last executing test programs:

12.496744078s ago: executing program 1 (id=229):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x1}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r2, &(0x7f00000000c0)={0x18}, 0x18)
write$FUSE_INIT(r2, &(0x7f0000000200)={0x50}, 0x50)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})
r3 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
fsync(r3) (fail_nth: 1)

11.979561999s ago: executing program 1 (id=232):
userfaultfd(0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, 0x0)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x301c40a, &(0x7f00000000c0)={[{@rodir}, {@shortname_winnt}, {@numtail}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'cp866'}}, {@iocharset={'iocharset', 0x3d, 'cp737'}}, {@uni_xlateno}, {@shortname_mixed}, {@shortname_lower}, {@fat=@codepage={'codepage', 0x3d, '852'}}, {@uni_xlate}, {@utf8no}, {@uni_xlateno}, {@rodir}, {@shortname_lower}, {@fat=@errors_continue}, {@rodir}, {@fat=@showexec}]}, 0x6, 0x2d5, &(0x7f0000000680)="$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")
creat(&(0x7f00000001c0)='./file0\x00', 0x0)
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setscheduler(0x0, 0x2, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[], [], 0x2c})
openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000580)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
socket$inet(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8983, &(0x7f00000077c0)={0x0, 'vxcan1\x00', {0x3}, 0x95e4})

11.914494259s ago: executing program 0 (id=233):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3801000010000100feffff5bfb589eff0001000000000000000000000000ff3de0000002fc010000000000000000000000000001000107104e23000200000000325f1c00", @ANYRESHEX=r0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000001000000006c00000000000000000000000000ffff0a01010100000000000000009201000000000000a39b000000000000ffff0000000000001c250000000000000300000000000000fcffffffffffffff0000000000000000ffffffffffffffff00000000000000001f000000000000000400000000000000fffffffffcffffff000000008000000001350000020001000000000000000000480003006465666c61746500"/240], 0x138}}, 0x8880)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000040)={0x0, <r3=>0x0}, &(0x7f00000000c0)=0xc)
r4 = getgid()
fchown(r2, r3, r4)
r5 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x11, 0x86dd, 0x0, 0x1, 0x0, 0x6, @random="e131b6ac9c26"}, 0x14)
unshare(0x22020600)
bind$bt_hci(r5, &(0x7f0000000000)={0x27}, 0x62)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'bridge0\x00'})
r6 = socket$unix(0x1, 0x1, 0x0)
socket$unix(0x1, 0x1, 0x0)
bind$unix(r6, &(0x7f0000000200)=@file={0x1, './file0\x00'}, 0x6a)
r7 = landlock_create_ruleset(&(0x7f0000000040)={0x0, 0x3}, 0x10, 0x0)
landlock_restrict_self(r7, 0x0)
landlock_restrict_self(r7, 0x0)
landlock_restrict_self(r7, 0x0)
landlock_restrict_self(r7, 0x0)
landlock_restrict_self(r7, 0x0)
landlock_restrict_self(r7, 0x0)
landlock_restrict_self(r7, 0x0)
landlock_restrict_self(r7, 0x0)
landlock_restrict_self(r7, 0x0)

9.718476387s ago: executing program 1 (id=236):
r0 = socket(0x11, 0xa, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x8990, &(0x7f0000000080)={'ip6gre0\x00', &(0x7f0000000440)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, @loopback={0x300}, @mcast2={0xff, 0x5}, 0x0, 0x0, 0x0, 0x2}})

9.553781117s ago: executing program 0 (id=238):
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000640)=ANY=[@ANYBLOB="a800000000000080e8dec85a44e0f01cf138ee1fe6e1a2ac1fd2be1c2d88"], 0xa8)
mount$9p_fd(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_fscache}]}})
sendmsg$OSF_MSG_ADD(r2, &(0x7f00000015c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000001580)={&(0x7f0000000040)={0x1508, 0x0, 0x5, 0x3, 0x0, 0x0, {0xa}, [{{0x254, 0x1, {{0x1, 0xbed}, 0xa, 0x9, 0xb0, 0x4, 0x17, 'syz0\x00', "aa46126a42a4a73b3dbfc1e145b5dda04d9ca44d12a91b50bb4435ee7eeb851a", "8d6c914d194a8e9c3cd09c6fc572b94480ea5d68ad168ea2c9f4906c78eb4d94", [{0x3e33, 0x2, {0x1, 0x5}}, {0x400, 0x6, {0x0, 0x8}}, {0x81, 0x2, {0x1, 0x1}}, {0x8, 0x5, {0x2, 0x6}}, {0x1, 0x4, {0x2, 0x8}}, {0x8, 0x4, {0x0, 0x8000}}, {0x7fff, 0x9, {0x77748757ab4ede21, 0x100}}, {0x4, 0x5, {0x3, 0x6}}, {0xdfce, 0x1, {0x1, 0x569b4a60}}, {0x5, 0x5, {0x0, 0xd32}}, {0xaa39, 0x5c8a, {0x2, 0x8}}, {0x4, 0x6, {0x2, 0x4}}, {0xfff9, 0x7fff, {0x1, 0xfffff801}}, {0x9, 0x4, {0x2, 0x6}}, {0x7, 0x1, {0x1, 0x193f}}, {0x7, 0x9, {0x0, 0x3}}, {0x6, 0x400, {0x3}}, {0x2c, 0x5, {0x2, 0x1}}, {0x1, 0x1, {0x1, 0x9}}, {0x3, 0x1ff, {0x0, 0x6}}, {0x5, 0x8001, {0x1, 0x1}}, {0x1c, 0x7, {0x1, 0x2}}, {0x2, 0x4, {0x3, 0xb100000}}, {0x4b23, 0xf8a3, {0x0, 0x3}}, {0x6, 0x8000, {0x3, 0x8}}, {0x0, 0x9, {0x0, 0x6}}, {0xcb7e, 0x8001, {0x0, 0x4}}, {0x100, 0x9, {0x1}}, {0x9cb, 0x5, {0x3, 0x80000001}}, {0xf, 0x8001, {0x1, 0x1}}, {0x2, 0x2, {0x1, 0xfffffff4}}, {0xc, 0x5, {0x3, 0x4}}, {0xaf2, 0x3, {0x3, 0x1000}}, {0x1, 0x6, {0x1, 0xfe93}}, {0x5, 0x8, {0x0, 0xffffffff}}, {0x3, 0x81, {0x1, 0x3}}, {0x0, 0xff, {0x2, 0x1}}, {0x9, 0x6b, {0x3, 0xf}}, {0x101, 0xf, {0x1, 0x10}}, {0x3, 0x3, {0x0, 0x21}}]}}}, {{0x254, 0x1, {{0x1, 0x400}, 0x9, 0x0, 0x4, 0x7, 0xd, 'syz1\x00', "d208c03c43540e74f06bb29db08d4a81463578db4413a78ae6deeca9866843b2", "acd967e46fa8deb8a61f9a997967b402bd04454c9a4f2c0fdf61c9ddb57c62d6", [{0x8, 0x5, {0x1, 0x10}}, {0x8, 0x8001, {0x0, 0x7fffffff}}, {0x3, 0x0, {0x3, 0x3}}, {0x3, 0x7, {0x2, 0x4}}, {0x781, 0x0, {0x2, 0xd91}}, {0x1, 0x2dda, {0x2, 0x6}}, {0x7, 0x100, {0x0, 0x3}}, {0x101, 0x1000, {0x0, 0xfffffffe}}, {0x3, 0x8, {0x3, 0x8}}, {0x2, 0x6, {0x3, 0x10000}}, {0xa2, 0x707f, {0x0, 0xf768}}, {0x6, 0x8, {0x3, 0x5}}, {0x100, 0x4}, {0x80, 0x0, {0x2, 0x101}}, {0x9, 0x7, {0x2, 0x6}}, {0x8, 0xff, {0x0, 0x2}}, {0x3, 0x8, {0x1, 0xb117}}, {0x7, 0x9, {0x3, 0x1}}, {0x3, 0x7, {0x3, 0x591}}, {0x3, 0xc32, {0x1, 0x1}}, {0x4, 0x20, {0x1, 0x5}}, {0x1, 0x7fff, {0x1, 0x4b}}, {0x7, 0x4, {0x0, 0x6}}, {0x7b, 0xf6a1, {0x0, 0x8}}, {0x7, 0x6, {0x0, 0xff}}, {0x0, 0x7, {0x2, 0x10000}}, {0x200, 0x5287, {0x1, 0x3ff}}, {0x74, 0x1, {0x2, 0x8}}, {0x30, 0x5f, {0x1, 0x7}}, {0xd, 0x2, {0x1, 0x2015}}, {0x0, 0x0, {0x2}}, {0xda7, 0x3, {0x3, 0x70}}, {0x80, 0x3ff, {0x2, 0x224}}, {0x7, 0x3, {0x0, 0x9}}, {0xffd0, 0x8000, {0x1, 0x4}}, {0x5, 0x0, {0x0, 0x9}}, {0xa8, 0x5, {0x3, 0x3}}, {0xb281, 0x85b, {0x2, 0x2}}, {0x7ff, 0x9, {0x3, 0x9}}, {0x7, 0x8, {0x3, 0x2}}]}}}, {{0x254, 0x1, {{0x1, 0x9}, 0x8, 0x58, 0x9, 0x3, 0xd, 'syz1\x00', "e738392208dc7daa934c1f4bddfe8ea432a497193e5f368bc1fab608674eef3b", "8bfdb7d8d5463301bcf634a83b765b8e5a273e22c3cf2edc1ed5ec51d3b42af9", [{0x2, 0x0, {0x0, 0xffffff81}}, {0x1, 0xd, {0x0, 0x4da5}}, {0x0, 0x7, {0x1, 0x3}}, {0x4, 0x1, {0x0, 0x5}}, {0x400, 0x9, {0x2, 0x7}}, {0x4, 0x6, {0x0, 0x5}}, {0x1, 0xd, {0x1}}, {0xf, 0x1, {0x2, 0x8}}, {0x1, 0x100, {0x3, 0x1}}, {0xfff8, 0x49, {0x3, 0x2}}, {0x1, 0xffff, {0x1, 0xd}}, {0x1, 0xd2, {0x0, 0x3ff}}, {0xfffb, 0x5, {0x2, 0x800}}, {0x4, 0x2, {0x2, 0x2}}, {0x4, 0x3ff, {0x2}}, {0x2, 0xf, {0x2, 0x100}}, {0x8, 0x3, {0x3, 0xf}}, {0x8, 0x7, {0x1, 0x1}}, {0x9, 0xb2b, {0xd6537730ae16723c, 0x9}}, {0x800, 0x8, {0x3, 0x1}}, {0x1, 0x3, {0x1, 0xfffffb10}}, {0xf, 0x8, {0x0, 0x2}}, {0x10, 0x1, {0x3, 0x80000001}}, {0x2, 0x9, {0x6, 0x5}}, {0x2, 0x1, {0x0, 0x1}}, {0xa68b, 0x7, {0x0, 0x1}}, {0x8, 0x1, {0x0, 0x10001}}, {0x1085, 0x9, {0x2, 0x8}}, {0x7, 0x4, {0x1}}, {0xc2, 0x6, {0x0, 0x5}}, {0xfbff, 0xe66, {0x0, 0xd9}}, {0x5, 0xfc5, {0x2, 0x4}}, {0xd1, 0x7, {0x1, 0x4}}, {0x1ff, 0x88c, {0x2, 0x6}}, {0x5, 0xfff8, {0x2, 0x200}}, {0x5, 0x80, {0x2, 0x11d1}}, {0x400, 0x7, {0x1, 0x10001}}, {0x8000, 0x1, {0x3, 0x4}}, {0x4, 0x3f, {0x2, 0x6}}, {0x9, 0x4, {0x1, 0x3}}]}}}, {{0x254, 0x1, {{0x3, 0x1}, 0x17, 0x0, 0x1, 0x639, 0x28, 'syz0\x00', "a147fb254b702a7a2a84e3937f6f1cd5c68ed6d0efc062aac6a9f93f6cd1b827", "24af81d1918b06824ebc3852440810e741a121b07d50908db55f55a22ab42b37", [{0x3, 0xfffd, {0x1, 0x5d}}, {0x2, 0x3, {0x3, 0x2}}, {0x5fe7, 0xc27, {0x3, 0x8000}}, {0x3, 0x1bd4, {0x1, 0x1}}, {0xdee, 0x0, {0x3, 0x4}}, {0x5f, 0x7fff, {0x3, 0x10}}, {0x8, 0x8000, {0x2, 0x1}}, {0x0, 0xb691, {0x1, 0x7}}, {0x3ff, 0x7, {0x3, 0xe}}, {0xb, 0x6, {0x3, 0x43}}, {0x1, 0x8, {0x3}}, {0x9, 0x7}, {0x4, 0x100, {0x2, 0x8}}, {0x7f, 0x9, {0x3, 0x3}}, {0xfff8, 0x1, {0x0, 0x7}}, {0x8, 0x7fff, {0x1, 0x1}}, {0x200, 0x8, {0x2, 0xec9}}, {0x9, 0x2, {0x1, 0xfffffffc}}, {0x0, 0xfffd, {0x2, 0xffffffff}}, {0x7, 0x1, {0x3, 0x4}}, {0x5, 0x1, {0x2, 0x1}}, {0x1, 0x4c, {0x2, 0x4}}, {0x0, 0x4, {0x1, 0x4}}, {0x1, 0x5, {0x1, 0x5}}, {0x7, 0x2, {0x2, 0x9}}, {0x7ff, 0x546, {0x1, 0x6}}, {0x4, 0x2, {0x3, 0x4}}, {0x3ff, 0xd, {0x3, 0xfffffff7}}, {0x0, 0xad9, {0x0, 0x1}}, {0x7, 0x2, {0x2, 0x2}}, {0x8, 0x80, {0x2, 0x90000000}}, {0x0, 0x40, {0x0, 0x4}}, {0x5, 0x4, {0x3, 0xd2}}, {0x1200, 0x9, {0x3, 0x3}}, {0x4, 0x2, {0x1, 0x200}}, {0x7, 0x0, {0x0, 0x2}}, {0x3, 0xfde2, {0x0, 0xd7c6}}, {0x4b8, 0xc6, {0x1, 0x93}}, {0xdfd, 0xfff8, {0x2, 0x5}}, {0x87e, 0xb3, {0x0, 0x5}}]}}}, {{0x254, 0x1, {{0x2, 0x2}, 0x4, 0x8, 0xeca, 0xfffb, 0xb, 'syz1\x00', "5e49fdf3894474df08273d3fc27987754b8da3703b209aeb1ff85577deb121a1", "47568918fe1967c84c05d3b93b4feeb41d1df65aa52bdecf2d57c3f019c0768f", [{0x9, 0xff, {0x2, 0x2}}, {0x800, 0x5, {0x1, 0x3}}, {0xe2ac, 0x6, {0x3, 0x8}}, {0x9, 0x401, {0x2, 0x5}}, {0x3, 0x8000, {0x1, 0x6f1cd9a}}, {0x72, 0xc9, {0x2, 0xa5}}, {0x100, 0x4, {0x3, 0x4}}, {0x6, 0x6, {0x3, 0x43b}}, {0xb67, 0x7f, {0x2, 0x2}}, {0xf, 0x4, {0x1, 0x2}}, {0x3ff, 0x100, {0x1, 0x8001}}, {0x1, 0x7ff, {0x0, 0x200}}, {0x9, 0x1, {0x3}}, {0x5, 0x3, {0x1, 0x9}}, {0x6, 0x1, {0x2, 0x7f}}, {0xa, 0xc, {0x0, 0xffffffff}}, {0x4, 0x0, {0x1, 0x4}}, {0xff7f, 0x6, {0x1, 0x6}}, {0x4, 0x5, {0xae626adeabe1718c, 0xb1}}, {0x621c, 0x3, {0x1, 0x3}}, {0x2, 0x1ff, {0x2, 0x42e}}, {0x0, 0x2, {0x1}}, {0x7f, 0x9761, {0x3, 0xb9}}, {0x200, 0x50, {0x0, 0x1}}, {0x8, 0x0, {0x1, 0x2}}, {0x0, 0xfff, {0xe62e40c2525e2db9}}, {0x0, 0x9, {0x1, 0x80000001}}, {0x0, 0xc, {0x2, 0x1ff}}, {0x3, 0x3, {0x3, 0x5}}, {0x5, 0xb, {0x2, 0x6}}, {0x8abb, 0x4, {0x1, 0x5}}, {0x200, 0x9, {0x1, 0x87}}, {0x7, 0x3, {0x3, 0x4}}, {0xdca, 0x5, {0x2, 0x1}}, {0x3, 0x5, {0x1}}, {0x8, 0x5, {0x0, 0x1}}, {0x4, 0x5, {0x2, 0xcff0}}, {0xb52, 0x8, {0x0, 0x101}}, {0xffff, 0x6, {0x0, 0x3}}, {0x1000, 0x1, {0x3, 0x4}}]}}}, {{0x254, 0x1, {{0x1, 0x8}, 0x9, 0x9, 0x6b, 0xaaa2, 0x24, 'syz0\x00', "9204f67a261ffe806416595ad72b1e2467a47c7516c786360ca837d8c887692c", "45b8ec711ed778d9c42f1d1c639335a2aea3847eb9897c5b4626c1adf97c68d9", [{0x63c5, 0x4, {0x3}}, {0x8, 0x3, {0x2, 0x401}}, {0xc, 0x1, {0x1, 0xa}}, {0xb377, 0x2, {0x3, 0x4}}, {0x6, 0x0, {0x1, 0x6}}, {0x7ff8, 0x4, {0x2, 0x6}}, {0x5, 0x9, {0x0, 0x1}}, {0x9, 0x7, {0x3, 0x9}}, {0x0, 0x7fff, {0x1, 0x2}}, {0x2, 0x5813, {0x1, 0x10000}}, {0xb9da, 0x81, {0x3, 0x1}}, {0x8d25, 0x0, {0x1, 0xfffffff9}}, {0x7, 0x6, {0x1, 0x7}}, {0x7f, 0x2, {0x2, 0xa}}, {0x2, 0x709, {0x3, 0x4}}, {0xb34e, 0xfffa, {0x2, 0xffffffff}}, {0x8001, 0x1, {0x0, 0x6}}, {0x5, 0x6, {0x2, 0x6}}, {0xbde8, 0xfff7, {0x3, 0x4}}, {0x0, 0xba4b, {0x3, 0x2}}, {0x400, 0x68}, {0x6, 0x8, {0x1, 0x3}}, {0x10, 0x4, {0x2, 0xd}}, {0x6, 0x130, {0x3, 0x3}}, {0xa, 0x4e5f, {0x3, 0x9}}, {0x101, 0xfd, {0x1, 0x9}}, {0x6, 0x879e, {0x2, 0xfffffffb}}, {0x4, 0x92, {0x0, 0x2}}, {0x7f, 0x101, {0x1, 0xd67}}, {0x67cb, 0x400, {0x0, 0x9}}, {0x8, 0x9, {0x3, 0x400}}, {0x8d, 0x2, {0x3, 0x5}}, {0x5, 0x9, {0x2, 0x9}}, {0x200, 0x2, {0x2, 0x101}}, {0x7, 0x7, {0x2, 0x7}}, {0x1, 0x1, {0x2}}, {0x9, 0x0, {0x2, 0x7}}, {0x8, 0x3, {0x3, 0x2}}, {0x9, 0xa61d, {0x1, 0xfffffffd}}, {0x8001, 0x9, {0x1, 0x1}}]}}}, {{0x254, 0x1, {{0x1, 0x800}, 0xb0, 0x3b, 0x4, 0x3, 0x26, 'syz1\x00', "8ed9e695902c16eff0855de5cb07f50774b7e9a8662dba72b2fffab2511cbc85", "508581b34b7548f18f7d341914089a6c5fb4708764812c9d365ceeca28997b91", [{0x0, 0x4, {0x0, 0x75}}, {0xc2, 0x2, {0x3}}, {0x5, 0x70ab, {0x3, 0x2}}, {0x0, 0x1, {0x3, 0xf}}, {0xffff, 0x5, {0x2, 0x1}}, {0x6, 0x5, {0x2, 0x4}}, {0x10, 0xfff, {0x2, 0x6}}, {0x21f9, 0xffff, {0x2, 0x7}}, {0x7, 0xa, {0x2, 0x4}}, {0xffff, 0x5, {0x3, 0x6}}, {0x100, 0x40, {0x3, 0x3}}, {0x9, 0xfffb, {0x1, 0x1}}, {0x1, 0x1d13}, {0x3, 0x1, {0x1, 0xa}}, {0x0, 0x2, {0x3, 0x5}}, {0xb41, 0x101, {0x1, 0x4}}, {0x2, 0x3, {0x3, 0xfffffff8}}, {0x40, 0x0, {0x2}}, {0x0, 0xc4, {0x3, 0x5}}, {0x4, 0xfff8, {0x1, 0x3}}, {0x0, 0x1, {0x1, 0x1}}, {0x1, 0x7fff, {0x3, 0x5}}, {0xfffc, 0x2, {0x0, 0x6}}, {0x4, 0x8001, {0x2, 0x6}}, {0x2, 0x1, {0x2, 0x400}}, {0x27c, 0x4, {0x0, 0x1}}, {0x5, 0x25, {0x3, 0x2}}, {0x3, 0xf24f, {0x0, 0x8}}, {0x2, 0x9, {0x3, 0x5}}, {0x7fa6, 0x9, {0x3, 0x9}}, {0x101, 0x8000, {0x1, 0x7}}, {0x2, 0xa, {0x1, 0x1}}, {0x2be7, 0x8, {0x2}}, {0x101, 0x5, {0x3, 0x10001}}, {0x7f, 0x8d93, {0x2, 0x3}}, {0xab0, 0xf, {0x2}}, {0xffff, 0x7, {0x2, 0x6}}, {0xfc01, 0x7, {0x0, 0x7}}, {0x6, 0x101, {0x3, 0x2}}, {0x7, 0x81, {0x2, 0x5}}]}}}, {{0x254, 0x1, {{0x0, 0x8000}, 0xbe, 0xfb, 0x5, 0x7ff, 0x17, 'syz1\x00', "7b8bbb76f68b9bd50ca4f7d911b2aa70738f2bb7728f15ea4580475b96b3ba1e", "eaf153f5b154396ec651811517b8e86f426be591d5db518f31ddd593e54c1dc1", [{0xfffa, 0x6, {0x0, 0x6}}, {0xf660, 0x1}, {0x1, 0x80, {0x2, 0x3}}, {0x9, 0x3, {0x1, 0x6}}, {0x6, 0x8, {0x3, 0x7}}, {0x2, 0x15, {0x2, 0x1}}, {0x3, 0xfff9, {0x3, 0x2}}, {0xda37, 0x3, {0x3, 0x7}}, {0x4c, 0x2, {0x2, 0x5}}, {0x8, 0xed, {0x0, 0x7}}, {0x3, 0x9, {0x0, 0xfffffff9}}, {0x1ff, 0x0, {0x0, 0x2}}, {0x101, 0x8, {0x2, 0x400}}, {0x1, 0x6, {0x2, 0x4181}}, {0x6, 0x6, {0x2, 0x25f3}}, {0x4d1, 0x8, {0x1, 0x99b}}, {0x100, 0x200, {0x1, 0x6}}, {0x2, 0x3b2, {0x1}}, {0x4, 0x9, {0x1}}, {0x40, 0x4000, {0x0, 0xf12}}, {0x200, 0x100, {0x0, 0x10001}}, {0x6, 0xe, {0x1, 0x9}}, {0xb, 0x5, {0x2, 0x7}}, {0x5, 0xac, {0x3, 0x1ff}}, {0x7e1c, 0x7, {0x0, 0x1ff}}, {0x9, 0x5, {0x1, 0x8}}, {0x81, 0x1, {0x3, 0xff}}, {0x2, 0xe8, {0x0, 0x4}}, {0x8, 0x7, {0x1, 0xc}}, {0x0, 0x5c1, {0x0, 0x3}}, {0x1, 0x400, {0x2, 0x4}}, {0x9, 0xfffd, {0x2, 0xfffffff8}}, {0x3, 0x7ac}, {0x0, 0x9, {0x1, 0x3}}, {0xffe3, 0xc, {0x3, 0x7}}, {0x6, 0x1e4, {0x3, 0x6}}, {0x0, 0x6, {0x1, 0x5}}, {0x8, 0x2, {0x2, 0xfff}}, {0xf, 0xf, {0x1, 0x9}}, {0x3, 0x36a, {0x3, 0xc}}]}}}, {{0x254, 0x1, {{0x2, 0xe1d}, 0xe0, 0x2, 0x7f, 0x5, 0x13, 'syz0\x00', "afeb3937a5c6ec83254307189db8889d7ea9bc0315d70f38f1d80a960e54f0a8", "5d89e4b25ee9624d6dc81a261e1e4385a97831927d82a1790436de8ab17e6d76", [{0x9, 0x5, {0x3, 0x3}}, {0x1, 0x2, {0x3, 0x6}}, {0xd2, 0x601, {0x2, 0x3}}, {0x0, 0xa3d4, {0x3, 0x401}}, {0x5, 0x3, {0x0, 0x2}}, {0x0, 0x7ff, {0x0, 0x8}}, {0x2, 0xfffa, {0x2, 0x6}}, {0x9000, 0x1, {0x0, 0x200}}, {0x8001, 0xfffd, {0x2, 0x9}}, {0x81, 0x8, {0x1, 0x1ffc}}, {0x6, 0x819, {0x1, 0x71c3}}, {0x63, 0x6, {0x0, 0x7fffffff}}, {0xb5f, 0x6, {0x0, 0x20000}}, {0x101, 0x100, {0x3, 0x1}}, {0x0, 0x1, {0x2, 0x4}}, {0x7, 0x6, {0x2, 0x5741}}, {0x81, 0xffff, {0x2, 0x5}}, {0x4, 0xcba, {0x1, 0x1}}, {0x4, 0x4, {0x2, 0xc78e}}, {0x7, 0x100, {0x4, 0x7}}, {0xfffd, 0x6}, {0x9, 0x9, {0x1, 0x5}}, {0x4, 0x4, {0x2, 0x91b}}, {0xe, 0x18, {0x0, 0x8}}, {0x8, 0x6, {0x3, 0xd}}, {0x5, 0x67, {0x0, 0x84b}}, {0x6, 0xfff, {0x0, 0xd}}, {0x81, 0x5, {0x1, 0x3}}, {0x8dd, 0x3, {0x1, 0x40}}, {0x2f9c, 0x1, {0x1, 0x2}}, {0x81, 0x5, {0x1, 0x8}}, {0x7, 0x8, {0x1, 0x2}}, {0x3ff, 0x0, {0x3, 0xffff2921}}, {0x786e, 0x41, {0x0, 0xfffffffa}}, {0xf09, 0xb, {0x1, 0x2}}, {0x5, 0x7, {0x3, 0x66}}, {0x840b, 0x3c, {0x3}}, {0x138, 0xa127, {0x3, 0x2}}, {0x5, 0xbc, {0x2, 0x50a}}, {0x6, 0x1, {0x0, 0x7}}]}}}]}, 0x1508}, 0x1, 0x0, 0x0, 0x4}, 0x28000040)
clock_gettime(0x2, &(0x7f0000003a40))

