last executing test programs:

30m9.826840279s ago: executing program 32 (id=30):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000400), 0x0)

28m31.560436447s ago: executing program 33 (id=197):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x20, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x73cea2d47785b264, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r4}, 0x18)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000140)='asymmetric\x00', 0x0)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f0000000140)=@raw={'raw\x00', 0x8, 0x3, 0x498, 0x320, 0xa, 0x148, 0x368, 0x60, 0x400, 0x2a8, 0x2a8, 0x400, 0x2a8, 0x7fffffe, 0x0, {[{{@ip={@multicast2, @multicast2, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x2f8, 0x368, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'veth1_to_team\x00', {0x0, 0x0, 0x2, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x8601, 0x6, './file0\x00'}}]}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f2f7b9f28413d9d8ad470ad2b60c45cb4ea6e7bf902bdc2ff8a9304d9f655c746adc0bdc773506378bc2d27efd6abb05175089830cc46186074d7de46d5af300"}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@MARK={0x28}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x4f8)
mkdir(0x0, 0x0)

28m26.571801261s ago: executing program 34 (id=210):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_X86_SET_MSR_FILTER(r0, 0x4188aec6, &(0x7f0000000d00)={0x1, [{0x3, 0x130, 0x6, &(0x7f0000000100)="84f18c929ff6445a89838c537591ff57b951929761c179c56146e98a4710539a0e65522e131a"}, {0x2, 0x0, 0x9, 0x0}, {0x2, 0x0, 0x249e, 0x0}, {0x3, 0x0, 0x25b96718, 0x0}, {0x3, 0x0, 0x1, 0x0}, {0x3, 0x0, 0x2, 0x0}, {0x3, 0x0, 0x8, 0x0}, {0x2, 0x0, 0x9, 0x0}, {0x1, 0x0, 0x5, 0x0}, {0x2, 0x0, 0x5cd078d8, 0x0}, {0x1, 0x0, 0x0, 0x0}, {0x3, 0x0, 0x5, 0x0}, {0x3, 0x0, 0x6, 0x0}, {0x3, 0x0, 0xac000000, 0x0}, {0x3, 0x0, 0xff, 0x0}, {0x1, 0x0, 0xfffff000, 0x0}]})

27m35.369252756s ago: executing program 35 (id=259):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)

26m29.449543255s ago: executing program 36 (id=342):
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fstat(0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = getuid()
syz_mount_image$msdos(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYRES64=r3, @ANYRESDEC, @ANYRESHEX], 0x1, 0x536, &(0x7f0000000400)="$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")
socket(0x10, 0x3, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x15, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x54}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0xd)
ioctl$TCSETA(r4, 0x5406, &(0x7f0000000100)={0xfefd, 0x800, 0x1fff, 0xffff, 0x2, "a8dff370f0fff7fd"})

25m27.526873929s ago: executing program 37 (id=415):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
close(r1)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r3}, &(0x7f0000000080), &(0x7f0000000180)=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x0)
writev(r0, &(0x7f0000000040)=[{&(0x7f0000000100)="89e7ee2c78dad9b4b473fec988cafb", 0x240}], 0x1)

18m49.717466888s ago: executing program 4 (id=1056):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r2 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
close(r2)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x1a1)
fcntl$setlease(r4, 0x400, 0x1)
execve(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)

18m48.325136131s ago: executing program 4 (id=1059):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r2, 0x29, 0x16, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$vfat(&(0x7f0000000a40), &(0x7f0000000000)='./file1\x00', 0x2010000, &(0x7f0000000940)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c756e695f786c6174653d312c696f636861727365743d63703836352c73686f72746e616d653d6d697865642c636f6465706167653d3836392c726f6469722c616c6c6f775f7574696d653d30303030303030303030303030303030303137373737372c73686f72746e616d653d77696e39352c696f636861727365743d6370313235352c636865636b3d7374726963742c6e6f6e756d7461696c3d302c73686f72746e616d653d77696e39352c004c21fbd23364597e61bd9e6c47bce24b3f93d831eaa8688deebdbf10d10f509bad0fabd2253225b10ce42f4dc8b613d3585bcb3b5892369a7a4e0325cb6510"], 0x25, 0x34c, &(0x7f0000001740)="$eJzs3T9oJGUUAPC3mU12EziTQji0Wu0EOS4RC21MOE44TKEni/8aFy7nn+wqZHEhFtlLo1gqNoJWdldoebVYiNhZ2HqCnIqN1x3c4cjuTHY3mcn9EbOn3u9XhJf3fW++byZDdhKSt6+uxua52Th/9eqVqNcrUV09tRrXKrEUM5FE5kIAAP8n19I0/kgzw8RTN5v90ULMZtHcVHYHAByF4ev/a8fGidrd3A0AMA2Fn//LPVuaffvItgUAHKHC6//D+4YP/Jq/OvqbAADgv+v5l15+Zm094myjUY/ovN9r9prx5Hh87Xy8Ee3YiJOxGDcisgeF7Glh8PHpM+unTzYGflmK5qCi14zo9HvN7ElhLRnW12I5FmMpr09H9cmgfnlY34iIC/3h+tGp9JqzsZCv/+NCbMRKLMb9hfqIM+unVxr5AZqdvfp+xG7U905isP8TsRjfzww/OReD2uxYg8zOcqNxKl3fV9+7WBvOAwAAAAAAAAAAAAAAAAAAAACAo3BiPvLuOY2lUf+btNPvvXc2n9Aojg/7+2TDeX+g3aw/UFrb687zQXKwP9D+/jy9ZjVm7uqZAwAAAAAAAAAAAAAAAAAAwL9Hd3suWu32xlZ3+93NcTDX7k9k3vr2i6/n4+CcN5NxJqrZ4fbNyXMxUZXEqDwdlafJvjl5kETkkyvRunhptOPJObXRWRTKB0GtMFTJ99Rqt4899POnZVV/jjNJjIbqpUtU8vUnhjr3Zamy/dw8qHS3V24x53KapoeV73xSrIp6RLXwhfsngm+uvP7AY93jj3cr1c3WV3nTh0ceXXzh8sef/7bZakd+adrtua3ujfRvr5VM3D+V/DpXSu6E8mB3nNnd6m63kh9+f/HBD787MDkpv3/Sycw7h6/15cHMXBYMtnk7ZzpbcvOXB69cH929d34xj3+22rq089OvexfzVlUT3yQ06gAAAAAAAAAAAAAAAAAAgKmY+F/xO/DEc0e3IwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACYvvH7/08Eu4XM7QTX+1Ecqm1sdQ9dfH6qpwoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwD3srwAAAP//JT9zjQ==")
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
getdents64(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file1\x00', 0x2008000, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2bc, &(0x7f0000000440)="$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")
open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
syz_clone3(&(0x7f0000000380)={0x200, 0x0, 0x0, 0x0, {0x3}, 0x0, 0x0, 0x0, &(0x7f0000000340)=[0x0], 0x1}, 0x58)
ioctl$SIOCGIFHWADDR(0xffffffffffffffff, 0x8927, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_usb_connect(0x2, 0x35, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000545e0d209904b76b2f68010203"], 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000200)={r4, 0x58, &(0x7f0000000180)}, 0x10)

18m46.321331643s ago: executing program 7 (id=1063):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)=@delchain={0x24, 0x65, 0x20, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x8}, {0x0, 0xe}, {0x0, 0xffe0}}}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x20000080)
r1 = socket(0x10, 0x803, 0x0)
sendto(r1, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x482, 0x0, 0x0)
socket(0x2, 0x80805, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
timerfd_create(0x9, 0x0)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b40)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYRES32=0x0], 0x138}, 0x1, 0x0, 0x0, 0x800}, 0x0)
recvmmsg(r1, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {0x0}, {&(0x7f00000001c0)=""/17, 0x11}], 0x8, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x2040000, &(0x7f0000003700)={0x77359400})

18m45.041324307s ago: executing program 7 (id=1064):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000280), 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)=<r1=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
timer_settime(0x0, 0x1, &(0x7f0000000580), &(0x7f0000000640))

18m44.527665488s ago: executing program 4 (id=1065):
r0 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x402, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYRESOCT], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r2}, &(0x7f0000000200), &(0x7f0000000240)}, 0x20)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESDEC=r0, @ANYRES16=0x0, @ANYBLOB="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", @ANYBLOB="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", @ANYRES64], 0x1, 0x2eb, &(0x7f0000000a00)="$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")
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
r4 = socket(0x2, 0x1, 0x0)
bind$inet(r4, 0x0, 0x0)
connect$inet(r4, &(0x7f00000000c0)={0xfffffffffffffe21, 0x2}, 0x10)
recvmsg(r4, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x40081)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r5, 0x0, 0x0, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
getpeername$inet6(r5, 0x0, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0xf0)
pwritev2(r6, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0)
write$binfmt_script(r3, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
fdatasync(r3)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ftruncate(r3, 0x5)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)

18m43.629352771s ago: executing program 4 (id=1066):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file1\x00', 0x800, &(0x7f0000000100)={[{@iocharset={'iocharset', 0x3d, 'cp862'}}, {@shortname_win95}, {@uni_xlate}, {@utf8no}, {@fat=@codepage={'codepage', 0x3d, '950'}}, {@utf8}, {@fat=@allow_utime={'allow_utime', 0x3d, 0xfffffffffffffffd}}, {@utf8}, {@shortname_win95}, {@fat=@dos1xfloppy}, {@utf8}, {@uni_xlate}]}, 0x1, 0x285, &(0x7f0000000580)="$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")
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000240), 0x10000, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x4}}, 0x18)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180), &(0x7f0000000200), 0x3, r3}, 0x38)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000680)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
fchownat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)

18m43.197858085s ago: executing program 4 (id=1068):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000009c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r3}, 0x10)
clock_getres(0x7ffffffff000, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x800700, &(0x7f0000000340)={[{@grpjquota}, {@stripe={'stripe', 0x3d, 0x3}}, {@norecovery}, {@noinit_itable}, {@journal_dev={'journal_dev', 0x3d, 0x8}}, {@minixdf}, {@block_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@errors_continue}, {@dioread_lock}, {@noblock_validity}, {@mblk_io_submit}]}, 0x3, 0x465, &(0x7f0000000f00)="$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")
fcntl$getown(0xffffffffffffffff, 0x9)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, 0x0, 0x0)
connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r4, 0x0, 0x0, 0x20000805, 0x0, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000d00000000080000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={0x0, r5}, 0x18)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@gettaction={0x28, 0x5a, 0x1, 0x0, 0x0, {}, [@action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x1}}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x80000000}]}, 0x28}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYRES64=r2], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)

18m42.830320375s ago: executing program 4 (id=1070):
inotify_init()
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b700000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000240)='./bus\x00', 0x1800840, &(0x7f0000000440)={[{@numtail}, {@shortname_winnt}, {@numtail}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}, {@fat=@nocase}, {@rodir}, {@iocharset={'iocharset', 0x3d, 'iso8859-4'}}, {@shortname_win95}, {@fat=@discard}, {@fat=@discard}, {@utf8no}, {@utf8no}, {@shortname_mixed}, {@iocharset={'iocharset', 0x3d, 'cp950'}}]}, 0x1, 0x360, &(0x7f0000001280)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0xd7aeb000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
lsetxattr$security_evm(0x0, 0x0, &(0x7f0000000400)=@v2={0x3, 0x1, 0x8, 0x7}, 0x9, 0x1)
r7 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r7, &(0x7f0000000140)={0xa, 0xffff, 0x0, @mcast2, 0x9}, 0x1c)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
sendmsg(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x0, 0x2c}, 0x44004)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.throttle.io_service_bytes\x00', 0x26e1, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r8, 0x400c6615, &(0x7f0000000000)={0x0, @aes128, 0x0, @desc4})
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)

18m41.41018405s ago: executing program 38 (id=1070):
inotify_init()
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b700000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000240)='./bus\x00', 0x1800840, &(0x7f0000000440)={[{@numtail}, {@shortname_winnt}, {@numtail}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}, {@fat=@nocase}, {@rodir}, {@iocharset={'iocharset', 0x3d, 'iso8859-4'}}, {@shortname_win95}, {@fat=@discard}, {@fat=@discard}, {@utf8no}, {@utf8no}, {@shortname_mixed}, {@iocharset={'iocharset', 0x3d, 'cp950'}}]}, 0x1, 0x360, &(0x7f0000001280)="$eJzs3U9oHFUYAPBvO/lbaJODUBSE0ZugoX/woKeUkkJxLypL1YO42FQlGwtZXEwP3caLeBQ86smLeNCDh55FUMSbB69WkKp40N4KFp/s7mx2NrtJU2Fbg7/fYfnyvffNe28zyU4m2ZdXlmPtwnRcvHnzRszNVWJq+cxy3KrEYmTRdzVGzYzJAQAHw62U4s/Us8+SyoSnBABMWPf1/7Ujpcw7X+/VP3n1B4ADr/j5f36vPnO7NVyayJQAgAkbuf//6FDzzPCv+qdKfxUAABxUz7/40jOnqxHP5flcxPq7rVqrFk8P2k9fjDeiEatxPBbidkTvQqHzUOk+nj1XXTme53k7flmMWqeiVYtYb7dqvSuF01m3fjZOxEIsFvXF1UZKKTv7RXXlRN4VEVfb3fFjvdKqTcfhYvwfD8dqnIw8HhipjzhXXTmZFweorffr2xFbg/sWnfkvxUJ8/2pcikZcmD8fKfUva6orV07k+ZlUHapv1WbjwvazsOsdEAAAAAAAAAAAAAAAAAAAAAAA+FeW8m2L2/vfpMH+PUtLY9q7++P06ov9gbZ6+wOl2RQp/fH2E7X3shjaH2jn/jyt2lQcur9LBwAAAAAAAAAAAAAAAAAAgP+M5uZM1BuN1Y3m5uW1ctDeaG4eiohO5s1vP/tqPkb73CGYKsYoNeVF6vJaPWX9zikb6lMEWWfwfubTa9szLveZ3V7F2GnM7t7UaBx55OcPB5mHs/6R/x70yWL8ArMd0ygH60d7U7qbJ+ryqSI4eYfO11NKux3nysujVVGJmLr7T9zeQeoE39x4/cFTzWNPdjNfpp7HHl84f/2Dj39bqzc6I3c0PpnZaN5Oa/Xi4/En2+5BVjp/KtELKuUzYWqv8q3hTD374fcXHnr/u/2NnsqZt8b0yXrL+XyjuVkpvlK6TTO9oJPbUTXfOJdF7DjO9JiTfwLBsY+W69eu/PTrfqtK3yRs1AEAAAAAAAAAAAAAAAAAAPdE6b3iheLNvtN7VT317ORnBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD3zuD//5eCrZHMfoK/2jHaNLu60Yw4er+XCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA/9w/AQAA///ftWu9")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0xd7aeb000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
lsetxattr$security_evm(0x0, 0x0, &(0x7f0000000400)=@v2={0x3, 0x1, 0x8, 0x7}, 0x9, 0x1)
r7 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r7, &(0x7f0000000140)={0xa, 0xffff, 0x0, @mcast2, 0x9}, 0x1c)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
sendmsg(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x0, 0x2c}, 0x44004)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.throttle.io_service_bytes\x00', 0x26e1, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r8, 0x400c6615, &(0x7f0000000000)={0x0, @aes128, 0x0, @desc4})
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)

18m41.393936641s ago: executing program 7 (id=1074):
r0 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x402, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYRESOCT], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r2}, &(0x7f0000000200), &(0x7f0000000240)}, 0x20)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESDEC=r0, @ANYRES16=0x0, @ANYBLOB="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", @ANYBLOB="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", @ANYRES64], 0x1, 0x2eb, &(0x7f0000000a00)="$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")
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
r4 = socket(0x2, 0x1, 0x0)
bind$inet(r4, 0x0, 0x0)
connect$inet(r4, &(0x7f00000000c0)={0xfffffffffffffe21, 0x2}, 0x10)
recvmsg(r4, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x40081)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r5, 0x0, 0x0, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
getpeername$inet6(r5, 0x0, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0xf0)
pwritev2(r6, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0)
write$binfmt_script(r3, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
fdatasync(r3)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ftruncate(r3, 0x5)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)

18m39.454796599s ago: executing program 7 (id=1076):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file1\x00', 0x800, &(0x7f0000000100)={[{@iocharset={'iocharset', 0x3d, 'cp862'}}, {@shortname_win95}, {@uni_xlate}, {@utf8no}, {@fat=@codepage={'codepage', 0x3d, '950'}}, {@utf8}, {@fat=@allow_utime={'allow_utime', 0x3d, 0xfffffffffffffffd}}, {@utf8}, {@shortname_win95}, {@fat=@dos1xfloppy}, {@utf8}, {@uni_xlate}]}, 0x1, 0x285, &(0x7f0000000580)="$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")
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000240), 0x10000, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x4}}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180), &(0x7f0000000200), 0x3, r3}, 0x38)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000680)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
fchownat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)

18m37.898230345s ago: executing program 7 (id=1079):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0), 0x1, 0x4fa, &(0x7f00000005c0)="$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")

18m36.897376346s ago: executing program 7 (id=1081):
socket$pppl2tp(0x18, 0x1, 0x1)
setitimer(0x2, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFCONF(r1, 0x8912, &(0x7f0000000180)=@req={0x28, &(0x7f0000000040)={'rose0\x00', @ifru_mtu=0xf03d}})

18m36.2247799s ago: executing program 39 (id=1081):
socket$pppl2tp(0x18, 0x1, 0x1)
setitimer(0x2, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFCONF(r1, 0x8912, &(0x7f0000000180)=@req={0x28, &(0x7f0000000040)={'rose0\x00', @ifru_mtu=0xf03d}})

17m33.09054148s ago: executing program 9 (id=1163):
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x1, 0x1)
fchdir(r4)
signalfd4(r3, 0x0, 0x0, 0x0)

17m24.869641755s ago: executing program 9 (id=1173):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000002c0)={'lo\x00', {0x2, 0x4e21, @broadcast}})

17m24.645515554s ago: executing program 9 (id=1176):
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000020000000000000000180900", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b7040000000000008500000043000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
timer_create(0xfffffffd, 0x0, &(0x7f00000011c0))
timer_create(0xfffffffffffffffd, 0x0, &(0x7f00000000c0)=<r0=>0x0)
timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_settime(r0, 0x0, &(0x7f0000000080)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_read_part_table(0x407c, &(0x7f0000008140)="$eJzs079KemEYB/BHh98ParHoAt4tAqnjnySnqGhoMAenxgoLQQzSwqWlu+mSuoCuw8AM5FSDFgTx+UzPOd/3efku7+rL00FEFHbuBr1x5BQjYjKd9osRhYioz5JC/ujwutc/v+j237aK+ZiFlb74//A4G/4tfufmWsRpioiV0fPG0Xfa8Uf83zqb/5xMfXzfyzk5bKX2cStljUa1U6mmd7VUyz7fyLJsLvmhGktZL3Wuxum+ezvs3QzS7natnNqXo1TZK6dKs1n/xWYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPDKDhwIAAAAAAD5vzZCVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVFXbgQAAAAAAAyP+1EaqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqwA8cCAAAAAML8rZPo3AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG4FAAD//xQHINw=")

17m20.97117764s ago: executing program 9 (id=1177):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file1\x00', 0x800, &(0x7f0000000100)={[{@iocharset={'iocharset', 0x3d, 'cp862'}}, {@shortname_win95}, {@uni_xlate}, {@utf8no}, {@fat=@codepage={'codepage', 0x3d, '950'}}, {@utf8}, {@fat=@allow_utime={'allow_utime', 0x3d, 0xfffffffffffffffd}}, {@utf8}, {@shortname_win95}, {@fat=@dos1xfloppy}, {@utf8}, {@uni_xlate}]}, 0x1, 0x285, &(0x7f0000000580)="$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")
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000240), 0x10000, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x4}}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180), &(0x7f0000000200), 0x3, r3}, 0x38)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000680)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
fchownat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)

