL/TnOs8P+h0BIrnK3JFnbFCsdCIXs95Ap7YoWOcKVtq8lON154MRSyCyzawwqKUbklEbEe75Xq0V+4YI+u3JMDAAB8oYTwnM2yVYXNKB5l2xODHTBysAMqBjugcrADhsUOiB9Y6vFoeWEhPH575yMbNjVMSb7y8NzHfvbms40T9j1+WV3v5g9f2XbvxJ3TW6YW5f9d5eX/cCqGZzal1v9HYf1/9nsNc+v/l4dCbazQHgqp+B0DUuE5MmH34fActalsj7PjcwUAAAD4XAufC1QO8TwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/s3evcdJVd0JAj/d9INumqaNE9GMk3TUgGakaWwNw+AoaoxGRZpZddxkNBBoEGmE8FgFURtQZxziZ3ztrJnoCAoiu+qHGFeDwUhcxIw6iWLiA/Cxjq7r+h6VGM2E/XTfOkXVrS67EFDa+X7/6DpVv/O89eg69946FwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/xjuPfjlk4YunP0PHzace8nqqqmL/kfH6Mv+cNW3vvjUPy5b9G9h/i9GnLll3kEXHjd/wbR/6Vi++ogzQmjtKleWFC977oqvPtS613HP3jFw48wbb63fUpWpNxMP/Tr/lGfuXBxbfbF/CHeXhVCRDgypSwKVmft1sb5960LYI2wLZEu01SYl0g2HB2pCWBK2BbJVra4JoS4ncMqG+++7vDNxTU0IXwkhVKfbeKY6aaMmHRhUlQRq04HpFUngt1sT2cBPypMA7LD4Zsi+6Fe15mdo6L5ckddf5U7r2KcrPbw+MdFQPN/rR+3iTuWoSj/QukNPW0F17BIFb4+13m294N1WsJ2v8LTlfpHKfEPZui1UHcontk0aP6d9dnykPDQ19SlW0y56np9+e/6E7Un3mtdh7EDDTnkdXvrYiun9lo2+9OrNvxqz4ayaA3a0m0/lbNLc9K5WHTKvuV7zPEajfJ70grdfwbekRl+6Qghbzz17xtfnTDz7iD63PLnu1QcfrNty9pwFvzhz4nmLLj55w7/Pf6lg/t/w0fP/+HKOt+V5uWOrH9Ync/P4SF1MvFmfzM0BAACg1+gNe01Xnv/6X73+/bWtMxed/u23Dj73w71afz3i/gFVB7yxrqn1/I2ff6Vg/t9Y2vH/eMi/Lne0a0MY1ZVYNCCEvbseTwIrY3e+OyCEL3elWvMDR6UCa0PYpytxULaqVIm+sURjKvByfSYwKhVYHwOtqcDyGLgiFbg4BlalAhNiYG0qcHQMhCn54/hqfWYcJQdqYmBcshFXxbMQ3qmPraW21aZsVQAAADtJZnZYmX8351yHHc0Qp5eranrKEM/ALpqhOlVDegabnVYVraGipxrKe6ohO+6Ojx5+Qc1lPdVccBpGWX6GG9f85X2LXjzsC2P3mvj5xUMvmPKz8eGst++uerx5yYtv7XvEzesK5v/NHz3/r+6mI2UFx/9DGNv1N+Yuz0Tas/FxrXkZAAAAgB1w0R//xR61Lw85oGHT+2X3zl/7xKMrfrl5j1NOf3/c8a//8PCaxnsL5v+jSjv/P+4T6ZOTOTwSd0NMHRBCc34gqXZkYSA56t0vEwAAAIDeIHs8PnssfErmNjlFOz2fLszfup3544H/Ud3m//09/7P2jq3/+mLZBd89d0TNgKX/9GrHhBNOPvqW47/1zj4VB/yyvGD+31ra+f+1+bdJJ9bHXlw9IIS+OYEHYy87A10aY+D5I/MDmfGvjxtgcawqc2JCtqrFscS4GGhOBZYUK/FotsTe+YHMk5VtfFF2HFMyJXICAAAA8ImLuwPicfl4/n/LGSNO++vvzfrbha88eN7qCy75q+Ed80eedP/THzbMvXJp2PTmEQXz/3Hbd/5/1zy44PT+9n4hDK0IoU/6hwGP1CYLA8ZAXVkmcW9tUlefdFULa0MY2TmwdFUvZNb/r0ivMfh4TVJVDOy93y1vD+pMLKsJYWhu4IlvLz2sMzEnFcg2flpNCF/qHG268bv6Jo1Xphu/tm8IX8wJZKua0DeEzsaq0lX9r+rMdQzSVa2qDmHPnEC2quHVIcwNAPRW8X/pxNwHZ82dN3V8e3vbzF2YiDvxa8KkKe1tTROmt0+sLtKniak+561jtKBwTKVe+mZTZo2ixSsnV5aSzv5QsDm3rcyO/IIzBzP345ehyq5xHlKZd7clPeQD9y9sIuR8lSo25PJdPOTa3Eq2PYkF9cf8VaFf6DtnVtvMpvPGz549c1jyt9TshyR/43GmZFsNS2+r2u76VsLLo+hyWSkfd1sNyq1k6OxpM4bOmjtvyJRp4ye3TW47p+XQP2sZMXz410YM7RxUc/K3h5EO6q7m1Ei3Li1xWDtxpF+oyKnkk/jQkJCQ6G2J/f7L5odH77n+nOt/9tqPz+/3zdPu3fvImT889KqpD1Xve/ji24ccWDD/n/HR8//4qRM/+DPrMxQ7/t8QD/Mnj287zD8uBpaUevy/odjR/OyJAY2pQEcMdDjMDwAAwGdD3B0Z92bGndKbb1m/buOSlrk/aHin5dY17Utvuum+U39y58ATvjQ47LXhuhM+VzD/7yjt9/87af3/7NL1JxRb5v+gWKK52Pr/6WX+s+v/dxRb/z+9zH92/f8ln8L6/3OygdQmecf6/wAAwGfBJ7f+f4/L+6cvEFCQocfl/dMXCCjI0OMy/qVeIGC71/9f8+Bff6Wq35g7/qTlN/WXvPZ39xzWeuS6zTP/5Etb10+877qxt6wpmP9fUdr838L9AAAAsPv4z5ddU3H02Xff0bJu6sZxbw5+98m3lgzq80HF0Q+3j3xh4Bu3nlcw/19S2vz/k1//LxQ7/7+xWKC12MKA1v8DAACglyq2/t89Q1sa/zCm/x+eHvab5Q/ePPqnj/z898v3+/mJPyvfZ8Gxz8+8bFLB/H9VafP/eNpFeV7u2JsP65M17UJ6Tbs367M/GQAAAIDeoTw0NVWWmDdvYdSjPn6bT2eWAv2odK7vvXLt2ZtfmH7c46ev+7uaEwbvOWHaBasa/2b4gXd+ftQley7ddGrB/H9tafP/vN9lXPrYiun9lo2+9MOrN/9qzIazag7YdvwfAAAA2HVK3S8BAAAAAAAAAAAAAAB8+s7tWHzhI8uOfe+bt//F/kcseXXwbXcd+Lsh/V664qoHJq1648zJXy/4/X8Y21Wu2O//43X/4u8L/igvd2y15/X/MvdPOfH2uV1LFj5SH8L+uYGpC6fuETLX5h+cG7jvjIMGdiYWpkusefbolzoT30kHjh/yuS2dicNTgXFxkcR90oF4VcUt/VOBuLzi4+lA3B6r0oGqTOCy/sk4ytLb6pW6ZFuVpbfVxroQBuQEstvq7rqkjbL0AK9JBbID/F46EAd4ciZQnu7V7f2SXsVAXSx6Q7+kVwAA7Lbit8DKMGlKe1tz/Aofb79QkX8b5S1ZtqCw2rISm9+UWZps8crJlaWk+6S/i2671nhlqO4cwrCCr6u5Wcq6Rrlzaulh0/1RkSH3tNpbeZFyadu76aqKj6gmGVHThOntEyt7HHhLz1kOqegxy7CCyU5ulvKuTVpCLSX0pYQRlbhtSuhyvF8empr6pHL9eQw2hDw9vSJK/b1+7jp/xV4FuXluO/TKt758zE+f++CfP/9E/2+cVnP7rO+/e+KvX7//wEOOuG5C05otBfP/htLm/9W549qSuRhAR7yy3sgBIYwrcUQAAADw2XfbRbfecfr09a9MWlvx5GOPTS0fc3rl1vl3zp93ycZ7Fx9/2cErdjR+2Fm//f5vBu//b89e9dJPR+7zwA03/58nD3v8z3//8I8eeqduZZ+x7xXM/xtLm//HPViZQ8HJ3o618fr/iwaE0HVp/YYksDIO97sDQvhyV6o1lkguqH9CLNGcBFbGHSYHxRLjWvOr6hsDq1KBl+szgbWpwPoYyOyluCVkduVcWR/CYV2psfklZsQSDanAmBhoTAWaYqA5FegfA6NSgdf6ZwKtqcDDMRCm5G+rH/fPbCsAAIDtkZlnVebfDel53qqKnjKU9ZShtqcM5T1lqO4pQ7FRxPt3xAyVqZNXynIyVaZrrUnVUpAhXgx/u/tVkCE8mp8zXbCg6Xj+QfZ8g7L8DFf+4NlT1w+e/tDqzcd8beBt/zhkz4Obp9e9t+CGp3475pzrnv/TQQXz/+bS5v+1+bdJ6+vj/H/b9f+SwIOxe1fHU8cbY+D5I/MDmR0D6+Nkd3G2qtZMicykfXEsMSoGGlOBGTEwKhUYNzYTWDIwP5CZaWcbX5RtfEqmRE4AAAAAPnFxB0HcTRPn/zce9YOr3x8wccuyeTPvH9vyxMmjv3H1XT+6d/9ld767YvCAce99p2D+P6q0+X9sr19uYxfH3rzYP4S7y7b1JhsYUpcE4n6Muvjz+H3rQtgjZwdHtkRbbVKiKtVweKAm+YV6Vbqq1TXJGgPx/ikb7r/v8s7ENTUhfCVn70u2jWeqkzZq0oFBVUmgNh2YXpEE4p6fbOAn5UkAdlh2r2B8QWVOdclq6L5ckdffZ+WaoOnhFewD7SZfd7+52lWq0w9k9qlmbd/TVlAdu0TB22Otd1tvfLc1eLflfpHKfEPZui1UHcontk0aP6d9dnwk95esBXbR85z7K9VS0jvhddjx8Xvbs+p0B5pTHx/N3Zfr/nVYFqu79LEV0/stG33p1Zt/NWbDWTUHlNyNIuIPhX+05X9XPpWzeXe16pB5zfW6z5NWnye98d9Ao6cthHDZ9cfsu+TdX+/33A3Pnbqu7Maxr/7lrHs2Lf+bysNHrXv/yaGjLy+Y/7eWNv+vSN12+V3cmLMGhHBgzsZ9JG7+YwYkn4M5geRTcs/CQHLI/V/ri35yAgAAwM6W3d2R3V8wJXObnBCenicX5m/dzvxxf8WobvOX2u9j121cedLQN6474G8vOPGNv7/28Kceuv6ysnXL//vYD1avuXzxe08UzP/HffT8v2+qm47/O/7PLuL4f7d2913RfdMPdOzQruiC6tglHP/v1u7+bnP8v1uO/zv+3x3H/3vg+H+3dvenreBb0gxfujonwdff+fPfTbzpg7mN+x180lPPHDrxun+6quXuu0555b+de9601761uWD+P6O0+b/1/7pftC+7/t+4Yuv/zSi2/l+H9f8AAIBdqshCc+l5XsHqfQUZ0qv3FWTocYHAHpcYtP7fdq//t3Dkv1904Q+fb7n2nTvHXb5m07Fnvvr0utXPzFpx3Lnnv9V6112tBfP/jtLm//Hl0C+39d6y/l/j2CJVXREDMywMCAAAwO6o2A4CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPl2HnvbO+5d8/R/aBv1ixc1/f+v/+7/P1q594JvfuGn4L6f86RllazZcM+LMLfMOuvC4+Qum/UvH8tVHnBHClK5yZUnxsueu+OpDrXsd9+wdAzfOvPHW+i3VmXorM7d/nJc7tvphfQhLch6pi4k36zvvbAuccuLtcys6E4/Uh7B/bmDqwql7dCaW14cwODdw3xkHDexMLEyXWPPs0S91Jr6TDhw/5HNbOhOHZwJl6e5e1z/pblm6u5f3D2FATiDb3bP751eVbeO4TKA83caKuqSNGKiLRa+tS9qIgfZYYkrfEIZWhNAnXdU/VydV9UlXdU91UlWfdFUXVYcwMoRQka7quaqkqor0yB+tSqqKgb33u+XtQZ2JpVUhDM0NPPHtpYd1JmamAtnG/1NVCF/qfMmkG/9xZdJ4Zbrx/1oZwhdDCFXpEu9VJCWq0iVeqAhhz5zAto1YEcLcwGdD/PSZmPvgrLnzpo5vb2+buQsTVZm2asKkKe1tTROmt0+sTvWpmLKc9NYFH3/sm96eP6HzdvHKyZWlpCsy5Sq7unxIZd7dlt2997FftbmVbHs+CuqP+atCv9B3zqy2mU3njZ89e+aw5G+p2Q9J/vbJRJNtNay3bKtBuZUMnT1txtBZc+cNmTJt/OS2yW3ntBz6Zy0jhg//2oihnYNqTv7ujJEu/eRH+oWKnEo+ife/hIREb0uU5326Ne/un+MFX/S3dbQyVHd9QBdMK3KzlHWNcmcM+qiPOeKP8zWlxxENK5g4FGQ5pOcsLQWTiW1ZapIsXV/rCiaHuTWVd23SeL88NDX1KbYdGvLv5m7e13dg8z6d2XSlpgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+P/swIEAAAAAAJD/ayNUVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYQcOBAAAAACA/F8boaqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqgo7cCwAAAAAIMzfOoyeDQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4FAAA//8fSxmR")
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
userfaultfd(0x801)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000080)=@raw={'raw\x00', 0x3c1, 0x3, 0x298, 0x0, 0x4c, 0x1a, 0x160, 0x73, 0x288, 0x258, 0x258, 0x288, 0x258, 0x3, 0x0, {[{{@ipv6={@private0, @local, [], [], 'wg2\x00', 'macvlan1\x00'}, 0x0, 0xa8, 0xf0}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@remote, 'team_slave_1\x00'}}}, {{@uncond, 0x0, 0xa8, 0xd8}, @common=@inet=@SET2={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x2f8)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r2 = syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000004600)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000002280)={'syztnl1\x00', &(0x7f0000002200)={'ip6gre0\x00', <r3=>0x0, 0x4, 0x8, 0xf7, 0x4, 0x48, @private2={0xfc, 0x2, '\x00', 0x4}, @private0={0xfc, 0x0, '\x00', 0x1}, 0x1, 0x7800, 0xf6, 0x7ff}})
sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000004440)={&(0x7f0000002180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000022c0)={&(0x7f00000043c0)={0x70, 0x0, 0x20, 0x70bd2b, 0x25dfdbfb, {}, [@ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}]}, @ETHTOOL_A_STRSET_STRINGSETS={0x28, 0x2, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8}]}]}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}]}, 0x70}, 0x1, 0x0, 0x0, 0x800}, 0x4040000)
read$FUSE(r1, &(0x7f0000006340)={0x2020, 0x0, <r4=>0x0}, 0x2058)
write$FUSE_INIT(r1, &(0x7f0000004340)={0x50, 0x0, r4}, 0x50)
read$FUSE(r1, &(0x7f0000000100)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_IOCTL(r1, &(0x7f0000002140)={0x20, 0x0, r5}, 0x20)
read$FUSE(r1, &(0x7f0000002300)={0x2020, 0x0, <r6=>0x0}, 0x2020)
ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r2, 0x80089419, 0x0)
write$FUSE_LK(r1, &(0x7f00000021c0)={0x28, 0x0, r6}, 0x28)
write$binfmt_script(r0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0)
open(&(0x7f0000000100)='./bus\x00', 0x141042, 0x0)
write$FUSE_OPEN(0xffffffffffffffff, &(0x7f0000000200)={0x20}, 0x20)