9.442153295s ago: executing program 3 (id=239):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f00000008c0)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@orlov}, {@abort}, {@nombcache}, {@stripe={'stripe', 0x3d, 0x10}}]}, 0x64, 0x50a, &(0x7f0000000200)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000780))
execve(&(0x7f0000000780)='./file0\x00', 0x0, 0x0)

9.28401516s ago: executing program 4 (id=240):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000340)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000300)='contention_begin\x00', r0, 0x0, 0x2}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
openat$snapshot(0xffffff9c, &(0x7f0000000880), 0x20840, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2004090, &(0x7f0000000540), 0x81, 0x7a5, &(0x7f0000000f80)="$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")

9.112527724s ago: executing program 0 (id=241):
syz_usb_connect(0x2, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="1a0100005c6b4408070a64006e40010203030902240001a82300000904000002ca744d00090503034d00ff99090805", @ANYRES32], &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$char_usb(r0, &(0x7f0000000000)="98ba7d5fae9585de67f00c60c5784d3ef88aadc169c7b5e95ac812cae9b36bf39e9d2041fe847260c7eca830917fc6c42ac19257f9ead2aa66e208fcfb9a073598", 0x41)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d00000085000000500000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000280)='rss_stat\x00', r1}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)

9.074083974s ago: executing program 1 (id=242):
semget$private(0x0, 0x6, 0x0)
gettid()
timer_create(0x0, 0x0, &(0x7f0000000000)=<r0=>0x0)
timer_settime(r0, 0x0, 0x0, 0x0)
timer_gettime(r0, &(0x7f0000000000))
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x21885e, &(0x7f0000000440)={[{@grpquota}, {@min_batch_time={'min_batch_time', 0x3d, 0x2f}}, {@dioread_lock}]}, 0x5, 0x504, &(0x7f0000001480)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r2, 0x2007ffc)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x3, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009b00000095"], &(0x7f0000000080)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r4, 0x18000000000002a0, 0x36, 0x0, &(0x7f00000003c0)="b9ff030760031a00000008f086dd2a7ed4de231a95ef04a5bbc68f87a48da096bb1ce1d7483d2752500fb2705808132ae178be10da73", 0x0, 0xfffffdff, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50)
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
sendfile(r2, r2, 0x0, 0x800000009)
socket$nl_netfilter(0x10, 0x3, 0xc)
write$binfmt_script(r1, &(0x7f0000000040), 0x208e24b)
fallocate(r1, 0x10, 0x401, 0xce7)

8.220370808s ago: executing program 2 (id=243):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r1 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000002480)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000000100)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000002200)={0x50, 0x0, r2, {0x7, 0x27, 0x0, 0x14a4014, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}}, 0x50)
read$FUSE(r0, &(0x7f0000002900)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r0, &(0x7f0000002140)={0x10, 0xffffffffffffffda, r3}, 0x10)
syz_fuse_handle_req(r0, &(0x7f0000009040)="c9b6cf40d6a9928c6a8c0fdaba1e7bbd4ee597917b02ec4e8ff3bec8d7d8c08f8813039f40175e54e3d66ec19388ed788cf69c0c5b560f0401f1adb4b1f5198fe0bd7627cb9dc384db5b44495ba6094046fb2c8c7d0af7d67dbc3f5ef4aef8ec6bb01c52b6a10d4f9473987d0809b6a84f2ff8aae19a082abcb68b41c291add3ca2204a38c59e28c7c910aaa5a075676e541b6bb91de3854d2f97d3f80dc56c0705e74624a947f2c21ff936c6ba827742a24fd6d9e10b470ceb73a23fc57f5fa27cf073f2d0235e6fa4d1c29f9d0b6509c890ce0e7c3a2a4dd8b6336f02b9d7cc4c8e37f5f5a57f63aeec3228bd15b6d041eab97bccb14ee1ca6fbf7f7ed2e4dd0a32d41cc41c1031424b94621edcea1bddd40f3ad905202dfba3b912efd3468d2ad42b8a01bcb13b288afdc00b7e5857425d7919651160ec15447a26758f20653e69559f0892efc8f0715d8d79f52a44c79aba8ac58dc726ed721eeab3480eaacc2655d4b8831c9aff049c32709ab7adfb24ae767d45468dc0e42bc34b3568ce95e850eaabbf3a1be4d0f9b3e8781a2a9dc06374fe496a755b48abce67fd56de43816d64e883d9db51489ab8a81d1af3a180b6772d2bdac6313d3c183239d4c0bbbe76173f011f144ba71ac8043107f6533b3ef2f44924039b8587485749647315eb7bfe1e412e94f8cdaa937480fdd23769a69e14ea82d741484c99dd1ddd1edfb4faa51431f15531b61e59d68f9d189b27d0bf925970ac66fc35dbe1e430893cc60b28ca6d8e34931bf02154aee6f1fc58d0c0d8e48eaf8079ded67fdd9f19ebfa85d1ab6ec7f54e1963be353b34a6cb7fa35ddb60a9fc6bd1c6f11bf981b5a1bba81513fe447ff7eb2db0d27f1cfd04353e05f37d6c1bd6eb8219ce799338de3518bfec529373e4acfd644212be283856be064bac0f4926c02c0915816615f1f04d1d5136872029afee663f0bf1b6811c594e1465fba59f5727e5a826e3c60576bc2087f21521ffc90dcca39cbec7c0466c8fb7b1bcea7cffb333d2d16daa269d63f4911d10ed24462b37cdceb7c88e819489e1939e5e3cdcc5a858d09803c98d9e5fd617bc92c0880f072c54608f6ea69edba05b4edcd8d3f5e3c926220a191f2aa0d2f0c9158e298bc2e756ee091a0ac48752e4bb56fac67b02eb2c7b3380244ed66648482d8bc2a29bfc26ade0f4a5665282ea408254fd88e2812a184ee9af9c7769fba1ec380043d5cdf6056f89b0e6812a441c3013b0fe0d8418fc47c13fbf4fc2b4a89496d4ab9d9826d0e586574e8dd15d4eb8b86ed372e37287fc818df5b6993b650fba844d960e3fd62db0bc7b12ab286d6492388a91ae4da6bdece6e101c13100eaba3b9998706fd4defaa3ed2965ce7fe6062b8c58f20c6b44b01121184ee1dda1cb66b3ababecfc0b7a9a12624e0b826c35d0149335149cfb49fbe68d1dbb7eef96d7956dc573d449847ff4bb7ba0ededd00c904130f1252c3dd4bdcdeccf6f8a83e3abfa14d12c753558022efa0704549b0571e31c4bc9f3e485f8d2d88189b4149569ef83e8feb2ad26c263b0f91f8975c86c8fa9c9457da5ef4a8a94844f824873576f722e32b376ba5f3ed0ea9818d86ddc35ba0e7f322594d9a0fea878af5c03d242bc7b0af89091f088245154391e75ab1b6b2730ccd01c28e9ec99428cc22c2d08ae2829537c34ebd1273327d0d18175698f9fe587e968d19f00ff98555fcfe95d00cb3abae32afcd48f3d4cd7c63c45581203a8a3040363d98bf9426493039fce7bb03493ab6e176cb45e2af461e77fc93d1202fe0bc7b77398c52bbc1c1436439f26cb2e17933a0ae309611e46bebd4d84a939d9b040a08cad90c2eda6ddc933edffc8e562aa64658f99a9ec8a47278edb828b5312a95ca34c0af428aac64d3fa1c4045885891fda7666dfb680da4dc2c02becb8303b76987b6d9be01174df88e41a48a42444caeae5e36118564e57209594285bc2915b222f99f016326430c38c9807994cfa1c3c85aa0f6375c716cd7f27be9b2cef6866d07c8ed00bc101a74219182562467ebbd43d2ba78a4b0eae22c67702f318bc55ccd92f5fd11557335f94ff6f38cfe9fbe31d3fac064dcd7d660d02fbeaa26acf8927c1e3bc71d9ed8ef2e93f0a42813526daa1fad36676734103bcc621a114b098295de578bf8d7df9034fb3ba86ea529bf639cde496b5e48145e4a814f894fb3bf3f41b49d0572dad5988348dad7a064b2d76d9092336cb404934790683b2b3576d3b75534df2c36bc78e05ed250b9aaede772a08bf5972444ecf4e447c062d95e556768e264813369465713834f6e239695b6bfca1b6108a09368688e212b7ba556df50c02486bf1b2196da3d4c0553923fe9b1bb4474d0f569bec1f35dce4be0f5e2408efa69aa66dda6bb1ef43295fe005f4a86840bb608796ce14bcc1134013bf741ad1aa70cc6579edbd42478d3054e1f7bdbd5b1131ded725041270e8a46bcc8bbfe89089f87105939deb2a9f10dd60d059679d4514bfbfc94b333c7dde79576426f07f24ab6a57290b0d723bf3bffa2f66fe191d0dee8b292c8c15eb42245b899ddde3c6afbbf0d7c301dd142878dbca579f387931460c8c37e186f60f8d9209dc98f1a27b84ecefd71de077017261ad6cc3072fe57ec589cd9498946fda8a834e3f02e8a91f7ce6e18e76f936f6f39d354b63dccc706e25b1d8b1a4830c46f249b5e5a40042fea920ed57a2415431f83c238113ee7d152c16f0780c502d5c995168e3f91113af11752f10434b8dc5ef0e46a276c683261aa73877ce96ebd0176977e124c5b93bbb02ef97a6f6a13c15c261f23014f4b13c8f18746727206b245bee70d7b94968141f104f0682a3df4242c6a60fa1b70c227306520b1b9fbd6c916b0edf5e2ce5220fc9ef10ab0a10e1bf259e91eb127d5a31b7633f15130fdb44ce2178a20d5dc3f91688090881c061d75b4b59c3b2b7eb7a3dd1564bfa6c883c217cb76c2a7516dec926add0a1886570531c32b6284b1e80fbde88905f67ea5cea41003325327000a7f7249a99986f19f423843e8dc791df8679a2ed2b024d7d8c79112644a4fbd32bef0cd1f9d55025708135ed34cbf52ce3a0af0f8cd985362ef6fceb6c72f241128b16dad7575559badb3847e051f38d7b5ca638a1f454054659d90b2c046e4f9e2ab127f257ccc92f887b3e0c4fb49d159741fc649638180addf3f23e5265015f6dad9b25cb86d8a33b802e55258749ec050d15d0d7d821f9615c7d8c12ce11c63fb1eb118455c4e2167f66e4eaf9dec0dd2f345a7e2bb369a66b0755003a9c89449393f71acd98afdf6347792251d669ff3c64c50d705a67e543cad95655d6a4cce233acdac5ffc96681772be3c04a1b36f5273815af65ef87c7ad0d51462bf337c2389a8eded875f75eeebe5e5efc26933948e623364d0dbad3402f659a93acaaa21bc8f559dca605aa6732d0eced5a21ee8a6403b1f91722fcbada24a3031d6aa221612a36584d5edc6ba0f64096e9b6eae1555a95945b937457c4c74371f474939d3c3f299f691316497951c646f142adbd6ee49182aec388ce2ca560a1f4b7d8a63e5cd25ba91ebc61175a6955895bcddae7bf1cefccac5c93dd669ab65a2f508adbcfd62ec46027efa396b9f69984d6adcb38fdddb616ec38929fedd97677c3d06060309db5a9cb5fc8919f4310f06bb40f1b76bc197798acbf8d3162257071e034174047006796fac6fbc95c28afd881e1197c20fea8b4be5c5de39a292bd1ff3819d4d4f48162ea1a57930d8f324ce54875d3ad09eea95c4c825765842f9bbb1957fa8188578e86081adfc87502e69c8841218b596d71c4ec49afa60408028012d974051559d924f5f8a59ee195fb01994b8710994d8201ae10f6e88e0e418489c47499b7efd2021f56a6c9fba761beaf79acb6087a496afe7524f2260e14a792cf1a1203d4b0cd8a11d2544293b7657fc393014295fa28e409ab8be0a02695223d17d7caf4f44cf5d0f416130067f28f3fc51c88ad7b53e401e658214abcc8f597f22d662144f878573d0370c874287698784b6ba9abf9b22da2eeb0ce8b817f85e429e799a5edd246d72d77228652b80c4949a85cd5131d851d9f9bda9afa0646de5e477e0fa999562cb46758502c7d63dd3e8b6f88c7ea44f41c4212d633f0160e738c6d36128e9e58c154b08460c899a26276dc1257dc5de18495573693674e40faf1dad49db8ac83baecf92f3aa5c23f639cdcf6e6864c14a8d6a3de95906813fd17f83c406ffd1d2d7bc75737b7b00172448b2ff167b9fa43649db32ab4094652cbb2e18c3bdb527f24049878bb44b82135009f9af22d24ffbee4b5289fa61bd0502f019b2f24a08542db818bffb7c1637b4f4cb9043952f88aa69d9431b8df2e3f9ef6e4a5ba58e79acf082bbd871aa0f0feef71ade8f921bb597ea28548f4116a281ab3542b732c4a8e9973409c75a0c6443d83547d0d314cc7bd62128e3b0db9c03c78b9d78ba714627866230414947523a6a239873f932c2b28c09cbdf182e856bf41598998150cbdd6d54f76c227fb1519f5afb0008e31d6a0b87818d0a2ca0dd6e953a5ba1a347dd927acd36f3fa3a68920eb9c36bce6cef857447aa733e4ffb7014e194993eb1399270b64151ddbb15478c2b762a14d1782608fb24199d9d311281c47726f565b3a3b7be584afb03d87cdc5eb8156772694ab422f59cd7b1e359583a7cc0695b9f64e6416c6b52de230afbc160d2e9384501b40645189434d416c0fbb034e9ffc654d0dee7ee7a878f9e559daac7ee5af769aeac7a92e85b1bc7983803d3bb572befe76184a46b76450feccffa753cc6123cba0686440a5ba81236458831031a4ba4c91d7aab3bb2514208a902face1c12b7dfe25318ab5ca2c1ef9769aa06ba0539f6904f95d3c8440617efc7858d3984f566b3390b9b1a0f2ec3c86dd77a0b82958c4b15278ffaf10e47e613545f4cf67ef7e8b31a6bda35022871840ae1536fb65bb11b932936db7a15642359bb6b157893d19e7918b11d3d3072b78c761c1784afa2214c865fc2aed860dcc17b69cfe9189bcd0767a84cb306a59966e5f96514a7d7182e6aa7204bbd1a84092ba645f86b68813debd5a2290acc93388e5eacc17db51d69604733ea9160a0e77ec5317194654313a9a8a0535c0bc49d0837e2821df92e8ee2f154cbea6b87ffc207aab4ea491e8aa75b90f70136d84ea2f5dfd138371dbdf8fe273956cb7411db6df48ebf56105da42b219b9dad387ca7be9ecd90508c62279a53bc9f7e2a845f9da42d8e85d2653854737948ce228b2d76d1b9fe2e0e456fdff24575939b82a3f6e1a4be6ffcf1c493c17dabbfa0859a87d259ae3931fb6da544589b9b6bb7cc93e078813ac94918942bf113aee5742498d86a70fff31d2a69507739317a9aa9e0289f053dad4eec63cd58e833027f0859fb4ab74e8fc742d03b5b6dca1168d3d47fd95b514a567e6518342d52b3c3bb6438b5aeacb95ff9001d2f5480f6a80a0685b5bda2ceba06925ab5ae0986954c3169e92fedaf3f1681247cb114202c0f728296a51396063fc64aad05662bf05a626b90f656b47069ca668bb96208c287e8f793d77d4fb1f1cc14e73406005e11a2c1c46ca7448be534c97738487527d79e284d7a0ae275bd4361ecf4a352e6dc8b8c8c8e132a3edb7d645f4943445f523fb28bbf857218a117f1288afec49f9def9aabc2381b38a315d5c927aeb96fa1ad3eb13b0151dd570f6734f004467171d2cdd609d1d09d115c9b42e1da3472ada98d3e1da90a8f373a98133fa708f5a62c75b5eb1b643c48de72143ffc8761ccffd7f3336b69faa277d364cdf2d4f2bc428bda8b76e4748d5ae02d9850ac6f2ed0ddcb874c25d210163d4da10c0d6cc5218a3558deee5519c94032158bca02fe1c1b8184fdf417e863352b224b7b06267486296ebd4100ad5f1108c78a7056979f5ad6f97794a0460bf371584d9b962034aa7449f4e6b0f925b7a648d4ed7f2442135629b0baee3385882682fde57e5eb9204647a898c566120e4b577ba215ed863f76d5ad9ed19a6b7465952292e7543110eac3dc436a16c85047f3ff10a00c917d5902d296c063c4b173775f2b612e407bce02c8647877abcc07b21b89a60e16ff5c5cdc3708f285d6e411036661e97f628c6c2bef7a6e297f0ea7db2aaceb87d13425e80c28cf095b1dd4e08122e89f58862c6466d79fe7d06e0038a9a1869cba0d1554bffc08b94bf3dc7ec4d108073a4dcb7a6a503b608e777f1ca6b64deec19072052cdab8e7222966170bd35cfa66d3d013c537e723bfa2f634b34edba64ee27ab814bf66c5943e5b7b4d2cbad0550982b2d68ea0633a48f24ef5a59da6e9671717afed4253db66afce693ab08e2b4343d9efd1705802393ba22af5f0e04fc559ddafd78bb1c013b2826cfd77591736cd8a1e079c00f72dc89ee419cf4cc5e867138e35372bb0854df45d2142ce56ea01465d7cf42d3beabbed8602ff568df5d8e53d22bbd897c0aa050165319ba28d6f861a128556e420275562b8a19c0a2112df4490925f52090c6c7ac79b8533936d4020af3ea5d383cc8e4f23cf275194887d42bde7061bc17246a91b735472c4dee6f2d159a4fb2cce10f0727ace1e88114ce3c2a3acabd74175b82afc6126ed79d8d333ed993e3a0d67afba888c94cb266f906681d9595f2ca21946f32d8f07eb7cfc979cdd56a885e6a5deb1dc54ffbbbac728db4145056cc9b78386f1f17ad16856cc10b04038f0d835a5842584b6a9516a770abd839ade5d379db9889d22d9049dd13010ad612a64128f724f7a6435054e79c10edc4ec4875beed2f8593b7382645625809bbc3591027d53bde8a16be5bb209cd49e71aaa435c923ef3c4d1aefec7111773b0d58b47efabc7a43b93cb7eab287cefe554a5b59e2a746081d0d875919df356504008374ef184be2f7ef7e644bf5535dedf5b969b30dcedcfbecb83173b0cea015efe45630880c303472daf1dc22b384e65078cb0ae21baa4834fcd4b4f7c995b700117e1448d041a71062772bba19fea512ad4e802988c43e6cad0b4b74962e195b355b653acfab53d9f38337e46758c0f8c147335530f8fbb508a889b84d4672e025b0d9adec09fd4e2d62bda0e0c40570d8fcf5487a59380584f7b85a8576985a4423cbdb1503ea4f93d4f3dbb2c384efcac84dd8649e6f09d2ac37e1d8268c3c07db365581c7c3752410909968598b8ea5ea05b68e6013965cc60be6f6b24e493655f5ddd572a84a924803a7df025914f4b57527841928d30c03b09aeee28c8b81860968f53a663f4f56b004e07cc380f5b0b0dad43869faeed5f240d4011f55ba28743a3b51af6293ed1376fcfe3592c877e2d81d14ee882410cf8207476409b5673eb65297155e91cbe089c8c043964063f9b469419bce6e59e0017e0f527d20eab5d9579208df9cc65389ca8fdb3d62618395bb0274b8094799cb4c36632488e79950ac3bd3d982d521614f56df1bd16c1f928481dd4580a796eb7892b3e4a33b748b16f96b1def674c3e70d0315b486a94a979292d635a2ad1fa877927de9355f38a612747fb982bccf12040d9a14a63c34b6f2b3b450a6401d4d0c96a9090ab80d30f7e7af84bade864791455402cbd278427c5a1e84e2e2286c4bf773da614e6705802c130ade8a3a67b309f9db1558372046ec276a34fb50f72c7df40e33f447ab5f0af05eece4e8f654b3c2dad6ea76ef6b694699f4ad8c6fdcbfd8bdc23d0c580631d0c95ac6ae9613dad680939db2ecf9e7a0d4d0f2f2b7f1c1d308cfaccacc2381e97bb278a53b14daf686c0541e56264c33d5176b830ac7d13c28edb2d8e77d7acbced061c4ec315cb1a259966ad997c7c7beae44d4d1b6955842d7fbba0bb0c461bb22db3e15f0fc1cd3fd997dac5e6a4bff6e2eb8310d828f15309b2c8feaa21281963d35ab2d5c099beb806cd384d304449c58d89910105df11225fb893e984734a8e5cba2e553f03ebd5ce4cae24826547df81db3f2bd7d930f785755c8b6311f221da59679ce50479adef1cc5dac984a5d2f9343fe4892b2b5640892892cfd50d0015c1f568792d8919943a578b62585081175237444d9542a2241c967bcfbc3dab4e8961ecad89165eaada2d759e844be5021aed42b971e9ffea8c08a3d6e4073ce4226b4e54b83f3d8ccd207a0cfcf9da7b5e55d1a26a90e03f7c3611c6562b65edb42fe110dc3970b44aa36660d1cdbc882495271f80816350b945aedb0d46ca6d160d5f0096e8263325e257dbb574932e32f1b28ce2b7f5b3ee6ccec64085496bb513ec168b53d79e6ecb72622a70b22e1f9116fa48815709b2080b27b31a6b26dde0701cd74c31b4e33a702f051ae07ad54ce23ae33e6060e5451a4171cc930af2ab70862044c5a0ff9e8aeebd3cc41c62d38e7b79596d3851430dd661b071c319751985d48eeea2afb463d7d9390ed4e68a60f90ad80aeca4b8d283ae0538e590668c857a526a264be238641eeb5f321248d829539efccf03dcefa54c6def8b7d4a8cdf6bc76d71eefaca1a7a33bd4b56e94b8e38f784b742bdd080faca4769e1aa91ff50d9374f3632cb7b669f042beb802c6cedff0a3634aec072f57d38a6ea61439029ba5d921f57bfbc281d75f5ec322b8f8c90b4d3f65d00ef97dcffe7e07fa01af8e7f8da15532f0c18b73d7a183327aea46680651645782f4f318c00f2355c301fe2e805a22f8586119768b8424735f5495607d170f0818be232cec1d9e40daf79bcd63a26cbead93753b7171bcad462da2af68e9ea9c0b207200f1fcf3793283931603a719e745120273efb541a7af896f6eea7359939d7226896c8023cc963e4e0a7579bc83a37cb8d871324bb3e66b671d8df83d645495740c5b99aaf2edda3018e1895dda6744b1e6623cb62d4b80ac208f69a81caa0277a497e41bf637817518cbe0fcd2028d07be199a126f82641f2fd54e6b20287b912ee8d8dd72db5824ca9e464a94d45beda7f52932d1bb57a28a4e99ac32ea4c3650197613a87e4cec91d82f37069fde871575d3cb2220aaad9277511271a86377da5f2a9f94303e7151acb087ca549fd0cb9b1961954ddb28333a24b510b92cddc057ec5a147ccdd708a2db3c8cb3600756100b38b71f0676f6fc5a7f5912b5e81bf6d2b07e15fb5b1c96459110ceb22ba4f2fb0e531dcaa913a13437cc6276c8b4e1bdbc5365144c7abd2e2a6c93ef102e26b14e576ada244408d9db50aab045f9879bf95425eaa7b11d77e0dc503851c5c278c282aa736103adf5ca2b30724bde27f98e4e7a947f964b7abfe58a3da354e3008a2b86d50223d3077e151ce2e086172002eab7279ac1948361e172073184401d5650181547f1bacc1534f9ab2ad66fd9d200d867de79a92e465dda8d781b15881acc9bfdc53815f3fc3f064c830db3908cdb173e3e1295ea7dca280273ca99073d5663003f14c4f7ac9ef9bc735b2a413daaa7d97101553f90a0d33b043d1f2b0f131d35c9244808bb4b76213ff5c418053a569d760498518d701aae39cfbd7a052b586c53617dfaad1415c1cafbb41640d1650be9297dd42c803d8bfd443916310bb80a74c991cc26331ab70c0c4bc4f2295f069787f6759878e42ffbc76b34493f71d88a109b0813ebfcd24953b2b5f1f5164d9974bab7ed1f4d42f62b8379912dd7e9f35a19951e4d57b0c70fe516cd2059c4ef879d9f9b1191d5bb51b852d3e9462e4528b9c1f7c676e6039d1deb00442a482e297b08a67c79bb818d0316072d8174885de3413ae0505232100f217e424e0106811902d60ecc0e0aaca7c5f00f4f365e1360f10aa645b9215c93668a08be97cacd6b0f9c80ead76478846d12e8f24a53bfab01628afd199b2db332d38d5009d7a1437f0f5b2a0d36b5c98f3a35e5043ffd55bac325d3927888fa5d0e3569d9be002205b501b3e68d661515bb9eac9d4f234e22e4e5bd0b4c4530933aadd99f132794ce48e9a3220d2c17748c012fc5fd93d265cebb3edc3be29a1ba26f2adcf510663c28d29e28774c4ec1190fbfbf614aa8e2745f8605f7d7e94fdd06322454a08833f1a22c77deedb1337e380a8e18f85168e045d1e7cf32fda1a709d3eddf62909a9e580ed8abd605e07dbab79b5bcc2f4533e6fec589b976816471b1f11ac3c89336c52e03b72520995d05275024e9988727f2e1ac9421ccaaa0b736e9f7f296c2d27cbd774d7179f9c6921df68985998034862c15adc452666deb40c0c40cedf16f4d187524a0a5cdff6f7b2531eda54fbe15a7ad1aea46466a51642326c5d7d374fb38475d119027a3714598fe7307de94bece2741b7a742b053682dae9452eed3b820b1386b604fa647e392b35b205019cf1ad317d1441cbee2aea5ca95e56fd5e959689bf96c9f470acb8e4e630b13403e9459242b629fa28e1ba8e8df1ed572b1db735a20ee1a5b8500b6edf66cbe671c5938741ab2b36ccd4e92160f6df9e1d465cdaf3a7746e128e26e0e7a7aa4869b2a482c6e9bf7e58408411016740c547129e4f11d2317af3c5bb55b2468e6d08e75e5039c3bfdc9b6da06e7c27933a8c9d8ad0e4c74a093e6d57c02b1b49e995962c1046b5c8a3df0ea4c20049e300cbe41bd92a0ea5993ef6fd92ea74e28e1cfaf4a8533c224104d6081b64ae08b4e7a23a259b2b03655b987c230881a30620910566982945f8f86229fd614ca2bb2adcbdd49a5c579c0d1bbdefb9e33cd0641bb43f6ca3fab33dc4188e1508e4293e6de932040b895a97bc1f196467ad4a0d4899e6078c014f42521cf39411e2e4f1b5adc26f1f3bb2fcd27b89ac418c8251423de82c4b5980a4e66649b9f3ec48c833c35f8653ca510a0a1b0495619a60bf5d77e64a6938714c3a1946b3fa5079533698bb8f8f85bea8711ccda5cf01de150b055d3586a890d0654d2b4cfba25c434e2ff492b69798aa197dffbfe2bba77d4b4eea35c42e698221e971a4bca34e59c46084f49c2170b83db6719324ecb55e07a9cf74a84ee0fc3567fa5cd2f3937ad956b4ed2187e2026b7d4166d50fd9c937fb4dd5aa96f2731f1db1dda4eac4e589295ffe9b72a7b9533f6e23c82b57c8361c8cb3b15128235f65c84b99d93383b7398e936884542d0e73bdf37cadfb6c70da47af3c5a3cde0d8e381cdf9ec1a39d2fc963f0d8ee31b76d9668c0171967cb9ef2f15d5bbdbd1058328da7a60bbc7d77efed2de74a2ed5637a8a84e1163325dd22b584b15fe894c9b1ce89d24619a344a8987f6d21b7de7ccf6fad223134e1c389a8e6baa375dd142baf4a8852e984eb6c281cf86e2457a7f85782c7764564af26d331d3ddf4850d24742ef449cd5e32f5957d2ee10e05e7d3312215e4d36ac5c8c4bae3340f074f88a20e18b270b3baf05de1b0363f4c6f2ab9386d6034e8567e4828ad256cd250448c70147c318a621697be402c1e8365d2798084f968a8897242ff6756c2937e4d1300", 0x2000, &(0x7f0000006b80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000002700)={0x90, 0x0, 0x0, {0x6, 0x0, 0x80000000, 0x0, 0x0, 0x8, {0xfffffffffffffffd, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x7fff}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(r1, &(0x7f0000000000)='./file0\x00', 0x481, 0x20)
open_by_handle_at(r1, &(0x7f00000021c0)=ANY=[@ANYBLOB="1c000000810000000000"], 0x0)