17m20.390999798s ago: executing program 9 (id=1179):
socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP_SET_OP_GET_BYINDEX(0xffffffffffffffff, 0x1, 0x53, &(0x7f0000000000)={0x7, 0x7, 0x2}, &(0x7f00000000c0)=0x28)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYRESHEX=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRESOCT=0x0, @ANYRES64], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
rt_tgsigqueueinfo(0x0, 0x0, 0xe, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="170000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0, r3}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x1c0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mount$overlay(0x0, &(0x7f0000000400)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@lowerdir={'lowerdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file0/file0'}}, {@workdir={'workdir', 0x3d, './file1'}}]})
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f0000000040)='./bus\x00', 0x322020, &(0x7f0000000380)=ANY=[], 0x1, 0x0, 0x0)

17m18.805520986s ago: executing program 9 (id=1182):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
copy_file_range(r0, 0x0, 0xffffffffffffffff, &(0x7f00000004c0)=0x8, 0x1, 0x0)
r1 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00')
readlinkat(r5, &(0x7f0000000380)='./mnt\x00', &(0x7f0000000180)=""/1, 0x1)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r6, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r6, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r6, &(0x7f0000000640), 0x0, 0x20000045, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r6, 0x6, 0xd, 0x0, 0x0)
r7 = syz_open_dev$usbfs(&(0x7f0000000040), 0x400000001fc, 0x2301)
ioctl$USBDEVFS_SUBMITURB(r7, 0x8038550a, &(0x7f0000000280)=@urb_type_control={0x2, {}, 0x0, 0x40, &(0x7f0000000000)={0x4b5a9da54893e123, 0x14, 0x8, 0x2}, 0x8, 0x7, 0x200, 0x0, 0x0, 0x20000, 0x0})

17m17.084732616s ago: executing program 40 (id=1182):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
copy_file_range(r0, 0x0, 0xffffffffffffffff, &(0x7f00000004c0)=0x8, 0x1, 0x0)
r1 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00')
readlinkat(r5, &(0x7f0000000380)='./mnt\x00', &(0x7f0000000180)=""/1, 0x1)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r6, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r6, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r6, &(0x7f0000000640), 0x0, 0x20000045, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r6, 0x6, 0xd, 0x0, 0x0)
r7 = syz_open_dev$usbfs(&(0x7f0000000040), 0x400000001fc, 0x2301)
ioctl$USBDEVFS_SUBMITURB(r7, 0x8038550a, &(0x7f0000000280)=@urb_type_control={0x2, {}, 0x0, 0x40, &(0x7f0000000000)={0x4b5a9da54893e123, 0x14, 0x8, 0x2}, 0x8, 0x7, 0x200, 0x0, 0x0, 0x20000, 0x0})

15m47.869235926s ago: executing program 0 (id=1314):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$inet(0x2, 0x3, 0x4)
setsockopt$inet_opts(r2, 0x0, 0x4, 0x0, 0x0)

15m47.381654026s ago: executing program 0 (id=1315):
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYRESOCT], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r1}, &(0x7f0000000200), &(0x7f0000000240)}, 0x20)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="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", @ANYBLOB="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", @ANYRES64], 0x1, 0x2eb, &(0x7f0000000a00)="$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")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0xfffffffffffffe21, 0x2}, 0x10)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
getpeername$inet6(0xffffffffffffffff, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0xf0)
pwritev2(r3, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0)
write$binfmt_script(r2, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
fdatasync(r2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
ftruncate(r2, 0x5)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$tipc(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000040)}], 0x1, 0x0, 0x0, 0x1}, 0x0)
close(r4)

15m46.5808562s ago: executing program 0 (id=1316):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r2, 0x18000000000002a0, 0xe40, 0x0, &(0x7f00000002c0)="f6eb094549002060009b8538a4ba", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

15m45.929578943s ago: executing program 0 (id=1318):
keyctl$KEYCTL_PKEY_VERIFY(0x1c, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r3, &(0x7f0000001fc0)=""/184, 0x20002078)

15m44.641105428s ago: executing program 0 (id=1321):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_PEER_GET(r0, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0)

15m44.477507321s ago: executing program 0 (id=1322):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000800000000101000028000000", @ANYRES32], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x18)
ioctl$SNDRV_TIMER_IOCTL_CREATE(0xffffffffffffffff, 0xc02054a5, &(0x7f0000000140)={0x7, <r2=>0xffffffffffffffff, 'id0\x00'})
recvmsg$unix(r2, 0x0, 0x2121)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
syz_clone(0x60100100, &(0x7f0000000440)="2943013e2fce14b18ed3b31507e4f86ff78b2899f002aad9123c74f767e71c1d8c60fadee1bcc69f0294165bf72703a30a993798839faf3b1d8c4a209ed860d87f201a83c646631f6bde5305ea14670b2d51b91f4f7db5398ed910c298904c0ec7a01fd04a25b8e0957e0b2a5c2c0c8556", 0x71, &(0x7f00000001c0), &(0x7f0000000380), &(0x7f0000000480))

15m29.16094998s ago: executing program 41 (id=1322):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000800000000101000028000000", @ANYRES32], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x18)
ioctl$SNDRV_TIMER_IOCTL_CREATE(0xffffffffffffffff, 0xc02054a5, &(0x7f0000000140)={0x7, <r2=>0xffffffffffffffff, 'id0\x00'})
recvmsg$unix(r2, 0x0, 0x2121)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
syz_clone(0x60100100, &(0x7f0000000440)="2943013e2fce14b18ed3b31507e4f86ff78b2899f002aad9123c74f767e71c1d8c60fadee1bcc69f0294165bf72703a30a993798839faf3b1d8c4a209ed860d87f201a83c646631f6bde5305ea14670b2d51b91f4f7db5398ed910c298904c0ec7a01fd04a25b8e0957e0b2a5c2c0c8556", 0x71, &(0x7f00000001c0), &(0x7f0000000380), &(0x7f0000000480))

15m12.549434795s ago: executing program 2 (id=1353):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r1}, &(0x7f0000000800), &(0x7f0000000840)=r2}, 0x20)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000002c0)={'rose0\x00', 0x112})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r3}, 0x10)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x112})
ioctl$TUNSETQUEUE(r4, 0x400454d9, &(0x7f0000000100)={'vlan0\x00', 0x400})

15m11.090988593s ago: executing program 2 (id=1356):
socket$packet(0x11, 0x3, 0x300)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCMSET(r0, 0x5418, &(0x7f00000000c0)=0xffffbdfe)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
socket$vsock_stream(0x28, 0x1, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

15m9.909387259s ago: executing program 2 (id=1357):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
socket$packet(0x11, 0x2, 0x300)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000000080)='./file0\x00', 0x400, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x1, 0x5514, &(0x7f0000005d80)="$eJzs3M1rI2UYAPAn7Xa/XYt48LYDi9DCJmy67aK3qrv4gV3KqgdPmiZpyG6SKU2a1p48eBQPnv0nRMGTR/8GD569iQfFm6BkZqpbP8ClSWPb3w8mz7xv3jzzvGFZeGZKAjiz5pNffirFtbgUEbMRcTUiOy8VR2Y1D89FxPWImHnsKBXzf0ycj4jLEXFtlDzPWSre+vTm8MbKj2/8/PW3F85d+fyr76a3a2Dano+I7lZ+vtvNY9rK48NivjZsZ7G7PCxi/kb3UTFO87jb3Mgy7NYO1tWyeLuVr0+3dvqjuNmp1Uex1d7M5rd6+QX7w9ZBnuwDD2vb2bjR3Mhiu59msbWf17W3n//ftt8f5HkaRb4PsvQxGBzEfL6518z3s/Uoi/XeoJjP86aN5t4oDotYXC7qaaeR1bFxlG/6/+3Ndm9nLxk2t/vttJesVKovVKp3ytXttNEcNJfLtW7jznKy0OqMlpUHzVp3tZWmrU6zUk+7i8lCq14vV6vJwt3mRrvWS6rVyu3KrfLKYnF2M3n1/jtJp5EsjOLL7d7OoN3pJ5vpdpJ/YjFZqtx+cTG5UU3eWltP1h/cu7e2/vZ7d9+9/9La668Ui/5WVrKwdGtpqVy9VV6qLp6h/X9UFD3G/cORlJ5s+YVJ1QFwguj/gWmYXP+//SBi8v1/6P/H4kT1vxPr/z87s/uHI3nC/h8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgNPj+7kvXstO5vPxlWL+qWLqmWJcioiZiPjtH8zG+UM5Z4s8c/+yfu4vNXxTiizD6BoXiuNyRKwWx69PT/pbAAAAgNPryw+vf5J36/nL/LQL4jjlN21mrr4/pnyliJib/2FM2WZGL8+OKVn27/tc7I0pW3YD6+KYkuW33M6NK9t/MnsoXHwslPIwc6zlAAAAx+JwJ3C8XQgAAADH6eNpF8B0lOLgUebBs+DsL+//fCB46dAIAAAAOIFK0y4AAAAAmLis//f7fwAAAHC65b//BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAv7NzP7lpA1EcgJ8NLvSfiqru26N0B8foEbrssuIAvQRHoFfIBTgD2eUIEUR4HBSiJIrisa2Q75PMMBb8/IzwYmakAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALp0Wa0X//9+/9c2Z7dv54WX/dG2bgAAAHgLttV6Ub+Zpf7H5vzn5tTXpl9ERBkRD43dR/HuJHPU5FSPfL66V8NFRJ1wuMakOT5ExM/muP7S9a8AAAAA52uzXM3TaD29zIYuiD6lSZvy069MeUVEVLOrTGnlIe9bprD6/z2OP5nS6gmsaaawNOU2zpX2LPXjfpy1m95pitSUT38/270DAAA9Gp00/Y5CAAAA6NPvoQtgGEXcLmUelwInqWmW996f9AAAAIBXqBi6AAAAAKBz9fjf/n8AAABw3tL+fwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHRpW60Xm+Vq3jZnt28nz90AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADADfvzjgIhEAZhsHd9ZzL3P6w0aGpqUgXCx98YDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAvPndX/5PTI0zydxrY+l5JFk7NbZOjb1z4+gP4+vXAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABc7M9tCoAgEIbBrezrX3j/w8YLeoYIZkB42EVBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBH7hnLOLXO2BJPVbVME3vGvaqOrBJnVokrF/p4sPUPfwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwMvO/bzGUcUBAH8zs7NJq+IaZQ8RseBBLzbd1tbexIMSPPgnCCHd1titP9ocbClCLt4k515EjyKCEm/9H3puoZd662EPFTxX5lcy+XFYhZ3ZZD8fePO+Mwzzvm8WQr77XgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADsM/5wL06yQ6+I4/Law2d317P+0YE+c3/78XLWsjhqMunj4Y36SdSvnSw2nwwAAADzIanq+xDCk3RnNevjXl7/p9U9Wc3/00tFXNXzB+v+qq9q/6z9+cfT13YH6hXjZA+9ujEanjucSmd6s5xhz1+e4KZO/ubz716S/AOJP9l6dZzm7zP64cGDj7p5uDD9dAGA/+ds1ZdB9ftQ1g/aTAyAudGpFd5V/Z/02s0JAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoAnjrfBCFUchhOXOXpx59Ozu+lH9/e3Hy1W7dO/edv2Z2SPSEMLVjdHwXFhscDaz7dbtO9fXRqPhzeaDN0MIbY3+QTn9659NcHMIU0rjTEtvfs6CuPywZyWf4xG0+EMJAIATKS1bVtc/SXdWs2vRUgjPf95f/79di8OE9f/Tzy89rI9Vr/8Hjc1w9q1s3vh65dbtO+9u3Fi7Nrw2/PK984P3BxcuX7x4eSX/rqQ4tp0mAAAAx1i3bPX6P146vP5/uhaHCev/b34cfFcfK1H/H2lv0a/tTAAAAObbK2f++Ts64nrU7YZv1zY3bw6K4+75+eLYQqr/2ULZ6vV/stR2VgAAAEATxlvRvvX/K7U4TLj+/+Ivr/9Wf2YSQjhVrv+fXf9qdKW56cy0qfzx8EL5cDsLAAAAKOvxUwfW/9N8/3+8u+UhDiG881YRl/8GcKL6P/n4+1/rY9X3/19oboozKe4X7yPv+yF0+m1nBAAAwEm2mLdeXv//le6sfvH76U+79v8DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANO3fAAAA///FdTwZ")
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r4, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000280)={0x3, &(0x7f0000000180)=[{0x7, 0x4, 0x5, 0x4}, {0x45b6, 0x1, 0x2, 0x5}, {0xd24, 0x1, 0x8, 0xd9d2}]}, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
fdatasync(r5)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r6 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$UI_SET_EVBIT(r6, 0x40045564, 0x14)
close(0xffffffffffffffff)
socket$inet6(0xa, 0x2, 0x0)

15m7.963340246s ago: executing program 2 (id=1359):
keyctl$KEYCTL_PKEY_VERIFY(0x1c, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r3, &(0x7f0000001fc0)=""/184, 0x20002078)

15m3.34581148s ago: executing program 2 (id=1364):
write$FUSE_CREATE_OPEN(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
unshare(0x60000480)

14m55.925253351s ago: executing program 2 (id=1369):
r0 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000240)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8635}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x18)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'team_slave_1\x00'})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f00000000c0)=[{0x20, 0x5, 0x2, 0xfffff010}, {0x28, 0x7, 0x0, 0xa56e}, {0x6, 0x0, 0x0, 0xa1a}]}, 0x10)
syz_open_procfs(0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000340), 0xff, 0x4c2, &(0x7f0000001a40)="$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")
creat(&(0x7f0000000240)='./file1\x00', 0x0)

14m39.391890278s ago: executing program 42 (id=1369):
r0 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000240)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8635}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x18)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'team_slave_1\x00'})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f00000000c0)=[{0x20, 0x5, 0x2, 0xfffff010}, {0x28, 0x7, 0x0, 0xa56e}, {0x6, 0x0, 0x0, 0xa1a}]}, 0x10)
syz_open_procfs(0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000340), 0xff, 0x4c2, &(0x7f0000001a40)="$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")
creat(&(0x7f0000000240)='./file1\x00', 0x0)

10m55.17363052s ago: executing program 6 (id=1862):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0x7, 0x4, 0x8, 0x1}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000180), 0x240, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000001c0)={&(0x7f0000000700)=ANY=[@ANYBLOB], 0x70}, 0x1, 0x0, 0x0, 0x4004000}, 0xc044)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0x0, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd9b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet6(0xa, 0x2, 0x102)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
r6 = socket(0x10, 0x3, 0x9)
sendmsg$NFT_BATCH(r6, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000e80)=ANY=[@ANYBLOB="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"], 0x200}}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$FS_IOC_GETFSMAP(r5, 0xc0c0583b, &(0x7f0000000300)={0x0, 0x0, 0x1, 0x0, '\x00', [{0x10001, 0x8001, 0xca, 0x2, 0x800, 0x8001}, {0x9, 0x4, 0xff6, 0x100, 0x9, 0x1}], ['\x00']})
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000080)={'veth0_macvtap\x00', <r8=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x200, {0x0, 0x0, 0x0, r8, {0xfff2, 0x9}, {0x10}, {0x9, 0xd}}}, 0x24}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

10m51.813383652s ago: executing program 6 (id=1869):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2241, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="bc010000190001000000000000000000fe880000000000000000000000000101ac1414bb00"/48, @ANYRES32=0x0, @ANYBLOB], 0x1bc}}, 0x0)
accept4$unix(0xffffffffffffffff, &(0x7f0000000040), &(0x7f00000000c0)=0x6e, 0x180000)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007", @ANYBLOB], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r5}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r6 = syz_open_dev$usbfs(&(0x7f0000000080), 0x70, 0x20002)
ioctl$USBDEVFS_GETDRIVER(r6, 0x41045508, &(0x7f0000000040)={0x0, "3f4526261a917107a3ee3fc87b419add4717576625a656fea3c0a316eba78a59fc760ba3ff50273aa2d5d1cf8e52206e9c4452fce676366c159e9bf71dde66d3b1f7650b3080aa7fb3e9a7150e587ec102e8a1d000a622c248c5eba41a2361fc8bc37e91f8a42b4f03209ad25635aae5f402dae76d3faf675d6dc4a48670248903b238fc899de713ab5c9e9f2102894e28c6a8b60646f72b7539e75db8a6e56578eff25018470875e0c985981615f9e3429e5b235699597cbdabb7b018aeb83cd99d6b4cec024eb20106bc03ec221ab5743e43ad4b599cbc142576228304e57b3dfa3c28c1366c3a1a7e1f686c0582a7f2168e0ec940ee93dfd785d8c043ee0f"})

10m50.22568369s ago: executing program 6 (id=1871):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = syz_open_dev$cec(&(0x7f0000000080), 0x0, 0x0)
ioctl$CEC_S_MODE(r1, 0x40046109, &(0x7f00000000c0)=0x32)
ioctl$CEC_S_MODE(r1, 0x40046109, &(0x7f00000002c0)=0x1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000d80)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct={0x0, 0x0, 0x0, 0x4, 0x1, 0x1}]}}, 0x0, 0x26, 0x0, 0x1}, 0x28)
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0xfffffffffffffffe, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
bind$isdn(0xffffffffffffffff, &(0x7f0000000100)={0x22, 0x1, 0xec, 0x9, 0xb3}, 0x6)
sendmsg$ETHTOOL_MSG_TSINFO_GET(0xffffffffffffffff, 0x0, 0x4008800)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000240), 0x401, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TCSETSW2(r3, 0x5408, &(0x7f0000000040)={0x300, 0x0, 0x0, 0xfffffffe, 0x0, "2cf155f1d8b4d0441f0246e09537aa82dc1ecf", 0x2})
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(0xffffffffffffffff, 0xc058534f, &(0x7f0000002380)={{0x0, 0x1}, 0x1, 0x0, 0x2, {0x4, 0x1}, 0x3, 0x800})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

10m48.096749612s ago: executing program 6 (id=1875):
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000b40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="14000000000019da2cc7be"], 0x18}}, {{0x0, 0x0, &(0x7f0000000b00), 0x0, &(0x7f0000001080)=ANY=[], 0x150}}], 0x2, 0x40084)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x13, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x49}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmsg$sock(r0, &(0x7f0000000640)={&(0x7f00000002c0)=@rc={0x1f, @none, 0x4}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000340)}, {&(0x7f0000000540)="03b9d4a4e56a110b5824bcccb70a3af712dd38252f73a06900f33bdcbf1a8f803790af851588482ae4ef7a61d5ef84ece1921ce1099b56b9c6ff1e2a3a6b0453f284e85be32666e8786a2a87fb9dc5db109e323d09bf240fabddfee5887ff64f710fee", 0x63}, {&(0x7f00000007c0)="a46c19f56c4f8a21e8068c6321387f24cd64e0033d354a3ad77b959b6c9ec188b030e82549fd347d6f75b4f6367b391d3b4f4e793639cec69bd182a1bce37cb7e65f2a6054c10433a515bad93b2c8c77304a068535e722206ba8e6aa6fafb5f4dad1379af983edb195bd25b112a6a2dd73a551ee40d3c38b19d9f5be464435eaef871c46ab6c85f58e91ec5d2e330b61e429ae", 0x93}], 0x3, &(0x7f0000000bc0)=[@timestamping={{0x14, 0x1, 0x25, 0x2}}, @txtime={{0x18, 0x1, 0x3d, 0x2f7}}, @timestamping={{0x14, 0x1, 0x25, 0x3}}, @timestamping={{0x14, 0x1, 0x25, 0x6}}, @mark={{0x14, 0x1, 0x24, 0x8}}, @timestamping={{0x14, 0x1, 0x25, 0xa}}], 0x90}, 0x1)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

10m47.003078171s ago: executing program 6 (id=1877):
syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
r0 = eventfd(0x4)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000480)={0x73622a85, 0x0, 0x2})
ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, &(0x7f0000000240)=r0)
ioctl$VHOST_SET_VRING_KICK(0xffffffffffffffff, 0x4008af20, &(0x7f0000000040)={0x1, r0})
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000380)={0xaa, 0xfea})
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000140)={0x0, 0x1, 0x0, &(0x7f0000000600)=""/52, 0x0, 0x10000})
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000100)={0x1, 0x0, &(0x7f0000000380)=""/236, &(0x7f0000000280)=""/90, &(0x7f0000000480)=""/49, 0xeeee8000})
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, &(0x7f0000000000)=0x1)

