last executing test programs:

13.820086878s ago: executing program 3 (id=1091):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000400)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xd, &(0x7f0000000700)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x11}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r4, 0x0, 0x8, 0x0, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'xchacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd301e5a47b2f3caa73dcd2a6a370554375a", 0x20)
r6 = accept4(r5, 0x0, 0x0, 0x0)
sendmmsg(r6, &(0x7f0000001600)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
recvmmsg(r6, &(0x7f0000002e40)=[{{0x0, 0x0, &(0x7f0000002740)=[{&(0x7f0000000440)=""/4096, 0x1000}], 0x1}, 0xa}], 0x1, 0x2141, 0x0)
r7 = openat$sequencer2(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r7, 0x40085112, &(0x7f0000000040)=@e={0xff, 0xa, 0x7, 0xf3, @SEQ_NOTEON=@special, 0x6, 0x24, 0x7})
io_setup(0x281, &(0x7f0000000100)=<r8=>0x0)
memfd_create(&(0x7f0000000600)='\xc0\x87:*\x18\xc1k\xa7\x87[\xa0o84I\xaaK\xa5\xd3\v\x86\xca<\x7f\xfd6\x8d}\xd8\xf2G\xb8\xeae)\x90\x86\xe3\x96\b\xe0\xfa\xb1\xd8N\xb2W\xcb\x8d}3lm8\xa57\xc9\x00HO\x00\x00\x00\x00R\xfc\xcb%u3\xec\xde%\x9d\xe4\x1d\rD\x82S\x17?\xd6\xb1\x9aF\xe2\xba[\xc7QR\x9f\x81\x8b\xdc\xc7\xdc\xdem\xbe\x7f2\x11\x17\xd8\xda@4\x9f\xc5*T\x1e^\xf7o\xff\xff\xff\xffwI\x02\xf3\xe3\x8d.\xd1=\xcf\xbf\x81\xb5\x8d%K\x1d\xe7_\xde\x87\xdd\xc1\xf0\x91\x1a!\xa5\xd3\v\xc9\x95d\xe3*\xa9\xfa\x99\xae\xb8\x89>\xc9\xf2/\x13{\x1a\x7f\x00\x00\x00\x00+$\xedX\xb7KV\x90\xc3D-\xf3\x8c\x9a\x15\x9c\xf5\xb4O\x17@d\x81+\xf6\xe6+\xed\r\xd2\xb3\xaa\x9b\x7fC\'\xa2\xf6\x12\xa1\x15Punfo\x7f\x92G\x0e.\xce\xd8h\xb9p2\xccC\xbaH\xc4\xdc\xe2\xa1%)\x85\xc7O]\'9\x92\xad\xfbJ\x02\x1d\x91-\xc99\t&\xbdq\x06`T\xc8\x92\xaf\xad\x06\xdd\xaf\x84\xf4\"\x13\xcf\xe5\x93D\xad~F\xe5\x19\xaa\xaa\xb2\xb1\x03m\x82+\x06\x1bF^\xd3n\xc4F\xc1\xc08\x94\xe6\xe5\x1f\xa7\xf6\xcaA\x90T\xf1\x1b\xe6\xb9\xe7\xff\xc5H\x04\x93\xca\xad\x17UlY\x9a}\r4\xac\x93\xac\v2\xc6\xf9\xbe\xfeI\x8b\xd4/`\xab\x1e\xcf\x7f\b\x94\xfe2.{\xc1\xbe\x9bth~\xcb\xb9E\x10W\xed\xed51[z\xb6>\xd3\xe7Y*\xdb\xa7h\nt\xddP\n\xc5\xeb\xb1ux\x94@\x00\x00g\x02D9\x83\xa7\x97\xf4\xb25wL\x97\xfb\xb9\xccj\xb3\x96\xc1@\xee`{\x87\xa8]\x96\x9cjF^+\xcc1l\xcbmA,5\xc4J\xcab\xa6\x91\xa0\xeaU\x92\x01\x1f,\xfa\x10\"+\x01\x00\x91\xe9\x1cz\xd1f\x901\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00o\"\x85Np\xba\x0e<\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb8V\xe4\xa1C\x90\x17\xcc{\x9d\xf1\xbd\xb0\xca\x03\x96\x85h}\x8f\x1c)X\xc83rA\x90r\xb6\xba!;\x95\xaf\xe0\xcb\xec\xcd$\x02f\x8c4\x1aH\x8fC\xbfr\xd39\x92\x1fShu\x9e\b\xd4m\xa8\x16\xa6\xd5\xae\xcb\x03oFQ\"\xf7F\xb7\vp\xb6\xe5\x92\xe2O}.\x95A\x9bH\x8d\xa1\x80\x1b\x14u\xfdK\xce\xaf\x94i\xf1s\xf7\xb8Jq\xcb3=M\x84\x7f\x181/\x9bQ|4\xaf\xcf\r\xcfz Z\x19\xad_\x13\x99\xf7\xfdOD\xd3\x9d\x9d\xb8d5g\xf1\x84\xbd\xe5\xa2\xb3\xda\x82\x10n1\xed\xba\xe3\x96\x85\"\xb6\xa6n\xe7\xfd\xd4\a\x97\x85\x810/\xc4o\x11\xc8\x1b\xc0\f\xeec\xa4\x7f|P\x00\x00\x00\x000p\xaf\xfdk\xac\xcc\xac`\xc9\a<\xadIt\x9b\xeb\x8a\xfe\x9b\aO\xa5?h\xe1B\xa8C\x8e;/\xa8\x94\x1bs\xf0\xa9>\x9e\xff\xc9\xd2\x00h\xcb\xfb\xb6Y\xbfp\xd8\x90\x96\xec\x83N\x8bNnx\xb6\x16Y\xf8sU\xae\xa0\b\x8cLq\n\x1f\x99t\xb6\xffozu\xa0B(\xe9?\xcdA\xba\xa8\x13Qc\xda\x16?\xe8z\x8f\x862!\xbf\xa4\xb8\x9bC\xe9Od\xe8\xd32m\x06RX\x7f\xf7\xc2\n\x94\xe5P:l\xd9\xd5\xbd\rH6-\x8a\x12m\xff\xe9\xa0\r\tk\xda\xa4q(\xae\\\xb6\x14I\xf7\xe0z\xf1<cN\xb6p\xd5\rb\xfa\xdf\v\x00X9\xcd\xb2\xfaF\xb9\xaf\x88X\xbc', 0x0)
io_submit(r8, 0x0, 0x0)

12.12573081s ago: executing program 3 (id=1095):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$hfs(&(0x7f0000000840), &(0x7f0000000100)='./file0\x00', 0x2800000, &(0x7f0000000180)={[{@codepage={'codepage', 0x3d, 'koi8-r'}}, {@creator={'creator', 0x3d, "a7491b91"}}, {@part={'part', 0x3d, 0x8}}]}, 0x1, 0x2e9, &(0x7f0000000200)="$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")

10.66813599s ago: executing program 0 (id=1098):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x20081e, &(0x7f0000000040), 0x1, 0x4ef, &(0x7f00000003c0)="$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")
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_genetlink_get_family_id$batadv(0x0, r0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f0000000180)={0x1, [<r5=>0x0]}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r4, 0x84, 0x66, &(0x7f00000002c0)={r5, 0xa9ac}, &(0x7f0000000300)=0x8)

10.099885147s ago: executing program 3 (id=1099):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x20081e, &(0x7f0000000040), 0x1, 0x4ef, &(0x7f00000003c0)="$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")
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_genetlink_get_family_id$batadv(0x0, r0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f0000000180)={0x1, [<r5=>0x0]}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r4, 0x84, 0x66, &(0x7f00000002c0)={r5, 0xa9ac}, &(0x7f0000000300)=0x8)

9.306236147s ago: executing program 0 (id=1101):
bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[], 0x48)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f00000002c0), 0x4000, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback=0x5, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, @void, @value}, 0x94)
futex(0x0, 0x4, 0x1, 0x0, &(0x7f0000000280)=0x1, 0x2)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x0)
mkdir(0x0, 0x92)
r1 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_inet_SIOCSARP(r1, 0x8955, 0x0)
syz_usb_connect$cdc_ncm(0x0, 0x76, &(0x7f0000000340)={{0x12, 0x1, 0x310, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x64, 0x2, 0x1, 0x80, 0xe0, 0xd, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0x5}, {0xd, 0x24, 0xf, 0x1, 0x5, 0x2, 0x8, 0x3}, {0x6, 0x24, 0x1a, 0x8, 0x8}, [@mdlm_detail={0x4, 0x24, 0x13, 0x6}, @mdlm_detail={0x4}]}, {{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x8, 0x80, 0x40}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x20, 0x6, 0x6a}}, {{0x9, 0x5, 0x3, 0x2, 0x1bf, 0x2, 0x5, 0xb}}}}}}}]}}, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0})

9.172669979s ago: executing program 2 (id=1102):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x20081e, &(0x7f0000000040), 0x1, 0x4ef, &(0x7f00000003c0)="$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")
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r4, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r4, &(0x7f0000847fff)='X', 0x14069, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f0000000180)={0x1, [<r5=>0x0]}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r4, 0x84, 0x66, &(0x7f00000002c0)={r5, 0xa9ac}, &(0x7f0000000300)=0x8)

8.747870775s ago: executing program 1 (id=1104):
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f00000000c0)='./file4\x00', 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x21, 0x5548, &(0x7f00000058c0)="$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")
syz_init_net_socket$ax25(0x3, 0x5, 0xcf)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x1ff, 0x1, 0x0, 0x1000, &(0x7f0000003000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0xe8, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000180)={0x4, 0x2, 0x0, 0x2, 0x4, 0xe, 0x0, 0x36a, 0x20003f})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r3, &(0x7f00000000c0)='p', 0x1, 0x2)