7.724650194s ago: executing program 4 (id=244):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000540)=@newtaction={0x154, 0x30, 0x1, 0x0, 0x0, {}, [{0x13c, 0x1, [@m_ct={0x44, 0x1b, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}, @m_bpf={0xf4, 0x1f, 0x0, 0x0, {{0x8}, {0x9c, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x9, 0x10001, 0x4, 0x0, 0x8}}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}, @TCA_ACT_BPF_FD={0x8}, @TCA_ACT_BPF_FD={0x8}, @TCA_ACT_BPF_OPS={0x44, 0x4, [{0xfff7, 0xb2, 0x10, 0x6}, {0xfff8, 0xe, 0x2, 0xf5d}, {0x0, 0x0, 0x5, 0xffffff1f}, {0x0, 0xc, 0x4, 0xfffffffd}, {0x180, 0x3, 0x2, 0x8}, {0x6, 0x3, 0x2, 0x6}, {0x40, 0x2, 0x81, 0x401}, {0x6, 0xee, 0x3, 0xa2}]}, @TCA_ACT_BPF_FD={0x8}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0xe, 0x9, 0x516384e9e0d31fa4, 0x0, 0x2476488c}}]}, {0x34, 0x6, "c69ee0de93fc76b941d450b25cbe753f6033484a6afb97fd039ed10911ba155a93cd478addc59ce1fe29382f81e7896f"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2}}}}]}, {0x4}]}, 0x154}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(0xffffffffffffffff, 0x29, 0x36, 0x0, 0xc0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000280)={0x3}, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="1400000000d20000000000010000004c1712ce2e5679fe554658086ca35dc9f927b5446405daa46c019e39b9dba1ff9c17b338cd7753ddb7b74bef28c6960bb880ef9315c71d7ad5ff9fe1cbbe2c29a408f31739b8a7c632f0701e12fe5ae55804c1e95233691e4bfd794afeeb4101f1d184fdc0d68394a90fd7c6a6fd3b8b7c55aadc20168396dbf1384f3056c6afe59667fc97cc1ada002a62bce2b6101e13f60f9c582340d1ae6e63bc3c230b3a310a042d2c1c2526c15800"/201], 0x14}}, 0x0)
r4 = shmget$private(0x0, 0x2000, 0x800, &(0x7f0000ffd000/0x2000)=nil)
shmat(r4, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffcfff)
shmat(r4, &(0x7f00003e8000/0x1000)=nil, 0x4000)
r5 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r5, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={<r6=>0xffffffffffffffff})
r7 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r7, 0x84, 0x1, &(0x7f0000000140)={0x0, 0xea, 0x8001, 0xc4a, 0x8}, &(0x7f00000001c0)=0x14)
ioctl$SIOCSIFHWADDR(r6, 0x8b19, &(0x7f0000000080)={'wlan1\x00', @random="02000000000a"})
openat2(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000)={0x149842}, 0x68)
ioctl$IOC_PR_RESERVE(0xffffffffffffffff, 0x401070c9, 0x0)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000180), 0x88002, 0x0)

7.356016861s ago: executing program 2 (id=245):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="260a00200000000061119c00000000001800000000000000000000000000000095f1ff0054000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000404c054b0200000000000109022400010000000009040000010300000009210000000122f80409058103"], 0x0)
syz_usb_control_io(r3, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, &(0x7f00000001c0)={0x18, &(0x7f0000000040)=ANY=[@ANYBLOB="000706000000ff0309"], 0x0, 0x0, 0x0, 0x0}, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r4 = semget$private(0x0, 0x4, 0x0)
semtimedop(r4, &(0x7f0000000340)=[{0x0, 0x1}], 0x1, 0x0)
semop(r4, &(0x7f0000000380)=[{}, {0x1, 0x3}], 0x2)
r5 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000000), 0x2)
ioctl$UDMABUF_CREATE(r5, 0x40187542, &(0x7f0000000080)={0xffffffffffffffff, 0x0, 0x2000})
semop(r4, &(0x7f0000000080)=[{0x0, 0xfffe}], 0x2)
semctl$GETZCNT(r4, 0x0, 0xf, 0x0)
syz_usb_control_io$hid(r3, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0)

7.215052055s ago: executing program 3 (id=246):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000540)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x45e, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
unshare(0x2040400) (async, rerun: 32)
r1 = io_uring_setup(0x758a, &(0x7f0000000840)) (rerun: 32)
close_range(r1, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_misc(r2, &(0x7f0000000000), 0xfffffecc) (async)
syz_usb_control_io$hid(r0, 0x0, 0x0) (async)
syz_usb_control_io(r0, &(0x7f00000006c0)={0x2c, &(0x7f0000000000)=ANY=[@ANYBLOB="002115000000aa7ef415"], 0x0, 0x0, 0x0, 0x0}, 0x0)

6.192257912s ago: executing program 4 (id=247):
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f00000004c0)={[{}, {@codepage={'codepage', 0x3d, 'macceltic'}}, {@iocharset={'iocharset', 0x3d, 'maccyrillic'}}, {@type={'type', 0x3d, "99d845b9"}}, {@part={'part', 0x3d, 0x5}}]}, 0x91, 0x2c3, &(0x7f0000000540)="$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")
open(0x0, 0x1431c2, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha512\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000640), 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_queued\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x12, r2, 0x0)
io_uring_enter(0xffffffffffffffff, 0x2def, 0x0, 0xe, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000005b40)=[{{&(0x7f0000000000)={0x2, 0x4e20, @multicast2}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000040)="f37481d90eeaead391345b4da9d27e24c9c670da3afc5c00"/50, 0x32}, {&(0x7f0000000140)="ead5e96719a44591801f33", 0xb}, {&(0x7f0000000180)="f3f97053495b072215aee864193557c0dabdd253711d5ed9b131c5abd8796e5759ab1f639211e68e24bf4471b6ab1429b165c7248cded82bfb4a3f48e8d0", 0x3e}], 0x3, &(0x7f0000000240)=[@ip_retopts={{0x2c, 0x0, 0x7, {[@timestamp_addr={0x44, 0x1c, 0x93, 0x1, 0x0, [{@broadcast}, {}, {@private}]}]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @multicast2}}}], 0x50}}, {{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000380)="c1ad061c5d914eadd95de7fb63eb7b0306d91c25f3fba6c97eda8ade2420dfe1fe0f5c7a01d724be33a44f1cd52028110d8f7dd4b3421a3fe4b2066d179f938ba15c3956e1aaad35035bcde7b90ed59ee2de06c8a4af3de95bda", 0x5a}], 0x1}}, {{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000480)="f41fa963edcd5e2a5d", 0x9}, {&(0x7f00000004c0)="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", 0x4c6}], 0x2}}, {{0x0, 0x0, &(0x7f0000004240)=[{&(0x7f0000003140)="01", 0x1}], 0x300}}], 0x4, 0xc080)

5.48496862s ago: executing program 1 (id=248):
syz_mount_image$vfat(&(0x7f0000008140), &(0x7f0000008180)='./file0\x00', 0x41, &(0x7f00000081c0), 0x1, 0x8130, &(0x7f0000008200)="$eJzs3D+LY1UcBuCfbnTjyG6mEEFBPGijzWUzhZVNkFmQDSi7G2FHEO44NxpyTYbcMBARZzoLG7HxO4ilnSB+gWnEj2A3jeUUYmQSnX/EQpS5LPM8TV44eeGc5nLh3HOO3vzqk2G/yvr5NJ5sNqNxEBHHKVI04kaceCIO4vWvv/zlpQePtu51ut3N+ynd7Txsv5FSuv3yj+9/9t0rP02ffe/72z/cjMP1D45+2/j18PnDF47+ePjxoEqDKo3G05Sn7fF4mm+XRdoZVMMspXfLIq+KNBhVxeTCeL8c7+7OUj7aubW2OymqKuWjWRoWszQdp+lklvKP8sEoZVmWbq0F/0Xv27pnAAAAwNU4ns/nEfOFm9FcpLrnBAAAAAAAAAAAAAAAAAAAANeN8/8AAAAAAAAAAAAAAAAAAABQP+f/AQAAAAAAAAAAAAAAAAAAoH7O/wMAAAAAAAAAAAAAAAAAAED9Hjzautfpdjfvp9SMKL/Y6+31lr/L8U4/BlFGEXeiFb//fVPA/PTWgLtvdzfvpIX1+Kbc/6u/v9e7cbHfjlasr+63l/10sf9UrJ3vb0Qrnlvd31jZfzpee/VcP4tW/PxhjKOMnTjpnvU/b6f01jvdS/1nFv8DAAAAAAAAgMdBlk6t3L/Psn8aX/b/xfcBl/bXG/Fio961AwAAwHVRzT4d5mVZTARBEE5D3U8mAADg/3b20l/3TAAAAAAAAAAAAAAAAAAAAOD6uorrxOpeIwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAn+zAgQAAAAAAkP9rI1RVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVhBw4EAAAAAID8XxuhqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqCjtwIAAAAAAA5P/aCFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVXYgQMBAAAAACD/10aoqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqwg4cCAAAAAAA+b82QlVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVRV24EAAAAAAAMj/tRGqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqsAMHAgAAAACC/K1XGKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgKgAA///5cu/6")

5.151523961s ago: executing program 4 (id=249):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/wakeup_count', 0x0, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000100)='fdinfo/4\x00')
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000000), 0x0, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r4, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, r3, {0x2, 0x0, @private}, 0x4}}, 0x26)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
mkdir(&(0x7f0000000340)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r7, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r8 = dup(r7)
write$FUSE_BMAP(r8, &(0x7f0000000100)={0x18}, 0x18)
r9 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80a, &(0x7f00000009c0)={[{@grpquota}, {@stripe={'stripe', 0x3d, 0x8}}, {@dioread_nolock}, {@nobarrier}]}, 0x2, 0x7a8, &(0x7f0000002040)="$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")
r10 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r10, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc2}})
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x80400, 0x0)
r11 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r11, 0x84, 0xd, &(0x7f0000000000)=@assoc_value, &(0x7f0000000100)=0x8)
r12 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r13 = openat$cgroup_ro(r12, &(0x7f0000000200)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0)
ioctl$FS_IOC_RESVSP(r13, 0x40305829, &(0x7f00000000c0)={0x0, 0x2, 0x3, 0xffffffff})
open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
write$FUSE_DIRENTPLUS(r8, &(0x7f0000000040)=ANY=[@ANYBLOB="b0000000000000001659ec0889419429aa5db97288b0f8a87ea8e66d", @ANYRES64], 0xb0)
mount$9p_fd(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r6, @ANYBLOB=',wfdno=', @ANYRESHEX=r9, @ANYRES64=r5])
r14 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_GET(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r14, @ANYBLOB="01000000000000000000070000001400080000000000000000000000000000000000050013"], 0x30}}, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)

4.235539196s ago: executing program 3 (id=250):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
io_uring_setup(0x253c, &(0x7f0000000000)={0x0, 0x0, 0x1000, 0x3, 0x2})
openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x800400, &(0x7f0000000100), 0x1, 0x500, &(0x7f0000000500)="$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") (fail_nth: 2)

3.981525234s ago: executing program 4 (id=251):
r0 = syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./bus\x00', 0x2000c12, &(0x7f000001fa80)={[{@utf8}, {@iocharset={'iocharset', 0x3d, 'cp865'}}, {@unhide}, {@map_acorn}, {@overriderock}, {@session={'session', 0x3d, 0x19}}, {@check_strict}, {@map_off}, {@iocharset={'iocharset', 0x3d, 'macroman'}}, {@mode={'mode', 0x3d, 0x94b}}, {@check_relaxed}, {@hide}, {@unhide}]}, 0x4, 0xa00, &(0x7f00000003c0)="$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")
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x880, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000000)={0xffffffffffffffff}, 0x4)
lsetxattr$trusted_overlay_upper(&(0x7f0000000340)='./bus\x00', &(0x7f0000000380), &(0x7f0000001dc0)={0x0, 0xfb, 0x108, 0x4, 0x4, "1d926f44c8ac716ceba1da338afd51d9", "9e2c366b7fa30713b3a3d06d0238b1b7d7f849c571c7c4a4315e2f16da598c656fb23acfbe0dab2d42a40eb66ed7f14dfcd85ef8f60fa0c8c4040e3a762c7da8e77f2f8402d16596ab06f58e772ee8c21879612f3d8a30dfcc490a9fa88b6c7f5fa08dfff222bd54501bf6bf55a0bf26895d31396f6cd7d74e4a961b495d6cfdc3237e3bde87ee7e20051aaa94986793118a2ad6745627dce413ec3024296ef52d0cf0e0ed6ddd2e4952da68c024bb3da5e3b4c4cd2b444f0d009583930f23dac0e843986181b7003435ee5a5f9b89ab5af049bbc470d2cc321470a32f686dc8b44b73835f7e5fe91eace747b6322fbe2f6a99"}, 0x108, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2004c8], 0x80a0000})
r5 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bind$802154_raw(r5, &(0x7f0000000000)={0x24, @short={0x2, 0xffff, 0xffff}}, 0x14)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{0xffffffffffffffff, <r6=>0xffffffffffffffff}, &(0x7f0000000080), &(0x7f00000000c0)=r3}, 0x20)
ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f00000001c0)=<r7=>0x0)
ioctl$BTRFS_IOC_RM_DEV_V2(r6, 0x5000943a, &(0x7f0000000dc0)={{r1}, r7, 0x4, @inherit={0x58, &(0x7f00000002c0)={0x0, 0x2, 0x6, 0x41d, {0x14, 0x4, 0x4, 0xe87, 0x5}, [0xfffffffffffffff8, 0x1]}}, @devid})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

3.515904848s ago: executing program 1 (id=252):
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000000000)='./file1\x00', 0x810, &(0x7f0000000240)={[{@clear_cache}, {}, {@compress_algo={'compress', 0x3d, 'lzo'}}, {@nodiscard}, {@compress_algo={'compress', 0x3d, 'zstd'}}, {@compress_force_algo={'compress-force', 0x3d, 'zlib'}}, {@nospace_cache}, {@barrier}, {@compress_force}]}, 0x1, 0x50f3, &(0x7f000000a2c0)="$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")
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)
r0 = socket(0x11, 0xa, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', <r3=>0x0})
r4 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000400)="580000001400192340834b80040d8c560a067fbc45ff810501400000070058000b480400945f640094272d7061d328b92d0000000000008000f0fffeffe809000000fff5dd00000010000100090808004149000140040800", 0x58}], 0x1)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@newqdisc={0x5c, 0x24, 0x4ee4e6a52ff56541, 0x20000, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x4, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x2, 0x6b40}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x6, 0x3, 0x401, 0x4, 0x2, 0x5, 0xe3b}}, {0x4}}]}]}, 0x5c}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000080)={'ip6gre0\x00', &(0x7f0000000440)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, @loopback={0x300}, @mcast2={0xff, 0x5}, 0x0, 0x0, 0x0, 0x2}})

3.270537857s ago: executing program 0 (id=253):
r0 = syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000380)='./file0\x00', 0x0, &(0x7f0000000d80)=ANY=[], 0x3, 0x7a6, &(0x7f00000016c0)="$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")
r1 = semget$private(0x0, 0x4000000009, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f00000003c0))
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_buf(r2, 0x6, 0x24, &(0x7f00000000c0)="a2b37163a66e3c3f3e589052348494101ece35bb867ce01e5ccf52bbbdd00a9caac9c658bc7d953c5f6c010f8b5e7cb1d9d64155940c", 0x36)
semctl$SEM_STAT_ANY(r1, 0x4, 0x14, &(0x7f0000000280)=""/25)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
getpid()
socket$inet_udp(0x2, 0x2, 0x0)
fstat(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0})
newfstatat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', &(0x7f0000003480)={0x0, 0x0, 0x0, 0x0, <r5=>0x0, <r6=>0x0}, 0x0)
chown(&(0x7f0000003ac0)='./file1\x00', r5, r6)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r8 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000003480)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
read$FUSE(r8, &(0x7f0000000480)={0x2020, 0x0, 0x0, <r9=>0x0, <r10=>0x0}, 0x2020)
fchown(r7, r9, r10)
setresgid(r4, r6, r10)
r11 = socket$netlink(0x10, 0x3, 0x9)
getsockopt$bt_hci(r11, 0x0, 0x1, &(0x7f00000000c0)=""/73, &(0x7f0000000140)=0x49)
open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
semctl$SETALL(r1, 0x0, 0x11, &(0x7f0000000040)=[0x7ff, 0xbd, 0x1, 0xc, 0xf, 0x4, 0x994, 0xa, 0x800, 0x3c26])

3.083942753s ago: executing program 3 (id=254):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000340)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000300)='contention_begin\x00', r0, 0x0, 0x2}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
openat$snapshot(0xffffff9c, &(0x7f0000000880), 0x20840, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2004090, &(0x7f0000000540), 0x81, 0x7a5, &(0x7f0000000f80)="$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")

3.032104125s ago: executing program 2 (id=255):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r1 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000002480)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000000100)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000002200)={0x50, 0x0, r2, {0x7, 0x27, 0x0, 0x14a4014, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}}, 0x50)
read$FUSE(r0, &(0x7f0000002900)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r0, &(0x7f0000002140)={0x10, 0xffffffffffffffda, r3}, 0x10)
syz_fuse_handle_req(r0, &(0x7f0000009040)="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", 0x2000, &(0x7f0000006b80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000002700)={0x90, 0x0, 0x0, {0x6, 0x0, 0x80000000, 0x0, 0x0, 0x8, {0xfffffffffffffffd, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x7fff}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(r1, &(0x7f0000000000)='./file0\x00', 0x481, 0x20)
open_by_handle_at(r1, &(0x7f00000021c0)=ANY=[@ANYBLOB="1c000000810000000000"], 0x0)

2.07122938s ago: executing program 2 (id=256):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000002080)={0xc, {"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", 0x4d5}}, 0x1006)