10m46.453695876s ago: executing program 6 (id=1879):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2241, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="bc010000190001000000000000000000fe880000000000000000000000000101ac1414bb00"/48, @ANYRES32=0x0, @ANYBLOB], 0x1bc}}, 0x0)
accept4$unix(0xffffffffffffffff, &(0x7f0000000040), &(0x7f00000000c0)=0x6e, 0x180000)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007", @ANYBLOB], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r5}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r6 = syz_open_dev$usbfs(&(0x7f0000000080), 0x70, 0x20002)
ioctl$USBDEVFS_GETDRIVER(r6, 0x41045508, &(0x7f0000000040)={0x0, "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"})

10m30.881932506s ago: executing program 43 (id=1879):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2241, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="bc010000190001000000000000000000fe880000000000000000000000000101ac1414bb00"/48, @ANYRES32=0x0, @ANYBLOB], 0x1bc}}, 0x0)
accept4$unix(0xffffffffffffffff, &(0x7f0000000040), &(0x7f00000000c0)=0x6e, 0x180000)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007", @ANYBLOB], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r5}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r6 = syz_open_dev$usbfs(&(0x7f0000000080), 0x70, 0x20002)
ioctl$USBDEVFS_GETDRIVER(r6, 0x41045508, &(0x7f0000000040)={0x0, "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"})

18.213173426s ago: executing program 3 (id=3636):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0xffffffffffffffff)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
syz_open_dev$sndpcmc(0x0, 0x0, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(0x0, r3)
r4 = socket$kcm(0x29, 0x2, 0x0)
setsockopt$kcm_KCM_RECV_DISABLE(r4, 0x119, 0x1, &(0x7f0000000540)=0x9, 0x4)
r5 = syz_open_procfs(0x0, &(0x7f0000000180)='net/kcm\x00')
preadv(r5, &(0x7f0000000140)=[{&(0x7f0000000000)=""/151, 0x97}], 0x1, 0xd, 0x0)

14.852368099s ago: executing program 3 (id=3645):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, 0x0, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e20, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000006780)=[{{0x0, 0x0, 0x0}}], 0x80000000000020c, 0x0)
setsockopt$inet_int(r0, 0x0, 0xb, 0x0, 0x0)

14.517582805s ago: executing program 3 (id=3647):
openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$netlink(r3, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900038073797a3200000000140000001100014707a082b178795ad1fcc02173fc70f8d69cdbd9d470f56c7ae4218d32c5d7fe44d5f0272890f24383fe450fb26ea7dcefadfa5e48"], 0x7c}, 0x1, 0x0, 0x0, 0x25}, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x201, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0xa}]}], {0x14}}, 0x64}}, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x14}}}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000300)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x318, 0x1, 0x24}, 0x9c)

12.588940721s ago: executing program 1 (id=3650):
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x13, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x49}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmsg$sock(r0, &(0x7f0000000640)={&(0x7f00000002c0)=@rc={0x1f, @none, 0x4}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000340)}, {&(0x7f0000000540)="03b9d4a4e56a110b5824bcccb70a3af712dd38252f73a06900f33bdcbf1a8f803790af851588482ae4ef7a61d5ef84ece1921ce1099b56b9c6ff1e2a3a6b0453f284e85be32666e8786a2a87fb9dc5db109e323d09bf240fabddfee5887ff64f710fee", 0x63}, {&(0x7f00000007c0)="a46c19f56c4f8a21e8068c6321387f24cd64e0033d354a3ad77b959b6c9ec188b030e82549fd347d6f75b4f6367b391d3b4f4e793639cec69bd182a1bce37cb7e65f2a6054c10433a515bad93b2c8c77304a068535e722206ba8e6aa6fafb5f4dad1379af983edb195bd25b112a6a2dd73a551ee40d3c38b19d9f5be464435eaef871c46ab6c85f58e91ec5d2e330b61e429ae", 0x93}], 0x3, &(0x7f0000000bc0)=[@timestamping={{0x14, 0x1, 0x25, 0x2}}, @txtime={{0x18, 0x1, 0x3d, 0x2f7}}, @timestamping={{0x14, 0x1, 0x25, 0x6}}, @mark={{0x14, 0x1, 0x24, 0x8}}, @timestamping={{0x14, 0x1, 0x25, 0xa}}], 0x78}, 0x1)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

12.083246173s ago: executing program 1 (id=3652):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="140000001000010300000ae6f72087a003"], 0x3c}}, 0x0)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000300), r4)

10.717602053s ago: executing program 3 (id=3654):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = syz_open_dev$vbi(&(0x7f0000000340), 0x1, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102400, 0x19000)
r3 = msgget$private(0x0, 0x6b9)
msgsnd(r3, &(0x7f0000000040)=ANY=[@ANYRES8], 0x401, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
timer_create(0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f00000002c0)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = syz_open_dev$usbfs(&(0x7f0000000100), 0x9, 0x4281)
ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000300)=@usbdevfs_driver={0x8000, 0xc, &(0x7f0000000380)="ae59284c3a1f6669d6d5b5f14ffba9a4dc5d3bc0e016279bb091c95f14d004312dfb8e59b6307346438593794c0be0b901ea509240ed6a61edf551a6"})
syz_open_dev$sg(0x0, 0x0, 0x68002)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x127081)
sched_setaffinity(0x0, 0x0, 0x0)
syz_open_dev$MSR(0x0, 0x0, 0x0)
ioctl$VIDIOC_S_OUTPUT(r1, 0xc004562f, &(0x7f0000000080)=0x1)
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r0, 0x3ba0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
listen(0xffffffffffffffff, 0x5)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @local, @remote}, 0xc)
creat(&(0x7f0000000000)='./file0\x00', 0xc0)
socket$inet_udp(0x2, 0x2, 0x0)

9.657708649s ago: executing program 3 (id=3657):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=@newlink={0x30, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14615}, [@IFLA_LINK={0x8, 0x5, r1}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x30}}, 0x4000)

9.545193548s ago: executing program 1 (id=3658):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x1000, 0x200000088}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3, 0x0, 0x1e0000}, 0x18)
syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
getitimer(0x1, &(0x7f0000000880))
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x48004)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x200000b, 0x59033, 0xffffffffffffffff, 0x0)
r5 = userfaultfd(0xd0f5eac46a0d4a09)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r5, 0xc028aa03, &(0x7f0000000080)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000582000/0x2000)=nil, 0x800000})
prlimit64(0x0, 0xe, 0x0, 0x0)
r6 = userfaultfd(0x801)
ioctl$UFFDIO_API(r6, 0xc018aa3f, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r7 = socket$caif_seqpacket(0x25, 0x5, 0x5)
sendmsg$unix(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000400)="c9ae85633eeeb0edd21d9b27d3409d46ebf71203ec01bb2428cef8b1572a31650936747ba48d2c785d5d8c75e6e68ed052385ef48529fff26a574af617bf5a90961b4d9c17e04892b6b8f2d4c48a3705e268fb1049dad630e6806cd9067554f82684e4492bd5c0c009c0426db694cd098863c3b9e6f8188257f4a472d075c8de84454c872defd10bcd941839278db45a7ff466fb4993ad3e3dcb585101f09d3dd3e02f1867a80ed077749fe115978ade2cebbacf", 0xb4}, {&(0x7f0000000580)="ee7f9d1aa756c43ac750e672fd9c84cb65b1e4526dbb9b7d36e4caba5805b7d68f69aa4bc096ec2656ce8122c3", 0x2d}, {&(0x7f0000000600)="1c1328e32e2b1e9d41747fb6f733664bcdb4d9699d9d5a9a4255233660f24a6abb1f9ba06a0d8cc9ee16036ba059cd7a67c401562b7cdaf2c2767cd6aa030aad4438801ce13e3ff3b9d4496df18a8898e270b9f36f0d0875135e86f8c49f81dc9187a29caa3cc445238068a9ffe75b9e9a050b5628fa2509dddcef1ee5ea7d9ebd344fc8ccf665261b7b21243b02f52a043e533473a0e24bd3ebfadde1fdfd54f16d4fc2619d9be5d4d12f10e3fe5cb17f7b74b96566203b6ab86ccd93ff71120b260ede2163a203ececf9202aa926764e2f", 0xd2}, {}, {0x0}, {&(0x7f0000000700)="730391b9acec6c8a9f15be6b241ce8b81d7bd0c5550f1b0f9bb9424c738fe1873f5c4abafc604ab0a6d9e42dcec7cdc2c3653dda53cdb9f91f88866f8d3b42b614bf9ec4d9b503b9e7dfa5f9def2d1cb14d5d5b70c86e6d51184052d40aa17b67c28a72369ce0f0ef23d8b34d09491b55f457d42799b50fae53631e90f3a5e6390a9858432b930bd34908a11b6532ee3ed9a91c44e7edbc946aab64b45cef1f896e790ab662f8976bd0b784e21a3501454dfb831a2c5c9770f50db088b4d7714e90ff23daeb11d1cb4b1", 0xca}], 0x6, &(0x7f0000000340)=ANY=[@ANYBLOB="24000000000000000100000001000000", @ANYRES32=r4, @ANYRES32=r7, @ANYRES32=r4, @ANYRES32=r4, @ANYBLOB="3ed5c585"], 0x28, 0x4005}, 0x84d)
madvise(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x18)
r8 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

9.455010235s ago: executing program 3 (id=3659):
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
landlock_restrict_self(0xffffffffffffffff, 0x0)
sendto$packet(0xffffffffffffffff, &(0x7f0000000180), 0x0, 0x0, &(0x7f0000000240)={0x6, 0x0, 0x0, 0x1, 0x0, 0x6, @random="4a99fee2a74d"}, 0x14)
r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYBLOB="ff0100", @ANYRES32=0x0, @ANYRES32=r4, @ANYBLOB="0400"/28], 0x50)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1cc)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x81c0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./file1/file2\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$bt_hci(r5, 0x84, 0x80, &(0x7f0000001280)=""/4105, &(0x7f00000000c0)=0x1009)

7.930679448s ago: executing program 1 (id=3663):
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socket$inet6(0xa, 0x3, 0x7)
r3 = socket$inet(0xa, 0x801, 0x84)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x40, 0x40, 0x2, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x3, 0x3}}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x20}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x2}}]}}, 0x0, 0x5a}, 0x20)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
listen(r3, 0x8)
socket$alg(0x26, 0x5, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_enter(0xffffffffffffffff, 0x3426, 0x0, 0xa, 0x0, 0x0)

6.78962634s ago: executing program 5 (id=3668):
openat$qrtrtun(0xffffffffffffff9c, 0x0, 0x8002)
r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000080)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x10, &(0x7f0000000500)=@ready={0x0, 0x0, 0x8, "72918f72", {0x1, 0x1, 0x1000, 0x2, 0x5}})
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0x20, &(0x7f0000000100)=ANY=[@ANYBLOB="0c00004e1560254722cb66187f3b68d00c08004e15"])
socket$inet_udplite(0x2, 0x2, 0x88)

6.035196512s ago: executing program 5 (id=3670):
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x13, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x49}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmsg$sock(r0, &(0x7f0000000640)={&(0x7f00000002c0)=@rc={0x1f, @none, 0x4}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000340)}, {&(0x7f0000000540)="03b9d4a4e56a110b5824bcccb70a3af712dd38252f73a06900f33bdcbf1a8f803790af851588482ae4ef7a61d5ef84ece1921ce1099b56b9c6ff1e2a3a6b0453f284e85be32666e8786a2a87fb9dc5db109e323d09bf240fabddfee5887ff64f710fee", 0x63}, {&(0x7f00000007c0)="a46c19f56c4f8a21e8068c6321387f24cd64e0033d354a3ad77b959b6c9ec188b030e82549fd347d6f75b4f6367b391d3b4f4e793639cec69bd182a1bce37cb7e65f2a6054c10433a515bad93b2c8c77304a068535e722206ba8e6aa6fafb5f4dad1379af983edb195bd25b112a6a2dd73a551ee40d3c38b19d9f5be464435eaef871c46ab6c85f58e91ec5d2e330b61e429ae", 0x93}], 0x3, &(0x7f0000000bc0)=[@timestamping={{0x14, 0x1, 0x25, 0x2}}, @txtime={{0x18, 0x1, 0x3d, 0x2f7}}, @timestamping={{0x14, 0x1, 0x25, 0x6}}, @mark={{0x14, 0x1, 0x24, 0x8}}, @timestamping={{0x14, 0x1, 0x25, 0xa}}], 0x78}, 0x1)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

5.555773461s ago: executing program 5 (id=3671):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_io_uring_setup(0x117, 0x0, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x2002, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_PRE_FAULT_MEMORY(r3, 0xc040aed5, &(0x7f0000000240)={0x0, 0x107000})
ioctl$KVM_GET_DIRTY_LOG(r2, 0x4010ae42, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001000/0x1000)=nil})

5.153532253s ago: executing program 5 (id=3672):
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = syz_open_dev$media(0x0, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000000), 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
ioctl$MEDIA_IOC_ENUM_LINKS(r4, 0xc0287c02, &(0x7f0000000100)={0x80000000, 0x0, 0x0})

3.962943929s ago: executing program 5 (id=3673):
prlimit64(0x0, 0xe, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_tracing={0x1a, 0x41, &(0x7f0000000b00)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, [@exit, @alu={0x4, 0x0, 0xd, 0x8, 0xb, 0x18, 0x4}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xf2bd}}, @initr0={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x3}, @map_idx={0x18, 0x6, 0x5, 0x0, 0xb}, @ringbuf_query, @ringbuf_query, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}}, @generic={0x1, 0x1, 0x0, 0x2, 0x8}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1}}, @btf_id={0x18, 0xb, 0x3, 0x0, 0x2}, @map_idx_val={0x18, 0xa, 0x6, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8}, @map_val={0x18, 0x7, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1}, @ldst={0x3, 0x0, 0x6, 0xa, 0xa, 0xfffffffffffffff0, 0x8}]}, 0x0, 0x2, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xf475, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
r0 = socket$kcm(0x11, 0x2, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0x14, &(0x7f0000000000), 0x4)
sendmsg$kcm(r0, &(0x7f0000001780)={&(0x7f00000003c0)=@caif, 0x80, 0x0}, 0x0)

3.760291346s ago: executing program 5 (id=3674):
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
landlock_restrict_self(0xffffffffffffffff, 0x0)
sendto$packet(0xffffffffffffffff, &(0x7f0000000180), 0x0, 0x0, &(0x7f0000000240)={0x6, 0x0, 0x0, 0x1, 0x0, 0x6, @random="4a99fee2a74d"}, 0x14)
r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYBLOB="ff0100", @ANYRES32=0x0, @ANYRES32=r4, @ANYBLOB="0400"/28], 0x50)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1cc)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x81c0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./file1/file2\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$bt_hci(r5, 0x84, 0x80, &(0x7f0000001280)=""/4105, &(0x7f00000000c0)=0x1009)

3.289655294s ago: executing program 8 (id=3676):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x400, 0x0)
unshare(0x6020480)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x5, 0x6, 0xfffa}, 0x3a, [0x8, 0xc95a, 0xf, 0x8, 0x80, 0x7ffff, 0x3, 0x40, 0x20000006, 0x4d, 0x6, 0x9, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x20000006, 0x3, 0x0, 0x5, 0x4, 0x0, 0x7, 0x3c5b, 0x1, 0x24, 0xd, 0x7, 0x0, 0xffffffff, 0xe661, 0x4, 0x7, 0x3, 0x8, 0x4c74, 0x80000000, 0x242, 0x3, 0xe, 0x0, 0x8000a071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x8c, 0x6, 0xffff, 0x0, 0x5, 0x1, 0x8008, 0x400, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x2008004, 0x5, 0xfffffff3, 0x6, 0xc8, 0xf9, 0xe, 0x1002c0, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x7, 0x7ffc, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f2e, 0xd, 0x4e2, 0x2, 0x4, 0xb, 0x4, 0x9, 0x8, 0x9, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x1, 0x3, 0x3, 0x81, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x7, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x9, 0x7fff, 0x0, 0x3, 0xb, 0x8000, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x303c, 0x3e7, 0xb, 0x5, 0x2, 0x80000002, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x800003, 0x200, 0x9, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0xa9, 0x5, 0x6, 0xac8, 0xca, 0x2, 0x3, 0x7fb, 0x12b, 0x4, 0x7, 0xa, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x3c484551], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x93a, 0x5, 0x6, 0x0, 0xb9, 0x9d, 0x1ff, 0xffffffff, 0x57, 0x5, 0x3, 0x101, 0x10000, 0x2000004, 0x7eff, 0xffff, 0xa620, 0x2, 0x5, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x18, 0xffffffff, 0x7fffffff, 0x5, 0x4, 0xc8, 0xfffffff9, 0xfffff000, 0x10000, 0x0, 0x7e, 0x100, 0x95ff, 0x7, 0xaf, 0x5, 0x6, 0x226, 0x5, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf40, 0x0, 0x1, 0x6c1b, 0x1, 0x4, 0x8, 0xb1e, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

3.229640869s ago: executing program 1 (id=3677):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, 0x0, 0x0)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xf)
write(r0, &(0x7f0000000040)="240000001e005f0214ffff0600fffff8070000000000000000000100080003000b000000", 0x24)

3.126995567s ago: executing program 8 (id=3678):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f00000002c0)={0x0, 0x0, 0x1, 'M'}, 0x9)

2.814437762s ago: executing program 8 (id=3679):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0x7, 0x4, 0x8, 0x1}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000180), 0x240, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4004000}, 0xc044)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0x0, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd9b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet6(0xa, 0x2, 0x102)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
r6 = socket(0x10, 0x3, 0x9)
sendmsg$NFT_BATCH(r6, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000e80)=ANY=[@ANYBLOB="140000001000010000000000000000000a00000a440000000b0a01030000000000000000020000090c00104000000000000000020800064000000000080004400000000308000640000000000900010073797a300000000020000000180a000000000000000000000a0000040c0005400000000000000004cc000000050a010400000000000000000a00000641000c0024e20e328f714eb94821d8f0ed7710fb6496e4099349eb9c9c51756542a0cabbf440915a096f18c880475159401e1cf6a514dd89e1bd64efcecbfea02d9e38ea80fb0e9dd100000008000b4000000004640004801400030076657468305f746f5f6261501ba179161b80a0ffb17461647600080002406453b531140003007866726d3000000000000000000000000800014000000002080002404f23c5d2080002407f39b539080002405a1b90bc080001400000000208000240ffff7fff08000540fffffffb20000000120a05000000000000000000070000050900010073797a30000000001c000000090a0407000000000000000007000007080003400000000220000000120a01040000000000000000070000070900010073797a31000000004c000000180a01080000000000000000010000050900020073797a3200000000280003801800038014000100626f6e645f736c6176655f310000000008000240fffffffc0400038004000380140000001100010000000000000000000100"], 0x200}}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$FS_IOC_GETFSMAP(r5, 0xc0c0583b, &(0x7f0000000300)={0x0, 0x0, 0x1, 0x0, '\x00', [{0x10001, 0x8001, 0xca, 0x2, 0x800, 0x8001}, {0x9, 0x4, 0xff6, 0x100, 0x9, 0x1}], ['\x00']})
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000080)={'veth0_macvtap\x00', <r8=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x200, {0x0, 0x0, 0x0, r8, {0xfff2, 0x9}, {0x10}, {0x9, 0xd}}}, 0x24}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

1.636439447s ago: executing program 1 (id=3680):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x800000000000010)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={0x0}, 0x18)
r3 = dup3(0xffffffffffffffff, r2, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
gettid()
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
syz_open_dev$usbfs(0x0, 0x76, 0x101301)
madvise(&(0x7f000042f000/0x800000)=nil, 0x800000, 0x4)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
mmap$fb(&(0x7f0000538000/0x3000)=nil, 0x3000, 0x1000000, 0x4000010, r3, 0xff000)
sendmmsg$inet(r4, &(0x7f0000000c40)=[{{&(0x7f0000000040)={0x2, 0x0, @multicast2}, 0x23, 0x0}}], 0x3284b164842c97f7, 0x8014)
r5 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000480)=ANY=[@ANYBLOB="1201000000000040c410cf8a00000000000109022400010000000009040000010300000009210000050122050009058103"], 0x0)
syz_usb_control_io$hid(r5, 0x0, 0x0)
syz_usb_control_io$hid(r5, &(0x7f0000000740)={0x24, &(0x7f0000000140)=ANY=[@ANYBLOB='\x00!$\x00\x00\x00'], 0x0, 0x0, 0x0}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'veth1_to_team\x00'})
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000840), r6)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000180)=ANY=[@ANYBLOB="6bbc79123afe3676346be53e799976556a2f7ee3658dbc650ea8cc6538c5d55a3740bcc5105fd7ab237ff48d72102f08f0f57e5f08bc030f1ad81a389a097b82ed2bc72297d007f9640ecc2ff61c1edbe729acba278ff2da776f4f5cbfa7bb331e1abc059295f35f66a10acbd1300e64df82dec5cbc516323252641fcd9f3343681630b9901515a8b3ac7087e9fc84f08f4d8ec60c69", @ANYRES8, @ANYRES64], 0x4c}, 0x1, 0x0, 0x0, 0x1}, 0x802)