42.306351121s ago: executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c00000000000000120000f1850000006d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000300)='hrtimer_expire_entry\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x0, 0x3, 0x0, &(0x7f00002bf000)='syzkaller\x00'}, 0x90)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="5c000000020601040000000000000000000000000500040000000000070001000600000016000300686173683a6e65742c706f72742c6e657400000005000500020000000c000780050015000f0000000900020073797a31"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_TEST(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)={0x38, 0xb, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0x10, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}]}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x38}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000780)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101008000005e1affd5020800000900010073797a300046000008000240000000032c000000030a01030003371cb6000010023400000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r5 = open(&(0x7f0000000000)='./bus\x00', 0x14113e, 0x0)
write$char_usb(r5, 0x0, 0x0)
accept4$tipc(r5, &(0x7f00000000c0)=@name, &(0x7f0000000500)=0x10, 0x80800)
sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000900)={{0x14}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}, @NFTA_CONNLIMIT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x80}}, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/mnt\x00')
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)

28.081075614s ago: executing program 4:
syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000640)={0x2c, &(0x7f00000000c0)={0x0, 0x0, 0x12, {0x12, 0x0, "072ba3f34be2d9e9ee78257b25cf1c15"}}, 0x0, 0x0, &(0x7f0000000100)={0x20, 0x29, 0xf, {0xf, 0x29, 0x0, 0x0, 0x0, 0x0, "5d0285a4", "8b71dfb3"}}, 0x0}, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043ef50d"], 0xf8)

26.470993094s ago: executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x0, 0x5, 0x9fd, 0x84, 0x1}, 0x48)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f0000000000)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x100000}}, {@user_xattr}, {@jqfmt_vfsv1}, {@grpid}, {@nobh}, {@usrjquota, 0x2e}], [], 0x2e}, 0x6, 0x46f, &(0x7f0000000580)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="140000001000010300000ae6f720ffa003"], 0x3c}}, 0x0)

21.540229681s ago: executing program 4:
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_pressure(r0, &(0x7f0000000040)='memory.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r1, &(0x7f0000000080)={'full', 0x20, 0x2000000005, 0x20, 0x10000000fffff}, 0x2f)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000380)=ANY=[], 0xfe6f)
close(r1)

20.229065969s ago: executing program 4:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000807b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='jbd2_checkpoint_stats\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='jbd2_checkpoint_stats\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x26e1, 0x0)
ioctl$TUNSETOFFLOAD(r3, 0x40086607, 0x20001412)

19.308011098s ago: executing program 2:
open(0x0, 0x0, 0x0)
syz_mount_image$hfs(&(0x7f0000000000), &(0x7f00000004c0)='./file0\x00', 0x0, &(0x7f0000001580)={[{@codepage={'codepage', 0x3d, 'iso8859-7'}}, {@iocharset={'iocharset', 0x3d, 'macromanian'}}, {@gid}]}, 0x7, 0x34f, &(0x7f00000007c0)="$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")
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
creat(&(0x7f00000000c0)='./bus\x00', 0x0)

18.893396607s ago: executing program 4:
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="043e060c06"], 0x9)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="1201fb0019030320d812010079de01ec020109021b0001000003000904000001"], 0x0)

17.291670429s ago: executing program 3:
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x14507e, 0x0)
r2 = eventfd2(0x800000, 0x0)
dup2(r2, r1)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f0000000000)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x0, 0x0, &(0x7f0000000500)=""/73, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000480))
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0xffffffff)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f00000000c0)={0x1, r2})
r3 = syz_io_uring_setup(0x2ddd, &(0x7f00000006c0)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_setup(0x5c2, &(0x7f0000000200), &(0x7f0000000300)=<r5=>0x0, &(0x7f0000000380))
syz_io_uring_submit(r5, r4, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4})
io_uring_enter(r3, 0x381b, 0x0, 0x0, 0x0, 0x0)

16.31104568s ago: executing program 3:
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000003c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10802, &(0x7f0000000800)=ANY=[], 0xc0, 0x27a, &(0x7f0000000540)="$eJzs3DFrE38cx/FP0/zbNKVNhr+CgvhFF12ONj4ACdKCGFBqI+ogXO1FQ85cyYVKRGw3FwcfR3F0E9Qn0MXN3a2L4FJQjCRNTdKmitr0onm/oHff5pdP8rvkEr53kNu6+fxBqRA6BbeqWMIUk9a1LaUbVctIax1r1mPqtK7zk5/en7p+6/aVbC43t2A2n128kDGz6dOvHz5+ceZtdfLGy+lX49pM39n6mPmweXzzxNbXxfvF0IqhlYOqubYUBFV3yfdsuRiWHLNrvueGnhXLoVfpGi/4wcpKzdzy8lRypeKFobnlmpW8mlUDq1Zq5t5zi2VzHMemksLP5DcWFtxs1LNA38Qbi0ol645Kmtg3nN+IYlIAACBanf2/Bq7/b3QtP+7/1+n//wD9/zBo9P/J1ue3G/0/AAAAAAAAAAAAAAAAAAAAAAB/g+16PVWv11O7692/cUkJSbv/Rz1P9Afv/3Dr+OFeQvKfruZX85I/0lg2ZAsqypenGaX0pbk/tOzU85dzczPWlNYbf62VX1vNj3bnZ5VSund+didv3fn/lOzMZ5TS/73zmZ75MZ0725F3lNK7uwrka7m5X7fzT2bNLl3N7clPNO8HAAAAAMC/wLHveh6/O85B4zv5Xzg/sOf4Oq6T8Wi3HQAAAACAYRHWHpVc3/cq0RSfWycLIp7GgBfHJP1W/GLHVV/bQ/F9txx28SwYlJduAIuEpEN9wAn1Y6oRfikBAAAA6It20x/1TAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGF5HccGzA546dsSbCgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAETuWwAAAP//AmwlzQ==")
chmod(&(0x7f0000000180)='./file0\x00', 0x0)

15.861786071s ago: executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000140)='./file1\x00', 0x1000801, &(0x7f0000000840)=ANY=[], 0x2, 0x1ea, &(0x7f00000003c0)="$eJzsmb2LE0EYxp+Z3eydhyg2FjYWHniit9ndqFxzxQmWgnCKWgZvPU73LpKskAQEg42NpYVga2NpYWFl4V9gq4UKgoUp7YSR+djdyWYT4gdG9P3BzT7z9c68L9yzsAFBEP8tHz98ff/w3NqlUwD2YxkLZvyzo5/i4Oj6d4/vnHy0fv7J87dPX+8duPuyHI/JPWL28z0ArzYcpGCuOXFk93IRNtO4DI4TRl8Bg6/lN6HQnRgM18yam5Zu7TMiif3rrWTrxk4SB7IJZRPJpmGfLy81HDBsAVhUtxOCWfOdXv9WM0nidlnURHbO2NSPimn1U/fb4FhHVj0hOICrD+4PZN/UBgF4Xr8QHKHRDTBsGr2GBfi+X5TEyv+IW8R3Zsl/vuKZEodW/9Sh4Locf0Pu/7Co/ZY4rDwi/6HzkcPDzAPtNZ/mnvvPC2VcAMam3iwlyYVfiOxVFCoXhT9JZz9u+ZMLN/ePerp7u97p9Vd3dpvb8Xa8F0WNs8HpIDgT1ZUR6XaK/y0qf1qy4tcmrPWYh24zTdthF0jbYd6PdGs57uaL1he1hyv/41g5pmMw887KX5QlmPnj6inVilO98t7EnAiCIAiCIAiCIAiCIAiCIKo5Cgb9S5hg5oNoFdFF9YXyewAAAP//L0Rm/Q==")
r0 = inotify_init()
inotify_add_watch(r0, 0x0, 0xfe)
open(&(0x7f0000000340)='./file1\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x1, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x22000406, &(0x7f00000005c0)={[{@data_err_abort}, {@abort}, {@noblock_validity}, {@noacl}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@noload}, {@noquota}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x85, 0x4b4, &(0x7f0000000c80)="$eJzs3M9vFFUcAPDvTH9QfrYg/uCHsorGRrSlBZWDBzWacDEx0QMea6kEKWBoTYQQKcbg0fgXqEcTE09ePGlijHrSeNW7MSGGC+jB1MzuDN3t/nC7bVlhP59ku+/NvrdvvjPzdt/M62wAPauUP2+JiF8jYjgikuUFSpWnG9cuTv917eJ0EouLr/yZlMtdv3Zxuiha1NucZ0bTiPT9JPY0aHfu/IVTU7OzM+fy/Pj86bfG585feOLk6akTMydmzkweOXL40MTTT00+uSZxZnFd3/3u2b27jr720UvTi/H6D58nedyxLI6KkVW3WYrSUEQsZpaWDpb/PrLqd/9/2VqVTvq7uCKsSF9EZLtroNz/h6MvlnbecLz43s3Mt11aQWDdZN9N2+uW9uXPaeXLC7hDJfo49KjiGz87/y0et3L80W1Xn8v+zpTjv5E/Kq/0R5qdy45Uztj7mtS/Z5Xtb4mIYwt/f5w9ouF1CACAtfV1Nv55vNH4L60Z22zL51BGIuJAROyIiLsiYmdE3J2Pg+6NiPtW2H5pWb5+/PPzxo4Ca1M2/nsmn9uqHf+leYnkZm5rOf6B5I2TszMH820yGgMbsvxEiza+eeGXD5u9Vqoa/2WPrP1iLJivxx/9G2rrHJ+an1pFyDWuXo7Y3d8o/uTmTEC2BXZFxO4O3j/bZicf+2xvlt62uf71+vizkXZ1/C2swTzT4qcRj1b2/0Isi7+QVFpqNj85PhSzMwfHi6Oi3o8/XXm5Oj9Qla6Jf6i9mIY6DbaBbP9vanj85/EX3aCYr51beRtXfvug6TlN/f5P4thCdYn8+K/6FMiO/8Hk1XJ6MF/2ztT8/LmJiMF8Qc3yyaW6Rb4on8U/ur9x/98R8c8neb09EZEdxPdHxAMRsS9f9wcj4qGI2N8i/u+ff/jN1luoVf9fX1n8x1vt/4iRpHq+voNE36nvvmrWfnuff4fLqdF8STuff+2u4Gq2HQAAANwu0vIcdJKOFemqi1M7Y1M6e3Zu/kAp3j5zvDJXPRIDaXGla7jqeuhEfm24yE8uyx+KiO3l/zTaWM6PTZ+d3drNwIHyvTo1/T/SdGys8trvzf7pBbhzrGgerfruwC++XPuVAW4p92tC79L/oXfp/9C79H/oXY36/6WIG11YFeAW8/0PvUv/h96l/0Pv0v+hJ9XfEl/80EInd/ovJXYcXVX1dU8sDq/LOy+svFbf3PnL6xFpVP9oR9NEEhGdNRFp6zKDbbR+bu5Sdw6A9D/LPNvhZllBYl+e2BAR7da61NZWXavjBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4Pb3bwAAAP//N4LYNA==")
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket(0x0, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000140)='proc\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x84)
r4 = inotify_init1(0x0)
inotify_add_watch(r4, &(0x7f0000000240)='./file0\x00', 0x820004ee)
lseek(r3, 0x100, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r5}, 0x10)
getdents64(r3, &(0x7f00000000c0)=""/90, 0x5a)
sendmsg$nl_generic(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="140000001600010a000000000027f26119150000e8ffffff00c45a6536e1752fa45e246ec37b68ab6f5c4f6ab991be26524d5a76426a686ec795d15857a3b76dfa0e6bfd3e81c9f4c4d2f0ad81b6387439cfbd7ec6a29f4111d461c50ccd916d93af99316d8b7b3c26e257384fd5f0414053f54ec0af2a15ec16b25bdc0eee3108a1e588a0a8b80300000000"], 0x14}}, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000300), r2)
recvmmsg$unix(r2, &(0x7f0000002a80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x20}}], 0x3, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x35, &(0x7f0000000000), 0x4)
setsockopt$inet6_IPV6_DSTOPTS(0xffffffffffffffff, 0x29, 0x3b, &(0x7f0000000080)=ANY=[], 0x8)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000))

14.463144993s ago: executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, &(0x7f0000000f00)=0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000003b40)={0x0, 0x0, &(0x7f0000003b00)={&(0x7f0000000080)=@newtaction={0x60, 0x30, 0x1, 0x0, 0x0, {}, [{0x4c, 0x1, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0xfffffe00}}]}, {0x4}, {0xc, 0x3}, {0xc}}}]}]}, 0x60}}, 0x0)
close(0xffffffffffffffff)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000007c0)=ANY=[@ANYRESDEC=r2], 0x20}}, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r6 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x141301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r6, 0x4004551e, &(0x7f0000000380)={0x0, 0x0, "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"})
ioctl$USBDEVFS_CLEAR_HALT(r6, 0x5514, 0x0)
bind$bt_hci(r5, &(0x7f0000000040)={0x1f, 0xfffd, 0x4}, 0x6)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB='X'], 0x6)
request_key(0x0, &(0x7f0000000d00)={'syz', 0x0}, &(0x7f0000000380)='G@\xf7\xff\xff\xff\xff\xff\xff\xff\xe3h;\x1d\xd3\xaa\x1a\x9c\xca+\xa2\f\xec\xdeq\xc8\xa2\xc0\xfb\xe7\x98\xa8\x94%\xeb8\xdc\xaf\x02\xe8\xb9g\xd9.k\\q5d\x7f\xaf\xa4\xacsl\xda\x8b\xfb\xdb\xde!\xe2@@G\vT\xa98\f\x1c\xc7D\x8b\xb3@\x96Z2\x1e\x13\x89\x80\xbf\x9f4\x17\xa8\xdd1\n\x05\x953\xd8)<\xcch{\xb3\xeed\xd2Kb\xf1\xdb<,]\x85\xd9}\xa9\xcdhz\xa7\xc5\x14\x8d\xe9R.\x7f\xa3\x9drc\x17\xa1\xe8\xae\x92\x92s\xc1\x98;\x04\xed\xd3\xf6:$n\x14V\xe7\x1c;\x15s\xb9\x82\xc1\fTP\xe5@\x86H\xdf\x93aB\xf2a&\x9c\tsV\"*\xc5\xa3\x0e(\xa6\b\xde\x19\xe8\xd1e\x01u?\xf9', 0xfffffffffffffffa)
pipe(&(0x7f0000000340)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = socket$inet_udp(0x2, 0x2, 0x0)
close(r8)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000140), 0x0, 0x0, 0x0, 0x0)
recvfrom$inet6(0xffffffffffffffff, &(0x7f0000000000)=""/45, 0x2d, 0x0, 0x0, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f00000001c0)="48050000150019", 0x7}], 0x1)
write$binfmt_misc(r7, &(0x7f0000000000)=ANY=[], 0xfffffecc)

12.101465693s ago: executing program 0:
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff}, 0x13f}}, 0x2f)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @empty}, r2}}, 0x48)