1.960564643s ago: executing program 0 (id=257):
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000200)='./file2\x00', 0x21081e, &(0x7f0000000380)={[{@usrquota}, {@nobarrier}, {@noauto_da_alloc}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSFUCdEjSG1I3CiKHUexU5rQQ3rmikQlTnDkD+DcE3cuCG5cygGJHxGoQeLg1YwnqZvaTdQkdhR/PtJo3ps39fe9pvNe/U3iF8DQuhoRuxExFhF3I2I6u57LjvisfST3Pdt7uLS/93ApF63W7X/l0vbkWnT8mcSV7DWLEfGj70X8NPdy3Mb2ztpitVrZzOqzzdrGbGN758ZqbXGlslJZL5cX5hfmPrn5cfnMxvpebSwrffXpH3e/9fOkW1PZlc5xnKX20AuHcRKjEfGD8wg2ACPZeMYG3RFeSz4i3o6I99PnfzpG0q8mAHCZtVrT0ZrurAMAl10+zYHl8qUsFzAV+Xyp1M7hvROT+Wq90bx+r761vtzOlc1EIX9vtVqZy3KFM1HIJfX5tPy8Xj5SvxkRb0XEL8cn0nppqV5dHuR/fABgiF05sv7/d7y9/gMAl1xx0B0AAPrO+g8Aw8f6DwDDx/oPAMOnvf5PDLobAEAfef8PAMPH+g8AQ+WHt24lR2s/+/zr5fvbW2v1+zeWK421Um1rqbRU39wordTrK+ln9tSOe71qvb4x/1FsPZj59kajOdvY3rlTq2+tN++kn+t9p1JI79rtw8gAgF7eeu/JX3LJivzpRHpEx14OhYH2DDhv+UF3ABiYkUF3ABgYu33B8DrFe3zpAbgkumzR+4Jit18QarVarfPrEnDOrn1J/h+GVUf+308Bw5CR/4fhJf8Pw6vVyp10z/846Y0AwMUmxw/0+P7/29n5d9k3B36yfPSOx+fZKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYDvb/LWV7gU9FPl8qRbwRETNRyN1brVbmIuLNiPjzeGE8qc8PuM8AwGnl/57L9v+6Nv3h1AtN7145LI5FxM9+fftXDxabzc0/RYzl/j1+cL35OLte7n/vAYDjHazT6bnjjfyzvYdLB0c/+/OP70ZEsR1/f28s9g/jj8Zoei5GISIm/5PL6m25jtzFaew+iogvdht/LqbSHEh759Oj8ZPYb/Q1fv6F+Pm0rX1O/i6+cAZ9gWHzJJl/Puv2/OXjanru/vwX0xnq9LL5L3mppf10Dnwe/2D+G+kx/109aYyP/vD9dmni5bZHEV8ejTiIvd8x/xzEz/WI/+EJ4//1K+++36ut9ZuIa9E9fmes2WZtY7axvXNjtba4UlmprJfLC/MLc5/c/Lg8m+aoZ3uvBv/89PqbvdqS8U/2iF88ZvxfP+H4f/v/uz/+2ivif/ODbvHz8c4r4idr4jdOGH9x8vfFXm1J/OUe4z/u63/9hPGf/m3npW3DAYDBaWzvrC1Wq5VNBYWLX0j+yV6AbnQtfKdfscaie9MvPmg/00eaWq3XitVrxjiLrBtwERw+9BHxv0F3BgAAAAAAAAAAAAAA6Kofv7E06DECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABweX0eAAD//19xzyM=")
quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f0000000240)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000f00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = syz_pidfd_open(0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$snapshot(0xffffff9c, &(0x7f0000000880), 0x20840, 0x0)
pidfd_getfd(r0, r1, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2004090, &(0x7f0000000540), 0x81, 0x7a5, &(0x7f0000000f80)="$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")
ioctl$KVM_CAP_SPLIT_IRQCHIP(0xffffffffffffffff, 0x4068aea3, &(0x7f00000000c0)={0x79, 0x0, 0x1})
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
socket(0x10, 0x2, 0x0)

1.666744902s ago: executing program 4 (id=258):
semget$private(0x0, 0x6, 0x0)
gettid()
timer_create(0x0, 0x0, &(0x7f0000000000)=<r0=>0x0)
timer_settime(r0, 0x0, 0x0, 0x0)
timer_gettime(r0, &(0x7f0000000000))
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x21885e, &(0x7f0000000440)={[{@grpquota}, {@min_batch_time={'min_batch_time', 0x3d, 0x2f}}, {@dioread_lock}]}, 0x5, 0x504, &(0x7f0000001480)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r2, 0x2007ffc)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x3, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009b00000095"], &(0x7f0000000080)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r4, 0x18000000000002a0, 0x36, 0x0, &(0x7f00000003c0)="b9ff030760031a00000008f086dd2a7ed4de231a95ef04a5bbc68f87a48da096bb1ce1d7483d2752500fb2705808132ae178be10da73", 0x0, 0xfffffdff, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50)
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
sendfile(r2, r2, 0x0, 0x800000009)
socket$nl_netfilter(0x10, 0x3, 0xc)
write$binfmt_script(r1, &(0x7f0000000040), 0x208e24b)
fallocate(r1, 0x10, 0x401, 0xce7)

1.636716502s ago: executing program 3 (id=259):
userfaultfd(0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, 0x0)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x301c40a, &(0x7f00000000c0)={[{@rodir}, {@shortname_winnt}, {@numtail}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'cp866'}}, {@iocharset={'iocharset', 0x3d, 'cp737'}}, {@uni_xlateno}, {@shortname_mixed}, {@shortname_lower}, {@fat=@codepage={'codepage', 0x3d, '852'}}, {@uni_xlate}, {@utf8no}, {@uni_xlateno}, {@rodir}, {@shortname_lower}, {@fat=@errors_continue}, {@rodir}, {@fat=@showexec}]}, 0x6, 0x2d5, &(0x7f0000000680)="$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")
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setscheduler(0x0, 0x2, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000580)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
socket$inet(0x10, 0x3, 0x0)

1.278361297s ago: executing program 2 (id=260):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x1900, 0x8)
ioctl$SIOCSIFMTU(r2, 0x8922, &(0x7f0000000280)={'macsec0\x00', 0x9})
r3 = syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01000000000000000000250000000e0001006e657464657673696d0000000f0002006e657464657673696d300000a5ff8b00", @ANYRES32=0x0, @ANYBLOB="46796ced06930e59454005339bd3fc9e95b008e0bd090d2205562e037099789e5e672ac8425c68ecf635571912ffc96732d1d02da405b14726e1254fc4a0f40ac1970acc239ba402d0257388b8dafdf7e74c67836ee83d9d52036ec5136c0b313133133f7bba8f6531511c3f0f43b406e1a276d2f2d56a757dfbc4113b1f186ba5a307d12f6c03fcd0670b6caabdbe092ee92d37f50b3555c0b48dca4fcf875a0f96"], 0x3c}}, 0x0)
syz_usb_connect(0x6, 0x0, 0x0, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r4)
prlimit64(0x0, 0x7, &(0x7f0000000000), 0x0)
socket$packet(0x11, 0x4000000000002, 0x300)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r4, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r5, 0xfffffffc)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000140), r2)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000500)=ANY=[], &(0x7f0000000600)=""/143, 0x4f, 0x8f, 0x1, 0x0, 0x0, @void, @value}, 0xffffffffffffff8e)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r9, 0x4068aea3, &(0x7f00000002c0)={0x79, 0x0, 0x3})
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
r11 = dup(r10)
ioctl$KVM_SET_MSRS(r11, 0xc008ae88, &(0x7f00000000c0)=ANY=[@ANYBLOB="820000000000000070000040"])
syz_io_uring_complete(0x0)
r12 = openat(r11, &(0x7f0000000100)='./file0\x00', 0x404880, 0x0)
r13 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), r12)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r7, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)=ANY=[@ANYRES64=r9, @ANYRES16=r13, @ANYBLOB="01000000000047773cbd070000000c00018005000200010000001175e2bf47fe46b01b8f22d7616417bd7cfc99522e916393eaa07d9e780959cd210680fd1320e75893f331f90e7ad0ba424a7c83a95e3de98e2d912db1e845b38a7ff042af5e523a86510dc067a1332c70f19cf9"], 0x20}, 0x1, 0x0, 0x0, 0x448c1}, 0x0)

849.084076ms ago: executing program 0 (id=261):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x118, &(0x7f0000000100)={0x0, 0x2, 0x10, 0xfffffffc, 0x3a6}, 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000005c0)={@map=0x1, 0xffffffffffffffff, 0x3, 0x2010, 0x0, @value}, 0x20)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r3 = syz_open_dev$dri(&(0x7f0000000040), 0xd21, 0x0)
r4 = syz_open_dev$media(&(0x7f0000000000), 0x3, 0x0)
ioctl$MEDIA_IOC_SETUP_LINK(r4, 0xc0347c03, &(0x7f0000001040))
r5 = socket$inet6_sctp(0xa, 0x801, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000540)={0x0, 0x20, &(0x7f0000000500)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, @in={0x2, 0x4e21, @loopback}]}, &(0x7f0000000580)=0x10) (fail_nth: 10)
ioctl$DRM_IOCTL_MODE_GETPLANE(r3, 0xc02064b6, &(0x7f00000001c0)={0x0, 0x0, <r6=>0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r3, 0xc06864ce, &(0x7f0000000440)={r6, 0x0, 0xfffffffc, 0x0, 0x1, [], [0x9], [0x81, 0x80000001, 0xffffffff], [0x0, 0x0, 0xfffffffffffffffd, 0x3]})
r7 = syz_open_dev$dri(&(0x7f00000000c0), 0x1, 0x0)
r8 = epoll_create1(0x80000)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r10 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r10, 0x8914, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r7, &(0x7f00000003c0)={0xe0000000})

84.957148ms ago: executing program 3 (id=262):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x5, 0x1000086}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x43, &(0x7f0000000040)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x36}}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x7, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r3 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x89e0, &(0x7f0000000180)={r1, r2})
write$binfmt_script(r3, &(0x7f0000000600)={'#! ', './file0'}, 0xb)

0s ago: executing program 2 (id=263):
syz_usb_connect(0x2, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="1a0100005c6b4408070a64006e40010203030902240001a82300000904000002ca744d00090503034d00ff99090805", @ANYRES32], &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$char_usb(r0, &(0x7f0000000000)="98ba7d5fae9585de67f00c60c5784d3ef88aadc169c7b5e95ac812cae9b36bf39e9d2041fe847260c7eca830917fc6c42ac19257f9ead2aa66e208fcfb9a073598", 0x41)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d00000085000000500000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000280)='rss_stat\x00', r1}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)

kernel console output (not intermixed with test programs):