1.400432447s ago: executing program 8 (id=3681):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$setregs(0xd, r0, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")

925.543645ms ago: executing program 8 (id=3682):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xd5cd7000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r4 = syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
tgkill(r4, r4, 0x21)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
ioctl$FS_IOC_GETFSSYSFSPATH(r3, 0x80811501, &(0x7f0000000340)={0x80})
wait4(r4, 0x0, 0x40000000, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000000180)='./file1\x00', 0x8000, &(0x7f0000000400)=ANY=[@ANYRES64=0x0], 0x1, 0x14fe, &(0x7f0000001580)="$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")
open$dir(&(0x7f0000000240)='./file3\x00', 0x20040, 0x40)
userfaultfd(0x801)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000080)={'#! ', './bus'}, 0x9)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28012, r6, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000cc0)={'filter\x00', 0x3b, 0x4, 0x4c8, 0x1e8, 0x2f8, 0x3e0, 0x2f8, 0x3e0, 0x3e0, 0x4, 0x0, {[{{@uncond, 0xc0, 0x1e8}, @unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x0, 0x0, 'system_u:object_r:update_modules_exec_t:s0\x00'}}}, {{@arp={@broadcast, @dev, 0x0, 0x0, 0x0, 0x0, {@mac=@broadcast}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_to_batadv\x00', 'veth1_to_hsr\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@remote, @empty, @multicast2, @loopback}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0xffffffffffffffff}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x520)

0s ago: executing program 8 (id=3683):
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000b40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="14000000000019da2cc7be"], 0x18}}], 0x1, 0x40084)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x13, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x49}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmsg$sock(r0, &(0x7f0000000640)={&(0x7f00000002c0)=@rc={0x1f, @none, 0x4}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000340)}, {&(0x7f0000000540)="03b9d4a4e56a110b5824bcccb70a3af712dd38252f73a06900f33bdcbf1a8f803790af851588482ae4ef7a61d5ef84ece1921ce1099b56b9c6ff1e2a3a6b0453f284e85be32666e8786a2a87fb9dc5db109e323d09bf240fabddfee5887ff64f710fee", 0x63}, {&(0x7f00000007c0)="a46c19f56c4f8a21e8068c6321387f24cd64e0033d354a3ad77b959b6c9ec188b030e82549fd347d6f75b4f6367b391d3b4f4e793639cec69bd182a1bce37cb7e65f2a6054c10433a515bad93b2c8c77304a068535e722206ba8e6aa6fafb5f4dad1379af983edb195bd25b112a6a2dd73a551ee40d3c38b19d9f5be464435eaef871c46ab6c85f58e91ec5d2e330b61e429ae434a72fdb365bfd96007528fb6738672", 0xa3}], 0x3}, 0x1)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

kernel console output (not intermixed with test programs):