11.589741284s ago: executing program 3:
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000140))
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f00000000c0)=0x41)
pwritev(r0, &(0x7f0000000040)=[{&(0x7f0000000180)="80fd0200", 0x4}], 0x1, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
setsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000040)=0x2, 0x4)
openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
poll(0x0, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000140), 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r5, 0x541b, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
pselect6(0x40, &(0x7f0000000040), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)

10.872312796s ago: executing program 1:
r0 = syz_open_dev$video4linux(0x0, 0xfff, 0x0)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r0, 0xc040564a, &(0x7f0000000080)={0x0, 0x0, 0x100f})

9.193910286s ago: executing program 1:
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r1 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r1, 0xc0205649, &(0x7f0000000100)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x0, 0xc, 0x1400}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB, @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$ARCH_SHSTK_STATUS(0x1e, 0x0, 0x0, 0x5005)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000600)='./bus\x00', 0x1c14744, &(0x7f0000000100)={[{@nojournal_checksum}]}, 0xfe, 0x490, &(0x7f0000000640)="$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")
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
rename(&(0x7f0000001c80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000001d80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='./file2/file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r2, &(0x7f0000000140)='2', 0xfdef, 0x8000c61)

6.884975204s ago: executing program 1:
syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000640)={0x2c, &(0x7f00000000c0)={0x0, 0x0, 0x12, {0x12, 0x0, "072ba3f34be2d9e9ee78257b25cf1c15"}}, 0x0, 0x0, &(0x7f0000000100)={0x20, 0x29, 0xf, {0xf, 0x29, 0x0, 0x0, 0x0, 0x0, "5d0285a4", "8b71dfb3"}}, 0x0}, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043ef50d"], 0xf8)

5.574506711s ago: executing program 3:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee6, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getrandom(&(0x7f00000002c0)=""/289, 0xffffffffffffff1a, 0x0)

4.896562868s ago: executing program 1:
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x14507e, 0x0)
r2 = eventfd2(0x800000, 0x0)
dup2(r2, r1)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f0000000000)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f00000002c0)=""/55, 0x0})
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000280)={0x1, 0x0, 0x0, &(0x7f0000000500)=""/73, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000480))
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0xffffffff)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f00000000c0)={0x1, r2})
r3 = syz_io_uring_setup(0x2ddd, &(0x7f00000006c0)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_setup(0x5c2, &(0x7f0000000200), &(0x7f0000000300)=<r5=>0x0, &(0x7f0000000380))
syz_io_uring_submit(r5, r4, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4})
io_uring_enter(r3, 0x381b, 0x0, 0x0, 0x0, 0x0)

2.978987684s ago: executing program 1:
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="043e060c06"], 0x9)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="1201fb0019030320d812010079de01ec020109021b0001000003000904000001"], 0x0)

198.371874ms ago: executing program 3:
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8ab8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000006900000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r1, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

0s ago: executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='afs_folio_dirty\x00', r0}, 0x10)

kernel console output (not intermixed with test programs):