04.478530][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  104.488378][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  104.510350][ T5830] veth1_macvtap: entered promiscuous mode
[  104.553585][ T5831] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  104.562810][ T5831] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  104.572070][ T5831] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  104.580942][ T5831] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  104.608525][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  104.616406][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  104.648482][ T5839] veth0_vlan: entered promiscuous mode
[  104.711992][ T5839] veth1_vlan: entered promiscuous mode
[  104.762293][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  104.787896][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.796685][ T5842] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  104.800891][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  104.824778][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.835866][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  104.847338][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.861004][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0
[  104.914050][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  104.927371][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.956908][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  104.969556][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.980106][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  104.991180][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.004520][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1
[  105.055650][ T5830] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  105.065696][ T5830] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  105.075859][ T5830] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  105.085978][ T5830] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  105.101716][ T5917] loop3: detected capacity change from 0 to 512
[  105.110381][ T5917] =======================================================
[  105.110381][ T5917] WARNING: The mand mount option has been deprecated and
[  105.110381][ T5917]          and is ignored by this kernel. Remove the mand
[  105.110381][ T5917]          option from the mount to silence this warning.
[  105.110381][ T5917] =======================================================
[  105.154647][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.164975][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.246990][ T5917] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.265354][ T5917] ext4 filesystem being mounted at /0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.327243][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.349657][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.382359][   T29] audit: type=1800 audit(1740026331.120:2): pid=5917 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.4" name="file1" dev="loop3" ino=15 res=0 errno=0
[  105.443419][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.467584][ T5839] veth0_macvtap: entered promiscuous mode
[  105.467719][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.518308][ T5839] veth1_macvtap: entered promiscuous mode
[  105.654131][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  105.678111][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.698823][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  105.719062][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.748326][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  105.761554][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.781451][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  105.793051][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.809423][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0
[  105.825655][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.866804][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.923751][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  105.948122][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.963546][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  105.976465][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.987330][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  105.999800][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.011197][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  106.022443][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.035396][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1
[  106.048343][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.088536][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.181262][ T5839] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  106.217850][ T5839] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  106.237799][ T5839] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  106.255316][ T5839] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  106.320892][ T5927] loop1: detected capacity change from 0 to 256
[  106.344962][ T5927] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  106.351745][ T5842] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.422746][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.517778][    T0] NOHZ tick-stop error: local softirq work is pending, handler #3c2!!!
[  106.558471][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.721678][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  106.722123][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[  106.926882][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[  107.746190][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[  107.999137][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.037988][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  108.076521][ T5932] loop2: detected capacity change from 0 to 4096
[  108.318614][ T5939] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  108.403479][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.430015][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  108.625599][ T5943] loop1: detected capacity change from 0 to 764
[  108.868262][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  108.884916][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  108.895273][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  108.908148][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  108.916513][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  109.816563][ T5943] Symlink component flag not implemented
[  109.935636][ T5943] Symlink component flag not implemented (101)
[  111.533785][ T5961] loop3: detected capacity change from 0 to 512
[  111.571170][ T5962] loop2: detected capacity change from 0 to 764
[  111.653442][ T5964] loop0: detected capacity change from 0 to 256
[  111.694297][ T5961] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.797965][ T5964] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  111.868561][ T5972] Symlink component flag not implemented
[  111.892548][ T5971] netlink: 'syz.1.13': attribute type 2 has an invalid length.
[  111.955410][ T5972] Symlink component flag not implemented (101)
[  112.091372][ T5961] ext4 filesystem being mounted at /3/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.220877][ T5969] loop4: detected capacity change from 0 to 764
[  112.483541][ T5971] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  112.867388][ T5978] Symlink component flag not implemented
[  113.179147][ T5971] netlink: 28 bytes leftover after parsing attributes in process `syz.1.13'.
[  113.448091][ T5971] netlink: 28 bytes leftover after parsing attributes in process `syz.1.13'.
[  113.491653][ T5979] Symlink component flag not implemented (101)
[  113.583393][   T29] audit: type=1800 audit(1740026339.290:3): pid=5959 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.11" name="file1" dev="loop3" ino=15 res=0 errno=0
[  115.344590][ T5989] loop0: detected capacity change from 0 to 764
[  115.489089][ T5992] Symlink component flag not implemented
[  115.569148][ T5992] Symlink component flag not implemented (101)
[  116.187417][ T5997] loop2: detected capacity change from 0 to 64
[  116.242487][ T5842] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.480859][ T6000] loop1: detected capacity change from 0 to 64
[  116.632528][ T6004] loop0: detected capacity change from 0 to 764
[  117.570216][ T6014] fuse: Unknown parameter 'grou00000000000000000000'
[  117.598894][ T6004] Symlink component flag not implemented
[  117.856022][ T6021] loop1: detected capacity change from 0 to 256
[  117.856733][ T6019] loop2: detected capacity change from 0 to 764
[  117.875505][ T6021] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  118.429767][ T6017] loop4: detected capacity change from 0 to 4096
[  118.720804][ T6026] Symlink component flag not implemented
[  118.754799][ T6026] Symlink component flag not implemented (101)
[  119.122304][ T6024] loop0: detected capacity change from 0 to 256
[  119.135177][ T6024] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  119.398271][   T29] audit: type=1804 audit(1740026345.080:4): pid=6027 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.25" name="/newroot/5/file0/file0" dev="loop0" ino=9 res=1 errno=0
[  119.947773][   T29] audit: type=1804 audit(1740026345.120:5): pid=6027 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.25" name="/newroot/5/file0/file0" dev="loop0" ino=9 res=1 errno=0
[  120.245979][ T6030] loop3: detected capacity change from 0 to 512
[  120.356713][ T6033] loop2: detected capacity change from 0 to 764
[  121.032184][ T6038] FAULT_INJECTION: forcing a failure.
[  121.032184][ T6038] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  121.050083][ T6030] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  121.139555][ T6038] CPU: 1 UID: 0 PID: 6038 Comm: syz.0.27 Not tainted 6.14.0-rc3-next-20250218-syzkaller #0
[  121.139591][ T6038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  121.139609][ T6038] Call Trace:
[  121.139618][ T6038]  <TASK>
[  121.139627][ T6038]  dump_stack_lvl+0x241/0x360
[  121.139672][ T6038]  ? __pfx_dump_stack_lvl+0x10/0x10
[  121.139697][ T6038]  ? __pfx__printk+0x10/0x10
[  121.139723][ T6038]  ? __pfx_lock_release+0x10/0x10
[  121.139772][ T6038]  should_fail_ex+0x40a/0x550
[  121.139804][ T6038]  _copy_from_user+0x2d/0xb0
[  121.139838][ T6038]  copy_msghdr_from_user+0xae/0x680
[  121.139876][ T6038]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  121.139907][ T6038]  ? __fget_files+0x2a/0x410
[  121.139935][ T6038]  ? __fget_files+0x2a/0x410
[  121.139972][ T6038]  __sys_sendmsg+0x209/0x350
[  121.140016][ T6038]  ? __pfx___sys_sendmsg+0x10/0x10
[  121.140072][ T6038]  ? do_sys_openat2+0x179/0x1c0
[  121.140137][ T6038]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  121.140180][ T6038]  ? do_syscall_64+0x100/0x230
[  121.140217][ T6038]  ? do_syscall_64+0xb6/0x230
[  121.140253][ T6038]  do_syscall_64+0xf3/0x230
[  121.140284][ T6038]  ? clear_bhb_loop+0x45/0xa0
[  121.140319][ T6038]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.140348][ T6038] RIP: 0033:0x7fac6a38cde9
[  121.140373][ T6038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.140390][ T6038] RSP: 002b:00007fac6b109038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  121.140413][ T6038] RAX: ffffffffffffffda RBX: 00007fac6a5a5fa0 RCX: 00007fac6a38cde9
[  121.140428][ T6038] RDX: 0000000020004010 RSI: 0000400000000280 RDI: 0000000000000003
[  121.140442][ T6038] RBP: 00007fac6b109090 R08: 0000000000000000 R09: 0000000000000000
[  121.140454][ T6038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  121.140466][ T6038] R13: 0000000000000000 R14: 00007fac6a5a5fa0 R15: 00007fff64589e88
[  121.140506][ T6038]  </TASK>
[  121.146693][ T6030] ext4 filesystem being mounted at /5/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.385405][ T6041] netlink: 12 bytes leftover after parsing attributes in process `syz.1.28'.
[  121.540723][ T6042] Symlink component flag not implemented
[  122.178034][   T29] audit: type=1800 audit(1740026347.910:6): pid=6030 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.26" name="file1" dev="loop3" ino=15 res=0 errno=0
[  122.248043][ T6044] loop4: detected capacity change from 0 to 64
[  122.384170][ T6049] loop1: detected capacity change from 0 to 256
[  122.461110][ T6049] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  123.109675][ T6054] overlayfs: missing 'lowerdir'
[  123.160556][   T29] audit: type=1804 audit(1740026348.900:7): pid=6055 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.32" name="/newroot/7/file0/file0" dev="loop1" ino=12 res=1 errno=0
[  124.200309][   T29] audit: type=1804 audit(1740026348.920:8): pid=6055 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.32" name="/newroot/7/file0/file0" dev="loop1" ino=12 res=1 errno=0
[  124.477368][ T5842] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.377731][ T6078] FAULT_INJECTION: forcing a failure.
[  126.377731][ T6078] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  126.392300][ T6078] CPU: 1 UID: 0 PID: 6078 Comm: syz.1.35 Not tainted 6.14.0-rc3-next-20250218-syzkaller #0
[  126.392328][ T6078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  126.392340][ T6078] Call Trace:
[  126.392349][ T6078]  <TASK>
[  126.392358][ T6078]  dump_stack_lvl+0x241/0x360
[  126.392393][ T6078]  ? __pfx_dump_stack_lvl+0x10/0x10
[  126.392418][ T6078]  ? __pfx__printk+0x10/0x10
[  126.392446][ T6078]  ? __pfx_lock_release+0x10/0x10
[  126.392495][ T6078]  should_fail_ex+0x40a/0x550
[  126.392527][ T6078]  _copy_from_user+0x2d/0xb0
[  126.392562][ T6078]  copy_msghdr_from_user+0xae/0x680
[  126.392600][ T6078]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  126.392625][ T6078]  ? __fget_files+0x2a/0x410
[  126.392653][ T6078]  ? __fget_files+0x2a/0x410
[  126.392690][ T6078]  __sys_sendmmsg+0x32b/0x720
[  126.392731][ T6078]  ? __pfx___sys_sendmmsg+0x10/0x10
[  126.392774][ T6078]  ? __pfx_lock_release+0x10/0x10
[  126.392804][ T6078]  ? kstrtouint_from_user+0x11f/0x190
[  126.392878][ T6078]  ? ksys_write+0x22a/0x2b0
[  126.392905][ T6078]  ? __pfx_lock_release+0x10/0x10
[  126.392949][ T6078]  ? sb_end_write+0xe9/0x1c0
[  126.392972][ T6078]  ? vfs_write+0x7fa/0xd10
[  126.393004][ T6078]  ? __mutex_unlock_slowpath+0x227/0x800
[  126.393082][ T6078]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  126.393121][ T6078]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  126.393158][ T6078]  ? do_syscall_64+0x100/0x230
[  126.393196][ T6078]  __x64_sys_sendmmsg+0xa0/0xb0
[  126.393221][ T6078]  do_syscall_64+0xf3/0x230
[  126.393253][ T6078]  ? clear_bhb_loop+0x45/0xa0
[  126.393288][ T6078]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.393317][ T6078] RIP: 0033:0x7f045ad8cde9
[  126.393337][ T6078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.393354][ T6078] RSP: 002b:00007f0458bd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  126.393376][ T6078] RAX: ffffffffffffffda RBX: 00007f045afa6160 RCX: 00007f045ad8cde9
[  126.393391][ T6078] RDX: 00000000040001b6 RSI: 0000400000001540 RDI: 0000000000000007
[  126.393405][ T6078] RBP: 00007f0458bd5090 R08: 0000000000000000 R09: 0000000000000000
[  126.393417][ T6078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.393429][ T6078] R13: 0000000000000000 R14: 00007f045afa6160 R15: 00007ffe1f980ec8
[  126.393470][ T6078]  </TASK>
[  127.015864][ T6076] loop3: detected capacity change from 0 to 256
[  127.069071][ T6081] loop2: detected capacity change from 0 to 764
[  127.110443][ T6083] FAULT_INJECTION: forcing a failure.
[  127.110443][ T6083] name failslab, interval 1, probability 0, space 0, times 1
[  127.137352][ T6076] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  127.185898][ T6085] syz.1.41 uses obsolete (PF_INET,SOCK_PACKET)
[  127.282758][ T6083] CPU: 0 UID: 0 PID: 6083 Comm: syz.0.39 Not tainted 6.14.0-rc3-next-20250218-syzkaller #0
[  127.282790][ T6083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  127.282803][ T6083] Call Trace:
[  127.282813][ T6083]  <TASK>
[  127.282822][ T6083]  dump_stack_lvl+0x241/0x360
[  127.282856][ T6083]  ? __pfx_dump_stack_lvl+0x10/0x10
[  127.282879][ T6083]  ? __pfx__printk+0x10/0x10
[  127.282906][ T6083]  ? fs_reclaim_acquire+0x93/0x130
[  127.282932][ T6083]  ? __pfx___might_resched+0x10/0x10
[  127.282967][ T6083]  should_fail_ex+0x40a/0x550
[  127.282999][ T6083]  should_failslab+0xac/0x100
[  127.283037][ T6083]  __kmalloc_noprof+0xdd/0x4c0
[  127.283068][ T6083]  ? kstrtouint_from_user+0x11f/0x190
[  127.283091][ T6083]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  127.283134][ T6083]  tomoyo_realpath_from_path+0xcf/0x5e0
[  127.283189][ T6083]  tomoyo_path_number_perm+0x239/0x770
[  127.283217][ T6083]  ? __lock_acquire+0x1397/0x2100
[  127.283256][ T6083]  ? tomoyo_path_number_perm+0x209/0x770
[  127.283288][ T6083]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  127.283389][ T6083]  ? __fget_files+0x2a/0x410
[  127.283417][ T6083]  ? __fget_files+0x2a/0x410
[  127.283448][ T6083]  security_file_ioctl+0xc6/0x2a0
[  127.283478][ T6083]  __se_sys_ioctl+0x46/0x160
[  127.283510][ T6083]  do_syscall_64+0xf3/0x230
[  127.283541][ T6083]  ? clear_bhb_loop+0x45/0xa0
[  127.283595][ T6083]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.283624][ T6083] RIP: 0033:0x7fac6a38cde9
[  127.283643][ T6083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.283659][ T6083] RSP: 002b:00007fac6b109038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  127.283681][ T6083] RAX: ffffffffffffffda RBX: 00007fac6a5a5fa0 RCX: 00007fac6a38cde9
[  127.283695][ T6083] RDX: 0000000000000000 RSI: 00000000c0984124 RDI: 0000000000000005
[  127.283707][ T6083] RBP: 00007fac6b109090 R08: 0000000000000000 R09: 0000000000000000
[  127.283718][ T6083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  127.283729][ T6083] R13: 0000000000000000 R14: 00007fac6a5a5fa0 R15: 00007fff64589e88
[  127.283766][ T6083]  </TASK>
[  127.604515][ T6083] ERROR: Out of memory at tomoyo_realpath_from_path.
[  128.048272][ T6089] Symlink component flag not implemented
[  128.151024][ T6089] Symlink component flag not implemented (101)
[  130.164778][ T6098] loop2: detected capacity change from 0 to 64
[  130.664758][ T6101] loop3: detected capacity change from 0 to 256
[  130.720785][ T6101] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  131.266715][ T6101] overlayfs: missing 'lowerdir'
[  131.313703][   T29] audit: type=1804 audit(1740026357.050:9): pid=6101 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.45" name="/newroot/7/file0/file0" dev="loop3" ino=17 res=1 errno=0
[  131.347150][ T6106] loop0: detected capacity change from 0 to 512
[  131.372541][ T6109] loop1: detected capacity change from 0 to 512
[  131.402834][   T29] audit: type=1804 audit(1740026357.080:10): pid=6101 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.45" name="/newroot/7/file0/file0" dev="loop3" ino=17 res=1 errno=0
[  131.509549][ T6106] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.557095][ T6106] ext4 filesystem being mounted at /11/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  131.592077][ T6109] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.679263][ T6116] loop4: detected capacity change from 0 to 512
[  131.718691][ T6109] ext4 filesystem being mounted at /10/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  131.764241][ T6121] loop2: detected capacity change from 0 to 512
[  131.897316][ T6116] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.233542][ T6116] ext4 filesystem being mounted at /6/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.322927][ T6106] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  132.532096][ T6106] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  132.805026][ T6121] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.888000][ T6121] ext4 filesystem being mounted at /10/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.928528][ T6106] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  132.952127][ T6106] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  132.967136][ T6106] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  132.970588][   T29] audit: type=1800 audit(1740026358.710:11): pid=6121 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.49" name="file1" dev="loop2" ino=15 res=0 errno=0
[  133.011999][ T6106] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  133.040901][ T6106] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  133.047426][ T6106] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  133.106761][ T6106] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  133.151777][ T6106] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  133.178407][ T6106] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  133.289542][ T6106] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  133.333738][ T6106] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  133.342696][ T6106] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  133.360882][ T6106] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  133.557438][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.592451][ T5847] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.609741][ T5839] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.624106][ T5830] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.793791][ T6142] loop4: detected capacity change from 0 to 256
[  133.885181][ T6142] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  133.921898][ T6145] FAULT_INJECTION: forcing a failure.
[  133.921898][ T6145] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  134.034334][ T6145] CPU: 1 UID: 0 PID: 6145 Comm: syz.1.54 Not tainted 6.14.0-rc3-next-20250218-syzkaller #0
[  134.034363][ T6145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  134.034376][ T6145] Call Trace:
[  134.034384][ T6145]  <TASK>
[  134.034392][ T6145]  dump_stack_lvl+0x241/0x360
[  134.034425][ T6145]  ? __pfx_dump_stack_lvl+0x10/0x10
[  134.034450][ T6145]  ? __pfx__printk+0x10/0x10
[  134.034472][ T6145]  ? vfs_write+0x7fa/0xd10
[  134.034498][ T6145]  ? __pfx_lock_release+0x10/0x10
[  134.034535][ T6145]  ? __mutex_unlock_slowpath+0x227/0x800
[  134.034574][ T6145]  should_fail_ex+0x40a/0x550
[  134.034605][ T6145]  _copy_from_user+0x2d/0xb0
[  134.034639][ T6145]  do_seccomp+0x20b/0xf90
[  134.034667][ T6145]  ? native_tss_update_io_bitmap+0x42d/0x640
[  134.034704][ T6145]  ? __pfx_do_seccomp+0x10/0x10
[  134.034731][ T6145]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  134.034769][ T6145]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  134.034805][ T6145]  ? do_syscall_64+0x100/0x230
[  134.034841][ T6145]  ? do_syscall_64+0xb6/0x230
[  134.034876][ T6145]  do_syscall_64+0xf3/0x230
[  134.034907][ T6145]  ? clear_bhb_loop+0x45/0xa0
[  134.034943][ T6145]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.034971][ T6145] RIP: 0033:0x7f045ad8cde9
[  134.035004][ T6145] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.035021][ T6145] RSP: 002b:00007f045bb14038 EFLAGS: 00000246 ORIG_RAX: 000000000000013d
[  134.035043][ T6145] RAX: ffffffffffffffda RBX: 00007f045afa5fa0 RCX: 00007f045ad8cde9
[  134.035058][ T6145] RDX: 0000400000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  134.035071][ T6145] RBP: 00007f045bb14090 R08: 0000000000000000 R09: 0000000000000000
[  134.035084][ T6145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  134.035096][ T6145] R13: 0000000000000000 R14: 00007f045afa5fa0 R15: 00007ffe1f980ec8
[  134.035136][ T6145]  </TASK>
[  134.357772][ T5843] Bluetooth: hci1: command 0x0c1a tx timeout
[  134.570138][ T6155] loop0: detected capacity change from 0 to 256
[  134.624378][ T6155] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  134.636136][ T6157] loop4: detected capacity change from 0 to 2048
[  134.660638][ T6151] loop2: detected capacity change from 0 to 4096
[  134.724320][ T6159] loop1: detected capacity change from 0 to 64
[  134.809251][ T6151] ntfs3: Unknown parameter './file0'
[  134.841554][ T6160] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  134.998758][ T5843] Bluetooth: hci0: command 0x0c1a tx timeout
[  135.080195][ T5843] Bluetooth: hci2: command 0x0c1a tx timeout
[  135.143148][ T6164] loop3: detected capacity change from 0 to 256
[  135.158014][ T5843] Bluetooth: hci3: command 0x0c1a tx timeout
[  135.162865][ T6157] FAULT_INJECTION: forcing a failure.
[  135.162865][ T6157] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  135.177327][ T6164] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  135.408127][ T5843] Bluetooth: hci4: command 0x0c1a tx timeout
[  135.514232][ T6150] fuse: Bad value for 'fd'
[  135.646353][ T6157] CPU: 1 UID: 0 PID: 6157 Comm: syz.4.58 Not tainted 6.14.0-rc3-next-20250218-syzkaller #0
[  135.646385][ T6157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  135.646397][ T6157] Call Trace:
[  135.646406][ T6157]  <TASK>
[  135.646415][ T6157]  dump_stack_lvl+0x241/0x360
[  135.646452][ T6157]  ? __pfx_dump_stack_lvl+0x10/0x10
[  135.646477][ T6157]  ? __pfx__printk+0x10/0x10
[  135.646510][ T6157]  ? snprintf+0xda/0x120
[  135.646540][ T6157]  should_fail_ex+0x40a/0x550
[  135.646572][ T6157]  _copy_to_user+0x31/0xb0
[  135.646610][ T6157]  simple_read_from_buffer+0xdc/0x170
[  135.646650][ T6157]  proc_fail_nth_read+0x1e9/0x250
[  135.646679][ T6157]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  135.646708][ T6157]  ? rw_verify_area+0x243/0x630
[  135.646733][ T6157]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  135.646759][ T6157]  vfs_read+0x1f8/0xb40
[  135.646789][ T6157]  ? fdget_pos+0x254/0x320
[  135.646813][ T6157]  ? __pfx___mutex_lock+0x10/0x10
[  135.646846][ T6157]  ? __pfx_vfs_read+0x10/0x10
[  135.646878][ T6157]  ? __fget_files+0x2a/0x410
[  135.646906][ T6157]  ? __fget_files+0x395/0x410
[  135.646926][ T6157]  ? __fget_files+0x2a/0x410
[  135.646965][ T6157]  ksys_read+0x18f/0x2b0
[  135.646997][ T6157]  ? __pfx_ksys_read+0x10/0x10
[  135.647026][ T6157]  ? do_syscall_64+0x100/0x230
[  135.647061][ T6157]  ? do_syscall_64+0xb6/0x230
[  135.647096][ T6157]  do_syscall_64+0xf3/0x230
[  135.647127][ T6157]  ? clear_bhb_loop+0x45/0xa0
[  135.647170][ T6157]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.647199][ T6157] RIP: 0033:0x7f0e0378b7fc
[  135.647218][ T6157] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  135.647234][ T6157] RSP: 002b:00007f0e0461f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  135.647257][ T6157] RAX: ffffffffffffffda RBX: 00007f0e039a5fa0 RCX: 00007f0e0378b7fc
[  135.647272][ T6157] RDX: 000000000000000f RSI: 00007f0e0461f0a0 RDI: 0000000000000005
[  135.647284][ T6157] RBP: 00007f0e0461f090 R08: 0000000000000000 R09: 0000000000000000
[  135.647297][ T6157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  135.647309][ T6157] R13: 0000000000000000 R14: 00007f0e039a5fa0 R15: 00007ffe2e207db8
[  135.647352][ T6157]  </TASK>
[  135.649381][ T6165] overlayfs: missing 'lowerdir'
[  136.227948][   T29] audit: type=1804 audit(1740026361.700:12): pid=6166 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.60" name="/newroot/9/file0/file0" dev="loop3" ino=24 res=1 errno=0
[  136.351261][   T29] audit: type=1804 audit(1740026361.990:13): pid=6167 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.60" name="/newroot/9/file0/file0" dev="loop3" ino=24 res=1 errno=0
[  136.445984][ T5843] Bluetooth: hci1: command 0x0c1a tx timeout
[  136.717839][ T6171] loop2: detected capacity change from 0 to 512
[  137.079563][ T5843] Bluetooth: hci0: command 0x0c1a tx timeout
[  137.179526][ T5843] Bluetooth: hci2: command 0x0c1a tx timeout
[  137.239376][ T5883] usb 2-1: new full-speed USB device number 2 using dummy_hcd
[  137.245585][ T5843] Bluetooth: hci3: command 0x0c1a tx timeout
[  137.317855][ T6171] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.337784][ T6171] ext4 filesystem being mounted at /13/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.461528][ T6183] loop3: detected capacity change from 0 to 2048
[  137.478309][ T5843] Bluetooth: hci4: command 0x0c1a tx timeout
[  137.526478][ T6171] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  137.535841][ T5883] usb 2-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  137.546280][ T5883] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  137.556704][ T5883] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  137.574732][ T6171] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  137.576082][ T5883] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  137.598523][ T6183] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.613051][ T5883] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  137.627201][ T5883] usb 2-1: Product: syz
[  137.631841][ T5883] usb 2-1: Manufacturer: syz
[  137.636713][ T5883] usb 2-1: SerialNumber: syz
[  137.658828][ T6171] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  137.690175][ T6171] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  137.696695][ T6171] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  137.721780][ T6191] netdevsim netdevsim4 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  137.785312][ T6191] netdevsim netdevsim4 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  137.883463][ T6191] netdevsim netdevsim4 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  137.910453][ T6191] netdevsim netdevsim4 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  137.926329][ T6191] geneve2: entered promiscuous mode
[  137.944343][ T6191] geneve2: entered allmulticast mode
[  138.003212][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.029360][ T6192] xt_l2tp: missing protocol rule (udp|l2tpip)
[  138.047960][ T6197] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  138.098970][ T6191] netdevsim netdevsim4 netdevsim0: unset [1, 1] type 2 family 0 port 20000 - 0