8.30569639s ago: executing program 3 (id=1105):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r1 = syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000002280)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000006340)={0x2020, 0x0, <r2=>0x0}, 0x2058)
write$FUSE_LSEEK(r0, &(0x7f00000021c0)={0x18, 0x0, r2, {0x7}}, 0x18)
read$FUSE(r0, &(0x7f0000000100)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_IOCTL(r0, &(0x7f0000002140)={0x20, 0x0, r3, {0x0, 0x0, 0x80003ff}}, 0x20)
syz_fuse_handle_req(r0, 0x0, 0x0, &(0x7f0000008c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000008700)=ANY=[@ANYBLOB="3000000000000000000000000000000000000000643b1475000000000000000006"], 0x0, 0x0, 0x0, 0x0})
read$FUSE(r0, &(0x7f000000ce00)={0x2020, 0x0, <r4=>0x0}, 0x2020)
getdents64(r1, 0x0, 0x300)
getdents64(r1, 0x0, 0x0)
getdents(r1, 0x0, 0x0)
write$FUSE_INTERRUPT(r0, &(0x7f0000000080)={0x10, 0x0, r4}, 0x10)

7.59626259s ago: executing program 2 (id=1107):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_ext={0x1c, 0x1b, &(0x7f0000000980)=ANY=[@ANYBLOB="180000000600000000000000000200", @ANYBLOB="0000000000000000b702000014000000b70300000000000085000000838a1657ef6dc4ac56000095000000000000ff000000000000000018110000b07ee96a4122dc4b03527731114b6bce33e9", @ANYRES32, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa2000000"], &(0x7f0000000540)='syzkaller\x00', 0x8, 0x7d, &(0x7f00000007c0)=""/125, 0x41100, 0x60, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000880)={0x5, 0x10}, 0x10, 0x1e3e6, 0xffffffffffffffff, 0x1, &(0x7f0000000600)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000b40)=[{0x2, 0x5, 0x3, 0x3}], 0x10, 0x5, @void, @value}, 0x94)
syz_io_uring_setup(0x4333, &(0x7f00000000c0)={0x0, 0x80000000, 0x100}, &(0x7f0000ff5000), &(0x7f0000ff4000))
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x104880, 0x0, 0x1, 0x0, &(0x7f0000000200))
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x1400c, &(0x7f0000000680)={[{@test_dummy_encryption}, {@init_itable}, {@noload}]}, 0x3, 0x470, &(0x7f0000001240)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000100)='./bus\x00', 0x0, 0x0, 0x82, 0x0, &(0x7f0000000080))
syz_mount_image$ext4(0x0, &(0x7f00000000c0)='./bus/file0\x00', 0x80000, 0x0, 0x1, 0x0, &(0x7f0000000000))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x101800, 0x145)
renameat2(r4, &(0x7f00000001c0)='./bus/file0\x00', r4, &(0x7f0000000140)='./file0\x00', 0x4)

7.417865322s ago: executing program 4 (id=1108):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x2500, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="6501000014"], 0x188}}, 0x0)
sendmsg$nl_xfrm(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
r3 = socket$kcm(0x2d, 0x0, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, &(0x7f0000000100)={r3})
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20004015}, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0xd, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb714000008"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x3, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41000, 0x39, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x6, 0x200008, 0x5, 0x20000}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c00090008000000", @ANYRES32=r4], 0x4c}}, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x18)
sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x40000000000009f, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="2800000010000108000000000000000002000000", @ANYRES32=0x0, @ANYBLOB="b40200000000000008001b"], 0x28}}, 0x0)

6.470449775s ago: executing program 2 (id=1109):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000080)={0x0, 0x1, 0x3000, 0x2000, &(0x7f0000000000/0x2000)=nil})

6.422608446s ago: executing program 1 (id=1110):
unshare(0x2a020400)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x17, 0xf, &(0x7f0000001840)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000080)={r1}, 0xc)

6.421658876s ago: executing program 0 (id=1111):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, 0x0, 0x53)

6.363372276s ago: executing program 4 (id=1112):
socket$nl_route(0x10, 0x3, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r3, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000080)={<r4=>0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x4e22, 0x3, @remote, 0x5}]}, &(0x7f0000000440)=0x10)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r3, 0x84, 0xa, &(0x7f0000000100)={0x6805, 0x0, 0x2, 0x9, 0x1ff, 0x5, 0x1ea6, 0xc, r4}, 0x20)

6.302029877s ago: executing program 1 (id=1113):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB], 0x1c}}, 0x8040)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

6.194831489s ago: executing program 2 (id=1114):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x9)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$PNPIPE_ENCAP(0xffffffffffffffff, 0x113, 0x1, 0x0, 0x0)
ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0)
r4 = socket(0x10, 0x3, 0x0)
write(r4, &(0x7f0000000180), 0x0)
recvmmsg(r4, &(0x7f00000021c0), 0x5b, 0x40, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x90060, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0], 0xfb, 0x2b3, &(0x7f0000000580)="$eJzs3c9qK1UYAPBv0iTNtYtk4UoEZ3EXbiw3bl3Yi1QQu1Ky8A/oxdsLchMKDQSqYuiqT+DChe/hzr3gxjcQfAB3Fikcmck0iW2amtZYqb/fpqfnfN+cb3KmncUwJ5++PDh7ejB8dvzVL9FqZVHbiZ04zaITtTiXKgEA3AunKcVvN7q/12vrqgkAWK+5+3/jipDNy11vrrssAGCN3v/gw3cf7+3tvpfnrYjByaiXxeTnZPzxs/g8+rEfj6IdZ7NnASlN2m+/s7cb9bzQiYeD8ahXZA4++Wn+sUGR3412dBbnd/OJufzxqNeIFyKybFZqO168lF+M776+ID96zXi1VWUW829HO37+LA6iH0/LZxqz+b/u5vlb6Zvfv/yoCC7ys/Got1nGzaSNf29VAAAAAAAAAAAAAAAAAAAAAAC477bzqU48HBRd1f47G2fl+PZfxsv9dWrl+CQ/i2iWjQv7A41TfHe+v86jPM9TtZHPbH+ferxUj/qdnTgAAAAAAAAAAAAAAAAAAAD8hwyPvnj+pN/fP/xHGtVL/tPX+m96nJ25nldiefDmSnPFRhVe1Hoxpvvjx4NpT3ESNyl+1MgjltXcuNTzoKjn+iP/kVJKWRZxu2VqlHPVbnUBbC2PKQ78w7dbrz1/kl33GbbOF+77+aFmHA6Ppmtartd+ZKtUmFa6/JpLYprVJ/W3jrN1yz+iN36dTFb1ZCucRaNsnNTjqsuvtdL1PKmjtv5/QQAAAAAAAAAAAAAAAAAAQGX20u+CweP5Xx5cHPVqMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD3xuz7/1dojKvkxTEppfG0pxmHwzs+RQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP4H/gwAAP//dMhpYg==")
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x3, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r0, &(0x7f0000000240)=':', 0x1, 0x24008844, &(0x7f00000001c0)={0xa, 0x2, 0x398, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000003c0)='scalable\x00', 0x9)
shutdown(r0, 0x1)

5.938987522s ago: executing program 0 (id=1115):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x20081e, &(0x7f0000000040), 0x1, 0x4ef, &(0x7f00000003c0)="$eJzs3U1vW1kZAODXzpeTyUwywywAAVOGgYKqOonbRlUXUFYIoUqILkFqQ+JGUew4ip3ShC7S/4BEJVaw5Aew7oo9GwQ7NmWBxEcEaiqxMLrXN6mb2k1oEjuKn0e6uvfcY/s9J849x36d+AQwsC5FxE5EjEbE/YiYys7nsi1ut7bkdi92Hy/u7T5ezEWzefefubQ+ORdt90m8lz1mISJ+9L2In+bejFvf2l5dqFTKG63i+Eyjuj5T39q+ulJdWC4vl9dKpfm5+dmb126UTq2vn1RHs6MvP//Dzrd+njRrMjvT3o/T1Or6yEGcxHBE/OAsgvXBUNaf0X43hHeSj4iPIuLT9PqfiqH02QQALrJmcyqaU+1lAOCiy6c5sFy+mOUCJiOfLxZbObyPYyJfqdUbVx7UNteWWrmy6RjJP1iplGezXOF0jOSS8lx6/KpcOlS+FhEfRsQvxsbTcnGxVlnq5wsfABhg7x2a//8z1pr/AYALrtDvBgAAPWf+B4DBY/4HgMFj/geAwWP+B4DBY/4HgMFj/geAgfLDO3eSrbmXff/10sOtzdXaw6tL5fpqsbq5WFysbawXl2u15fQ7e6pHPV6lVlufux6bj6a/vV5vzNS3tu9Va5trjXvp93rfK4/0pFcAwNt8+MmzP+ciYufWeLpF21oO5mq42PL9bgDQN0P9bgDQN1b7gsF1gvf40gNwQXRYovc1hYgYP3yy2Ww2z65JwBm7/AX5fxhUbfl/fwUMA0b+HwaX/D8MrmYzd9w1/+O4NwQAzjc5fqDL5/8fZfvfZh8O/GTp8C2enmWrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4HzbX/+3mK0FPhn5fLEY8X5ETMdI7sFKpTwbER9ExJ/GRsaS8lyf2wwAnFT+b7ls/a/LU59NHq4dzb0cS/cR8bNf3f3lo4VGY+OPyfl/HZxvPM3Ol/rRfgDgKPvzdLpveyP/Yvfx4v7Wy/b8/bsRUWjF39sdjb2D+MMxnO4LMRIRE//OZeWWXFvu4iR2nkTE5zv1PxeTaQ6ktfLp4fhJ7Pd7Gj//Wvx8WtfaJz+Lz51CW2DQPEvGn9udrr98XEr3na//QjpCnVw2/iUPtbiXjoGv4u+Pf0Ndxr9Lx41x/fffbx2Nv1n3JOKLwxH7sffaxp/9+Lku8T87Zvy/fOkrn3ara/464nJ0jt8ea6ZRXZ+pb21fXakuLJeXy2ul0vzc/OzNazdKM2mOeqb7bPCPW1c+6FaX9H+iS/zCEf3/+jH7/5v/3v/xV98S/5tf6xQ/Hx+/JX4yJ37jmPEXJn5X6FaXxF/q0v+jnv8rx4z//K/bbywbDgD0T31re3WhUilv9PJg/4VET4M6uAAHyW/NOWhGx4Pv9CrWaPxf92o23ylWtxHjNLJuwHlwcNFHxMt+NwYAAAAAAAAAAAAAAOioF/+x1O8+AgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcHH9LwAA//89fM7W")
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_genetlink_get_family_id$batadv(0x0, r0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f0000000180)={0x1, [<r5=>0x0]}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r4, 0x84, 0x66, &(0x7f00000002c0)={r5, 0xa9ac}, &(0x7f0000000300)=0x8)