 veth0_macvtap: left promiscuous mode
[  536.621012][ T2862] veth1_vlan: left promiscuous mode
[  536.626645][ T2862] veth0_vlan: left promiscuous mode
[  536.681855][   T29] audit: type=1326 audit(1718190453.919:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6661 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdbd967cea9 code=0x0
[  536.867560][ T6664] kAFS: unable to lookup cell '(>.Dz£û‚ʃ€¹sf¿Iêv¼N›úhÿÌ\û«ˆD%ÁÉa²¨¨âD'©+iÝ8ÄBc²ÂNÄo~F^ÁŸŠÜ(›$•)¬úÍ3kÿ 8S¦7<�±—Lé°+Gw¤
[  536.867560][ T6664] %ͳÁ5…•Ýè>2ÞÕóÙgÕ‘fo$	.~'
[  537.272988][   T29] audit: type=1326 audit(1718190454.439:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6661 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdbd967cea9 code=0x0
[  537.442282][ T5074] Bluetooth: hci0: command tx timeout
[  537.953732][ T2862] team0 (unregistering): Port device team_slave_1 removed
[  538.033514][ T2862] team0 (unregistering): Port device team_slave_0 removed
[  540.257537][ T6628] bridge0: port 1(bridge_slave_0) entered blocking state
[  540.265503][ T6628] bridge0: port 1(bridge_slave_0) entered disabled state
[  540.273740][ T6628] bridge_slave_0: entered allmulticast mode
[  540.283588][ T6628] bridge_slave_0: entered promiscuous mode
[  540.670834][ T6628] bridge0: port 2(bridge_slave_1) entered blocking state
[  540.678960][ T6628] bridge0: port 2(bridge_slave_1) entered disabled state
[  540.681896][ T6679] loop3: detected capacity change from 0 to 40427
[  540.687246][ T6628] bridge_slave_1: entered allmulticast mode
[  540.704950][ T6628] bridge_slave_1: entered promiscuous mode
[  540.720534][ T6679] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  540.728758][ T6679] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  540.884973][ T6679] F2FS-fs (loop3): Found nat_bits in checkpoint
[  540.907942][ T6687] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  541.242034][ T6679] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  541.257611][ T6679] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  541.802780][    C0] vxcan0: j1939_tp_rxtimer: 0xffff888044fa0600: rx timeout, send abort
[  541.854765][ T6628] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  542.102389][ T6628] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  542.311368][    C0] vxcan0: j1939_tp_rxtimer: 0xffff888044fa0600: abort rx timeout. Force session deactivation
[  543.136546][ T6628] team0: Port device team_slave_0 added
[  543.283017][ T6628] team0: Port device team_slave_1 added
[  543.509323][ T6696] loop4: detected capacity change from 0 to 40427
[  543.530351][ T6696] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  543.538647][ T6696] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  543.743044][ T5074] Bluetooth: hci5: command 0x0406 tx timeout
[  543.768862][ T6628] batman_adv: batadv0: Adding interface: batadv_slave_0
[  543.776472][ T6628] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  543.803074][ T6628] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  543.840173][ T6628] batman_adv: batadv0: Adding interface: batadv_slave_1
[  543.849074][ T6628] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  543.862505][  T781] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  543.876700][ T6628] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  543.917358][ T6696] F2FS-fs (loop4): Found nat_bits in checkpoint
[  544.362968][ T6696] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  544.370334][ T6696] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  544.581937][  T781] usb 1-1: Using ep0 maxpacket: 32
[  544.772369][  T781] usb 1-1: config index 0 descriptor too short (expected 156, got 27)
[  544.781049][  T781] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  545.454779][  T781] usb 1-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  545.466362][  T781] usb 1-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  545.475328][  T781] usb 1-1: Product: syz
[  545.479655][  T781] usb 1-1: Manufacturer: syz
[  545.484532][  T781] usb 1-1: SerialNumber: syz
[  545.519710][  T781] usb 1-1: config 0 descriptor??
[  545.576758][  T781] ldusb 1-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  545.936663][  T781] ldusb 1-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  546.213214][ T6628] hsr_slave_0: entered promiscuous mode
[  546.260733][ T6628] hsr_slave_1: entered promiscuous mode
[  546.422216][ T6628] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  546.430043][ T6628] Cannot create hsr debugfs directory
[  546.502234][ T5118] usb 1-1: USB disconnect, device number 2
[  546.525996][ T5118] ldusb 1-1:0.0: LD USB Device #0 now disconnected
[  550.083890][ T6716] loop0: detected capacity change from 0 to 1764
[  550.160895][ T6628] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  550.341708][ T6628] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  550.476935][ T6628] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  550.728567][ T6628] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  550.853908][ T5074] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  550.889405][ T5074] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  550.904974][ T5074] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  550.969026][ T5074] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  551.006559][ T5074] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[  551.023522][ T5074] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  552.325216][ T6730] loop4: detected capacity change from 0 to 40427
[  552.368946][ T6730] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  552.377184][ T6730] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  552.653735][ T6730] F2FS-fs (loop4): Found nat_bits in checkpoint
[  553.001726][ T6730] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  553.009250][ T6730] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  553.141135][ T4427] Bluetooth: hci8: command tx timeout
[  553.496523][   T29] audit: type=1326 audit(1718190470.719:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6733 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f68c627cea9 code=0x0
[  553.732678][ T6741] kAFS: unable to lookup cell '(>.Dz£û‚ʃ€¹sf¿Iêv¼N›úhÿÌ\û«ˆD%ÁÉa²¨¨âD'©+iÝ8ÄBc²ÂNÄo~F^ÁŸŠÜ(›$•)¬úÍ3kÿ 8S¦7<�±—Lé°+Gw¤
[  553.732678][ T6741] %ͳÁ5…•Ýè>2ÞÕóÙgÕ‘fo$	.~'
[  554.276148][   T29] audit: type=1326 audit(1718190471.469:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6733 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f68c627cea9 code=0x0
[  555.107518][ T6628] 8021q: adding VLAN 0 to HW filter on device bond0
[  555.214760][ T4427] Bluetooth: hci8: command tx timeout
[  555.462274][ T6628] 8021q: adding VLAN 0 to HW filter on device team0
[  556.218669][ T6753] loop3: detected capacity change from 0 to 40427
[  556.287761][ T6753] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  556.296017][ T6753] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  556.456187][ T6753] F2FS-fs (loop3): Found nat_bits in checkpoint
[  556.733624][ T4498] bridge0: port 1(bridge_slave_0) entered blocking state
[  556.741408][ T4498] bridge0: port 1(bridge_slave_0) entered forwarding state
[  556.804984][ T6722] chnl_net:caif_netlink_parms(): no params data found
[  556.929657][ T6753] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  556.937039][ T6753] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  557.434684][ T4427] Bluetooth: hci8: command tx timeout
[  557.607489][ T4498] bridge0: port 2(bridge_slave_1) entered blocking state
[  557.615435][ T4498] bridge0: port 2(bridge_slave_1) entered forwarding state
[  557.624229][    C1] vxcan0: j1939_tp_rxtimer: 0xffff888044fc6e00: rx timeout, send abort
[  558.132925][    C1] vxcan0: j1939_tp_rxtimer: 0xffff888044fc6e00: abort rx timeout. Force session deactivation
[  559.454010][ T4427] Bluetooth: hci8: command tx timeout
[  559.718551][ T6722] bridge0: port 1(bridge_slave_0) entered blocking state
[  559.726346][ T6722] bridge0: port 1(bridge_slave_0) entered disabled state
[  559.736302][ T6722] bridge_slave_0: entered allmulticast mode
[  559.745291][ T6722] bridge_slave_0: entered promiscuous mode
[  559.949223][ T6722] bridge0: port 2(bridge_slave_1) entered blocking state
[  559.957295][ T6722] bridge0: port 2(bridge_slave_1) entered disabled state
[  559.965676][ T6722] bridge_slave_1: entered allmulticast mode
[  559.975697][ T6722] bridge_slave_1: entered promiscuous mode
[  560.153030][   T29] audit: type=1326 audit(1718190477.349:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6767 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f68c627cea9 code=0x0
[  560.532427][ T6722] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  560.723861][ T6722] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  561.175427][ T6722] team0: Port device team_slave_0 added
[  561.278001][ T6722] team0: Port device team_slave_1 added
[  561.485740][ T6779] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  561.760133][ T6722] batman_adv: batadv0: Adding interface: batadv_slave_0
[  561.768002][ T6722] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  561.794463][ T6722] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  562.319788][ T6722] batman_adv: batadv0: Adding interface: batadv_slave_1
[  562.329158][ T6722] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  562.361232][ T6722] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  562.615842][ T6628] 8021q: adding VLAN 0 to HW filter on device batadv0
[  563.034212][ T2784] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  563.148279][ T6722] hsr_slave_0: entered promiscuous mode
[  563.213269][ T6722] hsr_slave_1: entered promiscuous mode
[  563.252088][ T6722] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  563.259937][ T6722] Cannot create hsr debugfs directory
[  563.347416][ T2784] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  563.644445][ T2784] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  563.866240][ T2784] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  564.629474][ T6792] loop3: detected capacity change from 0 to 40427
[  564.683447][ T6792] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  564.691380][ T6792] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  564.845165][ T6792] F2FS-fs (loop3): Found nat_bits in checkpoint
[  565.165220][ T6792] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  565.173626][ T6792] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  566.474769][ T6628] veth0_vlan: entered promiscuous mode
[  566.709252][ T2784] bridge_slave_1: left allmulticast mode
[  566.715220][ T2784] bridge_slave_1: left promiscuous mode
[  566.722044][ T2784] bridge0: port 2(bridge_slave_1) entered disabled state
[  566.780705][ T2784] bridge_slave_0: left allmulticast mode
[  566.786748][ T2784] bridge_slave_0: left promiscuous mode
[  566.793474][ T2784] bridge0: port 1(bridge_slave_0) entered disabled state
[  567.757030][ T2784] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  567.856749][ T2784] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  567.968417][ T2784] bond0 (unregistering): Released all slaves
[  568.316036][ T6628] veth1_vlan: entered promiscuous mode
[  569.444494][ T6807] loop4: detected capacity change from 0 to 40427
[  569.469536][ T6807] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  569.477880][ T6807] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  569.564966][ T2784] hsr_slave_0: left promiscuous mode
[  569.595655][ T6807] F2FS-fs (loop4): Found nat_bits in checkpoint
[  569.875923][ T2784] hsr_slave_1: left promiscuous mode
[  569.953702][ T6807] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  569.961062][ T6807] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  569.972426][ T2784] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  569.980558][ T2784] batman_adv: batadv0: Removing interface: batadv_slave_0
[  570.188651][ T2784] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  570.196740][ T2784] batman_adv: batadv0: Removing interface: batadv_slave_1
[  570.397001][ T2784] veth1_macvtap: left promiscuous mode
[  570.406033][ T2784] veth0_macvtap: left promiscuous mode
[  570.412242][ T2784] veth1_vlan: left promiscuous mode
[  570.417913][ T2784] veth0_vlan: left promiscuous mode
[  572.139708][ T2784] team0 (unregistering): Port device team_slave_1 removed
[  572.186604][ T2784] team0 (unregistering): Port device team_slave_0 removed
[  573.226903][ T6628] veth0_macvtap: entered promiscuous mode
[  573.390269][ T6628] veth1_macvtap: entered promiscuous mode
[  573.729112][ T6722] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  573.765331][ T6628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  573.776229][ T6628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  573.786404][ T6628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  573.797179][ T6628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  573.807227][ T6628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  573.823279][ T6628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  573.834654][ T6628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  573.846001][ T6628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  573.856283][ T6628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  573.866908][ T6628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  573.876949][ T6628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  573.887812][ T6628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  573.902370][ T6628] batman_adv: batadv0: Interface activated: batadv_slave_0
[  573.964259][ T6722] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  574.134539][ T6722] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  574.255734][ T6628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  574.267084][ T6628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  574.277551][ T6628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  574.288448][ T6628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  574.298591][ T6628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  574.309378][ T6628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  574.326723][ T6628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  574.339850][ T6628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  574.350039][ T6628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  574.361017][ T6628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  574.371213][ T6628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  574.382173][ T6628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  574.411976][ T5074] Bluetooth: hci6: command 0x0406 tx timeout
[  574.475296][ T6628] batman_adv: batadv0: Interface activated: batadv_slave_1
[  574.517190][ T6722] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  574.717342][ T6628] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  574.726615][ T6628] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  574.743544][ T6628] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  574.754841][ T6628] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  574.983503][   T29] audit: type=1326 audit(1718190492.229:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6824 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6cd507cea9 code=0x0
[  575.115499][ T6829] kAFS: unable to lookup cell '(>.Dz£û‚ʃ€¹sf¿Iêv¼N›úhÿÌ\û«ˆD%ÁÉa²¨¨âD'©+iÝ8ÄBc²ÂNÄo~F^ÁŸŠÜ(›$•)¬úÍ3kÿ 8S¦7<�±—Lé°+Gw¤
[  575.115499][ T6829] %ͳÁ5…•Ýè>2ÞÕóÙgÕ‘fo$	.~'
[  575.395292][ T6829] binder: 6824:6829 ioctl c0306201 0 returned -14
[  575.422507][   T29] audit: type=1326 audit(1718190492.669:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6824 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6cd507cea9 code=0x0
[  577.050246][ T6722] 8021q: adding VLAN 0 to HW filter on device bond0
[  577.504629][ T6840] loop3: detected capacity change from 0 to 40427
[  577.567136][ T6840] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  577.575520][ T6840] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  577.739843][ T6840] F2FS-fs (loop3): Found nat_bits in checkpoint
[  578.058739][ T6722] 8021q: adding VLAN 0 to HW filter on device team0
[  578.139420][ T6840] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  578.147535][ T6840] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  578.300443][   T25] bridge0: port 1(bridge_slave_0) entered blocking state
[  578.308373][   T25] bridge0: port 1(bridge_slave_0) entered forwarding state
[  578.707112][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[  578.714997][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[  578.771751][ T6844] loop4: detected capacity change from 0 to 128
[  579.006191][ T6844] VFS: could not find a valid V7 on loop4.
[  579.692792][ T6722] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  579.798906][   T29] audit: type=1800 audit(1718190497.049:45): pid=6844 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1958 res=0 errno=0
[  581.434154][ T6867] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  582.651252][ T6722] 8021q: adding VLAN 0 to HW filter on device batadv0
[  583.416869][ T6722] veth0_vlan: entered promiscuous mode
[  583.587105][ T6722] veth1_vlan: entered promiscuous mode
[  585.019431][ T6722] veth0_macvtap: entered promiscuous mode
[  585.148969][ T6722] veth1_macvtap: entered promiscuous mode
[  585.470071][ T6722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  585.481228][ T6722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  585.503286][ T6722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  585.515776][ T6722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  585.526207][ T6722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  585.537176][ T6722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  585.547611][ T6722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  585.558455][ T6722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  585.568952][ T6722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  585.579895][ T6722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  585.598182][ T6722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  585.611145][ T6722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  585.621828][ T6722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  585.632637][ T6722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  585.648547][ T6722] batman_adv: batadv0: Interface activated: batadv_slave_0
[  585.872517][ T6722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  585.883735][ T6722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  585.900901][ T6722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  585.913743][ T6722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  585.924003][ T6722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  585.935034][ T6722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  585.945278][ T6722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  585.956197][ T6722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  585.966416][ T6722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  585.977251][ T6722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  585.987494][ T6722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  586.005741][ T6722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  586.018022][ T6722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  586.029053][ T6722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  586.047793][ T6722] batman_adv: batadv0: Interface activated: batadv_slave_1
[  586.446515][ T6722] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  586.458346][ T6722] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  586.468484][ T6722] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  586.478019][ T6722] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  586.515231][ T5160] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  586.803078][ T5160] usb 4-1: Using ep0 maxpacket: 32
[  586.942682][ T5160] usb 4-1: config index 0 descriptor too short (expected 156, got 27)
[  586.951112][ T5160] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  587.193137][ T5160] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  587.202929][ T5160] usb 4-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  587.212028][ T5160] usb 4-1: Product: syz
[  587.216465][ T5160] usb 4-1: Manufacturer: syz
[  587.221311][ T5160] usb 4-1: SerialNumber: syz
[  587.335547][ T5160] usb 4-1: config 0 descriptor??
[  587.470527][ T5160] ldusb 4-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  587.555908][ T5160] ldusb 4-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  588.090541][ T6900] loop4: detected capacity change from 0 to 40427
[  588.113534][ T6900] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  588.122063][ T6900] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  588.229576][ T6900] F2FS-fs (loop4): Found nat_bits in checkpoint
[  588.347126][ T5160] usb 4-1: USB disconnect, device number 3
[  588.434549][ T5160] ldusb 4-1:0.0: LD USB Device #0 now disconnected
[  588.685582][ T6900] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  588.693327][ T6900] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  590.995119][   T29] audit: type=1326 audit(1718190508.259:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6915 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6cd507cea9 code=0x0
[  591.383981][ T6920] kAFS: unable to lookup cell '(>.Dz£û‚ʃ€¹sf¿Iêv¼N›úhÿÌ\û«ˆD%ÁÉa²¨¨âD'©+iÝ8ÄBc²ÂNÄo~F^ÁŸŠÜ(›$•)¬úÍ3kÿ 8S¦7<�±—Lé°+Gw¤
[  591.383981][ T6920] %ͳÁ5…•Ýè>2ÞÕóÙgÕ‘fo$	.~'
[  591.651225][ T4322] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  591.737167][   T29] audit: type=1326 audit(1718190508.919:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6915 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6cd507cea9 code=0x0
[  591.765173][ T6921] binder: 6915:6921 ioctl c0306201 0 returned -14
