AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgP+zde5xU1Z0g8NNNP2homhbjK2JsdW1Fh6ZBUT/BB2omGmBNo+zMuPhohEaRVhBhIq5RULObxMEoKlFnRmEVRlZx8AVkNQE1ooloNI5mRh1DMGrcjR/FiH6yxrif7lunqLrVZRcCSjvf7x9dp+p3nrceXefeW+cCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/Max/9MYj/umiJ0eP2jBvwPJXDv/vH9YfumzRO//rT89ed9ve8763ftWSJZV/en7jSZO/c8PhjRtWTnghhJbOcmVJ8bLTF6/4waoLvvGtB0+76e5395y9tCpTbyYe+nb8Kc/cuTK2+tt+IawsC6EiHRhcmwQqM/drY30Da0PYKWwOZEu09UlKpBsOj9WEsDBsDmSr+lFNCLU5gXG/fGT1vI7E9TUh7B9CqE638e/VSRs16UBjVRLokw5Mq0gCH3ycyAZWlScB2GrxzZB90S9vyc9Q33W5Iq+/ym3Wsc9Xeni9YqK+eL63jt3OncpRlX6gZauetoLq2C4K3h5rvNt6wLutYDtf42nL/SKV+Yby8eZQdSif1DZ5wqz2mfGR8tDU1KtYTdvpeX5x4yUTtyTdY16HsQP12+R1+Pj5A+9c0Dhm15sf3jD59apnF2xtN4tt3u2tOmRecz3meYxG+jzpAW+/gm9JDb50hRBuP37T2799aez//dWDTw9+75tDzxrywitD627+7rR+f332/6m8ZerGgvl//SfP/+PLOd6W5+WOrX5Yl8zN4yO1MfF2XTI3BwAAgB6jJ+w1fWPEQW/Xrmt4eN+vr5h83qJ5r51+7p+rftp3wkEnnjL0+3fcOPW0gvl/Q2nH/+Mh/9rc0a4JYWRn4or+Ieze+XgSWBq7c1b/EPbpTLXkB45NBdaEsEdnYlC2qlSJ3rFEQyrwRl0mMDIVWBsDLanA4hi4JhW4MgaWpwITY2BNKnBcDIQp+eM4qC4zjpIDNTHQmmzE5fEshD/UxdZS2+qlbFUAAADbSGZ2WJl/N+dch63NEKeXy2u6yxDPwC6aoTpVQ3oGm51WFa2horsayrurITvuOZ88/IKay7qrueA0jLL8DO8deN/c1Q/8249vnHDYUwd92HrGy+tXPTp6U6+/e2fMjy8dN3/Y+IL5f/Mnz/+ru+hIWcHx/xDGdv6NucszkfZsvLUlLwMAAACwFSpeW3ryL+Z+VLbkZ+ds3P8vTxt3de8V++47YO3B9/2/hjcHHL9q/4L5/8jSzv+P+0R65WQO6+JuiKn9Q2jODyTVjigMJEe9+2YCAAAA0BNkj8dnj4VPydwmp2in59OF+Vu2MH888D+yy/yDx129rnn17adMGXHomjWbztj15WUbntpl/3deOPDk00+4f2rDPQXz/5bSzv/vk3+bdGJt7MV1/UPonRN4PPayI9CpIQbWH5MfyIx/bdwAV8WqMicmZKu6KpZojYHmVGBhsRLPZEvsnh/IPFnZxq/IjmNKpkROAAAAAD5zcXdAPC4fz/9/+tx+j/7jslsueXDJutD37OW/uOzo4QPnD+791rRnDnnkb989eWrB/L91y87/75wHF5ze3943hCEVIfRK/zBgXZ9kYcAYqC3LJH7cJ6mrV7qqy/uEMKJjYOmqNmTW/69IrzH4XE1SVQzsvu8dGxs7ErfXhDAkN/DC+EXDOxKzUoFs439VE8LeHaNNN76id9J4ZbrxG3uH8JWcQLaqib1D6GisKl3Vo9WZ6xikq1peHcLOOYFsVYdXhzA7ANBTxf+lk3IfvHD2xVMntLe3zdiOibgTvyZMntLe1jRxWvuk6iJ9mpTqc946RnMLx1TqpW9ezqxRdNeopv6lpLM/FGzObSuzI7/gzMHM/fhlqLJznMMq8+4ekh7ygfsVNhFyvkoVG3L5dh5yn9xKNj+JBfXH/FWhb+g968K2GU0XTZg5c8bQ5G+p2Yclf+NxpmRbDU1vqz5d9a2El0fR5bJSPu22asytZMjM86YPuXD2xYOnnDfh7Laz284/bPhhRxwx7NBDhw/pGFRz8rebkTZ2VXNqpB8vKnFY23CkX67IqeSz+NCQkJDoaYlVv9vj5aN3Wfq9FbcsnvHz9qPafv71nXces6Tqmy9suvSy/Z/+Hx8UzP+nf/L8P37qxA/+zPoMxY7/18fD/Mnjmw/zt8bAwlKP/9cXO5qfPTGgIRWYEwNzHOYHAADgiyHujox7M+NO6Ufm7/Yvd467b8z89Qc/ue65svV9Dv77D39fXnnZuP9yzAMNt333bwrm/3NK+/3/Nlr/P7t0/ahiy/wPiiWai63/n17mP7v+/5xi6/+nl/nPrv+/8HNY/39WNpDaJH+w/j8AAPBF8Nmt/9/t8v7pCwQUZOh2ef/0BQIKMnS7jH+pFwjY4vX/H2k4aORPVn/nN43LLpj2zn8bct/oAXs2/O6Rva6cNHXk6NEjBv9Lwfz/mtLm/xbuBwAAgB3HAROPfWrjpL2Pvfp/3rbTHj9p/fauh+3y/WVHts3ftH7i39z27jl/XTD/X1ja/P+zX/8vFDv/v6FYoKXYwoDW/wMAAKCHKrb+39Abv3X5q4uPu/+ey6eNam0dP/uKq/dbfUD1qeGl0fMb/mLGvR8VzP+Xlzb/j6ddlOfljr35sC5Z0y6k17R7uy77kwEAAADoGcpDU1NliXnzFkY99tO3+WJmKdBPSud68sH9nn/gqyNOnL+46urXynYb9vFT1888+Piv/fDVjXtdcse55+1XMP9fU9r8P+93GY+fP/DOBY1jdv3w5oc3TH696tkFm4//AwAAANtPqfslAAAAAAAAAAAAAACAz98JD//k6rcnLvnanIW/3PWnvcY+u3zDrDlNs2uvf/WH1/7qiDsfHlfw+/8wtrNcsd//x+v+xd8XfCkvd2y1+/X/MvfHjb57dueShevqQtgvNzD18qk7hcy1+Q/IDaw+fdBuHYnL0yUeeuW41zoSZ6YDJw4e8H5H4shUoDUukrhHOhCvqvh+v1QgLq/4XDoQt8fydKAqE/hev2QcZelt9WZtsq3K0tvqxdoQ+ucEsttqZW3SRll6gNenAtkBXpAOxAGelAmUp3t1d9+kVzFQG4ve2jfpFQAAO6z4LbAyTJ7S3tYcv8LH2y9X5N9GeUuWzS2stqzE5l/OLE1216im/qWke6W/i26+1nhlqO4YwtCCr6u5Wco6R7ltaulm032pyJC7W+2tvEi5tC3ddFXFR1STjKhp4rT2SZXdDvyQ7rMMq+g2y9CCyU5ulvLOTVpCLSX0pYQRlbhtSuhyvF8empp6pXJ9NQbrQ57uXhGl/l4/d52/Yq+C3DxPvtn+1BP//PzKfR7/89Nnf/BXk7596byzznj3yHOq/+E/lz39XwfuXDD/ry9t/l+dO673MxcDmBOvrDeifwitJY4IAAAAvvjOOf+V+d999No31rc0vjZtyLWr/3X2jRdX1C298i9ffOhvN42/+sytjb/58zv2eXjyhGe+dO4hy054fZ+DL2s88637/mLeuAev6nvLD+ff8YOC+X9DafP/uAcrcyg42duxJl7//4r+IXReWr8+CSyNwz2rfwj7dKZaYonkgvqjYonmJLA07jAZFEu0tuRX1TsGlqcCb9RlAmtSgbUxkNlLcUfI7Mq5ti6E4Z2psfklpscS9anAN2OgIRVoioHmVKBfDIxMBX7fLxNoSQWejIEwJX9b3dcvs60AAAC2RGaeVZl/N6TnecsrustQ1l2GPt1lKO8uQ3V3GYqNIt6/N2aoTJ28UpaTqTJda02qloIM8WL4W9yvggzhmfyc6YIFTcfzD7LnG5TlZ3jg5K/ec9WCyYPKf/XR2qWt790/ccWts49eec5Df/fEpH0X3XX93gXz/+bS5v998m+T1tfG+f/m6/8lgcdj966Lp443xMD6Y/IDmR0Da+Nk96psVS2ZEplJ+1WxxMgYaEgFpsfAyFSgdWwmsHC3/EBmpp1t/Ips41MyJXICAAAA8JmLOwjibpo4///jsmePeqxi0V3/+ur4u+6d89Y99/70nntuvXf07Zu+/twVF7970UcF8/+Rpc3/Y3t9cxu7Mvbmt/1CWFm2uTfZwODaJBD3Y9TGn8cPrA1hp5wdHNkSbX2SElWphsNjNckv1KvSVf2oJlljIN4f98tHVs/rSFxfE8L+OXtfsm38e3XSRk060FiVBPqkA9MqkkDc85MNrCpPArDVsnsF4wsqc6pLVn3X5Yq8/r4o1wRND69gH2gX+br6zdX2Up1+ILNPNWvLnraC6tguCt4ea7zbeuK7rd67LfeLVOYbysebQ9WhfFLb5Amz2mfGR3J/yVpgOz3Pub9SLSW9DV6Hcz59b7tXne5Ac+rjo7nrcl2/DstidY+fP/DOBY1jdr354Q2TX696dkHJ3Sgi/lD4maoB9bmbd3urDpnXXI/7PGnxedIT/w00eNpCCBsuPeG6kVXTr1g5+pAj93rttFOqZ7437+/vf+mBd/f9xxUTh31tQMH8v6W0+X9F6rbTH+PGvLB/CAfmbNx1cfMf3z/5HMwJJJ+SOxcGkkPur9YV/eQEAACAbS27uyO7v2BK5jY5ITw9Ty7M37KF+eP+ipFd5i+13z8adMpe9+9297hrTz3qpn/+zdh+G8e/uOSYFa1HNS49+mf/6cyaeQXz/9ZPnv/3TnXT8X/H/9lOHP/v0o6+K7p3+oE5W7UruqA6tgvH/7u0o7/bHP/vkuP/jv93xfH/bjj+36Ud/Wkr+JY03ZeuEMKwMWcMrr1r8BPvD1z96yeemvJvc1sn3PONq27Z8+Nv1y9eUL9r34L5//TS5v/W/+t60b7s+n+txdb/m15s/b851v8DAAC2qyILzaXneQWr9xVkSK/eV5Ch2wUCu11i0Pp/W7z+32NHHTl++ejFv16z95gDLus7d+6puzx504stM9+vue2D93f7xYGjCub/c0qb/8eXQ9/c1nvK+n8NY4tUdU0MTLcwIAAAADuiYjsIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+HztfsN1449prj7pN8dfWjP6+w+tO6D6mldOvXTZhFsnfeX28wfNWrFkSeWfnt940uTv3HB444aVE14IYUpnubKkeNnpi1f8YNUF3/jWg6fddPe7e85eWp2ptzJzu2de7tjqh3UhLMx5pDYm3q7ruLM5MG703bMrOhLr6kLYLzcw9fKpO3UkFteFcEBuYPXpg3brSFyeLvHQK8e91pE4Mx04cfCA9zsSR2YCZenu/kO/pLtl6e7O6xdC/5xAtrvn9suvKtvGCZlAebqNf6pN2oiB2lj0xtqkjRhojyWm9A5hSEUIvdJV/aw6qapXuqr/XZ1U1Std1WXVIYwIIVSkq/p1VVJVRXrkz1QlVcXA7vvesbGxI7GoKoQhuYEXxi8a3pGYkQpkGz+lKoS9O14y6cbvq0war0w3fkNlCF8JIVSlS2yqSEpUpUtsqAhh55zA5o1YEcLswBdD/PSZlPvghbMvnjqhvb1txnZMVGXaqgmTp7S3NU2c1j6pOtWnYspy0h/P/fRjf3njJRM7bu8a1dS/lHRFplxlZ5eHVebdPWRH733sV5/cSjY/HwX1x/xVoW/oPevCthlNF02YOXPG0ORvqdmHJX97ZaLJthraU7ZVY24lQ2aeN33IhbMvHjzlvAlnt53ddv5hww874ohhhx46fEjHoJqTv9tipIs++5F+uSKnks/i/S8hIdHTEuV5n27NO/rneMEX/c0drQzVnR/QBdOK3CxlnaPcFoM+9lOO+NN8Tel2REMLJg4FWYZ1n+WQgsnE5iw1SZbOr3UFk8Pcmso7N2m8Xx6amnoV2w71+XdzN+9bW7F5X8xsulLTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMD/ZwcOBAAAAACA/F8boaqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqgo7cCAAAAAAAOT/2ghVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVV2IFjAQAAAABh/tZh9GwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFwKAAD//y85Ijg=")
unlink(&(0x7f0000000140)='./file2\x00')
rename(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file2\x00')
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

[  558.969714][    T8] libceph: connect (1)[c::]:6789 error -101
[  558.983980][    T8] libceph: mon0 (1)[c::]:6789 connect error
15:11:25 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

[  559.048481][T16182] ceph: No mds server is up or the cluster is laggy
[  559.107852][ T5109] BTRFS info (device loop1): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
15:11:25 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  559.154451][   T24] libceph: connect (1)[c::]:6789 error -101
[  559.174392][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  559.191083][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  559.243314][T16189] ceph: No mds server is up or the cluster is laggy
15:11:25 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

15:11:25 executing program 4:
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000140)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='\'\x9c.-\\\x00', &(0x7f0000000100)='&\x01\x00', 0x0)
r1 = gettid()
r2 = dup(r0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
read$FUSE(r2, 0x0, 0x0)
tkill(r1, 0xb)

[  559.398149][   T57] usbhid 4-1:0.0: can't add hid device: -71
[  559.422828][   T57] usbhid: probe of 4-1:0.0 failed with error -71
[  559.438801][T16197] loop0: detected capacity change from 0 to 512
[  559.446150][   T57] usb 4-1: USB disconnect, device number 61
[  559.541388][T16197] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  559.573401][T16197] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1083/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  559.633567][ T5152] libceph: connect (1)[c::]:6789 error -101
[  559.651757][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  559.710996][T16203] ceph: No mds server is up or the cluster is laggy
15:11:26 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  559.746109][   T28] audit: type=1804 audit(1706886686.276:105): pid=16210 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1083/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:11:26 executing program 4:
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000140)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='\'\x9c.-\\\x00', &(0x7f0000000100)='&\x01\x00', 0x0)
gettid()
r1 = dup(r0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
read$FUSE(r1, 0x0, 0x0)

15:11:26 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

15:11:26 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$eJzs3c9vG1kdAPDvTOImm81usrASPwRsWRYKqmon7m602tNyAaHVSogVJw7ZkLhRFDuOYmdpQiXS/wGJSpzgT+CAxAGpJ+7c4MalHJAKVKAGiYPRjCdpSOMkbRMb7M9HGs28eeP5vldr3nO/SfwCGFlXI2IvIq5ExMcRMVOcT4ot3u9u2XWPH91Z3n90ZzmJTuejvyV5fXYujrwm83Jxz8mI+N63I36YPB23tbO7vlSv17aKcqXd2Ky0dnZvrDWWVmurtY1qdWF+Ye7dm+9UL6yvbzR+9fBbax98/7e/+eKD3+9948dZs6aLuqP9uEjdrpcO42TGI+KDywg2AGNFf64MuiE8lzQiPhURb+bP/0yM5e/m+ZzwWAMA/wc6nZnozBwtAwDDLs1zYElaLnIB05Gm5XI3h/d6TKX1Zqt9/VZze2OlmyubjVJ6a61emytyhbNRSrLyfH78pFw9Vr4ZEa9FxE8nXsrL5eXz5xkAgIv18rH5/58T3fkfABhyk2ddsNifdgAA/XPm/A8ADB3zPwCMHvM/AIwe8z8AjB7zPwCMnmL+Hxt0OwCAvvjuhx9mW2e/+P7rlU92ttebn9xYqbXWy43t5fJyc2uzvNpsrtZr5eVm46z71ZvNzfm3Y/t2pV1rtSutnd3FRnN7o72Yf6/3Yq3Ul14BAKd57Y37f0wiYu+9l/ItjqzlYK6G4ZYOugHAwMj5w+jyLdwwuvwfHzhrLc+evyJ87zmCdX7yHC8CLtq1z8n/w6iS/4fRJf8Po0v+H0ZXp5P0WvM/PbwEABgqcvxAX3/+DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAENiOt+StFysBT4daVouR7wSEbNRSm6t1WtzEfFqRPxhojSRlecH3WgA4AWlf0mK9b+uzbw1fbz2SvKviXwfET/6+Uc/u73Ubm/NZ+f/fni+fa84Xx1E+wGAsxzM0wfz+IHHj+4sH2z9bM/Db3YXF83i7hdbt2Y8xvP9ZJQiYuofSVHuyj6vjF1A/L27EfHZk/qf5LmR2WLl0+Pxs9iv9DV++l/x07yuu8/+LT79DDHPWusVRsX9bPx5/6TnL42r+X7yxMWPJ/MR6sUdjH/7T41/6eH4N9Zj/Lt63hhv/+47PevuRnx+/KT4yWH8pEf8t84Z/09f+NKbveo6v4i4FifHPxqr0m5sVlo7uzfWGkurtdXaRrW6ML8w9+7Nd6qVPEddOchUP+2v711/9bT+T/WIP3lG/796aq87EwdHv/z3xz/48inxv/6Vk9//10+Jn82JXzs1/hNLU7/uuXx3Fn+l2/+7z/r+Xz9n/Ad/3l0556UAQB+0dnbXl+r12taFHpTigm945CC5pDY7GPKD7PP4i97nM0XK7H+gO5d9MOiRCbhsTx76QbcEAAAAAAAAAAAAAADo5dL/nCgddA8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYZv8JAAD//wqryik=")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

15:11:26 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  560.003377][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  560.031824][ T5149] libceph: connect (1)[c::]:6789 error -101
[  560.055332][ T5149] libceph: mon0 (1)[c::]:6789 connect error
[  560.201394][T16223] loop0: detected capacity change from 0 to 512
15:11:26 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  560.241113][T16223] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  560.253916][    T8] usb 4-1: new high-speed USB device number 62 using dummy_hcd
[  560.268733][T16223] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1084/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  560.332254][ T5149] libceph: connect (1)[c::]:6789 error -101
[  560.338350][ T5149] libceph: mon0 (1)[c::]:6789 connect error
15:11:26 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

[  560.365016][   T28] audit: type=1804 audit(1706886686.896:106): pid=16228 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1084/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:11:27 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  560.448910][T16208] loop1: detected capacity change from 0 to 32768
[  560.460023][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  560.472907][T16208] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop1 scanned by syz-executor.1 (16208)
[  560.512124][T16208] BTRFS info (device loop1): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  560.539247][    T8] usb 4-1: Using ep0 maxpacket: 16
[  560.545608][T16208] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  560.570435][T16208] BTRFS info (device loop1): using free-space-tree
[  560.659658][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  560.681408][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  560.708751][    T8] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  560.728328][T16246] loop0: detected capacity change from 0 to 512
[  560.738565][    T8] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
15:11:27 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  560.756748][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  560.798481][T16215] ceph: No mds server is up or the cluster is laggy
[  560.805162][T16246] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  560.805285][T16246] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1085/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  560.851025][    T8] usb 4-1: config 0 descriptor??
[  560.861005][ T5149] libceph: connect (1)[c::]:6789 error -101
[  560.867221][ T5149] libceph: mon0 (1)[c::]:6789 connect error
[  560.922288][   T28] audit: type=1804 audit(1706886687.436:107): pid=16252 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1085/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:11:27 executing program 4:
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000140)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='\'\x9c.-\\\x00', &(0x7f0000000100)='&\x01\x00', 0x0)
gettid()
r1 = dup(r0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
read$FUSE(r1, 0x0, 0x0)

15:11:27 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
lseek(r1, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80001d00c0d3)

15:11:27 executing program 1:
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000005600)='./bus\x00', 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="646973636172642c0008fd346f1fe0c7b977cf98b0dfc801ecf9a88e1ae482"], 0x1, 0x559d, &(0x7f0000005680)="$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")
unlink(&(0x7f0000000140)='./file2\x00')
rename(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file2\x00')
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

15:11:27 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(0x0, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  561.103450][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  561.167024][ T5109] BTRFS info (device loop1): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  561.182113][ T5149] libceph: connect (1)[c::]:6789 error -101
[  561.199678][ T5149] libceph: mon0 (1)[c::]:6789 connect error
15:11:27 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(0x0, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  561.268403][T16263] loop0: detected capacity change from 0 to 512
15:11:27 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(0x0, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  561.367114][T16263] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  561.391035][    T8] usbhid 4-1:0.0: can't add hid device: -71
[  561.401112][    T8] usbhid: probe of 4-1:0.0 failed with error -71
[  561.417574][T16263] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1086/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  561.425984][    T8] usb 4-1: USB disconnect, device number 62
15:11:28 executing program 2:
io_setup(0x202, &(0x7f0000000200)=<r0=>0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6000)
io_submit(r0, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000000), 0x70000}])

[  561.471124][ T5149] libceph: connect (1)[c::]:6789 error -101
[  561.477210][ T5149] libceph: mon0 (1)[c::]:6789 connect error
[  561.538019][   T28] audit: type=1804 audit(1706886688.066:108): pid=16263 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1086/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:11:28 executing program 2:
io_setup(0x202, &(0x7f0000000200)=<r0=>0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6000)
io_submit(r0, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000000), 0x70000}])

15:11:28 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
lseek(r1, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80001d00c0d3)

[  561.786543][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:11:28 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

15:11:28 executing program 2:
io_setup(0x202, &(0x7f0000000200)=<r0=>0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6000)
io_submit(r0, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000000), 0x70000}])

[  561.950274][T16256] ceph: No mds server is up or the cluster is laggy
15:11:28 executing program 4:
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000140)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='\'\x9c.-\\\x00', &(0x7f0000000100)='&\x01\x00', 0x0)
gettid()
r1 = dup(r0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
read$FUSE(r1, 0x0, 0x0)

[  562.027855][T16281] loop0: detected capacity change from 0 to 512
15:11:28 executing program 2:
r0 = creat(0x0, 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  562.133884][T16281] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  562.162365][T16281] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1087/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  562.207763][ T5149] libceph: connect (1)[c::]:6789 error -101
[  562.209221][ T5152] usb 4-1: new high-speed USB device number 63 using dummy_hcd
[  562.223123][   T28] audit: type=1804 audit(1706886688.756:109): pid=16281 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1087/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  562.223518][ T5149] libceph: mon0 (1)[c::]:6789 connect error
15:11:28 executing program 2:
r0 = creat(0x0, 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

15:11:28 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$eJzs3c9vG1kdAPDvTOImm81usrASPwRsWRYKqmon7m602tNyAaHVSogVJw7ZkLhRFDuOYmdpQiXS/wGJSpzgT+CAxAGpJ+7c4MalHJAKVKAGiYPRjCdpSOMkbRMb7M9HGs28eeP5vldr3nO/SfwCGFlXI2IvIq5ExMcRMVOcT4ot3u9u2XWPH91Z3n90ZzmJTuejvyV5fXYujrwm83Jxz8mI+N63I36YPB23tbO7vlSv17aKcqXd2Ky0dnZvrDWWVmurtY1qdWF+Ye7dm+9UL6yvbzR+9fBbax98/7e/+eKD3+9948dZs6aLuqP9uEjdrpcO42TGI+KDywg2AGNFf64MuiE8lzQiPhURb+bP/0yM5e/m+ZzwWAMA/wc6nZnozBwtAwDDLs1zYElaLnIB05Gm5XI3h/d6TKX1Zqt9/VZze2OlmyubjVJ6a61emytyhbNRSrLyfH78pFw9Vr4ZEa9FxE8nXsrL5eXz5xkAgIv18rH5/58T3fkfABhyk2ddsNifdgAA/XPm/A8ADB3zPwCMHvM/AIwe8z8AjB7zPwCMnmL+Hxt0OwCAvvjuhx9mW2e/+P7rlU92ttebn9xYqbXWy43t5fJyc2uzvNpsrtZr5eVm46z71ZvNzfm3Y/t2pV1rtSutnd3FRnN7o72Yf6/3Yq3Ul14BAKd57Y37f0wiYu+9l/ItjqzlYK6G4ZYOugHAwMj5w+jyLdwwuvwfHzhrLc+evyJ87zmCdX7yHC8CLtq1z8n/w6iS/4fRJf8Po0v+H0ZXp5P0WvM/PbwEABgqcvxAX3/+DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAENiOt+StFysBT4daVouR7wSEbNRSm6t1WtzEfFqRPxhojSRlecH3WgA4AWlf0mK9b+uzbw1fbz2SvKviXwfET/6+Uc/u73Ubm/NZ+f/fni+fa84Xx1E+wGAsxzM0wfz+IHHj+4sH2z9bM/Db3YXF83i7hdbt2Y8xvP9ZJQiYuofSVHuyj6vjF1A/L27EfHZk/qf5LmR2WLl0+Pxs9iv9DV++l/x07yuu8/+LT79DDHPWusVRsX9bPx5/6TnL42r+X7yxMWPJ/MR6sUdjH/7T41/6eH4N9Zj/Lt63hhv/+47PevuRnx+/KT4yWH8pEf8t84Z/09f+NKbveo6v4i4FifHPxqr0m5sVlo7uzfWGkurtdXaRrW6ML8w9+7Nd6qVPEddOchUP+2v711/9bT+T/WIP3lG/796aq87EwdHv/z3xz/48inxv/6Vk9//10+Jn82JXzs1/hNLU7/uuXx3Fn+l2/+7z/r+Xz9n/Ad/3l0556UAQB+0dnbXl+r12taFHpTigm945CC5pDY7GPKD7PP4i97nM0XK7H+gO5d9MOiRCbhsTx76QbcEAAAAAAAAAAAAAADo5dL/nCgddA8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYZv8JAAD//wqryik=")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
lseek(r1, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80001d00c0d3)

[  562.415196][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:11:29 executing program 2:
r0 = creat(0x0, 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  562.459352][ T5152] usb 4-1: Using ep0 maxpacket: 16
[  562.549673][ T5149] libceph: connect (1)[c::]:6789 error -101
[  562.560146][ T5149] libceph: mon0 (1)[c::]:6789 connect error
[  562.572733][T16296] loop0: detected capacity change from 0 to 512
[  562.589690][ T5152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  562.603750][ T5152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  562.603831][T16275] loop1: detected capacity change from 0 to 32768
[  562.620835][ T5152] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  562.635170][ T5152] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
15:11:29 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x0, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  562.645397][ T5152] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  562.659729][ T5152] usb 4-1: config 0 descriptor??
[  562.676245][T16275] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop1 scanned by syz-executor.1 (16275)
[  562.697131][T16296] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  562.724899][T16275] BTRFS info (device loop1): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
15:11:29 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x0, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  562.743778][T16275] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  562.748857][T16296] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1088/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  562.756970][T16275] BTRFS info (device loop1): using free-space-tree
15:11:29 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x0, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  562.829739][   T28] audit: type=1804 audit(1706886689.346:110): pid=16296 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1088/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:11:29 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80001d00c0d3)

15:11:29 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, 0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(0x0, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  563.000216][T16285] ceph: No mds server is up or the cluster is laggy
[  563.031608][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:11:29 executing program 4:
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000140)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='\'\x9c.-\\\x00', &(0x7f0000000100)='&\x01\x00', 0x0)
r1 = gettid()
r2 = dup(r0)
read$FUSE(r2, 0x0, 0x0)
tkill(r1, 0xb)

15:11:29 executing program 1:
syz_mount_image$f2fs(&(0x7f00000000c0), &(0x7f0000010280)='./bus\x00', 0x10, &(0x7f0000007f80)=ANY=[], 0x1, 0x7e64, &(0x7f0000000100)="$eJzs3M1uG1UUAODjhEZAS4kQC3aMxI8ciVhjO6mgbCKqqgtIFdGy7MKxHcttYkdx4oSuuuHnIdjBinfgAdix6aJvgMQOiU2FGuSZiYTKTyNinMb5Pml8fI9vzr3XmizOKEoA59Z88tuvpbgcL0XEbERcisjel4ors5KHNyLizYiY+dNVKvKjwZ1RYi4iXo6Iy6Piec1SMffbH768893PH7/zzfc/zqZff/XL6Z0aOE27EfF2RGxt5+P9rTz2O3m8W+Qbw24Wt5aGRcw/2LpXjPt53G+vZxX2G0fzGlmsd/L5/e29wShubDaao9jpbmT57V6+4GDYOaqT/cDdxk42brXXs9gd9LPYuZ/v66CI9we7eZ1WUe/zZn6+3aOY59sH7fw82/ey2OztFvm8br/VPhjFYRGL5aK1/t+/47Pik25v7yAZtncG3X4vWa5U00q6uNO8spim1Q/qi51WY6N5pV1bajU2lpJye2XQ31xIyp1mMynfuHZtIammlVolfS+5cfOzZLOVlEfxo25vb7e7OVhIapX6cqW6kLxVTW6triVrn16/vrp2O1nt95Kb/WFST5Nq/epy7Wr9/WTt1u2kltZS55+o0oTXY8r88w10+OQwM9HtAJwF4+z/Q/8PHNP56v+L8+j//+LE/e+7Z7v/1f/DCbiBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADOrYs/fbiXvZnPxzNF/pUi9VoxLhWfHf6N0lM1Z0d1I+LCMed/UYqYK9Y4ul6IiJXi+v3V//c7AAAAgGn26HH5YSnr1vOX+X+fPnNhMtvihB7k4ckzps1lr6VLD8a0bPZY5xn30PFlD6JeH1e12Wx/4zrpxSieUI1F9mv14riqHcvsRFcDAACeDzoBAAAAmGpP/xk+AAAAMH30/wAAADD9sv7f//8DAACA6fbocfnhae8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+YOfuTRCGggAAX/xrgihO4Q42juAILuEIDuJGNhaZw05ELXKCiIgQQyB8HxzHJeHyrnzNAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQN+Vx9WuuixPTfvc7s38ZxoAAADgq3mdBllO89Ei6yLffbq7F2+thhFRRsT4x+/3RcQk//GMUUSsM66ztocHAACA/qoO503XZwAAAAAAAAAAAAAAAAAAAABedLH/b1sn+/8AAACgPfb/AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwYHdeTgCAQRiA9rNA95+2CLqB4OU9SMgxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAH12Zp0aN+pN/wIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDPDhwUAQCAIACjmv2L+LGDPbgNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC63ST77NcxCoAwEARAk3wglT+z9rd+S5FcIWLtIc7AEtg0214bqWfRR1/jf9m39em9K28N/qo5ewAAAAB/0CLT5VYvPXEQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAwe4cWgEAg0AUa+k+7D9eBQ+PwySGLxAHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDIG33cE51RCQBAyb65PAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4LMDBwIAAAAAQP6vjVBVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWFHTgQAAAAABDkb73CAAUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAUwEAAP//bbMf7Q==")
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
lseek(r0, 0x0, 0x0)

[  563.189411][ T5152] usbhid 4-1:0.0: can't add hid device: -71
[  563.195483][ T5152] usbhid: probe of 4-1:0.0 failed with error -71
15:11:29 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, 0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(0x0, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  563.232570][ T1241] ieee802154 phy0 wpan0: encryption failed: -22
[  563.242348][ T1241] ieee802154 phy1 wpan1: encryption failed: -22
[  563.257589][ T5152] usb 4-1: USB disconnect, device number 63
[  563.269579][ T5109] BTRFS info (device loop1): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
15:11:29 executing program 4:
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000140)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='\'\x9c.-\\\x00', &(0x7f0000000100)='&\x01\x00', 0x0)
r1 = gettid()
r2 = dup(r0)
read$FUSE(r2, 0x0, 0x0)
tkill(r1, 0xb)

[  563.294015][T16326] loop0: detected capacity change from 0 to 512
15:11:29 executing program 4:
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000140)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='\'\x9c.-\\\x00', &(0x7f0000000100)='&\x01\x00', 0x0)
r1 = gettid()
r2 = dup(r0)
read$FUSE(r2, 0x0, 0x0)
tkill(r1, 0xb)

[  563.389938][T16326] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  563.420056][T16326] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1089/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:11:30 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, 0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(0x0, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

15:11:30 executing program 4:
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000140)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='\'\x9c.-\\\x00', &(0x7f0000000100)='&\x01\x00', 0x0)
r1 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
tkill(r1, 0xb)

[  563.540695][   T28] audit: type=1804 audit(1706886690.066:111): pid=16326 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1089/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:11:30 executing program 4:
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000140)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='\'\x9c.-\\\x00', &(0x7f0000000100)='&\x01\x00', 0x0)
r1 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
tkill(r1, 0xb)

15:11:30 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6000)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

15:11:30 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, 0x0, 0x0}, 0x0)

15:11:30 executing program 4:
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000140)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='\'\x9c.-\\\x00', &(0x7f0000000100)='&\x01\x00', 0x0)
r1 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
tkill(r1, 0xb)

15:11:30 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80001d00c0d3)

[  563.888981][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:11:30 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6000)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

15:11:30 executing program 4:
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000140)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='\'\x9c.-\\\x00', &(0x7f0000000100)='&\x01\x00', 0x0)
r1 = dup(r0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
read$FUSE(r1, 0x0, 0x0)
tkill(0x0, 0xb)

[  564.049220][ T5152] usb 4-1: new high-speed USB device number 64 using dummy_hcd
[  564.084475][T16354] loop0: detected capacity change from 0 to 512
[  564.098023][   T24] libceph: connect (1)[c::]:6789 error -101
[  564.119001][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  564.137523][T16354] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  564.151913][T16354] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1090/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:11:30 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6000)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  564.194030][   T28] audit: type=1804 audit(1706886690.726:112): pid=16354 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1090/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:11:30 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80001d00c0d3)

[  564.309648][ T5152] usb 4-1: Using ep0 maxpacket: 16
[  564.362272][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  564.399663][   T57] libceph: connect (1)[c::]:6789 error -101
[  564.405870][   T57] libceph: mon0 (1)[c::]:6789 connect error
[  564.429763][ T5152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  564.447736][ T5152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
15:11:31 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x0)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  564.469413][ T5152] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  564.486405][ T5152] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  564.501785][ T5152] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  564.538754][ T5152] usb 4-1: config 0 descriptor??
[  564.567685][T16364] loop0: detected capacity change from 0 to 512
[  564.642808][T16364] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  564.669401][T16364] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1091/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  564.709846][   T28] audit: type=1804 audit(1706886691.246:113): pid=16364 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1091/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:11:31 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x0)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

15:11:31 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
creat(&(0x7f0000000080)='./bus\x00', 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80001d00c0d3)

[  564.893415][T16353] ceph: No mds server is up or the cluster is laggy
[  564.922110][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:11:31 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x0)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  565.121362][ T5152] usbhid 4-1:0.0: can't add hid device: -71
[  565.127442][ T5152] usbhid: probe of 4-1:0.0 failed with error -71
[  565.172343][T16372] loop0: detected capacity change from 0 to 512
[  565.177800][ T5152] usb 4-1: USB disconnect, device number 64
[  565.246963][T16372] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  565.286235][T16372] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1092/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:11:31 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200))
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(0x0, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  565.398522][T16348] loop1: detected capacity change from 0 to 63271
[  565.401151][   T28] audit: type=1804 audit(1706886691.926:114): pid=16372 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1092/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  565.439510][T16348] F2FS-fs (loop1): Mismatch start address, segment0(512) cp_blkaddr(605)
15:11:32 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
creat(&(0x7f0000000080)='./bus\x00', 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80001d00c0d3)

[  565.459209][T16348] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  565.478308][T16348] F2FS-fs (loop1): invalid crc value
[  565.504078][T16348] F2FS-fs (loop1): Found nat_bits in checkpoint
15:11:32 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, 0x0, 0x0}, 0x0)

[  565.562561][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:11:32 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200))
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(0x0, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  565.612357][T16348] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  565.628723][T16348] F2FS-fs (loop1): Mounted with checkpoint version = 753bd00b
15:11:32 executing program 1:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x3, &(0x7f0000000300)=[{}, {0x2}, {0x6}]})

[  565.748585][T16387] loop0: detected capacity change from 0 to 512
15:11:32 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200))
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(0x0, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  565.794532][T16387] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  565.810641][T16387] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1093/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:11:32 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$eJzs3c9vG1kdAPDvTOImm81usrASPwRsWRYKqmon7m602tNyAaHVSogVJw7ZkLhRFDuOYmdpQiXS/wGJSpzgT+CAxAGpJ+7c4MalHJAKVKAGiYPRjCdpSOMkbRMb7M9HGs28eeP5vldr3nO/SfwCGFlXI2IvIq5ExMcRMVOcT4ot3u9u2XWPH91Z3n90ZzmJTuejvyV5fXYujrwm83Jxz8mI+N63I36YPB23tbO7vlSv17aKcqXd2Ky0dnZvrDWWVmurtY1qdWF+Ye7dm+9UL6yvbzR+9fBbax98/7e/+eKD3+9948dZs6aLuqP9uEjdrpcO42TGI+KDywg2AGNFf64MuiE8lzQiPhURb+bP/0yM5e/m+ZzwWAMA/wc6nZnozBwtAwDDLs1zYElaLnIB05Gm5XI3h/d6TKX1Zqt9/VZze2OlmyubjVJ6a61emytyhbNRSrLyfH78pFw9Vr4ZEa9FxE8nXsrL5eXz5xkAgIv18rH5/58T3fkfABhyk2ddsNifdgAA/XPm/A8ADB3zPwCMHvM/AIwe8z8AjB7zPwCMnmL+Hxt0OwCAvvjuhx9mW2e/+P7rlU92ttebn9xYqbXWy43t5fJyc2uzvNpsrtZr5eVm46z71ZvNzfm3Y/t2pV1rtSutnd3FRnN7o72Yf6/3Yq3Ul14BAKd57Y37f0wiYu+9l/ItjqzlYK6G4ZYOugHAwMj5w+jyLdwwuvwfHzhrLc+evyJ87zmCdX7yHC8CLtq1z8n/w6iS/4fRJf8Po0v+H0ZXp5P0WvM/PbwEABgqcvxAX3/+DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAENiOt+StFysBT4daVouR7wSEbNRSm6t1WtzEfFqRPxhojSRlecH3WgA4AWlf0mK9b+uzbw1fbz2SvKviXwfET/6+Uc/u73Ubm/NZ+f/fni+fa84Xx1E+wGAsxzM0wfz+IHHj+4sH2z9bM/Db3YXF83i7hdbt2Y8xvP9ZJQiYuofSVHuyj6vjF1A/L27EfHZk/qf5LmR2WLl0+Pxs9iv9DV++l/x07yuu8/+LT79DDHPWusVRsX9bPx5/6TnL42r+X7yxMWPJ/MR6sUdjH/7T41/6eH4N9Zj/Lt63hhv/+47PevuRnx+/KT4yWH8pEf8t84Z/09f+NKbveo6v4i4FifHPxqr0m5sVlo7uzfWGkurtdXaRrW6ML8w9+7Nd6qVPEddOchUP+2v711/9bT+T/WIP3lG/796aq87EwdHv/z3xz/48inxv/6Vk9//10+Jn82JXzs1/hNLU7/uuXx3Fn+l2/+7z/r+Xz9n/Ad/3l0556UAQB+0dnbXl+r12taFHpTigm945CC5pDY7GPKD7PP4i97nM0XK7H+gO5d9MOiRCbhsTx76QbcEAAAAAAAAAAAAAADo5dL/nCgddA8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYZv8JAAD//wqryik=")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
creat(&(0x7f0000000080)='./bus\x00', 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80001d00c0d3)

[  565.921541][   T28] audit: type=1804 audit(1706886692.456:115): pid=16395 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1093/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  565.959767][   T24] usb 4-1: new high-speed USB device number 65 using dummy_hcd
15:11:32 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x0, 0x0)

[  566.000896][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:11:32 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x0, 0x0)

[  566.178331][T16399] loop0: detected capacity change from 0 to 512
[  566.200266][   T24] usb 4-1: Using ep0 maxpacket: 16
[  566.237060][T16399] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  566.262246][T16399] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1094/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:11:32 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x0, 0x0)