5.208178002s ago: executing program 4 (id=1116):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040), 0x8)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x40400, 0x0)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x200000, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xb, 0xd, 0x200cc, 0x6, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)='D', &(0x7f0000000240), 0x4b2, r3}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000700)={0x0, &(0x7f0000000540)=""/245, &(0x7f0000000640), &(0x7f0000000680), 0x2, r3}, 0x38)
close(r2)
close(0xffffffffffffffff)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r2, 0x8943, &(0x7f0000002280)={'syzkaller0\x00', @random="110000000002"})

5.094093233s ago: executing program 2 (id=1117):
r0 = syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000640)='./file1\x00', 0x0, &(0x7f0000000000)=ANY=[], 0x1, 0x60a, &(0x7f0000002780)="$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")
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
sendfile(0xffffffffffffffff, r3, &(0x7f00000000c0)=0xfffffffffffffffa, 0x7fffffff)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
r7 = socket$inet_dccp(0x2, 0x6, 0x0)
r8 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000440), 0x4001, 0x0)
lstat(&(0x7f0000000480)='./file1\x00', &(0x7f0000000e80)={0x0, 0x0, 0x0, 0x0, <r9=>0x0, <r10=>0x0})
r11 = getgid()
sendmmsg$unix(r6, &(0x7f0000002700)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000300)="e806d41c2c9982983ce1900ea0db835e87c33db4f76e4626365fdc62e41206680cd66fa653d13f3a317347720425287e6948e613e560dc5d6bfae71fceb6a627b52872e308c4efbcf9a3d4680f1a0c93ca3d027b328014c685059658b376e78b1a3a87bfb958beb497448abe0cc7eccf24e836f43f37bacefea858e52d40b068a0e9ca76604300a975efbe9b606362cc9925", 0x92}, {&(0x7f00000003c0)="97f4d3be8352a6d40edaca994244f0717fdeec871d9690c057748cc509f34a8f3114babe28a509fdbe6679cb57c12a8e8036cbfbccce76113001ab6fef2f105e57fd88c1f869a17d6a", 0x49}, {&(0x7f0000002180)="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", 0xfe}, {&(0x7f0000002280)="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", 0xdc}], 0x4, &(0x7f0000000f00)=[@rights={{0x2c, 0x1, 0x1, [r0, r2, r5, r7, r8, r0, r3]}}, @rights={{0x0, 0x1, 0x1, [r0, r5, r0]}}, @rights={{0x14, 0x1, 0x1, [r1]}}], 0x68, 0x1}}, {{&(0x7f0000000f80)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000002100)=[{&(0x7f0000001000)="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", 0x1000}, {&(0x7f0000002000)="c4ee8db6c621bb3bc03170312e58fcf32e630f9a3228a124b89c40b9b93d327a21cfcb224a9656cc40e1e79515ca0242911310c20585c34858eefba2a94f267c0b0c39580b780af1a3ab3b7233cad9ec13f06fe9f04383d6605e888c8e905162df44cf803a4e179f48289bca5db81b3e594c6b85b1f842d0b52f76dfc333a31e7f846dee6987776305e027b62cfa62d87b6fd4d01a590480747b8895c2f492424e480e6368a1f505863780656c88c88fd60000", 0xb3}, {&(0x7f0000002140)="605c2a72f41ddb9220a869c4"}, {&(0x7f00000020c0)="0c439b459789080f79b4ac2b305e4ce97e42", 0x12}], 0x4, &(0x7f0000000cc0)=[@cred={{0x1c, 0x1, 0x2, {0x0, r9, r10}}}, @cred={{0x1c, 0x1, 0x2, {r4, r9, r11}}}, @cred={{0x1c, 0x1, 0x2, {r4, r9, r11}}}, @rights={{0x38, 0x1, 0x1, [r3, r8, r1, r7, r6, 0xffffffffffffffff, r8, r5, 0xffffffffffffffff, r7, r0]}}, @rights={{0x28, 0x1, 0x1, [r1, 0xffffffffffffffff, r0, r1, r8, r2]}}, @cred={{0x1c, 0x1, 0x2, {r4, r9}}}, @cred={{0x1c, 0x1, 0x2, {r4, r9, r11}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r9, r10}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r9, r11}}}], 0x140, 0x4008045}}], 0x2, 0x41)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$inet6(0xa, 0x80001, 0x0)
r12 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r12, &(0x7f00000004c0)=""/194, 0xc2)
syz_open_dev$sndpcmc(&(0x7f0000000080), 0x0, 0x0)
r13 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r13, 0xffffffffffffffff, 0x0)

4.408932992s ago: executing program 0 (id=1118):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
fallocate(r0, 0x0, 0x10000, 0x20000)
fallocate(r0, 0x8, 0x0, 0x2000)

4.356296003s ago: executing program 3 (id=1119):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f00000001c0)=@filter={'filter\x00', 0xe, 0x0, 0xc0, [0x0, 0x20000040, 0x20000070, 0x200000a0], 0x0, 0x0, 0x0}, 0x138)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000000c0)='./file1\x00', 0x101880a, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x1, 0x550b, &(0x7f00000079c0)="$eJzs3M1rI2UYAPAn/dhv1yIevO3AIrSwiU0/Fr1V3cUP7FJWPXjSNElDdpNMadK09uTBo3jwPxEFTx79Gzx49iYeFG+Ckpmpbv0AoWlj298PJs+8b94887xhWXhmSgK4sOaSX34qxc24GhHTEXEjIjsvFUdmLQ/PRcStiJh64igV839MXIqIaxFxc5Q8z1kq3vrszvD26o9v/vz1t5dnrn/+1XeT2zUwac9HRHc7P9/r5jFt5fFRMV8btrPYXRkWMX+j+7gYp3nca25mGfZqh+tqWVxu5evT7d3+KG51avVRbLW3svntXn7B/rB1mCf7wKPaTjZuNDez2O6nWWwd5HXtH+T/tx30B3meRpHvwyx9DAaHMZ9v7jfz/Ww/zmK9Nyjm87xpo7k/isMiFpeLetppZHVsHueb/n97q93b3U+GzZ1+O+0lq5Xqi5Xq3XJ1J200B82Vcq3buLuSzLc6o2XlQbPWXWulaavTrNTT7kIy36rXy9VqMn+vudmu9ZJqtbJcWSyvLhRnd5LXHrybdBrJ/Ci+0u7tDtqdfrKV7iT5JxaSpcrySwvJ7Wry9vpGsvHw/v31jXfev/feg5fX33i1WPS3spL5pcWlpXJ1sbxUXbhA+/+4KHqM+4djKU26AICzR/8PTMLJ9f87DyNOvv8P/f9YnKn+9/z1/3svREx0/3As+n8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAvr+9kvXs9O5vLx9WL+qWLqmWJcioipiPjtH0zHpSM5p4s8s/+yfvYvNXxTiizD6BqXi+NaRKwVx69Pn/S3AAAAAOfXlx/d+jTv1vOXuUkXxGnKb9pM3fhgTPlKETE798OYsk2NXp4dU7Ls3/dM7I8pW3YD68qYkuW33GbGle0/mT4SrjwRSnmYOtVyAACAU3G0EzjdLgQAAIDT9MmkC2AySnH4KPPwWXD2l/d/PhC8emQEAAAAnEGlSRcAAAAAnLis//f7fwAAAHC+5b//BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAv7NzP7eJA1EcgJ8NXth/WrTa+7ayNyhjS9jjHiMKSBMUkANpIQ1QA7mlhAgiPA6BiEMkj20l+j7JmYxlfrxBcJgZaQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAu3Vfrxe3V7+u2Obt9O3lGAwAAAFyyrdaL+p9Z6n9t7n9vbv1s+kVElBFxae4+ik9nmaMmp3p5/ub0+epVDXcRdcLhPSbN9SUi/jTX44+uPwUAAAD4uDbL1TzN1tOf2dAF0ae0aFN++5spr4iIavaQKa085P3KFFZ/v8fxP1NavYA1zRSWltzGudLepP65H1ftpidNkZry4suORWYbOwAA0KPRWdPvLAQAAIA+/Ru6AIZRxPNW5nErcJKaZnvv81kPAAAAeIeKoQsAAAAAOlfP/3s6/2/v/D8AAAAYRjr/DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgC5tq/Vis1zN2+bs9u3kGQ0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADyxP+8oEAJhEAZ713cmc//DSoOmpiZVIHz8jcEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAm9/95f/E1DiTzL02lp5HkrVTY+vU2Ds3jv4wvn4NAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwMX+vKRACARBFMwZ/zvp+x9WEvQMIkRAw6OKWjQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPBFv/vl/8TUOJPMnTaWjkeStavG1lVj70Hj6MF4+zcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwMXO/bzGUcUBAP/OzM7WtooxSg4RUfCgF5tua2tv4kEJHvwThJBua+zWH20QW4qYizfJuRfRo4igxFv/h55b6KXeethDBc/KzM5kp23A9dfMNvl84M377jDM+75ZCPnOewkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAtfFb0zgrDguTOK3O3bp/bb3obz/UF25s31kuWhEnbSb9eHih+SFZioij3SUDAADAwZDV9X1E3M13Vos+XSjr/7y+pqj5v31qElf1/Gd1yfpw/V/X/kX75ed7z+0OtDAZp7jpuY3R8PijqfT+rznOu6f/8ope+eTLdy9Z+YWk7249O87L55l8ffPm2/0yPNRGtgDAP3Gs7qug/n2o6AddJgbAgdFrFN51/Z8tdJsTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQBvGW3G0jpOIWO5N48Lt+9fW9+pvbN9Zrtvp69e348vpPYtb5BFxbmM0PN7qbObb5StXL6yNRsNL7QcvRkRXo79ZTf/C+zNcHNHJ8xH8R0Fafdnzks/jEXT4QwkAgH0pr1pR19/Nd1aLc8lixB/fPVj/v9KIY8b6/94Hp281x2rW/4PWZjj/VjYvfrJy+crV1zYurp0fnh9+9PqJwRuDk2dOnTqzUr4rWfHGBAAAgH+nX7Vm/Z8uPrr+f6QRx4z1/6ffDL5ojpWp//c0XfTrOhMAAICD7ZmXfv8t2eN80u/H52ubm5cGk+Pu5xOTYwep/m2Hqtas/7PFrrMCAAAA2jDeSh5Y/z/biGPG9f8nv3/+x+Y9s4g4XK3/H1v/eHS2venMtTb+nLjrOQIAANCtw1Vrrv/n5f7/dHfLQxoRr748iat/AzhT/Z+989UPzbGa+/9PtjfFuZQuTZ5H2S9F9Ja6zggAAID97ImqFcX+r/nO6oc/HXmvb/8/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQNv+DAAA///fxzxy")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x14, &(0x7f0000000100)=0xa, 0x4)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
fallocate(r2, 0x0, 0x10000, 0x20000)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
fallocate(r2, 0x8, 0x0, 0x2000)