[  592.310816][ T4322] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  592.575154][ T4322] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  592.710915][ T5074] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  592.726829][ T5074] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  592.737603][ T5074] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  592.767466][ T5074] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  592.839829][ T1221] ieee802154 phy0 wpan0: encryption failed: -22
[  592.847039][ T1221] ieee802154 phy1 wpan1: encryption failed: -22
[  592.869787][ T5074] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  592.888723][ T5074] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  592.989605][ T4322] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  594.049185][ T4322] bridge_slave_1: left allmulticast mode
[  594.055307][ T4322] bridge_slave_1: left promiscuous mode
[  594.062315][ T4322] bridge0: port 2(bridge_slave_1) entered disabled state
[  594.286686][ T4322] bridge_slave_0: left allmulticast mode
[  594.302404][ T4322] bridge_slave_0: left promiscuous mode
[  594.309695][ T4322] bridge0: port 1(bridge_slave_0) entered disabled state
[  594.509170][ T6931] loop3: detected capacity change from 0 to 40427
[  594.524739][ T6931] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  594.535510][ T6931] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  594.623121][ T4427] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  594.652719][ T4427] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  594.690410][ T4427] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  594.717959][ T4427] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  594.736117][ T4427] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  594.746418][ T4427] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  595.052288][ T4427] Bluetooth: hci0: command tx timeout
[  595.152834][ T6931] F2FS-fs (loop3): Found nat_bits in checkpoint
[  595.489716][ T6931] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  595.497260][ T6931] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  595.744960][ T4322] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  595.945515][ T4322] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  596.087767][ T4322] bond0 (unregistering): Released all slaves
[  596.317546][ T6946] loop4: detected capacity change from 0 to 1764
[  596.964093][ T4427] Bluetooth: hci5: command tx timeout
[  597.035297][ T4322] hsr_slave_0: left promiscuous mode
[  597.121810][ T4427] Bluetooth: hci0: command tx timeout
[  597.324125][ T4322] hsr_slave_1: left promiscuous mode
[  597.354902][ T4322] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  597.371092][ T4322] batman_adv: batadv0: Removing interface: batadv_slave_0
[  597.436887][ T4322] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  597.450071][ T4322] batman_adv: batadv0: Removing interface: batadv_slave_1
[  597.676211][ T4322] veth1_macvtap: left promiscuous mode
[  597.682342][ T4322] veth0_macvtap: left promiscuous mode
[  597.688324][ T4322] veth1_vlan: left promiscuous mode
[  597.696033][ T4322] veth0_vlan: left promiscuous mode
[  598.155967][ T6955] loop4: detected capacity change from 0 to 16
[  598.337076][ T6955] erofs: (device loop4): mounted with root inode @ nid 36.
[  598.476967][ T6955] syz-executor.4: attempt to access beyond end of device
[  598.476967][ T6955] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[  599.048982][ T6960] syz-executor.4: attempt to access beyond end of device
[  599.048982][ T6960] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[  599.075110][ T4427] Bluetooth: hci5: command tx timeout
[  599.099736][ T6960] syz-executor.4: attempt to access beyond end of device
[  599.099736][ T6960] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[  599.130096][ T6960] syz-executor.4: attempt to access beyond end of device
[  599.130096][ T6960] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[  599.154180][ T6960] syz-executor.4: attempt to access beyond end of device
[  599.154180][ T6960] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[  599.386478][ T6960] syz-executor.4: attempt to access beyond end of device
[  599.386478][ T6960] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[  599.442656][ T4427] Bluetooth: hci0: command tx timeout
[  601.365170][ T5074] Bluetooth: hci5: command tx timeout
[  601.428767][   T29] audit: type=1326 audit(1718190516.509:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd967cea9 code=0x7ffc0000
[  601.452510][   T29] audit: type=1326 audit(1718190516.519:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdbd967cea9 code=0x7ffc0000
[  601.481161][   T29] audit: type=1326 audit(1718190516.539:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd967cea9 code=0x7ffc0000
[  601.506403][   T29] audit: type=1326 audit(1718190516.559:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdbd967cea9 code=0x7ffc0000
[  601.529748][   T29] audit: type=1326 audit(1718190516.559:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd967cea9 code=0x7ffc0000
[  601.553753][   T29] audit: type=1326 audit(1718190516.569:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdbd967a627 code=0x7ffc0000
[  601.582559][   T29] audit: type=1326 audit(1718190516.579:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdbd96402e9 code=0x7ffc0000
[  601.609450][   T29] audit: type=1326 audit(1718190516.579:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdbd967a627 code=0x7ffc0000
[  601.645645][   T29] audit: type=1326 audit(1718190516.589:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdbd96402e9 code=0x7ffc0000
[  601.676767][   T29] audit: type=1326 audit(1718190516.589:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=217 compat=0 ip=0x7fdbd967cea9 code=0x7ffc0000
[  601.680042][ T4427] Bluetooth: hci0: command tx timeout
[  602.064864][ T4322] team0 (unregistering): Port device team_slave_1 removed
[  602.215686][ T4322] team0 (unregistering): Port device team_slave_0 removed
[  603.441922][ T4427] Bluetooth: hci5: command tx timeout
[  603.785880][ T6974] Zero length message leads to an empty skb
[  604.198043][ T6926] chnl_net:caif_netlink_parms(): no params data found
[  604.758668][ T6934] chnl_net:caif_netlink_parms(): no params data found
[  605.292031][ T6982] loop3: detected capacity change from 0 to 128
[  605.572817][ T6982] VFS: could not find a valid V7 on loop3.
[  607.001926][   T29] kauditd_printk_skb: 31 callbacks suppressed
[  607.002015][   T29] audit: type=1800 audit(1718190524.229:89): pid=6981 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1957 res=0 errno=0
[  607.029664][   T29] audit: type=1804 audit(1718190524.269:90): pid=6982 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir1086412115/syzkaller.HruF5w/74/bus" dev="sda1" ino=1957 res=1 errno=0
[  607.055446][   T29] audit: type=1804 audit(1718190524.329:91): pid=6981 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir1086412115/syzkaller.HruF5w/74/bus" dev="sda1" ino=1957 res=1 errno=0
[  607.475031][ T6926] bridge0: port 1(bridge_slave_0) entered blocking state
[  607.487050][ T6926] bridge0: port 1(bridge_slave_0) entered disabled state
[  607.495237][ T6926] bridge_slave_0: entered allmulticast mode
[  607.513857][ T6926] bridge_slave_0: entered promiscuous mode
[  607.770059][ T6926] bridge0: port 2(bridge_slave_1) entered blocking state
[  607.778126][ T6926] bridge0: port 2(bridge_slave_1) entered disabled state
[  607.786325][ T6926] bridge_slave_1: entered allmulticast mode
[  607.796457][ T6926] bridge_slave_1: entered promiscuous mode
[  608.502282][ T6934] bridge0: port 1(bridge_slave_0) entered blocking state
[  608.510081][ T6934] bridge0: port 1(bridge_slave_0) entered disabled state
[  608.518585][ T6934] bridge_slave_0: entered allmulticast mode
[  608.537328][ T6934] bridge_slave_0: entered promiscuous mode
[  609.413666][ T7008] loop3: detected capacity change from 0 to 40427
[  609.476972][ T7008] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  609.485296][ T7008] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  609.660223][ T6926] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  609.670642][ T6934] bridge0: port 2(bridge_slave_1) entered blocking state
[  609.678688][ T6934] bridge0: port 2(bridge_slave_1) entered disabled state
[  609.687081][ T6934] bridge_slave_1: entered allmulticast mode
[  609.697886][ T6934] bridge_slave_1: entered promiscuous mode
[  609.770101][ T7008] F2FS-fs (loop3): Found nat_bits in checkpoint
[  609.941849][ T5122] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  610.126138][ T7008] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  610.133787][ T7008] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  610.253935][ T5122] usb 5-1: Using ep0 maxpacket: 32
[  610.480152][ T6926] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  610.560039][ T6934] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  610.669261][ T6934] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  610.706655][ T5122] usb 5-1: config index 0 descriptor too short (expected 156, got 27)
[  610.715403][ T5122] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  610.963294][ T5122] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  610.973152][ T5122] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  611.007452][ T5122] usb 5-1: Product: syz
[  611.014228][ T5122] usb 5-1: Manufacturer: syz
[  611.019212][ T5122] usb 5-1: SerialNumber: syz
[  611.135294][ T5122] usb 5-1: config 0 descriptor??
[  611.479002][ T6926] team0: Port device team_slave_0 added
[  611.516903][ T5122] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  611.525551][ T6934] team0: Port device team_slave_0 added
[  611.613875][ T5122] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  611.662664][ T6934] team0: Port device team_slave_1 added
[  611.683043][ T6926] team0: Port device team_slave_1 added
[  611.899369][ T5122] usb 5-1: USB disconnect, device number 2
[  611.984743][ T5122] ldusb 5-1:0.0: LD USB Device #0 now disconnected
[  612.430777][ T6934] batman_adv: batadv0: Adding interface: batadv_slave_0
[  612.438275][ T6934] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  612.464814][ T6934] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  612.578795][ T6926] batman_adv: batadv0: Adding interface: batadv_slave_0
[  612.586274][ T6926] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  612.613225][ T6926] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  612.899452][ T6934] batman_adv: batadv0: Adding interface: batadv_slave_1
[  612.906915][ T6934] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  612.940134][ T6934] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  612.965165][ T6926] batman_adv: batadv0: Adding interface: batadv_slave_1
[  612.972511][ T6926] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  612.999055][ T6926] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  613.561969][   T29] audit: type=1326 audit(1718190530.829:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdbd967cea9 code=0x0
[  613.663249][ T6934] hsr_slave_0: entered promiscuous mode
[  613.725630][ T7032] kAFS: unable to lookup cell '(>.Dz£û‚ʃ€¹sf¿Iêv¼N›úhÿÌ\û«ˆD%ÁÉa²¨¨âD'©+iÝ8ÄBc²ÂNÄo~F^ÁŸŠÜ(›$•)¬úÍ3kÿ 8S¦7<�±—Lé°+Gw¤
[  613.725630][ T7032] %ͳÁ5…•Ýè>2ÞÕóÙgÕ‘fo$	.~'
[  613.803999][ T6934] hsr_slave_1: entered promiscuous mode
[  613.864783][ T6934] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  613.872820][ T6934] Cannot create hsr debugfs directory
[  614.206879][   T29] audit: type=1326 audit(1718190531.519:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdbd967cea9 code=0x0
[  614.298264][ T4322] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  614.316874][ T7031] binder: 7026:7031 ioctl c0306201 0 returned -14
[  614.496105][ T6926] hsr_slave_0: entered promiscuous mode
[  614.555451][ T6926] hsr_slave_1: entered promiscuous mode
[  614.601738][ T6926] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  614.609585][ T6926] Cannot create hsr debugfs directory
[  614.676722][ T4322] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  614.942969][ T7038] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  614.950866][ T4322] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  615.006144][ T7038] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  615.021783][ T7038] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  615.044692][ T7038] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  615.058887][ T7038] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  615.168009][ T7038] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  615.364334][ T5074] Bluetooth: hci7: command 0x0406 tx timeout
[  615.748666][ T4322] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  616.108843][ T7041] loop4: detected capacity change from 0 to 40427
[  616.185563][ T7041] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  616.193773][ T7041] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  616.364984][ T7041] F2FS-fs (loop4): Found nat_bits in checkpoint
[  616.859349][ T7041] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  616.867032][ T7041] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  616.998506][ T4322] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  617.301119][ T4427] Bluetooth: hci6: command tx timeout
[  617.416242][ T4322] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  618.196055][ T4322] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  618.826982][ T4322] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  619.279371][ T4322] bridge_slave_1: left allmulticast mode
[  619.289313][ T4322] bridge_slave_1: left promiscuous mode
[  619.296539][ T4322] bridge0: port 2(bridge_slave_1) entered disabled state
[  619.370531][ T4427] Bluetooth: hci6: command tx timeout
[  619.403058][ T4322] bridge_slave_0: left allmulticast mode
[  619.409122][ T4322] bridge_slave_0: left promiscuous mode
[  619.416183][ T4322] bridge0: port 1(bridge_slave_0) entered disabled state
[  619.441422][ T4322] bridge_slave_1: left allmulticast mode
[  619.449972][ T4322] bridge_slave_1: left promiscuous mode
[  619.458881][ T4322] bridge0: port 2(bridge_slave_1) entered disabled state
[  619.497785][ T4322] bridge_slave_0: left allmulticast mode
[  619.504701][ T4322] bridge_slave_0: left promiscuous mode
[  619.511391][ T4322] bridge0: port 1(bridge_slave_0) entered disabled state
[  620.954864][ T4322] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  621.067558][ T4322] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  621.128036][ T4322] bond0 (unregistering): Released all slaves
[  621.229484][ T4322] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  621.306788][ T4322] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  621.373761][ T4322] bond0 (unregistering): Released all slaves
[  621.441721][ T4427] Bluetooth: hci6: command tx timeout
[  621.807514][ T7064] loop4: detected capacity change from 0 to 1764
[  622.438489][ T7037] chnl_net:caif_netlink_parms(): no params data found
[  622.959059][ T7073] loop4: detected capacity change from 0 to 16
[  623.016628][ T7073] erofs: (device loop4): mounted with root inode @ nid 36.
[  623.085209][ T7073] syz-executor.4: attempt to access beyond end of device
[  623.085209][ T7073] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[  623.463051][ T7075] syz-executor.4: attempt to access beyond end of device
[  623.463051][ T7075] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[  623.552322][ T4427] Bluetooth: hci6: command tx timeout
[  623.566220][ T7075] syz-executor.4: attempt to access beyond end of device
[  623.566220][ T7075] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[  623.617960][ T7075] syz-executor.4: attempt to access beyond end of device
[  623.617960][ T7075] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[  623.642490][ T7075] syz-executor.4: attempt to access beyond end of device
[  623.642490][ T7075] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[  623.905731][ T7075] syz-executor.4: attempt to access beyond end of device
[  623.905731][ T7075] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[  624.788733][   T29] audit: type=1326 audit(1718190540.989:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7072 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd967cea9 code=0x7ffc0000
[  624.819771][   T29] audit: type=1326 audit(1718190541.009:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7072 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdbd967cea9 code=0x7ffc0000
[  624.845101][   T29] audit: type=1326 audit(1718190541.059:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7072 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd967cea9 code=0x7ffc0000
[  624.868612][   T29] audit: type=1326 audit(1718190541.069:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7072 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdbd967cea9 code=0x7ffc0000
[  624.892978][   T29] audit: type=1326 audit(1718190541.079:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7072 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd967cea9 code=0x7ffc0000
[  624.933454][   T29] audit: type=1326 audit(1718190541.089:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7072 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdbd967a627 code=0x7ffc0000
[  624.957687][   T29] audit: type=1326 audit(1718190541.099:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7072 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdbd96402e9 code=0x7ffc0000
[  624.981732][   T29] audit: type=1326 audit(1718190541.099:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7072 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=217 compat=0 ip=0x7fdbd967cea9 code=0x7ffc0000
[  625.006465][   T29] audit: type=1326 audit(1718190541.119:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7072 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdbd967a627 code=0x7ffc0000
[  625.047478][   T29] audit: type=1326 audit(1718190541.119:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7072 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdbd96402e9 code=0x7ffc0000
[  626.487890][ T4322] hsr_slave_0: left promiscuous mode
[  626.552779][ T4322] hsr_slave_1: left promiscuous mode
[  626.612210][ T4322] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  626.620086][ T4322] batman_adv: batadv0: Removing interface: batadv_slave_0
[  626.676818][ T4322] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  626.684933][ T4322] batman_adv: batadv0: Removing interface: batadv_slave_1
[  626.845810][ T4322] hsr_slave_0: left promiscuous mode
[  626.889944][ T4322] hsr_slave_1: left promiscuous mode
[  626.919497][ T4322] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  626.927873][ T4322] batman_adv: batadv0: Removing interface: batadv_slave_0
[  626.961714][ T4322] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  626.969578][ T4322] batman_adv: batadv0: Removing interface: batadv_slave_1
[  627.005695][ T4322] veth1_macvtap: left promiscuous mode
[  627.011999][ T4322] veth0_macvtap: left promiscuous mode
[  627.018044][ T4322] veth1_vlan: left promiscuous mode
[  627.023789][ T4322] veth0_vlan: left promiscuous mode
[  627.052576][ T4322] veth1_macvtap: left promiscuous mode
[  627.064713][ T4322] veth0_macvtap: left promiscuous mode
[  627.073033][ T4322] veth1_vlan: left promiscuous mode
[  627.078665][ T4322] veth0_vlan: left promiscuous mode
[  628.463136][ T4322] team0 (unregistering): Port device team_slave_1 removed
[  628.565601][ T4322] team0 (unregistering): Port device team_slave_0 removed
[  629.264574][ T4322] team0 (unregistering): Port device team_slave_1 removed
[  629.287954][ T4322] team0 (unregistering): Port device team_slave_0 removed
[  630.247197][ T6926] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  630.312927][ T6934] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  630.380930][ T6926] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  630.467548][ T6934] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  630.553727][ T6926] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  630.610490][ T6934] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  630.717698][ T6926] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  630.912606][ T6934] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  631.146113][ T7037] bridge0: port 1(bridge_slave_0) entered blocking state
[  631.160177][ T7037] bridge0: port 1(bridge_slave_0) entered disabled state
[  631.168014][ T7037] bridge_slave_0: entered allmulticast mode
[  631.176652][ T7037] bridge_slave_0: entered promiscuous mode
[  631.323504][ T7037] bridge0: port 2(bridge_slave_1) entered blocking state
[  631.331394][ T7037] bridge0: port 2(bridge_slave_1) entered disabled state
[  631.341175][ T7037] bridge_slave_1: entered allmulticast mode
[  631.351352][ T7037] bridge_slave_1: entered promiscuous mode
[  631.820584][ T7037] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  631.998925][ T7037] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  632.528910][ T7037] team0: Port device team_slave_0 added
[  632.583343][ T7104] loop4: detected capacity change from 0 to 128
[  632.664680][ T7037] team0: Port device team_slave_1 added
[  632.684737][ T7104] VFS: could not find a valid V7 on loop4.
[  633.028289][   T29] kauditd_printk_skb: 39 callbacks suppressed
[  633.028383][   T29] audit: type=1800 audit(1718190550.209:143): pid=7102 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1961 res=0 errno=0
[  633.058588][   T29] audit: type=1804 audit(1718190550.229:144): pid=7102 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir466558770/syzkaller.ASsTGK/33/bus" dev="sda1" ino=1961 res=1 errno=0
[  633.084980][   T29] audit: type=1804 audit(1718190550.269:145): pid=7102 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.4" name="/root/syzkaller-testdir466558770/syzkaller.ASsTGK/33/bus" dev="sda1" ino=1961 res=1 errno=0
[  633.383535][ T7037] batman_adv: batadv0: Adding interface: batadv_slave_0
[  633.390885][ T7037] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  633.422334][ T7037] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  633.769386][ T7037] batman_adv: batadv0: Adding interface: batadv_slave_1