[  566.329614][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  566.363185][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  566.379279][   T28] audit: type=1804 audit(1706886692.896:116): pid=16404 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1094/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  566.406110][   T24] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  566.419939][   T24] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
15:11:33 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$eJzs3c9vG1kdAPDvTOImm81usrASPwRsWRYKqmon7m602tNyAaHVSogVJw7ZkLhRFDuOYmdpQiXS/wGJSpzgT+CAxAGpJ+7c4MalHJAKVKAGiYPRjCdpSOMkbRMb7M9HGs28eeP5vldr3nO/SfwCGFlXI2IvIq5ExMcRMVOcT4ot3u9u2XWPH91Z3n90ZzmJTuejvyV5fXYujrwm83Jxz8mI+N63I36YPB23tbO7vlSv17aKcqXd2Ky0dnZvrDWWVmurtY1qdWF+Ye7dm+9UL6yvbzR+9fBbax98/7e/+eKD3+9948dZs6aLuqP9uEjdrpcO42TGI+KDywg2AGNFf64MuiE8lzQiPhURb+bP/0yM5e/m+ZzwWAMA/wc6nZnozBwtAwDDLs1zYElaLnIB05Gm5XI3h/d6TKX1Zqt9/VZze2OlmyubjVJ6a61emytyhbNRSrLyfH78pFw9Vr4ZEa9FxE8nXsrL5eXz5xkAgIv18rH5/58T3fkfABhyk2ddsNifdgAA/XPm/A8ADB3zPwCMHvM/AIwe8z8AjB7zPwCMnmL+Hxt0OwCAvvjuhx9mW2e/+P7rlU92ttebn9xYqbXWy43t5fJyc2uzvNpsrtZr5eVm46z71ZvNzfm3Y/t2pV1rtSutnd3FRnN7o72Yf6/3Yq3Ul14BAKd57Y37f0wiYu+9l/ItjqzlYK6G4ZYOugHAwMj5w+jyLdwwuvwfHzhrLc+evyJ87zmCdX7yHC8CLtq1z8n/w6iS/4fRJf8Po0v+H0ZXp5P0WvM/PbwEABgqcvxAX3/+DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAENiOt+StFysBT4daVouR7wSEbNRSm6t1WtzEfFqRPxhojSRlecH3WgA4AWlf0mK9b+uzbw1fbz2SvKviXwfET/6+Uc/u73Ubm/NZ+f/fni+fa84Xx1E+wGAsxzM0wfz+IHHj+4sH2z9bM/Db3YXF83i7hdbt2Y8xvP9ZJQiYuofSVHuyj6vjF1A/L27EfHZk/qf5LmR2WLl0+Pxs9iv9DV++l/x07yuu8/+LT79DDHPWusVRsX9bPx5/6TnL42r+X7yxMWPJ/MR6sUdjH/7T41/6eH4N9Zj/Lt63hhv/+47PevuRnx+/KT4yWH8pEf8t84Z/09f+NKbveo6v4i4FifHPxqr0m5sVlo7uzfWGkurtdXaRrW6ML8w9+7Nd6qVPEddOchUP+2v711/9bT+T/WIP3lG/796aq87EwdHv/z3xz/48inxv/6Vk9//10+Jn82JXzs1/hNLU7/uuXx3Fn+l2/+7z/r+Xz9n/Ad/3l0556UAQB+0dnbXl+r12taFHpTigm945CC5pDY7GPKD7PP4i97nM0XK7H+gO5d9MOiRCbhsTx76QbcEAAAAAAAAAAAAAADo5dL/nCgddA8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYZv8JAAD//wqryik=")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
ftruncate(0xffffffffffffffff, 0x800)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80001d00c0d3)

[  566.430916][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  566.444575][   T24] usb 4-1: config 0 descriptor??
[  566.501279][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:11:33 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x0, &(0x7f0000000540))

15:11:33 executing program 1:
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_HANDLE(r0, 0x113, 0x3, &(0x7f00000001c0)=0x10000, 0x4)

[  566.655423][   T28] audit: type=1326 audit(1706886693.186:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16411 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f80ec27dda9 code=0x0
[  566.666821][T16409] loop0: detected capacity change from 0 to 512
15:11:33 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x0, &(0x7f0000000540))

[  566.745592][T16409] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  566.758711][T16409] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1095/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:11:33 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, r1, 0x12a4886b51652e3, 0x0, 0x0, {}, [@DEVLINK_ATTR_PORT_INDEX={0x8}, @handle=@pci={{0x8}, {0x11}}]}, 0x38}}, 0x0)

15:11:33 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$eJzs3c9vG1kdAPDvTOImm81usrASPwRsWRYKqmon7m602tNyAaHVSogVJw7ZkLhRFDuOYmdpQiXS/wGJSpzgT+CAxAGpJ+7c4MalHJAKVKAGiYPRjCdpSOMkbRMb7M9HGs28eeP5vldr3nO/SfwCGFlXI2IvIq5ExMcRMVOcT4ot3u9u2XWPH91Z3n90ZzmJTuejvyV5fXYujrwm83Jxz8mI+N63I36YPB23tbO7vlSv17aKcqXd2Ky0dnZvrDWWVmurtY1qdWF+Ye7dm+9UL6yvbzR+9fBbax98/7e/+eKD3+9948dZs6aLuqP9uEjdrpcO42TGI+KDywg2AGNFf64MuiE8lzQiPhURb+bP/0yM5e/m+ZzwWAMA/wc6nZnozBwtAwDDLs1zYElaLnIB05Gm5XI3h/d6TKX1Zqt9/VZze2OlmyubjVJ6a61emytyhbNRSrLyfH78pFw9Vr4ZEa9FxE8nXsrL5eXz5xkAgIv18rH5/58T3fkfABhyk2ddsNifdgAA/XPm/A8ADB3zPwCMHvM/AIwe8z8AjB7zPwCMnmL+Hxt0OwCAvvjuhx9mW2e/+P7rlU92ttebn9xYqbXWy43t5fJyc2uzvNpsrtZr5eVm46z71ZvNzfm3Y/t2pV1rtSutnd3FRnN7o72Yf6/3Yq3Ul14BAKd57Y37f0wiYu+9l/ItjqzlYK6G4ZYOugHAwMj5w+jyLdwwuvwfHzhrLc+evyJ87zmCdX7yHC8CLtq1z8n/w6iS/4fRJf8Po0v+H0ZXp5P0WvM/PbwEABgqcvxAX3/+DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAENiOt+StFysBT4daVouR7wSEbNRSm6t1WtzEfFqRPxhojSRlecH3WgA4AWlf0mK9b+uzbw1fbz2SvKviXwfET/6+Uc/u73Ubm/NZ+f/fni+fa84Xx1E+wGAsxzM0wfz+IHHj+4sH2z9bM/Db3YXF83i7hdbt2Y8xvP9ZJQiYuofSVHuyj6vjF1A/L27EfHZk/qf5LmR2WLl0+Pxs9iv9DV++l/x07yuu8/+LT79DDHPWusVRsX9bPx5/6TnL42r+X7yxMWPJ/MR6sUdjH/7T41/6eH4N9Zj/Lt63hhv/+47PevuRnx+/KT4yWH8pEf8t84Z/09f+NKbveo6v4i4FifHPxqr0m5sVlo7uzfWGkurtdXaRrW6ML8w9+7Nd6qVPEddOchUP+2v711/9bT+T/WIP3lG/796aq87EwdHv/z3xz/48inxv/6Vk9//10+Jn82JXzs1/hNLU7/uuXx3Fn+l2/+7z/r+Xz9n/Ad/3l0556UAQB+0dnbXl+r12taFHpTigm945CC5pDY7GPKD7PP4i97nM0XK7H+gO5d9MOiRCbhsTx76QbcEAAAAAAAAAAAAAADo5dL/nCgddA8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYZv8JAAD//wqryik=")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
ftruncate(0xffffffffffffffff, 0x800)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80001d00c0d3)

[  566.891535][   T28] audit: type=1804 audit(1706886693.426:118): pid=16419 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1095/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:11:33 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
setsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, &(0x7f0000000080), 0x2)

15:11:33 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x0, &(0x7f0000000540))

[  566.989615][   T24] usbhid 4-1:0.0: can't add hid device: -71
[  566.998925][   T24] usbhid: probe of 4-1:0.0 failed with error -71
[  567.050097][   T24] usb 4-1: USB disconnect, device number 65
[  567.062500][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:11:33 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x1, &(0x7f0000000540)=[0x0])

15:11:33 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @fixed}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x3, 0x4)

15:11:33 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SENDCALLACCPT(r0, 0x891e)

[  567.232221][T16428] loop0: detected capacity change from 0 to 512
15:11:33 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x1, &(0x7f0000000540)=[0x0])

[  567.319534][T16428] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:11:33 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SENDCALLACCPT(r0, 0x891e)

[  567.356404][T16428] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1096/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:11:33 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x1, &(0x7f0000000540)=[0x0])

15:11:34 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, 0x0, 0x0}, 0x0)

[  567.503812][   T28] audit: type=1804 audit(1706886694.036:119): pid=16443 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1096/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  567.631321][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  567.779185][ T5149] usb 4-1: new high-speed USB device number 66 using dummy_hcd
[  568.039185][ T5149] usb 4-1: Using ep0 maxpacket: 16
[  568.193389][ T5149] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  568.204358][ T5149] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  568.214301][ T5149] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  568.227269][ T5149] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  568.237359][ T5149] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  568.247529][ T5149] usb 4-1: config 0 descriptor??
[  568.790510][ T5149] usbhid 4-1:0.0: can't add hid device: -71
[  568.796546][ T5149] usbhid: probe of 4-1:0.0 failed with error -71
[  568.805588][ T5149] usb 4-1: USB disconnect, device number 66
15:12:00 executing program 4:
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000140)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='\'\x9c.-\\\x00', &(0x7f0000000100)='&\x01\x00', 0x0)
r1 = dup(r0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
read$FUSE(r1, 0x0, 0x0)
tkill(0x0, 0xb)

15:12:00 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
ftruncate(0xffffffffffffffff, 0x800)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80001d00c0d3)

15:12:00 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SENDCALLACCPT(r0, 0x891e)

15:12:00 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[], 0x0}, 0x0)

15:12:00 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x0, 0x0, r0, &(0x7f0000000000), 0x70000}])

15:12:00 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SENDCALLACCPT(r0, 0x891e)

[  594.152406][T16452] loop0: detected capacity change from 0 to 512
15:12:00 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x0, 0x0, r0, &(0x7f0000000000), 0x70000}])

[  594.229330][T16452] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  594.289869][T16452] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1097/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:12:00 executing program 1:
ioctl$SIOCX25SENDCALLACCPT(0xffffffffffffffff, 0x891e)

[  594.399244][   T57] usb 4-1: new high-speed USB device number 67 using dummy_hcd
15:12:01 executing program 1:
ioctl$SIOCX25SENDCALLACCPT(0xffffffffffffffff, 0x891e)

[  594.447002][   T28] audit: type=1804 audit(1706886720.976:120): pid=16463 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1097/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:12:01 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x0, 0x0, r0, &(0x7f0000000000), 0x70000}])

15:12:01 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r1, 0x800)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(0xffffffffffffffff, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r3, 0x0, 0x80001d00c0d3)

15:12:01 executing program 1:
ioctl$SIOCX25SENDCALLACCPT(0xffffffffffffffff, 0x891e)

[  594.643399][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  594.692635][   T57] usb 4-1: Using ep0 maxpacket: 16
15:12:01 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000000), 0x70000}])

15:12:01 executing program 1:
syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SENDCALLACCPT(0xffffffffffffffff, 0x891e)

[  594.839563][   T57] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  594.872328][   T57] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
15:12:01 executing program 1:
syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SENDCALLACCPT(0xffffffffffffffff, 0x891e)

[  594.896098][   T57] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  594.928748][   T57] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  594.970579][   T57] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
15:12:01 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000000), 0x70000}])

[  595.018876][T16476] loop0: detected capacity change from 0 to 512
[  595.027173][   T57] usb 4-1: config 0 descriptor??
15:12:01 executing program 1:
syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SENDCALLACCPT(0xffffffffffffffff, 0x891e)

[  595.114035][T16476] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  595.157749][T16476] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1098/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:12:01 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x3c, r1, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x3}}]}, 0x3c}}, 0x0)

15:12:01 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000000), 0x70000}])

[  595.298444][   T28] audit: type=1804 audit(1706886721.826:121): pid=16486 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1098/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:12:01 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SFACILITIES(r0, 0x89e3, &(0x7f0000007300)={0x1b, 0x0, 0x8, 0x5, 0x6})

15:12:02 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r1, 0x800)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(0xffffffffffffffff, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r3, 0x0, 0x80001d00c0d3)

[  595.507487][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:12:02 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

15:12:02 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, 0x0}])

[  595.560119][   T57] usbhid 4-1:0.0: can't add hid device: -71
[  595.566713][   T57] usbhid: probe of 4-1:0.0 failed with error -71
[  595.599556][   T57] usb 4-1: USB disconnect, device number 67
15:12:02 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  595.772062][T16497] loop0: detected capacity change from 0 to 512
15:12:02 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, 0x0}])

15:12:02 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  595.844900][T16497] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  595.868198][T16497] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1099/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:12:02 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[], 0x0}, 0x0)

15:12:02 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r1, 0x800)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(0xffffffffffffffff, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r3, 0x0, 0x80001d00c0d3)

15:12:02 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  596.025230][   T28] audit: type=1804 audit(1706886722.556:122): pid=16506 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1099/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:12:02 executing program 2:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030000, 0x0, 0x1, 0x0, r0, 0x0}])

[  596.165535][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:12:02 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

15:12:02 executing program 2:
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000eafa7240936901b0293df400100109021b000124a80080090400000103000000090587e3"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

15:12:02 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  596.409499][T16520] loop0: detected capacity change from 0 to 512
[  596.493215][T16520] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  596.508718][T16520] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1100/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  596.509745][   T57] usb 4-1: new high-speed USB device number 68 using dummy_hcd
15:12:03 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

15:12:03 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  596.604953][   T28] audit: type=1804 audit(1706886723.136:123): pid=16526 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1100/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:12:03 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
creat(&(0x7f0000000200)='./bus\x00', 0x0)
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r1, 0x800)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r0, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r0, r3, 0x0, 0x80001d00c0d3)

15:12:03 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  596.723716][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:12:03 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  596.799378][   T57] usb 4-1: Using ep0 maxpacket: 16
15:12:03 executing program 2:
syz_clone3(&(0x7f0000000200)={0x280088000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  596.861769][T16535] loop0: detected capacity change from 0 to 512
15:12:03 executing program 1:
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  596.919002][T16535] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  596.919454][   T57] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  596.950611][   T57] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  596.961012][   T57] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  596.978476][   T57] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  596.987672][   T57] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  596.997629][T16535] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1101/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  597.013926][   T57] usb 4-1: config 0 descriptor??
15:12:03 executing program 2:
symlink(&(0x7f0000000000)='\x00', &(0x7f0000000080)='./file0\x00')
open$dir(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)

15:12:03 executing program 1:
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

15:12:03 executing program 2:
mknod(&(0x7f0000000200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8000, 0x400)
open(&(0x7f00000003c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0)

[  597.105125][   T28] audit: type=1804 audit(1706886723.626:124): pid=16545 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1101/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:12:03 executing program 2:
munmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000)
msync(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1)

15:12:03 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$eJzs3c9vG1kdAPDvTOImm81usrASPwRsWRYKqmon7m602tNyAaHVSogVJw7ZkLhRFDuOYmdpQiXS/wGJSpzgT+CAxAGpJ+7c4MalHJAKVKAGiYPRjCdpSOMkbRMb7M9HGs28eeP5vldr3nO/SfwCGFlXI2IvIq5ExMcRMVOcT4ot3u9u2XWPH91Z3n90ZzmJTuejvyV5fXYujrwm83Jxz8mI+N63I36YPB23tbO7vlSv17aKcqXd2Ky0dnZvrDWWVmurtY1qdWF+Ye7dm+9UL6yvbzR+9fBbax98/7e/+eKD3+9948dZs6aLuqP9uEjdrpcO42TGI+KDywg2AGNFf64MuiE8lzQiPhURb+bP/0yM5e/m+ZzwWAMA/wc6nZnozBwtAwDDLs1zYElaLnIB05Gm5XI3h/d6TKX1Zqt9/VZze2OlmyubjVJ6a61emytyhbNRSrLyfH78pFw9Vr4ZEa9FxE8nXsrL5eXz5xkAgIv18rH5/58T3fkfABhyk2ddsNifdgAA/XPm/A8ADB3zPwCMHvM/AIwe8z8AjB7zPwCMnmL+Hxt0OwCAvvjuhx9mW2e/+P7rlU92ttebn9xYqbXWy43t5fJyc2uzvNpsrtZr5eVm46z71ZvNzfm3Y/t2pV1rtSutnd3FRnN7o72Yf6/3Yq3Ul14BAKd57Y37f0wiYu+9l/ItjqzlYK6G4ZYOugHAwMj5w+jyLdwwuvwfHzhrLc+evyJ87zmCdX7yHC8CLtq1z8n/w6iS/4fRJf8Po0v+H0ZXp5P0WvM/PbwEABgqcvxAX3/+DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAENiOt+StFysBT4daVouR7wSEbNRSm6t1WtzEfFqRPxhojSRlecH3WgA4AWlf0mK9b+uzbw1fbz2SvKviXwfET/6+Uc/u73Ubm/NZ+f/fni+fa84Xx1E+wGAsxzM0wfz+IHHj+4sH2z9bM/Db3YXF83i7hdbt2Y8xvP9ZJQiYuofSVHuyj6vjF1A/L27EfHZk/qf5LmR2WLl0+Pxs9iv9DV++l/x07yuu8/+LT79DDHPWusVRsX9bPx5/6TnL42r+X7yxMWPJ/MR6sUdjH/7T41/6eH4N9Zj/Lt63hhv/+47PevuRnx+/KT4yWH8pEf8t84Z/09f+NKbveo6v4i4FifHPxqr0m5sVlo7uzfWGkurtdXaRrW6ML8w9+7Nd6qVPEddOchUP+2v711/9bT+T/WIP3lG/796aq87EwdHv/z3xz/48inxv/6Vk9//10+Jn82JXzs1/hNLU7/uuXx3Fn+l2/+7z/r+Xz9n/Ad/3l0556UAQB+0dnbXl+r12taFHpTigm945CC5pDY7GPKD7PP4i97nM0XK7H+gO5d9MOiRCbhsTx76QbcEAAAAAAAAAAAAAADo5dL/nCgddA8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYZv8JAAD//wqryik=")
creat(&(0x7f0000000200)='./bus\x00', 0x0)
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r1, 0x800)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r0, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r0, r3, 0x0, 0x80001d00c0d3)

15:12:03 executing program 1:
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

15:12:03 executing program 2:
syz_emit_ethernet(0x42, &(0x7f00000000c0)={@local, @local, @val, {@ipv4}}, 0x0)

15:12:03 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

15:12:03 executing program 2:
r0 = open$dir(&(0x7f0000000040)='.\x00', 0x0, 0x0)
symlink(&(0x7f0000000200)='./file0\x00', &(0x7f0000000080)='./file0\x00')
utimensat(r0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={{}, {0x0, 0xffffffffffffffff}}, 0x2)

[  597.315460][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:12:03 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

15:12:04 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

15:12:04 executing program 2:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0xa, &(0x7f0000002980)={0x0, @in, 0xfffffffd}, 0x98)

[  597.549286][   T57] usbhid 4-1:0.0: can't add hid device: -71
[  597.558826][   T57] usbhid: probe of 4-1:0.0 failed with error -71
15:12:04 executing program 2:
r0 = open$dir(&(0x7f0000000280)='.\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f00000002c0)='./file0\x00', 0x0)
openat(r0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
renameat(r0, &(0x7f0000000000)='./file0\x00', 0xffffffffffffff9c, 0x0)

[  597.591094][   T57] usb 4-1: USB disconnect, device number 68
[  597.599710][T16565] loop0: detected capacity change from 0 to 512
15:12:04 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  597.707331][T16565] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:12:04 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

15:12:04 executing program 2:
r0 = socket(0x1c, 0x10000001, 0x84)
setsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0xf, &(0x7f0000000280), 0xc)

[  597.749353][T16565] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1102/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:12:04 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

15:12:04 executing program 2:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r0, &(0x7f0000000440)={&(0x7f0000000000)=@in6={0x1c, 0x1c, 0x3}, 0x1c, &(0x7f0000000180)=[{&(0x7f0000000040)='R', 0x1}], 0x1, &(0x7f0000000380)=[@dstaddrv6={0x1c, 0x84, 0xa, @loopback}, @sndinfo={0x1c}], 0x38}, 0x0)

15:12:04 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[], 0x0}, 0x0)

[  597.959153][   T28] audit: type=1804 audit(1706886724.486:125): pid=16581 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1102/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:12:04 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, 0x0, 0x0)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

15:12:04 executing program 2:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
connect$inet(r1, &(0x7f0000000140)={0x10, 0x2}, 0x10)
r2 = dup2(r1, r0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x105, &(0x7f0000000180)=ANY=[@ANYBLOB="01", @ANYRES32=0x0], &(0x7f0000001700)=0xe)
setsockopt$inet_sctp_SCTP_DELAYED_SACK(r2, 0x84, 0xf, &(0x7f0000000080), 0xc)

15:12:04 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
creat(&(0x7f0000000200)='./bus\x00', 0x0)
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r1, 0x800)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r0, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r0, r3, 0x0, 0x80001d00c0d3)

15:12:04 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, 0x0, 0x0)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  598.248252][ T5107] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  598.260719][ T5107] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  598.271036][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  598.292656][ T5107] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
15:12:04 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, 0x0, 0x0)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

15:12:04 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  598.343686][ T5107] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  598.357416][ T5107] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  598.378141][ T5107] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
15:12:05 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  598.430507][   T57] usb 4-1: new high-speed USB device number 69 using dummy_hcd
15:12:05 executing program 2:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2808000, &(0x7f0000000400)=ANY=[@ANYBLOB='shortname=lower,shortname=winnt,iocharset=cp874,shortname=winnt,uni_xlate=0,nonumtail=0,shortname=win95,rodir,iocharset=koi8-r,utf8=0,uni_xlate=0,codepage=855,check=strict,smackfsfloor=blkio.bfq.io_d_recursive\x00,appraise,fsmagic=0x0000000000000004,\x00\x00\x00\x00\x00\x00'], 0x3, 0x27a, &(0x7f0000000080)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f00000006c0)=ANY=[@ANYBLOB="f35b47b796"], 0xb)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./bus\x00', 0x0)

15:12:05 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  598.636408][T16607] loop0: detected capacity change from 0 to 512
15:12:05 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  598.709209][   T57] usb 4-1: Using ep0 maxpacket: 16
15:12:05 executing program 2:
syz_mount_image$f2fs(&(0x7f00000000c0), &(0x7f0000000080)='./bus\x00', 0x2008410, &(0x7f0000000380)=ANY=[@ANYBLOB="66617374626f6f742c71756f7461000018bbdecde39739fcd1df176dde746ec834120600000000003b814e50a959736d6572462abc30ef5bccc70f73ecea54b5e5be45aca9836c319f43715d8524212c666d0200685f6d653557e79a002208ce996dda659bd5ba0f4ce5c2080002223dc60000000000000044cd0a1e368652334a4127a5f789d267fd92f6a5659301001d5b9fa9b40fe4d76afc3a989c6d60045663c29cbdc4c766a7eb77cc369c71e57fafab52f325ca91e684d3a09c160191acf5912afdcc1c061835177056b06e7068c40f757dbbe3ffff7f5c544f1525aa8d00"/241], 0x1, 0x551a, &(0x7f00000056c0)="$eJzs3EtvG1UbB/AzTtP72zdCLNh1pAopkWqrzqWCXYBWXESqiMuCFTj2xHJre6LYcUJWLFgiFnwTBBIrlnwGFqzZIRYgdkggz5lAQ7lVcWKa/H7S+D9zPH7mzMiK9MxEDsCZNZf+9EMSroVLIYSZEMLVJBTrSbkUVmM8E0K4HkKoPLQk5fhvA+dDCJdDCNfGxWPNpHzrk5ujGyvfv/bjl19fOHfl0y++md5ZA9P2bAihtxXXd3sx83bM++V4Y9Qpsrc8KjO+0XtQbucxd7ONosJu42C/RpFL7bh/vrUzGOdmt9EcZ7uzWYxv9eMBB6P2QZ3iA/cb28V2K9sosjPIi2zvx3nt7ce/bfuDYazTKuu9X5QPw+FBxvFsL4vns/WgyGZ/WI7Hunkr2xvnqMzycKGZd1vFPDaOcqX/217v9Hf20lG2Pejk/XSlVn+uVr9drW/nrWyYLVcbvdbt5XS+3R3vVh1mjd5qO8/b3azWzHsL6Xy72azW6+n8nWyj0+in9XptqXarurJQrt1MX773dtptpfPjfLHT3xl2uoN0M99O4ycW0sXa0vML6Y16+ubaerr+xt27a+tvvXvnnXsvrL36UrnTI9NK5xdvLS5W67eqi/WFM3T+H5aTfozzT452eeDv+YIBPLZH+v+g/weO35Pe/4dJ9v/jlkr//8/9b0X/f9rOH45E/w8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcGZ9O/vZK8XKXNy+Uo7/rxx6qtxOQgiVEMIvf2ImnD9Uc6asM/sX+8/+YQ5fJaGoMD7GhXK5HEJYLZef/3/cVwEAAABOr88/uP5x7Nbjy9y0J8RJijdtKlffm1C9JIQwO/fdhKpVxi9PT6hY8f0+F/YmVK24gXVxQsXiLbdzk6r2r8wciosPRRKjcqLTAQAATsThTuBkuxAAAABO0kfTngDTkYSDR5kHz4KL/7z//YHgpUPvAQAAAE+gZNoTAAAAAI5d0f/7/T8AAAA43eLv/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMCv7NzPbeJAFAfgZ4OB/adFq71vK3uDMlJCjjkGCkgTlEBaSAPUQG4pIYIIe4TkCKRIjGMFfZ/kccaOfjMDXN5YMgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0KXnaj1/vP/3cGnObn+ZPKsBAAAATtlW63n9x7Tp/0jXf6VLf1K/iIgyIk7V7oMYtTIHKac68//Vuzk8RdQJhzHG6fgeEf/T8fq7608BAAAArtdmuZo11XrTTPueEJ+p2bQpf95kyisiopq+ZEorD83fTGH173sYd5nS6g2sSaawZsttePreKNcgbYPWKa1ksqi/xLpXdjMuAADQp3YlcKYKAQAA4Arc9j0B+lEcm+NzxnFzSg8Ev7V6AAAAwBdU9D0BAAAAoHN1/e/9fwAAAHDdmvf/AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0KVttZ5vlqvZufuLD+bs9pfJtyIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3tifdxQIgTAIg73rO5O5/2GlQUNjkyoQPv7GYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAN7/7y/+JqXEmmXttLD2PJGunxtapsXduHP1hfP0aAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgYn9eUiAEgiAK5oz/nfT9DysJegYRIqDhUUUtGgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCLfvfL/4mpcSaZO20sHY8ka1eNravG3oPG0YPx9m8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgYuf+feOm4gCAf22frz8AEQLKEEBFYoCFptfS0pUBFDHwJyBF6aUErhTaDLSKkLKwocxdEIwIIYHC1v+hcyN1KVuHDEFiBtlnp24b4FSKfU0+H+n5fe9qvfd9vlOVr58TAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACo7bwbr6RVnBWHmXFcv3d7d3256Lcf6gs3N+/MF62Ik5bzfgq82nxxYq67RAAAADg8srq+j4i7+dZi0aczZf2f1+cUNf93z43jup5/uO7f3l0/Wv3TfF3///rLvZf2JpoZz1MMurI6Gp56NJXe/7TEqff8v57RK698ee8lKz+Q9IONF3fy8nom39y69V6/DI+0kS0A8DhO1n0V1D8PFf2gy8QAODR6jcK7rv+zmW5zAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGjDzkY8U8dJRMz37seF7d315f36m5t35ut27saNzeaYxRB5RKysjoanWlzLtLt67fqnS6PR8Er7wYmI6G72KvhognMi/vmc6usZ3a3i74NkOtLoNEirz2da8nmSQf3de/Ijd/QfEgAAB1ZetaKuv5tvLRbvJbMRf37/YP3/RiOOCev/ex+fu92cq1n/D1pb4fRbWLv0+cLVa9ffWr20dHF4cfjZ26cH7wzOnD979vxCea9kYSVSd0wAAAD4D/pVa9b/6eyj+//HG3FMWP9/8e3gq+Zcmfp/X/c3/brOBAAA4DDq70UvvPbH78k+ZyT9fny5tLZ2ZTA+7r0+PT62mu5jOlK1Zv2fzXadFQAAANCGnY3kgf3/C404Jtz/f/aHl39qjplFxLGIyxExPLl8eXShveVMtTZ+UbmcqN/1SgEAAOjKsao19//z8vn/dO+RhzQi3nx9HNd/62qS+j97/+sfm3M1n/8/094Sp1I6N74eZT8X0ZvrOiMAAAAOsqNVK4r93/KtxU9+Pv5h3/P/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG37KwAA//+cMzW5")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
open_by_handle_at(r0, &(0x7f0000000080)=@ocfs2_parent={0x18, 0x2, {{0x8}}}, 0x0)

[  598.772608][T16607] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  598.799988][T16607] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1103/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  598.860308][   T57] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  598.885724][   T28] audit: type=1804 audit(1706886725.416:126): pid=16618 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1103/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  598.889713][   T57] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
15:12:05 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f00000005c0))
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r1, 0x800)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r0, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r0, r3, 0x0, 0x80001d00c0d3)

15:12:05 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  598.953850][   T57] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  598.983407][   T57] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  599.047811][   T57] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  599.049562][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  599.081010][T16590] chnl_net:caif_netlink_parms(): no params data found
[  599.106540][   T57] usb 4-1: config 0 descriptor??
15:12:05 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

15:12:05 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, 0x0, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  599.321678][T16628] loop0: detected capacity change from 0 to 512
[  599.357760][T16628] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  599.374614][T16628] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1104/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  599.433828][T16590] bridge0: port 1(bridge_slave_0) entered blocking state
[  599.441229][T16590] bridge0: port 1(bridge_slave_0) entered disabled state
[  599.448581][T16590] bridge_slave_0: entered allmulticast mode
[  599.469897][   T28] audit: type=1804 audit(1706886725.996:127): pid=16634 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1104/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  599.513027][T16590] bridge_slave_0: entered promiscuous mode
15:12:06 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, 0x0, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

15:12:06 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f00000005c0))
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r1, 0x800)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r0, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r0, r3, 0x0, 0x80001d00c0d3)

[  599.537467][T16590] bridge0: port 2(bridge_slave_1) entered blocking state
[  599.548452][T16590] bridge0: port 2(bridge_slave_1) entered disabled state
[  599.573032][T16590] bridge_slave_1: entered allmulticast mode
[  599.593750][T16590] bridge_slave_1: entered promiscuous mode
[  599.626335][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  599.659325][   T57] usbhid 4-1:0.0: can't add hid device: -71
[  599.678446][   T57] usbhid: probe of 4-1:0.0 failed with error -71
15:12:06 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, 0x0, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  599.720762][   T57] usb 4-1: USB disconnect, device number 69
[  599.773520][T16590] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
15:12:06 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040), 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  599.827995][T16590] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  599.911690][T16641] loop0: detected capacity change from 0 to 512
15:12:06 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040), 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  599.984001][T16641] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  600.012916][T16641] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1105/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:12:06 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB], 0x0}, 0x0)

[  600.084039][T16590] team0: Port device team_slave_0 added
[  600.106071][T16590] team0: Port device team_slave_1 added
[  600.121866][   T28] audit: type=1804 audit(1706886726.656:128): pid=16647 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1105/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:12:06 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040), 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

15:12:06 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f00000005c0))
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r1, 0x800)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r0, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r0, r3, 0x0, 0x80001d00c0d3)

[  600.271349][T16590] batman_adv: batadv0: Adding interface: batadv_slave_0
[  600.278359][T16590] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
15:12:06 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  600.372022][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  600.387343][T16590] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  600.406036][T16590] batman_adv: batadv0: Adding interface: batadv_slave_1
[  600.415295][T16590] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  600.459411][ T5116] Bluetooth: hci5: command 0x0409 tx timeout
15:12:07 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  600.475781][T16590] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  600.564947][ T5149] usb 4-1: new high-speed USB device number 70 using dummy_hcd
[  600.582843][T16656] loop0: detected capacity change from 0 to 512
15:12:07 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)

[  600.646697][T16656] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  600.660519][T16656] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1106/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:12:07 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, 0x0, 0x0)

[  600.771322][   T28] audit: type=1804 audit(1706886727.306:129): pid=16663 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1106/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  600.774807][T16590] hsr_slave_0: entered promiscuous mode
15:12:07 executing program 0:
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

[  600.829162][ T5149] usb 4-1: Using ep0 maxpacket: 16
[  600.877574][T16590] hsr_slave_1: entered promiscuous mode
[  600.894523][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  600.914616][T16590] debugfs: Directory 'hsr0' with parent 'hsr' already present!
15:12:07 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, 0x0, 0x0)

[  600.924976][T16590] Cannot create hsr debugfs directory
[  600.959966][ T5149] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  600.971431][ T5149] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  601.009318][ T5149] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  601.049475][ T5149] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  601.074735][ T5149] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  601.128352][ T5149] usb 4-1: config 0 descriptor??
15:12:07 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, 0x0, 0x0)

[  601.173244][   T28] audit: type=1804 audit(1706886727.696:130): pid=16670 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1107/bus" dev="sda1" ino=1962 res=1 errno=0
15:12:07 executing program 2:
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mkdir(&(0x7f00000001c0)='./file0/file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='workdir=./bus,lowerdir=./file0,upperdir=./file1'])
chdir(&(0x7f0000000140)='./bus\x00')
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x0)

15:12:07 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)

15:12:07 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)

15:12:08 executing program 2:
syz_mount_image$gfs2(&(0x7f0000000040), &(0x7f0000000100)='./file0\x00', 0x8c1b, &(0x7f0000000140)={[{@quota_on}, {@locktable={'locktable', 0x3d, ':'}}, {@lockproto_nolock}, {@barrier}, {@loccookie}, {@discard}, {@quota_off}, {@quota_quantum={'quota_quantum', 0x3d, 0x8}}, {@rgrplvb}, {@locktable={'locktable', 0x3d, '@!-(}'}}, {@localcaching}, {@localflocks}, {@quota_on}, {@barrier}]}, 0x1, 0x1272b, &(0x7f0000014bc0)="$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")
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000000340)={0x2020}, 0xcb0a)

15:12:08 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)

[  601.553610][T16590] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  601.689318][ T5149] usbhid 4-1:0.0: can't add hid device: -71
[  601.695652][ T5149] usbhid: probe of 4-1:0.0 failed with error -71
15:12:08 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4}, 0xe)

[  601.757663][ T5149] usb 4-1: USB disconnect, device number 70
[  601.887558][T16590] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
15:12:08 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4}, 0xe)

15:12:08 executing program 0:
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

[  602.038256][T16590] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
15:12:08 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB], 0x0}, 0x0)

15:12:08 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x4, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4}, 0xe)

[  602.251301][T16590] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
15:12:08 executing program 1:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@dioread_lock}, {@debug}, {@noauto_da_alloc}, {@barrier}, {@stripe}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}]}, 0x12, 0x4b4, &(0x7f0000000540)="$eJzs3d9rW9cdAPDvvbay/HBmZ9tDFlgWlgwnbJHseEnMHrIMxvIU2Ja9Z54tG2PZMpacxCYMh/0BgzHWQp/61JdC/4BCyZ9QCoH2vbSlpbRJ+9CHtiqSrtLElWKHyL5gfz5wfM+5V9L3e2x0dc+9x7oB7FunIuJqRAxExLmIGM7Wp1m51mxstB/36OHd6WZJotG48VkSSbau81pJtjzSfkocjIi/XYv4Z/LDuLW19YWpSqW8krVL9cXlUm1t/fz84tRcea68NDExfmny8uTFybG+9HMkIq786aP//+e1P19567e337/5ydl/NdMayrY/2Y9+ane90PpddAxGxMpOBMvBQLYs5JwHAADb0zzG/0lE/Kp1/D8cA62jUwAAAGAvafxhKL5OIhoAAADAnpW25sAmaTGbCzAUaVostufw/iwOp5Vqrf6b2erq0kx7ruxIFNLZ+Up5LJsrPBKFpNkez+bYdtoXNrUnIuJYRPxv+FCrXZyuVmbyPvkBAAAA+8SRTeP/L4fb438AAABgjxnJOwEAAABgxxn/AwAAwN5n/A8AAAB72l+uX2+WRuf+1zO31lYXqrfOz5RrC8XF1enidHVluThXrc61vrNvcavXq1Sry7+LpdU7pXq5Vi/V1tZvLlZXl+o355+6BTYAAACwi4798v57SURs/P5QqzQdyDspYFckz/PgD3cuD2D3DeSdAJCbwbwTAHJTyDsBIHdbnQfoOXnn7f7nAgAA7IzRn/e+/u/cAOxtad4JAAC7zvV/2L8KZgDCvvfjLba/+PX/RuO5EgIAAPpuqFWStJhdCxyKNC0WI462bgtQSGbnK+WxbHzw7nDhR832eOuZyfP97zAAAAAAAAAAAAAAAAAAAAAAAAAA7GONRhINAAAAYE+LSD9OWt/mHzE6fGZo8/mBA8lXw61lRNx+5cZLd6bq9ZXx5vrPH6+vv5ytv5DHGQwAAABgs844vTOOBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIB+evTw7nSn7GbcT/8YESPd4g/GwdbyYBQi4vAXSQw+8bwkIgb6EH/jXkQc7xY/aaYVI1kW3eIfyjF+GhFH+hAf9rP7zf3P1W7vvzROtZbd33+DWXlRvfd/6eP930CP/c/RbcY48eCNUs/49yJODHbf/3TiJz3in95m/H/8fX2917bGqxGjXT9/kqdileqLy6Xa2vr5+cWpufJceWliYvzS5OXJi5Njpdn5Sjn72TXGf3/x5rfP6v/hHvFHtuj/mW32/5sHdx7+tF0tdIt/9nT3z9/jPeKn2Wffr7N6c/top77Rrj/p5OvvnHxW/2d69H+rv//Zbfb/3F///cE2HwoA7ILa2vrCVKVSXlFRUVF5XMl7zwQAAPTb9wf9eWcCAAAAAAAAAAAAAAAAAAAA+9dufJ3Y5pgb+XQVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCZvgsAAP//96DU7Q==")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000))
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f00000000c0)=0x80000)
sendfile(r0, r1, 0x0, 0x1ff)

[  602.491505][T16693] loop1: detected capacity change from 0 to 512
[  602.509435][ T5116] Bluetooth: hci5: command 0x041b tx timeout
[  602.539478][ T5152] usb 4-1: new high-speed USB device number 71 using dummy_hcd
[  602.562018][T16693] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a817c028, mo2=0000]
[  602.599380][T16693] System zones: 0-2, 18-18, 34-34
[  602.630256][   T28] audit: type=1804 audit(1706886729.156:131): pid=16698 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1108/bus" dev="sda1" ino=1964 res=1 errno=0
[  602.656663][T16693] EXT4-fs (loop1): 1 orphan inode deleted
15:12:09 executing program 1:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@dioread_lock}, {@debug}, {@noauto_da_alloc}, {@barrier}, {@stripe}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}]}, 0x12, 0x4b4, &(0x7f0000000540)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000))
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f00000000c0)=0x80000)
sendfile(r0, r1, 0x0, 0x1ff)

[  602.669525][T16693] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  602.683020][T16693] ext4 filesystem being mounted at /root/syzkaller-testdir2849955197/syzkaller.ylhN08/582/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  602.762302][ T5109] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  602.817275][T16590] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  602.819326][ T5152] usb 4-1: Using ep0 maxpacket: 16
[  602.838657][T16590] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  602.863952][T16590] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  602.892461][T16590] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  602.949544][ T5152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  602.966834][ T5152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  603.007229][ T5152] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  603.042442][ T5152] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  603.073673][T16701] loop1: detected capacity change from 0 to 512
[  603.076584][ T5152] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  603.125007][ T5152] usb 4-1: config 0 descriptor??
[  603.198120][T16701] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a817c028, mo2=0000]
[  603.229423][T16701] System zones: 0-2, 18-18, 34-34
[  603.243093][T16701] EXT4-fs (loop1): 1 orphan inode deleted
[  603.249179][T16701] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  603.253590][T16590] 8021q: adding VLAN 0 to HW filter on device bond0
[  603.290535][T16701] ext4 filesystem being mounted at /root/syzkaller-testdir2849955197/syzkaller.ylhN08/583/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  603.309014][T16590] 8021q: adding VLAN 0 to HW filter on device team0
[  603.330230][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[  603.337750][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[  603.358662][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[  603.365895][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
15:12:10 executing program 1:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@dioread_lock}, {@debug}, {@noauto_da_alloc}, {@barrier}, {@stripe}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}]}, 0x12, 0x4b4, &(0x7f0000000540)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000))
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f00000000c0)=0x80000)
sendfile(r0, r1, 0x0, 0x1ff)