4.301850594s ago: executing program 4 (id=1120):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_ext={0x1c, 0x1b, &(0x7f0000000980)=ANY=[@ANYBLOB="180000000600000000000000000200", @ANYBLOB="0000000000000000b702000014000000b70300000000000085000000838a1657ef6dc4ac56000095000000000000ff000000000000000018110000b07ee96a4122", @ANYRES32, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa2000000"], &(0x7f0000000540)='syzkaller\x00', 0x8, 0x7d, &(0x7f00000007c0)=""/125, 0x41100, 0x60, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000880)={0x5, 0x10}, 0x10, 0x1e3e6, 0xffffffffffffffff, 0x1, &(0x7f0000000600)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000b40)=[{0x2, 0x5, 0x3, 0x3}], 0x10, 0x5, @void, @value}, 0x94)
syz_io_uring_setup(0x4333, &(0x7f00000000c0)={0x0, 0x80000000, 0x100}, &(0x7f0000ff5000), &(0x7f0000ff4000))
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x104880, 0x0, 0x1, 0x0, &(0x7f0000000200))
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x1400c, &(0x7f0000000680)={[{@test_dummy_encryption}, {@init_itable}, {@noload}]}, 0x3, 0x470, &(0x7f0000001240)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000100)='./bus\x00', 0x0, 0x0, 0x82, 0x0, &(0x7f0000000080))
syz_mount_image$ext4(0x0, &(0x7f00000000c0)='./bus/file0\x00', 0x80000, 0x0, 0x1, 0x0, &(0x7f0000000000))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x101800, 0x145)
renameat2(r4, &(0x7f00000001c0)='./bus/file0\x00', r4, &(0x7f0000000140)='./file0\x00', 0x4)

3.114263569s ago: executing program 0 (id=1121):
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f00000000c0)='./file4\x00', 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x21, 0x5548, &(0x7f00000058c0)="$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")
syz_init_net_socket$ax25(0x3, 0x5, 0xcf)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x1ff, 0x1, 0x0, 0x1000, &(0x7f0000003000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0xe8, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000180)={0x4, 0x2, 0x0, 0x2, 0x4, 0xe, 0x0, 0x36a, 0x20003f})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r3, &(0x7f00000000c0)='p', 0x1, 0x2)

3.11338692s ago: executing program 2 (id=1122):
bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[], 0x48)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f00000002c0), 0x4000, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback=0x5, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, @void, @value}, 0x94)
futex(0x0, 0x4, 0x1, 0x0, &(0x7f0000000280)=0x1, 0x2)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x0)
mkdir(0x0, 0x92)
r1 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_inet_SIOCSARP(r1, 0x8955, 0x0)
syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000340)={{0x12, 0x1, 0x310, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x60, 0x2, 0x1, 0x80, 0xe0, 0xd, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0x5}, {0xd, 0x24, 0xf, 0x1, 0x5, 0x2, 0x8, 0x3}, {0x6, 0x24, 0x1a, 0x8, 0x8}, [@mdlm_detail={0x4}]}, {{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x8, 0x80, 0x40}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x20, 0x6, 0x6a}}, {{0x9, 0x5, 0x3, 0x2, 0x1bf, 0x2, 0x5, 0xb}}}}}}}]}}, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0})

2.727269224s ago: executing program 4 (id=1123):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x2008800, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], 0x4, 0x1534, &(0x7f0000001f80)="$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")
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000400000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000004000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
open(&(0x7f0000000000)='./bus\x00', 0x40, 0x170)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB], &(0x7f0000000740)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00', r5}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r6}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x11, 0xa8}, [@ldst={0x6, 0x3}], {0x95, 0x0, 0xc00}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000ac0)='kmem_cache_free\x00', r0}, 0x10)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000001c0)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x0)
r9 = dup(r8)
write$FUSE_BMAP(r9, &(0x7f0000000000)={0x18}, 0x18)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="74723d64e7bf7d0ee854c9", @ANYRESHEX=r7, @ANYBLOB="e06d5dc506d35d33af269cd746257f88d3daf0584cbc24917d4da7eddab17499af0e033b8d193ec5273f04558bfe5ec93e773240fdcbeb5a163d0714d8b9cc9970740717620e528d225d049e829689eb4d6ebde9ac22682de72bf27bb28214aac6c4a14df0649946bb74c3da3eb8c9a581bc0d48b91f4ce4b097d60fbc910e765001ad88a5e003381c9bc8fa75c9b2fe895a094036ea41dac9e327c5904fa2d887e6d85e2fc782cda498e71d09bd349145198653c92c58da43d70bc08054e2f1570b08e0ee439de95e081cc79280a9ff32ef98", @ANYRES64])

2.624589986s ago: executing program 3 (id=1124):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x2500, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="6501000014"], 0x188}}, 0x0)
sendmsg$nl_xfrm(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
r3 = socket$kcm(0x2d, 0x0, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, &(0x7f0000000100)={r3})
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20004015}, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0xd, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb714000008"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x3, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41000, 0x39, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x6, 0x200008, 0x5, 0x20000}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c00090008000000", @ANYRES32=r4], 0x4c}}, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x18)
sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x40000000000009f, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="2800000010000108000000000000000002000000", @ANYRES32=0x0, @ANYBLOB="b40200000000000008001b"], 0x28}}, 0x0)

2.568880686s ago: executing program 1 (id=1125):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, 0x0, 0x53)

2.397589329s ago: executing program 1 (id=1126):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f00000001c0)=@filter={'filter\x00', 0xe, 0x0, 0xc0, [0x0, 0x20000040, 0x20000070, 0x200000a0], 0x0, 0x0, 0x0}, 0x138)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000000c0)='./file1\x00', 0x101880a, &(0x7f0000000400)=ANY=[@ANYBLOB="6e6f646973636172642c6261636b67726f756e645f67633d73796e632c61636c2c6673796e635f6d6f64653d7374726963742c696e6c696e655f78617474722c6673796e635f6d6f64653d706f7369782c646973636172645f756e69743d7365676d656e742c6261636b67726f756e645f67633d6f6e2c6e6f696e6c696e655f78617474722c646973636172645f756e69743d626c6f636b2c6673796e635f6d6f64653d7374726963742c617467632c657874656e745f63616368652c6661756c745f696e6a656374696f6e3d30303030303030303030303030303031343033302c00271d57a599b8b169a579679e220c689eaaec4fa6229021e75c68a687d319b615573b0b0ceefba8e2e2419434463974ef8174b66469344931de0ccad650792761"], 0x1, 0x550b, &(0x7f00000079c0)="$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")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x14, &(0x7f0000000100)=0xa, 0x4)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
fallocate(r2, 0x0, 0x10000, 0x20000)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$netrom(0xffffffffffffffff, 0x0, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$EBT_SO_GET_ENTRIES(r6, 0x0, 0x81, &(0x7f0000000240)={'broute\x00', 0x0, 0x0, 0x0, [0x0, 0x2, 0x0, 0x0, 0x6], 0x0, 0x0, 0x0}, &(0x7f00000002c0)=0xa8)
fallocate(r2, 0x8, 0x0, 0x2000)

903.669729ms ago: executing program 4 (id=1127):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000780)={[{@iocharset={'iocharset', 0x3d, 'cp850'}}, {@fmask={'fmask', 0x3d, 0xa0}}, {@errors_remount}, {@iocharset={'iocharset', 0x3d, 'cp936'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-14'}}, {@dmask}, {@gid}, {@dmask={'dmask', 0x3d, 0x1}}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'iso8859-2'}}]}, 0x1, 0x152f, &(0x7f00000037c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x1, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)

0s ago: executing program 1 (id=1128):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x9)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$PNPIPE_ENCAP(0xffffffffffffffff, 0x113, 0x1, 0x0, 0x0)
ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0)
r4 = socket(0x10, 0x3, 0x0)
write(r4, &(0x7f0000000180), 0x0)
recvmmsg(r4, &(0x7f00000021c0), 0x5b, 0x40, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x90060, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0], 0xfb, 0x2b3, &(0x7f0000000580)="$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")
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000004c0)='dctcp\x00', 0x6)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r0, &(0x7f0000000240)=':', 0x1, 0x24008844, &(0x7f00000001c0)={0xa, 0x2, 0x398, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000003c0)='scalable\x00', 0x9)
shutdown(r0, 0x1)

kernel console output (not intermixed with test programs):