38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15573 comm="syz.6.1775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7fc2d0d8ebe9 code=0x7ffc0000
[ 1221.188915][   T28] audit: type=1326 audit(1754701533.277:1439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15573 comm="syz.6.1775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2d0d8ebe9 code=0x7ffc0000
[ 1221.217696][   T28] audit: type=1326 audit(1754701533.287:1440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15573 comm="syz.6.1775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7fc2d0d8ebe9 code=0x7ffc0000
[ 1221.242423][   T28] audit: type=1326 audit(1754701533.287:1441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15573 comm="syz.6.1775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2d0d8ebe9 code=0x7ffc0000
[ 1221.300027][   T28] audit: type=1326 audit(1754701533.287:1442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15573 comm="syz.6.1775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2d0d8ebe9 code=0x7ffc0000
[ 1221.360474][   T28] audit: type=1326 audit(1754701533.287:1443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15573 comm="syz.6.1775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc2d0d8d550 code=0x7ffc0000
[ 1221.422813][   T28] audit: type=1326 audit(1754701533.287:1444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15573 comm="syz.6.1775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2d0d8ebe9 code=0x7ffc0000
[ 1221.647935][T15578] loop6: detected capacity change from 0 to 40427
[ 1221.685961][T15578] F2FS-fs (loop6): Found nat_bits in checkpoint
[ 1221.743494][T15578] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[ 1222.737856][T13640] bio_check_eod: 4369 callbacks suppressed
[ 1222.737876][T13640] syz-executor: attempt to access beyond end of device
[ 1222.737876][T13640] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1222.767467][T13640] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[ 1222.880914][  T968] usb 4-1: new full-speed USB device number 11 using dummy_hcd
[ 1223.121640][  T968] usb 4-1: config 0 has an invalid interface number: 3 but max is 0
[ 1223.129959][  T968] usb 4-1: config 0 has no interface number 0
[ 1223.147644][  T968] usb 4-1: config 0 interface 3 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[ 1223.164530][  T968] usb 4-1: config 0 interface 3 altsetting 0 endpoint 0x8 has invalid maxpacket 1024, setting to 64
[ 1223.190764][  T968] usb 4-1: config 0 interface 3 altsetting 0 endpoint 0x4 has invalid maxpacket 1023, setting to 64
[ 1223.230680][  T968] usb 4-1: config 0 interface 3 altsetting 0 endpoint 0xA has invalid maxpacket 1023, setting to 64
[ 1223.255321][  T968] usb 4-1: New USB device found, idVendor=1199, idProduct=6821, bcdDevice=98.59
[ 1223.293726][  T968] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1223.319443][  T968] usb 4-1: config 0 descriptor??
[ 1223.357188][  T968] hub 4-1:0.3: bad descriptor, ignoring hub
[ 1223.370515][  T968] hub: probe of 4-1:0.3 failed with error -5
[ 1223.385337][T15609] netlink: 260 bytes leftover after parsing attributes in process `syz.5.1780'.
[ 1223.388337][  T968] sierra 4-1:0.3: Sierra USB modem converter detected
[ 1223.577353][  T968] usb 4-1: Sierra USB modem converter now attached to ttyUSB0
[ 1223.663552][  T968] usb 4-1: Sierra USB modem converter now attached to ttyUSB1
[ 1223.753161][  T968] usb 4-1: USB disconnect, device number 11
[ 1223.794386][  T968] sierra ttyUSB0: Sierra USB modem converter now disconnected from ttyUSB0
[ 1223.826895][  T968] sierra ttyUSB1: Sierra USB modem converter now disconnected from ttyUSB1
[ 1223.860060][  T968] sierra 4-1:0.3: device disconnected
[ 1224.326035][T15629] loop1: detected capacity change from 0 to 512
[ 1224.389103][T15629] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1224.468217][T15629] ext4 filesystem being mounted at /181/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1225.193646][T11786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1225.594024][T15646] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1783'.
[ 1226.643711][T15654] loop6: detected capacity change from 0 to 40427
[ 1226.751502][T15654] F2FS-fs (loop6): Found nat_bits in checkpoint
[ 1226.838269][T15654] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[ 1227.778016][T13640] syz-executor: attempt to access beyond end of device
[ 1227.778016][T13640] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1227.849906][T13640] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[ 1227.860860][T12650] usb 2-1: new full-speed USB device number 12 using dummy_hcd
[ 1228.010723][T12650] usb 2-1: device descriptor read/64, error -71
[ 1228.291091][T12650] usb 2-1: new full-speed USB device number 13 using dummy_hcd
[ 1228.470843][T12650] usb 2-1: device descriptor read/64, error -71
[ 1228.623167][T12650] usb usb2-port1: attempt power cycle
[ 1228.880993][T15683] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1791'.
[ 1228.901937][T15683] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1791'.
[ 1229.050724][T12650] usb 2-1: new full-speed USB device number 14 using dummy_hcd
[ 1229.112473][T12650] usb 2-1: device descriptor read/8, error -71
[ 1229.278801][T15693] loop3: detected capacity change from 0 to 512
[ 1229.369208][T15693] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1229.412746][T12650] usb 2-1: new full-speed USB device number 15 using dummy_hcd
[ 1229.420985][T15693] ext4 filesystem being mounted at /114/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1229.453394][T12650] usb 2-1: device descriptor read/8, error -71
[ 1229.575390][T12650] usb usb2-port1: unable to enumerate USB device
[ 1229.583575][T13282] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1230.104982][T15714] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1794'.
[ 1231.582570][T15720] netlink: 260 bytes leftover after parsing attributes in process `syz.5.1797'.
[ 1232.266221][T15734] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1801'.
[ 1232.277255][T15734] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1801'.
[ 1234.524997][T15758] loop1: detected capacity change from 0 to 256
[ 1234.596924][T15758] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1235.887289][T15774] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1810'.
[ 1235.904121][T15774] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1810'.
[ 1236.332514][T15779] loop1: detected capacity change from 0 to 2048
[ 1236.385308][T15779]  loop1: p3 < > p4 < >
[ 1236.389893][T15779] loop1: partition table partially beyond EOD, truncated
[ 1236.400095][T15779] loop1: p3 start 4284289 is beyond EOD, truncated
[ 1238.642650][T15793] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[ 1238.979206][T15802] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1817'.
[ 1239.431104][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[ 1239.437765][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[ 1239.534205][ T6469] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -110). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[ 1239.569388][ T6469] dvb_usb_az6027: probe of 7-1:0.0 failed with error -110
[ 1239.595148][ T6469] usb 7-1: USB disconnect, device number 5
[ 1239.767630][T15809] netlink: 260 bytes leftover after parsing attributes in process `syz.1.1819'.
[ 1240.015784][T15813] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1820'.
[ 1240.081048][T15813] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1820'.
[ 1241.201295][  T968] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[ 1241.262726][T15835] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[ 1241.395940][  T968] usb 4-1: New USB device found, idVendor=8086, idProduct=011a, bcdDevice=bf.ad
[ 1241.435264][  T968] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1241.480298][  T968] usb 4-1: config 0 descriptor??
[ 1241.483230][T15841] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1827'.
[ 1241.800535][  T968] usb 4-1: string descriptor 0 read error: -71
[ 1241.857950][  T968] usb 4-1: USB disconnect, device number 12
[ 1242.893132][T15855] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1829'.
[ 1243.509443][T15863] netlink: 260 bytes leftover after parsing attributes in process `syz.5.1830'.
[ 1243.959615][T15866] loop6: detected capacity change from 0 to 256
[ 1244.047966][T15866] exFAT-fs (loop6): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1245.456773][T15881] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[ 1246.092359][T15905] netlink: 260 bytes leftover after parsing attributes in process `syz.1.1840'.
[ 1246.102791][T15906] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1839'.
[ 1247.318184][T15922] loop1: detected capacity change from 0 to 256
[ 1247.504672][T15922] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1248.112242][T15926] loop5: detected capacity change from 0 to 40427
[ 1248.733416][T15926] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1248.810847][T15926] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[ 1248.838372][T15929] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[ 1249.812163][ T6832] syz-executor: attempt to access beyond end of device
[ 1249.812163][ T6832] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1249.936151][T15956] netlink: 260 bytes leftover after parsing attributes in process `syz.6.1850'.
[ 1249.960806][ T6832] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[ 1251.541248][T15971] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1851'.
[ 1251.775334][   T28] kauditd_printk_skb: 33 callbacks suppressed
[ 1251.775353][   T28] audit: type=1800 audit(1754701564.077:1478): pid=15974 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1853" name="file1" dev="overlay" ino=567 res=0 errno=0
[ 1253.252425][T15992] CIFS: iocharset name too long
[ 1253.637606][T15989] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[ 1253.971876][T15997] loop6: detected capacity change from 0 to 40427
[ 1254.068383][T15997] F2FS-fs (loop6): Found nat_bits in checkpoint
[ 1254.120074][T15997] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[ 1254.168378][T16007] netlink: 260 bytes leftover after parsing attributes in process `syz.5.1860'.
[ 1255.871196][T13640] syz-executor: attempt to access beyond end of device
[ 1255.871196][T13640] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1256.190256][T13640] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[ 1257.942303][T16033] loop3: detected capacity change from 0 to 2048
[ 1257.995283][T16033]  loop3: p3 < > p4 < >
[ 1257.999952][T16033] loop3: partition table partially beyond EOD, truncated
[ 1258.007396][T16033] loop3: p3 start 4284289 is beyond EOD, truncated
[ 1258.424849][T16046] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1862'.
[ 1258.928887][T16056] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[ 1259.272519][T16062] CIFS: iocharset name too long
[ 1259.759797][T16065] netlink: 260 bytes leftover after parsing attributes in process `syz.6.1869'.
[ 1260.049362][T16066] loop3: detected capacity change from 0 to 40427
[ 1260.330230][T16066] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1260.801594][T16066] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1262.143906][T13282] syz-executor: attempt to access beyond end of device
[ 1262.143906][T13282] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1262.247599][T13282] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 1263.461170][T12650] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[ 1263.913760][T12650] usb 2-1: Using ep0 maxpacket: 32
[ 1263.951607][T12650] usb 2-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[ 1263.995837][T12650] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1264.091868][T12650] usb 2-1: config 0 descriptor??
[ 1264.416941][T12650] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[ 1264.603324][T12650] usb 2-1: Direct firmware load for dvb-usb-az6027-03.fw failed with error -2
[ 1264.612609][T12650] usb 2-1: Falling back to sysfs fallback for: dvb-usb-az6027-03.fw
[ 1265.227900][T16114] netlink: 260 bytes leftover after parsing attributes in process `syz.6.1879'.
[ 1265.657093][T16119] loop5: detected capacity change from 0 to 1024
[ 1265.678362][T16119] EXT4-fs: inline encryption not supported
[ 1265.706314][T16119] EXT4-fs: Ignoring removed bh option
[ 1265.749888][T16119] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1268.136424][ T6832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1269.513219][T16168] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[ 1269.513219][T16168]    program syz.5.1885 not setting count and/or reply_len properly
[ 1272.374763][T16218] iommufd_mock iommufd_mock1: Adding to iommu group 0
[ 1273.996999][T16226] loop5: detected capacity change from 0 to 512
[ 1274.142299][T16226] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1274.181469][T16226] ext4 filesystem being mounted at /446/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1274.537065][ T6832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1274.700480][T16243] ubi31: attaching mtd0
[ 1274.720910][T16243] ubi31: scanning is finished
[ 1274.725765][T16243] ubi31: empty MTD device detected
[ 1275.388520][T16243] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[ 1275.396312][T16243] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[ 1275.403807][T16243] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[ 1275.411232][T16243] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[ 1275.418854][T16243] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[ 1275.426279][T16243] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[ 1275.434546][T16243] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 1686354496
[ 1275.445636][T16243] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[ 1275.457851][T16248] ubi31: background thread "ubi_bgt31d" started, PID 16248
[ 1281.575360][T14376] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1281.647149][T14376] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1281.701640][T14376] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1281.715772][T14376] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1281.727737][T14376] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1281.737870][T14376] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1282.927822][T16341] loop5: detected capacity change from 0 to 256
[ 1283.141703][T16341] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1284.058292][T14376] Bluetooth: hci1: command tx timeout
[ 1284.630387][T16326] chnl_net:caif_netlink_parms(): no params data found
[ 1285.445498][T11906] usb 4-1: new full-speed USB device number 13 using dummy_hcd
[ 1285.531662][T16326] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1285.543575][T16326] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1285.553504][T16326] bridge_slave_0: entered allmulticast mode
[ 1285.710144][T16326] bridge_slave_0: entered promiscuous mode
[ 1285.735971][T16326] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1285.760076][T11906] usb 4-1: config 0 has an invalid interface number: 3 but max is 0
[ 1285.961241][T11906] usb 4-1: config 0 has no interface number 0
[ 1285.968350][T16326] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1285.978417][T16326] bridge_slave_1: entered allmulticast mode
[ 1286.039733][T16326] bridge_slave_1: entered promiscuous mode
[ 1286.083660][T11906] usb 4-1: config 0 interface 3 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[ 1286.160921][T14376] Bluetooth: hci1: command tx timeout
[ 1286.210666][T11906] usb 4-1: config 0 interface 3 altsetting 0 endpoint 0x8 has invalid maxpacket 1024, setting to 64
[ 1286.256953][T11906] usb 4-1: config 0 interface 3 altsetting 0 endpoint 0x4 has invalid maxpacket 1023, setting to 64
[ 1286.306512][T16326] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1286.325457][T16326] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1286.350734][T11906] usb 4-1: New USB device found, idVendor=1199, idProduct=6821, bcdDevice=98.59
[ 1286.413969][T11906] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1286.444755][T11906] usb 4-1: config 0 descriptor??
[ 1286.457230][T11906] hub 4-1:0.3: bad descriptor, ignoring hub
[ 1286.475825][T11906] hub: probe of 4-1:0.3 failed with error -5
[ 1286.493794][T11906] sierra 4-1:0.3: Sierra USB modem converter detected
[ 1286.515933][T16326] team0: Port device team_slave_0 added
[ 1286.550217][T16326] team0: Port device team_slave_1 added
[ 1286.671697][T11906] usb 4-1: Sierra USB modem converter now attached to ttyUSB0
[ 1286.752231][T16326] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1286.759424][T16326] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1286.795222][T11906] usb 4-1: USB disconnect, device number 13
[ 1286.821481][T11906] sierra ttyUSB0: Sierra USB modem converter now disconnected from ttyUSB0
[ 1286.835327][T16326] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1286.848702][T11906] sierra 4-1:0.3: device disconnected
[ 1286.874577][T16326] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1286.883466][T16326] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1286.923208][T16326] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1287.009305][T16326] hsr_slave_0: entered promiscuous mode
[ 1287.027681][T16326] hsr_slave_1: entered promiscuous mode
[ 1288.283747][T14376] Bluetooth: hci1: command tx timeout
[ 1289.910175][T16421] loop5: detected capacity change from 0 to 128
[ 1290.341060][T14376] Bluetooth: hci1: command tx timeout
[ 1290.837477][T16326] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1290.868906][T16326] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1290.899785][T16326] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1290.919376][T16326] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1292.108304][T16326] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1293.020094][T16326] 8021q: adding VLAN 0 to HW filter on device team0
[ 1293.038059][   T48] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1293.045379][   T48] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1293.154383][   T48] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1293.161713][   T48] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1293.662385][T16475] ubi: mtd0 is already attached to ubi31
[ 1295.517717][   T28] audit: type=1800 audit(1754701607.827:1479): pid=16498 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1943" name="file1" dev="overlay" ino=903 res=0 errno=0
[ 1295.954584][T16326] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1298.928903][T16326] veth0_vlan: entered promiscuous mode
[ 1299.558723][T16537] loop1: detected capacity change from 0 to 256
[ 1299.585146][T16537] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1299.659561][T16326] veth1_vlan: entered promiscuous mode
[ 1299.854518][T16326] veth0_macvtap: entered promiscuous mode
[ 1299.881928][T16326] veth1_macvtap: entered promiscuous mode
[ 1299.948271][T16326] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1299.994477][T16326] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1300.025155][T16541] loop1: detected capacity change from 0 to 128
[ 1300.030704][T16326] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1300.082994][T16326] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1300.203466][T16326] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1300.260716][T16326] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1300.323135][T16326] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1300.337323][T16326] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1300.348561][T16326] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1300.358675][T16326] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1300.369438][T16326] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1300.379983][T16326] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1300.390549][T16326] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1300.412770][T16326] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1300.444564][T16326] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1300.474781][T16326] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1300.498597][T16326] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1300.518452][T16326] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1300.741336][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[ 1300.748256][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[ 1300.769681][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1300.814097][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1300.941113][   T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1300.963116][   T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1302.669576][T16563] CIFS: iocharset name too long
[ 1303.444698][T16581] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1958'.
[ 1307.583325][T16621] CIFS: iocharset name too long
[ 1309.992286][T16651] random: crng reseeded on system resumption
[ 1312.191507][T16666] CIFS: iocharset name too long
[ 1315.708472][   T28] audit: type=1800 audit(1754701628.017:1480): pid=16707 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1986" name="file1" dev="overlay" ino=968 res=0 errno=0
[ 1317.095276][T16716] loop5: detected capacity change from 0 to 128
[ 1317.530989][ T2173] usb 4-1: new full-speed USB device number 14 using dummy_hcd
[ 1317.557287][T16721] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1317.754022][ T2173] usb 4-1: config 0 has an invalid interface number: 3 but max is 0
[ 1317.930856][ T2173] usb 4-1: config 0 has no interface number 0
[ 1317.949791][ T2173] usb 4-1: config 0 interface 3 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[ 1317.977307][ T2173] usb 4-1: config 0 interface 3 altsetting 0 endpoint 0x4 has invalid maxpacket 1023, setting to 64
[ 1317.988815][ T2173] usb 4-1: config 0 interface 3 altsetting 0 endpoint 0xA has invalid maxpacket 1023, setting to 64
[ 1318.000280][ T2173] usb 4-1: New USB device found, idVendor=1199, idProduct=6821, bcdDevice=98.59
[ 1318.014143][ T2173] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1318.080195][ T2173] usb 4-1: config 0 descriptor??
[ 1318.116492][ T2173] hub 4-1:0.3: bad descriptor, ignoring hub
[ 1318.148164][ T2173] hub: probe of 4-1:0.3 failed with error -5
[ 1318.200051][ T2173] sierra 4-1:0.3: Sierra USB modem converter detected
[ 1318.325481][ T2173] usb 4-1: Sierra USB modem converter now attached to ttyUSB0
[ 1318.431319][ T2173] usb 4-1: USB disconnect, device number 14
[ 1319.273629][ T2173] sierra ttyUSB0: Sierra USB modem converter now disconnected from ttyUSB0
[ 1319.285189][ T2173] sierra 4-1:0.3: device disconnected
[ 1320.077016][T16759] loop5: detected capacity change from 0 to 512
[ 1320.127030][T16759] EXT4-fs error (device loop5): ext4_orphan_get:1399: inode #15: comm syz.5.1998: casefold flag without casefold feature
[ 1320.164176][T16759] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.1998: couldn't read orphan inode 15 (err -117)
[ 1320.202854][T16759] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1320.703307][T16766] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1998'.
[ 1321.051163][T14376] Bluetooth: hci5: Entering manufacturer mode failed (-110)
[ 1321.253368][ T6832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1321.451148][T16770] CIFS: iocharset name too long
[ 1322.441484][ T6470] IPVS: starting estimator thread 0...
[ 1322.541209][T16787] IPVS: using max 25 ests per chain, 60000 per kthread
[ 1326.338396][T12650] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -110). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[ 1326.439880][T12650] dvb_usb_az6027: probe of 2-1:0.0 failed with error -110
[ 1326.510986][T12650] usb 2-1: USB disconnect, device number 16
[ 1327.546608][T16824] iommufd_mock iommufd_mock1: Adding to iommu group 0
[ 1327.564098][T16822] loop1: detected capacity change from 0 to 512
[ 1327.819849][T16822] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.2008: casefold flag without casefold feature
[ 1328.026860][T16822] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.2008: couldn't read orphan inode 15 (err -117)
[ 1328.228379][T16822] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1328.883570][T16835] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2008'.
[ 1329.267932][T16831] CIFS: iocharset name too long
[ 1329.804236][T11786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1330.210311][T16842] loop8: detected capacity change from 0 to 512
[ 1330.492040][T16842] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1330.515975][   T42] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1330.549973][T16842] ext4 filesystem being mounted at /18/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1330.866209][T16326] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1330.870916][   T42] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1331.066149][   T42] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1331.190721][ T2173] usb 4-1: new full-speed USB device number 15 using dummy_hcd
[ 1331.215053][   T42] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1331.381453][ T6473] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[ 1331.410136][ T2173] usb 4-1: config 0 has an invalid interface number: 3 but max is 0
[ 1331.453923][ T2173] usb 4-1: config 0 has no interface number 0
[ 1331.483098][ T2173] usb 4-1: config 0 interface 3 altsetting 0 endpoint 0x8 has invalid maxpacket 1024, setting to 64
[ 1331.500080][ T2173] usb 4-1: config 0 interface 3 altsetting 0 endpoint 0x4 has invalid maxpacket 1023, setting to 64
[ 1331.516014][ T2173] usb 4-1: config 0 interface 3 altsetting 0 endpoint 0xA has invalid maxpacket 1023, setting to 64
[ 1331.531307][ T2173] usb 4-1: New USB device found, idVendor=1199, idProduct=6821, bcdDevice=98.59
[ 1331.541566][ T2173] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1331.601294][ T6473] usb 9-1: Using ep0 maxpacket: 32
[ 1331.619622][ T2173] usb 4-1: config 0 descriptor??
[ 1331.643925][ T6473] usb 9-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[ 1331.658737][ T2173] hub 4-1:0.3: bad descriptor, ignoring hub
[ 1331.695665][ T6473] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1331.710354][ T2173] hub: probe of 4-1:0.3 failed with error -5
[ 1331.761304][ T2173] sierra 4-1:0.3: Sierra USB modem converter detected
[ 1331.772486][ T6473] usb 9-1: config 0 descriptor??
[ 1331.884277][ T2173] usb 4-1: Sierra USB modem converter now attached to ttyUSB0
[ 1332.051973][ T2173] usb 4-1: USB disconnect, device number 15
[ 1332.090822][ T6473] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[ 1332.151051][ T6473] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1332.174696][ T2173] sierra ttyUSB0: Sierra USB modem converter now disconnected from ttyUSB0
[ 1332.181446][ T6473] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[ 1332.221346][ T2173] sierra 4-1:0.3: device disconnected
[ 1332.235694][ T6473] usb 9-1: media controller created
[ 1332.292240][ T6470] IPVS: starting estimator thread 0...
[ 1332.387502][ T6473] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1332.397227][T16873] IPVS: using max 19 ests per chain, 45600 per kthread
[ 1332.475505][ T6473] az6027: usb out operation failed. (-71)
[ 1332.493219][ T6473] az6027: usb out operation failed. (-71)
[ 1332.523609][ T6473] stb0899_attach: Driver disabled by Kconfig
[ 1332.572217][ T6473] az6027: no front-end attached
[ 1332.572217][ T6473] 
[ 1332.608888][ T6473] az6027: usb out operation failed. (-71)
[ 1332.620346][ T6473] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[ 1332.647893][ T6473] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.8/usb9/9-1/input/input42
[ 1332.716132][ T6473] dvb-usb: schedule remote query interval to 400 msecs.
[ 1332.760294][ T6473] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[ 1332.785945][ T6473] usb 9-1: USB disconnect, device number 2
[ 1333.011893][ T6473] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[ 1336.308220][T16909] loop8: detected capacity change from 0 to 512
[ 1336.378705][   T42] hsr_slave_0: left promiscuous mode
[ 1336.973391][   T42] hsr_slave_1: left promiscuous mode
[ 1337.172188][T16909] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1337.226788][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1337.227430][T16909] ext4 filesystem being mounted at /22/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1337.274314][   T42] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1337.366697][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1337.611856][   T42] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1337.620532][   T42] bridge_slave_1: left allmulticast mode
[ 1337.630151][   T42] bridge_slave_1: left promiscuous mode
[ 1337.651547][T16326] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1337.686144][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1337.723238][   T42] bridge_slave_0: left allmulticast mode
[ 1337.729131][   T42] bridge_slave_0: left promiscuous mode
[ 1337.750420][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1337.855294][T16923] loop8: detected capacity change from 0 to 128
[ 1337.899184][   T42] veth1_vlan: left promiscuous mode
[ 1337.905884][   T42] veth0_vlan: left promiscuous mode
[ 1338.975589][   T42] team0 (unregistering): Port device team_slave_1 removed
[ 1339.091944][   T42] team0 (unregistering): Port device team_slave_0 removed
[ 1339.179630][   T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1339.270305][   T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1339.406476][ T2173] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[ 1339.649900][ T2173] usb 9-1: Using ep0 maxpacket: 32