15:12:10 executing program 0:
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

[  603.570573][ T5109] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  603.705518][ T5152] usbhid 4-1:0.0: can't add hid device: -71
[  603.731759][ T5152] usbhid: probe of 4-1:0.0 failed with error -71
[  603.785782][ T5152] usb 4-1: USB disconnect, device number 71
[  603.887970][T16710] loop1: detected capacity change from 0 to 512
[  603.907615][T16590] 8021q: adding VLAN 0 to HW filter on device batadv0
[  603.970814][T16710] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a817c028, mo2=0000]
[  603.978851][T16710] System zones: 0-2, 18-18, 34-34
[  603.994713][T16710] EXT4-fs (loop1): 1 orphan inode deleted
[  604.022754][T16710] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  604.048746][T16710] ext4 filesystem being mounted at /root/syzkaller-testdir2849955197/syzkaller.ylhN08/584/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  604.128500][   T28] audit: type=1804 audit(1706886730.656:132): pid=16719 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1109/bus" dev="sda1" ino=1964 res=1 errno=0
15:12:10 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB], 0x0}, 0x0)

15:12:10 executing program 1:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@dioread_lock}, {@debug}, {@noauto_da_alloc}, {@barrier}, {@stripe}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}]}, 0x12, 0x4b4, &(0x7f0000000540)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000))
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f00000000c0)=0x80000)
sendfile(r0, r1, 0x0, 0x1ff)

[  604.270766][ T5109] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:12:11 executing program 2:
r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x0, 0x0)
ioctl$I2C_RDWR(r0, 0x707, &(0x7f0000000640)={&(0x7f00000005c0)=[{0x0, 0x0, 0x1, &(0x7f0000001e00)="86"}, {0x0, 0x4403, 0x0, 0x0}], 0x2})

15:12:11 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000a00), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r0, &(0x7f0000000ac0)={&(0x7f00000009c0), 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, r1, 0xd05, 0x0, 0x0, {}, [@NL802154_ATTR_PID={0x8}]}, 0x1c}}, 0x0)

[  604.580574][T16725] loop1: detected capacity change from 0 to 512
[  604.583908][T16590] veth0_vlan: entered promiscuous mode
[  604.599313][ T5116] Bluetooth: hci5: command 0x040f tx timeout
[  604.607935][ T5152] usb 4-1: new high-speed USB device number 72 using dummy_hcd
[  604.628632][T16590] veth1_vlan: entered promiscuous mode
[  604.655537][T16725] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a817c028, mo2=0000]
[  604.687196][T16590] veth0_macvtap: entered promiscuous mode
[  604.689772][T16725] System zones: 
[  604.701584][T16590] veth1_macvtap: entered promiscuous mode
[  604.713417][T16725] 0-2, 18-18, 34-34
15:12:11 executing program 2:
socketpair(0x3, 0x0, 0x0, &(0x7f0000000180))

[  604.761766][T16725] EXT4-fs (loop1): 1 orphan inode deleted
[  604.800069][T16725] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  604.833152][T16590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  604.855961][T16725] ext4 filesystem being mounted at /root/syzkaller-testdir2849955197/syzkaller.ylhN08/585/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  604.864676][T16590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
15:12:11 executing program 2:
bpf$PROG_LOAD_XDP(0x17, 0x0, 0x0)

[  604.879232][ T5152] usb 4-1: Using ep0 maxpacket: 16
[  604.898075][T16590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  604.938606][T16590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  604.965451][T16590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
15:12:11 executing program 2:
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000500)={@cgroup, 0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)

[  604.988093][T16590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  604.999645][ T5152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  605.015915][ T5152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  605.021367][T16590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
15:12:11 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

[  605.046144][T16590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  605.048649][ T5152] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  605.056179][T16590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  605.078734][ T5152] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
15:12:11 executing program 2:
r0 = socket$inet6_udplite(0x1c, 0x2, 0x88)
getsockopt$inet6_buf(r0, 0x29, 0x23, 0x0, &(0x7f00000000c0))

[  605.121682][ T5152] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  605.122813][T16590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  605.145790][ T5152] usb 4-1: config 0 descriptor??
15:12:11 executing program 1:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@dioread_lock}, {@debug}, {@noauto_da_alloc}, {@barrier}, {@stripe}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}]}, 0x12, 0x4b4, &(0x7f0000000540)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000))
sendfile(r0, r1, 0x0, 0x1ff)

[  605.176514][T16590] batman_adv: batadv0: Interface activated: batadv_slave_0
[  605.227331][ T5109] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  605.232174][T16590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  605.259711][T16590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  605.277468][T16590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  605.288206][T16590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  605.315265][T16590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  605.328657][T16590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  605.342967][T16590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  605.353964][T16590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  605.364654][T16590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
15:12:11 executing program 2:
r0 = socket$inet6_udplite(0x1c, 0x2, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0x1c, 0x1c, 0x2}, 0x1c)

[  605.377650][T16590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  605.396259][T16590] batman_adv: batadv0: Interface activated: batadv_slave_1
[  605.427300][T16590] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  605.440757][T16590] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  605.453453][T16590] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  605.467332][T16590] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  605.545709][T16749] loop0: detected capacity change from 0 to 512
[  605.601985][T16749] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  605.644889][T16749] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1110/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  605.703088][T16750] loop1: detected capacity change from 0 to 512
[  605.709636][ T5152] usbhid 4-1:0.0: can't add hid device: -71
[  605.709764][ T5152] usbhid: probe of 4-1:0.0 failed with error -71
[  605.712682][ T5152] usb 4-1: USB disconnect, device number 72
15:12:12 executing program 2:
dup2(0xffffffffffffffff, 0xffffffffffffff9c)
socket$inet_sctp(0x2, 0x1, 0x84)

[  605.796110][T16750] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a817c028, mo2=0000]
[  605.832904][T16750] System zones: 0-2, 18-18, 34-34
[  605.860727][T16750] EXT4-fs (loop1): 1 orphan inode deleted
[  605.866695][T16750] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  605.893501][    T8] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  605.894376][   T28] audit: type=1804 audit(1706886732.426:133): pid=16758 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1110/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  605.904181][T16750] ext4 filesystem being mounted at /root/syzkaller-testdir2849955197/syzkaller.ylhN08/586/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  605.955015][    T8] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
15:12:12 executing program 1:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@dioread_lock}, {@debug}, {@noauto_da_alloc}, {@barrier}, {@stripe}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}]}, 0x12, 0x4b4, &(0x7f0000000540)="$eJzs3d9rW9cdAPDvvbay/HBmZ9tDFlgWlgwnbJHseEnMHrIMxvIU2Ja9Z54tG2PZMpacxCYMh/0BgzHWQp/61JdC/4BCyZ9QCoH2vbSlpbRJ+9CHtiqSrtLElWKHyL5gfz5wfM+5V9L3e2x0dc+9x7oB7FunIuJqRAxExLmIGM7Wp1m51mxstB/36OHd6WZJotG48VkSSbau81pJtjzSfkocjIi/XYv4Z/LDuLW19YWpSqW8krVL9cXlUm1t/fz84tRcea68NDExfmny8uTFybG+9HMkIq786aP//+e1P19567e337/5ydl/NdMayrY/2Y9+ane90PpddAxGxMpOBMvBQLYs5JwHAADb0zzG/0lE/Kp1/D8cA62jUwAAAGAvafxhKL5OIhoAAADAnpW25sAmaTGbCzAUaVostufw/iwOp5Vqrf6b2erq0kx7ruxIFNLZ+Up5LJsrPBKFpNkez+bYdtoXNrUnIuJYRPxv+FCrXZyuVmbyPvkBAAAA+8SRTeP/L4fb438AAABgjxnJOwEAAABgxxn/AwAAwN5n/A8AAAB72l+uX2+WRuf+1zO31lYXqrfOz5RrC8XF1enidHVluThXrc61vrNvcavXq1Sry7+LpdU7pXq5Vi/V1tZvLlZXl+o355+6BTYAAACwi4798v57SURs/P5QqzQdyDspYFckz/PgD3cuD2D3DeSdAJCbwbwTAHJTyDsBIHdbnQfoOXnn7f7nAgAA7IzRn/e+/u/cAOxtad4JAAC7zvV/2L8KZgDCvvfjLba/+PX/RuO5EgIAAPpuqFWStJhdCxyKNC0WI462bgtQSGbnK+WxbHzw7nDhR832eOuZyfP97zAAAAAAAAAAAAAAAAAAAAAAAAAA7GONRhINAAAAYE+LSD9OWt/mHzE6fGZo8/mBA8lXw61lRNx+5cZLd6bq9ZXx5vrPH6+vv5ytv5DHGQwAAABgs844vTOOBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIB+evTw7nSn7GbcT/8YESPd4g/GwdbyYBQi4vAXSQw+8bwkIgb6EH/jXkQc7xY/aaYVI1kW3eIfyjF+GhFH+hAf9rP7zf3P1W7vvzROtZbd33+DWXlRvfd/6eP930CP/c/RbcY48eCNUs/49yJODHbf/3TiJz3in95m/H/8fX2917bGqxGjXT9/kqdileqLy6Xa2vr5+cWpufJceWliYvzS5OXJi5Njpdn5Sjn72TXGf3/x5rfP6v/hHvFHtuj/mW32/5sHdx7+tF0tdIt/9nT3z9/jPeKn2Wffr7N6c/top77Rrj/p5OvvnHxW/2d69H+rv//Zbfb/3F///cE2HwoA7ILa2vrCVKVSXlFRUVF5XMl7zwQAAPTb9wf9eWcCAAAAAAAAAAAAAAAAAAAA+9dufJ3Y5pgb+XQVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCZvgsAAP//96DU7Q==")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
sendfile(r0, r1, 0x0, 0x1ff)

15:12:12 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$eJzs3c9vG1kdAPDvTOImm81usrASPwRsWRYKqmon7m602tNyAaHVSogVJw7ZkLhRFDuOYmdpQiXS/wGJSpzgT+CAxAGpJ+7c4MalHJAKVKAGiYPRjCdpSOMkbRMb7M9HGs28eeP5vldr3nO/SfwCGFlXI2IvIq5ExMcRMVOcT4ot3u9u2XWPH91Z3n90ZzmJTuejvyV5fXYujrwm83Jxz8mI+N63I36YPB23tbO7vlSv17aKcqXd2Ky0dnZvrDWWVmurtY1qdWF+Ye7dm+9UL6yvbzR+9fBbax98/7e/+eKD3+9948dZs6aLuqP9uEjdrpcO42TGI+KDywg2AGNFf64MuiE8lzQiPhURb+bP/0yM5e/m+ZzwWAMA/wc6nZnozBwtAwDDLs1zYElaLnIB05Gm5XI3h/d6TKX1Zqt9/VZze2OlmyubjVJ6a61emytyhbNRSrLyfH78pFw9Vr4ZEa9FxE8nXsrL5eXz5xkAgIv18rH5/58T3fkfABhyk2ddsNifdgAA/XPm/A8ADB3zPwCMHvM/AIwe8z8AjB7zPwCMnmL+Hxt0OwCAvvjuhx9mW2e/+P7rlU92ttebn9xYqbXWy43t5fJyc2uzvNpsrtZr5eVm46z71ZvNzfm3Y/t2pV1rtSutnd3FRnN7o72Yf6/3Yq3Ul14BAKd57Y37f0wiYu+9l/ItjqzlYK6G4ZYOugHAwMj5w+jyLdwwuvwfHzhrLc+evyJ87zmCdX7yHC8CLtq1z8n/w6iS/4fRJf8Po0v+H0ZXp5P0WvM/PbwEABgqcvxAX3/+DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAENiOt+StFysBT4daVouR7wSEbNRSm6t1WtzEfFqRPxhojSRlecH3WgA4AWlf0mK9b+uzbw1fbz2SvKviXwfET/6+Uc/u73Ubm/NZ+f/fni+fa84Xx1E+wGAsxzM0wfz+IHHj+4sH2z9bM/Db3YXF83i7hdbt2Y8xvP9ZJQiYuofSVHuyj6vjF1A/L27EfHZk/qf5LmR2WLl0+Pxs9iv9DV++l/x07yuu8/+LT79DDHPWusVRsX9bPx5/6TnL42r+X7yxMWPJ/MR6sUdjH/7T41/6eH4N9Zj/Lt63hhv/+47PevuRnx+/KT4yWH8pEf8t84Z/09f+NKbveo6v4i4FifHPxqr0m5sVlo7uzfWGkurtdXaRrW6ML8w9+7Nd6qVPEddOchUP+2v711/9bT+T/WIP3lG/796aq87EwdHv/z3xz/48inxv/6Vk9//10+Jn82JXzs1/hNLU7/uuXx3Fn+l2/+7z/r+Xz9n/Ad/3l0556UAQB+0dnbXl+r12taFHpTigm945CC5pDY7GPKD7PP4i97nM0XK7H+gO5d9MOiRCbhsTx76QbcEAAAAAAAAAAAAAADo5dL/nCgddA8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYZv8JAAD//wqryik=")
r0 = creat(0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

15:12:12 executing program 2:
pipe2(&(0x7f0000000400)={<r0=>0xffffffffffffffff}, 0x0)
poll(&(0x7f0000000140)=[{r0, 0x2000}], 0x1, 0x0)

[  606.027199][ T5109] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  606.051972][    T8] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  606.059791][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  606.076059][    T8] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
15:12:12 executing program 4:
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000140)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='\'\x9c.-\\\x00', &(0x7f0000000100)='&\x01\x00', 0x0)
r1 = dup(r0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
read$FUSE(r1, 0x0, 0x0)
tkill(0x0, 0xb)

15:12:12 executing program 2:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x21, &(0x7f0000000100), &(0x7f0000000180)=0x10)

15:12:12 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00222200000096231306e53f070c00002ddc"], 0x0}, 0x0)

15:12:12 executing program 2:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x141042, 0x0)
sendfile(r0, r1, 0x0, 0x0)
r2 = syz_open_dev$loop(&(0x7f0000000280), 0x0, 0x0)
sendfile(r0, r2, 0x0, 0x0)

[  606.289836][T16766] loop1: detected capacity change from 0 to 512
[  606.303780][T16771] loop0: detected capacity change from 0 to 512
[  606.317774][ T5152] libceph: connect (1)[c::]:6789 error -101
[  606.330190][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  606.364525][T16766] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a817c028, mo2=0000]
[  606.374413][T16766] System zones: 0-2, 18-18, 34-34
[  606.402470][T16771] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  606.422409][T16766] EXT4-fs (loop1): 1 orphan inode deleted
[  606.428226][T16766] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  606.441473][T16766] ext4 filesystem being mounted at /root/syzkaller-testdir2849955197/syzkaller.ylhN08/587/file1 supports timestamps until 2038-01-19 (0x7fffffff)
15:12:13 executing program 1:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@dioread_lock}, {@debug}, {@noauto_da_alloc}, {@barrier}, {@stripe}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}]}, 0x12, 0x4b4, &(0x7f0000000540)="$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")
sendfile(r0, 0xffffffffffffffff, 0x0, 0x1ff)

15:12:13 executing program 2:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000580)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x3, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}, {[], {{0x9, 0x5, 0x82, 0x2, 0x40}}, {{0x9, 0x5, 0x3, 0x2, 0x10, 0x0, 0x5}}}}}]}}]}}, 0x0)

[  606.467554][T16771] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1111/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  606.524835][ T5109] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  606.581317][   T28] audit: type=1804 audit(1706886733.116:134): pid=16785 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1111/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  606.609952][    T8] usb 4-1: new high-speed USB device number 73 using dummy_hcd
[  606.621471][ T5154] libceph: connect (1)[c::]:6789 error -101
15:12:13 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$eJzs3c9vG1kdAPDvTOImm81usrASPwRsWRYKqmon7m602tNyAaHVSogVJw7ZkLhRFDuOYmdpQiXS/wGJSpzgT+CAxAGpJ+7c4MalHJAKVKAGiYPRjCdpSOMkbRMb7M9HGs28eeP5vldr3nO/SfwCGFlXI2IvIq5ExMcRMVOcT4ot3u9u2XWPH91Z3n90ZzmJTuejvyV5fXYujrwm83Jxz8mI+N63I36YPB23tbO7vlSv17aKcqXd2Ky0dnZvrDWWVmurtY1qdWF+Ye7dm+9UL6yvbzR+9fBbax98/7e/+eKD3+9948dZs6aLuqP9uEjdrpcO42TGI+KDywg2AGNFf64MuiE8lzQiPhURb+bP/0yM5e/m+ZzwWAMA/wc6nZnozBwtAwDDLs1zYElaLnIB05Gm5XI3h/d6TKX1Zqt9/VZze2OlmyubjVJ6a61emytyhbNRSrLyfH78pFw9Vr4ZEa9FxE8nXsrL5eXz5xkAgIv18rH5/58T3fkfABhyk2ddsNifdgAA/XPm/A8ADB3zPwCMHvM/AIwe8z8AjB7zPwCMnmL+Hxt0OwCAvvjuhx9mW2e/+P7rlU92ttebn9xYqbXWy43t5fJyc2uzvNpsrtZr5eVm46z71ZvNzfm3Y/t2pV1rtSutnd3FRnN7o72Yf6/3Yq3Ul14BAKd57Y37f0wiYu+9l/ItjqzlYK6G4ZYOugHAwMj5w+jyLdwwuvwfHzhrLc+evyJ87zmCdX7yHC8CLtq1z8n/w6iS/4fRJf8Po0v+H0ZXp5P0WvM/PbwEABgqcvxAX3/+DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAENiOt+StFysBT4daVouR7wSEbNRSm6t1WtzEfFqRPxhojSRlecH3WgA4AWlf0mK9b+uzbw1fbz2SvKviXwfET/6+Uc/u73Ubm/NZ+f/fni+fa84Xx1E+wGAsxzM0wfz+IHHj+4sH2z9bM/Db3YXF83i7hdbt2Y8xvP9ZJQiYuofSVHuyj6vjF1A/L27EfHZk/qf5LmR2WLl0+Pxs9iv9DV++l/x07yuu8/+LT79DDHPWusVRsX9bPx5/6TnL42r+X7yxMWPJ/MR6sUdjH/7T41/6eH4N9Zj/Lt63hhv/+47PevuRnx+/KT4yWH8pEf8t84Z/09f+NKbveo6v4i4FifHPxqr0m5sVlo7uzfWGkurtdXaRrW6ML8w9+7Nd6qVPEddOchUP+2v711/9bT+T/WIP3lG/796aq87EwdHv/z3xz/48inxv/6Vk9//10+Jn82JXzs1/hNLU7/uuXx3Fn+l2/+7z/r+Xz9n/Ad/3l0556UAQB+0dnbXl+r12taFHpTigm945CC5pDY7GPKD7PP4i97nM0XK7H+gO5d9MOiRCbhsTx76QbcEAAAAAAAAAAAAAADo5dL/nCgddA8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYZv8JAAD//wqryik=")
r0 = creat(0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

[  606.627566][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  606.669787][ T5116] Bluetooth: hci5: command 0x0419 tx timeout
[  606.717963][T16788] loop1: detected capacity change from 0 to 512
[  606.745285][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  606.794242][T16788] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a817c028, mo2=0000]
[  606.824817][T16788] System zones: 0-2, 18-18, 34-34
[  606.855817][T16788] EXT4-fs (loop1): 1 orphan inode deleted
[  606.862178][    T8] usb 4-1: Using ep0 maxpacket: 16
[  606.876178][T16788] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  606.877449][T16792] loop0: detected capacity change from 0 to 512
[  606.897197][T16788] ext4 filesystem being mounted at /root/syzkaller-testdir2849955197/syzkaller.ylhN08/588/file1 supports timestamps until 2038-01-19 (0x7fffffff)
15:12:13 executing program 1:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@dioread_lock}, {@debug}, {@noauto_da_alloc}, {@barrier}, {@stripe}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}]}, 0x12, 0x4b4, &(0x7f0000000540)="$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")
sendfile(r0, 0xffffffffffffffff, 0x0, 0x1ff)

[  606.956827][T16792] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  606.999490][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  607.013038][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  607.021309][T16792] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1112/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  607.023724][    T8] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  607.050852][    T8] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  607.060175][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  607.068975][ T5109] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  607.086228][    T8] usb 4-1: config 0 descriptor??
15:12:13 executing program 2:
r0 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, &(0x7f0000001100)=[{}], &(0x7f0000001140)=0x8)

[  607.101870][T16769] ceph: No mds server is up or the cluster is laggy
[  607.151180][   T24] libceph: connect (1)[c::]:6789 error -101
[  607.164819][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  607.185286][   T28] audit: type=1804 audit(1706886733.716:135): pid=16796 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1112/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:12:13 executing program 2:
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
sync_file_range(r0, 0x0, 0x0, 0x0)

[  607.269331][T16799] loop1: detected capacity change from 0 to 512
15:12:13 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f00000005c0))
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r1, 0x800)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r0, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r0, r3, 0x0, 0x80001d00c0d3)

15:12:13 executing program 2:
setsockopt$CAN_RAW_LOOPBACK(0xffffffffffffffff, 0x65, 0x3, 0x0, 0x0)

[  607.341448][T16799] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a817c028, mo2=0000]
[  607.353362][T16799] System zones: 0-2, 18-18, 34-34
[  607.371440][T16799] EXT4-fs (loop1): 1 orphan inode deleted
[  607.378586][T16799] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:12:13 executing program 2:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000580)={{0x12, 0x1, 0x310, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x40, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0})

[  607.394584][T16799] ext4 filesystem being mounted at /root/syzkaller-testdir2849955197/syzkaller.ylhN08/589/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  607.406217][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:12:14 executing program 1:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@dioread_lock}, {@debug}, {@noauto_da_alloc}, {@barrier}, {@stripe}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}]}, 0x12, 0x4b4, &(0x7f0000000540)="$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")
sendfile(r0, 0xffffffffffffffff, 0x0, 0x1ff)

[  607.500415][ T5109] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  607.563996][T16809] loop0: detected capacity change from 0 to 512
[  607.582618][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.613016][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.623291][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.637947][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.645445][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.645573][T16809] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  607.652821][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.652855][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.652884][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.652910][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.700388][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.707900][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.716394][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.724097][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.732759][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.742454][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.753521][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.763103][T16814] loop1: detected capacity change from 0 to 512
[  607.767031][T16809] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1113/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  607.769556][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.769591][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.769620][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.769646][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.769674][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.831215][    T8] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0
[  607.840555][    T8] microsoft 0003:045E:07DA.0009: No inputs registered, leaving
[  607.852424][    T8] microsoft 0003:045E:07DA.0009: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  607.898801][T16814] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a817c028, mo2=0000]
[  607.907020][T16814] System zones: 0-2, 18-18, 34-34
[  607.919122][    T8] microsoft 0003:045E:07DA.0009: no inputs found
[  607.925846][    T8] microsoft 0003:045E:07DA.0009: could not initialize ff, continuing anyway
[  607.942256][    T8] usb 4-1: USB disconnect, device number 73
[  607.955759][T16814] EXT4-fs (loop1): 1 orphan inode deleted
[  607.979440][   T28] audit: type=1804 audit(1706886734.506:136): pid=16817 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1113/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:12:14 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x101140, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f00000058c0)='./file0\x00', &(0x7f0000005900), 0x0)

15:12:14 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f00000005c0))
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r1, 0x800)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r0, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r0, r3, 0x0, 0x80001d00c0d3)

[  607.981418][T16814] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  608.022077][T16814] ext4 filesystem being mounted at /root/syzkaller-testdir2849955197/syzkaller.ylhN08/590/file1 supports timestamps until 2038-01-19 (0x7fffffff)
15:12:14 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x1ff)

15:12:14 executing program 2:
socket$can_raw(0x1d, 0x3, 0x1)
keyctl$assume_authority(0x10, 0x0)

[  608.113909][ T5109] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  608.158155][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:12:14 executing program 2:
r0 = add_key$keyring(&(0x7f0000000980), &(0x7f00000009c0)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
recvmsg$can_raw(r1, &(0x7f0000000cc0)={0x0, 0x0, 0x0}, 0x0)
keyctl$setperm(0x5, r0, 0x0)

[  608.199623][ T5154] libceph: connect (1)[c::]:6789 error -101
[  608.206348][ T5154] libceph: mon0 (1)[c::]:6789 connect error
15:12:14 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x1ff)

15:12:14 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x1ff)

15:12:14 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00222200000096231306e53f070c00002ddc"], 0x0}, 0x0)

[  608.399911][T16830] loop0: detected capacity change from 0 to 512
15:12:15 executing program 1:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@dioread_lock}, {@debug}, {@noauto_da_alloc}, {@barrier}, {@stripe}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}]}, 0x12, 0x4b4, &(0x7f0000000540)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
sendfile(r0, r1, 0x0, 0x1ff)

[  608.460458][T16830] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  608.529027][T16837] loop1: detected capacity change from 0 to 512
[  608.542714][T16830] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1114/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:12:15 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f00000005c0))
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r1, 0x800)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r0, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r0, r3, 0x0, 0x80001d00c0d3)

[  608.613850][   T28] audit: type=1804 audit(1706886735.146:137): pid=16830 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1114/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  608.657998][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  608.679328][T16837] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a817c028, mo2=0000]
[  608.687466][T16837] System zones: 0-2, 18-18, 34-34
[  608.703142][T16837] EXT4-fs (loop1): 1 orphan inode deleted
15:12:15 executing program 1:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@dioread_lock}, {@debug}, {@noauto_da_alloc}, {@barrier}, {@stripe}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}]}, 0x12, 0x4b4, &(0x7f0000000540)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
sendfile(r0, r1, 0x0, 0x1ff)

[  608.709502][T16837] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  608.724285][T16837] ext4 filesystem being mounted at /root/syzkaller-testdir2849955197/syzkaller.ylhN08/594/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  608.780203][ T5109] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  608.799170][ T5154] usb 4-1: new high-speed USB device number 74 using dummy_hcd
[  608.854772][T16842] loop0: detected capacity change from 0 to 512
[  608.918079][T16842] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  608.949397][T16842] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1115/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  608.978845][T16845] loop1: detected capacity change from 0 to 512
[  609.026486][T16845] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a817c028, mo2=0000]
[  609.035004][T16845] System zones: 0-2, 18-18, 34-34
[  609.048851][T16845] EXT4-fs (loop1): 1 orphan inode deleted
[  609.056047][   T28] audit: type=1804 audit(1706886735.576:138): pid=16849 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1115/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  609.060115][ T5154] usb 4-1: Using ep0 maxpacket: 16
[  609.092768][T16845] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:12:15 executing program 2:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000002400), 0x0, 0x0)
read$rfkill(r0, 0x0, 0x0)

15:12:15 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$eJzs3c9vG1kdAPDvTOImm81usrASPwRsWRYKqmon7m602tNyAaHVSogVJw7ZkLhRFDuOYmdpQiXS/wGJSpzgT+CAxAGpJ+7c4MalHJAKVKAGiYPRjCdpSOMkbRMb7M9HGs28eeP5vldr3nO/SfwCGFlXI2IvIq5ExMcRMVOcT4ot3u9u2XWPH91Z3n90ZzmJTuejvyV5fXYujrwm83Jxz8mI+N63I36YPB23tbO7vlSv17aKcqXd2Ky0dnZvrDWWVmurtY1qdWF+Ye7dm+9UL6yvbzR+9fBbax98/7e/+eKD3+9948dZs6aLuqP9uEjdrpcO42TGI+KDywg2AGNFf64MuiE8lzQiPhURb+bP/0yM5e/m+ZzwWAMA/wc6nZnozBwtAwDDLs1zYElaLnIB05Gm5XI3h/d6TKX1Zqt9/VZze2OlmyubjVJ6a61emytyhbNRSrLyfH78pFw9Vr4ZEa9FxE8nXsrL5eXz5xkAgIv18rH5/58T3fkfABhyk2ddsNifdgAA/XPm/A8ADB3zPwCMHvM/AIwe8z8AjB7zPwCMnmL+Hxt0OwCAvvjuhx9mW2e/+P7rlU92ttebn9xYqbXWy43t5fJyc2uzvNpsrtZr5eVm46z71ZvNzfm3Y/t2pV1rtSutnd3FRnN7o72Yf6/3Yq3Ul14BAKd57Y37f0wiYu+9l/ItjqzlYK6G4ZYOugHAwMj5w+jyLdwwuvwfHzhrLc+evyJ87zmCdX7yHC8CLtq1z8n/w6iS/4fRJf8Po0v+H0ZXp5P0WvM/PbwEABgqcvxAX3/+DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAENiOt+StFysBT4daVouR7wSEbNRSm6t1WtzEfFqRPxhojSRlecH3WgA4AWlf0mK9b+uzbw1fbz2SvKviXwfET/6+Uc/u73Ubm/NZ+f/fni+fa84Xx1E+wGAsxzM0wfz+IHHj+4sH2z9bM/Db3YXF83i7hdbt2Y8xvP9ZJQiYuofSVHuyj6vjF1A/L27EfHZk/qf5LmR2WLl0+Pxs9iv9DV++l/x07yuu8/+LT79DDHPWusVRsX9bPx5/6TnL42r+X7yxMWPJ/MR6sUdjH/7T41/6eH4N9Zj/Lt63hhv/+47PevuRnx+/KT4yWH8pEf8t84Z/09f+NKbveo6v4i4FifHPxqr0m5sVlo7uzfWGkurtdXaRrW6ML8w9+7Nd6qVPEddOchUP+2v711/9bT+T/WIP3lG/796aq87EwdHv/z3xz/48inxv/6Vk9//10+Jn82JXzs1/hNLU7/uuXx3Fn+l2/+7z/r+Xz9n/Ad/3l0556UAQB+0dnbXl+r12taFHpTigm945CC5pDY7GPKD7PP4i97nM0XK7H+gO5d9MOiRCbhsTx76QbcEAAAAAAAAAAAAAADo5dL/nCgddA8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYZv8JAAD//wqryik=")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

[  609.120774][T16845] ext4 filesystem being mounted at /root/syzkaller-testdir2849955197/syzkaller.ylhN08/595/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  609.154177][ T5160] libceph: connect (1)[c::]:6789 error -101
[  609.162686][ T5160] libceph: mon0 (1)[c::]:6789 connect error
15:12:15 executing program 2:
socketpair(0x6, 0x0, 0x0, &(0x7f00000003c0))

[  609.188182][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:12:15 executing program 1:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@dioread_lock}, {@debug}, {@noauto_da_alloc}, {@barrier}, {@stripe}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}]}, 0x12, 0x4b4, &(0x7f0000000540)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
sendfile(r0, r1, 0x0, 0x1ff)

[  609.257592][ T5109] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  609.269263][ T5154] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  609.281396][ T5154] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
15:12:15 executing program 2:
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="12010000000000404c05d5030000000000010902240001000000ed09040000010300000009210000000122050009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000240)={0x2c, &(0x7f00000000c0)=ANY=[@ANYBLOB="5b6417"], 0x0, 0x0, 0x0, 0x0}, 0x0)

[  609.298105][ T5154] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  609.361544][ T5154] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  609.384617][ T5154] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  609.397397][T16855] loop0: detected capacity change from 0 to 512
[  609.423373][ T5154] usb 4-1: config 0 descriptor??
[  609.430194][ T5152] libceph: connect (1)[c::]:6789 error -101
[  609.437044][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  609.463788][T16855] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  609.485018][T16855] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1116/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  609.514769][T16861] loop1: detected capacity change from 0 to 512
[  609.587527][T16861] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a817c028, mo2=0000]
[  609.595921][T16861] System zones: 0-2, 18-18, 34-34
[  609.606071][T16861] EXT4-fs (loop1): 1 orphan inode deleted
[  609.612145][T16861] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:12:16 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

15:12:16 executing program 1:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@dioread_lock}, {@debug}, {@noauto_da_alloc}, {@barrier}, {@stripe}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}]}, 0x12, 0x4b4, &(0x7f0000000540)="$eJzs3d9rW9cdAPDvvbay/HBmZ9tDFlgWlgwnbJHseEnMHrIMxvIU2Ja9Z54tG2PZMpacxCYMh/0BgzHWQp/61JdC/4BCyZ9QCoH2vbSlpbRJ+9CHtiqSrtLElWKHyL5gfz5wfM+5V9L3e2x0dc+9x7oB7FunIuJqRAxExLmIGM7Wp1m51mxstB/36OHd6WZJotG48VkSSbau81pJtjzSfkocjIi/XYv4Z/LDuLW19YWpSqW8krVL9cXlUm1t/fz84tRcea68NDExfmny8uTFybG+9HMkIq786aP//+e1P19567e337/5ydl/NdMayrY/2Y9+ane90PpddAxGxMpOBMvBQLYs5JwHAADb0zzG/0lE/Kp1/D8cA62jUwAAAGAvafxhKL5OIhoAAADAnpW25sAmaTGbCzAUaVostufw/iwOp5Vqrf6b2erq0kx7ruxIFNLZ+Up5LJsrPBKFpNkez+bYdtoXNrUnIuJYRPxv+FCrXZyuVmbyPvkBAAAA+8SRTeP/L4fb438AAABgjxnJOwEAAABgxxn/AwAAwN5n/A8AAAB72l+uX2+WRuf+1zO31lYXqrfOz5RrC8XF1enidHVluThXrc61vrNvcavXq1Sry7+LpdU7pXq5Vi/V1tZvLlZXl+o355+6BTYAAACwi4798v57SURs/P5QqzQdyDspYFckz/PgD3cuD2D3DeSdAJCbwbwTAHJTyDsBIHdbnQfoOXnn7f7nAgAA7IzRn/e+/u/cAOxtad4JAAC7zvV/2L8KZgDCvvfjLba/+PX/RuO5EgIAAPpuqFWStJhdCxyKNC0WI462bgtQSGbnK+WxbHzw7nDhR832eOuZyfP97zAAAAAAAAAAAAAAAAAAAAAAAAAA7GONRhINAAAAYE+LSD9OWt/mHzE6fGZo8/mBA8lXw61lRNx+5cZLd6bq9ZXx5vrPH6+vv5ytv5DHGQwAAABgs844vTOOBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIB+evTw7nSn7GbcT/8YESPd4g/GwdbyYBQi4vAXSQw+8bwkIgb6EH/jXkQc7xY/aaYVI1kW3eIfyjF+GhFH+hAf9rP7zf3P1W7vvzROtZbd33+DWXlRvfd/6eP930CP/c/RbcY48eCNUs/49yJODHbf/3TiJz3in95m/H/8fX2917bGqxGjXT9/kqdileqLy6Xa2vr5+cWpufJceWliYvzS5OXJi5Njpdn5Sjn72TXGf3/x5rfP6v/hHvFHtuj/mW32/5sHdx7+tF0tdIt/9nT3z9/jPeKn2Wffr7N6c/top77Rrj/p5OvvnHxW/2d69H+rv//Zbfb/3F///cE2HwoA7ILa2vrCVKVSXlFRUVF5XMl7zwQAAPTb9wf9eWcCAAAAAAAAAAAAAAAAAAAA+9dufJ3Y5pgb+XQVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCZvgsAAP//96DU7Q==")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x1ff)

[  609.625053][T16861] ext4 filesystem being mounted at /root/syzkaller-testdir2849955197/syzkaller.ylhN08/596/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  609.652339][   T28] audit: type=1804 audit(1706886736.186:139): pid=16855 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1116/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  609.700188][ T5109] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  609.720482][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  609.828479][T16866] loop1: detected capacity change from 0 to 512
[  609.887957][T16866] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a817c028, mo2=0000]
[  609.908359][T16870] loop0: detected capacity change from 0 to 512
[  609.919404][T16866] System zones: 0-2, 18-18, 34-34
[  609.941636][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  609.955163][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  609.963098][ T5160] libceph: connect (1)[c::]:6789 error -101
[  609.972483][T16866] EXT4-fs (loop1): 1 orphan inode deleted
[  609.992278][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  610.003929][T16870] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  610.010347][T16866] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  610.032212][T16866] ext4 filesystem being mounted at /root/syzkaller-testdir2849955197/syzkaller.ylhN08/597/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  610.037753][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  610.074724][T16870] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1117/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  610.089826][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  610.093925][ T5109] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  610.097073][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  610.118967][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  610.142153][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  610.160911][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  610.178001][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  610.187725][   T28] audit: type=1804 audit(1706886736.726:140): pid=16873 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1117/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  610.190016][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  610.242053][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  610.258146][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  610.269943][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  610.302038][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  610.312109][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  610.321413][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  610.328788][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  610.336686][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  610.345431][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  610.356299][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  610.363980][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  610.388677][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  610.400836][ T5154] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  610.410432][ T5154] microsoft 0003:045E:07DA.000A: No inputs registered, leaving
[  610.424085][ T5154] microsoft 0003:045E:07DA.000A: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  610.436162][ T5154] microsoft 0003:045E:07DA.000A: no inputs found
[  610.442979][ T5154] microsoft 0003:045E:07DA.000A: could not initialize ff, continuing anyway
[  610.458932][ T5154] usb 4-1: USB disconnect, device number 74
[  611.154483][ T5154] libceph: connect (1)[c::]:6789 error -101
[  611.160892][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  612.195285][ T5160] libceph: connect (1)[c::]:6789 error -101
[  612.206474][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  612.472347][ T5152] libceph: connect (1)[c::]:6789 error -101
[  612.478494][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  612.992775][ T5152] libceph: connect (1)[c::]:6789 error -101
[  612.998885][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  614.191758][ T5152] libceph: connect (1)[c::]:6789 error -101
[  614.197992][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  615.155785][ T5152] libceph: connect (1)[c::]:6789 error -101
[  615.162474][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  615.431826][ T5152] libceph: connect (1)[c::]:6789 error -101
[  615.437943][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  615.960783][ T5154] libceph: connect (1)[c::]:6789 error -101
[  615.967065][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  617.154366][ T5152] libceph: connect (1)[c::]:6789 error -101
[  617.161570][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  618.193426][ T5152] libceph: connect (1)[c::]:6789 error -101
[  618.199665][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  618.461649][ T5152] libceph: connect (1)[c::]:6789 error -101
[  618.468243][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  618.986122][ T5154] libceph: connect (1)[c::]:6789 error -101
[  618.992344][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  620.192970][ T5152] libceph: connect (1)[c::]:6789 error -101
[  620.201892][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  621.158622][ T5160] libceph: connect (1)[c::]:6789 error -101
[  621.164963][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  621.430732][ T5160] libceph: connect (1)[c::]:6789 error -101
[  621.436756][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  621.949795][ T5160] libceph: connect (1)[c::]:6789 error -101
[  621.955901][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  623.150666][ T5152] libceph: connect (1)[c::]:6789 error -101
[  623.157233][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  624.192452][ T5152] libceph: connect (1)[c::]:6789 error -101
[  624.198556][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  624.464284][ T5154] libceph: connect (1)[c::]:6789 error -101
[  624.470412][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  624.682831][ T1241] ieee802154 phy0 wpan0: encryption failed: -22
[  624.689657][ T1241] ieee802154 phy1 wpan1: encryption failed: -22
[  624.981025][ T5154] libceph: connect (1)[c::]:6789 error -101
[  624.987154][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  626.199682][ T5160] libceph: connect (1)[c::]:6789 error -101
[  626.205760][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  627.157817][ T5160] libceph: connect (1)[c::]:6789 error -101
[  627.163947][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  627.431192][ T5152] libceph: connect (1)[c::]:6789 error -101
[  627.437216][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  627.960670][ T5152] libceph: connect (1)[c::]:6789 error -101
[  627.967559][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  629.165627][ T5152] libceph: connect (1)[c::]:6789 error -101
[  629.171906][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  630.195898][ T5160] libceph: connect (1)[c::]:6789 error -101
[  630.202194][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  630.461794][ T5152] libceph: connect (1)[c::]:6789 error -101
[  630.467836][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  630.982619][ T5160] libceph: connect (1)[c::]:6789 error -101
[  630.988648][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  632.199169][ T5160] libceph: connect (1)[c::]:6789 error -101
[  632.205221][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  633.162941][ T5160] libceph: connect (1)[c::]:6789 error -101
[  633.168963][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  633.435941][ T5152] libceph: connect (1)[c::]:6789 error -101
[  633.442402][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  633.955606][ T5152] libceph: connect (1)[c::]:6789 error -101
[  633.961763][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  635.155886][ T5154] libceph: connect (1)[c::]:6789 error -101
[  635.169260][ T5154] libceph: mon0 (1)[c::]:6789 connect error
15:12:42 executing program 4:
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000140)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='\'\x9c.-\\\x00', &(0x7f0000000100)='&\x01\x00', 0x0)
r1 = dup(r0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
read$FUSE(r1, 0x0, 0x0)
tkill(0x0, 0xb)