522] EXT4-fs (loop2): can't mount with commit=1, fs mounted w/o journal
[   85.947724][ T4525] EXT4-fs (loop3): Mount option "noacl" will be removed by 3.5
[   85.947724][ T4525] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[   85.947724][ T4525] 
[   86.425519][ T4525] EXT4-fs (loop3): mounted filesystem without journal. Opts: noacl,,errors=continue. Quota mode: none.
[   86.843703][ T4534] loop4: detected capacity change from 0 to 512
[   87.390388][ T4536] netlink: 8 bytes leftover after parsing attributes in process `syz.4.66'.
[   89.365386][ T4210] usb 3-1: new full-speed USB device number 2 using dummy_hcd
[   89.809062][ T4340] Bluetooth: hci5: Frame reassembly failed (-84)
[   91.805498][ T4208] Bluetooth: hci5: command 0x1003 tx timeout
[   91.813837][ T4170] Bluetooth: hci5: sending frame failed (-49)
[   92.150656][ T4553] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[   92.159861][ T4553] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   92.207907][ T4553] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   92.255879][ T4566] netlink: 28 bytes leftover after parsing attributes in process `syz.2.79'.
[   92.402765][ T4574] process 'syz.0.81' launched './file1' with NULL argv: empty string added
[   93.059990][ T4580] loop1: detected capacity change from 0 to 512
[   93.154342][ T4580] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   93.244493][ T4583] loop0: detected capacity change from 0 to 1024
[   94.169163][ T4208] Bluetooth: hci5: command 0x1001 tx timeout
[   94.175348][ T4170] Bluetooth: hci5: sending frame failed (-49)
[   94.192378][ T4580] EXT4-fs (loop1): 1 truncate cleaned up
[   94.209172][ T4583] EXT4-fs (loop0): Test dummy encryption mode enabled
[   94.239650][ T4580] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[   94.307106][ T4583] EXT4-fs (loop0): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[   95.370888][ T4587] loop4: detected capacity change from 0 to 40427
[   95.576816][ T4587] F2FS-fs (loop4): Found nat_bits in checkpoint
[   95.615551][ T4583] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[   95.860853][ T4587] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   96.339201][   T23] Bluetooth: hci5: command 0x1009 tx timeout
[   96.598843][ T4614] attempt to access beyond end of device
[   96.598843][ T4614] loop4: rw=2049, want=81920, limit=40427
[   96.634883][ T4614] attempt to access beyond end of device
[   96.634883][ T4614] loop4: rw=2049, want=53248, limit=40427
[   96.681097][ T4614] attempt to access beyond end of device
[   96.681097][ T4614] loop4: rw=2049, want=62936, limit=40427
[   96.868678][ T4171] attempt to access beyond end of device
[   96.868678][ T4171] loop4: rw=2049, want=45120, limit=40427
[   97.025315][ T4209] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   97.425457][ T4209] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   97.450170][ T4209] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[   97.592226][ T4625] overlayfs: failed to resolve './file1': -2
[   97.655568][ T4209] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   97.671345][ T4209] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   97.692831][ T4209] usb 2-1: Product: syz
[   97.702733][ T4209] usb 2-1: Manufacturer: syz
[   97.716978][ T4209] usb 2-1: SerialNumber: syz
[   97.841163][ T4209] cdc_mbim 2-1:1.0: skipping garbage
[   98.159039][ T4616] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[   98.875077][ T4633] loop4: detected capacity change from 0 to 512
[   99.195163][ T4633] EXT4-fs (loop4): orphan cleanup on readonly fs
[   99.208745][ T4633] Quota error (device loop4): find_tree_dqentry: Getting block too big (196613 >= 6)
[   99.218779][ T4633] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[   99.228295][ T4633] EXT4-fs error (device loop4): ext4_acquire_dquot:6204: comm syz.4.93: Failed to acquire dquot type 1
[   99.247884][ T4633] EXT4-fs (loop4): 1 truncate cleaned up
[   99.254562][ T4633] EXT4-fs (loop4): mounted filesystem without journal. Opts: bsdgroups,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,abort,noload,nodiscard,,errors=continue. Quota mode: writeback.
[  100.318647][ T4616] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  100.611746][ T4642] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  101.329768][ T4641] loop0: detected capacity change from 0 to 128
[  101.365608][ T4209] cdc_mbim 2-1:1.0: setting tx_max = 184
[  101.385641][ T4209] cdc_mbim 2-1:1.0: cdc-wdm0: USB WDM device
[  101.434989][ T4209] cdc_mbim 2-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.1-1, CDC MBIM, ea:64:90:ed:33:8b
[  101.669482][ T1112] usb 2-1: USB disconnect, device number 3
[  101.683294][ T1112] cdc_mbim 2-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.1-1, CDC MBIM
[  101.723583][ T4650] loop4: detected capacity change from 0 to 512
[  101.890038][ T4650] EXT4-fs (loop4): Quota format mount options ignored when QUOTA feature is enabled
[  101.930017][ T4654] netlink: 12 bytes leftover after parsing attributes in process `syz.1.99'.
[  102.113915][ T4658] loop1: detected capacity change from 0 to 1024
[  102.147048][ T4650] EXT4-fs (loop4): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000008,jqfmt=vfsold,quota,,errors=continue. Quota mode: writeback.
[  102.172197][ T4392] attempt to access beyond end of device
[  102.172197][ T4392] loop0: rw=1, want=273, limit=128
[  102.201007][ T4663] loop2: detected capacity change from 0 to 256
[  102.207776][ T4650] ext4 filesystem being mounted at /15/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.210025][ T4658] EXT4-fs (loop1): Test dummy encryption mode enabled
[  102.263948][ T4658] EXT4-fs (loop1): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  102.434287][ T4667] loop0: detected capacity change from 0 to 256
[  102.509175][ T4667] exfat: Deprecated parameter 'utf8'
[  102.514525][ T4667] exfat: Deprecated parameter 'utf8'
[  102.643435][ T4663] loop2: detected capacity change from 0 to 512
[  102.840742][ T4667] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  104.921537][ T4695] loop1: detected capacity change from 0 to 512
[  105.216452][ T4723] netlink: 8 bytes leftover after parsing attributes in process `syz.4.109'.
[  105.349466][ T4715] netlink: 'syz.0.111': attribute type 3 has an invalid length.
[  106.075469][ T1112] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  106.143688][ T4695] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.105: invalid indirect mapped block 10 (level 1)
[  106.550358][ T4695] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.105: invalid indirect mapped block 8 (level 1)
[  106.896206][ T4695] EXT4-fs (loop1): 1 truncate cleaned up
[  106.901972][ T4695] EXT4-fs (loop1): mounted filesystem without journal. Opts: acl,user_xattr,,errors=continue. Quota mode: none.
[  107.085569][ T1112] usb 1-1: unable to get BOS descriptor or descriptor too short
[  107.190151][ T1112] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 32
[  107.200363][ T1112] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 447
[  107.345367][ T4700] loop3: detected capacity change from 0 to 40427
[  107.421416][ T1112] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  107.436910][ T4700] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  107.454468][ T1112] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  107.454880][ T4700] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  107.472467][ T1112] usb 1-1: Product: syz
[  107.485283][ T1112] usb 1-1: Manufacturer: syz
[  107.495842][ T1112] usb 1-1: SerialNumber: syz
[  107.514055][ T4700] F2FS-fs (loop3): invalid crc value
[  107.566835][ T4700] F2FS-fs (loop3): Found nat_bits in checkpoint
[  107.707410][ T4700] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  107.733998][ T4700] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  107.786209][ T1112] cdc_ncm 1-1:1.0: CDC Union missing and no IAD found
[  107.821623][ T4766] loop4: detected capacity change from 0 to 1024
[  107.823595][ T1112] cdc_ncm 1-1:1.0: bind() failure
[  107.836952][ T1112] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[  107.862118][ T1112] cdc_ncm 1-1:1.1: bind() failure
[  107.892156][ T1112] usb 1-1: USB disconnect, device number 2
[  107.927430][   T26] audit: type=1804 audit(1746087636.734:6): pid=4700 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.110" name="/newroot/27/bus/bus" dev="loop3" ino=455 res=1 errno=0
[  107.957964][ T4766] EXT4-fs (loop4): Test dummy encryption mode enabled
[  107.988289][ T4760] loop2: detected capacity change from 0 to 40427
[  108.036964][   T26] audit: type=1804 audit(1746087636.774:7): pid=4700 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.110" name="/newroot/27/bus/bus" dev="loop3" ino=455 res=1 errno=0
[  108.037060][ T4766] EXT4-fs (loop4): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  108.194123][ T4741] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  108.214015][ T4741] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  108.224339][ T4760] F2FS-fs (loop2): Found nat_bits in checkpoint
[  108.415323][ T4760] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  109.117537][ T4778] loop0: detected capacity change from 0 to 256
[  109.137311][ T4778] exfat: Deprecated parameter 'utf8'
[  109.143426][ T4778] exfat: Deprecated parameter 'utf8'
[  109.235934][ T4780] overlayfs: missing 'lowerdir'
[  109.480104][ T4778] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  109.712892][ T4785] xt_hashlimit: size too large, truncated to 1048576
[  109.909647][ T4177] attempt to access beyond end of device
[  109.909647][ T4177] loop2: rw=2049, want=45104, limit=40427
[  111.419479][ T4800] loop2: detected capacity change from 0 to 4096
[  111.583404][ T4800] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  116.511536][ T4827] loop1: detected capacity change from 0 to 1024
[  116.647579][ T4827] EXT4-fs (loop1): Test dummy encryption mode enabled
[  116.702278][ T4827] EXT4-fs (loop1): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  118.642898][ T4848] netlink: 'syz.1.136': attribute type 4 has an invalid length.
[  118.660732][ T4848] netlink: 17 bytes leftover after parsing attributes in process `syz.1.136'.