[ 1339.699922][ T2173] usb 9-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[ 1339.713556][ T2173] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1339.737585][ T2173] usb 9-1: config 0 descriptor??
[ 1339.959930][ T2173] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[ 1340.024559][ T2173] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1340.035912][ T2173] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[ 1340.044823][ T2173] usb 9-1: media controller created
[ 1340.071340][ T2173] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1340.164175][ T2173] az6027: usb out operation failed. (-71)
[ 1340.180758][ T2173] az6027: usb out operation failed. (-71)
[ 1340.189281][ T2173] stb0899_attach: Driver disabled by Kconfig
[ 1340.195858][ T2173] az6027: no front-end attached
[ 1340.195858][ T2173] 
[ 1340.209546][ T2173] az6027: usb out operation failed. (-71)
[ 1340.215623][ T2173] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[ 1340.234923][ T2173] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.8/usb9/9-1/input/input43
[ 1340.278706][ T2173] dvb-usb: schedule remote query interval to 400 msecs.
[ 1340.285839][ T2173] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[ 1340.300952][ T2173] usb 9-1: USB disconnect, device number 3
[ 1340.414548][   T42] bond0 (unregistering): Released all slaves
[ 1340.449284][ T2173] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[ 1342.341979][T16959] netlink: 148 bytes leftover after parsing attributes in process `syz.5.2032'.
[ 1342.353082][T16959] netlink: 116 bytes leftover after parsing attributes in process `syz.5.2032'.
[ 1345.106937][   T28] audit: type=1326 audit(1754701657.417:1481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16979 comm="syz.5.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1345.201952][   T28] audit: type=1326 audit(1754701657.417:1482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16979 comm="syz.5.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1345.372930][   T28] audit: type=1326 audit(1754701657.427:1483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16979 comm="syz.5.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1345.552859][   T28] audit: type=1326 audit(1754701657.427:1484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16979 comm="syz.5.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1345.649523][   T28] audit: type=1326 audit(1754701657.427:1485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16979 comm="syz.5.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1345.936146][T16993] loop3: detected capacity change from 0 to 40427
[ 1346.064302][T16993] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1346.112304][T16993] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1346.149700][   T28] audit: type=1326 audit(1754701657.427:1486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16979 comm="syz.5.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1346.194423][T17002] loop5: detected capacity change from 0 to 512
[ 1346.368472][   T28] audit: type=1326 audit(1754701657.427:1487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16979 comm="syz.5.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1346.691772][   T28] audit: type=1326 audit(1754701657.427:1488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16979 comm="syz.5.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1346.736885][T17002] EXT4-fs error (device loop5): ext4_orphan_get:1399: inode #15: comm syz.5.2041: casefold flag without casefold feature
[ 1346.811226][T17002] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.2041: couldn't read orphan inode 15 (err -117)
[ 1346.838902][   T28] audit: type=1326 audit(1754701657.437:1489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16979 comm="syz.5.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1346.902407][T17002] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1346.994689][   T28] audit: type=1326 audit(1754701657.437:1490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16979 comm="syz.5.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6362b8d550 code=0x7ffc0000
[ 1347.121562][T13282] syz-executor: attempt to access beyond end of device
[ 1347.121562][T13282] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1347.191801][T13282] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 1347.578834][T17012] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2041'.
[ 1348.024540][ T6832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1348.705115][T17024] loop8: detected capacity change from 0 to 256
[ 1352.387363][T17024] exFAT-fs (loop8): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1355.073680][   T28] kauditd_printk_skb: 35 callbacks suppressed
[ 1355.073698][   T28] audit: type=1326 audit(1754701667.387:1526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17053 comm="syz.5.2048" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1355.269534][   T28] audit: type=1326 audit(1754701667.417:1527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17053 comm="syz.5.2048" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1355.790514][   T28] audit: type=1326 audit(1754701667.457:1528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17053 comm="syz.5.2048" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1355.925280][   T28] audit: type=1326 audit(1754701667.457:1529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17053 comm="syz.5.2048" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1356.023761][T17061] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2050'.
[ 1356.036802][   T28] audit: type=1326 audit(1754701667.457:1530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17053 comm="syz.5.2048" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1356.141922][   T28] audit: type=1326 audit(1754701667.547:1531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17053 comm="syz.5.2048" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1356.197829][T17066] loop5: detected capacity change from 0 to 512
[ 1356.205688][   T28] audit: type=1326 audit(1754701667.657:1532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17053 comm="syz.5.2048" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1356.277854][   T28] audit: type=1326 audit(1754701667.667:1533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17053 comm="syz.5.2048" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1356.303257][T17061] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2050'.
[ 1356.361838][   T28] audit: type=1326 audit(1754701667.717:1534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17053 comm="syz.5.2048" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6362b8d550 code=0x7ffc0000
[ 1356.368847][T17066] EXT4-fs error (device loop5): ext4_orphan_get:1399: inode #15: comm syz.5.2052: casefold flag without casefold feature
[ 1356.592202][   T28] audit: type=1326 audit(1754701667.737:1535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17053 comm="syz.5.2048" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1356.653173][T17066] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.2052: couldn't read orphan inode 15 (err -117)
[ 1357.036024][T17066] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1358.092109][T17084] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2052'.
[ 1358.474540][T17085] loop1: detected capacity change from 0 to 256
[ 1360.595717][ T6832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1361.332278][T17085] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1362.172113][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[ 1362.188186][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[ 1363.523932][T17114] fuse: Bad value for 'fd'
[ 1363.682863][   T28] kauditd_printk_skb: 25 callbacks suppressed
[ 1363.682916][   T28] audit: type=1326 audit(1754701675.997:1561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17110 comm="syz.8.2060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1363.752284][   T28] audit: type=1326 audit(1754701676.027:1562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17110 comm="syz.8.2060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1364.097967][   T28] audit: type=1326 audit(1754701676.397:1563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17110 comm="syz.8.2060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1364.141925][   T28] audit: type=1326 audit(1754701676.397:1564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17110 comm="syz.8.2060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1364.219804][   T28] audit: type=1326 audit(1754701676.407:1565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17110 comm="syz.8.2060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1364.276135][   T28] audit: type=1326 audit(1754701676.407:1566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17110 comm="syz.8.2060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1364.410684][   T28] audit: type=1326 audit(1754701676.407:1567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17110 comm="syz.8.2060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1364.549562][   T28] audit: type=1326 audit(1754701676.407:1568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17110 comm="syz.8.2060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1364.619044][   T28] audit: type=1326 audit(1754701676.407:1569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17110 comm="syz.8.2060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1364.858340][   T28] audit: type=1326 audit(1754701676.407:1570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17110 comm="syz.8.2060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1365.910449][T17135] loop8: detected capacity change from 0 to 256
[ 1366.036740][T17135] exFAT-fs (loop8): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1366.897771][T17139] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2065'.
[ 1370.374107][   T28] kauditd_printk_skb: 38 callbacks suppressed
[ 1370.374122][   T28] audit: type=1326 audit(1754701682.687:1609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17178 comm="syz.8.2073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1370.487832][   T28] audit: type=1326 audit(1754701682.687:1610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17178 comm="syz.8.2073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1370.517902][   T28] audit: type=1326 audit(1754701682.717:1611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17178 comm="syz.8.2073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1370.554090][   T28] audit: type=1326 audit(1754701682.717:1612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17178 comm="syz.8.2073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1370.587952][   T28] audit: type=1326 audit(1754701682.717:1613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17178 comm="syz.8.2073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1370.616270][   T28] audit: type=1326 audit(1754701682.727:1614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17178 comm="syz.8.2073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1370.734260][T17184] iommufd_mock iommufd_mock1: Adding to iommu group 0
[ 1370.763183][   T28] audit: type=1326 audit(1754701682.727:1615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17178 comm="syz.8.2073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1370.837607][T17188] loop5: detected capacity change from 0 to 256
[ 1370.933322][T17190] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2076'.
[ 1371.031571][T17188] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1371.035681][   T28] audit: type=1326 audit(1754701682.727:1616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17178 comm="syz.8.2073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1371.482429][   T28] audit: type=1326 audit(1754701682.727:1617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17178 comm="syz.8.2073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1371.730777][   T28] audit: type=1326 audit(1754701682.727:1618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17178 comm="syz.8.2073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1371.753893][T17202] loop8: detected capacity change from 0 to 512
[ 1371.966350][T17208] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2079'.
[ 1371.975827][T17208] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2079'.
[ 1372.810064][T17202] EXT4-fs error (device loop8): ext4_orphan_get:1399: inode #15: comm syz.8.2077: casefold flag without casefold feature
[ 1372.923862][T17202] EXT4-fs error (device loop8): ext4_orphan_get:1404: comm syz.8.2077: couldn't read orphan inode 15 (err -117)
[ 1373.488323][T17202] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1374.265935][T17226] netlink: 32 bytes leftover after parsing attributes in process `syz.8.2077'.
[ 1374.934120][T16326] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1376.421109][T17237] tipc: Started in network mode
[ 1376.441254][T17237] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[ 1376.463449][T17237] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[ 1376.505934][T17236] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[ 1377.364421][T17259] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2089'.
[ 1377.390277][T17259] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2089'.
[ 1379.377782][T17281] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2094'.
[ 1379.520628][   T28] kauditd_printk_skb: 27 callbacks suppressed
[ 1379.520647][   T28] audit: type=1326 audit(1754701691.807:1646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17283 comm="syz.8.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1379.660526][   T28] audit: type=1326 audit(1754701691.807:1647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17283 comm="syz.8.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1379.800082][   T28] audit: type=1326 audit(1754701691.807:1648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17283 comm="syz.8.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1379.839208][T17289] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[ 1379.868317][   T28] audit: type=1326 audit(1754701691.807:1649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17283 comm="syz.8.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1379.950770][   T28] audit: type=1326 audit(1754701691.807:1650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17283 comm="syz.8.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1380.100811][   T28] audit: type=1326 audit(1754701691.807:1651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17283 comm="syz.8.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1380.170269][T17300] netlink: 28 bytes leftover after parsing attributes in process `syz.8.2100'.
[ 1380.189894][T17300] netlink: 28 bytes leftover after parsing attributes in process `syz.8.2100'.
[ 1380.495798][   T28] audit: type=1326 audit(1754701691.807:1652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17283 comm="syz.8.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1380.769519][   T28] audit: type=1326 audit(1754701691.807:1653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17283 comm="syz.8.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1381.396067][   T28] audit: type=1326 audit(1754701691.827:1654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17283 comm="syz.8.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1381.419974][   T28] audit: type=1326 audit(1754701691.827:1655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17283 comm="syz.8.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1382.088649][T17309] CIFS: iocharset name too long
[ 1382.199325][T17315] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2104'.
[ 1382.417319][T17320] iommufd_mock iommufd_mock1: Adding to iommu group 0
[ 1383.616536][T17333] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[ 1384.132902][T17346] loop3: detected capacity change from 0 to 128
[ 1384.180997][ T6470] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[ 1384.251491][T17348] CIFS: iocharset name too long
[ 1384.380823][ T6470] usb 2-1: Using ep0 maxpacket: 16
[ 1384.388548][ T6470] usb 2-1: config 0 has an invalid interface number: 105 but max is 0
[ 1384.407275][ T6470] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1384.438956][ T6470] usb 2-1: config 0 has no interface number 0
[ 1384.491152][ T6470] usb 2-1: New USB device found, idVendor=046c, idProduct=14e8, bcdDevice= b.28
[ 1384.524633][ T6470] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1384.614318][ T6470] usb 2-1: Product: syz
[ 1384.628892][ T6470] usb 2-1: Manufacturer: syz
[ 1384.645559][ T6470] usb 2-1: SerialNumber: syz
[ 1384.685220][ T6470] usb 2-1: config 0 descriptor??
[ 1384.705600][ T6470] usb 2-1: Found UVC 0.00 device syz (046c:14e8)
[ 1384.767694][ T6470] usb 2-1: No valid video chain found.
[ 1384.914128][ T5873] usb 2-1: USB disconnect, device number 17
[ 1386.035714][   T28] kauditd_printk_skb: 87 callbacks suppressed
[ 1386.035729][   T28] audit: type=1326 audit(1754701698.347:1743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17364 comm="syz.5.2118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1386.157299][   T28] audit: type=1326 audit(1754701698.397:1744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17364 comm="syz.5.2118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1386.213168][   T28] audit: type=1326 audit(1754701698.397:1745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17364 comm="syz.5.2118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1386.266385][   T28] audit: type=1326 audit(1754701698.397:1746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17364 comm="syz.5.2118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1386.290071][   T28] audit: type=1326 audit(1754701698.397:1747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17364 comm="syz.5.2118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1386.366689][   T28] audit: type=1326 audit(1754701698.397:1748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17364 comm="syz.5.2118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1386.495281][   T28] audit: type=1326 audit(1754701698.397:1749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17364 comm="syz.5.2118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1386.540284][   T28] audit: type=1326 audit(1754701698.397:1750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17364 comm="syz.5.2118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1386.574340][   T28] audit: type=1326 audit(1754701698.397:1751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17364 comm="syz.5.2118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6362b8ebe9 code=0x7ffc0000
[ 1386.764265][T17380] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2120'.
[ 1387.061700][   T28] audit: type=1326 audit(1754701698.397:1752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17364 comm="syz.5.2118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6362b8d550 code=0x7ffc0000
[ 1387.261303][T17388] loop8: detected capacity change from 0 to 512
[ 1387.585978][T17388] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1387.643593][T17388] ext4 filesystem being mounted at /44/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1388.898930][T16326] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1391.326753][T17442] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2134'.
[ 1391.666437][T17451] CIFS: iocharset name too long
[ 1392.147552][T17455] loop8: detected capacity change from 0 to 512
[ 1392.249919][T17455] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1392.263808][T17455] ext4 filesystem being mounted at /48/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1392.860435][T16326] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1395.009067][T17494] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2148'.
[ 1395.296677][T17509] loop8: detected capacity change from 0 to 512
[ 1395.440211][T17509] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1395.583207][T17509] ext4 filesystem being mounted at /52/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1395.908852][T17521] loop3: detected capacity change from 0 to 256
[ 1396.990167][T17521] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1397.315809][T16326] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1400.748946][T17568] loop1: detected capacity change from 0 to 256
[ 1401.765782][T17568] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1402.186828][T17574] loop3: detected capacity change from 0 to 40427
[ 1402.395415][T17574] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1402.475781][T17574] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1402.937020][T13282] syz-executor: attempt to access beyond end of device
[ 1402.937020][T13282] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1403.013833][T17604] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2168'.
[ 1403.050711][T13282] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 1404.850899][T11906] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[ 1405.060755][T11906] usb 2-1: Using ep0 maxpacket: 32
[ 1405.095823][T11906] usb 2-1: config index 0 descriptor too short (expected 156, got 27)
[ 1405.135444][T11906] usb 2-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1405.205327][T11734] Bluetooth: hci1: command 0x0406 tx timeout
[ 1405.227535][T11906] usb 2-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1405.244708][T11906] usb 2-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1405.258385][T11906] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1405.259075][T17625] loop8: detected capacity change from 0 to 256
[ 1405.290811][T11906] usb 2-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1405.300035][T11906] usb 2-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1405.316563][T17625] exFAT-fs (loop8): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1405.351063][T11906] usb 2-1: Product: syz
[ 1405.355317][T11906] usb 2-1: Manufacturer: syz
[ 1405.380748][T11906] usb 2-1: SerialNumber: syz
[ 1405.413822][T11906] usb 2-1: config 0 descriptor??
[ 1405.499858][T11906] ldusb 2-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1405.542942][T11906] ldusb 2-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1406.136208][T16423] usb 2-1: USB disconnect, device number 18
[ 1406.136234][    C0] ldusb 2-1:0.0: usb_submit_urb failed (-19)
[ 1406.173487][T16423] ldusb 2-1:0.0: LD USB Device #0 now disconnected
[ 1406.967380][T17649] loop8: detected capacity change from 0 to 512
[ 1407.350104][T17651] loop3: detected capacity change from 0 to 40427
[ 1407.362366][T17649] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1407.526761][T17651] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1407.605557][T17651] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1407.713025][T17649] ext4 filesystem being mounted at /62/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1408.234395][T17670] binder: 17656:17670 unknown command 0
[ 1408.240075][T17670] binder: 17656:17670 ioctl c0306201 2000000003c0 returned -22
[ 1408.349540][T13282] syz-executor: attempt to access beyond end of device
[ 1408.349540][T13282] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1408.391747][T13282] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 1408.459769][T16326] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1408.848844][T17677] CIFS: iocharset name too long
[ 1412.590358][T17710] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2188'.
[ 1415.398323][T17738] loop8: detected capacity change from 0 to 256
[ 1415.429915][T17738] exFAT-fs (loop8): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1416.138792][T17752] loop3: detected capacity change from 0 to 1024
[ 1416.202015][T17752] EXT4-fs: inline encryption not supported
[ 1416.208223][T17752] EXT4-fs: Ignoring removed bh option
[ 1416.325556][T17752] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1416.725783][T17759] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2200'.
[ 1419.586315][T13282] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1419.838121][T17770] loop3: detected capacity change from 0 to 512
[ 1419.951458][T17770] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.2202: casefold flag without casefold feature
[ 1420.135544][T17770] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.2202: couldn't read orphan inode 15 (err -117)
[ 1420.174336][T17770] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1420.443034][T17775] loop1: detected capacity change from 0 to 40427
[ 1420.518298][T17775] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1420.836190][T17775] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1421.376072][T13282] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1421.920302][T11786] syz-executor: attempt to access beyond end of device
[ 1421.920302][T11786] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1421.980875][T11786] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 1423.609932][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[ 1423.616646][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[ 1423.805749][T17811] loop1: detected capacity change from 0 to 512
[ 1423.866604][T17811] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1423.875357][T17811] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1423.910350][T17811] EXT4-fs (loop1): 1 truncate cleaned up
[ 1423.934836][T17811] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1424.343541][T17822] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2205'.
[ 1424.960841][T17817] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 7: invalid block bitmap
[ 1425.012543][T11786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1425.378161][T17834] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2211'.
[ 1426.191800][T17835] CIFS: iocharset name too long
[ 1427.206579][T17847] loop8: detected capacity change from 0 to 40427
[ 1427.246935][T17847] F2FS-fs (loop8): Found nat_bits in checkpoint
[ 1427.306713][T17847] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[ 1428.644468][T16326] syz-executor: attempt to access beyond end of device
[ 1428.644468][T16326] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1428.690728][T16326] F2FS-fs (loop8): Stopped filesystem due to reason: 3
[ 1429.972914][T17875] loop3: detected capacity change from 0 to 512
[ 1430.001075][T17875] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1430.037358][T17875] EXT4-fs (loop3): Test dummy encryption mode enabled
[ 1430.134525][T17875] EXT4-fs (loop3): 1 truncate cleaned up
[ 1430.189568][T17875] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1430.907476][T17896] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2221'.
[ 1431.047480][T17893] CIFS: iocharset name too long
[ 1431.650437][T17898] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2218'.
[ 1431.707514][T17906] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2222'.
[ 1432.256231][T17912] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[ 1433.331059][T17880] EXT4-fs error (device loop3): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 7: invalid block bitmap
[ 1433.970913][   T23] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[ 1434.079252][T17926] loop1: detected capacity change from 0 to 512
[ 1434.166851][T17926] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1434.230460][   T23] usb 9-1: Using ep0 maxpacket: 32
[ 1434.230835][T17926] ext4 filesystem being mounted at /289/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1434.253294][   T23] usb 9-1: config 0 interface 0 has no altsetting 0
[ 1434.278992][   T23] usb 9-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[ 1434.328223][   T23] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1434.342535][T13282] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1434.356812][   T23] usb 9-1: Product: syz
[ 1434.370369][   T23] usb 9-1: Manufacturer: syz
[ 1434.372567][T11786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1434.395499][   T23] usb 9-1: SerialNumber: syz
[ 1434.496540][   T23] usb 9-1: config 0 descriptor??
[ 1434.926436][T17952] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2231'.
[ 1434.953460][   T23] gs_usb 9-1:0.0: Configuring for 2 interfaces
[ 1435.384756][   T23] gs_usb 9-1:0.0: Couldn't get bit timing const for channel 1 (-EPROTO)
[ 1435.400669][ T6469] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[ 1435.518221][   T23] gs_usb: probe of 9-1:0.0 failed with error -71
[ 1435.601142][ T6469] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1435.620981][   T23] usb 9-1: USB disconnect, device number 4
[ 1435.641532][ T6469] usb 4-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 1435.832760][ T6469] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1435.848426][ T6469] usb 4-1: config 0 descriptor??
[ 1435.869838][ T6469] pwc: Askey VC010 type 2 USB webcam detected.
[ 1436.703685][T17978] loop1: detected capacity change from 0 to 512
[ 1436.714458][T17978] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1436.740826][T17978] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1436.776451][T17978] EXT4-fs (loop1): 1 truncate cleaned up
[ 1436.784878][T17978] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1436.834070][ T6469] pwc: recv_control_msg error -32 req 02 val 2b00
[ 1436.869277][ T6469] pwc: recv_control_msg error -32 req 02 val 2700
[ 1436.922450][ T6469] pwc: recv_control_msg error -32 req 02 val 2c00
[ 1437.002319][ T6469] pwc: recv_control_msg error -32 req 04 val 1000
[ 1437.037011][ T6469] pwc: recv_control_msg error -32 req 04 val 1300
[ 1437.094613][ T6469] pwc: recv_control_msg error -32 req 04 val 1400