15:12:42 executing program 2:
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000340)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x4}, 0x48)

15:12:42 executing program 1:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@dioread_lock}, {@debug}, {@noauto_da_alloc}, {@barrier}, {@stripe}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}]}, 0x12, 0x4b4, &(0x7f0000000540)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x1ff)

15:12:42 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

15:12:42 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00222200000096231306e53f070c00002ddc"], 0x0}, 0x0)

[  636.192179][ T5154] libceph: connect (1)[c::]:6789 error -101
[  636.198277][ T5154] libceph: mon0 (1)[c::]:6789 connect error
15:12:42 executing program 2:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
getuid()

[  636.259543][T16882] loop0: detected capacity change from 0 to 512
15:12:42 executing program 2:
r0 = syz_io_uring_setup(0x437, &(0x7f0000000e40), &(0x7f0000000ec0), &(0x7f0000000f00))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)

[  636.329743][T16887] loop1: detected capacity change from 0 to 512
15:12:43 executing program 2:
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000600)={0x6, 0x3, &(0x7f0000000280)=@framed, &(0x7f00000003c0)='syzkaller\x00'}, 0x90)

[  636.407607][T16882] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  636.429508][T16882] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1118/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  636.491236][T16887] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a817c028, mo2=0000]
[  636.530982][ T5160] libceph: connect (1)[c::]:6789 error -101
[  636.539372][T16887] System zones: 0-2, 18-18, 34-34
[  636.550500][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  636.569219][ T5149] usb 4-1: new high-speed USB device number 75 using dummy_hcd
15:12:43 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_GET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000780)=ANY=[@ANYBLOB=' '], 0x24}}, 0x0)

[  636.603300][   T28] audit: type=1804 audit(1706886763.136:141): pid=16901 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1118/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  636.691969][T16887] EXT4-fs (loop1): 1 orphan inode deleted
[  636.727472][T16887] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:12:43 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$eJzs3c9vG1kdAPDvTOImm81usrASPwRsWRYKqmon7m602tNyAaHVSogVJw7ZkLhRFDuOYmdpQiXS/wGJSpzgT+CAxAGpJ+7c4MalHJAKVKAGiYPRjCdpSOMkbRMb7M9HGs28eeP5vldr3nO/SfwCGFlXI2IvIq5ExMcRMVOcT4ot3u9u2XWPH91Z3n90ZzmJTuejvyV5fXYujrwm83Jxz8mI+N63I36YPB23tbO7vlSv17aKcqXd2Ky0dnZvrDWWVmurtY1qdWF+Ye7dm+9UL6yvbzR+9fBbax98/7e/+eKD3+9948dZs6aLuqP9uEjdrpcO42TGI+KDywg2AGNFf64MuiE8lzQiPhURb+bP/0yM5e/m+ZzwWAMA/wc6nZnozBwtAwDDLs1zYElaLnIB05Gm5XI3h/d6TKX1Zqt9/VZze2OlmyubjVJ6a61emytyhbNRSrLyfH78pFw9Vr4ZEa9FxE8nXsrL5eXz5xkAgIv18rH5/58T3fkfABhyk2ddsNifdgAA/XPm/A8ADB3zPwCMHvM/AIwe8z8AjB7zPwCMnmL+Hxt0OwCAvvjuhx9mW2e/+P7rlU92ttebn9xYqbXWy43t5fJyc2uzvNpsrtZr5eVm46z71ZvNzfm3Y/t2pV1rtSutnd3FRnN7o72Yf6/3Yq3Ul14BAKd57Y37f0wiYu+9l/ItjqzlYK6G4ZYOugHAwMj5w+jyLdwwuvwfHzhrLc+evyJ87zmCdX7yHC8CLtq1z8n/w6iS/4fRJf8Po0v+H0ZXp5P0WvM/PbwEABgqcvxAX3/+DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAENiOt+StFysBT4daVouR7wSEbNRSm6t1WtzEfFqRPxhojSRlecH3WgA4AWlf0mK9b+uzbw1fbz2SvKviXwfET/6+Uc/u73Ubm/NZ+f/fni+fa84Xx1E+wGAsxzM0wfz+IHHj+4sH2z9bM/Db3YXF83i7hdbt2Y8xvP9ZJQiYuofSVHuyj6vjF1A/L27EfHZk/qf5LmR2WLl0+Pxs9iv9DV++l/x07yuu8/+LT79DDHPWusVRsX9bPx5/6TnL42r+X7yxMWPJ/MR6sUdjH/7T41/6eH4N9Zj/Lt63hhv/+47PevuRnx+/KT4yWH8pEf8t84Z/09f+NKbveo6v4i4FifHPxqr0m5sVlo7uzfWGkurtdXaRrW6ML8w9+7Nd6qVPEddOchUP+2v711/9bT+T/WIP3lG/796aq87EwdHv/z3xz/48inxv/6Vk9//10+Jn82JXzs1/hNLU7/uuXx3Fn+l2/+7z/r+Xz9n/Ad/3l0556UAQB+0dnbXl+r12taFHpTigm945CC5pDY7GPKD7PP4i97nM0XK7H+gO5d9MOiRCbhsTx76QbcEAAAAAAAAAAAAAADo5dL/nCgddA8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYZv8JAAD//wqryik=")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(0x0, 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

15:12:43 executing program 2:
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000980)={{}, 0x0, 0x0}, 0x20)

[  636.785445][T16887] ext4 filesystem being mounted at /root/syzkaller-testdir2849955197/syzkaller.ylhN08/598/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  636.850272][ T5149] usb 4-1: Using ep0 maxpacket: 16
15:12:43 executing program 1:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@dioread_lock}, {@debug}, {@noauto_da_alloc}, {@barrier}, {@stripe}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}]}, 0x12, 0x4b4, &(0x7f0000000540)="$eJzs3d9rW9cdAPDvvbay/HBmZ9tDFlgWlgwnbJHseEnMHrIMxvIU2Ja9Z54tG2PZMpacxCYMh/0BgzHWQp/61JdC/4BCyZ9QCoH2vbSlpbRJ+9CHtiqSrtLElWKHyL5gfz5wfM+5V9L3e2x0dc+9x7oB7FunIuJqRAxExLmIGM7Wp1m51mxstB/36OHd6WZJotG48VkSSbau81pJtjzSfkocjIi/XYv4Z/LDuLW19YWpSqW8krVL9cXlUm1t/fz84tRcea68NDExfmny8uTFybG+9HMkIq786aP//+e1P19567e337/5ydl/NdMayrY/2Y9+ane90PpddAxGxMpOBMvBQLYs5JwHAADb0zzG/0lE/Kp1/D8cA62jUwAAAGAvafxhKL5OIhoAAADAnpW25sAmaTGbCzAUaVostufw/iwOp5Vqrf6b2erq0kx7ruxIFNLZ+Up5LJsrPBKFpNkez+bYdtoXNrUnIuJYRPxv+FCrXZyuVmbyPvkBAAAA+8SRTeP/L4fb438AAABgjxnJOwEAAABgxxn/AwAAwN5n/A8AAAB72l+uX2+WRuf+1zO31lYXqrfOz5RrC8XF1enidHVluThXrc61vrNvcavXq1Sry7+LpdU7pXq5Vi/V1tZvLlZXl+o355+6BTYAAACwi4798v57SURs/P5QqzQdyDspYFckz/PgD3cuD2D3DeSdAJCbwbwTAHJTyDsBIHdbnQfoOXnn7f7nAgAA7IzRn/e+/u/cAOxtad4JAAC7zvV/2L8KZgDCvvfjLba/+PX/RuO5EgIAAPpuqFWStJhdCxyKNC0WI462bgtQSGbnK+WxbHzw7nDhR832eOuZyfP97zAAAAAAAAAAAAAAAAAAAAAAAAAA7GONRhINAAAAYE+LSD9OWt/mHzE6fGZo8/mBA8lXw61lRNx+5cZLd6bq9ZXx5vrPH6+vv5ytv5DHGQwAAABgs844vTOOBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIB+evTw7nSn7GbcT/8YESPd4g/GwdbyYBQi4vAXSQw+8bwkIgb6EH/jXkQc7xY/aaYVI1kW3eIfyjF+GhFH+hAf9rP7zf3P1W7vvzROtZbd33+DWXlRvfd/6eP930CP/c/RbcY48eCNUs/49yJODHbf/3TiJz3in95m/H/8fX2917bGqxGjXT9/kqdileqLy6Xa2vr5+cWpufJceWliYvzS5OXJi5Njpdn5Sjn72TXGf3/x5rfP6v/hHvFHtuj/mW32/5sHdx7+tF0tdIt/9nT3z9/jPeKn2Wffr7N6c/top77Rrj/p5OvvnHxW/2d69H+rv//Zbfb/3F///cE2HwoA7ILa2vrCVKVSXlFRUVF5XMl7zwQAAPTb9wf9eWcCAAAAAAAAAAAAAAAAAAAA+9dufJ3Y5pgb+XQVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCZvgsAAP//96DU7Q==")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x1ff)

[  636.880276][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  636.908900][ T5109] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  636.989872][ T5149] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  637.042769][ T5149] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  637.080514][ T5154] libceph: connect (1)[c::]:6789 error -101
[  637.086614][ T5154] libceph: mon0 (1)[c::]:6789 connect error
15:12:43 executing program 2:
r0 = syz_open_dev$radio(&(0x7f0000000000), 0x2, 0x2)
ioctl$VIDIOC_S_HW_FREQ_SEEK(r0, 0x40305652, &(0x7f0000000040))

[  637.088604][ T5149] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  637.154639][ T5149] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  637.166181][T16909] loop0: detected capacity change from 0 to 512
[  637.173488][T16908] loop1: detected capacity change from 0 to 512
[  637.178775][ T5149] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
15:12:43 executing program 2:
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000080)={0x2, 0x2}, 0x48)

[  637.218935][ T5149] usb 4-1: config 0 descriptor??
[  637.235551][T16908] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a817c028, mo2=0000]
[  637.246105][T16908] System zones: 0-2, 18-18, 34-34
[  637.287663][T16908] EXT4-fs (loop1): 1 orphan inode deleted
[  637.335124][T16908] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  637.348355][T16909] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:12:43 executing program 2:
r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
read$dsp(r0, 0x0, 0x0)

[  637.385807][T16908] ext4 filesystem being mounted at /root/syzkaller-testdir2849955197/syzkaller.ylhN08/599/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  637.409325][T16909] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1119/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:12:44 executing program 2:
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001300)={0x6, 0xf, &(0x7f0000000180)=@ringbuf, &(0x7f0000000200)='GPL\x00', 0x1b4b}, 0x90)

15:12:44 executing program 1:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@dioread_lock}, {@debug}, {@noauto_da_alloc}, {@barrier}, {@stripe}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}]}, 0x12, 0x4b4, &(0x7f0000000540)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x1ff)

[  637.502156][ T5109] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:12:44 executing program 2:
socketpair(0x3, 0x0, 0x0, &(0x7f0000000a00))

[  637.527941][   T28] audit: type=1804 audit(1706886764.056:142): pid=16921 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1119/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:12:44 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(0x0, 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

15:12:44 executing program 2:
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000080)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x2}, 0x48)

[  637.635361][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  637.669626][T16927] loop1: detected capacity change from 0 to 512
15:12:44 executing program 2:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000016c0), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r0, 0x3ba0, &(0x7f00000000c0)={0x48, 0x1, r3, 0x0, 0x6})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r0, 0x3ba0, &(0x7f0000000180)={0x48, 0x1, r1, 0x0, 0x0, 0x40000})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000040)={0x28, 0x0, r1, 0x0, &(0x7f0000000000/0x3000)=nil, 0x3000})

[  637.708832][T16927] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a817c028, mo2=0000]
[  637.761604][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  637.768992][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  637.775265][T16927] System zones: 
[  637.778167][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  637.783018][T16927] 0-2
[  637.793071][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  637.803464][T16927] , 18-18, 34-34
[  637.810718][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  637.817963][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  637.817996][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  637.818024][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  637.840277][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  637.848518][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
15:12:44 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='devices.list\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="00000008000000d1800700000000aad63513000000000000000000", @ANYRES32=0x41424344], 0x0)
write$binfmt_script(r2, &(0x7f0000000100)=ANY=[@ANYBLOB="3a0f32"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
write$tun(0xffffffffffffffff, &(0x7f00000001c0)={@void, @val, @eth={@local, @dev, @val={@void}, {@llc={0x4, {@llc={0x0, 0x0, "8a08", "96cb0318ee36ab14ae9b6dd7100f4514f1f8785b9fb0f49adbb0"}}}}}}, 0x3a)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  637.855962][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  637.863371][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  637.879596][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  637.887085][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  637.897323][T16927] EXT4-fs (loop1): 1 orphan inode deleted
[  637.911569][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  637.919287][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  637.939249][T16927] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  637.958501][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  637.971482][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  637.978771][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  637.986753][T16936] loop0: detected capacity change from 0 to 512
[  637.988333][T16927] ext4 filesystem being mounted at /root/syzkaller-testdir2849955197/syzkaller.ylhN08/600/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  638.010189][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  638.017574][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  638.038237][ T5149] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  638.054526][T16936] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  638.063141][ T5149] microsoft 0003:045E:07DA.000B: No inputs registered, leaving
[  638.074036][T16936] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1120/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  638.097696][ T5149] microsoft 0003:045E:07DA.000B: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
15:12:44 executing program 1:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@dioread_lock}, {@debug}, {@noauto_da_alloc}, {@barrier}, {@stripe}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}]}, 0x12, 0x4b4, &(0x7f0000000540)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x1ff)

[  638.113533][ T5149] microsoft 0003:045E:07DA.000B: no inputs found
[  638.121044][ T5149] microsoft 0003:045E:07DA.000B: could not initialize ff, continuing anyway
[  638.134967][ T5149] usb 4-1: USB disconnect, device number 75
[  638.182652][ T5109] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  638.199584][ T5154] libceph: connect (1)[c::]:6789 error -101
15:12:44 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(0x0, 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

15:12:44 executing program 2:
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000001a00), 0x2, 0x0)
write$vhost_msg(r0, &(0x7f0000001b00)={0x1, {0x0, 0x0, 0x0}}, 0x48)

[  638.226445][   T28] audit: type=1804 audit(1706886764.756:143): pid=16936 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1120/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  638.256250][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  638.313192][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:12:44 executing program 2:
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000080)={0x6}, 0x48)

15:12:45 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00222200000096231306e53f070c00002ddcedfb5a49cc25c01789"], 0x0}, 0x0)

15:12:45 executing program 2:
mlock(&(0x7f0000ffd000/0x2000)=nil, 0x2000)
r0 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000000))
ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f0000000140)={0x60, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, 0x0, &(0x7f0000000040)})

[  638.466062][T16951] loop0: detected capacity change from 0 to 512
[  638.498037][T16947] loop1: detected capacity change from 0 to 512
[  638.551219][T16951] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  638.570786][T16951] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1121/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:12:45 executing program 2:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$SNDCTL_DSP_POST(r0, 0x5008, 0x0)

[  638.634371][T16947] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a817c028, mo2=0000]
[  638.663316][T16947] System zones: 0-2, 18-18, 34-34
[  638.715011][T16947] EXT4-fs (loop1): 1 orphan inode deleted
[  638.744209][T16947] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:12:45 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETAW(r0, 0x5407, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "b25a32bbeec155dd"})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000000))
ioctl$TCSETAW(r1, 0x5407, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xffff, 0x0, "140900"})

[  638.771615][   T28] audit: type=1804 audit(1706886765.306:144): pid=16961 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1121/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  638.774685][T16947] ext4 filesystem being mounted at /root/syzkaller-testdir2849955197/syzkaller.ylhN08/601/file1 supports timestamps until 2038-01-19 (0x7fffffff)
15:12:45 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(0x0, 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

15:12:45 executing program 1:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@dioread_lock}, {@debug}, {@noauto_da_alloc}, {@barrier}, {@stripe}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}]}, 0x12, 0x4b4, &(0x7f0000000540)="$eJzs3d9rW9cdAPDvvbay/HBmZ9tDFlgWlgwnbJHseEnMHrIMxvIU2Ja9Z54tG2PZMpacxCYMh/0BgzHWQp/61JdC/4BCyZ9QCoH2vbSlpbRJ+9CHtiqSrtLElWKHyL5gfz5wfM+5V9L3e2x0dc+9x7oB7FunIuJqRAxExLmIGM7Wp1m51mxstB/36OHd6WZJotG48VkSSbau81pJtjzSfkocjIi/XYv4Z/LDuLW19YWpSqW8krVL9cXlUm1t/fz84tRcea68NDExfmny8uTFybG+9HMkIq786aP//+e1P19567e337/5ydl/NdMayrY/2Y9+ane90PpddAxGxMpOBMvBQLYs5JwHAADb0zzG/0lE/Kp1/D8cA62jUwAAAGAvafxhKL5OIhoAAADAnpW25sAmaTGbCzAUaVostufw/iwOp5Vqrf6b2erq0kx7ruxIFNLZ+Up5LJsrPBKFpNkez+bYdtoXNrUnIuJYRPxv+FCrXZyuVmbyPvkBAAAA+8SRTeP/L4fb438AAABgjxnJOwEAAABgxxn/AwAAwN5n/A8AAAB72l+uX2+WRuf+1zO31lYXqrfOz5RrC8XF1enidHVluThXrc61vrNvcavXq1Sry7+LpdU7pXq5Vi/V1tZvLlZXl+o355+6BTYAAACwi4798v57SURs/P5QqzQdyDspYFckz/PgD3cuD2D3DeSdAJCbwbwTAHJTyDsBIHdbnQfoOXnn7f7nAgAA7IzRn/e+/u/cAOxtad4JAAC7zvV/2L8KZgDCvvfjLba/+PX/RuO5EgIAAPpuqFWStJhdCxyKNC0WI462bgtQSGbnK+WxbHzw7nDhR832eOuZyfP97zAAAAAAAAAAAAAAAAAAAAAAAAAA7GONRhINAAAAYE+LSD9OWt/mHzE6fGZo8/mBA8lXw61lRNx+5cZLd6bq9ZXx5vrPH6+vv5ytv5DHGQwAAABgs844vTOOBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIB+evTw7nSn7GbcT/8YESPd4g/GwdbyYBQi4vAXSQw+8bwkIgb6EH/jXkQc7xY/aaYVI1kW3eIfyjF+GhFH+hAf9rP7zf3P1W7vvzROtZbd33+DWXlRvfd/6eP930CP/c/RbcY48eCNUs/49yJODHbf/3TiJz3in95m/H/8fX2917bGqxGjXT9/kqdileqLy6Xa2vr5+cWpufJceWliYvzS5OXJi5Njpdn5Sjn72TXGf3/x5rfP6v/hHvFHtuj/mW32/5sHdx7+tF0tdIt/9nT3z9/jPeKn2Wffr7N6c/top77Rrj/p5OvvnHxW/2d69H+rv//Zbfb/3F///cE2HwoA7ILa2vrCVKVSXlFRUVF5XMl7zwQAAPTb9wf9eWcCAAAAAAAAAAAAAAAAAAAA+9dufJ3Y5pgb+XQVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCZvgsAAP//96DU7Q==")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x1ff)

[  638.906260][ T5109] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  638.915534][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:12:45 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='coredump_filter\x00')
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000280)='2', 0x1}], 0x1)

[  638.969173][ T5149] usb 4-1: new high-speed USB device number 76 using dummy_hcd
[  639.035556][ T5107] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  639.047368][ T5107] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  639.067513][ T5107] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
15:12:45 executing program 2:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f00000007c0)=0x7fffffff)
ioctl$SNDCTL_DSP_RESET(r0, 0x5000, 0x0)
read$dsp(r0, &(0x7f0000000b80)=""/74, 0x4a)

[  639.081994][ T5107] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  639.090355][ T5107] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  639.097888][ T5107] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  639.169883][ T5154] libceph: connect (1)[c::]:6789 error -101
[  639.175989][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  639.200117][T16975] loop1: detected capacity change from 0 to 512
15:12:45 executing program 2:
r0 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r1=>0x0})
r2 = socket(0x1d, 0x2, 0x6)
bind$can_j1939(r2, &(0x7f0000000000)={0x1d, r1, 0x3}, 0x18)
poll(&(0x7f00000001c0)=[{r2}], 0x1, 0x0)

[  639.216961][T16971] loop0: detected capacity change from 0 to 512
[  639.219343][ T5149] usb 4-1: Using ep0 maxpacket: 16
[  639.287399][T16975] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a817c028, mo2=0000]
[  639.323949][T16975] System zones: 0-2, 18-18, 34-34
15:12:45 executing program 2:
syz_io_uring_setup(0x1783, &(0x7f0000000180)={0x0, 0x0, 0x200}, 0x0, 0x0)

[  639.339512][ T5149] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  639.352143][ T5149] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  639.357515][T16971] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  639.362174][ T5149] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  639.362233][ T5149] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  639.362260][ T5149] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  639.365122][ T5149] usb 4-1: config 0 descriptor??
[  639.414653][T16971] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1122/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  639.431208][T16975] EXT4-fs (loop1): 1 orphan inode deleted
[  639.439493][T16975] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  639.455829][T16975] ext4 filesystem being mounted at /root/syzkaller-testdir2849955197/syzkaller.ylhN08/602/file1 supports timestamps until 2038-01-19 (0x7fffffff)
15:12:46 executing program 2:
getresgid(&(0x7f0000000700), &(0x7f0000000740), 0x0)

[  639.489628][ T5160] libceph: connect (1)[c::]:6789 error -101
[  639.499463][ T5160] libceph: mon0 (1)[c::]:6789 connect error
15:12:46 executing program 1:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@dioread_lock}, {@debug}, {@noauto_da_alloc}, {@barrier}, {@stripe}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}]}, 0x12, 0x4b4, &(0x7f0000000540)="$eJzs3d9rW9cdAPDvvbay/HBmZ9tDFlgWlgwnbJHseEnMHrIMxvIU2Ja9Z54tG2PZMpacxCYMh/0BgzHWQp/61JdC/4BCyZ9QCoH2vbSlpbRJ+9CHtiqSrtLElWKHyL5gfz5wfM+5V9L3e2x0dc+9x7oB7FunIuJqRAxExLmIGM7Wp1m51mxstB/36OHd6WZJotG48VkSSbau81pJtjzSfkocjIi/XYv4Z/LDuLW19YWpSqW8krVL9cXlUm1t/fz84tRcea68NDExfmny8uTFybG+9HMkIq786aP//+e1P19567e337/5ydl/NdMayrY/2Y9+ane90PpddAxGxMpOBMvBQLYs5JwHAADb0zzG/0lE/Kp1/D8cA62jUwAAAGAvafxhKL5OIhoAAADAnpW25sAmaTGbCzAUaVostufw/iwOp5Vqrf6b2erq0kx7ruxIFNLZ+Up5LJsrPBKFpNkez+bYdtoXNrUnIuJYRPxv+FCrXZyuVmbyPvkBAAAA+8SRTeP/L4fb438AAABgjxnJOwEAAABgxxn/AwAAwN5n/A8AAAB72l+uX2+WRuf+1zO31lYXqrfOz5RrC8XF1enidHVluThXrc61vrNvcavXq1Sry7+LpdU7pXq5Vi/V1tZvLlZXl+o355+6BTYAAACwi4798v57SURs/P5QqzQdyDspYFckz/PgD3cuD2D3DeSdAJCbwbwTAHJTyDsBIHdbnQfoOXnn7f7nAgAA7IzRn/e+/u/cAOxtad4JAAC7zvV/2L8KZgDCvvfjLba/+PX/RuO5EgIAAPpuqFWStJhdCxyKNC0WI462bgtQSGbnK+WxbHzw7nDhR832eOuZyfP97zAAAAAAAAAAAAAAAAAAAAAAAAAA7GONRhINAAAAYE+LSD9OWt/mHzE6fGZo8/mBA8lXw61lRNx+5cZLd6bq9ZXx5vrPH6+vv5ytv5DHGQwAAABgs844vTOOBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIB+evTw7nSn7GbcT/8YESPd4g/GwdbyYBQi4vAXSQw+8bwkIgb6EH/jXkQc7xY/aaYVI1kW3eIfyjF+GhFH+hAf9rP7zf3P1W7vvzROtZbd33+DWXlRvfd/6eP930CP/c/RbcY48eCNUs/49yJODHbf/3TiJz3in95m/H/8fX2917bGqxGjXT9/kqdileqLy6Xa2vr5+cWpufJceWliYvzS5OXJi5Njpdn5Sjn72TXGf3/x5rfP6v/hHvFHtuj/mW32/5sHdx7+tF0tdIt/9nT3z9/jPeKn2Wffr7N6c/top77Rrj/p5OvvnHxW/2d69H+rv//Zbfb/3F///cE2HwoA7ILa2vrCVKVSXlFRUVF5XMl7zwQAAPTb9wf9eWcCAAAAAAAAAAAAAAAAAAAA+9dufJ3Y5pgb+XQVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCZvgsAAP//96DU7Q==")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
sendfile(r0, r1, 0x0, 0x0)

15:12:46 executing program 2:
openat$tun(0xffffffffffffff9c, 0x0, 0x50701, 0x0)

[  639.564534][ T5109] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  639.582929][   T28] audit: type=1804 audit(1706886766.116:145): pid=16987 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1122/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:12:46 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(0x0, 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

15:12:46 executing program 2:
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f00000006c0))

[  639.785442][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  639.817875][T16966] chnl_net:caif_netlink_parms(): no params data found
15:12:46 executing program 2:
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x1, 0x0)
syz_clone(0x10800000, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0)

[  639.830101][T16996] loop1: detected capacity change from 0 to 512
[  639.872856][ T5149] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0
[  639.884218][T16996] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a817c028, mo2=0000]
[  639.918802][ T5149] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0
[  639.927651][T16996] System zones: 0-2, 18-18, 34-34
[  639.932970][ T5149] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0
[  639.933009][ T5149] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0
[  639.933038][ T5149] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0
[  639.933067][ T5149] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0
[  639.933096][ T5149] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0
[  639.976026][ T5149] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0
[  639.983394][ T5149] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0
[  639.990849][ T5149] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0
[  639.998951][ T5149] microsoft 0003:045E:07DA.000C: No inputs registered, leaving
[  640.008564][ T5149] microsoft 0003:045E:07DA.000C: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  640.020125][ T5149] microsoft 0003:045E:07DA.000C: no inputs found
[  640.026599][ T5149] microsoft 0003:045E:07DA.000C: could not initialize ff, continuing anyway
[  640.074193][T16996] EXT4-fs (loop1): 1 orphan inode deleted
[  640.081454][ T5160] libceph: connect (1)[c::]:6789 error -101
[  640.087558][T17001] loop0: detected capacity change from 0 to 512
[  640.096541][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  640.099719][T16996] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:12:46 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x34, 0x0, 0x8, 0x401, 0x0, 0x0, {}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_L3PROTO={0x6}, @CTA_TIMEOUT_DATA={0x4, 0x4, 0x0, 0x1, @tcp}, @CTA_TIMEOUT_L4PROTO={0x5}]}, 0x34}}, 0x0)

[  640.119458][ T5149] usb 4-1: USB disconnect, device number 76
[  640.146303][T16996] ext4 filesystem being mounted at /root/syzkaller-testdir2849955197/syzkaller.ylhN08/603/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  640.178606][T17001] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  640.208452][T17001] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1123/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:12:46 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x4, [@enum]}, {0x0, [0x0, 0x0]}}, 0x0, 0x1001}, 0x20)

15:12:46 executing program 1:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@dioread_lock}, {@debug}, {@noauto_da_alloc}, {@barrier}, {@stripe}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}]}, 0x12, 0x4b4, &(0x7f0000000540)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
sendfile(r0, r1, 0x0, 0x0)

[  640.283157][T16966] bridge0: port 1(bridge_slave_0) entered blocking state
[  640.302840][T16966] bridge0: port 1(bridge_slave_0) entered disabled state
[  640.320941][   T28] audit: type=1804 audit(1706886766.846:146): pid=17012 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1123/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  640.326565][ T5109] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  640.347981][T16966] bridge_slave_0: entered allmulticast mode
[  640.369902][T16966] bridge_slave_0: entered promiscuous mode
15:12:46 executing program 2:
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48c, &(0x7f0000000000)={0x1, 'tunl0\x00'}, 0x18)

[  640.382328][T16966] bridge0: port 2(bridge_slave_1) entered blocking state
[  640.394355][T16966] bridge0: port 2(bridge_slave_1) entered disabled state
[  640.407552][T16966] bridge_slave_1: entered allmulticast mode
15:12:46 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(0x0, 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

[  640.441509][T16966] bridge_slave_1: entered promiscuous mode
[  640.502308][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:12:47 executing program 2:
pselect6(0x0, 0x0, &(0x7f00000008c0), 0x0, &(0x7f0000000940), 0x0)

[  640.580794][T17017] loop1: detected capacity change from 0 to 512
[  640.604214][T16966] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  640.636585][T17017] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a817c028, mo2=0000]
[  640.640048][T16966] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
15:12:47 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00222200000096231306e53f070c00002ddcedfb5a49cc25c01789"], 0x0}, 0x0)

[  640.685889][T17017] System zones: 0-2, 18-18, 34-34
[  640.722003][T17023] loop0: detected capacity change from 0 to 512
[  640.732714][T17017] EXT4-fs (loop1): 1 orphan inode deleted
15:12:47 executing program 2:
shmat(0x0, &(0x7f0000ffb000/0x4000)=nil, 0x5000)

[  640.769645][T17017] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:12:47 executing program 1:
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2, &(0x7f0000000240)={[{@errors_remount}, {@grpquota}, {@dioread_lock}, {@debug}, {@noauto_da_alloc}, {@barrier}, {@stripe}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}]}, 0x12, 0x4b4, &(0x7f0000000540)="$eJzs3d9rW9cdAPDvvbay/HBmZ9tDFlgWlgwnbJHseEnMHrIMxvIU2Ja9Z54tG2PZMpacxCYMh/0BgzHWQp/61JdC/4BCyZ9QCoH2vbSlpbRJ+9CHtiqSrtLElWKHyL5gfz5wfM+5V9L3e2x0dc+9x7oB7FunIuJqRAxExLmIGM7Wp1m51mxstB/36OHd6WZJotG48VkSSbau81pJtjzSfkocjIi/XYv4Z/LDuLW19YWpSqW8krVL9cXlUm1t/fz84tRcea68NDExfmny8uTFybG+9HMkIq786aP//+e1P19567e337/5ydl/NdMayrY/2Y9+ane90PpddAxGxMpOBMvBQLYs5JwHAADb0zzG/0lE/Kp1/D8cA62jUwAAAGAvafxhKL5OIhoAAADAnpW25sAmaTGbCzAUaVostufw/iwOp5Vqrf6b2erq0kx7ruxIFNLZ+Up5LJsrPBKFpNkez+bYdtoXNrUnIuJYRPxv+FCrXZyuVmbyPvkBAAAA+8SRTeP/L4fb438AAABgjxnJOwEAAABgxxn/AwAAwN5n/A8AAAB72l+uX2+WRuf+1zO31lYXqrfOz5RrC8XF1enidHVluThXrc61vrNvcavXq1Sry7+LpdU7pXq5Vi/V1tZvLlZXl+o355+6BTYAAACwi4798v57SURs/P5QqzQdyDspYFckz/PgD3cuD2D3DeSdAJCbwbwTAHJTyDsBIHdbnQfoOXnn7f7nAgAA7IzRn/e+/u/cAOxtad4JAAC7zvV/2L8KZgDCvvfjLba/+PX/RuO5EgIAAPpuqFWStJhdCxyKNC0WI462bgtQSGbnK+WxbHzw7nDhR832eOuZyfP97zAAAAAAAAAAAAAAAAAAAAAAAAAA7GONRhINAAAAYE+LSD9OWt/mHzE6fGZo8/mBA8lXw61lRNx+5cZLd6bq9ZXx5vrPH6+vv5ytv5DHGQwAAABgs844vTOOBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIB+evTw7nSn7GbcT/8YESPd4g/GwdbyYBQi4vAXSQw+8bwkIgb6EH/jXkQc7xY/aaYVI1kW3eIfyjF+GhFH+hAf9rP7zf3P1W7vvzROtZbd33+DWXlRvfd/6eP930CP/c/RbcY48eCNUs/49yJODHbf/3TiJz3in95m/H/8fX2917bGqxGjXT9/kqdileqLy6Xa2vr5+cWpufJceWliYvzS5OXJi5Njpdn5Sjn72TXGf3/x5rfP6v/hHvFHtuj/mW32/5sHdx7+tF0tdIt/9nT3z9/jPeKn2Wffr7N6c/top77Rrj/p5OvvnHxW/2d69H+rv//Zbfb/3F///cE2HwoA7ILa2vrCVKVSXlFRUVF5XMl7zwQAAPTb9wf9eWcCAAAAAAAAAAAAAAAAAAAA+9dufJ3Y5pgb+XQVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCZvgsAAP//96DU7Q==")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
sendfile(r0, r1, 0x0, 0x0)

[  640.810451][T17017] ext4 filesystem being mounted at /root/syzkaller-testdir2849955197/syzkaller.ylhN08/604/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  640.831012][T17023] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  640.862169][T17023] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1124/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  640.872437][T16966] team0: Port device team_slave_0 added
[  640.893764][ T5109] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:12:47 executing program 2:
socketpair(0x11, 0xa, 0x2, &(0x7f00000013c0))

[  640.930109][T16966] team0: Port device team_slave_1 added
15:12:47 executing program 2:
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000240), 0x40, 0x0)

[  640.969088][   T28] audit: type=1804 audit(1706886767.496:147): pid=17030 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1124/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:12:47 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(0xffffffffffffffff, 0x800)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80001d00c0d3)

[  641.056124][T16966] batman_adv: batadv0: Adding interface: batadv_slave_0
[  641.089371][ T5160] usb 4-1: new high-speed USB device number 77 using dummy_hcd
15:12:47 executing program 2:
r0 = socket$kcm(0x29, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000bc0))

[  641.097448][T16966] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  641.135197][T17035] loop1: detected capacity change from 0 to 512
[  641.140250][T16966] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  641.156928][T16966] batman_adv: batadv0: Adding interface: batadv_slave_1
[  641.160097][ T5154] libceph: connect (1)[c::]:6789 error -101
[  641.164476][T16966] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  641.170212][ T5116] Bluetooth: hci6: command 0x0409 tx timeout
[  641.200504][T16966] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  641.213133][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  641.222859][ T5154] libceph: mon0 (1)[c::]:6789 connect error
15:12:47 executing program 2:
bpf$BPF_BTF_LOAD(0x15, &(0x7f00000001c0)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a}, 0x20)

[  641.313654][T17035] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a817c028, mo2=0000]
[  641.322345][T17035] System zones: 0-2, 18-18, 34-34
[  641.338542][T17035] EXT4-fs (loop1): 1 orphan inode deleted
15:12:47 executing program 2:
prctl$PR_SET_TIMERSLACK(0x1d, 0x8)

[  641.364726][T17035] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  641.378834][T17035] ext4 filesystem being mounted at /root/syzkaller-testdir2849955197/syzkaller.ylhN08/605/file1 supports timestamps until 2038-01-19 (0x7fffffff)
15:12:47 executing program 2:
mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000380))

[  641.429727][ T5160] usb 4-1: Using ep0 maxpacket: 16
15:12:48 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

15:12:48 executing program 2:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_udp_int(r0, 0x11, 0xa, 0x0, &(0x7f0000000100))

[  641.475666][T17046] loop0: detected capacity change from 0 to 512
[  641.488209][T16966] hsr_slave_0: entered promiscuous mode
15:12:48 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0xb, [@typedef={0x9}, @const={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61]}}, 0x0, 0x3b}, 0x20)

[  641.540117][ T5109] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  641.553439][T16966] hsr_slave_1: entered promiscuous mode
[  641.561173][T16966] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  641.569747][ T5160] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  641.574691][T16966] Cannot create hsr debugfs directory
[  641.609339][ T5160] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  641.620459][T17046] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  641.633755][ T5160] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  641.637012][T17046] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1125/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  641.706958][ T5160] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  641.749364][   T28] audit: type=1804 audit(1706886768.276:148): pid=17055 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1125/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  641.775761][ T5160] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
15:12:48 executing program 2:
io_uring_setup(0x54d, &(0x7f0000000100)={0x0, 0x0, 0x2, 0x1})

15:12:48 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(0xffffffffffffffff, 0x800)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80001d00c0d3)

[  641.808493][ T5160] usb 4-1: config 0 descriptor??
15:12:48 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  641.890404][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:12:48 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x8910, &(0x7f0000000200)={'ip_vti0\x00', &(0x7f0000000340)={'tunl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @private, @empty}}}})

15:12:48 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x5, [@enum]}, {0x0, [0x0, 0x0, 0x0]}}, 0x0, 0x1000000}, 0x20)

[  642.070408][T17065] loop0: detected capacity change from 0 to 512
15:12:48 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  642.191105][ T5152] libceph: connect (1)[c::]:6789 error -101
[  642.197207][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  642.218517][T17065] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:12:48 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  642.260802][T16966] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  642.283336][T17065] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1126/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  642.312620][ T5160] microsoft 0003:045E:07DA.000D: unknown main item tag 0x0
[  642.336122][ T5160] microsoft 0003:045E:07DA.000D: unknown main item tag 0x0
[  642.353792][ T5160] microsoft 0003:045E:07DA.000D: unknown main item tag 0x0
[  642.375841][ T5160] microsoft 0003:045E:07DA.000D: unknown main item tag 0x0
[  642.399146][ T5160] microsoft 0003:045E:07DA.000D: unknown main item tag 0x0
[  642.430228][T16966] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  642.447611][ T5160] microsoft 0003:045E:07DA.000D: unknown main item tag 0x0
[  642.458337][   T28] audit: type=1804 audit(1706886768.986:149): pid=17074 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1126/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  642.484659][ T5160] microsoft 0003:045E:07DA.000D: unknown main item tag 0x0
[  642.496989][ T5152] libceph: connect (1)[c::]:6789 error -101
[  642.509149][ T5160] microsoft 0003:045E:07DA.000D: unknown main item tag 0x0
[  642.520029][ T5152] libceph: mon0 (1)[c::]:6789 connect error
15:12:49 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  642.559267][ T5160] microsoft 0003:045E:07DA.000D: unknown main item tag 0x0
[  642.566739][ T5160] microsoft 0003:045E:07DA.000D: unknown main item tag 0x0
[  642.600127][ T5160] microsoft 0003:045E:07DA.000D: No inputs registered, leaving
15:12:49 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(0xffffffffffffffff, 0x800)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80001d00c0d3)

[  642.641275][T16966] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  642.679594][ T5160] microsoft 0003:045E:07DA.000D: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  642.709376][ T5160] microsoft 0003:045E:07DA.000D: no inputs found
[  642.727878][ T5160] microsoft 0003:045E:07DA.000D: could not initialize ff, continuing anyway
15:12:49 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  642.763422][ T5160] usb 4-1: USB disconnect, device number 77
[  642.827799][T16966] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  642.879949][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:12:49 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

15:12:49 executing program 2:
madvise(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xf)

15:12:49 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00222200000096231306e53f070c00002ddcedfb5a49cc25c01789"], 0x0}, 0x0)

[  643.095215][ T5160] libceph: connect (1)[c::]:6789 error -101
[  643.109625][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  643.142496][T17081] loop0: detected capacity change from 0 to 512
15:12:49 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

15:12:49 executing program 2:
fsopen(&(0x7f00000003c0)='proc\x00', 0x0)

[  643.229428][ T5116] Bluetooth: hci6: command 0x041b tx timeout
[  643.256317][T17081] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  643.290741][T17081] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1127/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:12:49 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  643.331271][T16966] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  643.365772][T16966] netdevsim netdevsim4 netdevsim1: renamed from eth1
15:12:49 executing program 2:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000080)='/proc/self/net/pfkey\x00', &(0x7f00000000c0)='-)-\x00', 0x0)

[  643.387795][T16966] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  643.422996][T16966] netdevsim netdevsim4 netdevsim3: renamed from eth3
15:12:50 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  643.499625][   T24] usb 4-1: new high-speed USB device number 78 using dummy_hcd
[  643.507459][   T28] audit: type=1804 audit(1706886770.036:150): pid=17097 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1127/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:12:50 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

15:12:50 executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getegid()
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2000005, &(0x7f0000001cc0)=ANY=[@ANYRES16=r0, @ANYRESHEX, @ANYRESHEX=r0], 0x1, 0x4d6, &(0x7f0000000f00)="$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")

[  643.615022][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:12:50 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, 0xffffffffffffffff, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