[  118.692448][ T4849] loop1: detected capacity change from 0 to 16
[  118.838056][ T4849] erofs: (device loop1): mounted with root inode @ nid 36.
[  119.592754][ T4856] kvm [4855]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc1 data 0x5500000800
[  119.599883][ T4866] loop3: detected capacity change from 0 to 1024
[  119.607497][ T4856] kvm [4855]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc1 data 0x7100000800
[  120.908513][ T4874] loop2: detected capacity change from 0 to 1024
[  121.157919][ T4874] EXT4-fs (loop2): Test dummy encryption mode enabled
[  121.251756][ T4874] EXT4-fs (loop2): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  121.345420][ T4887] netlink: 8 bytes leftover after parsing attributes in process `syz.3.147'.
[  122.165325][ T4891] netlink: 'syz.0.151': attribute type 4 has an invalid length.
[  122.169941][ T4894] loop3: detected capacity change from 0 to 256
[  122.180866][ T4891] netlink: 17 bytes leftover after parsing attributes in process `syz.0.151'.
[  122.650961][ T4898] loop0: detected capacity change from 0 to 16
[  122.805595][ T4898] erofs: (device loop0): mounted with root inode @ nid 36.
[  122.835920][ T4894] exfat: Deprecated parameter 'utf8'
[  122.841266][ T4894] exfat: Deprecated parameter 'utf8'
[  123.063161][ T4894] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  123.221663][ T4905] loop2: detected capacity change from 0 to 256
[  123.307230][ T4905] exfat: Deprecated parameter 'utf8'
[  123.314176][ T4905] exfat: Unknown parameter 'sys_tz'
[  124.120149][ T4916] loop0: detected capacity change from 0 to 1024
[  124.833441][ T4931] netlink: 8 bytes leftover after parsing attributes in process `syz.1.162'.
[  126.771138][ T4945] netlink: 'syz.2.166': attribute type 4 has an invalid length.
[  126.816729][ T4945] netlink: 17 bytes leftover after parsing attributes in process `syz.2.166'.
[  126.896691][ T4949] loop2: detected capacity change from 0 to 16
[  127.037674][ T4955] loop3: detected capacity change from 0 to 512
[  127.112449][ T4946] loop1: detected capacity change from 0 to 512
[  127.135482][ T4949] erofs: (device loop2): mounted with root inode @ nid 36.
[  127.620829][ T4946] EXT4-fs (loop1): Test dummy encryption mode enabled
[  127.627743][ T4946] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  127.640348][ T4955] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  127.671575][ T4946] EXT4-fs error (device loop1): ext4_orphan_get:1427: comm syz.1.167: bad orphan inode 131083
[  127.692037][ T4946] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  127.761488][ T4955] EXT4-fs (loop3): 1 truncate cleaned up
[  127.775189][ T4955] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  128.109528][ T4956] netlink: 20 bytes leftover after parsing attributes in process `syz.4.172'.
[  130.038164][ T4992] netlink: 8 bytes leftover after parsing attributes in process `syz.2.177'.
[  130.593276][ T5001] netlink: 60 bytes leftover after parsing attributes in process `syz.2.182'.
[  130.594704][ T5000] loop1: detected capacity change from 0 to 1024
[  130.609515][ T4985] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  130.615349][ T5001] netlink: 60 bytes leftover after parsing attributes in process `syz.2.182'.
[  130.627397][ T4998] netlink: 60 bytes leftover after parsing attributes in process `syz.2.182'.
[  130.784774][ T5007] netlink: 'syz.3.183': attribute type 4 has an invalid length.
[  130.802322][ T5007] netlink: 17 bytes leftover after parsing attributes in process `syz.3.183'.
[  130.869562][ T5008] loop3: detected capacity change from 0 to 16
[  130.998271][ T5008] erofs: (device loop3): mounted with root inode @ nid 36.
[  131.076411][ T4985] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  131.242871][ T4985] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  131.865471][ T4985] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  131.937319][ T4985] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  131.991045][ T4985] usb 1-1: Product: syz
[  132.007514][ T4985] usb 1-1: Manufacturer: syz
[  132.012159][ T4985] usb 1-1: SerialNumber: syz
[  132.097673][ T4985] cdc_mbim 1-1:1.0: skipping garbage
[  132.141964][ T5026] netlink: 60 bytes leftover after parsing attributes in process `syz.1.189'.
[  132.205518][ T5026] netlink: 60 bytes leftover after parsing attributes in process `syz.1.189'.
[  132.205622][ T5033] loop4: detected capacity change from 0 to 512
[  132.215080][ T5022] netlink: 60 bytes leftover after parsing attributes in process `syz.1.189'.
[  132.232477][ T5031] netlink: 60 bytes leftover after parsing attributes in process `syz.1.189'.
[  132.360764][ T5039] loop1: detected capacity change from 0 to 1024
[  132.375897][ T4994] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  132.396896][ T5033] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  132.415133][ T5033] EXT4-fs (loop4): 1 truncate cleaned up
[  132.425915][ T5033] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  132.476337][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  132.482673][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  133.074061][ T4994] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  133.722674][ T4985] cdc_mbim 1-1:1.0: setting tx_max = 184
[  133.821224][ T4985] cdc_mbim 1-1:1.0: cdc-wdm0: USB WDM device
[  133.962580][ T4985] cdc_mbim 1-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.0-1, CDC MBIM, d2:23:6d:79:60:bd
[  134.215467][ T4209] usb 5-1: new full-speed USB device number 5 using dummy_hcd
[  134.729551][ T5069] loop1: detected capacity change from 0 to 512
[  135.395549][ T1336] usb 1-1: USB disconnect, device number 3
[  135.401958][ T1336] cdc_mbim 1-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.0-1, CDC MBIM
[  135.481502][ T5069] EXT4-fs (loop1): Test dummy encryption mode enabled
[  135.488839][ T5069] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  135.545328][ T4209] usb 5-1: device not accepting address 5, error -71
[  135.557548][ T5069] EXT4-fs error (device loop1): ext4_orphan_get:1427: comm syz.1.202: bad orphan inode 131083
[  135.571482][ T5069] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  135.910873][ T5099] loop0: detected capacity change from 0 to 1024
[  137.165353][ T5127] netlink: 20 bytes leftover after parsing attributes in process `syz.3.216'.
[  137.179174][ T5127] netlink: 20 bytes leftover after parsing attributes in process `syz.3.216'.
[  137.915451][ T5136] netlink: 'syz.3.220': attribute type 12 has an invalid length.
[  138.190040][ T4209] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  138.925695][ T4209] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  138.959082][ T5164] loop2: detected capacity change from 0 to 1024
[  138.975177][ T4209] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  139.205690][ T4209] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  139.235276][ T4209] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  139.256161][ T4209] usb 5-1: Product: syz
[  139.260561][ T4209] usb 5-1: Manufacturer: syz
[  139.295731][ T4209] usb 5-1: SerialNumber: syz
[  139.416451][ T4209] cdc_mbim 5-1:1.0: skipping garbage
[  139.616736][ T5120] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  140.175592][ T5215] device pim6reg1 entered promiscuous mode
[  140.265769][ T5120] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  140.275528][ T4209] cdc_mbim 5-1:1.0: setting tx_max = 184
[  140.282606][ T4209] cdc_mbim 5-1:1.0: cdc-wdm0: USB WDM device
[  140.323398][ T5221] loop3: detected capacity change from 0 to 1024
[  140.377104][ T4209] cdc_mbim 5-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.4-1, CDC MBIM, c2:3c:e8:a3:74:cb
[  140.735285][    C0] wdm_int_callback: 50 callbacks suppressed
[  140.735305][    C0] cdc_mbim 5-1:1.0: nonzero urb status received: -71
[  140.747885][    C0] wdm_int_callback: 50 callbacks suppressed
[  140.747901][    C0] cdc_mbim 5-1:1.0: wdm_int_callback - 0 bytes
[  140.775317][    C0] cdc_mbim 5-1:1.0: nonzero urb status received: -71
[  140.782017][    C0] cdc_mbim 5-1:1.0: wdm_int_callback - 0 bytes
[  140.805276][    C0] cdc_mbim 5-1:1.0: nonzero urb status received: -71
[  140.811966][    C0] cdc_mbim 5-1:1.0: wdm_int_callback - 0 bytes
[  140.845267][    C0] cdc_mbim 5-1:1.0: nonzero urb status received: -71
[  140.851997][    C0] cdc_mbim 5-1:1.0: wdm_int_callback - 0 bytes
[  140.875299][    C0] cdc_mbim 5-1:1.0: nonzero urb status received: -71
[  140.881998][    C0] cdc_mbim 5-1:1.0: wdm_int_callback - 0 bytes
[  140.905291][    C0] cdc_mbim 5-1:1.0: nonzero urb status received: -71
[  140.911979][    C0] cdc_mbim 5-1:1.0: wdm_int_callback - 0 bytes
[  140.935356][    C0] cdc_mbim 5-1:1.0: nonzero urb status received: -71
[  140.942060][    C0] cdc_mbim 5-1:1.0: wdm_int_callback - 0 bytes
[  140.950957][ T5235] netlink: 12 bytes leftover after parsing attributes in process `syz.2.253'.
[  140.975346][    C0] cdc_mbim 5-1:1.0: nonzero urb status received: -71
[  140.982048][    C0] cdc_mbim 5-1:1.0: wdm_int_callback - 0 bytes
[  141.005288][    C0] cdc_mbim 5-1:1.0: nonzero urb status received: -71
[  141.012000][    C0] cdc_mbim 5-1:1.0: wdm_int_callback - 0 bytes
[  141.045265][    C0] cdc_mbim 5-1:1.0: nonzero urb status received: -71
[  141.051954][    C0] cdc_mbim 5-1:1.0: wdm_int_callback - 0 bytes
[  141.215484][   T13] usb 5-1: USB disconnect, device number 7
[  141.221952][   T13] cdc_mbim 5-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.4-1, CDC MBIM
[  142.354609][ T5279] loop1: detected capacity change from 0 to 1024
[  145.764763][ T5338] loop4: detected capacity change from 0 to 1024
[  148.256573][ T5388] overlayfs: missing 'lowerdir'
[  150.225409][ T5419] loop0: detected capacity change from 0 to 512
[  150.236474][ T5420] overlayfs: missing 'lowerdir'
[  150.274725][ T5424] loop2: detected capacity change from 0 to 1024
[  150.411630][ T5419] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  150.570147][ T5433] loop1: detected capacity change from 0 to 512
[  150.587530][ T5419] EXT4-fs (loop0): 1 truncate cleaned up
[  150.593720][ T5419] EXT4-fs (loop0): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  150.661462][ T5433] EXT4-fs (loop1): Test dummy encryption mode enabled