[ 1437.115403][ T6469] pwc: recv_control_msg error -32 req 02 val 2000
[ 1437.129941][ T6469] pwc: recv_control_msg error -32 req 02 val 2100
[ 1437.149883][ T6469] pwc: recv_control_msg error -32 req 04 val 1500
[ 1437.172793][ T6469] pwc: recv_control_msg error -32 req 02 val 2500
[ 1437.239942][T17988] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2238'.
[ 1437.393630][ T6469] pwc: recv_control_msg error -71 req 02 val 2600
[ 1437.423136][ T6469] pwc: recv_control_msg error -71 req 02 val 2900
[ 1437.454944][ T6469] pwc: recv_control_msg error -71 req 02 val 2800
[ 1437.481343][ T6469] pwc: recv_control_msg error -71 req 04 val 1100
[ 1437.500119][ T6469] pwc: recv_control_msg error -71 req 04 val 1200
[ 1437.559378][ T6469] pwc: Registered as video103.
[ 1437.610861][ T6469] input: PWC snapshot button as /devices/platform/dummy_hcd.3/usb4/4-1/input/input50
[ 1438.341496][T17931] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 7: invalid block bitmap
[ 1438.530306][ T6469] usb 4-1: USB disconnect, device number 16
[ 1440.169942][T18019] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2245'.
[ 1440.996731][T11786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1444.973293][   T28] kauditd_printk_skb: 78 callbacks suppressed
[ 1444.973312][   T28] audit: type=1326 audit(1754701757.287:1831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18076 comm="syz.3.2257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff417b8ebe9 code=0x7ffc0000
[ 1445.070710][   T28] audit: type=1326 audit(1754701757.287:1832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18076 comm="syz.3.2257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff417b8ebe9 code=0x7ffc0000
[ 1445.140742][   T28] audit: type=1326 audit(1754701757.287:1833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18076 comm="syz.3.2257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff417b8ebe9 code=0x7ffc0000
[ 1445.157478][T18080] loop1: detected capacity change from 0 to 512
[ 1445.192108][T18080] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1445.232108][   T28] audit: type=1326 audit(1754701757.287:1834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18076 comm="syz.3.2257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff417b8ebe9 code=0x7ffc0000
[ 1445.247746][T18080] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1445.350718][   T28] audit: type=1326 audit(1754701757.287:1835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18076 comm="syz.3.2257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff417b8ebe9 code=0x7ffc0000
[ 1445.361069][T18080] EXT4-fs (loop1): 1 truncate cleaned up
[ 1445.382227][T18080] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1445.505249][   T28] audit: type=1326 audit(1754701757.287:1836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18076 comm="syz.3.2257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7ff417b8ebe9 code=0x7ffc0000
[ 1445.645253][   T28] audit: type=1326 audit(1754701757.287:1837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18076 comm="syz.3.2257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff417b8ebe9 code=0x7ffc0000
[ 1445.735782][   T28] audit: type=1326 audit(1754701757.287:1838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18076 comm="syz.3.2257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7ff417b8ebe9 code=0x7ffc0000
[ 1445.806257][   T28] audit: type=1326 audit(1754701757.287:1839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18076 comm="syz.3.2257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff417b8ebe9 code=0x7ffc0000
[ 1445.854075][T18092] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2258'.
[ 1445.896363][   T28] audit: type=1326 audit(1754701757.287:1840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18076 comm="syz.3.2257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff417b8ebe9 code=0x7ffc0000
[ 1447.163612][T18105] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2261'.
[ 1448.550342][T18124] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2266'.
[ 1448.574925][T18124] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1448.640660][T18084] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 7: invalid block bitmap
[ 1448.801095][T18124] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1449.038945][T11786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1452.843435][T18167] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2276'.
[ 1456.145806][T18206] netlink: 24 bytes leftover after parsing attributes in process `syz.8.2287'.
[ 1456.952015][   T28] kauditd_printk_skb: 37 callbacks suppressed
[ 1456.952033][   T28] audit: type=1326 audit(1754701769.267:1878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18226 comm="syz.8.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1457.088210][   T28] audit: type=1326 audit(1754701769.267:1879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18226 comm="syz.8.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1457.160840][   T28] audit: type=1326 audit(1754701769.327:1880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18226 comm="syz.8.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1457.189213][   T28] audit: type=1326 audit(1754701769.327:1881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18226 comm="syz.8.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1457.278685][   T28] audit: type=1326 audit(1754701769.327:1882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18226 comm="syz.8.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1457.337394][   T28] audit: type=1326 audit(1754701769.327:1883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18226 comm="syz.8.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1457.462717][   T28] audit: type=1326 audit(1754701769.327:1884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18226 comm="syz.8.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1457.510204][   T28] audit: type=1326 audit(1754701769.327:1885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18226 comm="syz.8.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1457.540801][   T28] audit: type=1326 audit(1754701769.327:1886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18226 comm="syz.8.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1457.583634][   T28] audit: type=1326 audit(1754701769.327:1887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18226 comm="syz.8.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f760cd8ebe9 code=0x7ffc0000
[ 1459.139611][T18247] 8021q: adding VLAN 0 to HW filter on device macvlan3
[ 1459.521857][T18249] netlink: 24 bytes leftover after parsing attributes in process `syz.8.2297'.
[ 1460.499878][T18263] loop1: detected capacity change from 0 to 128
[ 1460.500141][T14376] Bluetooth: hci2: unexpected event for opcode 0x1005
[ 1462.484379][T18295] netlink: 24 bytes leftover after parsing attributes in process `syz.8.2308'.
[ 1464.232558][T14376] Bluetooth: hci3: unexpected event for opcode 0x1005
[ 1465.654330][T18333] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2314'.
[ 1466.291015][T18346] netlink: 24 bytes leftover after parsing attributes in process `syz.8.2320'.
[ 1468.995699][T18371] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2327'.
[ 1470.342015][T14376] Bluetooth: hci1: unexpected event for opcode 0x1005
[ 1472.175867][T14376] Bluetooth: hci2: unexpected event for opcode 0x1005
[ 1472.558714][T18435] overlayfs: failed to resolve './file1': -2
[ 1474.339668][T14376] Bluetooth: hci4: unexpected event for opcode 0x1005
[ 1475.605537][T18485] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2359'.
[ 1477.013134][T18507] 8021q: adding VLAN 0 to HW filter on device macvlan0
[ 1477.047365][T18508] overlayfs: failed to resolve './file1': -2
[ 1477.746659][T18510] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2367'.
[ 1478.191930][T18526] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2370'.
[ 1479.636890][T18548] netlink: 20 bytes leftover after parsing attributes in process `syz.8.2376'.
[ 1479.661180][T18551] overlayfs: failed to resolve './file1': -2
[ 1479.813021][T18554] 8021q: adding VLAN 0 to HW filter on device macvlan0
[ 1483.498822][T18582] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2382'.
[ 1484.079431][T18598] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2388'.
[ 1485.048106][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[ 1485.054736][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[ 1485.185357][T18611] 8021q: adding VLAN 0 to HW filter on device macvlan3
[ 1486.207903][T18639] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2399'.
[ 1486.699141][T18652] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2401'.
[ 1489.051038][T18694] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2411'.
[ 1490.221113][T18705] netlink: 20 bytes leftover after parsing attributes in process `syz.8.2413'.
[ 1490.961669][T11734] Bluetooth: hci1: command 0x0406 tx timeout
[ 1492.757332][T18709] loop1: detected capacity change from 0 to 256
[ 1492.872998][T18752] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2421'.
[ 1492.947734][T18709] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1493.754493][T18769] netlink: 20 bytes leftover after parsing attributes in process `syz.8.2425'.
[ 1494.056441][T18774] netlink: 'syz.5.2428': attribute type 11 has an invalid length.
[ 1494.083380][T18774] netlink: 'syz.5.2428': attribute type 8 has an invalid length.
[ 1496.085045][T18816] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2434'.
[ 1496.539354][T18825] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2439'.
[ 1497.295045][T18827] overlayfs: failed to resolve './file1': -2
[ 1502.030298][T18869] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1502.041999][T18869] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1502.051502][T18869] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1502.076020][T18869] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1502.087820][T18869] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1502.095568][T18869] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1502.172103][T18873] 9pnet_virtio: no channels available for device syz
[ 1502.181730][T18873] 9pnet_virtio: no channels available for device syz
[ 1502.446466][ T8904] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1502.577916][T18883] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2458'.
[ 1502.789078][ T8904] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1503.089335][ T8904] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1503.263635][ T8904] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1503.318843][T18896] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[ 1503.518160][T18868] chnl_net:caif_netlink_parms(): no params data found
[ 1503.606396][T18904] overlayfs: failed to resolve './file1': -2
[ 1504.160807][T11734] Bluetooth: hci0: command tx timeout
[ 1505.000281][T18915] loop1: detected capacity change from 0 to 512
[ 1505.104041][T18915] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.2467: casefold flag without casefold feature
[ 1505.118719][T18868] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1505.121246][T18915] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.2467: couldn't read orphan inode 15 (err -117)
[ 1505.141965][T18915] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1505.167227][T18868] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1505.175199][T18868] bridge_slave_0: entered allmulticast mode
[ 1505.184031][T18868] bridge_slave_0: entered promiscuous mode
[ 1505.201862][T18868] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1505.217066][T18868] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1505.291028][T18868] bridge_slave_1: entered allmulticast mode
[ 1505.363257][T18868] bridge_slave_1: entered promiscuous mode
[ 1506.195766][T18868] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1506.227131][T18924] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2467'.
[ 1506.240869][T11734] Bluetooth: hci0: command tx timeout
[ 1506.327406][T18868] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1506.386606][T11786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1506.607043][T18936] loop1: detected capacity change from 0 to 128
[ 1507.272919][T18868] team0: Port device team_slave_0 added
[ 1507.638488][T18946] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2471'.
[ 1507.659737][T18868] team0: Port device team_slave_1 added
[ 1508.012063][T18868] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1508.019177][T18868] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1508.409243][T18868] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1508.422767][T11734] Bluetooth: hci0: command tx timeout
[ 1508.444768][T18960] overlayfs: failed to resolve './file1': -2
[ 1509.364874][T18868] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1509.380877][T18868] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1509.410441][T18868] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1509.886047][T18868] hsr_slave_0: entered promiscuous mode
[ 1509.931371][T18868] hsr_slave_1: entered promiscuous mode
[ 1509.951233][T18868] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1509.968999][T18868] Cannot create hsr debugfs directory
[ 1510.169772][T18993] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2479'.
[ 1510.500673][T11734] Bluetooth: hci0: command tx timeout
[ 1510.788405][T19004] overlayfs: failed to resolve './file1': -2
[ 1513.675468][T19039] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[ 1513.854159][T19051] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2491'.
[ 1514.227921][ T8904] hsr_slave_0: left promiscuous mode
[ 1514.254354][ T8904] hsr_slave_1: left promiscuous mode
[ 1514.272629][ T8904] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1514.285126][ T8904] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1514.312382][ T8904] bridge_slave_1: left allmulticast mode
[ 1514.318718][ T8904] bridge_slave_1: left promiscuous mode
[ 1514.331710][ T8904] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1514.350181][ T8904] bridge_slave_0: left promiscuous mode
[ 1514.359769][ T8904] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1516.705729][ T8904] team0 (unregistering): Port device team_slave_1 removed
[ 1516.785613][ T8904] team0 (unregistering): Port device team_slave_0 removed
[ 1516.873615][ T8904] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1516.966283][ T8904] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1517.919563][ T8904] bond0 (unregistering): Released all slaves
[ 1519.208968][T18868] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1519.640434][T18868] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1519.663932][T18868] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1519.740965][T19096] iommufd_mock iommufd_mock1: Adding to iommu group 0
[ 1519.785933][T18868] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1520.724810][T19100] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2501'.
[ 1522.838605][T18868] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1522.928733][T18868] 8021q: adding VLAN 0 to HW filter on device team0
[ 1523.037865][ T8902] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1523.047178][ T8902] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1523.109118][ T8884] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1523.116776][ T8884] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1523.156480][T19132] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[ 1523.609636][T19147] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2511'.
[ 1523.767770][T19149] overlay: ./file0 is not a directory
[ 1523.891789][T19150] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2510'.
[ 1525.613699][T18868] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1527.284626][T18868] veth0_vlan: entered promiscuous mode
[ 1527.379022][T18868] veth1_vlan: entered promiscuous mode
[ 1527.399428][T19201] loop1: detected capacity change from 0 to 512
[ 1527.465070][T19201] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.2521: casefold flag without casefold feature
[ 1527.518023][T19201] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.2521: couldn't read orphan inode 15 (err -117)
[ 1527.529963][T18868] veth0_macvtap: entered promiscuous mode
[ 1527.541933][T19201] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1527.568859][T18868] veth1_macvtap: entered promiscuous mode
[ 1527.731441][T18868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1527.782533][T18868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1527.793940][T18868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1527.805578][T18868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1527.817516][T18868] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1527.838272][T18868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1527.849657][T18868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1527.860542][T18868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1527.871550][T18868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1527.893669][T18868] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1527.983463][T19210] overlay: ./file0 is not a directory
[ 1528.052075][T18868] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1528.357364][T18868] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1528.417390][T18868] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1528.470699][T18868] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1528.532913][T19210] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2521'.
[ 1528.672527][T11786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1528.977015][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1529.015623][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1529.115344][ T8910] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1529.137944][ T8910] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1536.512195][T11734] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[ 1536.525582][T11734] Bluetooth: hci0: Injecting HCI hardware error event
[ 1536.537411][T11734] Bluetooth: hci0: hardware error 0x00
[ 1538.690795][T11734] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1538.867218][T19333] loop5: detected capacity change from 0 to 512
[ 1538.993579][T19333] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1539.042719][T19333] EXT4-fs (loop5): Test dummy encryption mode enabled
[ 1539.134838][T19333] EXT4-fs (loop5): 1 truncate cleaned up
[ 1539.972036][T19333] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1540.809664][T19350] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2548'.
[ 1541.412104][T18868] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1541.622545][T19361] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2551'.
[ 1542.373494][T19375] CIFS: iocharset name too long
[ 1544.954768][T19405] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2564'.
[ 1545.302295][T19414] CIFS: iocharset name too long
[ 1546.501274][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[ 1546.508057][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[ 1546.945421][T19435] 8021q: adding VLAN 0 to HW filter on device macvlan3
[ 1547.435896][T19452] CIFS: iocharset name too long
[ 1552.494791][T19522] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2594'.
[ 1554.046473][T19533] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1554.853601][T19550] CIFS: iocharset name too long
[ 1557.176464][T19598] CIFS: iocharset name too long
[ 1557.338911][T19602] loop5: detected capacity change from 0 to 128
[ 1557.368675][T19596] 8021q: adding VLAN 0 to HW filter on device macvlan3
[ 1558.837304][T19627] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2621'.
[ 1563.365027][T19686] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2631'.
[ 1563.581299][T19689] overlay: ./file0 is not a directory
[ 1566.806754][T19721] loop5: detected capacity change from 0 to 512
[ 1567.711200][T19721] EXT4-fs error (device loop5): ext4_orphan_get:1399: inode #15: comm syz.5.2645: casefold flag without casefold feature
[ 1567.809900][T19721] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.2645: couldn't read orphan inode 15 (err -117)
[ 1567.896939][T19721] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1569.328166][T18868] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1575.380598][T19798] overlay: ./file0 is not a directory
[ 1579.652100][T19850] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2674'.
[ 1580.919364][T19866] loop5: detected capacity change from 0 to 256
[ 1580.964692][T19866] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1584.323358][T19909] netlink: 'syz.3.2688': attribute type 1 has an invalid length.
[ 1584.334119][T19907] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2686'.
[ 1584.474803][T19909] bond1: entered promiscuous mode
[ 1584.481424][T19909] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1584.526745][T19916] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1584.537763][T19916] bond1: (slave bond2): making interface the new active one
[ 1584.549922][T19916] bond2: entered promiscuous mode
[ 1584.561629][T19916] bond1: (slave bond2): Enslaving as an active interface with an up link
[ 1584.901892][T19933] netlink: 'syz.3.2694': attribute type 72 has an invalid length.
[ 1585.086487][T19940] 8021q: adding VLAN 0 to HW filter on device macvlan3
[ 1585.436075][T19956] netlink: 20 bytes leftover after parsing attributes in process `syz.8.2699'.
[ 1585.755542][T19962] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2701'.
[ 1586.713312][T19971] netlink: 'syz.8.2705': attribute type 72 has an invalid length.
[ 1588.904078][T20005] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2713'.
[ 1589.468004][T19992] 8021q: adding VLAN 0 to HW filter on device macvlan3
[ 1589.687515][T20013] netlink: 1752 bytes leftover after parsing attributes in process `syz.3.2715'.
[ 1589.792505][T20019] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2714'.
[ 1593.636116][T20049] loop5: detected capacity change from 0 to 512
[ 1593.652737][T20049] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1593.684478][T20049] EXT4-fs (loop5): Test dummy encryption mode enabled
[ 1593.750721][T20049] EXT4-fs (loop5): 1 truncate cleaned up
[ 1593.794652][T20049] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1594.151024][T20061] netlink: 1752 bytes leftover after parsing attributes in process `syz.3.2725'.
[ 1594.186091][T20065] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2723'.
[ 1594.832723][T18868] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1595.007300][T20079] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2727'.
[ 1595.823723][T20099] loop5: detected capacity change from 0 to 128
[ 1596.881911][T20113] netlink: 1752 bytes leftover after parsing attributes in process `syz.3.2736'.
[ 1597.584430][T20133] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2739'.
[ 1599.982580][T20180] netlink: 20 bytes leftover after parsing attributes in process `syz.8.2751'.
[ 1600.112213][T20186] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2752'.
[ 1601.930138][T20224] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2761'.
[ 1602.669628][T20259] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2767'.
[ 1602.825288][T20263] overlay: ./file0 is not a directory
[ 1602.893436][T20263] netlink: 76 bytes leftover after parsing attributes in process `syz.8.2769'.
[ 1604.033812][T20284] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2776'.
[ 1604.864635][T20304] overlay: ./file0 is not a directory
[ 1604.904661][T20304] netlink: 76 bytes leftover after parsing attributes in process `syz.8.2781'.
[ 1606.793790][T20335] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2791'.
[ 1606.866821][T20337] loop5: detected capacity change from 0 to 512
[ 1606.918999][T20337] EXT4-fs error (device loop5): ext4_orphan_get:1399: inode #15: comm syz.5.2793: casefold flag without casefold feature
[ 1606.939600][T20337] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.2793: couldn't read orphan inode 15 (err -117)
[ 1606.953806][T20337] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1607.373467][T20350] overlay: ./file0 is not a directory
[ 1607.487001][T20352] netlink: 76 bytes leftover after parsing attributes in process `syz.5.2793'.
[ 1607.927272][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[ 1607.990854][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[ 1608.004249][T18868] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1608.250596][T20359] loop5: detected capacity change from 0 to 128
[ 1609.071662][T20385] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2805'.
[ 1609.764341][T20395] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[ 1609.931125][T20398] overlay: ./file0 is not a directory
[ 1609.968791][T20398] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2807'.
[ 1612.593080][T20437] fuse: Bad value for 'fd'
[ 1612.894721][T20443] overlay: ./file0 is not a directory
[ 1613.008147][T20444] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2819'.
[ 1617.979965][T20506] loop5: detected capacity change from 0 to 1024
[ 1618.018639][T20506] EXT4-fs: inline encryption not supported
[ 1618.054230][T20506] EXT4-fs: Ignoring removed bh option
[ 1618.098239][T20506] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1619.346827][T18868] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1619.654701][T20528] CIFS: iocharset name too long
[ 1620.611727][T20558] CIFS: iocharset name too long
[ 1623.643693][T20595] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1623.896677][T20598] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[ 1624.860393][T20606] CIFS: iocharset name too long
[ 1624.957060][T20609] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2864'.
[ 1627.190796][T20624] loop5: detected capacity change from 0 to 40427
[ 1627.242598][T20624] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1627.355243][T20624] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[ 1629.283614][T18868] syz-executor: attempt to access beyond end of device
[ 1629.283614][T18868] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1629.333489][T18868] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[ 1629.369375][T20646] CIFS: iocharset name too long
[ 1629.408690][T20644] 8021q: adding VLAN 0 to HW filter on device macvlan3
[ 1629.729572][T20661] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2878'.
[ 1630.558197][T20683] loop5: detected capacity change from 0 to 512
[ 1630.585142][T20683] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1630.643081][T20683] EXT4-fs (loop5): Test dummy encryption mode enabled
[ 1630.744707][T20683] EXT4-fs (loop5): 1 truncate cleaned up
[ 1630.802101][T20683] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1631.222642][T20694] CIFS: iocharset name too long
[ 1631.303059][T20700] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2876'.
[ 1631.838170][T18868] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1632.194842][T20713] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1632.508906][T20728] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2892'.
[ 1633.640366][T20742] overlay: ./file0 is not a directory
[ 1633.761096][T20743] netlink: 32 bytes leftover after parsing attributes in process `syz.8.2895'.
[ 1634.051139][T20745] CIFS: iocharset name too long
[ 1635.290893][T20776] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2906'.
[ 1637.172908][T20792] CIFS: iocharset name too long
[ 1638.789472][T20827] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2917'.
[ 1640.311376][T20839] CIFS: iocharset name too long
[ 1640.383289][T20847] iommufd_mock iommufd_mock1: Adding to iommu group 0
[ 1642.191094][T20854] overlay: ./file0 is not a directory
[ 1642.762150][T20851] netlink: 32 bytes leftover after parsing attributes in process `syz.8.2921'.
[ 1643.122598][T20859] 8021q: adding VLAN 0 to HW filter on device macvlan3
[ 1644.970244][T20889] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2928'.
[ 1646.221729][T20907] overlayfs: failed to resolve './file1': -2
[ 1646.244779][T20908] CIFS: iocharset name too long
[ 1648.688735][T20944] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2941'.
[ 1649.169601][T20956] CIFS: iocharset name too long
[ 1649.188177][T20958] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2947'.
[ 1650.712986][T20971] overlayfs: failed to resolve './file1': -2
[ 1650.966593][T20991] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2952'.
[ 1653.398906][T21015] overlayfs: failed to resolve './file1': -2
[ 1654.546645][T21016] bridge_slave_0: left allmulticast mode
[ 1654.601973][T21016] bridge_slave_0: left promiscuous mode
[ 1654.629188][T21016] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1654.723070][T21016] bridge_slave_1: left allmulticast mode
[ 1654.745541][T21016] bridge_slave_1: left promiscuous mode
[ 1654.782116][T21016] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1654.864687][T21016] bond0: (slave bond_slave_0): Releasing backup interface
[ 1654.967540][T21016] bond0: (slave bond_slave_1): Releasing backup interface
[ 1655.249392][T21016] team0: Port device team_slave_0 removed
[ 1656.009482][T21016] team0: Port device team_slave_1 removed
[ 1656.051884][T21016] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1656.059809][T21016] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1656.118187][T21016] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1656.140176][T21016] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1656.439046][T21044] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2966'.