15:12:50 executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getegid()
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x2000005, &(0x7f0000001cc0)=ANY=[@ANYRES16=r0, @ANYRESHEX, @ANYRESHEX=r0], 0x1, 0x4d6, &(0x7f0000000f00)="$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")

[  643.729743][T16966] 8021q: adding VLAN 0 to HW filter on device bond0
[  643.790509][   T24] usb 4-1: Using ep0 maxpacket: 16
[  643.812881][T16966] 8021q: adding VLAN 0 to HW filter on device team0
[  643.832015][T17104] loop0: detected capacity change from 0 to 512
[  643.858896][ T5149] bridge0: port 1(bridge_slave_0) entered blocking state
[  643.866171][ T5149] bridge0: port 1(bridge_slave_0) entered forwarding state
15:12:50 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, 0xffffffffffffffff, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  643.921446][ T5149] bridge0: port 2(bridge_slave_1) entered blocking state
[  643.928790][ T5149] bridge0: port 2(bridge_slave_1) entered forwarding state
[  643.955012][T17104] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:12:50 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x0, 0x0, 0x0, 0x316, 0x1}, 0x48)

[  643.969732][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  643.986694][T17104] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1128/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  644.003366][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
15:12:50 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, 0xffffffffffffffff, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

15:12:50 executing program 2:
r0 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ff9000/0x4000)=nil)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_DELETE(0xffffffffffffffff, 0x0, 0x4080)
mmap(&(0x7f0000ec0000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0xe6989000)
shmat(r0, &(0x7f0000ff9000/0x1000)=nil, 0x4000)

[  644.072974][   T24] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  644.149234][   T28] audit: type=1804 audit(1706886770.676:151): pid=17117 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1128/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  644.149235][   T24] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
15:12:50 executing program 2:
r0 = socket$kcm(0x29, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000440)={<r2=>0xffffffffffffffff})
setsockopt$PNPIPE_ENCAP(r2, 0x113, 0x1, 0x0, 0x0)

15:12:50 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
getsockopt$X25_QBITINCL(0xffffffffffffffff, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  644.209307][ T5154] libceph: connect (1)[c::]:6789 error -101
[  644.215414][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  644.243035][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
15:12:50 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

[  644.300895][   T24] usb 4-1: config 0 descriptor??
15:12:50 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
getsockopt$X25_QBITINCL(0xffffffffffffffff, 0x106, 0x1, 0x0, &(0x7f0000000100))

15:12:50 executing program 2:
r0 = socket$kcm(0x29, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000bc0)={<r2=>0xffffffffffffffff})
syz_genetlink_get_family_id$l2tp(&(0x7f0000000ec0), r2)
sendmsg$L2TP_CMD_SESSION_MODIFY(r2, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={0x0}}, 0x0)

[  644.384414][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:12:51 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
getsockopt$X25_QBITINCL(0xffffffffffffffff, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  644.550145][T17132] loop0: detected capacity change from 0 to 512
[  644.591588][T17132] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  644.609419][T17132] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1129/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:12:51 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

15:12:51 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

[  644.741440][   T28] audit: type=1804 audit(1706886771.276:152): pid=17132 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1129/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  644.791269][   T24] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  644.798568][   T24] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  644.816425][   T24] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  644.817024][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  644.840461][   T24] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  644.848364][T16966] 8021q: adding VLAN 0 to HW filter on device batadv0
15:12:51 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  644.885792][   T24] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  644.913309][   T24] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  644.953244][   T24] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  644.999401][   T24] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  645.006703][   T24] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  645.031785][   T24] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
15:12:51 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  645.044236][T17146] loop0: detected capacity change from 0 to 512
[  645.055981][   T24] microsoft 0003:045E:07DA.000E: No inputs registered, leaving
[  645.084196][   T24] microsoft 0003:045E:07DA.000E: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  645.116584][   T24] microsoft 0003:045E:07DA.000E: no inputs found
[  645.132890][T17146] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  645.151837][   T24] microsoft 0003:045E:07DA.000E: could not initialize ff, continuing anyway
15:12:51 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  645.164851][ T5160] libceph: connect (1)[c::]:6789 error -101
[  645.180402][T17146] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1130/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  645.195555][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  645.238989][   T24] usb 4-1: USB disconnect, device number 78
15:12:51 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0)
ioctl$LOOP_GET_STATUS(r0, 0x4c03, &(0x7f0000000200))

[  645.285309][   T28] audit: type=1804 audit(1706886771.816:153): pid=17146 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1130/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  645.322019][ T5116] Bluetooth: hci6: command 0x040f tx timeout
15:12:51 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

15:12:51 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

15:12:51 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x4, [@enum={0x1}]}, {0x0, [0x2e, 0x30]}}, 0x0, 0x28}, 0x20)

[  645.398020][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:12:52 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00222200000096231306e53f070c00002ddcedfb5a49cc25c0178910badf00"], 0x0}, 0x0)

15:12:52 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  645.528981][ T5160] libceph: connect (1)[c::]:6789 error -101
[  645.535584][ T5160] libceph: mon0 (1)[c::]:6789 connect error
15:12:52 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{}]}]}}, 0x0, 0x2e}, 0x20)

15:12:52 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, 0x0, 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  645.758628][T16966] veth0_vlan: entered promiscuous mode
[  645.777788][T17169] loop0: detected capacity change from 0 to 512
15:12:52 executing program 2:
get_mempolicy(&(0x7f0000000240), &(0x7f0000000280), 0x1, &(0x7f0000ffb000/0x3000)=nil, 0x4)

[  645.828847][T17169] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  645.851524][T16966] veth1_vlan: entered promiscuous mode
[  645.865619][T17169] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1131/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:12:52 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, 0x0, 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

15:12:52 executing program 2:
sendto(0xffffffffffffffff, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0)

[  645.949567][   T28] audit: type=1804 audit(1706886772.476:154): pid=17169 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1131/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  645.980854][ T5149] usb 4-1: new high-speed USB device number 79 using dummy_hcd
15:12:52 executing program 2:
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x0, 0x0, 0x0)

[  646.045525][T16966] veth0_macvtap: entered promiscuous mode
[  646.078513][T16966] veth1_macvtap: entered promiscuous mode
15:12:52 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

[  646.100471][   T24] libceph: connect (1)[c::]:6789 error -101
[  646.127339][   T24] libceph: mon0 (1)[c::]:6789 connect error
15:12:52 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, 0x0, 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  646.145043][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  646.167818][T16966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  646.197792][T16966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  646.226141][T16966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  646.238536][T16966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
15:12:52 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  646.249177][ T5149] usb 4-1: Using ep0 maxpacket: 16
[  646.255993][T16966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  646.268129][T16966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  646.290357][T16966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  646.309469][T16966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  646.334473][T16966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  646.345350][T16966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
15:12:52 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  646.356369][T16966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  646.367241][T16966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  646.379333][ T5149] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  646.383259][T16966] batman_adv: batadv0: Interface activated: batadv_slave_0
[  646.426971][T16966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  646.437765][ T5149] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  646.437799][ T5149] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  646.437852][ T5149] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
15:12:53 executing program 2:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000100)={'ip6tnl0\x00', &(0x7f0000000080)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @private2, @private2}})

15:12:53 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  646.437879][ T5149] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  646.440705][ T5149] usb 4-1: config 0 descriptor??
[  646.499133][T16966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  646.550421][T16966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  646.584393][T16966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  646.593584][T17190] loop0: detected capacity change from 0 to 512
[  646.595069][T16966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  646.641632][T17190] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  646.642620][T16966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  646.673851][T16966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
15:12:53 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x10, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  646.684761][T16966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  646.693068][T17190] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1132/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  646.703483][T16966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  646.727395][T16966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  646.747799][T16966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  646.758988][T16966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  646.786139][   T28] audit: type=1804 audit(1706886773.316:155): pid=17190 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1132/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  646.797820][T16966] batman_adv: batadv0: Interface activated: batadv_slave_1
15:12:53 executing program 2:
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x191402, 0x0)

15:12:53 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x10, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  646.876973][T16966] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  646.886196][T16966] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  646.898645][T16966] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
15:12:53 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

[  646.941534][T16966] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
15:12:53 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x10, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

15:12:53 executing program 2:
syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x101180)

[  647.035220][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:12:53 executing program 2:
socketpair(0x1, 0x0, 0x0, &(0x7f0000000140))

[  647.149818][   T24] libceph: connect (1)[c::]:6789 error -101
[  647.155894][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  647.166642][ T5149] microsoft 0003:045E:07DA.000F: unknown main item tag 0x0
15:12:53 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, 0xffffffffffffffff, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  647.208800][ T5149] microsoft 0003:045E:07DA.000F: unknown main item tag 0x0
[  647.246703][ T5149] microsoft 0003:045E:07DA.000F: unknown main item tag 0x0
[  647.266641][T17209] loop0: detected capacity change from 0 to 512
[  647.277564][ T5149] microsoft 0003:045E:07DA.000F: unknown main item tag 0x0
[  647.295179][ T5149] microsoft 0003:045E:07DA.000F: unknown main item tag 0x0
[  647.321152][ T5149] microsoft 0003:045E:07DA.000F: unknown main item tag 0x0
[  647.343227][T16704] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  647.353926][ T5149] microsoft 0003:045E:07DA.000F: unknown main item tag 0x0
15:12:53 executing program 2:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0x5, &(0x7f0000000040)=@raw=[@tail_call], &(0x7f0000000080)='GPL\x00', 0x7}, 0x90)

[  647.365309][T16704] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  647.383247][T17209] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  647.396485][ T5149] microsoft 0003:045E:07DA.000F: unknown main item tag 0x0
[  647.400045][ T5116] Bluetooth: hci6: command 0x0419 tx timeout
15:12:53 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, 0xffffffffffffffff, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  647.428590][ T5149] microsoft 0003:045E:07DA.000F: unknown main item tag 0x0
[  647.469575][T17209] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1133/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  647.485291][ T5149] microsoft 0003:045E:07DA.000F: unknown main item tag 0x0
15:12:54 executing program 2:
bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000140), 0x10)

[  647.512559][ T5149] microsoft 0003:045E:07DA.000F: No inputs registered, leaving
[  647.527277][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  647.545163][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
15:12:54 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, 0xffffffffffffffff, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  647.570467][ T5149] microsoft 0003:045E:07DA.000F: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  647.599963][ T5149] microsoft 0003:045E:07DA.000F: no inputs found
[  647.606543][ T5149] microsoft 0003:045E:07DA.000F: could not initialize ff, continuing anyway
15:12:54 executing program 2:
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_dccp_int(r0, 0x21, 0x0, 0x0, 0x0)

[  647.629409][   T28] audit: type=1804 audit(1706886774.156:156): pid=17209 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1133/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:12:54 executing program 4:
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000140)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='\'\x9c.-\\\x00', &(0x7f0000000100)='&\x01\x00', 0x0)
r1 = dup(r0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
read$FUSE(r1, 0x0, 0x0)
tkill(0x0, 0xb)

[  647.691458][ T5149] usb 4-1: USB disconnect, device number 79
15:12:54 executing program 1:
syz_init_net_socket$x25(0x9, 0x5, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
getsockopt$X25_QBITINCL(0xffffffffffffffff, 0x106, 0x1, 0x0, &(0x7f0000000100))

15:12:54 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80001d00c0d3)

[  647.804468][T16754] libceph: connect (1)[c::]:6789 error -101
[  647.817492][T16754] libceph: mon0 (1)[c::]:6789 connect error
15:12:54 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00222200000096231306e53f070c00002ddcedfb5a49cc25c0178910badf00"], 0x0}, 0x0)

15:12:54 executing program 2:
bpf$MAP_CREATE(0xf, &(0x7f0000000380)=@bloom_filter, 0x48)

[  647.875547][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:12:54 executing program 1:
syz_init_net_socket$x25(0x9, 0x5, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
getsockopt$X25_QBITINCL(0xffffffffffffffff, 0x106, 0x1, 0x0, &(0x7f0000000100))

15:12:54 executing program 2:
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000640)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x1}, 0x48)

15:12:54 executing program 1:
syz_init_net_socket$x25(0x9, 0x5, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
getsockopt$X25_QBITINCL(0xffffffffffffffff, 0x106, 0x1, 0x0, &(0x7f0000000100))

[  648.113918][T16754] libceph: connect (1)[c::]:6789 error -101
[  648.124046][T17241] loop0: detected capacity change from 0 to 512
[  648.134287][T16754] libceph: mon0 (1)[c::]:6789 connect error
[  648.188574][T17241] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  648.211574][   T24] libceph: connect (1)[c::]:6789 error -101
[  648.221395][   T24] libceph: mon0 (1)[c::]:6789 connect error
15:12:54 executing program 2:
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum]}}, 0x0, 0x26}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000080)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r0, 0x8, &(0x7f0000000240), 0x8}, 0x90)

[  648.235012][T17241] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1134/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  648.269525][ T5149] usb 4-1: new high-speed USB device number 80 using dummy_hcd
15:12:54 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, 0x0)

[  648.293878][   T28] audit: type=1804 audit(1706886774.826:157): pid=17241 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1134/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:12:54 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, 0x0)

15:12:54 executing program 2:
bpf$BPF_BTF_LOAD(0x4, &(0x7f00000001c0)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a}, 0x20)

15:12:54 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80001d00c0d3)

[  648.472153][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  648.509237][ T5149] usb 4-1: Using ep0 maxpacket: 16
[  648.511270][   T24] libceph: connect (1)[c::]:6789 error -101
15:12:55 executing program 2:
prctl$PR_SET_DUMPABLE(0x4, 0x0)
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000540), 0x0, 0x0)

15:12:55 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, 0x0)

[  648.535700][   T24] libceph: mon0 (1)[c::]:6789 connect error
15:12:55 executing program 2:
sendmsg$BATADV_CMD_TP_METER_CANCEL(0xffffffffffffffff, 0x0, 0x0)

[  648.598066][T17225] ceph: No mds server is up or the cluster is laggy
[  648.629294][ T5149] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  648.679140][ T5149] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  648.692253][   T24] libceph: connect (1)[c::]:6789 error -101
[  648.697349][T17259] loop0: detected capacity change from 0 to 512
[  648.715425][ T5149] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  648.717693][   T24] libceph: mon0 (1)[c::]:6789 connect error
15:12:55 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched_retired(r0, &(0x7f00000034c0)={0x0, 0x0, &(0x7f0000003480)={&(0x7f0000000500)=@delchain={0xec4, 0x65, 0x0, 0x0, 0x0, {}, [@f_rsvp={{0x9}, {0xe94, 0x2, [@TCA_RSVP_CLASSID={0x8, 0x1, {0xf, 0xfff1}}, @TCA_RSVP_CLASSID={0x8, 0x1, {0xffff, 0xfff3}}, @TCA_RSVP_ACT={0x3d0, 0x6, [@m_sample={0xf8, 0x5, 0x0, 0x0, {{0xb}, {0x34, 0x2, 0x0, 0x1, [@TCA_SAMPLE_RATE={0x8, 0x3, 0x1}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x3, 0x0, 0x0, 0x5}}, @TCA_SAMPLE_RATE={0x8}, @TCA_SAMPLE_RATE={0x8}]}, {0x99, 0x6, "876c396666a79d51445ee9b8fcec0dc5318283b4a53ddb07ecc79da816769d15f5993dc773f551a13b801bedb9a7021b9db163fccda1729d292de2a1da97ed48ebaa9ab3d25c8969c0aa7c8c1b916ab2934fd0c7672c82e4e73460b88994a38b173c42d3f996b65a1d38a5a44f1e0f6f964bdd5344582e0af1cf4e075953aa9f7dc8111d519a9e3c087b9123ac746c486bfe29d080"}, {0xc, 0x7, {0x1, 0x1}}, {0xc}}}, @m_nat={0x170, 0x0, 0x0, 0x0, {{0x8}, {0xcc, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x9}, @empty, @local}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x0, 0x0, 0x0, 0xd2}, @private, @empty}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x0, 0x0, 0x7, 0x0, 0x4}, @remote, @private=0xa010101, 0xffffff00}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x3, 0x0, 0x0, 0x0, 0x1000}, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x0, 0x2, 0x5}, @dev, @local, 0x0, 0x1}}]}, {0x7f, 0x6, "c31f42451eba9f8b5a19e919bba227a723d6c32d09a1668ed80faf2b021c118a05aac61bae9c0246ffa4647bee4073bdef676e879db94c7dcf1e8c2d5681ce5fa23ecea5f1ca59b8af53a72ff2e72a38b3cf13e85d3d4870bf97bf721e8ffd3bdcca339e55a7b53e2945eecea776f324d7022c6dda8b1a5bf43f86"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x3}}}}, @m_ctinfo={0x164, 0x0, 0x0, 0x0, {{0xb}, {0x64, 0x2, 0x0, 0x1, [@TCA_CTINFO_ZONE={0x6}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8}, @TCA_CTINFO_PARMS_CPMARK_MASK={0x8}, @TCA_CTINFO_PARMS_CPMARK_MASK={0x8}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8}, @TCA_CTINFO_PARMS_CPMARK_MASK={0x8}, @TCA_CTINFO_ACT={0x18}, @TCA_CTINFO_ACT={0x18, 0x3, {0x0, 0x1ff, 0x0, 0x0, 0x2a}}]}, {0xd5, 0x6, "4a5a3c04cae18a414fae917ed370a8efec2e326ec8c4673b4e97798f384de7488a48753f0e2f175c50f63325cf7bcbfc0dbf02807550b54a08e9080e4a3c602ea3e91e916e3c925ed8a7acb41ff5073c16c33f3b1784cf81527e63b6332bb88c34abb3dbdbb8d64a14eafd73954f8e9b1b3a27d0771fea5dec7edf4c66bd42d2327ca75bd51b29b411af016c5ee15d2e0d6234d3cd8f6866c8845983ab6ac6f62565abc0ea04af27b08939b12f5ba66be85747ac8cf589ed42fdd8f026baaf955690fc2cb76e50f88c95c292d9b9c64e2a"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2}}}}]}, @TCA_RSVP_POLICE={0x408, 0x5, [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x200, 0x200, 0x0, 0x0, 0xcb9, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7, 0xb99, 0x0, 0x9, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x5881, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0xf7e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x7, 0x0, 0x1, 0x0, 0x0, 0x7ff, 0x2, 0xb80, 0x0, 0x80, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x200, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8001, 0x8, 0x0, 0x0, 0x0, 0x1, 0x59b1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}]}, @TCA_RSVP_DST={0x8, 0x2, @loopback}, @TCA_RSVP_ACT={0x298, 0x6, [@m_gact={0x198, 0x0, 0x0, 0x0, {{0x9}, {0x94, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0xc, 0x3, {0x0, 0x26e6}}, @TCA_GACT_PROB={0xc, 0x3, {0x1}}, @TCA_GACT_PROB={0xc, 0x3, {0x0, 0xddd, 0x5}}, @TCA_GACT_PROB={0xc, 0x3, {0x0, 0x0, 0x2}}, @TCA_GACT_PROB={0xc, 0x3, {0x0, 0x20d1, 0x2}}, @TCA_GACT_PROB={0xc, 0x3, {0x0, 0x15fe}}, @TCA_GACT_PARMS={0x18, 0x2, {0x0, 0x9, 0x0, 0x7f}}, @TCA_GACT_PARMS={0x18}, @TCA_GACT_PARMS={0x18, 0x2, {0x0, 0x0, 0x0, 0x0, 0x80000000}}]}, {0xd9, 0x6, "efaef6fcfc996ad10c09e6b2c2d28c26fa82090b7757cd6ec1541ae86f682a629ebd8a42f3082f8d06e7d8667c4f80357f5b6f36dde870c0998f7581731dc5f4d890574d90c9d29d3f32222dea26e19f4fcb93f5bfe405c8dc5e9ee738148ac58d7d29f7a3ddc3ff261c6d92cb85e56832c9aafe2da4cf041c0b3e4d429d6d79f6a58bf8e890b52bcb910e8027e0ba6b69b7a922e4596aded2612463c5ec2b742ec2253e6e69605e225d380f78d7cc7406a692fab384e6014a165305ade79f5272cb702f25d4308c6601196f55f11d5667f5f7db43"}, {0xc}, {0xc}}}, @m_connmark={0xc4, 0x0, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c}]}, {0x75, 0x6, "2c1776833c4f82de9b75a1c364cd914beca77b8d3e56e48ed2206d580ec3d9b3c23738c85843875d34c93e4621bf88915b5ed265dddafeaff85ddc6b837cefd3d86211d5225695877820ad09c1ef8a725b4b6e86302066d3924d1e2b91a2144f6a80bd4226ac604bc6a9ea42968198ca2c"}, {0xc}, {0xc}}}, @m_ctinfo={0x38, 0x0, 0x0, 0x0, {{0xb}, {0xc, 0x2, 0x0, 0x1, [@TCA_CTINFO_PARMS_CPMARK_MASK={0x8}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}, @TCA_RSVP_POLICE={0x408, 0x5, [@TCA_POLICE_RATE={0x404}]}]}}]}, 0xec4}, 0x1, 0x0, 0x0, 0x8000}, 0x20048000)

[  648.749697][ T5149] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
15:12:55 executing program 2:
syz_io_uring_setup(0x46af, &(0x7f0000000000)={0x0, 0x0, 0x800}, &(0x7f0000000080), &(0x7f00000000c0))

[  648.818523][ T5149] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  648.831983][ T5149] usb 4-1: config 0 descriptor??
[  648.837899][T17259] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  648.860312][T17259] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1135/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:12:55 executing program 2:
mq_open(&(0x7f0000000000)='}/\\@\\@&\x00', 0x0, 0x0, 0x0)

15:12:55 executing program 1:
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x10)

[  648.904311][   T28] audit: type=1804 audit(1706886775.436:158): pid=17259 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1135/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:12:55 executing program 2:
get_mempolicy(0x0, &(0x7f0000000280), 0x1, &(0x7f0000ffb000/0x3000)=nil, 0x4)

15:12:55 executing program 2:
r0 = socket$kcm(0x29, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, 0x0)

15:12:55 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r3 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x80001d00c0d3)

15:12:55 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendto(r0, 0x0, 0x0, 0x4000011, 0x0, 0x0)

[  649.061180][T16754] libceph: connect (1)[c::]:6789 error -101
[  649.067266][T16754] libceph: mon0 (1)[c::]:6789 connect error
15:12:55 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(r0, 0x8982, &(0x7f0000000000)={0x6, 'dummy0\x00', {0x2e94}})

15:12:55 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x2, [@int]}}, 0x0, 0x2a}, 0x20)

[  649.145040][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:12:55 executing program 2:
fsmount(0xffffffffffffffff, 0x0, 0x11)

15:12:55 executing program 1:
r0 = socket(0x18, 0x0, 0x2)
sendmsg$nl_route_sched_retired(r0, &(0x7f000000c300)={0x0, 0x0, &(0x7f000000c2c0)={0x0, 0xc048}}, 0x0)

[  649.303366][T17285] loop0: detected capacity change from 0 to 512
[  649.313124][ T5149] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
[  649.339849][ T5149] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
[  649.361701][ T5149] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
[  649.373293][T17285] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  649.373302][ T5149] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
[  649.373439][T17285] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1136/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:12:56 executing program 2:
r0 = socket$kcm(0x29, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000bc0)={<r2=>0xffffffffffffffff})
syz_genetlink_get_family_id$l2tp(&(0x7f0000000ec0), r2)

[  649.403795][ T5149] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
[  649.425282][ T5149] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
15:12:56 executing program 1:
[  649.500244][ T5149] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
[  649.522526][   T28] audit: type=1804 audit(1706886776.046:159): pid=17285 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1136/file0/bus" dev="loop0" ino=18 res=1 errno=0
syz_mount_image$vfat(&(0x7f000001ff80), &(0x7f000001ffc0)='./file0\x00', 0x5, &(0x7f0000020000), 0x1, 0x1ff6b, &(0x7f0000020040)="$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")

[  649.559354][ T5149] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
[  649.568987][ T5149] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
[  649.603426][ T5149] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
[  649.641609][ T5149] microsoft 0003:045E:07DA.0010: No inputs registered, leaving
15:12:56 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, 0x0, 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

[  649.663932][ T5149] microsoft 0003:045E:07DA.0010: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  649.686106][ T5149] microsoft 0003:045E:07DA.0010: no inputs found
[  649.702945][ T5149] microsoft 0003:045E:07DA.0010: could not initialize ff, continuing anyway
[  649.720804][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  649.725247][ T5149] usb 4-1: USB disconnect, device number 80
[  649.873108][T17297] loop0: detected capacity change from 0 to 512
[  649.916768][T17297] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  649.934702][T17297] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1137/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  649.997147][   T28] audit: type=1804 audit(1706886776.526:160): pid=17297 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1137/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:12:56 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00222200000096231306e53f070c00002ddcedfb5a49cc25c0178910badf00"], 0x0}, 0x0)

[  650.189877][   T24] libceph: connect (1)[c::]:6789 error -101
[  650.200661][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  650.216931][   T24] libceph: connect (1)[c::]:6789 error -101
[  650.226294][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  650.236735][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  650.390013][ T5149] usb 4-1: new high-speed USB device number 81 using dummy_hcd
[  650.639263][ T5149] usb 4-1: Using ep0 maxpacket: 16
[  650.760795][ T5149] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  650.779921][ T5149] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  650.797425][ T5149] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  650.818641][ T5149] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  650.828157][ T5149] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  650.840145][ T5149] usb 4-1: config 0 descriptor??
[  651.150181][ T5160] libceph: connect (1)[c::]:6789 error -101
[  651.156263][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  651.169491][   T24] libceph: connect (1)[c::]:6789 error -101
[  651.175603][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  651.334061][ T5149] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  651.341640][ T5149] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  651.349716][ T5149] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  651.357115][ T5149] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  651.372843][ T5149] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  651.380656][ T5149] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  651.388005][ T5149] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  651.400343][ T5149] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  651.414004][ T5149] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  651.427580][ T5149] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  651.436209][ T5149] microsoft 0003:045E:07DA.0011: No inputs registered, leaving
[  651.449753][ T5160] libceph: connect (1)[c::]:6789 error -101
[  651.455477][ T5149] microsoft 0003:045E:07DA.0011: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  651.467453][ T5149] microsoft 0003:045E:07DA.0011: no inputs found
[  651.468171][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  651.474870][ T5149] microsoft 0003:045E:07DA.0011: could not initialize ff, continuing anyway
[  651.480872][ T5152] libceph: connect (1)[c::]:6789 error -101
[  651.513668][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  651.529757][ T5152] usb 4-1: USB disconnect, device number 81
[  652.035509][ T5152] libceph: connect (1)[c::]:6789 error -101
[  652.058026][ T5160] libceph: connect (1)[c::]:6789 error -101
[  652.064234][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  652.074970][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  653.167440][ T5152] libceph: connect (1)[c::]:6789 error -101
[  653.177482][ T5160] libceph: connect (1)[c::]:6789 error -101
[  653.183809][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  653.199409][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  654.197970][   T24] libceph: connect (1)[c::]:6789 error -101
[  654.204499][ T5160] libceph: connect (1)[c::]:6789 error -101
[  654.210725][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  654.216844][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  654.472168][ T5160] libceph: connect (1)[c::]:6789 error -101
[  654.478221][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  654.485084][   T24] libceph: connect (1)[c::]:6789 error -101
[  654.491874][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  655.004900][   T24] libceph: connect (1)[c::]:6789 error -101
[  655.011402][ T5160] libceph: connect (1)[c::]:6789 error -101
[  655.018473][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  655.024636][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  656.198268][T16754] libceph: connect (1)[c::]:6789 error -101
[  656.206457][   T24] libceph: connect (1)[c::]:6789 error -101
[  656.212672][T16754] libceph: mon0 (1)[c::]:6789 connect error
[  656.219747][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  657.156814][   T24] libceph: connect (1)[c::]:6789 error -101
[  657.163155][ T5160] libceph: connect (1)[c::]:6789 error -101
[  657.169293][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  657.175386][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  657.451011][   T24] libceph: connect (1)[c::]:6789 error -101
[  657.457907][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  657.464410][ T5160] libceph: connect (1)[c::]:6789 error -101
[  657.470846][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  657.991354][T16754] libceph: connect (1)[c::]:6789 error -101
[  657.997369][T16754] libceph: mon0 (1)[c::]:6789 connect error
[  658.004229][ T5160] libceph: connect (1)[c::]:6789 error -101
[  658.010814][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  659.152709][ T5160] libceph: connect (1)[c::]:6789 error -101
[  659.158840][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  659.165626][ T5160] libceph: connect (1)[c::]:6789 error -101
[  659.171829][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  660.197068][T16754] libceph: connect (1)[c::]:6789 error -101
[  660.204540][   T24] libceph: connect (1)[c::]:6789 error -101
[  660.210688][T16754] libceph: mon0 (1)[c::]:6789 connect error
[  660.216782][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  660.481610][   T24] libceph: connect (1)[c::]:6789 error -101
[  660.487624][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  660.494069][T16754] libceph: connect (1)[c::]:6789 error -101
[  660.500276][T16754] libceph: mon0 (1)[c::]:6789 connect error
[  661.012132][T16754] libceph: connect (1)[c::]:6789 error -101
[  661.018245][T16754] libceph: mon0 (1)[c::]:6789 connect error
[  661.024785][   T24] libceph: connect (1)[c::]:6789 error -101
[  661.031007][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  662.196231][T16754] libceph: connect (1)[c::]:6789 error -101
[  662.204032][   T24] libceph: connect (1)[c::]:6789 error -101
[  662.210236][T16754] libceph: mon0 (1)[c::]:6789 connect error
[  662.217059][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  663.158528][   T24] libceph: connect (1)[c::]:6789 error -101
[  663.164880][ T5152] libceph: connect (1)[c::]:6789 error -101
[  663.171016][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  663.177104][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  663.451062][   T24] libceph: connect (1)[c::]:6789 error -101
[  663.457148][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  663.463623][   T24] libceph: connect (1)[c::]:6789 error -101
[  663.469962][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  663.982100][T16754] libceph: connect (1)[c::]:6789 error -101
[  663.988157][T16754] libceph: mon0 (1)[c::]:6789 connect error
[  663.994511][   T24] libceph: connect (1)[c::]:6789 error -101
[  664.000863][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  665.152932][   T24] libceph: connect (1)[c::]:6789 error -101
[  665.158964][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  665.165980][ T5152] libceph: connect (1)[c::]:6789 error -101
[  665.172265][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  666.205897][   T24] libceph: connect (1)[c::]:6789 error -101
[  666.212438][ T5152] libceph: connect (1)[c::]:6789 error -101
[  666.218673][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  666.224813][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  666.503174][ T5152] libceph: connect (1)[c::]:6789 error -101
[  666.509536][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  666.515995][ T5152] libceph: connect (1)[c::]:6789 error -101
[  666.526466][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  667.031117][   T24] libceph: connect (1)[c::]:6789 error -101
[  667.037133][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  667.043713][ T5152] libceph: connect (1)[c::]:6789 error -101
[  667.049832][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  668.205088][T16754] libceph: connect (1)[c::]:6789 error -101
[  668.213781][ T5152] libceph: connect (1)[c::]:6789 error -101
[  668.219943][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  668.226072][T16754] libceph: mon0 (1)[c::]:6789 connect error
[  669.155693][T16754] libceph: connect (1)[c::]:6789 error -101
[  669.161917][T16754] libceph: mon0 (1)[c::]:6789 connect error
[  669.168155][T16754] libceph: connect (1)[c::]:6789 error -101
[  669.175179][T16754] libceph: mon0 (1)[c::]:6789 connect error
[  669.431051][T16754] libceph: connect (1)[c::]:6789 error -101
[  669.437070][T16754] libceph: mon0 (1)[c::]:6789 connect error
[  669.444354][ T5152] libceph: connect (1)[c::]:6789 error -101
[  669.450846][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  669.971663][ T5160] libceph: connect (1)[c::]:6789 error -101
[  669.977730][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  669.984414][ T5152] libceph: connect (1)[c::]:6789 error -101
[  669.990576][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  671.154842][T16754] libceph: connect (1)[c::]:6789 error -101
[  671.162087][ T5152] libceph: connect (1)[c::]:6789 error -101
[  671.168129][T16754] libceph: mon0 (1)[c::]:6789 connect error
[  671.174209][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  672.194881][ T5160] libceph: connect (1)[c::]:6789 error -101
[  672.201741][T16754] libceph: connect (1)[c::]:6789 error -101
[  672.208386][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  672.214770][T16754] libceph: mon0 (1)[c::]:6789 connect error
[  672.486645][T16754] libceph: connect (1)[c::]:6789 error -101
[  672.492773][T16754] libceph: mon0 (1)[c::]:6789 connect error
[  672.499220][T16754] libceph: connect (1)[c::]:6789 error -101
[  672.505264][T16754] libceph: mon0 (1)[c::]:6789 connect error
[  673.032282][ T5160] libceph: connect (1)[c::]:6789 error -101
[  673.038308][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  673.044756][T16754] libceph: connect (1)[c::]:6789 error -101
[  673.050857][T16754] libceph: mon0 (1)[c::]:6789 connect error
[  674.204875][ T5160] libceph: connect (1)[c::]:6789 error -101
[  674.212955][ T5152] libceph: connect (1)[c::]:6789 error -101
[  674.219296][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  674.229293][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  675.157192][ T5152] libceph: connect (1)[c::]:6789 error -101
[  675.163633][ T5160] libceph: connect (1)[c::]:6789 error -101
[  675.169793][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  675.176709][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  675.445466][ T5160] libceph: connect (1)[c::]:6789 error -101
[  675.451707][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  675.458107][ T5160] libceph: connect (1)[c::]:6789 error -101
[  675.468477][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  675.971598][ T5152] libceph: connect (1)[c::]:6789 error -101
[  675.977650][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  675.984187][ T5160] libceph: connect (1)[c::]:6789 error -101
[  675.990338][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  677.157049][ T5152] libceph: connect (1)[c::]:6789 error -101
[  677.164633][ T5160] libceph: connect (1)[c::]:6789 error -101
[  677.170777][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  677.176802][ T5160] libceph: mon0 (1)[c::]:6789 connect error
15:13:24 executing program 4:
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000140)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r1 = gettid()
r2 = dup(r0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
read$FUSE(r2, 0x0, 0x0)
tkill(r1, 0xb)

15:13:24 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, 0x0, 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

15:13:24 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched_retired(r0, &(0x7f00000034c0)={0x0, 0x0, &(0x7f0000003480)={&(0x7f0000000500)=@delchain={0x24, 0x12}, 0x24}}, 0x0)

15:13:24 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00222200000096231306e53f070c00002ddcedfb5a49cc25c0178910badf002a90"], 0x0}, 0x0)

15:13:24 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000480)={&(0x7f00000003c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@ptr={0x0, 0x0, 0x0, 0x2, 0x3}]}}, &(0x7f0000000400)=""/66, 0x26, 0x42, 0x1}, 0x20)

15:13:24 executing program 1:
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f0000000240)={0x2d6a02c3}, 0x0, &(0x7f0000000300)={0x0})

15:13:24 executing program 2:
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
get_mempolicy(&(0x7f0000000240), 0x0, 0x0, &(0x7f0000ffb000/0x3000)=nil, 0x4)

[  677.877039][T17310] loop0: detected capacity change from 0 to 512
15:13:24 executing program 2:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x2000c7bd, &(0x7f0000000340)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000200)='V', 0x1, 0x1, 0x0, 0x0)
ioctl$sock_inet_udp_SIOCINQ(r0, 0x8905, &(0x7f00000000c0))

[  678.036865][T17310] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:13:24 executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x1, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="61124800000000006113500000000000bf2000000000000007000000080000002d0301000000000095000000000000006926000000000000bf67000000000000150600000fff070067060000200000006a0200000ee60000bf050000000000005e350000000000006507000002000000070700004a0000000f75000000000000bf54000000000000070400000400f9ff3d53010000000000840400000000000073720000000000009500000000000000db13d5d8b741f2cdaabc8383caf56b8c2b84a8d09535a157f9005bd38addaa65b925cd3ded25b8b9e2a095d2c51ef45c5588ec78c7f32946b17cecfe54c53ab530c58b67851b7e0e82452a083b98a6aa766401047d150203b0417edef332233b081df18961d6822d133bf72a4de1c2ea17f04537fc211576846ac629d1d93265ba4580047a9dc88de358ce795731891a2031de4e09740c64e5506f991ed4785a9773a433e0db9c1a7d4ab9d658ce9cfdb4db3bed62bcb2bc91ddcdfadfe6d4421c49fb6641cbf56914e76702f673b586c767562a90a3967093c30e9b3fb000e3806f825f1d0da2a304e06543b56d35235d78b7a7fe912971aab876022e96f5143b6234f5a6b701690b07fb664a44e22b72e843e7cf55f394cf75d1cd3ee79a25fb98cc45b3fde43e42e150d4a2fddd9a97677400ef0bd697d135324ce480c2960344de346bd511dea4ff7a07400b2d12dd1a8c4c300aee5f948777085ca142b79dfc3aca5fadaa0532ab0572169f68584ff2ee063bc7e75ecd5cc8973464629ba236e3ff97f6033d0800000000000000cef54a60aff12590a50ef147e3e640193d00263003a4ef412420a070dd0327e47c8c7abb77b4b53874788d7e2e5d554de4713db957afb56d4673f1b904c5a317d3670003000000183fb7d36e173044f4ab34ce485b384c0ec424df8cf313479d20426410affaad3489c7cc990fab9e5d9d64350d0bdefa2a2edde5c14886c20a34944c18ade5d698e2f679ed0f49e36535ded8bb232b93d154681d52423e73fe4cb24a0a6915a4c834fd9057f2237bb469b6", @ANYBLOB="4e1a3fceca37255368a0e4c67fe1f3412bbbcdea081f626099ab4088dde31ed46c8cf324c80774a310db9a792dd8864748001aab14d541c65561bc743909c1ac12bbf88abb5be1bc", @ANYRESOCT], &(0x7f0000000100)='GPL\x00'}, 0x52)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000040)={0x1b, 0x0, 0x0, 0x59296550, 0x0, 0xffffffffffffffff, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x0, 0x2}, 0x48)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x7f, 0x0, 0x1, 0x8000, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x5}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{0x1, <r2=>0xffffffffffffffff}, &(0x7f0000000140), &(0x7f0000000180)}, 0x20)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000540)={'syztnl2\x00', &(0x7f00000003c0)={'gretap0\x00', <r3=>0x0, 0x40, 0x40, 0x0, 0x7, {{0x4a, 0x4, 0x1, 0x24, 0x128, 0x68, 0x0, 0x8, 0x2f, 0x0, @loopback, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@ssrr={0x89, 0x27, 0x1a, [@multicast1, @remote, @rand_addr=0x64010102, @multicast1, @empty, @multicast2, @private=0xa010102, @remote, @multicast1]}, @timestamp_prespec={0x44, 0x44, 0x25, 0x3, 0x9, [{@loopback, 0xfff}, {@private=0xa010102, 0x6}, {@dev={0xac, 0x14, 0x14, 0x28}, 0x401}, {@remote, 0x1}, {@rand_addr=0x64010100, 0x400000}, {@broadcast, 0x8000}, {@empty, 0x8}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x8}]}, @timestamp_addr={0x44, 0x44, 0xb6, 0x1, 0x9, [{@loopback, 0x401}, {@broadcast, 0x80000000}, {@remote, 0x1}, {@rand_addr=0x64010100, 0xad}, {@empty, 0xffff}, {@local, 0x80}, {@loopback, 0xfffffffe}, {@multicast2, 0x4}]}, @generic={0x83, 0x11, "efdc1cba15d9d969b9cd0b46ac1abe"}, @timestamp_addr={0x44, 0x54, 0xf6, 0x1, 0xd, [{@private=0xa010100}, {@loopback, 0x1}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x8b8}, {@rand_addr=0x64010100, 0x2}, {@remote, 0x7fffffff}, {@multicast2}, {@initdev={0xac, 0x1e, 0x1, 0x0}}, {@local, 0x7}, {@private=0xa010102, 0xfde2}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x8702}]}]}}}}})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000040)=ANY=[], 0x208e24b)
r5 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r5, &(0x7f00000001c0)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @dev}, 0x10)
recvmmsg(r5, &(0x7f00000005c0)=[{{0x0, 0xe8, 0x0, 0x0, 0x0, 0x0, 0xffffffff00003f00}}], 0x4000000000001db, 0x0, 0x0)
sendfile(r5, r4, 0x0, 0xffefffff)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.empty_time\x00', 0x275a, 0x0)
write$cgroup_pid(r6, &(0x7f0000000040), 0x12)
ioctl$SIOCSIFHWADDR(r6, 0x4030582b, &(0x7f0000000280)={'lo\x00', @link_local={0x0, 0x2, 0xc2, 0x0, 0x87}})
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000003500)={0xffffffffffffffff, 0x20, &(0x7f0000001480)={&(0x7f00000014c0)=""/120, 0x78, <r7=>0x0, &(0x7f0000001540)=""/235, 0xeb}}, 0x10)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r6, 0x81f8943c, &(0x7f0000000b00)={0x0, ""/256, <r8=>0x0})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r6, 0xd000943e, &(0x7f0000001cc0)={0x0, r8, "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", "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"})
bpf$PROG_LOAD(0x5, &(0x7f0000003540)={0x0, 0xe, &(0x7f00000017c0)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0xcc60}, @btf_id={0x18, 0x0, 0x3, 0x0, 0x2}, @generic={0xad, 0xb, 0x8, 0x8, 0x6}, @map_idx={0x18, 0xb, 0x5, 0x0, 0x3}, @func, @tail_call={{0x18, 0x2, 0x1, 0x0, r6}}, @alu={0x7, 0x1, 0x2, 0x7, 0x7, 0x2, 0xffffffffffffffff}], &(0x7f0000000480)='GPL\x00', 0x4, 0xed, &(0x7f0000003240)=""/237, 0x41100, 0x14, '\x00', 0x0, 0x20, 0xffffffffffffffff, 0x8, &(0x7f00000004c0)={0x9, 0xfffffffd}, 0x8, 0x10, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x8bf}, 0x10, r7}, 0x90)
r9 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000600)=@generic={&(0x7f00000005c0)='./file0\x00', 0x0, 0x8}, 0x18)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x13, 0x10, 0x2}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x13, 0xa, &(0x7f0000000940)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="000000000000001f2c0000000000000018100000", @ANYRES32=r10, @ANYBLOB="0000000000000000950002000000000095"], &(0x7f0000000000)='GPL\x00', 0x4, 0xf1, &(0x7f0000000440)=""/241}, 0x90)
r11 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000680)=@generic={&(0x7f0000000640)='./file0\x00', 0x0, 0x8}, 0x18)
r12 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.sectors\x00', 0x275a, 0x0)
write$binfmt_script(r12, &(0x7f0000000000)=ANY=[], 0x208e24b)
ioctl$EXT4_IOC_SWAP_BOOT(r12, 0x6611)
mmap(&(0x7f00001e7000/0x3000)=nil, 0x3000, 0x0, 0x28011, r12, 0x0)
r13 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000700)=@generic={&(0x7f00000006c0)='./file0\x00', 0x0, 0x10}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x19, 0x2f, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000005000000000000007500000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000100b569c0ff00000000b7080000000000007b8af8ff00000000b7080000060000007b8af0ff00001000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb702000008000000182300"/140, @ANYRES32=0x1, @ANYBLOB="0000000000000000b70500000800000085000000a500000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000080000008500000006000000182a0000", @ANYRES32=r1, @ANYBLOB="00000000d2010000186900000e00000000000000ba570000c4b4000108000000253af8ffffffffff18110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000000000008500000086000000bf91000000000000b7020000000000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000380)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41100, 0x2, '\x00', r3, 0x9, r4, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000580)={0x2, 0xd, 0x738, 0x80000000}, 0x10, r7, r9, 0x3, &(0x7f0000000740)=[r10, r11, r12, 0x1, r13], &(0x7f0000000780)=[{0x1, 0x5, 0xf, 0x1}, {0x0, 0x1, 0xd, 0x1}, {0x0, 0x1, 0xb, 0xd}], 0x10, 0x8001}, 0x90)