[  150.668533][ T5433] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  150.814113][ T5433] EXT4-fs error (device loop1): ext4_orphan_get:1427: comm syz.1.319: bad orphan inode 131083
[  150.827416][ T5433] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  151.181659][ T5441] syz.3.325 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  152.505378][ T4986] usb 1-1: new full-speed USB device number 4 using dummy_hcd
[  153.344791][ T5467] overlayfs: missing 'lowerdir'
[  153.565340][ T4986] usb 1-1: device descriptor read/all, error -71
[  153.980636][ T5486] loop1: detected capacity change from 0 to 512
[  154.248789][ T5486] EXT4-fs (loop1): Test dummy encryption mode enabled
[  154.256108][ T5486] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  154.374340][ T5486] EXT4-fs error (device loop1): ext4_orphan_get:1427: comm syz.1.338: bad orphan inode 131083
[  154.388860][ T5486] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  154.544732][ T5488] Zero length message leads to an empty skb
[  154.556340][ T5485] loop4: detected capacity change from 0 to 1024
[  155.710523][ T5501] overlayfs: missing 'lowerdir'
[  155.743620][ T5503] loop3: detected capacity change from 0 to 512
[  155.828939][ T5503] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  156.452471][ T5503] EXT4-fs (loop3): 1 truncate cleaned up
[  156.564572][ T5503] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  156.841067][ T4168] Bluetooth: hci1: SCO packet for unknown connection handle 0
[  157.391409][ T5527] loop1: detected capacity change from 0 to 256
[  157.575471][ T4986] usb 4-1: new full-speed USB device number 3 using dummy_hcd
[  157.867997][ T5527] exfat: Deprecated parameter 'utf8'
[  157.873721][ T5527] exfat: Deprecated parameter 'utf8'
[  158.030114][ T5532] syz.0.354 (5532) used greatest stack depth: 20928 bytes left
[  158.082158][ T5527] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  158.136451][ T4986] usb 4-1: config 0 has an invalid interface number: 20 but max is 1
[  158.205007][ T5541] loop4: detected capacity change from 0 to 512
[  158.223678][ T4986] usb 4-1: config 0 has an invalid interface number: 24 but max is 1
[  158.869559][ T4986] usb 4-1: config 0 has no interface number 0
[  158.875963][ T4986] usb 4-1: config 0 has no interface number 1
[  158.882381][ T5541] EXT4-fs (loop4): Test dummy encryption mode enabled
[  158.889275][ T5541] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  158.902511][ T4986] usb 4-1: config 0 interface 20 has no altsetting 0
[  158.915446][ T4986] usb 4-1: New USB device found, idVendor=14aa, idProduct=0201, bcdDevice=8b.1d
[  158.924525][ T4986] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  159.335943][ T4986] usb 4-1: config 0 descriptor??
[  159.378233][ T4986] usb 4-1: can't set config #0, error -71
[  159.450481][ T4986] usb 4-1: USB disconnect, device number 3
[  159.537944][ T5541] EXT4-fs error (device loop4): ext4_orphan_get:1427: comm syz.4.356: bad orphan inode 131083
[  159.549208][ T5541] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  159.659867][ T5548] overlayfs: missing 'lowerdir'
[  159.742783][ T5554] loop3: detected capacity change from 0 to 1024
[  159.923142][ T5559] loop2: detected capacity change from 0 to 1024
[  160.735336][   T13] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  160.767076][ T5565] 9pnet_virtio: no channels available for device syz
[  161.015323][   T13] usb 2-1: Using ep0 maxpacket: 8
[  161.159890][   T13] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[  161.731877][   T13] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  161.742527][   T13] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  161.752576][   T13] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  161.762844][   T13] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  161.776086][   T13] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  161.785408][   T13] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  161.881137][ T5595] overlayfs: missing 'lowerdir'
[  161.996473][ T5597] loop3: detected capacity change from 0 to 512
[  162.425387][   T13] usb 2-1: usb_control_msg returned -32
[  162.431015][   T13] usbtmc 2-1:16.0: can't read capabilities
[  162.489213][ T5597] EXT4-fs (loop3): Test dummy encryption mode enabled
[  162.496223][ T5597] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  162.548521][ T5597] EXT4-fs error (device loop3): ext4_orphan_get:1427: comm syz.3.372: bad orphan inode 131083
[  162.560541][ T5597] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  162.619582][ T5609] loop4: detected capacity change from 0 to 1024
[  162.670325][ T5607] netdevsim netdevsim2: Direct firmware load for .
[  162.670325][ T5607]  failed with error -2
[  162.685812][ T5607] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  162.685812][ T5607] 
[  163.764570][   T13] usb 2-1: USB disconnect, device number 4
[  163.969280][ T5633] loop1: detected capacity change from 0 to 1024
[  164.313862][ T5643] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  164.323131][ T5643] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  164.330673][ T5643] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  164.410542][ T4340] Bluetooth: hci5: Frame reassembly failed (-84)
[  164.469426][ T5640] overlayfs: missing 'workdir'
[  166.293616][ T5653] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.462460][ T4986] Bluetooth: hci5: command 0x1003 tx timeout
[  166.482776][ T4170] Bluetooth: hci5: sending frame failed (-49)
[  167.222419][ T5658] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  167.377276][ T5653] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.498357][ T5671] loop3: detected capacity change from 0 to 512
[  167.979105][ T5671] EXT4-fs (loop3): Test dummy encryption mode enabled
[  167.986366][ T5671] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  168.081437][ T5671] EXT4-fs error (device loop3): ext4_orphan_get:1427: comm syz.3.392: bad orphan inode 131083
[  168.095007][ T5671] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  168.184856][ T5653] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.488707][ T5653] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.564617][ T4201] Bluetooth: hci5: command 0x1001 tx timeout
[  168.628920][ T4170] Bluetooth: hci5: sending frame failed (-49)
[  169.261141][ T5653] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  169.277417][ T5653] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  169.338694][ T5653] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  169.355596][ T5685] binder: BINDER_SET_CONTEXT_MGR already set
[  169.366639][ T5685] binder: 5684:5685 ioctl 4018620d 200000000040 returned -16
[  169.379566][ T5653] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  169.422898][ T5687] device pim6reg1 entered promiscuous mode
[  171.159966][ T4981] Bluetooth: hci5: command 0x1009 tx timeout
[  171.275481][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #382!!!
[  171.284462][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #382!!!
[  171.579157][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #382!!!
[  171.588183][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!!
[  171.597240][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!!
[  171.606280][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!!
[  171.615264][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!!
[  171.627424][ T5716] netlink: 12 bytes leftover after parsing attributes in process `syz.3.407'.
[  171.955325][   T13] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  172.181107][ T4170] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[  172.191160][ T4170] CPU: 1 PID: 4170 Comm: kworker/u5:2 Not tainted 5.15.180-syzkaller #0
[  172.199495][ T4170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  172.209548][ T4170] Workqueue: hci1 hci_rx_work
[  172.214270][ T4170] Call Trace:
[  172.217549][ T4170]  <TASK>
[  172.220480][ T4170]  dump_stack_lvl+0x168/0x230
[  172.225168][ T4170]  ? show_regs_print_info+0x20/0x20
[  172.230376][ T4170]  ? load_image+0x3b0/0x3b0
[  172.234897][ T4170]  sysfs_create_dir_ns+0x252/0x280
[  172.240013][ T4170]  ? __lock_acquire+0x7c60/0x7c60
[  172.245043][ T4170]  ? sysfs_warn_dup+0xa0/0xa0
[  172.249727][ T4170]  ? le_conn_complete_evt+0xcbc/0x1590
[  172.252014][   T13] usb 3-1: Using ep0 maxpacket: 8
[  172.255185][ T4170]  ? hci_event_packet+0xe05/0x12f0
[  172.265312][ T4170]  ? process_one_work+0x863/0x1000
[  172.270431][ T4170]  ? do_raw_spin_unlock+0x11d/0x230
[  172.275855][ T4170]  kobject_add_internal+0x662/0xd00
[  172.281066][ T4170]  kobject_add+0x152/0x210
[  172.285496][ T4170]  ? kobject_init+0x1d0/0x1d0
[  172.290180][ T4170]  ? klist_children_get+0x50/0x50
[  172.295213][ T4170]  ? get_device_parent+0x121/0x3f0
[  172.300340][ T4170]  device_add+0x483/0xfb0
[  172.304682][ T4170]  hci_conn_add_sysfs+0xd1/0x1e0
[  172.309615][ T4170]  le_conn_complete_evt+0xcbc/0x1590
[  172.314898][ T4170]  ? cs_le_create_conn+0x5e0/0x5e0
[  172.320003][ T4170]  ? __mutex_trylock_common+0x14f/0x250
[  172.325538][ T4170]  hci_le_meta_evt+0xd04/0x3b80
[  172.330373][ T4170]  ? hci_event_packet+0x36d/0x12f0
[  172.335471][ T4170]  ? hci_event_packet+0x2e2/0x12f0
[  172.340566][ T4170]  ? __lock_acquire+0x7c60/0x7c60
[  172.345584][ T4170]  ? hci_remote_host_features_evt+0x280/0x280
[  172.351653][ T4170]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[  172.357283][ T4170]  ? mark_lock+0x94/0x320
[  172.361596][ T4170]  ? mutex_unlock+0x10/0x10
[  172.366084][ T4170]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  172.372046][ T4170]  ? lock_chain_count+0x20/0x20
[  172.376880][ T4170]  ? __rwlock_init+0x140/0x140
[  172.381633][ T4170]  hci_event_packet+0xe05/0x12f0
[  172.386554][ T4170]  ? lockdep_hardirqs_on+0x94/0x140
[  172.391827][ T4170]  ? rcu_lock_release+0x20/0x20
[  172.396672][ T4170]  ? hci_send_to_monitor+0x9c/0x4a0
[  172.401874][ T4170]  hci_rx_work+0x255/0xa10
[  172.406286][ T4170]  process_one_work+0x863/0x1000
[  172.411218][ T4170]  ? worker_detach_from_pool+0x240/0x240
[  172.416831][ T4170]  ? lockdep_hardirqs_off+0x70/0x100
[  172.422112][ T4170]  ? _raw_spin_lock_irq+0xab/0xe0