[  138.147815][ T6191] netdevsim netdevsim4 netdevsim1: unset [1, 1] type 2 family 0 port 20000 - 0
[  138.227963][ T6191] netdevsim netdevsim4 netdevsim2: unset [1, 1] type 2 family 0 port 20000 - 0
[  138.293074][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  138.300417][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  138.315389][ T6191] netdevsim netdevsim4 netdevsim3: unset [1, 1] type 2 family 0 port 20000 - 0
[  138.781169][ T6007] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  138.815227][ T6007] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  138.855942][ T6007] EXT4-fs (loop3): This should not happen!! Data will be lost
[  138.855942][ T6007] 
[  138.856733][ T5883] usb 2-1: 0:2 : does not exist
[  138.897945][ T6007] EXT4-fs (loop3): Total free blocks count 0
[  138.904033][ T6007] EXT4-fs (loop3): Free/Dirty block details
[  138.937839][ T6007] EXT4-fs (loop3): free_blocks=2415919504
[  138.943682][ T6007] EXT4-fs (loop3): dirty_blocks=16
[  138.976103][ T6007] EXT4-fs (loop3): Block reservation details
[  139.017924][ T6007] EXT4-fs (loop3): i_reserved_data_blocks=1
[  139.019508][ T6212] loop0: detected capacity change from 0 to 64
[  139.066294][ T5842] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.559669][ T5843] Bluetooth: hci1: command 0x0c1a tx timeout
[  139.637878][ T5843] Bluetooth: hci0: command 0x0c1a tx timeout
[  139.728045][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout
[  139.734357][   T54] Bluetooth: hci2: command 0x0c1a tx timeout
[  139.740629][ T5843] Bluetooth: hci4: command 0x0c1a tx timeout
[  140.030268][ T5883] usb 2-1: USB disconnect, device number 2
[  140.292546][ T6219] loop4: detected capacity change from 0 to 256
[  140.358043][ T6219] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  140.383631][ T5838] udevd[5838]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  140.518738][ T6226] overlay: Unknown parameter 'odir'
[  140.579548][   T23] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  140.671722][   T29] audit: type=1804 audit(1740026366.320:14): pid=6228 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.75" name="/newroot/12/file0/file0" dev="loop4" ino=27 res=1 errno=0
[  140.913395][ T5873] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  140.934928][   T23] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  141.010278][   T23] usb 4-1: config 0 interface 0 has no altsetting 0
[  141.151824][   T23] usb 4-1: New USB device found, idVendor=10fd, idProduct=1513, bcdDevice=7e.ce
[  141.162916][   T29] audit: type=1804 audit(1740026366.320:15): pid=6228 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.75" name="/newroot/12/file0/file0" dev="loop4" ino=27 res=1 errno=0
[  141.204957][   T23] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  141.233835][   T23] usb 4-1: Product: syz
[  141.256511][   T23] usb 4-1: Manufacturer: syz
[  141.272382][ T5873] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  141.301690][   T23] usb 4-1: SerialNumber: syz
[  141.314762][ T5873] usb 3-1: config 0 has no interfaces?
[  141.342780][ T5873] usb 3-1: New USB device found, idVendor=0867, idProduct=9812, bcdDevice=16.e3
[  141.365911][   T23] usb 4-1: config 0 descriptor??
[  141.369590][ T5873] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  141.390779][ T6230] loop0: detected capacity change from 0 to 512
[  141.397523][   T23] dvb-usb: found a 'MSI DIGI VOX mini II DVB-T USB2.0' in warm state.
[  141.411072][ T5873] usb 3-1: Product: syz
[  141.415312][ T5873] usb 3-1: Manufacturer: syz
[  141.431415][ T5873] usb 3-1: SerialNumber: syz
[  141.779187][ T5873] usb 3-1: config 0 descriptor??
[  141.887096][   T23] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  141.889341][ T6230] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.901387][   T23] dvbdev: DVB: registering new adapter (MSI DIGI VOX mini II DVB-T USB2.0)
[  141.932623][ T6230] ext4 filesystem being mounted at /18/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  141.970479][   T23] usb 4-1: media controller created
[  142.224061][ T6238] netlink: 'syz.4.80': attribute type 2 has an invalid length.
[  142.244779][ T5883] usb 3-1: USB disconnect, device number 2
[  142.305393][   T23] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  142.345235][ T6238] netlink: 28 bytes leftover after parsing attributes in process `syz.4.80'.
[  142.354210][ T6238] netlink: 28 bytes leftover after parsing attributes in process `syz.4.80'.
[  142.409746][ T6230] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  142.446999][ T6230] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  142.450694][ T6238] batadv0: entered promiscuous mode
[  142.474212][ T6230] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  142.498095][ T6230] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  142.504824][ T6230] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  142.569270][ T6238] dummy0: entered promiscuous mode
[  142.633091][ T5830] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.672966][   T23] DVB: Unable to find symbol tda10046_attach()
[  142.730309][   T23] dvb-usb: no frontend was attached by 'MSI DIGI VOX mini II DVB-T USB2.0'
[  142.791731][   T23] dvb-usb: MSI DIGI VOX mini II DVB-T USB2.0 successfully initialized and connected.
[  143.333738][ T6221] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  143.395027][ T6221] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  143.503108][ T6221] syz.3.71: attempt to access beyond end of device
[  143.503108][ T6221] nbd3: rw=0, sector=2, nr_sectors = 2 limit=0
[  143.568002][ T6221] syz.3.71: attempt to access beyond end of device
[  143.568002][ T6221] nbd3: rw=0, sector=0, nr_sectors = 2 limit=0
[  143.618320][ T6221] syz.3.71: attempt to access beyond end of device
[  143.618320][ T6221] nbd3: rw=0, sector=0, nr_sectors = 2 limit=0
[  143.640399][ T6221] syz.3.71: attempt to access beyond end of device
[  143.640399][ T6221] nbd3: rw=0, sector=18, nr_sectors = 2 limit=0
[  143.654708][ T6261] FAULT_INJECTION: forcing a failure.
[  143.654708][ T6261] name failslab, interval 1, probability 0, space 0, times 0
[  143.709594][ T6221] syz.3.71: attempt to access beyond end of device
[  143.709594][ T6221] nbd3: rw=0, sector=30, nr_sectors = 2 limit=0
[  143.788456][ T6221] syz.3.71: attempt to access beyond end of device
[  143.788456][ T6221] nbd3: rw=0, sector=36, nr_sectors = 2 limit=0
[  143.860200][ T6261] CPU: 1 UID: 0 PID: 6261 Comm: syz.0.82 Not tainted 6.14.0-rc3-next-20250218-syzkaller #0
[  143.860234][ T6261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  143.860247][ T6261] Call Trace:
[  143.860257][ T6261]  <TASK>
[  143.860266][ T6261]  dump_stack_lvl+0x241/0x360
[  143.860302][ T6261]  ? __pfx_dump_stack_lvl+0x10/0x10
[  143.860327][ T6261]  ? __pfx__printk+0x10/0x10
[  143.860354][ T6261]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  143.860398][ T6261]  ? __pfx___might_resched+0x10/0x10
[  143.860437][ T6261]  should_fail_ex+0x40a/0x550
[  143.860469][ T6261]  should_failslab+0xac/0x100
[  143.860505][ T6261]  kmem_cache_alloc_node_noprof+0x77/0x380
[  143.860539][ T6261]  ? __alloc_skb+0x1c3/0x440
[  143.860578][ T6261]  __alloc_skb+0x1c3/0x440
[  143.860619][ T6261]  ? __pfx___alloc_skb+0x10/0x10
[  143.860655][ T6261]  ? netlink_autobind+0xd6/0x2f0
[  143.860679][ T6261]  ? netlink_autobind+0x2b0/0x2f0
[  143.860711][ T6261]  netlink_sendmsg+0x623/0xca0
[  143.860757][ T6261]  ? __pfx_netlink_sendmsg+0x10/0x10
[  143.860788][ T6261]  ? aa_sock_msg_perm+0xf3/0x1d0
[  143.860832][ T6261]  ? __pfx_netlink_sendmsg+0x10/0x10
[  143.860854][ T6261]  __sock_sendmsg+0x221/0x270
[  143.860887][ T6261]  sock_write_iter+0x2d7/0x3f0
[  143.860917][ T6261]  ? __pfx_sock_write_iter+0x10/0x10
[  143.860979][ T6261]  do_iter_readv_writev+0x71a/0x9d0
[  143.861020][ T6261]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  143.861060][ T6261]  ? bpf_lsm_file_permission+0x9/0x10
[  143.861094][ T6261]  ? rw_verify_area+0x243/0x630
[  143.861127][ T6261]  vfs_writev+0x38b/0xbc0
[  143.861175][ T6261]  ? __pfx_vfs_writev+0x10/0x10
[  143.861219][ T6261]  ? do_sys_openat2+0x179/0x1c0
[  143.861241][ T6261]  ? __fget_files+0x2a/0x410
[  143.861267][ T6261]  ? __fget_files+0x395/0x410
[  143.861286][ T6261]  ? __fget_files+0x2a/0x410
[  143.861323][ T6261]  do_writev+0x1b6/0x360
[  143.861354][ T6261]  ? __pfx_do_writev+0x10/0x10
[  143.861388][ T6261]  ? do_syscall_64+0x100/0x230
[  143.861425][ T6261]  ? do_syscall_64+0xb6/0x230
[  143.861461][ T6261]  do_syscall_64+0xf3/0x230
[  143.861492][ T6261]  ? clear_bhb_loop+0x45/0xa0
[  143.861528][ T6261]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.861557][ T6261] RIP: 0033:0x7fac6a38cde9
[  143.861577][ T6261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.861594][ T6261] RSP: 002b:00007fac681d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  143.861616][ T6261] RAX: ffffffffffffffda RBX: 00007fac6a5a6160 RCX: 00007fac6a38cde9
[  143.861631][ T6261] RDX: 0000000000000001 RSI: 00004000000003c0 RDI: 0000000000000009
[  143.861644][ T6261] RBP: 00007fac681d5090 R08: 0000000000000000 R09: 0000000000000000
[  143.861656][ T6261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  143.861668][ T6261] R13: 0000000000000000 R14: 00007fac6a5a6160 R15: 00007fff64589e88
[  143.861709][ T6261]  </TASK>
[  144.208462][ T6262] loop4: detected capacity change from 0 to 32768
[  144.231255][ T6262] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.86 (6262)
[  144.438124][ T5843] Bluetooth: hci1: command 0x0c1a tx timeout
[  144.477832][   T23] dvb_usb_m920x 4-1:0.0: probe with driver dvb_usb_m920x failed with error -71
[  144.495244][ T6262] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  144.504652][   T23] usb 4-1: USB disconnect, device number 2
[  144.506120][ T6262] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  144.538798][ T5843] Bluetooth: hci4: command 0x0c1a tx timeout
[  144.538959][   T54] Bluetooth: hci3: command 0x0c1a tx timeout
[  144.544969][ T5843] Bluetooth: hci2: command 0x0c1a tx timeout
[  144.551514][ T5834] Bluetooth: hci0: command 0x0c1a tx timeout
[  144.833287][ T6262] BTRFS info (device loop4): rebuilding free space tree
[  144.871041][ T6282] loop2: detected capacity change from 0 to 64
[  144.884910][ T6262] BTRFS info (device loop4): disabling free space tree
[  144.892862][ T6262] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  144.903126][ T6262] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  145.053804][ T6283] FAULT_INJECTION: forcing a failure.
[  145.053804][ T6283] name failslab, interval 1, probability 0, space 0, times 0
[  145.066627][ T6283] CPU: 1 UID: 0 PID: 6283 Comm: syz.4.86 Not tainted 6.14.0-rc3-next-20250218-syzkaller #0
[  145.066655][ T6283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  145.066668][ T6283] Call Trace:
[  145.066677][ T6283]  <TASK>
[  145.066686][ T6283]  dump_stack_lvl+0x241/0x360
[  145.066722][ T6283]  ? __pfx_dump_stack_lvl+0x10/0x10
[  145.066748][ T6283]  ? __pfx__printk+0x10/0x10
[  145.066775][ T6283]  ? __kmalloc_cache_noprof+0x48/0x390
[  145.066811][ T6283]  ? __pfx___might_resched+0x10/0x10
[  145.066847][ T6283]  should_fail_ex+0x40a/0x550
[  145.066879][ T6283]  should_failslab+0xac/0x100
[  145.066916][ T6283]  __kmalloc_cache_noprof+0x70/0x390
[  145.066948][ T6283]  ? alloc_pipe_info+0xeb/0x4d0
[  145.066977][ T6283]  ? __rcu_read_unlock+0xa1/0x110
[  145.067016][ T6283]  alloc_pipe_info+0xeb/0x4d0
[  145.067052][ T6283]  splice_direct_to_actor+0xa9e/0xc80
[  145.067095][ T6283]  ? __pfx_aa_file_perm+0x10/0x10
[  145.067144][ T6283]  ? __pfx_direct_splice_actor+0x10/0x10
[  145.067178][ T6283]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  145.067210][ T6283]  ? __fget_files+0x2a/0x410
[  145.067233][ T6283]  ? __pfx_lock_release+0x10/0x10
[  145.067279][ T6283]  do_splice_direct+0x289/0x3e0
[  145.067321][ T6283]  ? __pfx_do_splice_direct+0x10/0x10
[  145.067355][ T6283]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  145.067400][ T6283]  ? rw_verify_area+0x243/0x630
[  145.067432][ T6283]  do_sendfile+0x564/0x8a0
[  145.067470][ T6283]  ? __pfx_do_sendfile+0x10/0x10
[  145.067492][ T6283]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  145.067545][ T6283]  __se_sys_sendfile64+0x17c/0x1e0
[  145.067583][ T6283]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  145.067638][ T6283]  do_syscall_64+0xf3/0x230
[  145.067670][ T6283]  ? clear_bhb_loop+0x45/0xa0
[  145.067703][ T6283]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.067729][ T6283] RIP: 0033:0x7f0e0378cde9
[  145.067748][ T6283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.067762][ T6283] RSP: 002b:00007f0e045fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  145.067784][ T6283] RAX: ffffffffffffffda RBX: 00007f0e039a6080 RCX: 00007f0e0378cde9
[  145.067799][ T6283] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[  145.067811][ T6283] RBP: 00007f0e045fe090 R08: 0000000000000000 R09: 0000000000000000
[  145.067823][ T6283] R10: 0000000000002c62 R11: 0000000000000246 R12: 0000000000000001
[  145.067834][ T6283] R13: 0000000000000000 R14: 00007f0e039a6080 R15: 00007ffe2e207db8
[  145.067873][ T6283]  </TASK>
[  145.980391][ T5839] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  146.239873][ T6290] loop3: detected capacity change from 0 to 512
[  146.321706][ T6292] loop2: detected capacity change from 0 to 764
[  146.365444][ T6290] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.378409][ T6290] ext4 filesystem being mounted at /13/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  146.477454][ T6299] loop4: detected capacity change from 0 to 256
[  146.557371][ T6290] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  146.576699][ T5883] usb 2-1: new full-speed USB device number 3 using dummy_hcd
[  146.587938][ T6290] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  146.594168][ T6290] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  146.678146][ T6301] Symlink component flag not implemented
[  146.705400][ T6290] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  146.768878][ T6301] Symlink component flag not implemented (101)
[  146.848083][ T6299] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  146.941599][ T6290] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  147.017098][ T5883] usb 2-1: config 168 descriptor has 1 excess byte, ignoring
[  147.028419][ T5883] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 64
[  147.039721][ T5883] usb 2-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  147.052335][ T5883] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  147.063960][ T5883] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[  147.088700][ T5883] usb 2-1: config 168 descriptor has 1 excess byte, ignoring
[  147.100617][ T5883] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 64
[  147.113009][ T5883] usb 2-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  147.248682][ T5883] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  147.260818][ T5883] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[  147.414048][ T6302] overlay: Unknown parameter 'odir'
[  147.508250][   T29] audit: type=1804 audit(1740026373.250:16): pid=6303 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.90" name="/newroot/17/file0/file0" dev="loop4" ino=30 res=1 errno=0
[  147.547195][ T5883] usb 2-1: config 168 descriptor has 1 excess byte, ignoring
[  147.960157][ T5842] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.980211][ T5883] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 64
[  148.003350][   T29] audit: type=1804 audit(1740026373.300:17): pid=6302 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.90" name="/newroot/17/file0/file0" dev="loop4" ino=30 res=1 errno=0
[  148.008910][ T5883] usb 2-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  148.106345][ T5883] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  148.159460][ T5883] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[  148.238317][ T6307] netlink: 'syz.3.94': attribute type 2 has an invalid length.
[  148.257466][ T5883] usb 2-1: string descriptor 0 read error: -22
[  148.272787][ T5883] usb 2-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  148.327754][ T5883] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  148.338204][ T6307] netlink: 28 bytes leftover after parsing attributes in process `syz.3.94'.
[  148.382325][ T6307] netlink: 28 bytes leftover after parsing attributes in process `syz.3.94'.
[  148.489504][ T6307] batadv0: entered promiscuous mode
[  148.500042][ T5883] adutux 2-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  148.530419][ T6307] dummy0: entered promiscuous mode
[  148.595320][ T6307] debugfs: Directory 'hsr1' with parent 'hsr' already present!
[  148.604658][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout
[  148.678154][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout
[  148.680954][   T54] Bluetooth: hci0: command 0x0c1a tx timeout
[  148.729100][ T6307] Cannot create hsr debugfs directory
[  148.769766][   T54] Bluetooth: hci3: command 0x0c1a tx timeout
[  148.825103][ T6320] loop2: detected capacity change from 0 to 512
[  148.899902][ T6320] EXT4-fs: Ignoring removed oldalloc option
[  148.974665][ T6320] EXT4-fs error (device loop2): ext4_xattr_inode_iget:436: comm syz.2.98: Parent and EA inode have the same ino 15
[  149.000975][   T54] Bluetooth: hci4: command 0x0c1a tx timeout
[  149.011392][ T6320] EXT4-fs (loop2): 1 orphan inode deleted
[  149.075328][ T6320] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.118738][ T5883] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  149.308737][ T5883] usb 5-1: Using ep0 maxpacket: 8
[  149.408173][ T5883] usb 5-1: config 0 has an invalid interface number: 186 but max is 0
[  149.482540][ T5883] usb 5-1: config 0 has no interface number 0
[  149.541731][ T5883] usb 5-1: config 0 interface 186 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  149.697317][ T5883] usb 5-1: config 0 interface 186 altsetting 0 has an endpoint descriptor with address 0x9A, changing to 0x8A
[  149.699170][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.809504][ T5883] usb 5-1: config 0 interface 186 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  149.827852][ T5883] usb 5-1: config 0 interface 186 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  149.917454][ T5883] usb 5-1: config 0 interface 186 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[  149.974904][ T5883] usb 5-1: New USB device found, idVendor=07c0, idProduct=1505, bcdDevice=b8.c5
[  149.998348][ T5883] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  150.034865][ T5883] usb 5-1: Product: syz
[  150.066451][ T5883] usb 5-1: Manufacturer: syz
[  150.074468][ T5883] usb 5-1: SerialNumber: syz
[  150.135522][ T5883] usb 5-1: config 0 descriptor??
[  150.328727][ T6338] FAULT_INJECTION: forcing a failure.
[  150.328727][ T6338] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  150.342100][ T6338] CPU: 1 UID: 0 PID: 6338 Comm: syz.2.103 Not tainted 6.14.0-rc3-next-20250218-syzkaller #0
[  150.342128][ T6338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  150.342149][ T6338] Call Trace:
[  150.342158][ T6338]  <TASK>
[  150.342167][ T6338]  dump_stack_lvl+0x241/0x360
[  150.342208][ T6338]  ? __pfx_dump_stack_lvl+0x10/0x10
[  150.342234][ T6338]  ? __pfx__printk+0x10/0x10
[  150.342262][ T6338]  ? __pfx_lock_release+0x10/0x10
[  150.342313][ T6338]  should_fail_ex+0x40a/0x550
[  150.342346][ T6338]  _copy_from_user+0x2d/0xb0
[  150.342382][ T6338]  copy_msghdr_from_user+0xae/0x680
[  150.342422][ T6338]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  150.342447][ T6338]  ? __fget_files+0x2a/0x410
[  150.342476][ T6338]  ? __fget_files+0x2a/0x410
[  150.342514][ T6338]  __sys_sendmmsg+0x32b/0x720
[  150.342556][ T6338]  ? __pfx___sys_sendmmsg+0x10/0x10
[  150.342600][ T6338]  ? __pfx_lock_release+0x10/0x10
[  150.342632][ T6338]  ? kstrtouint_from_user+0x11f/0x190
[  150.342701][ T6338]  ? ksys_write+0x22a/0x2b0
[  150.342730][ T6338]  ? __pfx_lock_release+0x10/0x10
[  150.342776][ T6338]  ? sb_end_write+0xe9/0x1c0
[  150.342800][ T6338]  ? vfs_write+0x7fa/0xd10
[  150.342833][ T6338]  ? __mutex_unlock_slowpath+0x227/0x800
[  150.342914][ T6338]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  150.342955][ T6338]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  150.342992][ T6338]  ? do_syscall_64+0x100/0x230
[  150.343032][ T6338]  __x64_sys_sendmmsg+0xa0/0xb0
[  150.343058][ T6338]  do_syscall_64+0xf3/0x230
[  150.343091][ T6338]  ? clear_bhb_loop+0x45/0xa0
[  150.343128][ T6338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.343164][ T6338] RIP: 0033:0x7f160d78cde9
[  150.343184][ T6338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.343201][ T6338] RSP: 002b:00007f160e5de038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  150.343225][ T6338] RAX: ffffffffffffffda RBX: 00007f160d9a6080 RCX: 00007f160d78cde9
[  150.343241][ T6338] RDX: 0400000000000159 RSI: 0000400000001c00 RDI: 0000000000000004
[  150.343256][ T6338] RBP: 00007f160e5de090 R08: 0000000000000000 R09: 0000000000000000
[  150.343269][ T6338] R10: 0000000000040840 R11: 0000000000000246 R12: 0000000000000001
[  150.343282][ T6338] R13: 0000000000000000 R14: 00007f160d9a6080 R15: 00007ffe14be7c18
[  150.343325][ T6338]  </TASK>
[  150.614046][ T6340] loop3: detected capacity change from 0 to 64
[  150.747516][ T6341] loop0: detected capacity change from 0 to 256
[  150.785231][ T5883] iowarrior 5-1:0.186: IOWarrior product=0x1505, serial=42424242 interface=186 now attached to iowarrior1
[  150.848395][ T6341] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  151.330637][ T6347] overlay: Unknown parameter 'odir'
[  151.671395][   T29] audit: type=1804 audit(1740026377.410:18): pid=6350 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.105" name="/newroot/22/file0/file0" dev="loop0" ino=33 res=1 errno=0
[  151.764719][   T29] audit: type=1804 audit(1740026377.450:19): pid=6347 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.105" name="/newroot/22/file0/file0" dev="loop0" ino=33 res=1 errno=0
[  151.902911][ T5873] usb 5-1: USB disconnect, device number 2
[  152.137134][ T3075] usb 2-1: USB disconnect, device number 3
[  152.360179][ T6361] FAULT_INJECTION: forcing a failure.
[  152.360179][ T6361] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  152.438222][ T6361] CPU: 0 UID: 0 PID: 6361 Comm: syz.2.110 Not tainted 6.14.0-rc3-next-20250218-syzkaller #0
[  152.438257][ T6361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  152.438270][ T6361] Call Trace:
[  152.438278][ T6361]  <TASK>
[  152.438287][ T6361]  dump_stack_lvl+0x241/0x360
[  152.438321][ T6361]  ? __pfx_dump_stack_lvl+0x10/0x10
[  152.438346][ T6361]  ? __pfx__printk+0x10/0x10
[  152.438372][ T6361]  ? __pfx_lock_release+0x10/0x10
[  152.438419][ T6361]  should_fail_ex+0x40a/0x550
[  152.438451][ T6361]  _copy_from_user+0x2d/0xb0
[  152.438485][ T6361]  copy_msghdr_from_user+0xae/0x680
[  152.438523][ T6361]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  152.438559][ T6361]  ? kasan_check_range+0x82/0x290
[  152.438604][ T6361]  __sys_recvmsg+0x200/0x390
[  152.438635][ T6361]  ? __pfx___sys_recvmsg+0x10/0x10
[  152.438678][ T6361]  ? __fget_files+0x2a/0x410
[  152.438722][ T6361]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  152.438758][ T6361]  ? do_syscall_64+0x100/0x230
[  152.438803][ T6361]  ? do_syscall_64+0xb6/0x230
[  152.438837][ T6361]  do_syscall_64+0xf3/0x230
[  152.438868][ T6361]  ? clear_bhb_loop+0x45/0xa0
[  152.438902][ T6361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.438930][ T6361] RIP: 0033:0x7f160d78cde9
[  152.438950][ T6361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.438967][ T6361] RSP: 002b:00007f160e5de038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  152.438989][ T6361] RAX: ffffffffffffffda RBX: 00007f160d9a6080 RCX: 00007f160d78cde9
[  152.439004][ T6361] RDX: 0000000000000000 RSI: 00004000000005c0 RDI: 0000000000000005
[  152.439017][ T6361] RBP: 00007f160e5de090 R08: 0000000000000000 R09: 0000000000000000
[  152.439029][ T6361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  152.439042][ T6361] R13: 0000000000000000 R14: 00007f160d9a6080 R15: 00007ffe14be7c18
[  152.439080][ T6361]  </TASK>
[  153.108166][ T6367] loop4: detected capacity change from 0 to 512
[  153.176575][ T6367] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.202501][ T6367] ext4 filesystem being mounted at /20/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.325285][   T29] audit: type=1800 audit(1740026379.060:20): pid=6367 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.113" name="file1" dev="loop4" ino=15 res=0 errno=0
[  153.685341][ T6380] loop2: detected capacity change from 0 to 8
[  154.100529][ T6391] hub 6-0:1.0: USB hub found
[  154.198650][ T6391] hub 6-0:1.0: 1 port detected
[  154.383744][ T6393] loop3: detected capacity change from 0 to 256
[  154.558817][ T6393] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  154.752442][ T6396] overlay: Unknown parameter 'odir'
[  154.973494][ T5839] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.300438][   T29] audit: type=1804 audit(1740026380.790:21): pid=6398 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.119" name="/newroot/19/file0/file0" dev="loop3" ino=36 res=1 errno=0
[  155.543051][ T6395] loop0: detected capacity change from 0 to 4096
[  155.584333][ T6395] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512).
[  155.781204][ T6395] ntfs3(loop0): ino=b, mi_enum_attr
[  155.786748][ T6395] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  156.069382][ T6400] loop4: detected capacity change from 0 to 1024
[  157.467931][ T6400] EXT4-fs: Ignoring removed nobh option
[  157.473607][ T6400] EXT4-fs: Ignoring removed bh option
[  157.522986][ T6395] ntfs3(loop0): Failed to load $Extend (-22).
[  157.557130][ T6400] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.567907][ T6395] ntfs3(loop0): Failed to initialize $Extend.
[  159.169213][ T5887] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  159.247818][  T974] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  159.361300][ T5887] usb 4-1: device descriptor read/64, error -71
[  159.461508][  T974] usb 3-1: Using ep0 maxpacket: 8
[  159.490410][  T974] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  159.510182][  T974] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  159.521015][  T974] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  159.533181][  T974] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  159.546870][  T974] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  159.557054][  T974] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  159.628307][ T5887] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  159.777983][ T5887] usb 4-1: device descriptor read/64, error -71
[  159.800713][  T974] usb 3-1: GET_CAPABILITIES returned 0
[  159.822329][  T974] usbtmc 3-1:16.0: can't read capabilities
[  159.893178][ T5887] usb usb4-port1: attempt power cycle
[  160.278137][ T5887] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  160.318864][ T5887] usb 4-1: device descriptor read/8, error -71
[  160.394902][ T6435] loop1: detected capacity change from 0 to 512
[  160.529134][ T6435] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.549098][ T6435] ext4 filesystem being mounted at /21/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  160.567966][ T5887] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  160.600825][ T5887] usb 4-1: device descriptor read/8, error -71
[  160.637912][ T6440] netlink: 'syz.0.130': attribute type 2 has an invalid length.
[  160.654916][ T6440] netlink: 28 bytes leftover after parsing attributes in process `syz.0.130'.
[  160.669136][ T6440] netlink: 28 bytes leftover after parsing attributes in process `syz.0.130'.
[  160.707425][  T974] usb 3-1: USB disconnect, device number 3
[  160.730999][ T5887] usb usb4-port1: unable to enumerate USB device
[  160.747225][   T29] audit: type=1800 audit(1740026386.480:22): pid=6435 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.129" name="file1" dev="loop1" ino=15 res=0 errno=0
[  160.770904][ T5839] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.923326][ T6444] loop2: detected capacity change from 0 to 256
[  161.016284][ T6444] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  161.080143][ T5847] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.326962][ T6447] overlay: Unknown parameter 'odir'
[  161.489970][   T29] audit: type=1804 audit(1740026387.200:23): pid=6448 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.132" name="/newroot/32/file0/file0" dev="loop2" ino=39 res=1 errno=0
[  161.975981][ T6450] loop1: detected capacity change from 0 to 1024
[  162.247543][ T6453] netlink: 224 bytes leftover after parsing attributes in process `syz.0.134'.
[  163.016582][ T6461] FAULT_INJECTION: forcing a failure.
[  163.016582][ T6461] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  163.103175][ T6461] CPU: 0 UID: 0 PID: 6461 Comm: syz.1.133 Not tainted 6.14.0-rc3-next-20250218-syzkaller #0
[  163.103207][ T6461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  163.103220][ T6461] Call Trace:
[  163.103229][ T6461]  <TASK>
[  163.103238][ T6461]  dump_stack_lvl+0x241/0x360
[  163.103274][ T6461]  ? __pfx_dump_stack_lvl+0x10/0x10
[  163.103299][ T6461]  ? __pfx__printk+0x10/0x10
[  163.103334][ T6461]  ? snprintf+0xda/0x120
[  163.103363][ T6461]  should_fail_ex+0x40a/0x550
[  163.103396][ T6461]  _copy_to_user+0x31/0xb0
[  163.103434][ T6461]  simple_read_from_buffer+0xdc/0x170
[  163.103476][ T6461]  proc_fail_nth_read+0x1e9/0x250
[  163.103505][ T6461]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  163.103534][ T6461]  ? rw_verify_area+0x243/0x630
[  163.103560][ T6461]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  163.103586][ T6461]  vfs_read+0x1f8/0xb40