[  678.088177][ T5160] usb 4-1: new high-speed USB device number 82 using dummy_hcd
[  678.129420][T17310] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1138/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:13:24 executing program 2:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f00000007c0)=ANY=[], 0x208e24b)
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000180))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)

[  678.189895][   T24] libceph: connect (1)[c::]:6789 error -101
[  678.195981][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  678.205479][ T5152] libceph: connect (1)[c::]:6789 error -101
[  678.222707][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  678.265705][   T28] audit: type=1804 audit(1706886804.796:161): pid=17310 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1138/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:13:24 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, 0x0, 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

[  678.421096][ T5160] usb 4-1: Using ep0 maxpacket: 16
[  678.467881][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  678.499841][ T5152] libceph: connect (1)[c::]:6789 error -101
[  678.512693][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  678.539710][ T5152] libceph: connect (1)[c::]:6789 error -101
[  678.545865][ T5160] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  678.578178][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  678.590869][ T5160] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  678.619211][ T5160] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  678.656724][ T5160] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
15:13:25 executing program 2:
r0 = socket$inet(0x2b, 0x801, 0x0)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @dev}, 0x10)
recvfrom$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

[  678.699208][ T5160] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  678.758204][ T5160] usb 4-1: config 0 descriptor??
[  678.842390][T17332] loop0: detected capacity change from 0 to 512
[  678.919282][T17332] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  678.932120][T17332] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1139/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  678.996563][   T28] audit: type=1804 audit(1706886805.526:162): pid=17332 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1139/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:13:25 executing program 2:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='dctcp\x00', 0x6)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x2000c7bd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000100)="1d", 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000002c0)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000003940)=[{{0x0, 0x0, &(0x7f0000001200)=[{&(0x7f0000002340)="dac17669af15d51b589ffbbc88948f73c912a96ffb39f5d44746648f0557e5df949cee00af88c8f4b3a7b60f448bba1ae053f2a7999d8416801586c88277103a03eaaa8af8e353772d2b261342270c42bae09ca36db63eb4ec49b35d7056001c4352c4b9d7d97bfadd4f419fcd1f567ca7b32c5e1a364bad3dfaf184903da2052c26cb0419f4b1b5f6f668e2af9e6b06887bf8ddd7aeee79ba1192080f0f9cc967513c314684fe9f0b103d4f4744954dadde003b6c194d482e78a0b2fe0ede7eeddc52b5fed8457190", 0xc9}], 0x1}}], 0x1, 0x0)
sendto$inet(r0, &(0x7f00000012c0)='\t', 0x1, 0x11, 0x0, 0x0)

[  679.090794][T16754] libceph: connect (1)[c::]:6789 error -101
[  679.122669][T16754] libceph: mon0 (1)[c::]:6789 connect error
[  679.129694][T16754] libceph: connect (1)[c::]:6789 error -101
15:13:25 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$eJzs3c9vG1kdAPDvTOImm81usrASPwRsWRYKqmon7m602tNyAaHVSogVJw7ZkLhRFDuOYmdpQiXS/wGJSpzgT+CAxAGpJ+7c4MalHJAKVKAGiYPRjCdpSOMkbRMb7M9HGs28eeP5vldr3nO/SfwCGFlXI2IvIq5ExMcRMVOcT4ot3u9u2XWPH91Z3n90ZzmJTuejvyV5fXYujrwm83Jxz8mI+N63I36YPB23tbO7vlSv17aKcqXd2Ky0dnZvrDWWVmurtY1qdWF+Ye7dm+9UL6yvbzR+9fBbax98/7e/+eKD3+9948dZs6aLuqP9uEjdrpcO42TGI+KDywg2AGNFf64MuiE8lzQiPhURb+bP/0yM5e/m+ZzwWAMA/wc6nZnozBwtAwDDLs1zYElaLnIB05Gm5XI3h/d6TKX1Zqt9/VZze2OlmyubjVJ6a61emytyhbNRSrLyfH78pFw9Vr4ZEa9FxE8nXsrL5eXz5xkAgIv18rH5/58T3fkfABhyk2ddsNifdgAA/XPm/A8ADB3zPwCMHvM/AIwe8z8AjB7zPwCMnmL+Hxt0OwCAvvjuhx9mW2e/+P7rlU92ttebn9xYqbXWy43t5fJyc2uzvNpsrtZr5eVm46z71ZvNzfm3Y/t2pV1rtSutnd3FRnN7o72Yf6/3Yq3Ul14BAKd57Y37f0wiYu+9l/ItjqzlYK6G4ZYOugHAwMj5w+jyLdwwuvwfHzhrLc+evyJ87zmCdX7yHC8CLtq1z8n/w6iS/4fRJf8Po0v+H0ZXp5P0WvM/PbwEABgqcvxAX3/+DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAENiOt+StFysBT4daVouR7wSEbNRSm6t1WtzEfFqRPxhojSRlecH3WgA4AWlf0mK9b+uzbw1fbz2SvKviXwfET/6+Uc/u73Ubm/NZ+f/fni+fa84Xx1E+wGAsxzM0wfz+IHHj+4sH2z9bM/Db3YXF83i7hdbt2Y8xvP9ZJQiYuofSVHuyj6vjF1A/L27EfHZk/qf5LmR2WLl0+Pxs9iv9DV++l/x07yuu8/+LT79DDHPWusVRsX9bPx5/6TnL42r+X7yxMWPJ/MR6sUdjH/7T41/6eH4N9Zj/Lt63hhv/+47PevuRnx+/KT4yWH8pEf8t84Z/09f+NKbveo6v4i4FifHPxqr0m5sVlo7uzfWGkurtdXaRrW6ML8w9+7Nd6qVPEddOchUP+2v711/9bT+T/WIP3lG/796aq87EwdHv/z3xz/48inxv/6Vk9//10+Jn82JXzs1/hNLU7/uuXx3Fn+l2/+7z/r+Xz9n/Ad/3l0556UAQB+0dnbXl+r12taFHpTigm945CC5pDY7GPKD7PP4i97nM0XK7H+gO5d9MOiRCbhsTx76QbcEAAAAAAAAAAAAAADo5dL/nCgddA8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYZv8JAAD//wqryik=")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(0xffffffffffffffff, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

[  679.135797][T16754] libceph: mon0 (1)[c::]:6789 connect error
15:13:25 executing program 2:
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000c00)='ns/uts\x00')

[  679.195255][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:13:25 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_BEACON(r0, &(0x7f0000002b00)={0x0, 0x0, &(0x7f0000002ac0)={&(0x7f00000004c0)={0x1c, r1, 0x53cf4139263a55e3, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)
syz_genetlink_get_family_id$team(&(0x7f0000003040), r0)

[  679.284474][ T5160] microsoft 0003:045E:07DA.0012: unknown main item tag 0x0
[  679.319157][ T5160] microsoft 0003:045E:07DA.0012: unknown main item tag 0x0
[  679.326456][ T5160] microsoft 0003:045E:07DA.0012: unknown main item tag 0x0
15:13:25 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000880)={&(0x7f0000000700)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x20, 0x20, 0x2, [@func_proto={0x0, 0x1, 0x0, 0xd, 0x0, [{0x3, 0x2}]}, @const]}}, &(0x7f0000000780)=""/237, 0x3a, 0xed, 0x1}, 0x20)

[  679.344975][ T5160] microsoft 0003:045E:07DA.0012: unknown main item tag 0x0
[  679.353575][ T5160] microsoft 0003:045E:07DA.0012: unknown main item tag 0x0
[  679.377677][ T5160] microsoft 0003:045E:07DA.0012: unknown main item tag 0x0
15:13:26 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@union]}}, &(0x7f0000000340)=""/41, 0x26, 0x29, 0x1}, 0x20)

[  679.388648][ T5160] microsoft 0003:045E:07DA.0012: unknown main item tag 0x0
[  679.403753][ T5160] microsoft 0003:045E:07DA.0012: No inputs registered, leaving
[  679.424314][T17346] loop0: detected capacity change from 0 to 512
[  679.429915][ T5160] microsoft 0003:045E:07DA.0012: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  679.468464][ T5160] microsoft 0003:045E:07DA.0012: no inputs found
[  679.489431][T17346] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  679.515061][ T5160] microsoft 0003:045E:07DA.0012: could not initialize ff, continuing anyway
[  679.529846][T17346] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1140/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:13:26 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x5421, &(0x7f0000000280)={'syztnl2\x00', 0x0})

[  679.590255][ T5160] usb 4-1: USB disconnect, device number 82
15:13:26 executing program 2:
r0 = socket$can_raw(0x1d, 0x3, 0x1)
sendmsg$can_raw(r0, &(0x7f0000000440)={&(0x7f0000000380), 0x10, &(0x7f0000000400)={&(0x7f00000003c0)=@can={{}, 0x0, 0x0, 0x0, 0x0, "24d9de1e7c75d763"}, 0x10}}, 0x0)

15:13:26 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000040), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0x5452, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0})

15:13:26 executing program 1:
openat$pidfd(0xffffffffffffff9c, &(0x7f0000001b00), 0x444802, 0x0)

[  679.737934][   T28] audit: type=1804 audit(1706886806.266:163): pid=17355 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1140/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:13:26 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(0xffffffffffffffff, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

15:13:26 executing program 2:
syz_open_procfs(0x0, &(0x7f0000000380)='pagemap\x00')

15:13:26 executing program 1:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$SNDCTL_SEQ_PANIC(r0, 0x5111)

[  679.905230][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:13:26 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_BEACON(r0, &(0x7f0000002b00)={0x0, 0x0, &(0x7f0000002ac0)={&(0x7f00000004c0)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

15:13:26 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00222200000096231306e53f070c00002ddcedfb5a49cc25c0178910badf002a90"], 0x0}, 0x0)

15:13:26 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_DELETE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)={0x18, 0x2, 0x2, 0x101, 0x0, 0x0, {0x2}, [@CTA_EXPECT_TUPLE={0x4}]}, 0x18}}, 0x0)

15:13:26 executing program 2:
socketpair(0x29, 0x0, 0x0, &(0x7f00000000c0))

15:13:26 executing program 1:
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x3, &(0x7f0000000100)=@framed, &(0x7f0000000180)='GPL\x00', 0x9, 0xb6, &(0x7f00000001c0)=""/182}, 0x90)

[  680.190708][ T5160] libceph: connect (1)[c::]:6789 error -101
[  680.196891][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  680.201599][T17373] loop0: detected capacity change from 0 to 512
[  680.213195][T16754] libceph: connect (1)[c::]:6789 error -101
[  680.233328][T16754] libceph: mon0 (1)[c::]:6789 connect error
[  680.291507][T17373] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:13:26 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_BEACON(r0, &(0x7f0000002b00)={0x0, 0x0, &(0x7f0000002ac0)={&(0x7f00000004c0)={0xec4, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_BEACON_HEAD={0x129, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@broadcast}, 0x0, @random, 0x0, @val={0x0, 0x6, @default_ap_ssid}, @void, @val={0x3, 0x1}, @void, @val={0x6, 0x2}, @void, @void, @val={0x2a, 0x1, {0x1}}, @val={0x3c, 0x4, {0x0, 0x0, 0x3c}}, @void, @void, @val={0x71, 0x7}, @void, [{0xdd, 0x4e, "79d9554102de4cd54a1b7ea852774fd367990042c63410bf382932cae12c7c015f2b703690231342bf5741ba50dea7ab1794ffb5bf6b3033d89f9f21f149d6f5d3cc45f704f373c66fc98cf91226"}, {0xdd, 0x8e, "5634598b78aa15ca9f0e51bd5423f33c4459b738ed013bdf80e7790304db1efdc081942cf12d1343b525720846dde412428f34a0413464b7c05085aab1450dc0577a5215cfe2627d532efb5880cabc41557d394857aacc6206d0ff2ddf568e599396adebe7e77fadbf87e8a09739f1f08578d0a7f96968ca06f98759ab00b69f867d417d7a0d48101c37282058de"}]}}, @NL80211_ATTR_IE_ASSOC_RESP={0x105, 0x80, [@preq={0x82, 0x51, @not_ext={{0x0, 0x1}, 0x0, 0x0, 0x0, @device_b, 0x0, "", 0x0, 0x0, 0x5, [{}, {{}, @broadcast, 0x1}, {{}, @broadcast}, {{}, @broadcast}, {{}, @device_b}]}}, @random={0x0, 0xa9, "fd01f5e4a964b923a3b7f14e62b970d6f1d297e7488a17a1a5e978432c356cda3084427b917045c69a86bd4f5ab1493cf0f6b002ebcbaee9cd6b7d9f77dc7bd2cb8b07f4a53f585f0911f78210e21895317711e80e89f97c4c92ce385f57a6662dda24709d177eb411f38cd4a9fb6ade4f87aadce22aa9fb9a25c1d5c46eaae7d1527d24b3eae6a5ec13d372d22ff8e47a20c25c6ef93c62637f6ee3c92d5c07c0bed527c6ccfe6d9b"}, @dsss={0x3, 0x1}]}, @NL80211_ATTR_FTM_RESPONDER={0x248, 0x10e, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_LCI={0xe1, 0x2, "e3c6d6beed53b289ddc45e141476b06d5dfa5dfeed656f11d4b1f293e5e9033669c212bc7a241d9cd6174970964be07e0917a9d674370a40800919cf16c7b705c72ec7391fe09c0552eb2a857f42fe7c831348e983c3697d1043b43cea1f0a024b6209e2626f2f4122067087e7ac08eb7bdf4b0f722d70cda34ab1451e6a58ece7e010a68e0bd4b49a0b7aa2fa1c6c3ef15fbae4d094b3bfcdc7e7748cb85b64e530f442927645875e8b549d33fb01c32a77e07aee8b47a8623edb31ee9d286656014d2b244e7fad31ea27301126017b64e1022b42a8f23f7c1ee02a84"}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_CIVICLOC={0x71, 0x3, "1bf5e2dcf99d715f6941fd04012a27a02dbf5457199be5a414ecc00df5f989d7229e30ff95bdbb092fe5034dc15a184fba975d66fc650d6d14240fce5efd3ccbaa8cbf6f3185908ca5540a0ee89c8d3198b1c86526f14bfb43867309f0631d67e15b263d0226cc80a573421111"}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_LCI={0x61, 0x2, "c54ace1b78fe4117d561a49c57e2d0aaace2b34c87feae7b5e4c01a7f658f2bf4a247e27ae7247bd2a92b4b4b1704c2eb05c12563492aeb26967171f46d3dfb4d5a1eb3b6da416e6c9bccbeaded04b76b437ae23a55bff74603e755e33"}, @NL80211_FTM_RESP_ATTR_LCI={0x6d, 0x2, "f90458dea614737e4670c31f83e4f4247bc5b20f1efe0e5cdd49aef915722e6fc7d5d0b710a82bde259bc5b7ac73654ba6708fa07ecb0f95a0d66c02cb9aca2556928078d9ccd59f3f7ecb3aa03d4a79d0d7e09c0d0989ee2159abc5e6ee23ef9f6959b9015ccbcdbe"}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}]}, @NL80211_ATTR_FTM_RESPONDER={0xa2c, 0x10e, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_CIVICLOC={0xa21, 0x3, "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"}]}]}, 0xec4}}, 0x0)

[  680.329315][T17373] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1141/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:13:26 executing program 1:
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x17, 0x1, &(0x7f00000001c0)=@raw=[@ldst], 0x0}, 0x90)

[  680.450365][   T28] audit: type=1804 audit(1706886806.966:164): pid=17385 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1141/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  680.479577][    T8] usb 4-1: new high-speed USB device number 83 using dummy_hcd
15:13:27 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001240)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = getpgid(0x0)
sendmmsg$unix(r0, &(0x7f0000001400)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000180)='_', 0x1}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000001380)=[@cred={{0x1c, 0x1, 0x2, {r1, 0x0, 0xee01}}}, @cred={{0x1c}}], 0x40}}], 0x2, 0x0)

15:13:27 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$eJzs3c9vG1kdAPDvTOImm81usrASPwRsWRYKqmon7m602tNyAaHVSogVJw7ZkLhRFDuOYmdpQiXS/wGJSpzgT+CAxAGpJ+7c4MalHJAKVKAGiYPRjCdpSOMkbRMb7M9HGs28eeP5vldr3nO/SfwCGFlXI2IvIq5ExMcRMVOcT4ot3u9u2XWPH91Z3n90ZzmJTuejvyV5fXYujrwm83Jxz8mI+N63I36YPB23tbO7vlSv17aKcqXd2Ky0dnZvrDWWVmurtY1qdWF+Ye7dm+9UL6yvbzR+9fBbax98/7e/+eKD3+9948dZs6aLuqP9uEjdrpcO42TGI+KDywg2AGNFf64MuiE8lzQiPhURb+bP/0yM5e/m+ZzwWAMA/wc6nZnozBwtAwDDLs1zYElaLnIB05Gm5XI3h/d6TKX1Zqt9/VZze2OlmyubjVJ6a61emytyhbNRSrLyfH78pFw9Vr4ZEa9FxE8nXsrL5eXz5xkAgIv18rH5/58T3fkfABhyk2ddsNifdgAA/XPm/A8ADB3zPwCMHvM/AIwe8z8AjB7zPwCMnmL+Hxt0OwCAvvjuhx9mW2e/+P7rlU92ttebn9xYqbXWy43t5fJyc2uzvNpsrtZr5eVm46z71ZvNzfm3Y/t2pV1rtSutnd3FRnN7o72Yf6/3Yq3Ul14BAKd57Y37f0wiYu+9l/ItjqzlYK6G4ZYOugHAwMj5w+jyLdwwuvwfHzhrLc+evyJ87zmCdX7yHC8CLtq1z8n/w6iS/4fRJf8Po0v+H0ZXp5P0WvM/PbwEABgqcvxAX3/+DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAENiOt+StFysBT4daVouR7wSEbNRSm6t1WtzEfFqRPxhojSRlecH3WgA4AWlf0mK9b+uzbw1fbz2SvKviXwfET/6+Uc/u73Ubm/NZ+f/fni+fa84Xx1E+wGAsxzM0wfz+IHHj+4sH2z9bM/Db3YXF83i7hdbt2Y8xvP9ZJQiYuofSVHuyj6vjF1A/L27EfHZk/qf5LmR2WLl0+Pxs9iv9DV++l/x07yuu8/+LT79DDHPWusVRsX9bPx5/6TnL42r+X7yxMWPJ/MR6sUdjH/7T41/6eH4N9Zj/Lt63hhv/+47PevuRnx+/KT4yWH8pEf8t84Z/09f+NKbveo6v4i4FifHPxqr0m5sVlo7uzfWGkurtdXaRrW6ML8w9+7Nd6qVPEddOchUP+2v711/9bT+T/WIP3lG/796aq87EwdHv/z3xz/48inxv/6Vk9//10+Jn82JXzs1/hNLU7/uuXx3Fn+l2/+7z/r+Xz9n/Ad/3l0556UAQB+0dnbXl+r12taFHpTigm945CC5pDY7GPKD7PP4i97nM0XK7H+gO5d9MOiRCbhsTx76QbcEAAAAAAAAAAAAAADo5dL/nCgddA8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYZv8JAAD//wqryik=")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(0xffffffffffffffff, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

15:13:27 executing program 2:
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0x6, 0x3, &(0x7f0000000040)=@framed, &(0x7f00000000c0)='syzkaller\x00', 0x5}, 0x90)

15:13:27 executing program 2:
bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x1, 0x18, 0x0, 0x0}, 0x90)

[  680.624402][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:13:27 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x30, 0x1, 0x9, 0x801, 0x0, 0x0, {}, [@NFCTH_TUPLE={0x1c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x30}}, 0x0)

[  680.700235][ T5107] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  680.726162][ T5107] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  680.744898][    T8] usb 4-1: Using ep0 maxpacket: 16
15:13:27 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

[  680.752860][ T5107] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  680.761338][ T5107] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  680.769362][ T5107] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  680.776872][ T5107] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  680.823025][T17398] netlink: 'syz-executor.1': attribute type 2 has an invalid length.
15:13:27 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r0, 0xc01064bd, &(0x7f0000000040)={&(0x7f00000000c0)="90", 0x1})

[  680.867650][T17398] netlink: 'syz-executor.1': attribute type 2 has an invalid length.
[  680.899275][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
15:13:27 executing program 2:
r0 = socket$phonet(0x23, 0x2, 0x1)
recvfrom(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

[  680.928788][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  680.942094][T17402] loop0: detected capacity change from 0 to 512
[  680.961311][    T8] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
15:13:27 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r0, 0xc01064bd, &(0x7f0000000040)={&(0x7f00000000c0)="90", 0x1, <r1=>0x0})
ioctl$DRM_IOCTL_MODE_GETPROPBLOB(r0, 0xc01064ac, &(0x7f0000000280)={r1, 0x0, 0x0})

[  681.003702][    T8] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  681.025640][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  681.044971][    T8] usb 4-1: config 0 descriptor??
[  681.131047][T17402] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  681.159695][ T5152] libceph: connect (1)[c::]:6789 error -101
[  681.165803][ T5152] libceph: mon0 (1)[c::]:6789 connect error
15:13:27 executing program 1:
syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x173003)

[  681.177682][T16754] libceph: connect (1)[c::]:6789 error -101
[  681.190064][T17402] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1142/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  681.191958][T16754] libceph: mon0 (1)[c::]:6789 connect error
15:13:27 executing program 1:
io_setup(0x6, &(0x7f0000000880)=<r0=>0x0)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
io_submit(r0, 0x1, &(0x7f0000000880)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x7, 0x0, r1, 0x0}])

[  681.347041][   T28] audit: type=1804 audit(1706886807.876:165): pid=17416 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1142/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:13:27 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x0, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

[  681.405230][T17393] chnl_net:caif_netlink_parms(): no params data found
[  681.469922][T16754] libceph: connect (1)[c::]:6789 error -101
[  681.476179][T16754] libceph: mon0 (1)[c::]:6789 connect error
[  681.481372][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  681.483725][ T5160] libceph: connect (1)[c::]:6789 error -101
15:13:28 executing program 1:
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000ac0)={0x6, 0x4, &(0x7f0000000880)=@framed={{}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}]}, &(0x7f0000000940)='GPL\x00'}, 0x90)

[  681.520681][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  681.552852][    T8] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0
[  681.571023][    T8] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0
[  681.581242][    T8] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0
[  681.589472][    T8] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0
[  681.596947][    T8] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0
[  681.605607][    T8] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0
[  681.628322][    T8] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0
[  681.641830][    T8] microsoft 0003:045E:07DA.0013: No inputs registered, leaving
[  681.655309][    T8] microsoft 0003:045E:07DA.0013: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
15:13:28 executing program 1:
mlock(&(0x7f0000ffb000/0x4000)=nil, 0x4000)
madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x19)

[  681.679206][    T8] microsoft 0003:045E:07DA.0013: no inputs found
[  681.691432][    T8] microsoft 0003:045E:07DA.0013: could not initialize ff, continuing anyway
[  681.702618][T17425] loop0: detected capacity change from 0 to 512
[  681.765300][    T8] usb 4-1: USB disconnect, device number 83
[  681.786640][T17425] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  681.817865][T17425] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1143/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  681.847323][T17393] bridge0: port 1(bridge_slave_0) entered blocking state
15:13:28 executing program 1:
mlock(&(0x7f0000ffb000/0x4000)=nil, 0x4000)
madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x19)

[  681.876501][T17393] bridge0: port 1(bridge_slave_0) entered disabled state
15:13:28 executing program 2:
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x4)

[  681.917479][T17393] bridge_slave_0: entered allmulticast mode
[  681.937196][T17393] bridge_slave_0: entered promiscuous mode
[  681.962369][T17393] bridge0: port 2(bridge_slave_1) entered blocking state
[  681.977811][T17393] bridge0: port 2(bridge_slave_1) entered disabled state
[  681.989782][   T28] audit: type=1804 audit(1706886808.526:166): pid=17434 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1143/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:13:28 executing program 1:
mlock(&(0x7f0000ffb000/0x4000)=nil, 0x4000)
madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x19)

15:13:28 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$eJzs3c9vG1kdAPDvTOImm81usrASPwRsWRYKqmon7m602tNyAaHVSogVJw7ZkLhRFDuOYmdpQiXS/wGJSpzgT+CAxAGpJ+7c4MalHJAKVKAGiYPRjCdpSOMkbRMb7M9HGs28eeP5vldr3nO/SfwCGFlXI2IvIq5ExMcRMVOcT4ot3u9u2XWPH91Z3n90ZzmJTuejvyV5fXYujrwm83Jxz8mI+N63I36YPB23tbO7vlSv17aKcqXd2Ky0dnZvrDWWVmurtY1qdWF+Ye7dm+9UL6yvbzR+9fBbax98/7e/+eKD3+9948dZs6aLuqP9uEjdrpcO42TGI+KDywg2AGNFf64MuiE8lzQiPhURb+bP/0yM5e/m+ZzwWAMA/wc6nZnozBwtAwDDLs1zYElaLnIB05Gm5XI3h/d6TKX1Zqt9/VZze2OlmyubjVJ6a61emytyhbNRSrLyfH78pFw9Vr4ZEa9FxE8nXsrL5eXz5xkAgIv18rH5/58T3fkfABhyk2ddsNifdgAA/XPm/A8ADB3zPwCMHvM/AIwe8z8AjB7zPwCMnmL+Hxt0OwCAvvjuhx9mW2e/+P7rlU92ttebn9xYqbXWy43t5fJyc2uzvNpsrtZr5eVm46z71ZvNzfm3Y/t2pV1rtSutnd3FRnN7o72Yf6/3Yq3Ul14BAKd57Y37f0wiYu+9l/ItjqzlYK6G4ZYOugHAwMj5w+jyLdwwuvwfHzhrLc+evyJ87zmCdX7yHC8CLtq1z8n/w6iS/4fRJf8Po0v+H0ZXp5P0WvM/PbwEABgqcvxAX3/+DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAENiOt+StFysBT4daVouR7wSEbNRSm6t1WtzEfFqRPxhojSRlecH3WgA4AWlf0mK9b+uzbw1fbz2SvKviXwfET/6+Uc/u73Ubm/NZ+f/fni+fa84Xx1E+wGAsxzM0wfz+IHHj+4sH2z9bM/Db3YXF83i7hdbt2Y8xvP9ZJQiYuofSVHuyj6vjF1A/L27EfHZk/qf5LmR2WLl0+Pxs9iv9DV++l/x07yuu8/+LT79DDHPWusVRsX9bPx5/6TnL42r+X7yxMWPJ/MR6sUdjH/7T41/6eH4N9Zj/Lt63hhv/+47PevuRnx+/KT4yWH8pEf8t84Z/09f+NKbveo6v4i4FifHPxqr0m5sVlo7uzfWGkurtdXaRrW6ML8w9+7Nd6qVPEddOchUP+2v711/9bT+T/WIP3lG/796aq87EwdHv/z3xz/48inxv/6Vk9//10+Jn82JXzs1/hNLU7/uuXx3Fn+l2/+7z/r+Xz9n/Ad/3l0556UAQB+0dnbXl+r12taFHpTigm945CC5pDY7GPKD7PP4i97nM0XK7H+gO5d9MOiRCbhsTx76QbcEAAAAAAAAAAAAAADo5dL/nCgddA8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYZv8JAAD//wqryik=")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x0, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

[  682.025651][T17393] bridge_slave_1: entered allmulticast mode
[  682.039670][ T5160] libceph: connect (1)[c::]:6789 error -101
[  682.045755][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  682.052344][   T24] libceph: connect (1)[c::]:6789 error -101
[  682.068232][   T24] libceph: mon0 (1)[c::]:6789 connect error
15:13:28 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_BEACON(r0, &(0x7f0000002b00)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000002ac0)={&(0x7f00000004c0)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

[  682.076555][T17393] bridge_slave_1: entered promiscuous mode
15:13:28 executing program 1:
mlock(&(0x7f0000ffb000/0x4000)=nil, 0x4000)
madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x19)

[  682.135036][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:13:28 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={0x0, 0x0, 0x32}, 0x20)

15:13:28 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00222200000096231306e53f070c00002ddcedfb5a49cc25c0178910badf002a90"], 0x0}, 0x0)

[  682.246730][T17393] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
15:13:28 executing program 1:
madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x19)

[  682.304408][T17393] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
15:13:28 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_BEACON(r0, &(0x7f0000002b00)={0x0, 0x0, &(0x7f0000002ac0)={&(0x7f00000004c0)={0x1ec4, 0x0, 0x53cf4139263a55e3, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_BEACON_HEAD={0x129, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@broadcast}, 0x0, @random, 0x0, @val={0x0, 0x6, @default_ap_ssid}, @void, @val={0x3, 0x1}, @void, @val={0x6, 0x2}, @void, @void, @val={0x2a, 0x1, {0x1}}, @val={0x3c, 0x4, {0x0, 0x1}}, @void, @void, @val={0x71, 0x7}, @void, [{0xdd, 0x4e, "79d9554102de4cd54a1b7ea852774fd367990042c63410bf382932cae12c7c015f2b703690231342bf5741ba50dea7ab1794ffb5bf6b3033d89f9f21f149d6f5d3cc45f704f373c66fc98cf91226"}, {0xdd, 0x8e, "5634598b78aa15ca9f0e51bd5423f33c4459b738ed013bdf80e7790304db1efdc081942cf12d1343b525720846dde412428f34a0413464b7c05085aab1450dc0577a5215cfe2627d532efb5880cabc41557d394857aacc6206d0ff2ddf568e599396adebe7e77fadbf87e8a09739f1f08578d0a7f96968ca06f98759ab00b69f867d417d7a0d48101c37282058de"}]}}, @NL80211_ATTR_IE_ASSOC_RESP={0x105, 0x80, [@preq={0x82, 0x51, @not_ext={{0x0, 0x1}, 0x0, 0x9, 0x0, @device_b, 0x0, "", 0x0, 0x2, 0x5, [{}, {{}, @broadcast, 0x1}, {{}, @broadcast}, {{}, @broadcast}, {{}, @device_b, 0x10001}]}}, @random={0x0, 0xa9, "fd01f5e4a964b923a3b7f14e62b970d6f1d297e7488a17a1a5e978432c356cda3084427b917045c69a86bd4f5ab1493cf0f6b002ebcbaee9cd6b7d9f77dc7bd2cb8b07f4a53f585f0911f78210e21895317711e80e89f97c4c92ce385f57a6662dda24709d177eb411f38cd4a9fb6ade4f87aadce22aa9fb9a25c1d5c46eaae7d1527d24b3eae6a5ec13d372d22ff8e47a20c25c6ef93c62637f6ee3c92d5c07c0bed527c6ccfe6d9b"}, @dsss={0x3, 0x1}]}, @NL80211_ATTR_FTM_RESPONDER={0x248, 0x10e, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_LCI={0xe1, 0x2, "e3c6d6beed53b289ddc45e141476b06d5dfa5dfeed656f11d4b1f293e5e9033669c212bc7a241d9cd6174970964be07e0917a9d674370a40800919cf16c7b705c72ec7391fe09c0552eb2a857f42fe7c831348e983c3697d1043b43cea1f0a024b6209e2626f2f4122067087e7ac08eb7bdf4b0f722d70cda34ab1451e6a58ece7e010a68e0bd4b49a0b7aa2fa1c6c3ef15fbae4d094b3bfcdc7e7748cb85b64e530f442927645875e8b549d33fb01c32a77e07aee8b47a8623edb31ee9d286656014d2b244e7fad31ea27301126017b64e1022b42a8f23f7c1ee02a84"}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_CIVICLOC={0x71, 0x3, "1bf5e2dcf99d715f6941fd04012a27a02dbf5457199be5a414ecc00df5f989d7229e30ff95bdbb092fe5034dc15a184fba975d66fc650d6d14240fce5efd3ccbaa8cbf6f3185908ca5540a0ee89c8d3198b1c86526f14bfb43867309f0631d67e15b263d0226cc80a573421111"}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_LCI={0x61, 0x2, "c54ace1b78fe4117d561a49c57e2d0aaace2b34c87feae7b5e4c01a7f658f2bf4a247e27ae7247bd2a92b4b4b1704c2eb05c12563492aeb26967171f46d3dfb4d5a1eb3b6da416e6c9bccbeaded04b76b437ae23a55bff74603e755e33"}, @NL80211_FTM_RESP_ATTR_LCI={0x6d, 0x2, "f90458dea614737e4670c31f83e4f4247bc5b20f1efe0e5cdd49aef915722e6fc7d5d0b710a82bde259bc5b7ac73654ba6708fa07ecb0f95a0d66c02cb9aca2556928078d9ccd59f3f7ecb3aa03d4a79d0d7e09c0d0989ee2159abc5e6ee23ef9f6959b9015ccbcdbe"}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}]}, @NL80211_ATTR_FTM_RESPONDER={0x1a2c, 0x10e, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_CIVICLOC={0x1001, 0x3, "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"}, @NL80211_FTM_RESP_ATTR_LCI={0xae, 0x2, "284569c7829985b371e2240289aff4da7081e916c7f3575afbbca0ef69143bf210a659dd1a5ad6a50d999069448f4f6d6c855612b247f58449914386e2c2fd28349714b0ffbcfc6b8958c3880b55297813789ad633bc28d15765c705843e42a62d89fbcdff592d461984f00a3f46abcbdc7801718163fc38fc81c2771ae101864a809e95e10b4efefa7a72b41d85552f3cecaa9e0eaf589e168eecf381591f61edb278d49386b9f3d51a"}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_CIVICLOC={0x4}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_LCI={0x6b, 0x2, "b9797e6addf2e27d5f4b07a4c578409ca2b692580b08c24422e4ccfb6a4537a2f98b64faa5caccb525fba614384cf6bc10913606f0c493ef1ff712df5ef078f5c1f7047cff4cc4a162cf26305897ffe1d32159c1e80172e2a881ff3a3e44d8065fb34826b7f499"}, @NL80211_FTM_RESP_ATTR_LCI={0x8f1, 0x2, "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"}]}]}, 0x1ec4}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  682.383225][T17445] loop0: detected capacity change from 0 to 512
15:13:28 executing program 1:
madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x19)

15:13:29 executing program 2:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f0000000640)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)='Y', 0x1}], 0x1}}], 0x1, 0x0)

[  682.507577][T17445] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:13:29 executing program 1:
madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x19)

[  682.575658][T17393] team0: Port device team_slave_0 added
[  682.579751][T17445] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1144/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  682.586131][T17393] team0: Port device team_slave_1 added
15:13:29 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000080)={'vxcan1\x00', <r2=>0x0})
connect$can_j1939(r1, &(0x7f00000000c0)={0x1d, r2, 0x0, {0x0, 0x0, 0x4}}, 0x18)

[  682.656582][T17393] batman_adv: batadv0: Adding interface: batadv_slave_0
[  682.666797][T17393] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  682.693038][    C0] vkms_vblank_simulate: vblank timer overrun
15:13:29 executing program 1:
mlock(&(0x7f0000ffb000/0x4000)=nil, 0x4000)
madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0)

[  682.703558][    T8] usb 4-1: new high-speed USB device number 84 using dummy_hcd
[  682.711687][T17393] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  682.758441][T17393] batman_adv: batadv0: Adding interface: batadv_slave_1
[  682.781716][   T28] audit: type=1804 audit(1706886809.316:167): pid=17462 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1144/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:13:29 executing program 1:
mlock(&(0x7f0000ffb000/0x4000)=nil, 0x4000)
madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0)

[  682.800935][T17393] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  682.834636][ T5116] Bluetooth: hci7: command 0x0409 tx timeout
[  682.842897][T17393] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
15:13:29 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$eJzs3c9vG1kdAPDvTOImm81usrASPwRsWRYKqmon7m602tNyAaHVSogVJw7ZkLhRFDuOYmdpQiXS/wGJSpzgT+CAxAGpJ+7c4MalHJAKVKAGiYPRjCdpSOMkbRMb7M9HGs28eeP5vldr3nO/SfwCGFlXI2IvIq5ExMcRMVOcT4ot3u9u2XWPH91Z3n90ZzmJTuejvyV5fXYujrwm83Jxz8mI+N63I36YPB23tbO7vlSv17aKcqXd2Ky0dnZvrDWWVmurtY1qdWF+Ye7dm+9UL6yvbzR+9fBbax98/7e/+eKD3+9948dZs6aLuqP9uEjdrpcO42TGI+KDywg2AGNFf64MuiE8lzQiPhURb+bP/0yM5e/m+ZzwWAMA/wc6nZnozBwtAwDDLs1zYElaLnIB05Gm5XI3h/d6TKX1Zqt9/VZze2OlmyubjVJ6a61emytyhbNRSrLyfH78pFw9Vr4ZEa9FxE8nXsrL5eXz5xkAgIv18rH5/58T3fkfABhyk2ddsNifdgAA/XPm/A8ADB3zPwCMHvM/AIwe8z8AjB7zPwCMnmL+Hxt0OwCAvvjuhx9mW2e/+P7rlU92ttebn9xYqbXWy43t5fJyc2uzvNpsrtZr5eVm46z71ZvNzfm3Y/t2pV1rtSutnd3FRnN7o72Yf6/3Yq3Ul14BAKd57Y37f0wiYu+9l/ItjqzlYK6G4ZYOugHAwMj5w+jyLdwwuvwfHzhrLc+evyJ87zmCdX7yHC8CLtq1z8n/w6iS/4fRJf8Po0v+H0ZXp5P0WvM/PbwEABgqcvxAX3/+DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAENiOt+StFysBT4daVouR7wSEbNRSm6t1WtzEfFqRPxhojSRlecH3WgA4AWlf0mK9b+uzbw1fbz2SvKviXwfET/6+Uc/u73Ubm/NZ+f/fni+fa84Xx1E+wGAsxzM0wfz+IHHj+4sH2z9bM/Db3YXF83i7hdbt2Y8xvP9ZJQiYuofSVHuyj6vjF1A/L27EfHZk/qf5LmR2WLl0+Pxs9iv9DV++l/x07yuu8/+LT79DDHPWusVRsX9bPx5/6TnL42r+X7yxMWPJ/MR6sUdjH/7T41/6eH4N9Zj/Lt63hhv/+47PevuRnx+/KT4yWH8pEf8t84Z/09f+NKbveo6v4i4FifHPxqr0m5sVlo7uzfWGkurtdXaRrW6ML8w9+7Nd6qVPEddOchUP+2v711/9bT+T/WIP3lG/796aq87EwdHv/z3xz/48inxv/6Vk9//10+Jn82JXzs1/hNLU7/uuXx3Fn+l2/+7z/r+Xz9n/Ad/3l0556UAQB+0dnbXl+r12taFHpTigm945CC5pDY7GPKD7PP4i97nM0XK7H+gO5d9MOiRCbhsTx76QbcEAAAAAAAAAAAAAADo5dL/nCgddA8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYZv8JAAD//wqryik=")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x0, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