[  633.778627][ T7037] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  633.807334][ T7037] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  634.212712][ T6934] 8021q: adding VLAN 0 to HW filter on device bond0
[  634.414843][ T6926] 8021q: adding VLAN 0 to HW filter on device bond0
[  634.587871][ T7037] hsr_slave_0: entered promiscuous mode
[  634.610259][ T7037] hsr_slave_1: entered promiscuous mode
[  634.652268][ T7037] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  634.660112][ T7037] Cannot create hsr debugfs directory
[  634.716380][ T6934] 8021q: adding VLAN 0 to HW filter on device team0
[  634.894530][ T6926] 8021q: adding VLAN 0 to HW filter on device team0
[  634.977787][ T5122] bridge0: port 1(bridge_slave_0) entered blocking state
[  634.985738][ T5122] bridge0: port 1(bridge_slave_0) entered forwarding state
[  635.203816][ T5122] bridge0: port 1(bridge_slave_0) entered blocking state
[  635.211818][ T5122] bridge0: port 1(bridge_slave_0) entered forwarding state
[  635.371589][ T5122] bridge0: port 2(bridge_slave_1) entered blocking state
[  635.379362][ T5122] bridge0: port 2(bridge_slave_1) entered forwarding state
[  635.402976][ T5122] bridge0: port 2(bridge_slave_1) entered blocking state
[  635.410787][ T5122] bridge0: port 2(bridge_slave_1) entered forwarding state
[  636.672627][ T7116] loop4: detected capacity change from 0 to 40427
[  636.716589][ T7116] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  636.727988][ T7116] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  636.838109][ T7116] F2FS-fs (loop4): Found nat_bits in checkpoint
[  637.187229][ T7116] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  637.201775][ T7116] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  638.040195][ T6934] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  639.268214][ T7037] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  639.430618][ T7037] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  639.602784][ T7037] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  639.801965][ T7037] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  641.321346][ T7037] 8021q: adding VLAN 0 to HW filter on device bond0
[  641.371027][ T6926] 8021q: adding VLAN 0 to HW filter on device batadv0
[  641.588097][ T6934] 8021q: adding VLAN 0 to HW filter on device batadv0
[  641.674405][ T7037] 8021q: adding VLAN 0 to HW filter on device team0
[  641.837298][  T781] bridge0: port 1(bridge_slave_0) entered blocking state
[  641.845054][  T781] bridge0: port 1(bridge_slave_0) entered forwarding state
[  641.996185][  T781] bridge0: port 2(bridge_slave_1) entered blocking state
[  642.003933][  T781] bridge0: port 2(bridge_slave_1) entered forwarding state
[  642.036855][ T6926] veth0_vlan: entered promiscuous mode
[  642.223744][ T6926] veth1_vlan: entered promiscuous mode
[  642.705448][ T6934] veth0_vlan: entered promiscuous mode
[  643.247434][ T6934] veth1_vlan: entered promiscuous mode
[  643.356548][ T6926] veth0_macvtap: entered promiscuous mode
[  643.561756][ T6926] veth1_macvtap: entered promiscuous mode
[  644.131393][ T6934] veth0_macvtap: entered promiscuous mode
[  644.176496][ T6926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  644.187667][ T6926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  644.198191][ T6926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  644.209304][ T6926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  644.219499][ T6926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  644.230477][ T6926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  644.242822][ T6926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  644.256704][ T6926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  644.267716][ T6926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  644.285891][ T6926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  644.304998][ T6926] batman_adv: batadv0: Interface activated: batadv_slave_0
[  644.324201][ T6934] veth1_macvtap: entered promiscuous mode
[  644.357090][ T7144] loop4: detected capacity change from 0 to 128
[  644.523815][ T7144] VFS: could not find a valid V7 on loop4.
[  644.825850][ T6934] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  644.837021][ T6934] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  644.847208][ T6934] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  644.858254][ T6934] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  644.868411][ T6934] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  644.883368][ T6934] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  644.895504][ T6934] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  644.906240][ T6934] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  644.916333][ T6934] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  644.926992][ T6934] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  644.937301][ T6934] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  644.948150][ T6934] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  644.966559][   T29] audit: type=1800 audit(1718190562.139:146): pid=7146 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1959 res=0 errno=0
[  644.969294][ T6934] batman_adv: batadv0: Interface activated: batadv_slave_0
[  645.147059][ T6926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  645.159054][ T6926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  645.170847][ T6926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  645.187242][ T6926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  645.198780][ T6926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  645.209712][ T6926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  645.219859][ T6926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  645.230651][ T6926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  645.240835][ T6926] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  645.251648][ T6926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  645.266094][ T6926] batman_adv: batadv0: Interface activated: batadv_slave_1
[  645.446088][ T6934] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  645.458855][ T6934] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  645.469573][ T6934] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  645.480710][ T6934] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  645.497448][ T6934] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  645.510141][ T6934] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  645.520830][ T6934] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  645.538245][ T6934] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  645.544041][ T5074] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  645.548435][ T6934] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  645.558230][ T5074] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  645.566068][ T6934] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  645.566176][ T6934] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  645.575996][ T5074] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  645.583849][ T6934] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  645.608287][ T5074] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  645.613553][ T5074] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[  645.627768][ T6934] batman_adv: batadv0: Interface activated: batadv_slave_1
[  645.636595][ T5074] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  645.685360][ T6934] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  645.701055][ T6934] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  645.712012][ T6934] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  645.721145][ T6934] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  645.829755][ T6926] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  645.839640][ T6926] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  645.848825][ T6926] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  645.857866][ T6926] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  646.812772][ T7037] 8021q: adding VLAN 0 to HW filter on device batadv0
[  647.855465][ T4427] Bluetooth: hci8: command tx timeout
[  648.072636][ T7160] loop4: detected capacity change from 0 to 40427
[  648.093530][ T7037] veth0_vlan: entered promiscuous mode
[  648.115559][ T7160] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  648.123826][ T7160] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  648.267105][ T7160] F2FS-fs (loop4): Found nat_bits in checkpoint
[  648.494110][ T7037] veth1_vlan: entered promiscuous mode
[  648.625546][ T7160] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  648.633234][ T7160] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  649.828265][ T7149] chnl_net:caif_netlink_parms(): no params data found
[  649.923507][ T4427] Bluetooth: hci8: command tx timeout
[  649.978229][ T7037] veth0_macvtap: entered promiscuous mode
[  650.375017][ T7037] veth1_macvtap: entered promiscuous mode
[  650.746013][ T7037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  650.757711][ T7037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  650.768025][ T7037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  650.778906][ T7037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  650.789134][ T7037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  650.800011][ T7037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  650.810302][ T7037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  650.827067][ T7037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  650.839195][ T7037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  650.850189][ T7037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  650.860443][ T7037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  650.871316][ T7037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  650.881651][ T7037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  650.892482][ T7037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  650.908323][ T7037] batman_adv: batadv0: Interface activated: batadv_slave_0
[  651.295824][ T7037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  651.306853][ T7037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  651.318462][ T7037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  651.336472][ T7037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  651.348409][ T7037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  651.359231][ T7037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  651.369482][ T7037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  651.380343][ T7037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  651.390574][ T7037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  651.401403][ T7037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  651.411755][ T7037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  651.422567][ T7037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  651.438573][ T7037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  651.451089][ T7037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  651.467106][ T7037] batman_adv: batadv0: Interface activated: batadv_slave_1
[  652.040214][ T4427] Bluetooth: hci8: command tx timeout
[  652.124793][ T7149] bridge0: port 1(bridge_slave_0) entered blocking state
[  652.132531][ T7149] bridge0: port 1(bridge_slave_0) entered disabled state
[  652.140345][ T7149] bridge_slave_0: entered allmulticast mode
[  652.155264][ T7149] bridge_slave_0: entered promiscuous mode
[  652.260796][ T7037] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  652.270073][ T7037] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  652.279314][ T7037] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  652.288520][ T7037] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  652.419772][ T7149] bridge0: port 2(bridge_slave_1) entered blocking state
[  652.427763][ T7149] bridge0: port 2(bridge_slave_1) entered disabled state
[  652.435949][ T7149] bridge_slave_1: entered allmulticast mode
[  652.445722][ T7149] bridge_slave_1: entered promiscuous mode
[  652.879225][ T7149] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  652.999406][ T7149] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  653.390699][ T7149] team0: Port device team_slave_0 added
[  653.490031][ T7149] team0: Port device team_slave_1 added
[  653.822873][ T7149] batman_adv: batadv0: Adding interface: batadv_slave_0
[  653.830192][ T7149] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  653.856809][ T7149] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  653.982195][ T7149] batman_adv: batadv0: Adding interface: batadv_slave_1
[  653.994900][ T7149] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  654.023034][ T7149] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  654.084936][ T4427] Bluetooth: hci8: command tx timeout
[  654.265765][ T1221] ieee802154 phy0 wpan0: encryption failed: -22
[  654.272670][ T1221] ieee802154 phy1 wpan1: encryption failed: -22
[  654.643636][ T7149] hsr_slave_0: entered promiscuous mode
[  654.718638][ T7149] hsr_slave_1: entered promiscuous mode
[  654.772837][ T7149] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  654.780785][ T7149] Cannot create hsr debugfs directory
[  656.826974][ T2784] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  656.852366][ T5074] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  656.902319][ T5074] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  656.914286][ T5074] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  656.966296][ T5074] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  656.977535][ T5074] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  656.986587][ T5074] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  657.287575][ T2784] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  657.337061][ T7193] loop4: detected capacity change from 0 to 1764
[  657.617999][ T2784] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  657.837913][ T2784] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  658.203089][ T4427] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  658.212926][ T4427] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  658.222614][ T4427] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  658.368750][ T7149] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  658.385526][ T4427] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  658.409262][ T4427] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  658.420506][ T4427] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  658.818753][ T7149] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  659.052047][ T4427] Bluetooth: hci0: command tx timeout
[  659.791177][ T7205] loop4: detected capacity change from 0 to 40427
[  659.852398][ T7205] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  659.860475][ T7205] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  659.998287][ T7149] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  660.027881][ T7205] F2FS-fs (loop4): Found nat_bits in checkpoint
[  660.371900][ T2784] bridge_slave_1: left allmulticast mode
[  660.377741][ T2784] bridge_slave_1: left promiscuous mode
[  660.384252][ T2784] bridge0: port 2(bridge_slave_1) entered disabled state
[  660.481841][ T4427] Bluetooth: hci5: command tx timeout
[  660.578727][ T7205] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  660.583257][ T2784] bridge_slave_0: left allmulticast mode
[  660.588215][ T7205] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  660.592157][ T2784] bridge_slave_0: left promiscuous mode
[  660.606507][ T2784] bridge0: port 1(bridge_slave_0) entered disabled state
[  661.121761][ T4427] Bluetooth: hci0: command tx timeout
[  662.074403][ T2784] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  662.188029][ T2784] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  662.223087][ T2784] bond0 (unregistering): Released all slaves
[  662.468496][ T7149] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  662.568515][ T4427] Bluetooth: hci5: command tx timeout
[  662.992257][ T2784] hsr_slave_0: left promiscuous mode
[  663.073367][ T2784] hsr_slave_1: left promiscuous mode
[  663.158155][ T2784] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  663.166355][ T2784] batman_adv: batadv0: Removing interface: batadv_slave_0
[  663.213448][ T4427] Bluetooth: hci0: command tx timeout
[  663.241804][ T2784] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  663.249638][ T2784] batman_adv: batadv0: Removing interface: batadv_slave_1
[  663.364709][ T2784] veth1_macvtap: left promiscuous mode
[  663.370547][ T2784] veth0_macvtap: left promiscuous mode
[  663.376860][ T2784] veth1_vlan: left promiscuous mode
[  663.382667][ T2784] veth0_vlan: left promiscuous mode
[  664.595649][ T2784] team0 (unregistering): Port device team_slave_1 removed
[  664.643647][ T4427] Bluetooth: hci5: command tx timeout
[  664.681969][ T2784] team0 (unregistering): Port device team_slave_0 removed
[  665.342858][ T4427] Bluetooth: hci0: command tx timeout
[  665.439667][ T7149] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  665.506457][ T7149] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  665.691674][ T7149] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  665.850388][ T7149] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  666.163852][ T7197] chnl_net:caif_netlink_parms(): no params data found
[  666.220141][ T2862] Bluetooth: hci2: Frame reassembly failed (-84)
[  666.625682][ T7200] chnl_net:caif_netlink_parms(): no params data found
[  666.723031][ T5074] Bluetooth: hci5: command tx timeout
[  667.835009][ T7149] 8021q: adding VLAN 0 to HW filter on device bond0
[  668.257625][ T7197] bridge0: port 1(bridge_slave_0) entered blocking state
[  668.265635][ T7197] bridge0: port 1(bridge_slave_0) entered disabled state
[  668.272083][ T5074] Bluetooth: hci2: command 0x1003 tx timeout
[  668.274390][ T7197] bridge_slave_0: entered allmulticast mode
[  668.289366][ T7197] bridge_slave_0: entered promiscuous mode
[  668.304221][ T4427] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  668.340829][ T7149] 8021q: adding VLAN 0 to HW filter on device team0
[  668.370354][ T7197] bridge0: port 2(bridge_slave_1) entered blocking state
[  668.378385][ T7197] bridge0: port 2(bridge_slave_1) entered disabled state
[  668.386828][ T7197] bridge_slave_1: entered allmulticast mode
[  668.396897][ T7197] bridge_slave_1: entered promiscuous mode
[  668.473702][ T5122] bridge0: port 1(bridge_slave_0) entered blocking state
[  668.481645][ T5122] bridge0: port 1(bridge_slave_0) entered forwarding state
[  668.854447][ T7200] bridge0: port 1(bridge_slave_0) entered blocking state
[  668.862582][ T7200] bridge0: port 1(bridge_slave_0) entered disabled state
[  668.870721][ T7200] bridge_slave_0: entered allmulticast mode
[  668.882719][ T7200] bridge_slave_0: entered promiscuous mode
[  669.134501][ T5122] bridge0: port 2(bridge_slave_1) entered blocking state
[  669.142435][ T5122] bridge0: port 2(bridge_slave_1) entered forwarding state
[  669.265043][ T7200] bridge0: port 2(bridge_slave_1) entered blocking state
[  669.273227][ T7200] bridge0: port 2(bridge_slave_1) entered disabled state
[  669.281262][ T7200] bridge_slave_1: entered allmulticast mode
[  669.291713][ T7200] bridge_slave_1: entered promiscuous mode
[  669.332775][ T7197] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  669.441990][ T5118] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  669.454874][ T5118] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  669.507853][ T7197] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  669.592313][ T7259] loop4: detected capacity change from 0 to 128
[  669.786885][ T7259] VFS: could not find a valid V7 on loop4.
[  669.829588][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  669.839065][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  670.091842][   T29] audit: type=1800 audit(1718190587.349:147): pid=7257 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1956 res=0 errno=0
[  670.140038][ T7197] team0: Port device team_slave_0 added
[  670.207718][ T7200] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  670.232081][   T29] audit: type=1804 audit(1718190587.449:148): pid=7257 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir466558770/syzkaller.ASsTGK/43/bus" dev="sda1" ino=1956 res=1 errno=0
[  670.259600][   T29] audit: type=1804 audit(1718190587.509:149): pid=7257 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.4" name="/root/syzkaller-testdir466558770/syzkaller.ASsTGK/43/bus" dev="sda1" ino=1956 res=1 errno=0
[  670.349069][ T7197] team0: Port device team_slave_1 added
[  670.434489][ T7200] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  670.979558][ T7200] team0: Port device team_slave_0 added
[  671.054685][ T7197] batman_adv: batadv0: Adding interface: batadv_slave_0
[  671.062656][ T7197] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  671.094671][ T7197] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  671.132090][ T7200] team0: Port device team_slave_1 added
[  671.347753][ T7197] batman_adv: batadv0: Adding interface: batadv_slave_1
[  671.355067][ T7197] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  671.383212][ T7197] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  671.491166][ T7263] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'.
[  671.550503][ T7200] batman_adv: batadv0: Adding interface: batadv_slave_0
[  671.557874][ T7200] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  671.585258][ T7200] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  671.800128][ T7200] batman_adv: batadv0: Adding interface: batadv_slave_1
[  671.813487][ T7200] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  671.841811][ T7200] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  672.018302][   T29] audit: type=1326 audit(1718190589.209:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7261 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb81d47cea9 code=0x0