[ 1657.628227][T21063] loop5: detected capacity change from 0 to 40427
[ 1657.722563][T21069] overlayfs: failed to resolve './file1': -2
[ 1657.731601][T21063] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1657.786755][T21063] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[ 1659.071323][T18868] syz-executor: attempt to access beyond end of device
[ 1659.071323][T18868] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1659.166459][T18868] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[ 1660.623911][T21119] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2979'.
[ 1661.009886][T21129] overlayfs: failed to resolve './file1': -2
[ 1662.607362][T21148] Bluetooth: MGMT ver 1.22
[ 1665.583979][T21171] overlayfs: failed to resolve './file1': -2
[ 1666.012730][T21191] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2999'.
[ 1669.681701][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[ 1669.688889][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[ 1669.910104][T21238] overlayfs: failed to resolve './file1': -2
[ 1670.041346][T21245] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3012'.
[ 1671.801961][T21262] overlay: ./file0 is not a directory
[ 1671.831186][T21262] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3015'.
[ 1673.219148][T21289] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3023'.
[ 1673.249433][T21290] overlayfs: failed to resolve './file1': -2
[ 1677.368219][T21334] PKCS7: Unknown OID: [4] 0.38.107.217331280.32(bad)
[ 1677.376037][T21334] PKCS7: Only support pkcs7_signedData type
[ 1677.394179][T21337] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3033'.
[ 1677.804390][T21354] netlink: 20 bytes leftover after parsing attributes in process `syz.8.3037'.
[ 1680.691538][T21403] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3045'.
[ 1681.542392][T21409] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3047'.
[ 1685.142894][T21457] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3057'.
[ 1685.912155][T21458] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3059'.
[ 1687.850814][T21507] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3069'.
[ 1688.750115][T21518] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3072'.
[ 1693.078951][T21565] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3082'.
[ 1693.437779][T21572] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3081'.
[ 1700.170273][T21616] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3093'.
[ 1700.325273][T21625] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3092'.
[ 1709.605787][T21695] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3106'.
[ 1713.562993][T21723] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3110'.
[ 1715.978395][T21765] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3118'.
[ 1716.326402][T21775] vlan0: entered promiscuous mode
[ 1718.607937][T21816] netlink: 20 bytes leftover after parsing attributes in process `syz.8.3129'.
[ 1718.797880][T21823] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3127'.
[ 1721.805313][T21865] netlink: 20 bytes leftover after parsing attributes in process `syz.8.3138'.
[ 1724.104401][T21893] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[ 1730.272462][T21959] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3160'.
[ 1730.900072][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[ 1730.908339][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[ 1739.026916][T22071] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3180'.
[ 1740.841974][T22092] futex_wake_op: syz.5.3185 tries to shift op by 144; fix this program
[ 1743.246670][T11734] Bluetooth: hci1: unexpected event for opcode 0x1004
[ 1746.014226][T22133] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3191'.
[ 1747.491900][T22141] can0: slcan on ttyS3.
[ 1747.536750][T11734] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[ 1747.646649][T11734] Bluetooth: hci1: Injecting HCI hardware error event
[ 1747.664792][T18869] Bluetooth: hci1: hardware error 0x00
[ 1747.941733][T22137] can0 (unregistered): slcan off ttyS3.
[ 1749.774997][T18869] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[ 1751.292610][T22180] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3201'.
[ 1756.288546][T22230] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3210'.
[ 1758.665424][T22254] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3212'.
[ 1758.675454][T22254] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3212'.
[ 1761.800544][T22283] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3221'.
[ 1768.871968][T22373] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[ 1768.880282][T22373] macvtap0: entered allmulticast mode
[ 1768.886013][T22373] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[ 1768.901694][T22373] netdevsim netdevsim3 netdevsim0: left allmulticast mode
[ 1768.909009][T22373] netdevsim netdevsim3 netdevsim0: left promiscuous mode
[ 1769.058304][T22376] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[ 1769.070977][T22376] macvtap0: entered allmulticast mode
[ 1769.078380][T22376] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[ 1769.684139][T22376] netdevsim netdevsim3 netdevsim0: left allmulticast mode
[ 1769.691996][T22376] netdevsim netdevsim3 netdevsim0: left promiscuous mode
[ 1770.820590][T18869] Bluetooth: hci3: connection err: -111
[ 1778.385806][T22465] No such timeout policy "syz0"
[ 1793.573868][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[ 1793.583067][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[ 1794.672393][T22626] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3302'.
[ 1799.221814][T22691] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3316'.
[ 1802.010991][T22721] IPVS: fo: SCTP 172.20.20.187:0 - no destination available
[ 1803.963397][T22754] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3330'.
[ 1806.159510][T22803] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3343'.
[ 1810.655810][T22878] netlink: 180 bytes leftover after parsing attributes in process `syz.8.3363'.
[ 1812.016524][T22903] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3366'.
[ 1812.026798][T22903] netlink: 'syz.5.3366': attribute type 30 has an invalid length.
[ 1812.101304][T22903] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1812.110848][T22903] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1812.119645][T22903] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1812.129100][T22903] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1812.156943][T22903] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3366'.
[ 1812.166370][T22903] netlink: 'syz.5.3366': attribute type 30 has an invalid length.
[ 1812.756481][T22911] afs: Unknown parameter 'dynh1_to_bridge'
[ 1815.957860][T22962] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3385'.
[ 1816.470163][T22960] veth0: entered promiscuous mode
[ 1816.490828][T22963] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3387'.
[ 1818.740799][T22998] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3391'.
[ 1822.704171][T23058] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3405'.
[ 1825.305786][T23102] netlink: 96 bytes leftover after parsing attributes in process `syz.3.3413'.
[ 1828.221189][T23123] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3416'.
[ 1828.679595][T18869] Bluetooth: hci4: failed to read key size for handle 201
[ 1828.691119][T18869] Bluetooth: hci4: unexpected event for opcode 0x1408
[ 1830.716137][T23183] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3430'.
[ 1832.730614][T18869] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[ 1832.739935][T18869] Bluetooth: hci4: Injecting HCI hardware error event
[ 1832.754058][T18869] Bluetooth: hci4: hardware error 0x00
[ 1836.511286][T23240] netlink: 52 bytes leftover after parsing attributes in process `syz.1.3444'.
[ 1836.651283][T18869] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[ 1842.094258][T23332] netlink: 96 bytes leftover after parsing attributes in process `syz.8.3466'.
[ 1842.970988][T23349] netlink: 36 bytes leftover after parsing attributes in process `syz.5.3469'.
[ 1844.427949][T23370] IPVS: fo: SCTP 172.20.20.187:0 - no destination available
[ 1844.493859][T23368] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3477'.
[ 1847.029602][T23411] sock: sock_timestamping_bind_phc: sock not bind to device
[ 1847.609821][T23431] netlink: 96 bytes leftover after parsing attributes in process `syz.5.3496'.
[ 1850.254040][T23457] IPVS: fo: SCTP 172.20.20.187:0 - no destination available
[ 1851.455719][T23471] netlink: 96 bytes leftover after parsing attributes in process `syz.1.3506'.
[ 1853.044985][T23207] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1853.057732][T23207] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1853.068174][T23207] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1853.100788][T23207] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1853.150542][T23207] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1853.162216][T23207] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1853.703445][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[ 1853.712882][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[ 1854.858228][T23488] chnl_net:caif_netlink_parms(): no params data found
[ 1855.821899][T18869] Bluetooth: hci2: command tx timeout
[ 1856.638491][T23488] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1856.695744][T23488] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1856.736836][T23488] bridge_slave_0: entered allmulticast mode
[ 1856.755946][T23488] bridge_slave_0: entered promiscuous mode
[ 1856.822547][T23488] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1856.857463][T23488] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1856.893100][T23488] bridge_slave_1: entered allmulticast mode
[ 1856.911618][T23488] bridge_slave_1: entered promiscuous mode
[ 1857.865347][T18869] Bluetooth: hci2: command tx timeout
[ 1858.073663][T23488] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1858.119153][T23488] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1858.223345][T23488] team0: Port device team_slave_0 added
[ 1858.243759][T23488] team0: Port device team_slave_1 added
[ 1858.332048][T23488] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1858.348270][T23488] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1858.395190][T23488] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1858.421491][T23488] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1858.430227][T23488] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1858.487559][T23488] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1858.725639][T23488] hsr_slave_0: entered promiscuous mode
[ 1859.570941][T23488] hsr_slave_1: entered promiscuous mode
[ 1859.590944][T23488] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1859.610562][T23488] Cannot create hsr debugfs directory
[ 1859.923943][T18869] Bluetooth: hci2: command tx timeout
[ 1861.189292][T23635] netlink: 60 bytes leftover after parsing attributes in process `syz.5.3546'.
[ 1861.408108][T23635] unsupported nlmsg_type 40
[ 1862.000615][T18869] Bluetooth: hci2: command tx timeout
[ 1862.380816][T23488] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1862.421452][T23488] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1862.451160][T23488] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1862.474307][T23488] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1862.611595][T23661] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3552'.
[ 1862.628812][T23659] netdevsim netdevsim5: Direct firmware load for ./file0 failed with error -2
[ 1862.892398][   T28] kauditd_printk_skb: 19 callbacks suppressed
[ 1862.892416][   T28] audit: type=1326 audit(1754702175.197:1907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23658 comm="syz.5.3554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a50d8ebe9 code=0x7ffc0000
[ 1862.924518][T23659] netdevsim netdevsim5: Falling back to sysfs fallback for: ./file0
[ 1862.964675][T23664] netlink: 96 bytes leftover after parsing attributes in process `syz.5.3554'.
[ 1863.005250][   T28] audit: type=1326 audit(1754702175.197:1908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23658 comm="syz.5.3554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a50d8ebe9 code=0x7ffc0000
[ 1863.075689][   T28] audit: type=1326 audit(1754702175.197:1909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23658 comm="syz.5.3554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0a50d8ebe9 code=0x7ffc0000
[ 1863.167341][T23488] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1863.191362][   T28] audit: type=1326 audit(1754702175.197:1910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23658 comm="syz.5.3554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a50d8ebe9 code=0x7ffc0000
[ 1863.256064][T23488] 8021q: adding VLAN 0 to HW filter on device team0
[ 1863.263635][   T28] audit: type=1326 audit(1754702175.197:1911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23658 comm="syz.5.3554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a50d8ebe9 code=0x7ffc0000
[ 1863.289366][   T42] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1863.296608][   T42] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1863.325855][   T42] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1863.333220][   T42] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1863.376504][   T28] audit: type=1326 audit(1754702175.197:1912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23658 comm="syz.5.3554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f0a50d8ebe9 code=0x7ffc0000
[ 1863.558904][   T28] audit: type=1326 audit(1754702175.197:1913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23658 comm="syz.5.3554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a50d8ebe9 code=0x7ffc0000
[ 1863.642156][   T28] audit: type=1326 audit(1754702175.197:1914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23658 comm="syz.5.3554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a50d8ebe9 code=0x7ffc0000
[ 1863.666049][   T28] audit: type=1326 audit(1754702175.237:1915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23658 comm="syz.5.3554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f0a50d8ebe9 code=0x7ffc0000
[ 1864.419989][   T28] audit: type=1326 audit(1754702175.237:1916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23658 comm="syz.5.3554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a50d8ebe9 code=0x7ffc0000
[ 1864.511315][T23488] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1864.871463][T23703] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3562'.
[ 1865.258391][T23488] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1865.600183][T23488] veth0_vlan: entered promiscuous mode
[ 1865.701571][T23488] veth1_vlan: entered promiscuous mode
[ 1865.819873][T23488] veth0_macvtap: entered promiscuous mode
[ 1865.872980][T23488] veth1_macvtap: entered promiscuous mode
[ 1865.950051][T23488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1865.966924][T23488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1865.979396][T23488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1865.991925][T23488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1866.013528][T23488] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1866.055692][T23488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1866.089603][T23488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1866.120280][T23488] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1866.185329][T23488] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1866.450906][T23488] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1866.564301][T23488] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1866.593797][T23488] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1866.652490][T23488] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1866.705933][T23488] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1867.064919][ T8887] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1867.121197][ T8887] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1867.280050][ T8887] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1867.305203][ T8887] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1870.130887][T23780] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3573'.
[ 1873.067089][T23820] IPVS: fo: SCTP 172.20.20.187:0 - no destination available
[ 1873.831101][T17408] IPVS: starting estimator thread 0...
[ 1873.930623][T23821] IPVS: using max 17 ests per chain, 40800 per kthread
[ 1874.267580][T23831] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3586'.
[ 1878.787551][T23864] loop1: detected capacity change from 0 to 256
[ 1879.893700][T23864] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1887.639434][ T5873] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[ 1888.310370][ T5873] usb 2-1: Using ep0 maxpacket: 32
[ 1888.332597][ T5873] usb 2-1: config 0 has an invalid interface number: 4 but max is 0
[ 1888.355309][ T5873] usb 2-1: config 0 has no interface number 0
[ 1888.364637][ T5873] usb 2-1: config 0 interface 4 has no altsetting 0
[ 1888.386315][ T5873] usb 2-1: New USB device found, idVendor=1199, idProduct=6802, bcdDevice=3c.48
[ 1888.400350][ T5873] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1888.408912][ T5873] usb 2-1: Product: syz
[ 1888.415309][ T5873] usb 2-1: Manufacturer: syz
[ 1888.421029][ T5873] usb 2-1: SerialNumber: syz
[ 1888.433476][ T5873] usb 2-1: config 0 descriptor??
[ 1888.675659][ T5873] sierra 2-1:0.4: Sierra USB modem converter detected
[ 1888.740744][ T5873] usb 2-1: Sierra USB modem converter now attached to ttyUSB0
[ 1888.769425][ T5873] usb 2-1: USB disconnect, device number 19
[ 1888.799279][ T5873] sierra ttyUSB0: Sierra USB modem converter now disconnected from ttyUSB0
[ 1888.969981][ T5873] sierra 2-1:0.4: device disconnected
[ 1890.566355][T23998] IPVS: fo: SCTP 172.20.20.187:0 - no destination available
[ 1894.000851][T18869] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[ 1894.010301][T18869] Bluetooth: hci2: Injecting HCI hardware error event
[ 1894.022017][T23207] Bluetooth: hci2: hardware error 0x00
[ 1894.800677][T17408] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[ 1895.018547][T17408] usb 2-1: Using ep0 maxpacket: 32
[ 1895.042952][T17408] usb 2-1: config 0 has an invalid interface number: 126 but max is 0
[ 1895.080848][T17408] usb 2-1: config 0 has no interface number 0
[ 1895.135294][T17408] usb 2-1: config 0 interface 126 altsetting 16 bulk endpoint 0x6 has invalid maxpacket 1023
[ 1895.187039][T17408] usb 2-1: config 0 interface 126 altsetting 16 bulk endpoint 0x82 has invalid maxpacket 8
[ 1895.321319][T24051] IPVS: fo: SCTP 172.20.20.187:0 - no destination available
[ 1895.952323][T17408] usb 2-1: config 0 interface 126 has no altsetting 0
[ 1895.975580][T17408] usb 2-1: New USB device found, idVendor=09c4, idProduct=0011, bcdDevice=b0.1c
[ 1896.005388][T17408] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1896.056092][T17408] usb 2-1: Product: syz
[ 1896.076379][T17408] usb 2-1: Manufacturer: syz
[ 1896.096686][T17408] usb 2-1: SerialNumber: syz
[ 1896.118158][T17408] usb 2-1: config 0 descriptor??
[ 1896.149294][T24042] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1896.167054][T23207] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[ 1896.175516][T24042] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1896.615690][T17408] ir_usb 2-1:0.126: IR Dongle converter detected
[ 1896.833450][T17408] usb 2-1: IR Dongle converter now attached to ttyUSB0
[ 1896.906118][T24070] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3647'.
[ 1897.026556][T17392] usb 2-1: USB disconnect, device number 20
[ 1897.234668][T17392] ir-usb ttyUSB0: IR Dongle converter now disconnected from ttyUSB0
[ 1897.275931][T17392] ir_usb 2-1:0.126: device disconnected
[ 1905.199314][T18869] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1905.218118][T18869] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1905.234151][T18869] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1905.252974][T18869] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1905.261398][T18869] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1905.272564][T18869] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1905.558980][ T5998] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1905.880761][ T5998] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1906.409743][ T5998] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1907.002731][ T5998] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1907.369819][T23207] Bluetooth: hci3: command tx timeout
[ 1907.494191][T24173] chnl_net:caif_netlink_parms(): no params data found
[ 1909.416235][T24226] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3679'.
[ 1909.486729][T23207] Bluetooth: hci3: command tx timeout
[ 1909.661468][T24173] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1909.670522][T24173] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1909.679670][T24173] bridge_slave_0: entered allmulticast mode
[ 1909.688621][T24173] bridge_slave_0: entered promiscuous mode
[ 1909.818033][T24173] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1909.825557][T24173] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1909.935280][T24173] bridge_slave_1: entered allmulticast mode
[ 1909.960976][T24173] bridge_slave_1: entered promiscuous mode
[ 1909.967186][T17392] usb 2-1: new full-speed USB device number 21 using dummy_hcd
[ 1910.223220][T17392] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1910.484728][T17392] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1910.495342][T17392] usb 2-1: New USB device found, idVendor=10c4, idProduct=8acf, bcdDevice= 0.00
[ 1910.504977][T17392] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1910.526936][T17392] usb 2-1: config 0 descriptor??
[ 1911.001606][T24173] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1911.046035][T17392] hid-u2fzero 0003:10C4:8ACF.000C: unknown main item tag 0x0
[ 1911.072162][T17392] hid-u2fzero 0003:10C4:8ACF.000C: unknown main item tag 0x0
[ 1911.090345][T17392] hid-u2fzero 0003:10C4:8ACF.000C: unknown main item tag 0x0
[ 1911.100646][T17392] hid-u2fzero 0003:10C4:8ACF.000C: unknown main item tag 0x0
[ 1911.109024][T17392] hid-u2fzero 0003:10C4:8ACF.000C: unknown main item tag 0x0
[ 1911.145345][T17392] hid-u2fzero 0003:10C4:8ACF.000C: hidraw0: USB HID v0.00 Device [HID 10c4:8acf] on usb-dummy_hcd.1-1/input0
[ 1911.211553][T17392] hid-u2fzero 0003:10C4:8ACF.000C: U2F Zero LED initialised
[ 1911.237245][T17392] general protection fault, probably for non-canonical address 0xdffffc0000000015: 0000 [#1] PREEMPT SMP KASAN
[ 1911.249037][T17392] KASAN: null-ptr-deref in range [0x00000000000000a8-0x00000000000000af]
[ 1911.257609][T17392] CPU: 0 PID: 17392 Comm: kworker/0:1 Not tainted 6.6.101-syzkaller #0
[ 1911.265989][T17392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1911.276709][T17392] Workqueue: usb_hub_wq hub_event
[ 1911.281810][T17392] RIP: 0010:u2fzero_rng_read+0x233/0x630
[ 1911.287491][T17392] Code: 10 42 80 3c 38 00 74 08 48 89 df e8 87 1e fa f9 41 bf a8 00 00 00 4c 03 3b 4c 89 f8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 74 08 4c 89 ff e8 ff 1e fa f9 48 8d 44 24 60 49 89 07
[ 1911.307201][T17392] RSP: 0018:ffffc90003f06780 EFLAGS: 00010202
[ 1911.313375][T17392] RAX: 0000000000000015 RBX: ffff8880637d4030 RCX: dffffc0000000000
[ 1911.321521][T17392] RDX: 0000000000000000 RSI: ffffc90003f068a0 RDI: ffff88802434b168
[ 1911.329552][T17392] RBP: ffffc90003f06998 R08: 0000000000000000 R09: 0000000000000000
[ 1911.337570][T17392] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880637d4300
[ 1911.345675][T17392] R13: 1ffff920007e0cf8 R14: ffff8880637d4418 R15: 00000000000000a8
[ 1911.353984][T17392] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[ 1911.363178][T17392] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1911.370056][T17392] CR2: 00007f1d38780000 CR3: 000000007a5df000 CR4: 00000000003506f0
[ 1911.378304][T17392] Call Trace:
[ 1911.381901][T17392]  <TASK>
[ 1911.384921][T17392]  ? u2fzero_brightness_set+0x2a0/0x2a0
[ 1911.390756][T17392]  ? add_early_randomness+0x1e/0x1a0
[ 1911.396430][T17392]  ? mutex_unlock+0x10/0x10
[ 1911.401299][T17392]  ? u2fzero_brightness_set+0x2a0/0x2a0
[ 1911.407016][T17392]  add_early_randomness+0x7a/0x1a0
[ 1911.412518][T17392]  hwrng_register+0x3db/0x4a0
[ 1911.417277][T17392]  devm_hwrng_register+0x47/0xb0
[ 1911.422562][T17392]  u2fzero_probe+0x348/0x460
[ 1911.427458][T17392]  hid_device_probe+0x293/0x5b0
[ 1911.432732][T17392]  ? hid_uevent+0x350/0x350
[ 1911.437425][T17392]  really_probe+0x25b/0xb40
[ 1911.442085][T17392]  ? pm_runtime_barrier+0x14b/0x1c0
[ 1911.447442][T17392]  __driver_probe_device+0x18c/0x330
[ 1911.453000][T17392]  driver_probe_device+0x4f/0x420
[ 1911.458111][T17392]  __device_attach_driver+0x2ca/0x520
[ 1911.463595][T17392]  bus_for_each_drv+0x24b/0x2d0
[ 1911.468540][T17392]  ? coredump_store+0x90/0x90
[ 1911.473406][T17392]  ? bus_find_device+0x320/0x320
[ 1911.478500][T17392]  __device_attach+0x2b5/0x400
[ 1911.483426][T17392]  ? device_attach+0x20/0x20
[ 1911.488098][T17392]  ? do_raw_spin_unlock+0x121/0x230
[ 1911.493426][T17392]  bus_probe_device+0x180/0x260
[ 1911.498316][T17392]  device_add+0x85b/0xc20
[ 1911.502669][T17392]  hid_add_device+0x38d/0x530
[ 1911.507362][T17392]  usbhid_probe+0xe02/0x1220
[ 1911.512000][T17392]  usb_probe_interface+0x5a4/0xb00
[ 1911.517222][T17392]  ? usb_register_driver+0x3d0/0x3d0
[ 1911.522528][T17392]  really_probe+0x25b/0xb40
[ 1911.527050][T17392]  ? pm_runtime_barrier+0x14b/0x1c0
[ 1911.532424][T17392]  __driver_probe_device+0x18c/0x330
[ 1911.537827][T17392]  driver_probe_device+0x4f/0x420
[ 1911.542872][T17392]  __device_attach_driver+0x2ca/0x520
[ 1911.548460][T17392]  bus_for_each_drv+0x24b/0x2d0
[ 1911.553333][T17392]  ? coredump_store+0x90/0x90
[ 1911.558027][T17392]  ? bus_find_device+0x320/0x320
[ 1911.563087][T17392]  __device_attach+0x2b5/0x400
[ 1911.567877][T17392]  ? device_attach+0x20/0x20
[ 1911.572488][T17392]  ? __kmem_cache_free+0xba/0x1f0
[ 1911.577904][T17392]  ? do_raw_spin_unlock+0x121/0x230
[ 1911.583413][T17392]  bus_probe_device+0x180/0x260
[ 1911.588295][T17392]  device_add+0x85b/0xc20
[ 1911.592664][T17392]  usb_set_configuration+0x1a79/0x20c0
[ 1911.598300][T17392]  usb_generic_driver_probe+0x8d/0x150
[ 1911.603798][T17392]  usb_probe_device+0x13d/0x280
[ 1911.608695][T17392]  ? usb_register_device_driver+0x230/0x230
[ 1911.614712][T17392]  really_probe+0x25b/0xb40
[ 1911.619412][T17392]  ? pm_runtime_barrier+0x14b/0x1c0
[ 1911.624817][T17392]  __driver_probe_device+0x18c/0x330
[ 1911.630248][T17392]  driver_probe_device+0x4f/0x420
[ 1911.635308][T17392]  __device_attach_driver+0x2ca/0x520
[ 1911.640811][T17392]  bus_for_each_drv+0x24b/0x2d0
[ 1911.645682][T17392]  ? coredump_store+0x90/0x90
[ 1911.650476][T17392]  ? bus_find_device+0x320/0x320
[ 1911.655451][T17392]  __device_attach+0x2b5/0x400
[ 1911.660236][T17392]  ? device_attach+0x20/0x20
[ 1911.664927][T17392]  ? __kmem_cache_free+0xba/0x1f0
[ 1911.669970][T17392]  ? do_raw_spin_unlock+0x121/0x230
[ 1911.675188][T17392]  bus_probe_device+0x180/0x260
[ 1911.680127][T17392]  device_add+0x85b/0xc20
[ 1911.684566][T17392]  usb_new_device+0xa31/0x1630
[ 1911.689349][T17392]  ? usb_disconnect+0x8a0/0x8a0
[ 1911.694385][T17392]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1911.699602][T17392]  ? lockdep_hardirqs_on+0x98/0x150
[ 1911.704825][T17392]  hub_event+0x2962/0x49c0
[ 1911.709380][T17392]  ? hub_post_resume+0x120/0x120
[ 1911.714329][T17392]  ? read_lock_is_recursive+0x20/0x20
[ 1911.719711][T17392]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1911.724925][T17392]  ? process_scheduled_works+0x957/0x15b0
[ 1911.730839][T17392]  ? process_scheduled_works+0x957/0x15b0
[ 1911.736569][T17392]  process_scheduled_works+0xa45/0x15b0
[ 1911.742247][T17392]  ? assign_work+0x400/0x400
[ 1911.746881][T17392]  ? assign_work+0x39e/0x400
[ 1911.751493][T17392]  worker_thread+0xa55/0xfc0
[ 1911.756108][T17392]  kthread+0x2fa/0x390
[ 1911.760238][T17392]  ? pr_cont_work+0x560/0x560
[ 1911.764951][T17392]  ? kthread_blkcg+0xd0/0xd0
[ 1911.769550][T17392]  ret_from_fork+0x48/0x80
[ 1911.773975][T17392]  ? kthread_blkcg+0xd0/0xd0
[ 1911.778572][T17392]  ret_from_fork_asm+0x11/0x20
[ 1911.783397][T17392]  </TASK>
[ 1911.786452][T17392] Modules linked in:
[ 1911.819790][T23207] Bluetooth: hci3: command tx timeout
[ 1911.846623][T17392] ---[ end trace 0000000000000000 ]---
[ 1911.852269][T17392] RIP: 0010:u2fzero_rng_read+0x233/0x630
[ 1911.858707][T17392] Code: 10 42 80 3c 38 00 74 08 48 89 df e8 87 1e fa f9 41 bf a8 00 00 00 4c 03 3b 4c 89 f8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 74 08 4c 89 ff e8 ff 1e fa f9 48 8d 44 24 60 49 89 07
[ 1911.878718][T17392] RSP: 0018:ffffc90003f06780 EFLAGS: 00010202
[ 1911.889078][T17392] RAX: 0000000000000015 RBX: ffff8880637d4030 RCX: dffffc0000000000
[ 1911.902703][T17392] RDX: 0000000000000000 RSI: ffffc90003f068a0 RDI: ffff88802434b168
[ 1911.911304][T17392] RBP: ffffc90003f06998 R08: 0000000000000000 R09: 0000000000000000
[ 1911.919636][T17392] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880637d4300
[ 1911.928161][T17392] R13: 1ffff920007e0cf8 R14: ffff8880637d4418 R15: 00000000000000a8
[ 1911.936459][T17392] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[ 1911.945543][T17392] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1911.952261][T17392] CR2: 00007ffde26f2228 CR3: 000000000cb30000 CR4: 00000000003506f0
[ 1911.960908][T17392] Kernel panic - not syncing: Fatal exception
[ 1911.967575][T17392] Kernel Offset: disabled
[ 1911.972218][T17392] Rebooting in 86400 seconds..