15:13:29 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_DELETE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)={0x20, 0x2, 0x2, 0x101, 0x0, 0x0, {}, [@CTA_EXPECT_FN={0xa, 0xb, 'Q.931\x00'}]}, 0x20}}, 0x0)

[  682.943361][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  682.969257][    T8] usb 4-1: Using ep0 maxpacket: 16
15:13:29 executing program 1:
mlock(&(0x7f0000ffb000/0x4000)=nil, 0x4000)
madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0)

15:13:29 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r1=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x1, &(0x7f00000001c0)=@raw=[@ldst], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r1}, 0x90)

[  683.019715][T17393] hsr_slave_0: entered promiscuous mode
[  683.040587][T17393] hsr_slave_1: entered promiscuous mode
15:13:29 executing program 1:
io_setup(0x101, &(0x7f0000000100)=<r0=>0x0)
clock_gettime(0x0, &(0x7f00000001c0))
io_getevents(r0, 0x1, 0x1, &(0x7f0000000140)=[{}], 0x0)
io_destroy(r0)

[  683.068257][T17393] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  683.100589][T17393] Cannot create hsr debugfs directory
[  683.149385][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  683.149870][ T5152] libceph: connect (1)[c::]:6789 error -101
[  683.174535][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  683.178315][   T24] libceph: connect (1)[c::]:6789 error -101
[  683.199152][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  683.209880][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  683.231978][    T8] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
15:13:29 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r2=>0x0})
connect$can_j1939(r1, &(0x7f0000000040)={0x1d, r2, 0x0, {0x1}}, 0x18)

[  683.232044][T17474] loop0: detected capacity change from 0 to 512
[  683.275783][    T8] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  683.310688][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
15:13:29 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001440), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_TX_TS(r0, &(0x7f0000001540)={&(0x7f0000001400), 0xc, &(0x7f0000001500)={&(0x7f0000000c00)=ANY=[@ANYBLOB="80000000", @ANYRES16=r1, @ANYBLOB="010025bd7000ffdbdf256a0000000c0099"], 0x80}}, 0x0)

[  683.312320][T17474] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  683.345084][T17474] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1145/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  683.354138][    T8] usb 4-1: config 0 descriptor??
15:13:30 executing program 1:
socketpair(0x11, 0x3, 0x7ff, &(0x7f0000000000))

15:13:30 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(0x0, 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

[  683.492075][   T28] audit: type=1804 audit(1706886810.026:168): pid=17474 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1145/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  683.503970][T17484] netlink: 96 bytes leftover after parsing attributes in process `syz-executor.2'.
15:13:30 executing program 2:
syz_io_uring_setup(0x3132, &(0x7f0000000040), &(0x7f00000000c0), &(0x7f0000000100))

[  683.580815][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:13:30 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@union={0xb}]}}, 0x0, 0x26}, 0x20)

15:13:30 executing program 2:
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
io_uring_setup(0x72e4, &(0x7f0000000000)={0x0, 0x0, 0x20, 0x0, 0x0, 0x0, r0})

15:13:30 executing program 1:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$UI_SET_PHYS(r0, 0x4008556c, &(0x7f00000001c0)='syz1\x00')

[  683.779160][T17393] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  683.858674][    T8] microsoft 0003:045E:07DA.0014: unknown main item tag 0x0
[  683.878826][    T8] microsoft 0003:045E:07DA.0014: unknown main item tag 0x0
[  683.899571][    T8] microsoft 0003:045E:07DA.0014: unknown main item tag 0x0
[  683.920470][    T8] microsoft 0003:045E:07DA.0014: unknown main item tag 0x0
[  683.928495][T17492] loop0: detected capacity change from 0 to 512
[  683.947007][    T8] microsoft 0003:045E:07DA.0014: unknown main item tag 0x0
15:13:30 executing program 1:
io_uring_setup(0x4092, &(0x7f0000000080)={0x0, 0x39d, 0x8})

15:13:30 executing program 2:
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000480)={@ifindex, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)

[  683.985248][    T8] microsoft 0003:045E:07DA.0014: unknown main item tag 0x0
[  684.015844][T17393] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  684.040380][    T8] microsoft 0003:045E:07DA.0014: unknown main item tag 0x0
[  684.048604][    T8] microsoft 0003:045E:07DA.0014: No inputs registered, leaving
[  684.075585][    T8] microsoft 0003:045E:07DA.0014: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  684.098420][T17492] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  684.113576][    T8] microsoft 0003:045E:07DA.0014: no inputs found
[  684.121026][T17492] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1146/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  684.136704][    T8] microsoft 0003:045E:07DA.0014: could not initialize ff, continuing anyway
[  684.152004][    T8] usb 4-1: USB disconnect, device number 84
15:13:30 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_BEACON(r0, &(0x7f0000002b00)={&(0x7f0000000440), 0xc, &(0x7f0000002ac0)={&(0x7f00000004c0)={0x1c, r1, 0x53cf4139263a55e3, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

15:13:30 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x2, &(0x7f0000000280)={'syztnl2\x00', 0x0})

[  684.221595][T17393] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  684.238128][ T5152] libceph: connect (1)[c::]:6789 error -101
[  684.260207][   T24] libceph: connect (1)[c::]:6789 error -101
15:13:30 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(0x0, 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

[  684.290689][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  684.309704][ T5152] libceph: mon0 (1)[c::]:6789 connect error
15:13:30 executing program 2:
r0 = socket$xdp(0x2c, 0x3, 0x0)
getsockopt$XDP_MMAP_OFFSETS(r0, 0x11b, 0x1, 0x0, &(0x7f00000015c0))

15:13:30 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000040), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc0045878, 0x0)

[  684.404328][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  684.427006][T17393] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
15:13:31 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_GET_INTERFACE(r0, &(0x7f0000000100)={&(0x7f0000000040), 0xfffffffffffffed6, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="18000000", @ANYRES16, @ANYBLOB="10032ab57000fbdbdf25050000000c0099001f0000005b000000"], 0x20}, 0x1, 0x0, 0x0, 0x40001}, 0x3)

15:13:31 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00222200000096231306e53f070c00002ddcedfb5a49cc25c0178910badf002a9010"], 0x0}, 0x0)

15:13:31 executing program 1:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x0)
ioctl$UI_SET_LEDBIT(r0, 0x40045569, 0x0)

[  684.590522][   T24] libceph: connect (1)[c::]:6789 error -101
[  684.630057][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  684.638935][   T24] libceph: connect (1)[c::]:6789 error -101
[  684.666842][   T24] libceph: mon0 (1)[c::]:6789 connect error
15:13:31 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0xf0ffffff}, 0x0)

15:13:31 executing program 2:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
r1 = socket$phonet(0x23, 0x2, 0x1)
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000280)={'vxcan1\x00', <r3=>0x0})
bind$can_j1939(r2, &(0x7f00000002c0)={0x1d, r3}, 0x18)
bind$can_j1939(r0, &(0x7f0000000040)={0x1d, r3}, 0x18)

[  684.719966][T17516] loop0: detected capacity change from 0 to 512
[  684.823009][T17516] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:13:31 executing program 1:
syz_clone(0x0, &(0x7f00000007c0), 0x0, 0x0, 0x0, &(0x7f0000000900)='J')
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000a80))

[  684.878526][T17516] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1147/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  684.909481][ T5116] Bluetooth: hci7: command 0x041b tx timeout
15:13:31 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000040), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0x801c581f, 0x0)

[  684.940528][T17393] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  684.957741][T17393] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  684.989645][ T5152] usb 4-1: new high-speed USB device number 85 using dummy_hcd
[  685.000152][T17393] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  685.016766][T17393] netdevsim netdevsim4 netdevsim3: renamed from eth3
15:13:31 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
fsetxattr$security_capability(r0, &(0x7f0000000140), &(0x7f0000000180)=@v2, 0x14, 0x0)

15:13:31 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89b1, &(0x7f0000000280)={'syztnl2\x00', 0x0})

15:13:31 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(0x0, 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x80001d00c0d3)

[  685.190806][T16754] libceph: connect (1)[c::]:6789 error -101
[  685.206984][T16754] libceph: mon0 (1)[c::]:6789 connect error
[  685.216262][   T24] libceph: connect (1)[c::]:6789 error -101
15:13:31 executing program 2:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_VFIO_IOAS$GET(r0, 0x3b88, &(0x7f0000000080)={0xc})

[  685.239359][ T5152] usb 4-1: Using ep0 maxpacket: 16
[  685.246790][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  685.256266][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  685.281534][T17393] 8021q: adding VLAN 0 to HW filter on device bond0
[  685.333143][T17393] 8021q: adding VLAN 0 to HW filter on device team0
[  685.370205][ T5154] bridge0: port 1(bridge_slave_0) entered blocking state
15:13:31 executing program 2:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendto$l2tp6(r0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty, 0x1}, 0x20)

[  685.377446][ T5154] bridge0: port 1(bridge_slave_0) entered forwarding state
[  685.388285][ T5152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  685.424338][ T5152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  685.454438][ T5154] bridge0: port 2(bridge_slave_1) entered blocking state
[  685.461708][ T5154] bridge0: port 2(bridge_slave_1) entered forwarding state
[  685.485658][ T5152] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  685.513198][T17545] loop0: detected capacity change from 0 to 512
15:13:32 executing program 2:
syz_open_dev$dri(&(0x7f0000000040), 0xffffffffffffffff, 0x207000)

[  685.540016][ T5152] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  685.584163][ T5152] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
15:13:32 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000180)={'vcan0\x00'})

[  685.638903][ T5152] usb 4-1: config 0 descriptor??
[  685.649500][T17545] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:13:32 executing program 2:
pipe2(&(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), r0)

[  685.697184][T17545] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1148/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:13:32 executing program 2:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$UI_BEGIN_FF_ERASE(r0, 0xc00c55ca, 0x0)
ioctl$UI_SET_ABSBIT(r0, 0x40045567, 0x0)

15:13:32 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x12e0}}, 0x0)

15:13:32 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_DELETE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01"], 0x24}}, 0x0)

15:13:32 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r4, 0x0, 0x80001d00c0d3)

[  686.044061][T17568] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'.
[  686.065302][T17569] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.2'.
15:13:32 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x88}}, 0x0)
sendmsg$OSF_MSG_REMOVE(r0, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000013c0)={&(0x7f0000001440)=ANY=[], 0x12b4}}, 0x0)

15:13:32 executing program 1:
openat$mice(0xffffffffffffff9c, &(0x7f0000000280), 0x12000)

[  686.106618][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  686.119195][ T1241] ieee802154 phy0 wpan0: encryption failed: -22
[  686.125881][ T1241] ieee802154 phy1 wpan1: encryption failed: -22
[  686.142305][ T5152] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0
15:13:32 executing program 2:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189436, &(0x7f0000000040)=ANY=[])

[  686.190575][T17538] libceph: connect (1)[c::]:6789 error -101
[  686.211517][ T5152] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0
[  686.218815][ T5152] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0
15:13:32 executing program 1:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000000040)={{0x1, 0x1, 0x18}, './file0\x00'})

[  686.248857][T17538] libceph: mon0 (1)[c::]:6789 connect error
[  686.268422][   T24] libceph: connect (1)[c::]:6789 error -101
[  686.278978][T17393] 8021q: adding VLAN 0 to HW filter on device batadv0
[  686.296752][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  686.309348][ T5152] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0
[  686.316628][ T5152] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0
[  686.351604][ T5152] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0
[  686.358912][ T5152] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0
[  686.377344][T17578] loop0: detected capacity change from 0 to 512
15:13:32 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f0000000140)={{}, 'port1\x00'})

[  686.397445][ T5152] microsoft 0003:045E:07DA.0015: No inputs registered, leaving
[  686.435036][T17578] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  686.465090][ T5152] microsoft 0003:045E:07DA.0015: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
15:13:33 executing program 2:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001e40)={0x0, 0x1, &(0x7f0000000ac0)=@raw=[@jmp], &(0x7f0000000b00)='GPL\x00'}, 0x90)

[  686.489345][T17578] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1149/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:13:33 executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x20, 0xb, 0x0, 0x0}, 0x90)

[  686.532812][ T5152] microsoft 0003:045E:07DA.0015: no inputs found
[  686.567854][ T5152] microsoft 0003:045E:07DA.0015: could not initialize ff, continuing anyway
15:13:33 executing program 2:
syz_clone(0x210a00, 0x0, 0x0, 0x0, 0x0, 0x0)

[  686.655853][ T5152] usb 4-1: USB disconnect, device number 85
[  686.667338][   T28] audit: type=1804 audit(1706886813.196:169): pid=17590 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1149/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:13:33 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8911, &(0x7f0000000280)={'syztnl2\x00', 0x0})

15:13:33 executing program 1:
syz_open_procfs(0x0, &(0x7f0000000200)='net/hci\x00')

15:13:33 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r4, 0x0, 0x80001d00c0d3)

15:13:33 executing program 2:
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000180)={@cgroup, 0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)

15:13:33 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00222200000096231306e53f070c00002ddcedfb5a49cc25c0178910badf002a9010"], 0x0}, 0x0)

[  686.874658][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:13:33 executing program 1:
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000000040), 0x4)

[  686.989387][ T5116] Bluetooth: hci7: command 0x040f tx timeout
15:13:33 executing program 1:
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x80}, 0x48)

15:13:33 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={&(0x7f0000002e40)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x3c, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x3c}}, 0x0)

15:13:33 executing program 1:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{}, {0x9}]})

[  687.157682][ T5152] libceph: connect (1)[c::]:6789 error -101
[  687.172165][T17393] veth0_vlan: entered promiscuous mode
[  687.177312][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  687.185478][ T5154] libceph: connect (1)[c::]:6789 error -101
[  687.222498][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  687.225751][T17393] veth1_vlan: entered promiscuous mode
[  687.245699][T17611] loop0: detected capacity change from 0 to 512
[  687.252210][   T57] usb 4-1: new high-speed USB device number 86 using dummy_hcd
15:13:33 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x5421, 0x0)

15:13:33 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={&(0x7f0000002e40)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x3c, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x3c}}, 0x0)

[  687.329450][T17611] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  687.373256][T17393] veth0_macvtap: entered promiscuous mode
[  687.379223][T17611] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1150/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  687.401267][T17393] veth1_macvtap: entered promiscuous mode
[  687.440140][T17393] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  687.451250][T17393] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  687.466518][T17393] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  687.478325][T17393] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
15:13:34 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000040), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0})

[  687.488704][T17393] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  687.499911][ T5154] libceph: connect (1)[c::]:6789 error -101
[  687.505987][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  687.512086][   T57] usb 4-1: Using ep0 maxpacket: 16
[  687.518454][ T5152] libceph: connect (1)[c::]:6789 error -101
[  687.525269][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  687.531817][T17393] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  687.542113][T17393] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  687.554009][T17393] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  687.567682][T17393] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  687.583464][   T28] audit: type=1804 audit(1706886814.116:170): pid=17621 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1150/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  687.618802][T17393] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  687.630150][T17393] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  687.641928][T17393] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  687.652217][T17393] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  687.663003][   T57] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  687.678736][   T57] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
15:13:34 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000000440), 0x80, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, 0x0)

15:13:34 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r4, 0x0, 0x80001d00c0d3)

[  687.688903][T17393] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  687.704089][   T57] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  687.721605][T17393] batman_adv: batadv0: Interface activated: batadv_slave_0
[  687.729629][   T57] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  687.753455][T17393] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  687.775657][   T57] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
15:13:34 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={&(0x7f0000002e40)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x3c, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x3c}}, 0x0)

[  687.795981][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  687.808114][   T57] usb 4-1: config 0 descriptor??
[  687.813703][T17393] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
15:13:34 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x12e0}}, 0x0)

[  687.855595][T17393] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  687.872386][T17393] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  687.884435][T17393] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  687.895404][T17393] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  687.907318][T17393] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  687.918256][T17393] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  687.934596][T17393] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  687.958357][T17393] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  687.961103][T17629] netlink: 112 bytes leftover after parsing attributes in process `syz-executor.1'.
[  687.970212][T17393] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  687.979211][T17629] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'.
[  688.001714][T17393] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  688.012722][T17393] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  688.023343][T17393] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  688.037044][T17393] batman_adv: batadv0: Interface activated: batadv_slave_1
[  688.042863][ T5154] libceph: connect (1)[c::]:6789 error -101
[  688.051709][T17538] libceph: connect (1)[c::]:6789 error -101
[  688.057775][T17538] libceph: mon0 (1)[c::]:6789 connect error
15:13:34 executing program 1:
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000003c0), 0x0)

15:13:34 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={&(0x7f0000002e40)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x3c, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x3c}}, 0x0)

[  688.080676][T17393] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  688.091698][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  688.139317][T17393] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  688.148111][T17393] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  688.169247][T17393] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  688.215953][T17633] loop0: detected capacity change from 0 to 512
15:13:34 executing program 2:
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000002f80)={&(0x7f0000002e40)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x3c, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x3c}}, 0x0)

15:13:34 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x3, [@struct={0x1}]}, {0x0, [0x61]}}, 0x0, 0x27, 0x0, 0x1}, 0x20)

[  688.266130][T17633] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  688.292364][   T57] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[  688.296102][T17633] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1151/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  688.342978][   T57] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
15:13:34 executing program 2:
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000002f80)={&(0x7f0000002e40)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x3c, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x3c}}, 0x0)

[  688.395840][   T57] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[  688.412876][   T28] audit: type=1804 audit(1706886814.946:171): pid=17640 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1151/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:13:35 executing program 2:
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000002f80)={&(0x7f0000002e40)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x3c, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x3c}}, 0x0)

[  688.481483][   T57] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[  688.517261][   T57] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
15:13:35 executing program 1:
syz_clone(0x141000000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  688.546298][   T57] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[  688.569256][   T57] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[  688.583574][ T1095] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
15:13:35 executing program 2:
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000002f80)={&(0x7f0000002e40)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x3c, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x3c}}, 0x0)

15:13:35 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x80001d00c0d3)

[  688.598652][   T57] microsoft 0003:045E:07DA.0016: No inputs registered, leaving
[  688.613189][ T1095] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  688.663225][   T57] microsoft 0003:045E:07DA.0016: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  688.698468][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  688.708046][   T57] microsoft 0003:045E:07DA.0016: no inputs found
[  688.715246][ T5149] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  688.723139][   T57] microsoft 0003:045E:07DA.0016: could not initialize ff, continuing anyway
[  688.731979][   T57] usb 4-1: USB disconnect, device number 86
15:13:35 executing program 2:
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000002f80)={&(0x7f0000002e40)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x3c, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x3c}}, 0x0)

[  688.771589][ T5149] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
15:13:35 executing program 4:
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000140)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r1 = gettid()
r2 = dup(r0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
read$FUSE(r2, 0x0, 0x0)
tkill(r1, 0xb)

15:13:35 executing program 2:
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000002f80)={&(0x7f0000002e40)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x3c, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x3c}}, 0x0)

[  688.953985][T17654] loop0: detected capacity change from 0 to 512
15:13:35 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00222200000096231306e53f070c00002ddcedfb5a49cc25c0178910badf002a9010"], 0x0}, 0x0)

[  688.994282][ T1057] libceph: connect (1)[c::]:6789 error -101
[  689.018600][ T1057] libceph: mon0 (1)[c::]:6789 connect error
[  689.033392][T17654] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:13:35 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)

[  689.069309][ T5116] Bluetooth: hci7: command 0x0419 tx timeout
[  689.087857][T17656] ceph: No mds server is up or the cluster is laggy
15:13:35 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)

[  689.121716][T17654] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1152/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  689.151061][ T5152] libceph: connect (1)[c::]:6789 error -101
[  689.162560][ T5152] libceph: mon0 (1)[c::]:6789 connect error
15:13:35 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)

[  689.187827][ T5152] libceph: connect (1)[c::]:6789 error -101
[  689.213087][ T5152] libceph: mon0 (1)[c::]:6789 connect error
15:13:35 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x3c, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x3c}}, 0x0)

[  689.279954][ T1057] libceph: connect (1)[c::]:6789 error -101
[  689.296964][   T28] audit: type=1804 audit(1706886815.826:172): pid=17673 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1152/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:13:35 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, 0x0}, 0x0)

[  689.322694][    C0] vkms_vblank_simulate: vblank timer overrun
[  689.348616][ T1057] libceph: mon0 (1)[c::]:6789 connect error
15:13:35 executing program 1:
statfs(&(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

15:13:35 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x80001d00c0d3)

15:13:36 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89a3, &(0x7f0000000280)={'syztnl2\x00', 0x0})

[  689.468386][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  689.489796][ T5152] usb 4-1: new high-speed USB device number 87 using dummy_hcd
15:13:36 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, 0x0}, 0x0)

15:13:36 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, 0x0}, 0x0)

15:13:36 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={0x0}}, 0x0)

[  689.746309][T17691] loop0: detected capacity change from 0 to 512
[  689.752823][ T5152] usb 4-1: Using ep0 maxpacket: 16
[  689.793173][T17691] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:13:36 executing program 1:
mincore(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)

[  689.845434][T17691] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1153/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  689.871241][T16704] libceph: connect (1)[c::]:6789 error -101
[  689.885417][T16704] libceph: mon0 (1)[c::]:6789 connect error
15:13:36 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={0x0}}, 0x0)

[  689.892807][ T5152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  689.914791][ T5152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
15:13:36 executing program 1:
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0x6, 0x3, &(0x7f0000000040)=@framed, &(0x7f00000000c0)='syzkaller\x00', 0x5, 0x1000, &(0x7f0000000440)=""/4096}, 0x90)

[  689.982938][ T5152] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  690.015998][ T5152] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
15:13:36 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={0x0}}, 0x0)

[  690.048289][ T5152] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  690.074579][ T5152] usb 4-1: config 0 descriptor??
15:13:36 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x80001d00c0d3)

[  690.097509][   T28] audit: type=1804 audit(1706886816.626:173): pid=17691 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1153/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  690.123242][    C0] vkms_vblank_simulate: vblank timer overrun
15:13:36 executing program 1:
openat$pidfd(0xffffffffffffff9c, &(0x7f0000001b00), 0xd4840, 0x0)
syz_open_dev$dri(&(0x7f0000000040), 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001240))
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_DEL(r0, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x78, 0x3, 0x7, 0x201, 0x0, 0x0, {0x5, 0x0, 0x9}, [@NFACCT_FILTER={0x2c, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x1c4}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x4}, @NFACCT_FILTER_VALUE={0x11, 0x2, 0x1, 0x0, 0x400}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x101}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x8}]}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x3}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x4}, @NFACCT_BYTES={0xc}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_QUOTA={0xfffffffffffffdfa, 0x6, 0x1, 0x0, 0x5}]}, 0x78}, 0x1, 0x0, 0x0, 0x10}, 0x4000004)

[  690.190342][   T57] libceph: connect (1)[c::]:6789 error -101
[  690.196440][   T57] libceph: mon0 (1)[c::]:6789 connect error
[  690.203879][ T5154] libceph: connect (1)[c::]:6789 error -101
[  690.219545][ T5154] libceph: mon0 (1)[c::]:6789 connect error
15:13:36 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x3c, 0x18, 0x0, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x3c}}, 0x0)

15:13:36 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001440), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_TX_TS(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000c00)=ANY=[@ANYBLOB="80000000", @ANYRES16=r1, @ANYBLOB="010025bd7000ffdbdf256a0000000c0099"], 0x80}}, 0x0)

[  690.237867][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  690.257540][T17705] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
15:13:36 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x3c, 0x18, 0x0, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x3c}}, 0x0)

[  690.446323][T17710] loop0: detected capacity change from 0 to 512
[  690.463206][T17711] netlink: 96 bytes leftover after parsing attributes in process `syz-executor.1'.
[  690.512455][ T5160] libceph: connect (1)[c::]:6789 error -101
[  690.519444][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  690.525858][ T5160] libceph: connect (1)[c::]:6789 error -101
[  690.532961][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  690.544568][T17710] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:13:37 executing program 1:
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000280)={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3}, 0x48)

[  690.559312][T17710] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1154/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  690.562458][ T5152] microsoft 0003:045E:07DA.0017: unknown main item tag 0x0
[  690.610709][ T5152] microsoft 0003:045E:07DA.0017: unknown main item tag 0x0
[  690.625198][ T5152] microsoft 0003:045E:07DA.0017: unknown main item tag 0x0
[  690.633002][ T5152] microsoft 0003:045E:07DA.0017: unknown main item tag 0x0
[  690.641787][ T5152] microsoft 0003:045E:07DA.0017: unknown main item tag 0x0
[  690.649130][ T5152] microsoft 0003:045E:07DA.0017: unknown main item tag 0x0
15:13:37 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x3c, 0x18, 0x0, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x3c}}, 0x0)

[  690.656654][ T5152] microsoft 0003:045E:07DA.0017: unknown main item tag 0x0
[  690.665666][ T5152] microsoft 0003:045E:07DA.0017: No inputs registered, leaving
[  690.680367][ T5152] microsoft 0003:045E:07DA.0017: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  690.702513][ T5152] microsoft 0003:045E:07DA.0017: no inputs found
[  690.729595][ T5152] microsoft 0003:045E:07DA.0017: could not initialize ff, continuing anyway
15:13:37 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x24, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_UID={0x8}]}, 0x24}}, 0x0)

[  690.778615][   T28] audit: type=1804 audit(1706886817.306:174): pid=17716 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1154/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  690.804438][    C0] vkms_vblank_simulate: vblank timer overrun
15:13:37 executing program 1:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x1ac28581f66bcc9c, 0xf, &(0x7f0000000100)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, 0x1}}}, &(0x7f00000001c0)='GPL\x00'}, 0x90)

[  690.850322][ T5152] usb 4-1: USB disconnect, device number 87
15:13:37 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x24, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_UID={0x8}]}, 0x24}}, 0x0)

15:13:37 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x0)

[  691.024185][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  691.051418][ T5160] libceph: connect (1)[c::]:6789 error -101
[  691.057514][ T5160] libceph: mon0 (1)[c::]:6789 connect error
15:13:37 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x24, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_UID={0x8}]}, 0x24}}, 0x0)

15:13:37 executing program 1:
syz_open_dev$hidraw(&(0x7f0000000100), 0x0, 0x200)

[  691.074491][ T5154] libceph: connect (1)[c::]:6789 error -101
[  691.109694][ T5154] libceph: mon0 (1)[c::]:6789 connect error
15:13:37 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89b0, &(0x7f0000000280)={'syztnl2\x00', 0x0})

[  691.243247][ T5149] libceph: connect (1)[c::]:6789 error -101
[  691.279508][ T5149] libceph: mon0 (1)[c::]:6789 connect error
[  691.308283][T17734] loop0: detected capacity change from 0 to 512
[  691.400227][T17734] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  691.482576][T17734] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1155/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  691.713861][   T28] audit: type=1804 audit(1706886818.246:175): pid=17739 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1155/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  691.786272][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  692.190253][   T57] libceph: connect (1)[c::]:6789 error -101
[  692.190318][ T1057] libceph: connect (1)[c::]:6789 error -101
[  692.196313][   T57] libceph: mon0 (1)[c::]:6789 connect error
[  692.208554][ T5160] libceph: connect (1)[c::]:6789 error -101
[  692.212268][ T1057] libceph: mon0 (1)[c::]:6789 connect error
[  692.233885][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  692.492116][ T1057] libceph: connect (1)[c::]:6789 error -101
[  692.498176][ T1057] libceph: mon0 (1)[c::]:6789 connect error
[  693.015417][ T1057] libceph: connect (1)[c::]:6789 error -101
[  693.021650][ T1057] libceph: mon0 (1)[c::]:6789 connect error
[  693.150651][ T5160] libceph: connect (1)[c::]:6789 error -101
[  693.156756][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  693.164040][ T5154] libceph: connect (1)[c::]:6789 error -101
[  693.170253][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  693.430015][ T5160] libceph: connect (1)[c::]:6789 error -101
[  693.436038][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  693.442353][ T5154] libceph: connect (1)[c::]:6789 error -101
[  693.448334][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  693.965373][ T5154] libceph: connect (1)[c::]:6789 error -101
[  693.971504][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  693.977723][ T5154] libceph: connect (1)[c::]:6789 error -101
[  693.989235][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  694.192239][    T7] libceph: connect (1)[c::]:6789 error -101
[  694.198410][    T7] libceph: mon0 (1)[c::]:6789 connect error
[  695.155477][ T5154] libceph: connect (1)[c::]:6789 error -101
[  695.162050][ T5160] libceph: connect (1)[c::]:6789 error -101
[  695.168108][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  695.174347][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  695.231065][ T1057] libceph: connect (1)[c::]:6789 error -101
[  695.237143][ T1057] libceph: mon0 (1)[c::]:6789 connect error
[  695.530629][    T7] libceph: connect (1)[c::]:6789 error -101
[  695.536651][    T7] libceph: mon0 (1)[c::]:6789 connect error
[  696.061475][ T1057] libceph: connect (1)[c::]:6789 error -101
[  696.069433][ T1057] libceph: mon0 (1)[c::]:6789 connect error
[  696.191795][ T5154] libceph: connect (1)[c::]:6789 error -101
[  696.197882][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  696.204531][ T5154] libceph: connect (1)[c::]:6789 error -101
[  696.210844][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  696.470552][ T5154] libceph: connect (1)[c::]:6789 error -101
[  696.477224][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  696.484323][ T5152] libceph: connect (1)[c::]:6789 error -101
[  696.490493][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  697.022837][ T5152] libceph: connect (1)[c::]:6789 error -101
[  697.028891][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  697.035364][ T5154] libceph: connect (1)[c::]:6789 error -101
[  697.041611][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  697.232230][ T1057] libceph: connect (1)[c::]:6789 error -101
[  697.238331][ T1057] libceph: mon0 (1)[c::]:6789 connect error
[  698.193728][T17538] libceph: connect (1)[c::]:6789 error -101
[  698.194384][ T1057] libceph: connect (1)[c::]:6789 error -101
[  698.200184][ T5154] libceph: connect (1)[c::]:6789 error -101
[  698.209222][ T1057] libceph: mon0 (1)[c::]:6789 connect error
[  698.212885][T17538] libceph: mon0 (1)[c::]:6789 connect error
[  698.227363][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  698.496913][ T5149] libceph: connect (1)[c::]:6789 error -101
[  698.503146][ T5149] libceph: mon0 (1)[c::]:6789 connect error
[  699.035939][ T5149] libceph: connect (1)[c::]:6789 error -101
[  699.042121][ T5149] libceph: mon0 (1)[c::]:6789 connect error
[  699.151872][ T5154] libceph: connect (1)[c::]:6789 error -101
[  699.157963][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  699.164411][T17538] libceph: connect (1)[c::]:6789 error -101
[  699.170543][T17538] libceph: mon0 (1)[c::]:6789 connect error
[  699.439903][T17538] libceph: connect (1)[c::]:6789 error -101
[  699.446822][T17538] libceph: mon0 (1)[c::]:6789 connect error
[  699.454335][ T5154] libceph: connect (1)[c::]:6789 error -101
[  699.460517][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  699.972466][ T5154] libceph: connect (1)[c::]:6789 error -101
[  699.978489][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  699.985028][T17538] libceph: connect (1)[c::]:6789 error -101
[  699.991821][T17538] libceph: mon0 (1)[c::]:6789 connect error
[  700.195364][ T5149] libceph: connect (1)[c::]:6789 error -101
[  700.201506][ T5149] libceph: mon0 (1)[c::]:6789 connect error
[  701.157566][ T5154] libceph: connect (1)[c::]:6789 error -101
[  701.163942][ T5152] libceph: connect (1)[c::]:6789 error -101
[  701.170067][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  701.176148][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  701.230079][ T5149] libceph: connect (1)[c::]:6789 error -101
[  701.236335][ T5149] libceph: mon0 (1)[c::]:6789 connect error
[  701.503854][ T5149] libceph: connect (1)[c::]:6789 error -101
[  701.510210][ T5149] libceph: mon0 (1)[c::]:6789 connect error
[  702.021444][ T5149] libceph: connect (1)[c::]:6789 error -101
[  702.027469][ T5149] libceph: mon0 (1)[c::]:6789 connect error
[  702.191591][T17538] libceph: connect (1)[c::]:6789 error -101
[  702.197754][T17538] libceph: mon0 (1)[c::]:6789 connect error
[  702.204429][ T5152] libceph: connect (1)[c::]:6789 error -101
[  702.212403][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  702.470931][ T5152] libceph: connect (1)[c::]:6789 error -101
[  702.476999][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  702.483456][T17538] libceph: connect (1)[c::]:6789 error -101
[  702.489667][T17538] libceph: mon0 (1)[c::]:6789 connect error
[  703.002501][T17538] libceph: connect (1)[c::]:6789 error -101
[  703.008587][T17538] libceph: mon0 (1)[c::]:6789 connect error
[  703.015261][ T5154] libceph: connect (1)[c::]:6789 error -101
[  703.021519][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  703.241716][ T5149] libceph: connect (1)[c::]:6789 error -101
[  703.247779][ T5149] libceph: mon0 (1)[c::]:6789 connect error
[  704.196912][ T1057] libceph: connect (1)[c::]:6789 error -101
[  704.199814][ T5154] libceph: connect (1)[c::]:6789 error -101
[  704.209163][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  704.215510][ T1057] libceph: mon0 (1)[c::]:6789 connect error
[  704.215585][ T5154] libceph: connect (1)[c::]:6789 error -101
[  704.228932][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  704.502943][ T1057] libceph: connect (1)[c::]:6789 error -101
[  704.508967][ T1057] libceph: mon0 (1)[c::]:6789 connect error
[  705.022292][ T1057] libceph: connect (1)[c::]:6789 error -101
[  705.028311][ T1057] libceph: mon0 (1)[c::]:6789 connect error
[  705.150613][ T5154] libceph: connect (1)[c::]:6789 error -101
[  705.156668][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  705.163381][ T5152] libceph: connect (1)[c::]:6789 error -101
[  705.169684][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  705.440870][ T5152] libceph: connect (1)[c::]:6789 error -101
[  705.447049][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  705.453479][ T5154] libceph: connect (1)[c::]:6789 error -101
[  705.459735][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  705.975615][ T5154] libceph: connect (1)[c::]:6789 error -101
[  705.982058][ T5152] libceph: connect (1)[c::]:6789 error -101
[  705.988121][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  705.994340][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  706.202961][ T1057] libceph: connect (1)[c::]:6789 error -101
[  706.209550][ T1057] libceph: mon0 (1)[c::]:6789 connect error
[  707.162606][ T5154] libceph: connect (1)[c::]:6789 error -101
[  707.168623][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  707.175254][ T5152] libceph: connect (1)[c::]:6789 error -101
[  707.181580][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  707.231174][ T1057] libceph: connect (1)[c::]:6789 error -101
[  707.237283][ T1057] libceph: mon0 (1)[c::]:6789 connect error
[  707.511026][ T1057] libceph: connect (1)[c::]:6789 error -101
[  707.517275][ T1057] libceph: mon0 (1)[c::]:6789 connect error
[  708.038807][ T1057] libceph: connect (1)[c::]:6789 error -101
[  708.046810][ T1057] libceph: mon0 (1)[c::]:6789 connect error
[  708.192928][ T5152] libceph: connect (1)[c::]:6789 error -101
[  708.199240][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  708.205915][ T5152] libceph: connect (1)[c::]:6789 error -101
[  708.212162][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  708.470924][ T5152] libceph: connect (1)[c::]:6789 error -101
[  708.477054][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  708.483439][ T5154] libceph: connect (1)[c::]:6789 error -101
[  708.489550][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  709.013261][ T5154] libceph: connect (1)[c::]:6789 error -101
[  709.019528][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  709.025825][ T5154] libceph: connect (1)[c::]:6789 error -101
[  709.032433][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  709.236755][ T1057] libceph: connect (1)[c::]:6789 error -101
[  709.242947][ T1057] libceph: mon0 (1)[c::]:6789 connect error
[  710.192733][T16704] libceph: connect (1)[c::]:6789 error -101
[  710.193927][ T5154] libceph: connect (1)[c::]:6789 error -101
[  710.200153][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  710.214161][T17538] libceph: connect (1)[c::]:6789 error -101
[  710.221072][T16704] libceph: mon0 (1)[c::]:6789 connect error
[  710.221450][T17538] libceph: mon0 (1)[c::]:6789 connect error
[  710.480418][T16704] libceph: connect (1)[c::]:6789 error -101
[  710.486490][T16704] libceph: mon0 (1)[c::]:6789 connect error
[  711.015944][ T1057] libceph: connect (1)[c::]:6789 error -101
[  711.022293][ T1057] libceph: mon0 (1)[c::]:6789 connect error
[  711.149894][T17538] libceph: connect (1)[c::]:6789 error -101
[  711.156006][T17538] libceph: mon0 (1)[c::]:6789 connect error
[  711.162497][ T5152] libceph: connect (1)[c::]:6789 error -101
[  711.168516][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  711.441141][ T5152] libceph: connect (1)[c::]:6789 error -101
[  711.447157][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  711.453632][ T5160] libceph: connect (1)[c::]:6789 error -101
[  711.459717][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  711.972709][ T5152] libceph: connect (1)[c::]:6789 error -101
[  711.978914][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  711.985608][ T5160] libceph: connect (1)[c::]:6789 error -101
[  711.991952][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  712.190757][T16704] libceph: connect (1)[c::]:6789 error -101
[  712.196775][T16704] libceph: mon0 (1)[c::]:6789 connect error
[  713.158039][ T5160] libceph: connect (1)[c::]:6789 error -101
[  713.165546][ T5152] libceph: connect (1)[c::]:6789 error -101
[  713.171681][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  713.177685][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  713.230183][T16704] libceph: connect (1)[c::]:6789 error -101
[  713.236245][T16704] libceph: mon0 (1)[c::]:6789 connect error
[  713.505449][T16704] libceph: connect (1)[c::]:6789 error -101
[  713.511583][T16704] libceph: mon0 (1)[c::]:6789 connect error
[  714.022578][T16704] libceph: connect (1)[c::]:6789 error -101
[  714.028602][T16704] libceph: mon0 (1)[c::]:6789 connect error
[  714.191986][ T5160] libceph: connect (1)[c::]:6789 error -101
[  714.198043][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  714.204511][T17538] libceph: connect (1)[c::]:6789 error -101
[  714.210752][T17538] libceph: mon0 (1)[c::]:6789 connect error
[  714.477084][T17538] libceph: connect (1)[c::]:6789 error -101
[  714.483237][T17538] libceph: mon0 (1)[c::]:6789 connect error
[  714.489974][ T5160] libceph: connect (1)[c::]:6789 error -101
[  714.497016][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  715.013711][ T5160] libceph: connect (1)[c::]:6789 error -101
[  715.020090][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  715.026955][ T5160] libceph: connect (1)[c::]:6789 error -101
[  715.033211][ T5160] libceph: mon0 (1)[c::]:6789 connect error
[  715.236805][T16704] libceph: connect (1)[c::]:6789 error -101
[  715.242949][T16704] libceph: mon0 (1)[c::]:6789 connect error
[  716.196188][ T5149] libceph: connect (1)[c::]:6789 error -101
[  716.201412][T17538] libceph: connect (1)[c::]:6789 error -101
[  716.203424][ T5149] libceph: mon0 (1)[c::]:6789 connect error
[  716.208748][T17538] libceph: mon0 (1)[c::]:6789 connect error
[  716.221146][ T5152] libceph: connect (1)[c::]:6789 error -101
[  716.227194][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  716.472768][ T5149] libceph: connect (1)[c::]:6789 error -101
[  716.478874][ T5149] libceph: mon0 (1)[c::]:6789 connect error
[  716.994469][ T5149] libceph: connect (1)[c::]:6789 error -101
[  717.000920][ T5149] libceph: mon0 (1)[c::]:6789 connect error
[  717.154793][T17538] libceph: connect (1)[c::]:6789 error -101
[  717.161685][ T5154] libceph: connect (1)[c::]:6789 error -101
[  717.167687][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  717.173873][T17538] libceph: mon0 (1)[c::]:6789 connect error
[  717.441057][ T5154] libceph: connect (1)[c::]:6789 error -101
[  717.447074][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  717.453709][T17538] libceph: connect (1)[c::]:6789 error -101
[  717.460520][T17538] libceph: mon0 (1)[c::]:6789 connect error
[  717.984126][T17538] libceph: connect (1)[c::]:6789 error -101
[  717.990733][ T5154] libceph: connect (1)[c::]:6789 error -101
[  717.996947][T17538] libceph: mon0 (1)[c::]:6789 connect error
[  718.003147][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  718.189705][ T5149] libceph: connect (1)[c::]:6789 error -101
[  718.195802][ T5149] libceph: mon0 (1)[c::]:6789 connect error
15:14:05 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x0)