[  672.285075][ T7197] hsr_slave_0: entered promiscuous mode
[  672.373776][ T7197] hsr_slave_1: entered promiscuous mode
[  672.410933][ T7197] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  672.424787][ T7197] Cannot create hsr debugfs directory
[  672.585025][ T2784] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  673.050746][ T7200] hsr_slave_0: entered promiscuous mode
[  673.103818][ T7200] hsr_slave_1: entered promiscuous mode
[  673.153468][ T7200] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  673.161322][ T7200] Cannot create hsr debugfs directory
[  673.262021][ T2784] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  673.514417][ T2784] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  674.054622][ T7273] loop1: detected capacity change from 0 to 40427
[  674.105556][ T7273] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  674.114917][ T7273] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  674.239933][ T2784] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  674.284355][ T7273] F2FS-fs (loop1): Found nat_bits in checkpoint
[  674.624103][ T7273] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  674.631706][ T7273] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  676.120880][ T2784] bridge_slave_1: left allmulticast mode
[  676.127430][ T2784] bridge_slave_1: left promiscuous mode
[  676.135052][ T2784] bridge0: port 2(bridge_slave_1) entered disabled state
[  676.227653][ T2784] bridge_slave_0: left allmulticast mode
[  676.233811][ T2784] bridge_slave_0: left promiscuous mode
[  676.240659][ T2784] bridge0: port 1(bridge_slave_0) entered disabled state
[  676.352667][ T2784] bridge_slave_1: left allmulticast mode
[  676.358613][ T2784] bridge_slave_1: left promiscuous mode
[  676.365509][ T2784] bridge0: port 2(bridge_slave_1) entered disabled state
[  676.452496][ T2784] bridge_slave_0: left allmulticast mode
[  676.458435][ T2784] bridge_slave_0: left promiscuous mode
[  676.465518][ T2784] bridge0: port 1(bridge_slave_0) entered disabled state
[  678.120280][ T2784] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  678.192637][ T2784] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  678.227324][ T2784] bond0 (unregistering): Released all slaves
[  678.289545][ T2784] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  678.424840][ T2784] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  678.491107][ T2784] bond0 (unregistering): Released all slaves
[  679.499676][ T7149] 8021q: adding VLAN 0 to HW filter on device batadv0
[  680.142726][ T2784] hsr_slave_0: left promiscuous mode
[  680.169706][ T2784] hsr_slave_1: left promiscuous mode
[  680.219227][ T2784] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  680.227381][ T2784] batman_adv: batadv0: Removing interface: batadv_slave_0
[  680.243062][ T7300] loop1: detected capacity change from 0 to 128
[  680.290858][ T2784] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  680.299051][ T2784] batman_adv: batadv0: Removing interface: batadv_slave_1
[  680.316267][ T7300] VFS: could not find a valid V7 on loop1.
[  680.444441][ T2784] hsr_slave_0: left promiscuous mode
[  680.466658][ T2784] hsr_slave_1: left promiscuous mode
[  680.634161][ T2784] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  680.644973][ T2784] batman_adv: batadv0: Removing interface: batadv_slave_0
[  680.670338][   T29] audit: type=1800 audit(1718190597.819:151): pid=7300 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1961 res=0 errno=0
[  680.734175][ T2784] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  680.742648][ T2784] batman_adv: batadv0: Removing interface: batadv_slave_1
[  680.852838][ T2784] veth1_macvtap: left promiscuous mode
[  680.858659][ T2784] veth0_macvtap: left promiscuous mode
[  680.864797][ T2784] veth1_vlan: left promiscuous mode
[  680.870427][ T2784] veth0_vlan: left promiscuous mode
[  680.943030][ T2784] veth1_macvtap: left promiscuous mode
[  680.948972][ T2784] veth0_macvtap: left promiscuous mode
[  680.955053][ T2784] veth1_vlan: left promiscuous mode
[  680.960733][ T2784] veth0_vlan: left promiscuous mode
[  682.247262][ T7302] loop1: detected capacity change from 0 to 40427
[  682.311787][ T7302] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  682.319843][ T7302] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  682.350123][ T7302] F2FS-fs (loop1): Found nat_bits in checkpoint
[  682.741891][ T7302] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  682.749249][ T7302] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  683.449662][ T2784] team0 (unregistering): Port device team_slave_1 removed
[  683.627081][ T2784] team0 (unregistering): Port device team_slave_0 removed
[  684.448420][ T2784] team0 (unregistering): Port device team_slave_1 removed
[  684.519543][ T2784] team0 (unregistering): Port device team_slave_0 removed
[  685.793616][ T7149] veth0_vlan: entered promiscuous mode
[  685.979931][ T7149] veth1_vlan: entered promiscuous mode
[  686.526489][ T7149] veth0_macvtap: entered promiscuous mode
[  686.695709][ T7197] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  686.798536][ T7149] veth1_macvtap: entered promiscuous mode
[  686.867553][ T7197] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  686.942731][ T7200] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  687.004555][ T7197] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  687.092916][ T7200] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  687.149481][ T7197] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  687.220076][ T7200] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  687.307376][ T7200] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  687.445525][ T7149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  687.457629][ T7149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  687.467932][ T7149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  687.483599][ T7149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  687.495087][ T7149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  687.506016][ T7149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  687.517233][ T7149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  687.531870][ T7149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  687.544226][ T7149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  687.555089][ T7149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  687.570850][ T7149] batman_adv: batadv0: Interface activated: batadv_slave_0
[  687.893125][ T7149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  687.904426][ T7149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  687.914868][ T7149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  687.925837][ T7149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  687.936991][ T7149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  687.948462][ T7149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  687.959077][ T7149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  687.970377][ T7149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  687.980718][ T7149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  687.999123][ T7149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  688.017253][ T7149] batman_adv: batadv0: Interface activated: batadv_slave_1
[  688.410094][ T7149] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  688.422103][ T7149] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  688.428782][ T7313] loop1: detected capacity change from 0 to 128
[  688.431090][ T7149] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  688.447228][ T7149] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  688.664292][ T7313] VFS: could not find a valid V7 on loop1.
[  688.979662][   T29] audit: type=1800 audit(1718190606.189:152): pid=7313 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1961 res=0 errno=0
[  689.901810][ T7200] 8021q: adding VLAN 0 to HW filter on device bond0
[  689.960512][ T7197] 8021q: adding VLAN 0 to HW filter on device bond0
[  690.177801][ T7200] 8021q: adding VLAN 0 to HW filter on device team0
[  690.302429][ T7197] 8021q: adding VLAN 0 to HW filter on device team0
[  690.389102][   T25] bridge0: port 1(bridge_slave_0) entered blocking state
[  690.397109][   T25] bridge0: port 1(bridge_slave_0) entered forwarding state
[  690.636939][   T25] bridge0: port 1(bridge_slave_0) entered blocking state
[  690.644924][   T25] bridge0: port 1(bridge_slave_0) entered forwarding state
[  690.669280][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[  690.677200][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[  690.694887][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[  690.702739][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[  691.133887][ T7323] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  691.308280][ T7200] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  691.403694][ T7197] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  694.225864][ T3006] Bluetooth: hci2: Frame reassembly failed (-84)
[  694.264605][ T7197] 8021q: adding VLAN 0 to HW filter on device batadv0
[  694.422373][ T7200] 8021q: adding VLAN 0 to HW filter on device batadv0
[  694.916803][ T7197] veth0_vlan: entered promiscuous mode
[  695.116352][ T7197] veth1_vlan: entered promiscuous mode
[  695.177735][ T7200] veth0_vlan: entered promiscuous mode
[  695.307785][ T7200] veth1_vlan: entered promiscuous mode
[  695.555416][ T7197] veth0_macvtap: entered promiscuous mode
[  695.688367][ T7197] veth1_macvtap: entered promiscuous mode
[  695.727705][ T7200] veth0_macvtap: entered promiscuous mode
[  695.812563][ T7200] veth1_macvtap: entered promiscuous mode
[  695.969890][ T7197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  695.985745][ T7197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  695.997441][ T7197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  696.012566][ T7197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  696.022794][ T7197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  696.035052][ T7197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  696.045301][ T7197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  696.056133][ T7197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  696.066302][ T7197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  696.081888][ T7197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  696.093442][ T7197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  696.104265][ T7197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  696.120504][ T7197] batman_adv: batadv0: Interface activated: batadv_slave_0
[  696.162972][ T4427] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  696.342145][ T7197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  696.354626][ T7197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  696.365797][ T7197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  696.376639][ T7197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  696.391307][ T7197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  696.406358][ T7197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  696.417798][ T7197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  696.428765][ T7197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  696.439030][ T7197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  696.449891][ T7197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  696.460042][ T7197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  696.470935][ T7197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  696.495378][ T7197] batman_adv: batadv0: Interface activated: batadv_slave_1
[  696.613522][ T7200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  696.624816][ T7200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  696.635018][ T7200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  696.645845][ T7200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  696.656983][ T7200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  696.670391][ T7200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  696.680760][ T7200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  696.696189][ T7200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  696.707777][ T7200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  696.718585][ T7200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  696.733208][ T7200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  696.743988][ T7200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  696.754168][ T7200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  696.764999][ T7200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  696.781160][ T7200] batman_adv: batadv0: Interface activated: batadv_slave_0
[  696.837131][ T7197] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  696.847033][ T7197] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  696.856356][ T7197] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  696.865657][ T7197] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  696.909974][ T7200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  696.920911][ T7200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  696.931227][ T7200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  696.942100][ T7200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  696.952286][ T7200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  696.964790][ T7200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  696.978346][ T7200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  696.989380][ T7200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  697.004206][ T7200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  697.016468][ T7200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  697.026680][ T7200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  697.037494][ T7200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  697.049500][ T7200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  697.061498][ T7200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  697.077614][ T7200] batman_adv: batadv0: Interface activated: batadv_slave_1
[  697.252396][ T7200] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  697.261365][ T7200] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  697.270494][ T7200] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  697.279531][ T7200] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  697.828363][ T7363] loop1: detected capacity change from 0 to 2048
[  697.954750][ T7363] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  698.166391][ T7370] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  700.528337][ T5118] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  700.536519][ T5118] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  700.827747][ T4197] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  700.836137][ T4197] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  701.780368][   T29] audit: type=1326 audit(1718190619.049:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7397 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0c9b87cea9 code=0x0
[  701.990936][ T7402] kAFS: unable to lookup cell '(>.Dz£û‚ʃ€¹sf¿Iêv¼N›úhÿÌ\û«ˆD%ÁÉa²¨¨âD'©+iÝ8ÄBc²ÂNÄo~F^ÁŸŠÜ(›$•)¬úÍ3kÿ 8S¦7<�±—Lé°+Gw¤
[  701.990936][ T7402] %ͳÁ5…•Ýè>2ÞÕóÙgÕ‘fo$	.~'
[  702.101942][   T29] audit: type=1326 audit(1718190619.349:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7397 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0c9b87cea9 code=0x0
[  702.160977][ T7402] binder: 7397:7402 ioctl c0306201 0 returned -14
[  703.833057][ T5074] Bluetooth: hci6: Controller not accepting commands anymore: ncmd = 0
[  703.841934][ T5074] Bluetooth: hci6: Injecting HCI hardware error event
[  703.850010][ T5074] Bluetooth: hci6: hardware error 0x00
[  705.450953][ T7038] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  705.491323][ T7038] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  705.507308][ T7038] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  705.562574][ T7038] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  705.611258][ T7038] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  705.622798][ T7038] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  705.985533][ T5074] Bluetooth: hci6: Opcode 0x0c03 failed: -110
[  707.782225][ T5074] Bluetooth: hci2: command tx timeout
[  708.088171][ T4197] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  708.096592][ T4197] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  708.274430][ T7427] chnl_net:caif_netlink_parms(): no params data found
[  708.841843][ T2976] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  708.849965][ T2976] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  709.038912][ T4197] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  709.048732][ T4197] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  709.246251][ T4197] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  709.254806][ T4197] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  709.842061][ T5074] Bluetooth: hci2: command tx timeout
[  710.277326][   T29] audit: type=1326 audit(1718190627.489:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb81d47cea9 code=0x0
[  710.485924][ T7468] kAFS: unable to lookup cell '(>.Dz£û‚ʃ€¹sf¿Iêv¼N›úhÿÌ\û«ˆD%ÁÉa²¨¨âD'©+iÝ8ÄBc²ÂNÄo~F^ÁŸŠÜ(›$•)¬úÍ3kÿ 8S¦7<�±—Lé°+Gw¤
[  710.485924][ T7468] %ͳÁ5…•Ýè>2ÞÕóÙgÕ‘fo$	.~'
[  710.593870][ T3049] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  710.767441][   T29] audit: type=1326 audit(1718190627.999:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb81d47cea9 code=0x0
[  710.860376][ T3049] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  710.864372][ T7468] binder: 7463:7468 ioctl c0306201 0 returned -14
[  711.098203][ T3049] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  711.330173][ T3049] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  711.630239][ T7427] bridge0: port 1(bridge_slave_0) entered blocking state
[  711.653869][ T7427] bridge0: port 1(bridge_slave_0) entered disabled state
[  711.662099][ T7427] bridge_slave_0: entered allmulticast mode
[  711.670927][ T7427] bridge_slave_0: entered promiscuous mode
[  711.901998][ T7427] bridge0: port 2(bridge_slave_1) entered blocking state
[  711.909907][ T7427] bridge0: port 2(bridge_slave_1) entered disabled state
[  711.918988][ T7427] bridge_slave_1: entered allmulticast mode
[  711.929236][ T7427] bridge_slave_1: entered promiscuous mode
[  712.010533][ T5074] Bluetooth: hci2: command tx timeout
[  712.099431][ T3049] bridge_slave_1: left allmulticast mode
[  712.105502][ T3049] bridge_slave_1: left promiscuous mode
[  712.111985][ T3049] bridge0: port 2(bridge_slave_1) entered disabled state
[  712.251383][ T3049] bridge_slave_0: left allmulticast mode
[  712.264263][ T3049] bridge_slave_0: left promiscuous mode
[  712.270993][ T3049] bridge0: port 1(bridge_slave_0) entered disabled state
[  713.328688][ T3049] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  713.428548][ T3049] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  713.502933][ T3049] bond0 (unregistering): Released all slaves
[  713.929106][ T7427] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  713.971147][ T7427] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  714.088251][ T5074] Bluetooth: hci2: command tx timeout
[  714.748512][ T7427] team0: Port device team_slave_0 added
[  715.032030][ T7427] team0: Port device team_slave_1 added
[  715.181631][ T3049] hsr_slave_0: left promiscuous mode
[  715.218927][ T3049] hsr_slave_1: left promiscuous mode
[  715.293399][ T3049] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  715.302059][ T3049] batman_adv: batadv0: Removing interface: batadv_slave_0
[  715.376479][ T3049] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  715.385183][ T3049] batman_adv: batadv0: Removing interface: batadv_slave_1
[  715.526059][ T3049] veth1_macvtap: left promiscuous mode
[  715.543118][ T3049] veth0_macvtap: left promiscuous mode
[  715.548990][ T3049] veth1_vlan: left promiscuous mode
[  715.554798][ T3049] veth0_vlan: left promiscuous mode
[  715.798882][ T1221] ieee802154 phy0 wpan0: encryption failed: -22
[  715.806800][ T1221] ieee802154 phy1 wpan1: encryption failed: -22
[  715.991102][ T7497] loop2: detected capacity change from 0 to 128
[  717.054273][ T3049] team0 (unregistering): Port device team_slave_1 removed
[  717.155888][ T3049] team0 (unregistering): Port device team_slave_0 removed
[  717.278747][   T29] audit: type=1326 audit(1718190634.519:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7501 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0c9b87cea9 code=0x0
[  717.395152][ T7504] kAFS: unable to lookup cell '(>.Dz£û‚ʃ€¹sf¿Iêv¼N›úhÿÌ\û«ˆD%ÁÉa²¨¨âD'©+iÝ8ÄBc²ÂNÄo~F^ÁŸŠÜ(›$•)¬úÍ3kÿ 8S¦7<�±—Lé°+Gw¤
[  717.395152][ T7504] %ͳÁ5…•Ýè>2ÞÕóÙgÕ‘fo$	.~'
[  717.697316][   T29] audit: type=1326 audit(1718190634.959:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7501 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0c9b87cea9 code=0x0
[  717.876896][ T7507] binder: 7501:7507 ioctl c0306201 0 returned -14
[  718.026892][ T7427] batman_adv: batadv0: Adding interface: batadv_slave_0
[  718.034333][ T7427] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  718.061557][ T7427] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  718.283323][ T7427] batman_adv: batadv0: Adding interface: batadv_slave_1
[  718.290655][ T7427] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  718.322750][ T7427] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  719.182351][ T7427] hsr_slave_0: entered promiscuous mode
[  719.403614][ T7427] hsr_slave_1: entered promiscuous mode
[  719.482195][ T7427] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  719.490055][ T7427] Cannot create hsr debugfs directory
[  719.953765][ T7521] pim6reg1: entered promiscuous mode
[  719.959405][ T7521] pim6reg1: entered allmulticast mode