[  163.103616][ T6461]  ? fdget_pos+0x254/0x320
[  163.103641][ T6461]  ? __pfx___mutex_lock+0x10/0x10
[  163.103672][ T6461]  ? __pfx_vfs_read+0x10/0x10
[  163.103690][ T6461]  ? do_sys_openat2+0x179/0x1c0
[  163.103712][ T6461]  ? __fget_files+0x2a/0x410
[  163.103731][ T6461]  ? __fget_files+0x395/0x410
[  163.103746][ T6461]  ? __fget_files+0x2a/0x410
[  163.103774][ T6461]  ksys_read+0x18f/0x2b0
[  163.103799][ T6461]  ? __pfx_ksys_read+0x10/0x10
[  163.103821][ T6461]  ? do_syscall_64+0x100/0x230
[  163.103850][ T6461]  ? do_syscall_64+0xb6/0x230
[  163.103877][ T6461]  do_syscall_64+0xf3/0x230
[  163.103902][ T6461]  ? clear_bhb_loop+0x45/0xa0
[  163.103931][ T6461]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.103954][ T6461] RIP: 0033:0x7f045ad8b7fc
[  163.103969][ T6461] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  163.103983][ T6461] RSP: 002b:00007f0458bf6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  163.104000][ T6461] RAX: ffffffffffffffda RBX: 00007f045afa6080 RCX: 00007f045ad8b7fc
[  163.104012][ T6461] RDX: 000000000000000f RSI: 00007f0458bf60a0 RDI: 0000000000000006
[  163.104022][ T6461] RBP: 00007f0458bf6090 R08: 0000000000000000 R09: 0000000000000000
[  163.104032][ T6461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  163.104042][ T6461] R13: 0000000000000001 R14: 00007f045afa6080 R15: 00007ffe1f980ec8
[  163.104072][ T6461]  </TASK>
[  163.337547][ T6450] hfsplus: xattr searching failed
[  163.435336][ T6468] loop3: detected capacity change from 0 to 64
[  163.855909][ T6475] loop1: detected capacity change from 0 to 764
[  164.185051][ T6479] Symlink component flag not implemented
[  164.194673][ T6479] Symlink component flag not implemented (101)
[  164.891320][ T6484] loop4: detected capacity change from 0 to 512
[  165.403668][ T6484] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.607852][ T6484] ext4 filesystem being mounted at /24/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  166.161375][ T6493] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #12: comm syz.4.143: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  166.186493][ T6493] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #12: comm syz.4.143: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  166.772841][ T5839] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.154597][ T6502] loop3: detected capacity change from 0 to 256
[  167.404281][ T6499] netlink: 20 bytes leftover after parsing attributes in process `syz.2.146'.
[  167.828845][ T6502] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  168.094510][ T6508] overlay: Unknown parameter 'odir'
[  169.099739][   T29] audit: type=1804 audit(1740026394.830:24): pid=6507 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.147" name="/newroot/25/file0/file0" dev="loop3" ino=42 res=1 errno=0
[  170.090398][ T6520] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  170.128938][ T6520] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  170.135827][ T6520] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  170.198197][ T6520] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  170.206104][ T6520] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  170.285900][ T6525] loop4: detected capacity change from 0 to 64
[  170.432638][ T6521] loop1: detected capacity change from 0 to 2048
[  170.454575][ T6529] FAULT_INJECTION: forcing a failure.
[  170.454575][ T6529] name failslab, interval 1, probability 0, space 0, times 0
[  170.494671][ T6529] CPU: 1 UID: 0 PID: 6529 Comm: syz.0.155 Not tainted 6.14.0-rc3-next-20250218-syzkaller #0
[  170.494702][ T6529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  170.494714][ T6529] Call Trace:
[  170.494723][ T6529]  <TASK>
[  170.494731][ T6529]  dump_stack_lvl+0x241/0x360
[  170.494768][ T6529]  ? __pfx_dump_stack_lvl+0x10/0x10
[  170.494790][ T6529]  ? __pfx__printk+0x10/0x10
[  170.494828][ T6529]  ? __kmalloc_cache_noprof+0x48/0x390
[  170.494864][ T6529]  ? __pfx___might_resched+0x10/0x10
[  170.494900][ T6529]  should_fail_ex+0x40a/0x550
[  170.494928][ T6529]  should_failslab+0xac/0x100
[  170.494965][ T6529]  __kmalloc_cache_noprof+0x70/0x390
[  170.494997][ T6529]  ? alloc_pipe_info+0xeb/0x4d0
[  170.495034][ T6529]  alloc_pipe_info+0xeb/0x4d0
[  170.495070][ T6529]  splice_direct_to_actor+0xa9e/0xc80
[  170.495113][ T6529]  ? __pfx_aa_file_perm+0x10/0x10
[  170.495162][ T6529]  ? __pfx_direct_splice_actor+0x10/0x10
[  170.495197][ T6529]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  170.495229][ T6529]  ? __fget_files+0x2a/0x410
[  170.495251][ T6529]  ? __pfx_lock_release+0x10/0x10
[  170.495292][ T6529]  do_splice_direct+0x289/0x3e0
[  170.495333][ T6529]  ? __pfx_do_splice_direct+0x10/0x10
[  170.495367][ T6529]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  170.495405][ T6529]  ? bpf_lsm_file_permission+0x9/0x10
[  170.495440][ T6529]  ? rw_verify_area+0x243/0x630
[  170.495472][ T6529]  do_sendfile+0x564/0x8a0
[  170.495509][ T6529]  ? __pfx_do_sendfile+0x10/0x10
[  170.495532][ T6529]  ? __fget_files+0x2a/0x410
[  170.495645][ T6529]  __se_sys_sendfile64+0x17c/0x1e0
[  170.495698][ T6529]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  170.495736][ T6529]  ? do_syscall_64+0x100/0x230
[  170.495773][ T6529]  ? do_syscall_64+0xb6/0x230
[  170.495835][ T6529]  do_syscall_64+0xf3/0x230
[  170.495869][ T6529]  ? clear_bhb_loop+0x45/0xa0
[  170.495905][ T6529]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.495935][ T6529] RIP: 0033:0x7fac6a38cde9
[  170.495955][ T6529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.495971][ T6529] RSP: 002b:00007fac6b109038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  170.495993][ T6529] RAX: ffffffffffffffda RBX: 00007fac6a5a5fa0 RCX: 00007fac6a38cde9
[  170.496010][ T6529] RDX: 0000000000000000 RSI: 000000000000000a RDI: 000000000000000b
[  170.496021][ T6529] RBP: 00007fac6b109090 R08: 0000000000000000 R09: 0000000000000000
[  170.496034][ T6529] R10: 0000000100000002 R11: 0000000000000246 R12: 0000000000000001
[  170.496046][ T6529] R13: 0000000000000000 R14: 00007fac6a5a5fa0 R15: 00007fff64589e88
[  170.496085][ T6529]  </TASK>
[  170.893689][ T6521] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.100095][ T5847] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.307227][ T6543] loop2: detected capacity change from 0 to 512
[  171.460220][ T6543] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.490645][ T6543] ext4 filesystem being mounted at /38/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.615653][ T6547] netlink: 28 bytes leftover after parsing attributes in process `syz.1.159'.
[  171.637781][ T6547] netlink: 28 bytes leftover after parsing attributes in process `syz.1.159'.
[  171.760131][ T6547] batadv0: entered promiscuous mode
[  171.831991][ T6549] netlink: 'syz.0.161': attribute type 2 has an invalid length.
[  171.833641][ T6547] dummy0: entered promiscuous mode
[  171.935707][ T6547] debugfs: Directory 'hsr1' with parent 'hsr' already present!
[  171.941405][ T6549] netlink: 28 bytes leftover after parsing attributes in process `syz.0.161'.
[  172.002960][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.027929][ T6549] netlink: 28 bytes leftover after parsing attributes in process `syz.0.161'.
[  172.053630][ T6547] Cannot create hsr debugfs directory
[  172.100782][ T6539] loop4: detected capacity change from 0 to 32768
[  172.119067][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout
[  172.199490][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout
[  172.205610][ T5834] Bluetooth: hci0: command 0x0c1a tx timeout
[  172.285320][ T6532] loop3: detected capacity change from 0 to 32768
[  172.292059][ T5834] Bluetooth: hci4: command 0x0c1a tx timeout
[  172.292123][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout
[  172.592643][ T6560] loop2: detected capacity change from 0 to 256
[  172.624418][ T6560] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  172.824779][ T6563] overlay: Unknown parameter 'odir'
[  173.044828][ T6532] JBD2: Ignoring recovery information on journal
[  173.092379][   T29] audit: type=1804 audit(1740026398.830:25): pid=6566 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.162" name="/newroot/39/file0/file0" dev="loop2" ino=45 res=1 errno=0
[  173.462020][ T6532] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  174.096417][ T6539] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,str_hash=crc32c,fix_errors=no,norecovery,reconstruct_alloc,no_data_io
[  174.130399][ T6539] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[  174.182087][ T6539] bcachefs (loop4): Version upgrade required:
[  174.182087][ T6539] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  174.182087][ T6539] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.23: stripe_lru
[  174.182087][ T6539]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  174.338790][ T6539] bcachefs (loop4): dropping and reconstructing all alloc info
[  174.544481][ T6539] bcachefs (loop4): accounting_read... done
[  174.688301][ T6539] bcachefs (loop4): alloc_read... done
[  174.708585][ T6539] bcachefs (loop4): stripes_read... done
[  174.726700][ T6539] bcachefs (loop4): snapshots_read... done
[  174.753953][ T6539] bcachefs (loop4): done starting filesystem
[  175.429753][ T5839] bcachefs (loop4): shutting down
[  175.473364][ T5842] ocfs2: Unmounting device (7,3) on (node local)
[  175.598119][ T5839] bcachefs (loop4): shutdown complete
[  175.861375][ T6579] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  175.972897][ T6579] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  176.050143][ T6579] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  176.089165][ T6580] loop2: detected capacity change from 0 to 2048
[  176.109785][ T6579] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  176.138328][ T6579] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  176.261293][ T6580] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  176.371474][ T6585] loop3: detected capacity change from 0 to 64
[  176.463866][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.574352][ T6571] loop0: detected capacity change from 0 to 32768
[  176.585516][ T6571] XFS: ikeep mount option is deprecated.
[  176.602297][ T6571] xfs: Unknown parameter 'permit_directio'
[  177.248728][ T6590] loop3: detected capacity change from 0 to 4096
[  177.432818][ T6599] FAULT_INJECTION: forcing a failure.
[  177.432818][ T6599] name failslab, interval 1, probability 0, space 0, times 0
[  177.499235][ T6599] CPU: 1 UID: 0 PID: 6599 Comm: syz.0.174 Not tainted 6.14.0-rc3-next-20250218-syzkaller #0
[  177.499266][ T6599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  177.499278][ T6599] Call Trace:
[  177.499287][ T6599]  <TASK>
[  177.499296][ T6599]  dump_stack_lvl+0x241/0x360
[  177.499334][ T6599]  ? __pfx_dump_stack_lvl+0x10/0x10
[  177.499360][ T6599]  ? __pfx__printk+0x10/0x10
[  177.499387][ T6599]  ? kmem_cache_alloc_noprof+0x48/0x380
[  177.499421][ T6599]  ? __pfx___might_resched+0x10/0x10
[  177.499459][ T6599]  should_fail_ex+0x40a/0x550
[  177.499491][ T6599]  should_failslab+0xac/0x100
[  177.499527][ T6599]  ? vm_area_dup+0x27/0x290
[  177.499547][ T6599]  kmem_cache_alloc_noprof+0x70/0x380
[  177.499590][ T6599]  vm_area_dup+0x27/0x290
[  177.499619][ T6599]  __split_vma+0x1c0/0xb20
[  177.499657][ T6599]  ? __pfx_validate_chain+0x10/0x10
[  177.499690][ T6599]  ? __pfx___split_vma+0x10/0x10
[  177.499753][ T6599]  vms_gather_munmap_vmas+0x344/0x1360
[  177.499817][ T6599]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  177.499865][ T6599]  ? mas_find+0x8c0/0xbb0
[  177.499907][ T6599]  mmap_region+0xa69/0x2ea0
[  177.499950][ T6599]  ? validate_chain+0x11e/0x5920
[  177.500024][ T6599]  ? __pfx_mmap_region+0x10/0x10
[  177.500071][ T6599]  ? __lock_acquire+0x1397/0x2100
[  177.500179][ T6599]  ? arch_get_unmapped_area_topdown+0x28e/0xc50
[  177.500235][ T6599]  ? __pfx_arch_get_unmapped_area_topdown+0x10/0x10
[  177.500290][ T6599]  ? mm_get_unmapped_area+0xa8/0xd0
[  177.500309][ T6599]  ? cap_mmap_addr+0xaa/0xf0
[  177.500334][ T6599]  ? bpf_lsm_mmap_addr+0x9/0x10
[  177.500361][ T6599]  ? security_mmap_addr+0x6f/0x250
[  177.500389][ T6599]  ? shmem_mapping+0xd/0x50
[  177.500415][ T6599]  do_mmap+0xecc/0x13a0
[  177.500455][ T6599]  ? __pfx_do_mmap+0x10/0x10
[  177.500472][ T6599]  ? down_write_killable+0x19e/0x260
[  177.500503][ T6599]  ? vm_mmap_pgoff+0x182/0x430
[  177.500526][ T6599]  ? __pfx_down_write_killable+0x10/0x10
[  177.500557][ T6599]  ? common_file_perm+0x1a6/0x210
[  177.500602][ T6599]  vm_mmap_pgoff+0x214/0x430
[  177.500643][ T6599]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  177.500668][ T6599]  ? __fget_files+0x2a/0x410
[  177.500692][ T6599]  ? __fget_files+0x395/0x410
[  177.500711][ T6599]  ? __fget_files+0x2a/0x410
[  177.500741][ T6599]  ksys_mmap_pgoff+0x4eb/0x720
[  177.500764][ T6599]  ? __x64_sys_mmap+0x7f/0x140
[  177.500802][ T6599]  do_syscall_64+0xf3/0x230
[  177.500833][ T6599]  ? clear_bhb_loop+0x45/0xa0
[  177.500870][ T6599]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.500899][ T6599] RIP: 0033:0x7fac6a38cde9
[  177.500919][ T6599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.500936][ T6599] RSP: 002b:00007fac6b109038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  177.500959][ T6599] RAX: ffffffffffffffda RBX: 00007fac6a5a5fa0 RCX: 00007fac6a38cde9
[  177.500974][ T6599] RDX: 000000000000001f RSI: 0000000000001000 RDI: 0000400000ffc000
[  177.500987][ T6599] RBP: 00007fac6b109090 R08: 0000000000000003 R09: 0000000000000000
[  177.501000][ T6599] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000001
[  177.501012][ T6599] R13: 0000000000000000 R14: 00007fac6a5a5fa0 R15: 00007fff64589e88
[  177.501054][ T6599]  </TASK>
[  177.874547][ T6590] netlink: 4 bytes leftover after parsing attributes in process `syz.3.171'.
[  178.027852][   T54] Bluetooth: hci1: command 0x0c1a tx timeout
[  178.047116][   T54] Bluetooth: hci0: command 0x0c1a tx timeout
[  178.118435][   T54] Bluetooth: hci3: command 0x0c1a tx timeout
[  178.124731][   T54] Bluetooth: hci2: command 0x0c1a tx timeout
[  178.199295][   T54] Bluetooth: hci4: command 0x0c1a tx timeout
[  178.825547][ T6614] loop3: detected capacity change from 0 to 256
[  178.895422][ T6614] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  178.910004][ T6616] loop1: detected capacity change from 0 to 8
[  179.052195][ T6616] SQUASHFS error: Unable to read inode 0x11f
[  179.492109][ T6618] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  179.632422][ T6618] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  180.068017][ T6618] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  180.389529][ T6618] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  180.395770][ T6618] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  180.417290][ T6620] loop2: detected capacity change from 0 to 2048
[  181.145139][ T6620] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  181.177857][   T29] audit: type=1326 audit(1740026406.910:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6625 comm="syz.1.182" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f045ad8cde9 code=0x0
[  181.210304][ T6633] loop3: detected capacity change from 0 to 64
[  181.276660][ T6631] capability: warning: `syz.1.182' uses deprecated v2 capabilities in a way that may be insecure
[  181.381715][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.410433][ T6631] program syz.1.182 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  181.537930][ T6636] netlink: 36 bytes leftover after parsing attributes in process `syz.0.183'.
[  181.559911][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout
[  181.667572][ T6640] loop2: detected capacity change from 0 to 16
[  181.719379][ T5834] Bluetooth: hci0: command 0x0c1a tx timeout
[  181.747028][ T6640] erofs (device loop2): mounted with root inode @ nid 36.
[  181.947808][ T5873] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  182.289456][ T6651] erofs (device loop2): readahead error at folio 12 @ nid 36
[  182.290413][ T6651] erofs (device loop2): readahead error at folio 10 @ nid 36
[  182.292098][ T6651] erofs (device loop2): readahead error at folio 6 @ nid 36
[  182.293010][ T6651] erofs (device loop2): readahead error at folio 4 @ nid 36
[  182.294409][ T6651] erofs (device loop2): invalid logical cluster 0 at nid 36
[  182.294434][ T6651] erofs (device loop2): readahead error at folio 0 @ nid 36
[  182.294636][ T6651] syz.2.184: attempt to access beyond end of device
[  182.294636][ T6651] loop2: rw=524288, sector=296, nr_sectors = 16 limit=16
[  182.295471][ T6651] syz.2.184: attempt to access beyond end of device
[  182.295471][ T6651] loop2: rw=524288, sector=1049264, nr_sectors = 16 limit=16
[  182.296677][ T6651] syz.2.184: attempt to access beyond end of device
[  182.296677][ T6651] loop2: rw=524288, sector=6520, nr_sectors = 16 limit=16
[  182.300050][ T6651] syz.2.184: attempt to access beyond end of device
[  182.300050][ T6651] loop2: rw=524288, sector=34359736328, nr_sectors = 16 limit=16
[  182.301297][ T6651] syz.2.184: attempt to access beyond end of device
[  182.301297][ T6651] loop2: rw=524288, sector=8, nr_sectors = 16 limit=16
[  182.302458][ T6651] syz.2.184: attempt to access beyond end of device
[  182.302458][ T6651] loop2: rw=524288, sector=720, nr_sectors = 16 limit=16
[  182.303870][ T6651] syz.2.184: attempt to access beyond end of device
[  182.303870][ T6651] loop2: rw=524288, sector=536576856, nr_sectors = 16 limit=16
[  182.546192][ T5843] Bluetooth: hci3: command 0x0c1a tx timeout
[  182.552541][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout
[  182.598094][   T54] Bluetooth: hci4: command 0x0c1a tx timeout
[  182.788163][ T5873] usb 4-1: device descriptor read/64, error -71
[  182.837952][   T23] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  183.029055][ T5873] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  183.038183][   T23] usb 3-1: Using ep0 maxpacket: 32
[  183.062959][   T23] usb 3-1: unable to get BOS descriptor or descriptor too short
[  183.089161][   T23] usb 3-1: config 128 has an invalid interface number: 127 but max is 3
[  183.108785][   T23] usb 3-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config
[  183.134847][   T23] usb 3-1: config 128 has 1 interface, different from the descriptor's value: 4
[  183.155387][   T23] usb 3-1: config 128 has no interface number 0
[  183.166057][ T6658] loop4: detected capacity change from 0 to 256
[  183.172574][   T23] usb 3-1: config 128 interface 127 altsetting 14 endpoint 0x5 has an invalid bInterval 0, changing to 7
[  183.178602][ T5873] usb 4-1: device descriptor read/64, error -71
[  183.189488][   T23] usb 3-1: config 128 interface 127 altsetting 14 endpoint 0x5 has invalid wMaxPacketSize 0
[  183.210548][ T6658] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  183.233291][   T23] usb 3-1: config 128 interface 127 has no altsetting 0
[  183.254542][   T23] usb 3-1: New USB device found, idVendor=0582, idProduct=295c, bcdDevice=d4.55
[  183.265534][   T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  183.354850][ T5873] usb usb4-port1: attempt power cycle
[  183.355854][   T23] usb 3-1: Product: syz
[  183.373146][   T23] usb 3-1: Manufacturer: syz
[  183.381090][   T23] usb 3-1: SerialNumber: syz
[  183.957676][ T5873] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  184.149791][ T5873] usb 4-1: device descriptor read/8, error -71
[  184.297562][ T6662] FAULT_INJECTION: forcing a failure.
[  184.297562][ T6662] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  184.347796][ T6662] CPU: 1 UID: 0 PID: 6662 Comm: syz.1.192 Not tainted 6.14.0-rc3-next-20250218-syzkaller #0
[  184.347829][ T6662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  184.347855][ T6662] Call Trace:
[  184.347864][ T6662]  <TASK>
[  184.347874][ T6662]  dump_stack_lvl+0x241/0x360
[  184.347919][ T6662]  ? __pfx_dump_stack_lvl+0x10/0x10
[  184.347944][ T6662]  ? __pfx__printk+0x10/0x10
[  184.347971][ T6662]  ? __pfx_lock_release+0x10/0x10
[  184.348019][ T6662]  should_fail_ex+0x40a/0x550
[  184.348051][ T6662]  _copy_from_user+0x2d/0xb0
[  184.348086][ T6662]  copy_msghdr_from_user+0xae/0x680
[  184.348124][ T6662]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  184.348147][ T6662]  ? __fget_files+0x2a/0x410
[  184.348174][ T6662]  ? __fget_files+0x2a/0x410
[  184.348210][ T6662]  __sys_sendmmsg+0x32b/0x720
[  184.348251][ T6662]  ? __pfx___sys_sendmmsg+0x10/0x10
[  184.348294][ T6662]  ? __pfx_lock_release+0x10/0x10
[  184.348324][ T6662]  ? kstrtouint_from_user+0x11f/0x190
[  184.348392][ T6662]  ? ksys_write+0x22a/0x2b0
[  184.348419][ T6662]  ? __pfx_lock_release+0x10/0x10
[  184.348464][ T6662]  ? sb_end_write+0xe9/0x1c0
[  184.348487][ T6662]  ? vfs_write+0x7fa/0xd10
[  184.348518][ T6662]  ? __mutex_unlock_slowpath+0x227/0x800
[  184.348597][ T6662]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  184.348635][ T6662]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  184.348671][ T6662]  ? do_syscall_64+0x100/0x230
[  184.348708][ T6662]  __x64_sys_sendmmsg+0xa0/0xb0
[  184.348733][ T6662]  do_syscall_64+0xf3/0x230
[  184.348765][ T6662]  ? clear_bhb_loop+0x45/0xa0
[  184.348801][ T6662]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.348829][ T6662] RIP: 0033:0x7f045ad8cde9
[  184.348860][ T6662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.348877][ T6662] RSP: 002b:00007f045bb14038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  184.348904][ T6662] RAX: ffffffffffffffda RBX: 00007f045afa5fa0 RCX: 00007f045ad8cde9
[  184.348919][ T6662] RDX: 00000000000003ef RSI: 0000400000000180 RDI: 0000000000000003
[  184.348932][ T6662] RBP: 00007f045bb14090 R08: 0000000000000000 R09: 0000000000000000
[  184.348944][ T6662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  184.348956][ T6662] R13: 0000000000000000 R14: 00007f045afa5fa0 R15: 00007ffe1f980ec8
[  184.348995][ T6662]  </TASK>
[  184.658156][ T5873] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  184.937784][ T5873] usb 4-1: device descriptor read/8, error -71
[  185.053184][ T5873] usb usb4-port1: unable to enumerate USB device
[  185.123331][ T6667] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  185.134034][   T23] usb 3-1: USB disconnect, device number 4
[  185.161307][ T6667] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  185.184479][ T6670] loop2: detected capacity change from 0 to 512
[  185.187104][ T6672] loop3: detected capacity change from 0 to 64
[  185.208059][ T6667] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  185.216993][ T6667] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  185.225060][ T6667] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  185.488382][ T6668] loop1: detected capacity change from 0 to 2048
[  185.509201][ T6670] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  185.604616][ T6679] capability: warning: `syz.4.197' uses 32-bit capabilities (legacy support in use)
[  185.677501][ T6670] ext4 filesystem being mounted at /47/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  186.140322][ T6668] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  186.318764][ T6683] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  186.436144][ T5838] udevd[5838]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:128.127/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  186.526784][ T6682] loop0: detected capacity change from 0 to 4096
[  186.610571][ T5897] usb 4-1: new full-speed USB device number 11 using dummy_hcd
[  186.746914][ T5847] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.864625][ T5897] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  186.881806][ T5897] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 64
[  186.926411][ T5897] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  186.966895][ T5897] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  187.008641][ T5897] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[  187.035409][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.066483][ T5897] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  187.137977][ T5897] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 64
[  187.165857][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout
[  187.187959][ T5897] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  187.202035][ T5897] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  187.227767][ T5897] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[  187.240835][ T5897] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  187.248887][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout
[  187.255104][ T5834] Bluetooth: hci0: command 0x0c1a tx timeout
[  187.264743][ T5897] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 64
[  187.276126][ T5897] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  187.288278][ T5897] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  187.317762][   T54] Bluetooth: hci4: command 0x0c1a tx timeout
[  187.317821][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout
[  187.339163][ T5897] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[  187.387742][ T5897] usb 4-1: string descriptor 0 read error: -22
[  187.394465][ T5897] usb 4-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  187.416688][ T5897] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  187.427065][ T6701] FAULT_INJECTION: forcing a failure.
[  187.427065][ T6701] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  187.460318][ T6701] CPU: 0 UID: 0 PID: 6701 Comm: syz.4.204 Not tainted 6.14.0-rc3-next-20250218-syzkaller #0
[  187.460347][ T6701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  187.460360][ T6701] Call Trace:
[  187.460369][ T6701]  <TASK>
[  187.460379][ T6701]  dump_stack_lvl+0x241/0x360
[  187.460426][ T6701]  ? __pfx_dump_stack_lvl+0x10/0x10
[  187.460452][ T6701]  ? __pfx__printk+0x10/0x10
[  187.460476][ T6701]  ? vfs_write+0x7fa/0xd10
[  187.460502][ T6701]  ? __pfx_lock_release+0x10/0x10
[  187.460539][ T6701]  ? __mutex_unlock_slowpath+0x227/0x800
[  187.460581][ T6701]  should_fail_ex+0x40a/0x550
[  187.460613][ T6701]  _copy_from_user+0x2d/0xb0
[  187.460648][ T6701]  do_seccomp+0x20b/0xf90
[  187.460684][ T6701]  ? __pfx_do_seccomp+0x10/0x10
[  187.460712][ T6701]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  187.460751][ T6701]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  187.460787][ T6701]  ? do_syscall_64+0x100/0x230
[  187.460824][ T6701]  ? do_syscall_64+0xb6/0x230
[  187.460860][ T6701]  do_syscall_64+0xf3/0x230
[  187.460891][ T6701]  ? clear_bhb_loop+0x45/0xa0
[  187.460928][ T6701]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.460957][ T6701] RIP: 0033:0x7f0e0378cde9
[  187.460978][ T6701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  187.460996][ T6701] RSP: 002b:00007f0e0461f038 EFLAGS: 00000246 ORIG_RAX: 000000000000013d
[  187.461019][ T6701] RAX: ffffffffffffffda RBX: 00007f0e039a5fa0 RCX: 00007f0e0378cde9
[  187.461035][ T6701] RDX: 0000400000000780 RSI: 0000000000000000 RDI: 0000000000000001
[  187.461048][ T6701] RBP: 00007f0e0461f090 R08: 0000000000000000 R09: 0000000000000000
[  187.461061][ T6701] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  187.461073][ T6701] R13: 0000000000000001 R14: 00007f0e039a5fa0 R15: 00007ffe2e207db8
[  187.461114][ T6701]  </TASK>
[  187.900313][ T5897] adutux 4-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  187.952755][ T5897] usb 4-1: USB disconnect, device number 11
[  187.965410][ T6703] loop2: detected capacity change from 0 to 256
[  188.039464][ T6703] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  188.172840][ T6697] loop1: detected capacity change from 0 to 32768
[  188.183946][ T6697] XFS (loop1): sunit and swidth must be specified together
[  189.198578][ T6716] loop4: detected capacity change from 0 to 16
[  189.241784][ T6716] erofs (device loop4): mounted with root inode @ nid 36.
[  189.413045][ T6719] netlink: 20 bytes leftover after parsing attributes in process `syz.3.207'.
[  189.455936][ T6722] loop0: detected capacity change from 0 to 1024
[  189.488875][ T6722] hfsplus: Unknown parameter 'creatoz'
[  189.527338][ T6722] FAULT_INJECTION: forcing a failure.
[  189.527338][ T6722] name failslab, interval 1, probability 0, space 0, times 0
[  189.569618][ T6722] CPU: 0 UID: 0 PID: 6722 Comm: syz.0.208 Not tainted 6.14.0-rc3-next-20250218-syzkaller #0
[  189.569652][ T6722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  189.569665][ T6722] Call Trace:
[  189.569674][ T6722]  <TASK>
[  189.569683][ T6722]  dump_stack_lvl+0x241/0x360
[  189.569718][ T6722]  ? __pfx_dump_stack_lvl+0x10/0x10
[  189.569741][ T6722]  ? __pfx__printk+0x10/0x10
[  189.569765][ T6722]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  189.569799][ T6722]  ? __pfx___might_resched+0x10/0x10
[  189.569837][ T6722]  should_fail_ex+0x40a/0x550
[  189.569868][ T6722]  should_failslab+0xac/0x100
[  189.569904][ T6722]  kmem_cache_alloc_node_noprof+0x77/0x380
[  189.569938][ T6722]  ? __alloc_skb+0x1c3/0x440
[  189.569983][ T6722]  __alloc_skb+0x1c3/0x440
[  189.570026][ T6722]  ? __pfx___alloc_skb+0x10/0x10
[  189.570061][ T6722]  ? __lock_acquire+0x1397/0x2100
[  189.570106][ T6722]  alloc_skb_with_frags+0xc3/0x820
[  189.570139][ T6722]  ? aa_label_sk_perm+0x5d9/0x820
[  189.570166][ T6722]  ? mark_lock+0x9a/0x360
[  189.570207][ T6722]  sock_alloc_send_pskb+0x91a/0xa60
[  189.570267][ T6722]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  189.570318][ T6722]  hci_sock_sendmsg+0x22b/0x11e0
[  189.570359][ T6722]  ? __pfx_aa_sk_perm+0x10/0x10
[  189.570388][ T6722]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  189.570419][ T6722]  ? aa_sock_msg_perm+0xf3/0x1d0
[  189.570458][ T6722]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  189.570483][ T6722]  __sock_sendmsg+0x221/0x270