15:14:05 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x3c, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}}}]}, 0x3c}}, 0x0)

15:14:05 executing program 3:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
setsockopt$SO_J1939_ERRQUEUE(r0, 0x6b, 0x4, &(0x7f0000000000)=0x1, 0x4)

15:14:05 executing program 1:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00'})

15:14:05 executing program 4:
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000140)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r1 = gettid()
r2 = dup(r0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
read$FUSE(r2, 0x0, 0x0)
tkill(r1, 0xb)

15:14:05 executing program 1:
bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f00000007c0), 0x10)

15:14:05 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r1, 0x1, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)

[  718.996656][T17746] loop0: detected capacity change from 0 to 512
15:14:05 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x3c, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}}}]}, 0x3c}}, 0x0)

15:14:05 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x2c, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x2c}}, 0x0)

15:14:05 executing program 3:
bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0)

[  719.153719][ T5154] libceph: connect (1)[c::]:6789 error -101
[  719.215996][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  719.229736][ T5149] libceph: connect (1)[c::]:6789 error -101
[  719.229901][T17538] libceph: connect (1)[c::]:6789 error -101
[  719.243525][ T5149] libceph: mon0 (1)[c::]:6789 connect error
15:14:05 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x891d, &(0x7f0000000280)={'syztnl2\x00', 0x0})

15:14:05 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x3c, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}}}]}, 0x3c}}, 0x0)

15:14:05 executing program 1:
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000000040)='./file0\x00', 0x20010080, &(0x7f0000000300)=ANY=[], 0x9, 0x14d7, &(0x7f0000002a80)="$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")
r0 = open(&(0x7f0000000000)='./bus\x00', 0x60942, 0x0)
r1 = open(&(0x7f0000007f80)='./bus\x00', 0x145142, 0x0)
sendfile(r0, r1, 0x0, 0x1000000201005)

[  719.296895][T17538] libceph: mon0 (1)[c::]:6789 connect error
[  719.305953][T17746] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:14:05 executing program 3:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
recvmsg$can_bcm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)=""/163, 0xa3}, {&(0x7f00000000c0)=""/165, 0xa5}, {&(0x7f0000000180)=""/196, 0xc4}, {&(0x7f0000000280)=""/244, 0xf4}, {&(0x7f0000000380)=""/115, 0x73}], 0x5, &(0x7f0000000480)=""/178, 0xb2}, 0x2020)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f0000000580)={{0x0, 0x9, 0x7, 0x1, 0x3, 0x2, 0x7, 0xff, 0x9, 0x80, 0x9e, 0x6, 0xfffffffffffffffe, 0x9, 0xe00}, 0x30, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
socket$packet(0x11, 0x3, 0x300)

[  719.369533][T17746] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1156/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:14:06 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x34, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x34}}, 0x0)

[  719.516647][ T5149] libceph: connect (1)[c::]:6789 error -101
[  719.535582][ T5149] libceph: mon0 (1)[c::]:6789 connect error
[  719.556307][T17770] loop1: detected capacity change from 0 to 256
[  719.590317][T17770] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x4f9d53fa, utbl_chksum : 0xe619d30d)
[  719.594658][   T28] audit: type=1804 audit(1706886846.126:176): pid=17773 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1156/file0/bus" dev="loop0" ino=18 res=1 errno=0
15:14:06 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x34, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x34}}, 0x0)

15:14:06 executing program 0:
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x4e2, &(0x7f0000000b80)="$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")
r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r2, 0x800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200)=ANY=[], 0x208e24b)
lseek(r1, 0x20400, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x0)

[  719.768364][   T28] audit: type=1800 audit(1706886846.296:177): pid=17777 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=1048608 res=0 errno=0
15:14:06 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x1ff, 0x1)
ioctl$USBDEVFS_CONTROL(r0, 0x80085504, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

15:14:06 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x34, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0x0, 0xfffffffffffffffc}}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x34}}, 0x0)

[  719.864140][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:14:06 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x34, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x34}}, 0x0)

[  720.020633][T17783] usb usb1: usbfs: process 17783 (syz-executor.1) did not claim interface 0 before use
15:14:06 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x1ff, 0x1)
ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000000)={0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

[  720.069689][T16704] libceph: connect (1)[c::]:6789 error -101
[  720.096237][T16704] libceph: mon0 (1)[c::]:6789 connect error
15:14:06 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x34, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x34}}, 0x0)

15:14:06 executing program 1:
r0 = openat$procfs(0xffffff9c, &(0x7f0000000100)='/proc/cgroups\x00', 0x0, 0x0)
io_setup(0x1f, &(0x7f00000020c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000023c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000002100)='1', 0x1, 0x1}])

[  720.203805][T17787] loop0: detected capacity change from 0 to 512
[  720.213888][ T5152] libceph: connect (1)[c::]:6789 error -101
[  720.228909][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  720.235605][ T5154] libceph: connect (1)[c::]:6789 error -101
[  720.247935][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  720.311104][T17787] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
15:14:06 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x34, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x34}}, 0x0)

[  720.381124][T17787] ext4 filesystem being mounted at /root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1157/file0 supports timestamps until 2038-01-19 (0x7fffffff)
15:14:06 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$netlink(r0, 0x10e, 0x9, 0x0, &(0x7f0000000300))

15:14:07 executing program 3:
syz_mount_image$btrfs(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x16, &(0x7f00000002c0)={[{@nobarrier}, {@compress_force_algo={'compress-force', 0x3d, 'zlib'}}, {@commit={'commit', 0x3d, 0x6}}, {@commit={'commit', 0x3d, 0x3f}}, {@nodatasum}, {@nodiscard}, {@treelog}, {@compress_algo={'compress', 0x3d, 'lzo'}}]}, 0x9, 0x50ed, &(0x7f000000a2c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f00000001c0))

[  720.509464][   T28] audit: type=1804 audit(1706886847.036:178): pid=17799 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2049761350/syzkaller.FYfHd7/1157/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  720.509539][ T5152] libceph: connect (1)[c::]:6789 error -101
15:14:07 executing program 1:
r0 = openat$procfs(0xffffff9c, &(0x7f0000000100)='/proc/cgroups\x00', 0x0, 0x0)
io_setup(0x1f, &(0x7f00000020c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000023c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000002100)='1', 0x1, 0x1}])

[  720.555003][ T5154] libceph: connect (1)[c::]:6789 error -101
[  720.574726][ T5154] libceph: mon0 (1)[c::]:6789 connect error
15:14:07 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x3c, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8}, @CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x3c}}, 0x0)

15:14:07 executing program 0:
bpf$PROG_LOAD(0x22, &(0x7f0000002500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x90)

[  720.630441][ T5152] libceph: mon0 (1)[c::]:6789 connect error
15:14:07 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x3c, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8}, @CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x3c}}, 0x0)

[  720.714387][ T5102] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
15:14:07 executing program 1:
r0 = openat$procfs(0xffffff9c, &(0x7f0000000100)='/proc/cgroups\x00', 0x0, 0x0)
io_setup(0x1f, &(0x7f00000020c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000023c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000002100)='1', 0x1, 0x1}])

15:14:07 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000002ec0)=@can_newroute={0x3c, 0x18, 0x111, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8}, @CGW_MOD_UID={0x8}, @CGW_MOD_OR={0x15, 0x2, {{{}, 0x0, 0x0, 0x0, 0x0, "e866633b29443e8d"}, 0x7}}]}, 0x3c}}, 0x0)

15:14:07 executing program 0:
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000fc0), 0x0, 0x0)
ioctl$BLKFLSBUF(r0, 0x1261, 0x0)

15:14:07 executing program 2:
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000001540)='./file0\x00', 0x2020004c, &(0x7f00000009c0)=ANY=[@ANYBLOB='iocharset=cp1250,allow_utime=00000000000000000000010,gid=', @ANYRESHEX=0x0, @ANYBLOB="2cfc4a726f72733d636f6e74696e75652c3d748e6f5f7b893739ec9758db6e59c527df5f8083a3d528335cbdb52d0e5cd400", @ANYRESHEX=0x0, @ANYBLOB=',gid=', @ANYRESHEX, @ANYBLOB="2c616c6c6f775f7574696d653d30303030303030303030303030303030303030303030342c696f636861727365743d63703935302c001221adf62b4517000d92fb3a120180ccf84793a0e470f7d5a24e43b057aaaa8b94dda3ccc07412ad2eb35a08d6e6e6c4c78fe3165236910288c0e798ab020abdedd65c5e0537eb15d2c3882f6b4fe07f00595e646cfa716caaf605ffe6cd1aff767b8b02f133d3592cf4878e42f3789c126a2dd6b1ec73e5f4ec81c0af5a76c06ca1480dd108a5e5c5a0d1bc7724de00"/218], 0x1, 0x14ed, &(0x7f0000002a80)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0xc, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000740), &(0x7f00000007c0), 0xc2a, r0}, 0x38)

15:14:07 executing program 1:
r0 = openat$procfs(0xffffff9c, &(0x7f0000000100)='/proc/cgroups\x00', 0x0, 0x0)
io_setup(0x1f, &(0x7f00000020c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000023c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000002100)='1', 0x1, 0x1}])

15:14:07 executing program 0:
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000fc0)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, @void}, 0x10)

[  721.110339][ T5154] libceph: connect (1)[c::]:6789 error -101
[  721.116445][ T5154] libceph: mon0 (1)[c::]:6789 connect error
15:14:07 executing program 2:
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000740), 0x0, 0x0)

15:14:07 executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001040)={0x11, 0x4, &(0x7f0000000cc0)=@raw=[@ringbuf_query], &(0x7f0000000d00)='GPL\x00'}, 0x90)

[  721.159853][ T5152] libceph: connect (1)[c::]:6789 error -101
[  721.166045][ T5152] libceph: mon0 (1)[c::]:6789 connect error
15:14:07 executing program 1:
r0 = openat$procfs(0xffffff9c, &(0x7f0000000100)='/proc/cgroups\x00', 0x0, 0x0)
io_submit(0x0, 0x1, &(0x7f00000023c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000002100)='1', 0x1, 0x1}])

[  721.230192][ T5149] libceph: connect (1)[c::]:6789 error -101
[  721.255712][ T5149] libceph: mon0 (1)[c::]:6789 connect error
15:14:07 executing program 2:
socket$kcm(0x29, 0x5, 0x0)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)

15:14:07 executing program 0:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000140)=0x2)

15:14:08 executing program 2:
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x1ff, 0x0)
ppoll(&(0x7f0000000140)=[{r0}], 0x1, 0x0, 0x0, 0x0)

15:14:08 executing program 0:
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000000100), 0x4)
setsockopt$MRT_ADD_MFC_PROXY(r0, 0x0, 0xd2, &(0x7f00000000c0)={@rand_addr, @empty, 0x0, "1a62d1de885f6d7e0b63448a78ff68e6ecd071518c5b8dd11c6d4951ff8eaf11"}, 0x3c)

15:14:08 executing program 1:
r0 = openat$procfs(0xffffff9c, &(0x7f0000000100)='/proc/cgroups\x00', 0x0, 0x0)
io_submit(0x0, 0x1, &(0x7f00000023c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000002100)='1', 0x1, 0x1}])

15:14:08 executing program 0:
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000140)=0x4000000)

15:14:08 executing program 1:
r0 = openat$procfs(0xffffff9c, &(0x7f0000000100)='/proc/cgroups\x00', 0x0, 0x0)
io_submit(0x0, 0x1, &(0x7f00000023c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000002100)='1', 0x1, 0x1}])

15:14:08 executing program 0:
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000140)=0x4000000)

15:14:08 executing program 1:
io_setup(0x1f, &(0x7f00000020c0)=<r0=>0x0)
io_submit(r0, 0x1, &(0x7f00000023c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000002100)='1', 0x1, 0x1}])

15:14:08 executing program 0:
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000140)=0x4000000)

[  721.960770][T17802] loop3: detected capacity change from 0 to 32768
[  721.980164][T17802] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz-executor.3 (17802)
15:14:08 executing program 1:
io_setup(0x1f, &(0x7f00000020c0)=<r0=>0x0)
io_submit(r0, 0x1, &(0x7f00000023c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000002100)='1', 0x1, 0x1}])

[  722.005822][T17802] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
15:14:08 executing program 0:
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000140)=0x4000000)

[  722.057391][T17802] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  722.091312][T17802] BTRFS info (device loop3): using free-space-tree
15:14:08 executing program 0:
ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, &(0x7f0000000140)=0x4000000)

[  722.132914][T16591] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  722.144069][T16591] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  722.154039][T16591] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  722.170504][T16591] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  722.182915][T16591] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[  722.191103][ T5149] libceph: connect (1)[c::]:6789 error -101
[  722.197177][ T5149] libceph: mon0 (1)[c::]:6789 connect error
[  722.199807][ T5152] libceph: connect (1)[c::]:6789 error -101
[  722.209581][T16591] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  722.243870][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  722.250929][ T5154] libceph: connect (1)[c::]:6789 error -101
[  722.282358][ T5154] libceph: mon0 (1)[c::]:6789 connect error
15:14:08 executing program 0:
ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, &(0x7f0000000140)=0x4000000)

15:14:08 executing program 1:
io_setup(0x1f, &(0x7f00000020c0)=<r0=>0x0)
io_submit(r0, 0x1, &(0x7f00000023c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000002100)='1', 0x1, 0x1}])

15:14:08 executing program 2:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_VFIO_IOAS$GET(r0, 0x3b88, &(0x7f0000000180)={0xc})

15:14:09 executing program 0:
ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, &(0x7f0000000140)=0x4000000)

15:14:09 executing program 3:
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$BLKRAGET(r0, 0x1263, 0x0)

15:14:09 executing program 2:
r0 = syz_open_dev$sndpcmc(&(0x7f0000000080), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_PREPARE(r0, 0x4140, 0x0)

[  722.490904][ T5149] libceph: connect (1)[c::]:6789 error -101
[  722.499225][ T5149] libceph: mon0 (1)[c::]:6789 connect error
15:14:09 executing program 1:
r0 = openat$procfs(0xffffff9c, 0x0, 0x0, 0x0)
io_setup(0x1f, &(0x7f00000020c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000023c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000002100)='1', 0x1, 0x1}])

15:14:09 executing program 0:
r0 = openat$vnet(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000140)=0x4000000)

15:14:09 executing program 2:
r0 = syz_open_dev$sndpcmc(&(0x7f0000000b40), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_SYNC_PTR(r0, 0xc0884123, &(0x7f0000000b80)={0x7, "e7c9aebc9e8af7f6556a6c987977dd5f793f81865c242603fe790b79fdb3601fcc5d770009dd49a89c223ff5bb7b17004ab85fa429d620c39a85133eae1f6537"})

[  722.628302][ T5105] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
15:14:09 executing program 1:
r0 = openat$procfs(0xffffff9c, 0x0, 0x0, 0x0)
io_setup(0x1f, &(0x7f00000020c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000023c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000002100)='1', 0x1, 0x1}])

15:14:09 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_SET_NETID(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x24, 0x0, 0x0, 0x0, 0x0, {{}, {}, {0x8}}}, 0x24}}, 0x0)

15:14:09 executing program 0:
r0 = openat$vnet(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000140)=0x4000000)

15:14:09 executing program 3:
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r0, &(0x7f0000000040), 0x10)
connect$llc(r0, &(0x7f0000000080)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, 0x10)
recvmmsg(r0, &(0x7f0000004a00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x162, 0x0)

15:14:09 executing program 1:
r0 = openat$procfs(0xffffff9c, 0x0, 0x0, 0x0)
io_setup(0x1f, &(0x7f00000020c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000023c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000002100)='1', 0x1, 0x1}])

15:14:09 executing program 2:
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
ioctl$BLKSECDISCARD(r0, 0x127d, 0x0)

15:14:09 executing program 0:
r0 = openat$vnet(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000140)=0x4000000)

[  723.071739][ T5149] libceph: connect (1)[c::]:6789 error -101
[  723.098169][ T5149] libceph: mon0 (1)[c::]:6789 connect error
15:14:09 executing program 2:
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x1ff, 0x1)
ioctl$USBDEVFS_RESETEP(r0, 0x40085511, &(0x7f0000000000))

[  723.151246][ T5152] libceph: connect (1)[c::]:6789 error -101
[  723.189327][ T5152] libceph: mon0 (1)[c::]:6789 connect error
15:14:09 executing program 0:
openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, &(0x7f0000000140)=0x4000000)

15:14:09 executing program 1:
r0 = openat$procfs(0xffffff9c, &(0x7f0000000100)='/proc/cgroups\x00', 0x0, 0x0)
io_setup(0x0, &(0x7f00000020c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000023c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000002100)='1', 0x1, 0x1}])

[  723.202770][T17851] chnl_net:caif_netlink_parms(): no params data found
[  723.225635][ T5152] libceph: connect (1)[c::]:6789 error -101
[  723.233909][   T29] INFO: task syz-executor.4:16353 blocked for more than 143 seconds.
[  723.246050][ T5152] libceph: mon0 (1)[c::]:6789 connect error
15:14:09 executing program 2:
socket$inet(0x2, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000780)='./file0\x00', 0x0, &(0x7f00000007c0), 0x1, 0x72f, &(0x7f0000000800)="$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")
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

[  723.279420][   T29]       Not tainted 6.8.0-rc2-next-20240202-syzkaller #0
[  723.329743][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  723.349848][   T29] task:syz-executor.4  state:D stack:27384 pid:16353 tgid:16350 ppid:5098   flags:0x00004006
15:14:09 executing program 1:
r0 = openat$procfs(0xffffff9c, &(0x7f0000000100)='/proc/cgroups\x00', 0x0, 0x0)
io_setup(0x0, &(0x7f00000020c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000023c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000002100)='1', 0x1, 0x1}])

[  723.382962][   T29] Call Trace:
[  723.392929][   T29]  <TASK>
[  723.399864][   T29]  __schedule+0x17df/0x4a40
[  723.429191][   T29]  ? __pfx___schedule+0x10/0x10
[  723.453243][   T29]  ? __pfx_lock_release+0x10/0x10
[  723.471097][   T29]  ? __lock_acquire+0x1346/0x1fd0
[  723.490146][   T29]  ? schedule+0x90/0x320
[  723.503200][   T29]  schedule+0x14b/0x320
[  723.509569][T17538] libceph: connect (1)[c::]:6789 error -101
[  723.523803][   T29]  schedule_timeout+0xb0/0x310
[  723.528154][T17538] libceph: mon0 (1)[c::]:6789 connect error
[  723.541412][   T29]  ? __pfx_schedule_timeout+0x10/0x10
15:14:10 executing program 1:
r0 = openat$procfs(0xffffff9c, &(0x7f0000000100)='/proc/cgroups\x00', 0x0, 0x0)
io_setup(0x0, &(0x7f00000020c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000023c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000002100)='1', 0x1, 0x1}])

[  723.554629][   T29]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  723.563982][   T29]  ? wait_for_completion+0x2fe/0x620
[  723.575506][   T29]  ? wait_for_completion+0x2fe/0x620
[  723.579391][T17538] libceph: connect (1)[c::]:6789 error -101
[  723.588305][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[  723.589381][T17538] libceph: mon0 (1)[c::]:6789 connect error
[  723.603691][   T29]  ? lockdep_hardirqs_on+0x99/0x150
15:14:10 executing program 1:
r0 = openat$procfs(0xffffff9c, &(0x7f0000000100)='/proc/cgroups\x00', 0x0, 0x0)
io_setup(0x1f, 0x0)
io_submit(0x0, 0x1, &(0x7f00000023c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000002100)='1', 0x1, 0x1}])

[  723.644206][   T29]  ? wait_for_completion+0x2fe/0x620
15:14:10 executing program 2:
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x1ff, 0x1)
ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000040)={0x2, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0})

[  723.670612][   T29]  wait_for_completion+0x355/0x620
[  723.693528][   T29]  ? __pfx_wait_for_completion+0x10/0x10
[  723.718754][   T29]  ? flush_workqueue_prep_pwqs+0x459/0x4c0
[  723.731775][   T29]  ? check_flush_dependency+0xb2/0x390
15:14:10 executing program 1:
r0 = openat$procfs(0xffffff9c, &(0x7f0000000100)='/proc/cgroups\x00', 0x0, 0x0)
io_setup(0x1f, 0x0)
io_submit(0x0, 0x1, &(0x7f00000023c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000002100)='1', 0x1, 0x1}])

[  723.744474][   T29]  __flush_workqueue+0x730/0x1630
[  723.758961][   T29]  ? __pfx___flush_workqueue+0x10/0x10
[  723.783828][   T29]  ? ceph_con_reset_session+0x392/0x410
15:14:10 executing program 2:
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000005600)='./bus\x00', 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="646973636172642c0008fd346f1fe0c7b977cf98b0dfc801ecf9a88e1ae482"], 0x1, 0x559d, &(0x7f0000005680)="$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")
r0 = open(&(0x7f0000000000)='./bus\x00', 0x4c37e, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
sendfile(r0, r0, 0x0, 0x8800000)
creat(&(0x7f0000000040)='./bus\x00', 0x0)

[  723.793419][   T29]  ? ceph_auth_reset+0x8e/0x140
[  723.799788][   T29]  ceph_monc_stop+0x7c/0x1e0
[  723.808062][   T29]  ceph_destroy_client+0x74/0x130
[  723.821484][   T29]  destroy_fs_client+0x192/0x270
[  723.831801][   T29]  deactivate_locked_super+0xc4/0x130
15:14:10 executing program 3:
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r0, &(0x7f0000000040), 0x10)
connect$llc(r0, &(0x7f0000000080)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, 0x10)
recvmmsg(r0, &(0x7f0000004a00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x162, 0x0)

15:14:10 executing program 1:
r0 = openat$procfs(0xffffff9c, &(0x7f0000000100)='/proc/cgroups\x00', 0x0, 0x0)
io_setup(0x1f, 0x0)
io_submit(0x0, 0x1, &(0x7f00000023c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000002100)='1', 0x1, 0x1}])

[  723.842000][   T29]  ceph_get_tree+0x9a9/0x17b0
[  723.853894][   T29]  ? bpf_lsm_capable+0x9/0x10
[  723.880329][   T29]  vfs_get_tree+0x90/0x2a0
[  723.890660][   T29]  vfs_cmd_create+0xe4/0x230
[  723.903735][   T29]  ? __se_sys_fsconfig+0x95d/0xec0
[  723.922995][   T29]  __se_sys_fsconfig+0x967/0xec0
[  723.938467][   T29]  ? __pfx___se_sys_fsconfig+0x10/0x10
[  723.948067][   T29]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
15:14:10 executing program 1:
r0 = openat$procfs(0xffffff9c, &(0x7f0000000100)='/proc/cgroups\x00', 0x0, 0x0)
io_setup(0x1f, &(0x7f00000020c0))
io_submit(0x0, 0x1, &(0x7f00000023c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000002100)='1', 0x1, 0x1}])

[  723.955496][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  723.968754][   T29]  ? do_syscall_64+0x10a/0x240
[  723.983915][   T29]  ? __x64_sys_fsconfig+0x20/0xc0
[  723.992806][   T29]  do_syscall_64+0xfb/0x240
[  723.998152][   T29]  entry_SYSCALL_64_after_hwframe+0x6d/0x75
[  724.029384][T16591] Bluetooth: hci5: command 0x0406 tx timeout
[  724.037193][   T29] RIP: 0033:0x7fe0dba7dda9
[  724.043429][   T29] RSP: 002b:00007fe0dc84a0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  724.052713][   T29] RAX: ffffffffffffffda RBX: 00007fe0dbbabf80 RCX: 00007fe0dba7dda9
[  724.062056][   T29] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000004
[  724.071904][   T29] RBP: 00007fe0dbaca47a R08: 0000000000000000 R09: 0000000000000000
[  724.080478][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  724.089442][   T29] R13: 000000000000000b R14: 00007fe0dbbabf80 R15: 00007fffb9c2e098
[  724.097740][   T29]  </TASK>
[  724.101456][   T29] 
[  724.101456][   T29] Showing all locks held in the system:
[  724.120609][ T5152] libceph: connect (1)[c::]:6789 error -101
[  724.123184][   T29] 1 lock held by pool_workqueue_/3:
[  724.137568][ T5152] libceph: mon0 (1)[c::]:6789 connect error
[  724.144347][   T29]  #0: ffffffff8e1360f8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x463/0x820
[  724.156089][   T29] 1 lock held by khungtaskd/29:
[  724.161186][ T5154] libceph: connect (1)[c::]:6789 error -101
[  724.161542][   T29]  #0: ffffffff8e130d60 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
15:14:10 executing program 0:
openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, &(0x7f0000000140)=0x4000000)

[  724.167338][ T5154] libceph: mon0 (1)[c::]:6789 connect error
[  724.189700][ T5149] libceph: connect (1)[c::]:6789 error -101
[  724.195789][ T5149] libceph: mon0 (1)[c::]:6789 connect error
[  724.202752][   T29] 3 locks held by kworker/u4:3/50:
[  724.224516][   T29]  #0: ffff8880b953c758 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  724.235445][   T29]  #1: ffff8880b9528988 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x441/0x770
[  724.247231][   T29]  #2: ffff8880b9528988 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_change+0xfd/0x280
[  724.258903][   T29] 1 lock held by syslogd/4503:
[  724.264011][   T29]  #0: ffff8880b943c758 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  724.269740][T16591] Bluetooth: hci8: command 0x0409 tx timeout
[  724.274300][   T29] 2 locks held by getty/4822:
[  724.285347][   T29]  #0: ffff88802a4660a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  724.297158][   T29]  #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10
[  724.308046][   T29] 4 locks held by kworker/u5:9/5116:
[  724.313932][   T29]  #0: ffff888038bdb148 ((wq_completion)hci5){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x14f0
[  724.328452][   T29]  #1: ffffc9000387fd20 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x14f0
[  724.342735][   T29]  #2: ffff888074c6d060 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400
[  724.353496][   T29]  #3: ffff888074c6c078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x1ea/0xde0
[  724.363824][   T29] 1 lock held by syz-executor.4/16353:
[  724.370917][   T29]  #0: ffff88801cf15070 (&fc->uapi_mutex){+.+.}-{3:3}, at: __se_sys_fsconfig+0x8e6/0xec0
[  724.381390][   T29] 2 locks held by syz-executor.4/16769:
[  724.387064][   T29]  #0: ffff888024c42870 (&fc->uapi_mutex){+.+.}-{3:3}, at: __se_sys_fsconfig+0x8e6/0xec0
[  724.397648][   T29]  #1: ffff88801f1c20e0 (&type->s_umount_key#75/1){+.+.}-{3:3}, at: alloc_super+0x20e/0x8f0
[  724.409443][   T29] 2 locks held by syz-executor.4/17225:
[  724.415130][   T29]  #0: ffff888024c43870 (&fc->uapi_mutex){+.+.}-{3:3}, at: __se_sys_fsconfig+0x8e6/0xec0
[  724.425969][   T29]  #1: ffff88807d2ea0e0 (&type->s_umount_key#75/1){+.+.}-{3:3}, at: alloc_super+0x20e/0x8f0
[  724.438844][   T29] 3 locks held by kworker/1:5/17538:
[  724.444763][   T29]  #0: ffff888014c7cd48 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x14f0
[  724.457589][   T29]  #1: ffffc90019c27d20 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x14f0
[  724.469712][   T29]  #2: ffffffff8f379fc8 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[  724.479521][   T29] 2 locks held by syz-executor.4/17656:
[  724.485242][   T29]  #0: ffff88808907ac70 (&fc->uapi_mutex){+.+.}-{3:3}, at: __se_sys_fsconfig+0x8e6/0xec0
[  724.495895][   T29]  #1: ffff8880882500e0 (&type->s_umount_key#75/1){+.+.}-{3:3}, at: alloc_super+0x20e/0x8f0
[  724.506776][   T29] 1 lock held by syz-executor.4/17851:
[  724.520273][   T29]  #0: ffffffff8f379fc8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[  724.534832][   T29] 2 locks held by syz-executor.2/17936:
[  724.541018][   T29] 1 lock held by syz-executor.0/17944:
[  724.546649][   T29]  #0: ffffffff8e1360f8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x463/0x820
[  724.558420][   T29] 
[  724.569884][   T29] =============================================
[  724.569884][   T29] 
15:14:11 executing program 0:
openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, &(0x7f0000000140)=0x4000000)

[  724.587825][   T29] NMI backtrace for cpu 0
[  724.592217][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc2-next-20240202-syzkaller #0
[  724.601539][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[  724.611631][   T29] Call Trace:
[  724.614955][   T29]  <TASK>
[  724.617937][   T29]  dump_stack_lvl+0x1e7/0x2e0
[  724.622681][   T29]  ? __pfx_dump_stack_lvl+0x10/0x10
[  724.627940][   T29]  ? __pfx__printk+0x10/0x10
[  724.633179][   T29]  ? vprintk_emit+0x608/0x720
[  724.637914][   T29]  ? __pfx_vprintk_emit+0x10/0x10
[  724.643010][   T29]  nmi_cpu_backtrace+0x49c/0x4d0
[  724.648064][   T29]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  724.653559][   T29]  ? _printk+0xd5/0x120
[  724.657760][   T29]  ? __pfx__printk+0x10/0x10
[  724.662390][   T29]  ? __wake_up_klogd+0xcc/0x110
[  724.667286][   T29]  ? __pfx__printk+0x10/0x10
[  724.671941][   T29]  ? __rcu_read_unlock+0xa1/0x110
[  724.677053][   T29]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  724.683127][   T29]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  724.689176][   T29]  watchdog+0xfb0/0xff0
[  724.693412][   T29]  ? watchdog+0x1ea/0xff0
[  724.698403][   T29]  ? __pfx_watchdog+0x10/0x10
[  724.703093][   T29]  kthread+0x2f0/0x390
[  724.707197][   T29]  ? __pfx_watchdog+0x10/0x10
[  724.711884][   T29]  ? __pfx_kthread+0x10/0x10
[  724.716501][   T29]  ret_from_fork+0x4b/0x80
[  724.720966][   T29]  ? __pfx_kthread+0x10/0x10
[  724.725586][   T29]  ret_from_fork_asm+0x1a/0x30
[  724.730410][   T29]  </TASK>
[  724.735798][   T29] Sending NMI from CPU 0 to CPUs 1:
[  724.743874][    C1] NMI backtrace for cpu 1
[  724.743919][    C1] CPU: 1 PID: 50 Comm: kworker/u4:3 Not tainted 6.8.0-rc2-next-20240202-syzkaller #0
[  724.743980][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[  724.744016][    C1] Workqueue: events_unbound cfg80211_wiphy_work
[  724.744201][    C1] RIP: 0010:unwind_next_frame+0x7a8/0x2a00
[  724.744241][    C1] Code: 00 00 0f b7 5d 00 c1 eb 0b 80 e3 01 48 8b 44 24 78 42 0f b6 04 28 84 c0 4c 8b 74 24 48 0f 85 5e 1a 00 00 88 1a 48 89 6c 24 28 <0f> b7 6d 00 83 e5 0f 48 89 ef 48 c7 c6 00 04 fa 8d e8 d2 5e 53 00
[  724.744255][    C1] RSP: 0018:ffffc90000ba6b28 EFLAGS: 00000246
[  724.744269][    C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff88801aeeda00
[  724.744280][    C1] RDX: ffffc90000ba6c35 RSI: ffffffff8dfa03e0 RDI: 0000000000000002
[  724.744292][    C1] RBP: ffffffff90086940 R08: 0000000000000003 R09: ffffffff81407632
[  724.744307][    C1] R10: 0000000000000002 R11: ffff88801aeeda00 R12: ffffffff8f96b3f4
[  724.744319][    C1] R13: dffffc0000000000 R14: ffffc90000ba6c50 R15: 1ffff92000174d80
[  724.744332][    C1] FS:  0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
[  724.744346][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  724.744357][    C1] CR2: 00007f2ad94d66e4 CR3: 000000002ce1c000 CR4: 00000000003506f0
[  724.744372][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  724.744381][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  724.744391][    C1] Call Trace:
[  724.744397][    C1]  <NMI>
[  724.744403][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  724.744424][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  724.744441][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  724.744460][    C1]  ? nmi_handle+0x2a/0x580
[  724.744493][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  724.744513][    C1]  ? nmi_handle+0x14f/0x580
[  724.744528][    C1]  ? nmi_handle+0x2a/0x580
[  724.744545][    C1]  ? unwind_next_frame+0x7a8/0x2a00
[  724.744569][    C1]  ? default_do_nmi+0x63/0x160
[  724.744589][    C1]  ? exc_nmi+0x121/0x210
[  724.744607][    C1]  ? end_repeat_nmi+0xf/0x53
[  724.744628][    C1]  ? unwind_next_frame+0x6c2/0x2a00
[  724.744655][    C1]  ? unwind_next_frame+0x7a8/0x2a00
[  724.744679][    C1]  ? unwind_next_frame+0x7a8/0x2a00
[  724.744705][    C1]  ? unwind_next_frame+0x7a8/0x2a00
[  724.744730][    C1]  </NMI>
[  724.744735][    C1]  <TASK>
[  724.744745][    C1]  ? kthread+0x2f0/0x390
[  724.744764][    C1]  ? kthread+0x2f0/0x390
[  724.744782][    C1]  ? __kernel_text_address+0xd/0x40
[  724.744803][    C1]  ? kthread+0x2f0/0x390
[  724.744825][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  724.744849][    C1]  arch_stack_walk+0x151/0x1b0
[  724.744869][    C1]  ? kthread+0x2f0/0x390
[  724.744890][    C1]  stack_trace_save+0x118/0x1d0
[  724.744913][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  724.744941][    C1]  ? ieee802_11_parse_elems_full+0xe7/0x2470
[  724.744993][    C1]  kasan_save_track+0x3f/0x80
[  724.745016][    C1]  ? kasan_save_track+0x3f/0x80
[  724.745032][    C1]  ? __kasan_kmalloc+0x98/0xb0
[  724.745049][    C1]  ? __kmalloc+0x231/0x4a0
[  724.745076][    C1]  ? ieee802_11_parse_elems_full+0xe7/0x2470
[  724.745098][    C1]  ? ieee80211_inform_bss+0x146/0x1060
[  724.745159][    C1]  ? rdev_inform_bss+0x11f/0x480
[  724.745210][    C1]  ? cfg80211_inform_bss_frame_data+0x11af/0x1d60
[  724.745233][    C1]  ? ieee80211_bss_info_update+0x8a7/0xbc0
[  724.745259][    C1]  ? ieee80211_ibss_rx_queued_mgmt+0x1924/0x2cd0
[  724.745297][    C1]  ? ieee80211_iface_work+0x809/0xd90
[  724.745312][    C1]  ? cfg80211_wiphy_work+0x221/0x260
[  724.745328][    C1]  ? process_scheduled_works+0x913/0x14f0
[  724.745344][    C1]  ? worker_thread+0xa60/0x1000
[  724.745359][    C1]  ? kthread+0x2f0/0x390
[  724.745399][    C1]  ? __kmalloc+0x3fd/0x4a0
[  724.745422][    C1]  __kasan_kmalloc+0x98/0xb0
[  724.745440][    C1]  __kmalloc+0x231/0x4a0
[  724.745462][    C1]  ? ieee802_11_parse_elems_full+0xe7/0x2470
[  724.745487][    C1]  ieee802_11_parse_elems_full+0xe7/0x2470
[  724.745511][    C1]  ? mark_lock+0x9a/0x350
[  724.745530][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  724.745558][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  724.745588][    C1]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  724.745613][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  724.745638][    C1]  ? __pfx_ieee802_11_parse_elems_full+0x10/0x10
[  724.745666][    C1]  ? kvfree_call_rcu+0x48c/0x790
[  724.745686][    C1]  ? __pfx_kvfree_call_rcu+0x10/0x10
[  724.745701][    C1]  ? cmp_bss+0x2eb/0xea0
[  724.745726][    C1]  ieee80211_inform_bss+0x146/0x1060
[  724.745757][    C1]  ? __pfx_ieee80211_inform_bss+0x10/0x10
[  724.745789][    C1]  ? __pfx_ieee80211_inform_bss+0x10/0x10
[  724.745821][    C1]  rdev_inform_bss+0x11f/0x480
[  724.745847][    C1]  cfg80211_inform_bss_frame_data+0x11af/0x1d60
[  724.745882][    C1]  ? __pfx_cfg80211_inform_bss_frame_data+0x10/0x10
[  724.745916][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  724.745931][    C1]  ? ieee80211_bss_info_update+0x3d9/0xbc0
[  724.745968][    C1]  ? ieee80211_bss_info_update+0x3d9/0xbc0
[  724.745994][    C1]  ieee80211_bss_info_update+0x8a7/0xbc0
[  724.746024][    C1]  ? __pfx_ieee80211_bss_info_update+0x10/0x10
[  724.746051][    C1]  ? __pfx_lock_release+0x10/0x10
[  724.746076][    C1]  ieee80211_ibss_rx_queued_mgmt+0x1924/0x2cd0
[  724.746111][    C1]  ? ieee80211_ibss_rx_queued_mgmt+0xf34/0x2cd0
[  724.746138][    C1]  ? __pfx_ieee80211_ibss_rx_queued_mgmt+0x10/0x10
[  724.746170][    C1]  ? mark_lock+0x9a/0x350
[  724.746188][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  724.746216][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  724.746243][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  724.746275][    C1]  ieee80211_iface_work+0x809/0xd90
[  724.746297][    C1]  cfg80211_wiphy_work+0x221/0x260
[  724.746318][    C1]  ? process_scheduled_works+0x825/0x14f0
[  724.746335][    C1]  process_scheduled_works+0x913/0x14f0
[  724.746372][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  724.746395][    C1]  ? assign_work+0x364/0x3d0
[  724.746415][    C1]  worker_thread+0xa60/0x1000
[  724.746443][    C1]  ? __pfx_worker_thread+0x10/0x10
[  724.746460][    C1]  kthread+0x2f0/0x390
[  724.746478][    C1]  ? __pfx_worker_thread+0x10/0x10
[  724.746494][    C1]  ? __pfx_kthread+0x10/0x10
[  724.746514][    C1]  ret_from_fork+0x4b/0x80
[  724.746538][    C1]  ? __pfx_kthread+0x10/0x10
[  724.746557][    C1]  ret_from_fork_asm+0x1a/0x30
[  724.746590][    C1]  </TASK>
[  724.773229][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  724.773248][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc2-next-20240202-syzkaller #0
[  724.773272][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[  724.773285][   T29] Call Trace:
[  724.773293][   T29]  <TASK>
[  724.773302][   T29]  dump_stack_lvl+0x1e7/0x2e0
[  724.773356][   T29]  ? __pfx_dump_stack_lvl+0x10/0x10
[  724.773391][   T29]  ? __pfx__printk+0x10/0x10
[  724.773431][   T29]  ? vscnprintf+0x5d/0x90
[  724.773458][   T29]  panic+0x349/0x860
[  724.773492][   T29]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  724.773521][   T29]  ? __pfx_panic+0x10/0x10
[  724.773549][   T29]  ? tick_nohz_tick_stopped+0x7b/0xc0
[  724.773577][   T29]  ? __irq_work_queue_local+0x137/0x3e0
[  724.773637][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[  724.773662][   T29]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  724.773686][   T29]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  724.773715][   T29]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  724.773745][   T29]  watchdog+0xfef/0xff0
[  724.773769][   T29]  ? watchdog+0x1ea/0xff0
[  724.773796][   T29]  ? __pfx_watchdog+0x10/0x10
[  724.773818][   T29]  kthread+0x2f0/0x390
[  724.773844][   T29]  ? __pfx_watchdog+0x10/0x10
[  724.773864][   T29]  ? __pfx_kthread+0x10/0x10
[  724.773891][   T29]  ret_from_fork+0x4b/0x80
[  724.773922][   T29]  ? __pfx_kthread+0x10/0x10
[  724.773948][   T29]  ret_from_fork_asm+0x1a/0x30
[  724.773994][   T29]  </TASK>
[  724.779481][   T29] Kernel Offset: disabled
[  725.507660][   T29] Rebooting in 86400 seconds..