[  722.417330][ T7427] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  722.627740][ T7427] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  722.809589][ T7427] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  722.967076][ T7427] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  723.279812][ T7543] loop1: detected capacity change from 0 to 128
[  724.824252][ T7550] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  725.133443][   T29] audit: type=1326 audit(1718190642.359:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7552 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb81d47cea9 code=0x0
[  725.234668][ T7555] kAFS: unable to lookup cell '(>.Dz£û‚ʃ€¹sf¿Iêv¼N›úhÿÌ\û«ˆD%ÁÉa²¨¨âD'©+iÝ8ÄBc²ÂNÄo~F^ÁŸŠÜ(›$•)¬úÍ3kÿ 8S¦7<�±—Lé°+Gw¤
[  725.234668][ T7555] %ͳÁ5…•Ýè>2ÞÕóÙgÕ‘fo$	.~'
[  725.511253][   T29] audit: type=1326 audit(1718190642.779:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7552 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb81d47cea9 code=0x0
[  725.596886][ T7556] binder: 7552:7556 ioctl c0306201 0 returned -14
[  725.653124][ T7427] 8021q: adding VLAN 0 to HW filter on device bond0
[  726.027739][ T7427] 8021q: adding VLAN 0 to HW filter on device team0
[  726.318382][ T5116] bridge0: port 1(bridge_slave_0) entered blocking state
[  726.326563][ T5116] bridge0: port 1(bridge_slave_0) entered forwarding state
[  726.507579][ T5116] bridge0: port 2(bridge_slave_1) entered blocking state
[  726.515219][ T5116] bridge0: port 2(bridge_slave_1) entered forwarding state
[  727.327755][ T7427] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  730.463279][ T7588] loop2: detected capacity change from 0 to 128
[  730.816596][ T7427] 8021q: adding VLAN 0 to HW filter on device batadv0
[  732.178960][ T7596] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  734.292032][ T7613] input: syz0 as /devices/virtual/input/input6
[  735.455070][ T7427] veth0_vlan: entered promiscuous mode
[  735.820477][ T7427] veth1_vlan: entered promiscuous mode
[  736.607940][ T7427] veth0_macvtap: entered promiscuous mode
[  736.710299][ T7427] veth1_macvtap: entered promiscuous mode
[  737.119887][ T7427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  737.131853][ T7427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  737.154702][ T7427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  737.168418][ T7427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  737.178622][ T7427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  737.189530][ T7427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  737.199777][ T7427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  737.210676][ T7427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  737.220991][ T7427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  737.232378][ T7427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  737.252974][ T7427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  737.266585][ T7427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  737.276804][ T7427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  737.287640][ T7427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  737.305103][ T7427] batman_adv: batadv0: Interface activated: batadv_slave_0
[  737.660705][ T7427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  737.672020][ T7427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  737.682469][ T7427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  737.693404][ T7427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  737.703714][ T7427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  737.714813][ T7427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  737.725083][ T7427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  737.735773][ T7427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  737.746169][ T7427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  737.765571][ T7427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  737.778555][ T7427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  737.789324][ T7427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  737.799368][ T7427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  737.810090][ T7427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  737.825991][ T7427] batman_adv: batadv0: Interface activated: batadv_slave_1
[  738.124704][ T7427] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  738.133979][ T7427] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  738.143235][ T7427] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  738.152516][ T7427] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  742.192915][ T7642] netlink: 'syz-executor.0': attribute type 1 has an invalid length.
[  743.582453][ T5116] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  743.851644][ T5116] usb 4-1: Using ep0 maxpacket: 32
[  744.007668][ T5116] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  744.018280][ T5116] usb 4-1: config 0 has no interfaces?
[  744.194686][ T5116] usb 4-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  744.211691][ T5116] usb 4-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  744.220065][ T5116] usb 4-1: Product: syz
[  744.226469][ T5116] usb 4-1: Manufacturer: syz
[  744.231258][ T5116] usb 4-1: SerialNumber: syz
[  744.260653][  T781] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  744.294141][ T5116] usb 4-1: config 0 descriptor??
[  744.542625][ T5160] usb 4-1: USB disconnect, device number 4
[  744.682875][  T781] usb 2-1: config index 0 descriptor too short (expected 68, got 36)
[  744.691264][  T781] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  744.701925][  T781] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  744.722139][  T781] usb 2-1: New USB device found, idVendor=06cb, idProduct=81a7, bcdDevice= 0.00
[  744.733487][  T781] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  744.865879][  T781] usb 2-1: config 0 descriptor??
[  744.954802][  T781] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  745.187100][ T5122] usb 2-1: USB disconnect, device number 4
[  746.743466][ T7666] tipc: Started in network mode
[  746.748523][ T7666] tipc: Node identity 5, cluster identity 4711
[  746.755060][ T7666] tipc: Node number set to 5
[  751.652952][  T781] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  752.052307][  T781] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  752.065766][  T781] usb 4-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  752.075112][  T781] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  752.186374][  T781] usb 4-1: config 0 descriptor??
[  752.275136][  T781] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  752.289662][ T7691] loop1: detected capacity change from 0 to 128
[  752.592113][ T5160] usb 4-1: USB disconnect, device number 5
[  752.762309][ T2784] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  752.770429][ T2784] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  752.962426][ T3006] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  752.970487][ T3006] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  754.044641][ T7697] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  754.052722][ T7697] batman_adv: batadv0: Removing interface: batadv_slave_0
[  754.166456][ T7697] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  754.174863][ T7697] batman_adv: batadv0: Removing interface: batadv_slave_1
[  754.186366][   T25] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  754.521736][   T25] usb 4-1: Using ep0 maxpacket: 32
[  754.800785][   T25] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  754.811936][   T25] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  755.013752][ T5074] Bluetooth: hci2: Unknown advertising packet type: 0x70
[  755.013871][ T5074] Bluetooth: hci2: adv larger than maximum supported
[  755.021076][ T5074] Bluetooth: hci2: Malformed LE Event: 0x0d
[  755.235694][   T25] usb 4-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  755.245473][   T25] usb 4-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  755.254149][   T25] usb 4-1: Product: syz
[  755.258587][   T25] usb 4-1: Manufacturer: syz
[  755.268227][   T25] usb 4-1: SerialNumber: syz
[  755.513896][   T25] usb 4-1: config 0 descriptor??
[  755.917467][   T25] usb 4-1: USB disconnect, device number 6
[  756.297735][ T7704] loop4: detected capacity change from 0 to 512
[  756.349477][ T7704] EXT4-fs: Ignoring removed nobh option
[  756.486190][ T7704] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -13
[  756.653150][ T7704] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #13: comm syz-executor.4: attempt to clear invalid blocks 2 len 1
[  756.706644][ T7704] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  756.724511][ T7704] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz-executor.4: invalid indirect mapped block 1819239214 (level 0)
[  756.919302][ T7704] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz-executor.4: invalid indirect mapped block 1819239214 (level 1)
[  757.225504][ T7704] EXT4-fs (loop4): 1 truncate cleaned up
[  757.231662][ T7704] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  757.581896][   T29] audit: type=1800 audit(1718190674.799:161): pid=7708 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1976 res=0 errno=0
[  757.778325][ T7702] usb usb8: usbfs: interface 0 claimed by hub while 'syz-executor.1' resets device
[  760.687117][ T7427] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  762.391067][ T7730] warning: `syz-executor.3' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  763.842746][ T5074] Bluetooth: hci8: Unknown advertising packet type: 0x70
[  763.842899][ T5074] Bluetooth: hci8: adv larger than maximum supported
[  763.850317][ T5074] Bluetooth: hci8: Malformed LE Event: 0x0d
[  764.362002][  T781] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  764.622008][  T781] usb 5-1: Using ep0 maxpacket: 32
[  764.772314][  T781] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  764.783061][  T781] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  765.073334][  T781] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  765.082976][  T781] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  765.099420][  T781] usb 5-1: Product: syz
[  765.105559][  T781] usb 5-1: Manufacturer: syz
[  765.110355][  T781] usb 5-1: SerialNumber: syz
[  765.253957][  T781] usb 5-1: config 0 descriptor??
[  765.426058][   T29] audit: type=1800 audit(1718190682.669:162): pid=7738 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1969 res=0 errno=0
[  765.558532][  T781] usb 5-1: USB disconnect, device number 3
[  766.347716][ T7741] loop3: detected capacity change from 0 to 128
[  766.582160][ T7038] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  766.592268][ T7038] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  766.607285][ T7038] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  766.625129][ T7038] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  766.712604][ T7748] loop4: detected capacity change from 0 to 16
[  766.751787][ T7748] erofs: (device loop4): mounted with root inode @ nid 36.
[  766.780003][ T7748] syz-executor.4: attempt to access beyond end of device
[  766.780003][ T7748] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[  766.799073][ T7038] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  766.851718][ T7038] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  768.010792][ T7755] syz-executor.4: attempt to access beyond end of device
[  768.010792][ T7755] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[  768.727854][ T7758] netlink: 'syz-executor.3': attribute type 3 has an invalid length.
[  768.736563][ T7758] netlink: 'syz-executor.3': attribute type 3 has an invalid length.
[  768.754971][ T7758] usb usb8: usbfs: interface 0 claimed by hub while 'syz-executor.3' resets device
[  768.961707][ T7038] Bluetooth: hci8: command 0x0406 tx timeout
[  770.558030][ T4427] Bluetooth: hci7: command tx timeout
[  771.919373][ T7745] chnl_net:caif_netlink_parms(): no params data found
[  772.650965][ T7038] Bluetooth: hci7: command tx timeout
[  773.226164][ T4427] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  773.242844][ T4427] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  773.253195][ T4427] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  773.343783][ T4427] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  773.405796][ T4427] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[  773.418535][ T4427] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  774.046254][ T7774] loop1: detected capacity change from 0 to 512
[  774.293835][ T7774] EXT4-fs (loop1): 1 truncate cleaned up
[  774.299682][ T7774] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  774.734805][ T4427] Bluetooth: hci7: command tx timeout
[  775.403831][ T7037] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  775.531860][ T4427] Bluetooth: hci9: command tx timeout
[  775.774446][ T7768] chnl_net:caif_netlink_parms(): no params data found
[  776.025540][ T7745] bridge0: port 1(bridge_slave_0) entered blocking state
[  776.034898][ T7745] bridge0: port 1(bridge_slave_0) entered disabled state
[  776.043348][ T7745] bridge_slave_0: entered allmulticast mode
[  776.067210][ T7745] bridge_slave_0: entered promiscuous mode
[  776.228256][ T7745] bridge0: port 2(bridge_slave_1) entered blocking state
[  776.235940][ T7745] bridge0: port 2(bridge_slave_1) entered disabled state
[  776.243941][ T7745] bridge_slave_1: entered allmulticast mode
[  776.267720][ T7745] bridge_slave_1: entered promiscuous mode
[  776.801692][ T4427] Bluetooth: hci7: command tx timeout
[  776.897477][ T7745] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  777.112747][ T7745] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  777.167243][ T1221] ieee802154 phy0 wpan0: encryption failed: -22
[  777.178724][ T1221] ieee802154 phy1 wpan1: encryption failed: -22
[  777.534633][ T7745] team0: Port device team_slave_0 added
[  777.601901][ T7038] Bluetooth: hci9: command tx timeout
[  777.643585][ T7745] team0: Port device team_slave_1 added
[  777.978699][ T7745] batman_adv: batadv0: Adding interface: batadv_slave_0
[  777.986104][ T7745] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  778.019730][ T7745] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  778.327228][ T7745] batman_adv: batadv0: Adding interface: batadv_slave_1
[  778.334589][ T7745] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  778.362148][ T7745] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  778.375413][   T29] audit: type=1800 audit(1718190695.609:163): pid=7788 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1958 res=0 errno=0
[  778.853679][ T7768] bridge0: port 1(bridge_slave_0) entered blocking state
[  778.861860][ T7768] bridge0: port 1(bridge_slave_0) entered disabled state
[  778.871948][ T7768] bridge_slave_0: entered allmulticast mode
[  778.882644][ T7768] bridge_slave_0: entered promiscuous mode
[  779.066545][ T7745] hsr_slave_0: entered promiscuous mode
[  779.139731][ T7745] hsr_slave_1: entered promiscuous mode
[  779.203636][ T7038] Bluetooth: hci0: command 0x0406 tx timeout
[  779.246781][ T7745] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  779.255405][ T7745] Cannot create hsr debugfs directory
[  779.288390][ T7768] bridge0: port 2(bridge_slave_1) entered blocking state
[  779.296145][ T7768] bridge0: port 2(bridge_slave_1) entered disabled state
[  779.304352][ T7768] bridge_slave_1: entered allmulticast mode
[  779.313624][ T7768] bridge_slave_1: entered promiscuous mode
[  779.682588][ T4427] Bluetooth: hci9: command tx timeout
[  780.135110][ T7768] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  780.180596][  T781] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  780.396315][ T7768] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  780.477983][  T781] usb 2-1: Using ep0 maxpacket: 32
[  780.622441][  T781] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  780.632923][  T781] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  780.902117][  T781] usb 2-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  780.911718][  T781] usb 2-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  780.920152][  T781] usb 2-1: Product: syz
[  780.924736][  T781] usb 2-1: Manufacturer: syz
[  780.929515][  T781] usb 2-1: SerialNumber: syz
[  781.046207][  T781] usb 2-1: config 0 descriptor??
[  781.250785][ T7768] team0: Port device team_slave_0 added
[  781.322702][  T781] usb 2-1: USB disconnect, device number 5
[  781.362213][ T7768] team0: Port device team_slave_1 added
[  781.737805][ T7745] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  781.764160][ T4427] Bluetooth: hci9: command tx timeout
[  782.522264][ T7794] =====================================================
[  782.529538][ T7794] BUG: KMSAN: uninit-value in __bpf_strtoull+0x245/0x5b0
[  782.537202][ T7794]  __bpf_strtoull+0x245/0x5b0
[  782.542527][ T7794]  bpf_strtol+0x7c/0x270
[  782.547119][ T7794]  ___bpf_prog_run+0x13fe/0xe0f0
[  782.552809][ T7794]  __bpf_prog_run96+0xb5/0xe0
[  782.557924][ T7794]  bpf_test_run+0x43e/0xc30
[  782.563075][ T7794]  bpf_prog_test_run_xdp+0xeaa/0x1a40
[  782.568648][ T7794]  bpf_prog_test_run+0x6b7/0xad0
[  782.573888][ T7794]  __sys_bpf+0x6aa/0xd90
[  782.578285][ T7794]  __x64_sys_bpf+0xa0/0xe0
[  782.582989][ T7794]  x64_sys_call+0x96b/0x3b50
[  782.587727][ T7794]  do_syscall_64+0xcf/0x1e0
[  782.592589][ T7794]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  782.598645][ T7794] 
[  782.601076][ T7794] Local variable stack created at:
[  782.606461][ T7794]  __bpf_prog_run96+0x45/0xe0
[  782.611342][ T7794]  bpf_test_run+0x43e/0xc30
[  782.616177][ T7794] 
[  782.618604][ T7794] CPU: 0 PID: 7794 Comm: syz-executor.3 Not tainted 6.9.0-syzkaller-02707-g614da38e2f7a #0
[  782.628911][ T7794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  782.639191][ T7794] =====================================================
[  782.646292][ T7794] Disabling lock debugging due to kernel taint
[  782.652687][ T7794] Kernel panic - not syncing: kmsan.panic set ...
[  782.659222][ T7794] CPU: 0 PID: 7794 Comm: syz-executor.3 Tainted: G    B              6.9.0-syzkaller-02707-g614da38e2f7a #0
[  782.670809][ T7794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  782.680974][ T7794] Call Trace:
[  782.684332][ T7794]  <TASK>
[  782.687341][ T7794]  dump_stack_lvl+0x216/0x2d0
[  782.692189][ T7794]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  782.698145][ T7794]  dump_stack+0x1e/0x30
[  782.702457][ T7794]  panic+0x4e2/0xcd0
[  782.706536][ T7794]  ? kmsan_get_metadata+0xf1/0x1d0
[  782.711910][ T7794]  kmsan_report+0x2d5/0x2e0
[  782.716597][ T7794]  ? __msan_warning+0x95/0x120
[  782.721499][ T7794]  ? __bpf_strtoull+0x245/0x5b0
[  782.726490][ T7794]  ? bpf_strtol+0x7c/0x270
[  782.731074][ T7794]  ? ___bpf_prog_run+0x13fe/0xe0f0
[  782.736347][ T7794]  ? __bpf_prog_run96+0xb5/0xe0
[  782.741346][ T7794]  ? bpf_test_run+0x43e/0xc30
[  782.746247][ T7794]  ? bpf_prog_test_run_xdp+0xeaa/0x1a40
[  782.751953][ T7794]  ? bpf_prog_test_run+0x6b7/0xad0
[  782.757204][ T7794]  ? __sys_bpf+0x6aa/0xd90
[  782.761744][ T7794]  ? __x64_sys_bpf+0xa0/0xe0
[  782.766451][ T7794]  ? x64_sys_call+0x96b/0x3b50
[  782.771387][ T7794]  ? do_syscall_64+0xcf/0x1e0
[  782.776249][ T7794]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  782.782476][ T7794]  ? kmsan_get_metadata+0x146/0x1d0
[  782.787807][ T7794]  ? kmsan_get_metadata+0x146/0x1d0
[  782.793152][ T7794]  ? kmsan_internal_set_shadow_origin+0x66/0xe0
[  782.799596][ T7794]  ? kmsan_get_metadata+0x146/0x1d0
[  782.804940][ T7794]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  782.810925][ T7794]  ? _raw_spin_unlock_irqrestore+0x3f/0x60
[  782.817006][ T7794]  ? stack_depot_save_flags+0x66d/0x6e0
[  782.822693][ T7794]  ? kmsan_get_metadata+0x146/0x1d0
[  782.828024][ T7794]  ? kmsan_internal_set_shadow_origin+0x66/0xe0
[  782.834439][ T7794]  ? kmsan_get_metadata+0x146/0x1d0
[  782.839793][ T7794]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  782.845739][ T7794]  __msan_warning+0x95/0x120
[  782.850448][ T7794]  __bpf_strtoull+0x245/0x5b0
[  782.855292][ T7794]  ? bpf_strtol+0x5c/0x270
[  782.859861][ T7794]  ? ___bpf_prog_run+0x13fe/0xe0f0
[  782.865132][ T7794]  bpf_strtol+0x7c/0x270
[  782.869521][ T7794]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  782.875474][ T7794]  ___bpf_prog_run+0x13fe/0xe0f0
[  782.880639][ T7794]  ? kmsan_get_metadata+0x146/0x1d0
[  782.886004][ T7794]  __bpf_prog_run96+0xb5/0xe0
[  782.890847][ T7794]  ? ktime_get+0x4c7/0x530
[  782.895417][ T7794]  ? __pfx___bpf_prog_run96+0x10/0x10
[  782.900950][ T7794]  bpf_test_run+0x43e/0xc30
[  782.905620][ T7794]  ? bpf_test_run+0x388/0xc30
[  782.910500][ T7794]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  782.916749][ T7794]  bpf_prog_test_run_xdp+0xeaa/0x1a40
[  782.922486][ T7794]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  782.928603][ T7794]  bpf_prog_test_run+0x6b7/0xad0
[  782.933823][ T7794]  __sys_bpf+0x6aa/0xd90
[  782.938352][ T7794]  __x64_sys_bpf+0xa0/0xe0
[  782.943017][ T7794]  x64_sys_call+0x96b/0x3b50
[  782.947874][ T7794]  do_syscall_64+0xcf/0x1e0
[  782.952648][ T7794]  ? clear_bhb_loop+0x25/0x80
[  782.957595][ T7794]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  782.963781][ T7794] RIP: 0033:0x7f0c9b87cea9
[  782.968385][ T7794] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  782.988265][ T7794] RSP: 002b:00007f0c9c6cf0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  782.996940][ T7794] RAX: ffffffffffffffda RBX: 00007f0c9b9b3f80 RCX: 00007f0c9b87cea9
[  783.005117][ T7794] RDX: 0000000000000050 RSI: 0000000020000640 RDI: 000000000000000a
[  783.013274][ T7794] RBP: 00007f0c9b8ebff4 R08: 0000000000000000 R09: 0000000000000000
[  783.021460][ T7794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  783.029629][ T7794] R13: 000000000000000b R14: 00007f0c9b9b3f80 R15: 00007ffede9aaa38
[  783.037824][ T7794]  </TASK>
[  783.041330][ T7794] Kernel Offset: disabled
[  783.045782][ T7794] Rebooting in 86400 seconds..