[  189.570518][ T6722]  sock_write_iter+0x2d7/0x3f0
[  189.570548][ T6722]  ? __pfx_sock_write_iter+0x10/0x10
[  189.570590][ T6722]  ? bpf_lsm_file_permission+0x9/0x10
[  189.570634][ T6722]  vfs_write+0xacf/0xd10
[  189.570670][ T6722]  ? __pfx_sock_write_iter+0x10/0x10
[  189.570696][ T6722]  ? __pfx_vfs_write+0x10/0x10
[  189.570719][ T6722]  ? do_sys_openat2+0x179/0x1c0
[  189.570747][ T6722]  ? __fget_files+0x2a/0x410
[  189.570775][ T6722]  ? __fget_files+0x2a/0x410
[  189.570813][ T6722]  ksys_write+0x18f/0x2b0
[  189.570844][ T6722]  ? __pfx_ksys_write+0x10/0x10
[  189.570873][ T6722]  ? do_syscall_64+0x100/0x230
[  189.570910][ T6722]  ? do_syscall_64+0xb6/0x230
[  189.570945][ T6722]  do_syscall_64+0xf3/0x230
[  189.570974][ T6722]  ? clear_bhb_loop+0x45/0xa0
[  189.571009][ T6722]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.571036][ T6722] RIP: 0033:0x7fac6a38cde9
[  189.571057][ T6722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  189.571074][ T6722] RSP: 002b:00007fac6b109038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  189.571096][ T6722] RAX: ffffffffffffffda RBX: 00007fac6a5a5fa0 RCX: 00007fac6a38cde9
[  189.571111][ T6722] RDX: 000000000000000d RSI: 0000400000000000 RDI: 0000000000000005
[  189.571124][ T6722] RBP: 00007fac6b109090 R08: 0000000000000000 R09: 0000000000000000
[  189.571137][ T6722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  189.571150][ T6722] R13: 0000000000000000 R14: 00007fac6a5a5fa0 R15: 00007fff64589e88
[  189.571190][ T6722]  </TASK>
[  189.877034][ T6725] loop2: detected capacity change from 0 to 64
[  189.905133][ T6696] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  190.283489][ T6731] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  190.329219][ T6731] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  190.335496][ T6731] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  190.431831][ T6733] loop4: detected capacity change from 0 to 2048
[  190.438091][ T6731] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  190.461537][ T6740] fuse: Bad value for 'fd'
[  190.467045][ T6739] loop2: detected capacity change from 0 to 512
[  190.533863][ T6733] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.534336][ T6731] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  190.631575][ T5839] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.640707][ T6739] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.640916][ T6739] ext4 filesystem being mounted at /50/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  190.942729][ T6752] loop4: detected capacity change from 0 to 512
[  191.035511][ T6752] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  191.055186][ T6752] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  191.107881][ T5873] usb 4-1: new full-speed USB device number 12 using dummy_hcd
[  191.274629][ T5873] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  191.292463][ T5873] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 64
[  191.326511][ T5839] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  191.366717][ T5873] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  191.392969][ T5873] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  191.408226][ T5873] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[  191.422842][ T5873] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  191.431845][ T5873] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 64
[  191.438564][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.461566][ T5873] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  191.488754][ T5873] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  191.520156][ T5873] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[  191.564931][ T5873] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  191.588365][ T5873] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 64
[  191.622319][ T6758] loop4: detected capacity change from 0 to 2048
[  191.637924][ T5873] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  191.683310][ T5873] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  191.729456][ T5873] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[  191.750022][ T6760] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  191.795283][ T5873] usb 4-1: string descriptor 0 read error: -22
[  191.826454][ T5873] usb 4-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  191.847778][ T5873] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  191.958752][ T5873] adutux 4-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  192.358740][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout
[  192.358762][   T54] Bluetooth: hci0: command 0x0c1a tx timeout
[  192.358815][   T54] Bluetooth: hci1: command 0x0c1a tx timeout
[  192.517743][   T54] Bluetooth: hci3: command 0x0c1a tx timeout
[  192.597794][   T54] Bluetooth: hci4: command 0x0c1a tx timeout
[  192.685663][ T6772] loop2: detected capacity change from 0 to 764
[  192.892459][ T6773] Symlink component flag not implemented
[  193.038177][ T6773] Symlink component flag not implemented (101)
[  193.877819][ T5873] usb 3-1: new low-speed USB device number 5 using dummy_hcd
[  194.012078][ T6781] loop1: detected capacity change from 0 to 64
[  194.050706][ T5873] usb 3-1: Invalid ep0 maxpacket: 64
[  194.198307][ T5873] usb 3-1: new low-speed USB device number 6 using dummy_hcd
[  194.357771][ T5873] usb 3-1: Invalid ep0 maxpacket: 64
[  194.368256][ T5873] usb usb3-port1: attempt power cycle
[  194.908280][ T5873] usb 3-1: new low-speed USB device number 7 using dummy_hcd
[  195.051121][ T5873] usb 3-1: Invalid ep0 maxpacket: 64
[  195.132839][ T6788] FAULT_INJECTION: forcing a failure.
[  195.132839][ T6788] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  195.221946][ T6788] CPU: 1 UID: 0 PID: 6788 Comm: syz.1.225 Not tainted 6.14.0-rc3-next-20250218-syzkaller #0
[  195.221978][ T6788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  195.221991][ T6788] Call Trace:
[  195.222000][ T6788]  <TASK>
[  195.222009][ T6788]  dump_stack_lvl+0x241/0x360
[  195.222044][ T6788]  ? __pfx_dump_stack_lvl+0x10/0x10
[  195.222173][ T6788]  ? __pfx__printk+0x10/0x10
[  195.222208][ T6788]  ? vfs_write+0x7fa/0xd10
[  195.222236][ T6788]  ? __pfx_lock_release+0x10/0x10
[  195.222272][ T6788]  ? __mutex_unlock_slowpath+0x227/0x800
[  195.222314][ T6788]  should_fail_ex+0x40a/0x550
[  195.222347][ T6788]  _copy_from_user+0x2d/0xb0
[  195.222383][ T6788]  do_seccomp+0x20b/0xf90
[  195.222410][ T6788]  ? native_tss_update_io_bitmap+0x42d/0x640
[  195.222448][ T6788]  ? __pfx_do_seccomp+0x10/0x10
[  195.222475][ T6788]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  195.222513][ T6788]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  195.222549][ T6788]  ? do_syscall_64+0x100/0x230
[  195.222586][ T6788]  ? do_syscall_64+0xb6/0x230
[  195.222624][ T6788]  do_syscall_64+0xf3/0x230
[  195.222656][ T6788]  ? clear_bhb_loop+0x45/0xa0
[  195.222692][ T6788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.222721][ T6788] RIP: 0033:0x7f045ad8cde9
[  195.222742][ T6788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  195.222760][ T6788] RSP: 002b:00007f045bb14038 EFLAGS: 00000246 ORIG_RAX: 000000000000013d
[  195.222783][ T6788] RAX: ffffffffffffffda RBX: 00007f045afa5fa0 RCX: 00007f045ad8cde9
[  195.222799][ T6788] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  195.222811][ T6788] RBP: 00007f045bb14090 R08: 0000000000000000 R09: 0000000000000000
[  195.222839][ T6788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  195.222851][ T6788] R13: 0000000000000000 R14: 00007f045afa5fa0 R15: 00007ffe1f980ec8
[  195.222891][ T6788]  </TASK>
[  195.421973][ T5873] usb 3-1: new low-speed USB device number 8 using dummy_hcd
[  195.458513][ T5873] usb 3-1: Invalid ep0 maxpacket: 64
[  195.464750][ T5873] usb usb3-port1: unable to enumerate USB device
[  195.567349][ T6790] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  195.574471][ T6790] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  195.581309][ T6790] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  195.589100][ T6790] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  195.595741][ T6790] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  195.642250][ T6793] loop4: detected capacity change from 0 to 2048
[  195.696582][ T6793] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  195.783287][ T5839] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.859746][ T6803] FAULT_INJECTION: forcing a failure.
[  195.859746][ T6803] name failslab, interval 1, probability 0, space 0, times 0
[  195.877333][ T6803] CPU: 1 UID: 0 PID: 6803 Comm: syz.1.229 Not tainted 6.14.0-rc3-next-20250218-syzkaller #0
[  195.877366][ T6803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  195.877378][ T6803] Call Trace:
[  195.877387][ T6803]  <TASK>
[  195.877396][ T6803]  dump_stack_lvl+0x241/0x360
[  195.877434][ T6803]  ? __pfx_dump_stack_lvl+0x10/0x10
[  195.877459][ T6803]  ? __pfx__printk+0x10/0x10
[  195.877485][ T6803]  ? fs_reclaim_acquire+0x93/0x130
[  195.877513][ T6803]  ? __pfx___might_resched+0x10/0x10
[  195.877550][ T6803]  should_fail_ex+0x40a/0x550
[  195.877589][ T6803]  should_failslab+0xac/0x100
[  195.877623][ T6803]  ? p9_client_prepare_req+0x173/0xf30
[  195.877646][ T6803]  kmem_cache_alloc_noprof+0x70/0x380
[  195.877687][ T6803]  p9_client_prepare_req+0x173/0xf30
[  195.877714][ T6803]  ? __pfx_validate_chain+0x10/0x10
[  195.877748][ T6803]  ? mark_lock+0x9a/0x360
[  195.877779][ T6803]  ? __pfx_p9_client_prepare_req+0x10/0x10
[  195.877841][ T6803]  p9_client_rpc+0x19d/0xac0
[  195.877882][ T6803]  ? __pfx_lock_acquire+0x10/0x10
[  195.877928][ T6803]  ? __pfx_p9_client_rpc+0x10/0x10
[  195.877973][ T6803]  ? down_write+0x18c/0x220
[  195.878007][ T6803]  ? __pfx_down_write+0x10/0x10
[  195.878045][ T6803]  p9_client_wstat+0x202/0x290
[  195.878074][ T6803]  v9fs_file_fsync+0x16a/0x1d0
[  195.878105][ T6803]  ? __pfx_v9fs_file_fsync+0x10/0x10
[  195.878129][ T6803]  ? __fget_files+0x2a/0x410
[  195.878167][ T6803]  ? __fget_files+0x395/0x410
[  195.878187][ T6803]  ? __fget_files+0x2a/0x410
[  195.878223][ T6803]  __x64_sys_fsync+0x18e/0x1f0
[  195.878252][ T6803]  do_syscall_64+0xf3/0x230
[  195.878283][ T6803]  ? clear_bhb_loop+0x45/0xa0
[  195.878318][ T6803]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.878347][ T6803] RIP: 0033:0x7f045ad8cde9
[  195.878367][ T6803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  195.878385][ T6803] RSP: 002b:00007f045bb14038 EFLAGS: 00000246 ORIG_RAX: 000000000000004a
[  195.878407][ T6803] RAX: ffffffffffffffda RBX: 00007f045afa5fa0 RCX: 00007f045ad8cde9
[  195.878423][ T6803] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[  195.878435][ T6803] RBP: 00007f045bb14090 R08: 0000000000000000 R09: 0000000000000000
[  195.878448][ T6803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  195.878460][ T6803] R13: 0000000000000000 R14: 00007f045afa5fa0 R15: 00007ffe1f980ec8
[  195.878502][ T6803]  </TASK>
[  196.166548][ T5873] usb 4-1: USB disconnect, device number 12
[  197.092323][ T6812] loop1: detected capacity change from 0 to 256
[  197.144724][ T6808] netlink: 28 bytes leftover after parsing attributes in process `syz.3.231'.
[  197.314901][ T6813] netlink: 72 bytes leftover after parsing attributes in process `syz.0.233'.
[  197.643693][ T6814] netlink: 12 bytes leftover after parsing attributes in process `syz.3.231'.
[  197.668038][ T5843] Bluetooth: hci3: command 0x0c1a tx timeout
[  197.688535][ T5843] Bluetooth: hci2: command 0x0c1a tx timeout
[  197.726702][ T5843] Bluetooth: hci0: command 0x0c1a tx timeout
[  197.732977][   T54] Bluetooth: hci4: command 0x0c1a tx timeout
[  197.732976][ T5843] Bluetooth: hci1: command 0x0c1a tx timeout
[  197.769535][ T6812] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  197.893144][ T6819] overlay: Unknown parameter 'odir'
[  197.978330][   T29] audit: type=1804 audit(1740026423.720:27): pid=6819 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.232" name="/newroot/43/file0/file0" dev="loop1" ino=54 res=1 errno=0
[  198.001558][ T6820] loop2: detected capacity change from 0 to 64
[  198.640304][ T6818] Zero length message leads to an empty skb
[  198.936996][ T6834] loop3: detected capacity change from 0 to 512
[  199.035483][ T6834] EXT4-fs: Ignoring removed orlov option
[  199.105412][ T6834] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  199.230923][ T6834] EXT4-fs (loop3): orphan cleanup on readonly fs
[  199.498005][   T23] usb 1-1: new full-speed USB device number 2 using dummy_hcd
[  199.745933][ T6834] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.239: bg 0: block 248: padding at end of block bitmap is not set
[  199.829299][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  199.840738][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  199.895545][ T6844] loop1: detected capacity change from 0 to 512
[  199.933955][ T6840] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  199.950008][ T6834] Quota error (device loop3): write_blk: dquota write failed
[  199.959771][   T23] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[  199.967291][   T23] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 64
[  199.979987][ T6840] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  200.000635][ T6845] loop4: detected capacity change from 0 to 2048
[  200.010212][ T6834] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  200.037083][   T23] usb 1-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  200.051638][ T6840] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  200.051821][   T23] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  200.080100][   T23] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[  200.081128][ T6834] EXT4-fs error (device loop3): ext4_acquire_dquot:6912: comm syz.3.239: Failed to acquire dquot type 1
[  200.124800][   T23] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[  200.128889][ T6840] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  200.142119][   T23] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 64
[  200.157198][   T23] usb 1-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  200.159055][ T6840] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  200.176676][   T23] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  200.189411][   T23] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[  200.233220][ T6844] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  200.247332][   T23] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[  200.248581][ T6834] EXT4-fs (loop3): 1 truncate cleaned up
[  200.261061][   T23] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 64
[  200.261102][   T23] usb 1-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  200.261131][   T23] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  200.261161][   T23] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[  200.300289][ T6845] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  200.324703][ T6844] ext4 filesystem being mounted at /45/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  200.369254][ T6834] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  200.382848][   T29] audit: type=1800 audit(1740026426.110:28): pid=6844 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.242" name="file1" dev="loop1" ino=15 res=0 errno=0
[  200.407169][   T23] usb 1-1: string descriptor 0 read error: -22
[  200.416730][   T23] usb 1-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  200.430300][   T23] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  200.491414][ T6834] EXT4-fs: Ignoring removed orlov option
[  200.511579][ T6834] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  200.528706][ T5839] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.540311][   T23] adutux 1-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  200.593700][ T6834] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  200.716856][ T6834] EXT4-fs error (device loop3): __ext4_remount:6723: comm syz.3.239: Abort forced by user
[  200.759647][ T6834] EXT4-fs (loop3): Remounting filesystem read-only
[  200.767783][ T6834] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  200.813721][ T6834] ext4 filesystem being remounted at /40/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  201.126610][ T5842] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.287307][ T6865] warning: `syz.4.244' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  201.328629][   T29] audit: type=1800 audit(1740026426.990:29): pid=6865 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.244" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  201.984213][ T5843] Bluetooth: hci1: command 0x0c1a tx timeout
[  202.043355][ T5843] Bluetooth: hci0: command 0x0c1a tx timeout
[  202.160671][ T5843] Bluetooth: hci2: command 0x0c1a tx timeout
[  202.198010][ T5843] Bluetooth: hci4: command 0x0c1a tx timeout
[  202.204774][ T5843] Bluetooth: hci3: command 0x0c1a tx timeout
[  202.538891][ T3075] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  202.919306][ T5847] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.931530][ T6871] loop4: detected capacity change from 0 to 64
[  203.061270][ T3075] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  203.113392][ T3075] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  203.132775][ T3075] usb 3-1: New USB device found, idVendor=054c, idProduct=024b, bcdDevice= 0.00
[  203.143616][ T3075] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  203.147936][ T5897] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  203.198338][ T3075] usb 3-1: config 0 descriptor??
[  203.324006][ T6877] loop4: detected capacity change from 0 to 2048
[  203.340883][ T6877] EXT4-fs (loop4): stripe (8) is not aligned with cluster size (16), stripe is disabled
[  203.340933][ T5897] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  203.446945][ T6877] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.457799][ T5897] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  203.463660][ T6877] EXT4-fs (loop4): shut down requested (1)
[  203.501265][ T5897] usb 4-1: New USB device found, idVendor=045e, idProduct=009d, bcdDevice= 0.00
[  203.520229][ T5897] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  203.549093][ T5897] usb 4-1: config 0 descriptor??
[  203.729020][ T6881] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  203.729020][ T6881] The task syz.2.245 (6881) triggered the difference, watch for misbehavior.
[  203.781019][ T3075] sony 0003:054C:024B.0001: unexpected long global item
[  203.800612][ T3075] sony 0003:054C:024B.0001: parse failed
[  203.806519][ T3075] sony 0003:054C:024B.0001: probe with driver sony failed with error -22
[  203.939484][ T5897] usbhid 4-1:0.0: can't add hid device: -71
[  203.946821][ T5897] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  204.032016][ T5897] usb 4-1: USB disconnect, device number 13
[  204.054003][   T29] audit: type=1326 audit(1740026429.790:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6875 comm="syz.4.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e0378cde9 code=0x7fc00000
[  204.232903][ T5839] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.379647][ T6874] loop1: detected capacity change from 0 to 65536
[  204.456873][ T6891] FAULT_INJECTION: forcing a failure.
[  204.456873][ T6891] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  204.470740][ T6891] CPU: 1 UID: 0 PID: 6891 Comm: syz.3.250 Not tainted 6.14.0-rc3-next-20250218-syzkaller #0
[  204.470768][ T6891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  204.470781][ T6891] Call Trace:
[  204.470789][ T6891]  <TASK>
[  204.470798][ T6891]  dump_stack_lvl+0x241/0x360
[  204.470833][ T6891]  ? __pfx_dump_stack_lvl+0x10/0x10
[  204.470858][ T6891]  ? __pfx__printk+0x10/0x10
[  204.470900][ T6891]  should_fail_ex+0x40a/0x550
[  204.470932][ T6891]  strncpy_from_user+0x36/0x280
[  204.470974][ T6891]  __se_sys_memfd_create+0x25f/0x7d0
[  204.471004][ T6891]  do_syscall_64+0xf3/0x230
[  204.471036][ T6891]  ? clear_bhb_loop+0x45/0xa0
[  204.471073][ T6891]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.471102][ T6891] RIP: 0033:0x7f95dbb8cde9
[  204.471122][ T6891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.471140][ T6891] RSP: 002b:00007f95dc9ade18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  204.471163][ T6891] RAX: ffffffffffffffda RBX: 0000000000000500 RCX: 00007f95dbb8cde9
[  204.471178][ T6891] RDX: 00007f95dc9adef0 RSI: 0000000000000000 RDI: 00007f95dbc0ec51
[  204.471193][ T6891] RBP: 0000400000000500 R08: 00007f95dc9adbb7 R09: 00007f95dc9ade40
[  204.471208][ T6891] R10: 000000000000000a R11: 0000000000000202 R12: 00004000000000c0
[  204.471221][ T6891] R13: 00007f95dc9adef0 R14: 00007f95dc9adeb0 R15: 0000400000000100
[  204.471271][ T6891]  </TASK>
[  204.705958][ T6893] loop4: detected capacity change from 0 to 1764
[  204.780449][ T6893] iso9660: Corrupted directory entry in block 2 of inode 1920
[  204.920309][    T9] usb 1-1: USB disconnect, device number 2
[  205.179371][ T5897] usb 3-1: USB disconnect, device number 9
[  205.338256][ T6898] loop0: detected capacity change from 0 to 764
[  205.358669][ T6900] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  205.375062][ T6900] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  205.384485][ T6903] fuse: Bad value for 'fd'
[  205.390238][ T6900] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  205.404669][ T6900] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  205.429274][ T6900] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  205.676423][ T6904] Symlink component flag not implemented
[  205.684949][ T6904] Symlink component flag not implemented (101)
[  206.222342][ T6902] loop3: detected capacity change from 0 to 2048
[  206.375291][ T6902] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  206.508992][ T6913] loop0: detected capacity change from 0 to 512
[  206.609832][ T6913] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  206.609997][ T6913] ext4 filesystem being mounted at /55/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  206.612209][ T5842] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.832380][ T6913] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  206.857288][ T6918] loop4: detected capacity change from 0 to 512
[  206.876115][ T6913] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  206.918406][ T6913] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  206.924717][ T6913] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  206.953395][ T6920] loop3: detected capacity change from 0 to 256
[  207.000423][ T6918] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  207.038001][ T6913] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  207.066193][ T6920] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  207.085705][ T6906] loop1: detected capacity change from 0 to 32768
[  207.095645][ T6924] netlink: 8 bytes leftover after parsing attributes in process `syz.2.260'.
[  207.099804][ T6906] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.252 (6906)
[  207.116941][ T6918] ext4 filesystem being mounted at /49/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  207.307402][ T6906] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  207.343566][   T29] audit: type=1800 audit(1740026433.080:31): pid=6925 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.258" name="file1" dev="loop4" ino=15 res=0 errno=0
[  207.362459][ T6906] BTRFS info (device loop1): using crc32c (crc32c-x86_64) checksum algorithm
[  207.475349][ T5830] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.310963][ T6906] BTRFS info (device loop1): rebuilding free space tree
[  208.419905][ T6906] BTRFS info (device loop1): disabling free space tree
[  208.427709][ T6906] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  208.439163][ T6906] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  208.731935][ T2909] list_add double add: new=ffff88802ce50870, prev=ffff88802ce50870, next=ffff88802542d960.
[  208.743217][ T2909] ------------[ cut here ]------------
[  208.749047][ T2909] kernel BUG at lib/list_debug.c:37!
[  208.755618][ T2909] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI
[  208.762995][ T2909] CPU: 1 UID: 0 PID: 2909 Comm: kworker/u8:7 Not tainted 6.14.0-rc3-next-20250218-syzkaller #0
[  208.773994][ T2909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  208.784730][ T2909] Workqueue: loop4 loop_workfn
[  208.789834][ T2909] RIP: 0010:__list_add_valid_or_report+0xa4/0x130
[  208.796540][ T2909] Code: f7 74 11 b0 01 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 48 c7 c7 a0 59 81 8c 4c 89 fe 4c 89 e2 4c 89 f1 e8 0d e8 27 fc 90 <0f> 0b 48 c7 c7 a0 57 81 8c e8 fe e7 27 fc 90 0f 0b 48 c7 c7 40 58
[  208.816547][ T2909] RSP: 0000:ffffc9000b9e7628 EFLAGS: 00010046
[  208.822658][ T2909] RAX: 0000000000000058 RBX: 1ffff110059ca10e RCX: 6482acf05737f400
[  208.830844][ T2909] RDX: 0000000000000000 RSI: 0000000080000001 RDI: 0000000000000000
[  208.838843][ T2909] RBP: 1ffff11004a85b2d R08: ffffffff81a170dc R09: 1ffff9200173ce60
[  208.846839][ T2909] R10: dffffc0000000000 R11: fffff5200173ce61 R12: ffff88802ce50870
[  208.854850][ T2909] R13: dffffc0000000000 R14: ffff88802542d960 R15: ffff88802ce50870
[  208.862846][ T2909] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  208.871905][ T2909] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  208.878515][ T2909] CR2: 0000000000000000 CR3: 000000004fe20000 CR4: 00000000003526f0
[  208.886539][ T2909] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  208.894548][ T2909] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  208.902561][ T2909] Call Trace:
[  208.905877][ T2909]  <TASK>
[  208.908840][ T2909]  ? __die_body+0x5f/0xb0
[  208.913316][ T2909]  ? die+0x9e/0xc0
[  208.917088][ T2909]  ? do_trap+0x15a/0x3a0
[  208.921384][ T2909]  ? __list_add_valid_or_report+0xa4/0x130
[  208.927262][ T2909]  ? do_error_trap+0x1dc/0x2c0
[  208.932176][ T2909]  ? __list_add_valid_or_report+0xa4/0x130
[  208.938072][ T2909]  ? __pfx_do_error_trap+0x10/0x10
[  208.943232][ T2909]  ? report_bug+0x3cd/0x500
[  208.947789][ T2909]  ? __list_add_valid_or_report+0xa4/0x130
[  208.953656][ T2909]  ? handle_invalid_op+0x34/0x40
[  208.958641][ T2909]  ? __list_add_valid_or_report+0xa4/0x130
[  208.964508][ T2909]  ? exc_invalid_op+0x38/0x50
[  208.969237][ T2909]  ? asm_exc_invalid_op+0x1a/0x20
[  208.974326][ T2909]  ? __wake_up_klogd+0xcc/0x110
[  208.979359][ T2909]  ? __list_add_valid_or_report+0xa4/0x130
[  208.985247][ T2909]  ? __list_add_valid_or_report+0xa3/0x130
[  208.991113][ T2909]  loop_process_work+0x1f96/0x21c0
[  208.996298][ T2909]  ? __pfx_validate_chain+0x10/0x10
[  209.001778][ T2909]  ? mark_lock+0x9a/0x360
[  209.006152][ T2909]  ? __pfx___schedule+0x10/0x10
[  209.011134][ T2909]  ? __pfx_loop_process_work+0x10/0x10
[  209.016631][ T2909]  ? register_lock_class+0x102/0x980
[  209.022170][ T2909]  ? mark_lock+0x9a/0x360
[  209.026528][ T2909]  ? __pfx_register_lock_class+0x10/0x10
[  209.032304][ T2909]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  209.038316][ T2909]  ? mark_lock+0x9a/0x360
[  209.042675][ T2909]  ? __lock_acquire+0x1397/0x2100
[  209.047751][ T2909]  ? __pfx_lock_acquire+0x10/0x10
[  209.052800][ T2909]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  209.059034][ T2909]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  209.065385][ T2909]  ? process_scheduled_works+0x9c6/0x18e0
[  209.071150][ T2909]  process_scheduled_works+0xabe/0x18e0
[  209.076741][ T2909]  ? __pfx_process_scheduled_works+0x10/0x10
[  209.082761][ T2909]  ? assign_work+0x364/0x3d0
[  209.087372][ T2909]  worker_thread+0x870/0xd30
[  209.092010][ T2909]  ? __kthread_parkme+0x169/0x1d0
[  209.097050][ T2909]  ? __pfx_worker_thread+0x10/0x10
[  209.102182][ T2909]  kthread+0x7a9/0x920
[  209.106260][ T2909]  ? __pfx_kthread+0x10/0x10
[  209.110865][ T2909]  ? __pfx_worker_thread+0x10/0x10
[  209.115998][ T2909]  ? __pfx_kthread+0x10/0x10
[  209.120617][ T2909]  ? __pfx_kthread+0x10/0x10
[  209.125234][ T2909]  ? __pfx_kthread+0x10/0x10
[  209.129837][ T2909]  ? _raw_spin_unlock_irq+0x23/0x50
[  209.135051][ T2909]  ? lockdep_hardirqs_on+0x99/0x150
[  209.140389][ T2909]  ? __pfx_kthread+0x10/0x10
[  209.144996][ T2909]  ret_from_fork+0x4b/0x80
[  209.149427][ T2909]  ? __pfx_kthread+0x10/0x10
[  209.154024][ T2909]  ret_from_fork_asm+0x1a/0x30
[  209.158816][ T2909]  </TASK>
[  209.161853][ T2909] Modules linked in:
[  209.165768][ T2909] ---[ end trace 0000000000000000 ]---
[  209.171279][ T2909] RIP: 0010:__list_add_valid_or_report+0xa4/0x130
[  209.177731][ T2909] Code: f7 74 11 b0 01 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 48 c7 c7 a0 59 81 8c 4c 89 fe 4c 89 e2 4c 89 f1 e8 0d e8 27 fc 90 <0f> 0b 48 c7 c7 a0 57 81 8c e8 fe e7 27 fc 90 0f 0b 48 c7 c7 40 58
[  209.197353][ T2909] RSP: 0000:ffffc9000b9e7628 EFLAGS: 00010046
[  209.203431][ T2909] RAX: 0000000000000058 RBX: 1ffff110059ca10e RCX: 6482acf05737f400
[  209.211428][ T2909] RDX: 0000000000000000 RSI: 0000000080000001 RDI: 0000000000000000
[  209.219575][ T2909] RBP: 1ffff11004a85b2d R08: ffffffff81a170dc R09: 1ffff9200173ce60
[  209.227558][ T2909] R10: dffffc0000000000 R11: fffff5200173ce61 R12: ffff88802ce50870
[  209.236095][ T2909] R13: dffffc0000000000 R14: ffff88802542d960 R15: ffff88802ce50870
[  209.244090][ T2909] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  209.253073][ T2909] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  209.259668][ T2909] CR2: 0000000000000000 CR3: 000000004fe20000 CR4: 00000000003526f0
[  209.267825][ T2909] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  209.275802][ T2909] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  209.284052][ T2909] Kernel panic - not syncing: Fatal exception
[  209.290391][ T2909] Kernel Offset: disabled
[  209.294724][ T2909] Rebooting in 86400 seconds..