[  172.427149][ T4170]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  172.432513][ T4170]  ? wq_worker_running+0x97/0x170
[  172.437524][ T4170]  worker_thread+0xaa8/0x12a0
[  172.442185][ T4170]  ? _raw_spin_unlock_irqrestore+0x82/0x100
[  172.448068][ T4170]  ? lockdep_hardirqs_on+0x94/0x140
[  172.453259][ T4170]  ? lockdep_hardirqs_on+0x94/0x140
[  172.458444][ T4170]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  172.464328][ T4170]  kthread+0x436/0x520
[  172.468398][ T4170]  ? rcu_lock_release+0x20/0x20
[  172.473233][ T4170]  ? kthread_blkcg+0xd0/0xd0
[  172.477827][ T4170]  ret_from_fork+0x1f/0x30
[  172.482260][ T4170]  </TASK>
[  172.493939][ T4170] kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  172.507578][ T4170] Bluetooth: hci1: failed to register connection device
[  172.515438][   T13] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  172.531051][   T13] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  172.542170][   T13] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  172.565421][   T13] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  172.627288][ T5730] Bluetooth: (null): Invalid header checksum
[  172.634093][   T13] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  172.649923][   T13] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  172.667103][ T5732] device pim6reg1 entered promiscuous mode
[  172.740105][ T4733] Bluetooth: (null): Invalid header checksum
[  172.748585][ T4733] Bluetooth: (null): Invalid header checksum
[  172.848587][  T144] Bluetooth: (null): Invalid header checksum
[  172.935334][   T13] usb 3-1: GET_CAPABILITIES returned 0
[  172.941006][   T13] usbtmc 3-1:16.0: can't read capabilities
[  172.965857][  T145] Bluetooth: (null): Invalid header checksum
[  173.130833][  T144] Bluetooth: (null): Invalid header checksum
[  173.175612][ T4733] Bluetooth: (null): Invalid header checksum
[  173.263085][    C1] usbtmc 3-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  173.313844][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #382!!!
[  173.326656][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #382!!!
[  173.339519][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #382!!!
[  173.794532][ T4733] Bluetooth: (null): Invalid header checksum
[  173.883622][ T4981] usb 3-1: USB disconnect, device number 3
[  173.910057][ T4733] Bluetooth: (null): Invalid header checksum
[  173.916882][ T4733] Bluetooth: (null): Invalid header checksum
[  173.929284][ T4733] Bluetooth: (null): Invalid header checksum
[  173.953631][ T4733] Bluetooth: (null): Invalid header checksum
[  173.960390][ T4733] Bluetooth: (null): Invalid header checksum
[  173.968310][ T4733] Bluetooth: (null): Invalid header checksum
[  174.414219][ T5761] netlink: 12 bytes leftover after parsing attributes in process `syz.4.420'.
[  175.752339][ T5782] netlink: 44 bytes leftover after parsing attributes in process `syz.1.429'.
[  175.761710][ T5782] netlink: 12 bytes leftover after parsing attributes in process `syz.1.429'.
[  176.302097][ T5356] Bluetooth: hci0: command 0x0406 tx timeout
[  176.385144][ T5356] Bluetooth: hci1: command 0x0406 tx timeout
[  176.391295][ T5356] Bluetooth: hci3: command 0x0406 tx timeout
[  176.398088][ T5356] Bluetooth: hci4: command 0x0406 tx timeout
[  176.404374][ T5356] Bluetooth: hci2: command 0x0406 tx timeout
[  177.257619][ T5802] netlink: 12 bytes leftover after parsing attributes in process `syz.0.426'.
[  177.443830][ T5356] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  177.762654][ T5807] netlink: 60 bytes leftover after parsing attributes in process `syz.1.439'.
[  177.776874][ T5807] netlink: 60 bytes leftover after parsing attributes in process `syz.1.439'.
[  178.688153][ T5356] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  178.710263][ T5356] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  178.738050][ T5356] usb 4-1: Product: syz
[  178.747303][ T5356] usb 4-1: Manufacturer: syz
[  178.751905][ T5356] usb 4-1: SerialNumber: syz
[  178.838806][ T5356] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  179.888436][ T5357] usb 4-1: USB disconnect, device number 4
[  179.912357][ T5356] usb 4-1: ath9k_htc: Firmware - ath9k_htc/htc_9271-1.4.0.fw download failed
[  179.922949][ T5357] usb 4-1: ath9k_htc: USB layer deinitialized
[  180.028227][ T5821] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  180.185117][ T5824] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  180.203076][ T5824] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  180.211367][ T5824] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  180.526432][  T144] Bluetooth: hci5: Frame reassembly failed (-84)
[  181.579951][ T5830] netlink: 44 bytes leftover after parsing attributes in process `syz.2.445'.
[  181.588999][ T5830] netlink: 12 bytes leftover after parsing attributes in process `syz.2.445'.
[  182.535585][ T4981] Bluetooth: hci5: command 0x1003 tx timeout
[  182.542028][ T5745] Bluetooth: hci5: sending frame failed (-49)
[  184.694353][ T4201] Bluetooth: hci5: command 0x1001 tx timeout
[  184.715383][ T5745] Bluetooth: hci5: sending frame failed (-49)
[  184.863056][ T5867] syz.2.456 uses obsolete (PF_INET,SOCK_PACKET)
[  185.355365][ T4210] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  185.458882][ T5880] loop4: detected capacity change from 0 to 512
[  185.520676][ T5880] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  185.543053][ T5880] EXT4-fs (loop4): 1 truncate cleaned up
[  185.548896][ T5880] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  185.725424][ T4210] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  185.736456][ T4210] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  186.535495][ T4210] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  186.549520][ T4210] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  186.562117][ T4210] usb 3-1: Product: syz
[  186.566886][ T4210] usb 3-1: Manufacturer: syz
[  186.571655][ T4210] usb 3-1: SerialNumber: syz
[  186.616611][ T4210] cdc_mbim 3-1:1.0: skipping garbage
[  186.715629][ T4379] usb 5-1: new full-speed USB device number 8 using dummy_hcd
[  186.767403][ T1109] Bluetooth: hci5: command 0x1009 tx timeout
[  186.846867][ T5870] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  187.126156][ T4379] usb 5-1: config 0 has an invalid interface number: 20 but max is 1
[  187.149850][ T4379] usb 5-1: config 0 has an invalid interface number: 24 but max is 1
[  187.201762][ T4379] usb 5-1: config 0 has no interface number 0
[  187.348612][ T4379] usb 5-1: config 0 has no interface number 1
[  187.354918][ T4379] usb 5-1: config 0 interface 20 has no altsetting 0
[  187.362226][ T4379] usb 5-1: New USB device found, idVendor=14aa, idProduct=0201, bcdDevice=8b.1d
[  187.372069][ T4379] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  187.407839][ T5745] Bluetooth: Wrong link type (-57)
[  187.533642][ T4379] usb 5-1: config 0 descriptor??
[  187.650044][ T5896] netlink: 60 bytes leftover after parsing attributes in process `syz.0.463'.
[  187.664011][ T5896] netlink: 60 bytes leftover after parsing attributes in process `syz.0.463'.
[  187.760305][ T5870] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  188.212626][ T4210] cdc_mbim 3-1:1.0: setting tx_max = 184
[  188.221502][ T4210] cdc_mbim 3-1:1.0: cdc-wdm0: USB WDM device
[  188.233625][ T4210] cdc_mbim 3-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.2-1, CDC MBIM, 7a:41:bb:8a:03:24
[  188.371273][ T4210] usb 3-1: USB disconnect, device number 4
[  188.384125][ T4210] cdc_mbim 3-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.2-1, CDC MBIM
[  188.405685][ T5356] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  188.665555][ T5913] netlink: 12 bytes leftover after parsing attributes in process `syz.0.466'.
[  188.955430][ T4379] usb 5-1: string descriptor 0 read error: -71
[  188.963900][ T4379] dvb-usb: found a 'WideView/Yuan/Yakumo/Hama/Typhoon DVB-T USB2.0 (WT-200U)' in cold state, will try to load a firmware
[  189.039738][ T4379] usb 5-1: Direct firmware load for dvb-usb-dtt200u-01.fw failed with error -2
[  189.061621][ T4379] usb 5-1: Falling back to sysfs fallback for: dvb-usb-dtt200u-01.fw
[  189.135579][ T5356] usb 4-1: config index 0 descriptor too short (expected 23569, got 27)
[  189.145030][ T5356] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  189.203758][ T5929] binder: 5928:5929 unknown command 0
[  189.215656][ T5929] binder: 5928:5929 ioctl c0306201 200000000180 returned -22
[  189.245637][ T5356] usb 4-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  189.274106][ T5356] usb 4-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  189.296243][ T5356] usb 4-1: Manufacturer: syz
[  189.313982][ T5356] usb 4-1: config 0 descriptor??
[  189.445420][ T5356] rc_core: IR keymap rc-hauppauge not found
[  189.451352][ T5356] Registered IR keymap rc-empty
[  189.492090][ T5356] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  189.541936][ T5356] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input5
[  189.594246][ T5356] usb 4-1: USB disconnect, device number 5
[  191.328287][ T5963] loop3: detected capacity change from 0 to 512
[  191.430519][ T5963] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  191.464106][ T5970] netlink: 8 bytes leftover after parsing attributes in process `syz.1.482'.
[  191.482773][ T5963] EXT4-fs (loop3): 1 truncate cleaned up
[  191.488730][ T5963] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  191.525354][ T5356] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  192.155708][ T4981] usb 4-1: new full-speed USB device number 6 using dummy_hcd
[  192.510977][ T5976] netlink: 12 bytes leftover after parsing attributes in process `syz.1.484'.
[  192.555508][ T5356] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  192.575235][ T5356] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  192.575411][ T4981] usb 4-1: config 0 has an invalid interface number: 20 but max is 1
[  192.599107][ T4981] usb 4-1: config 0 has an invalid interface number: 24 but max is 1
[  192.608758][ T4981] usb 4-1: config 0 has no interface number 0
[  192.614923][ T4981] usb 4-1: config 0 has no interface number 1
[  192.633102][ T4981] usb 4-1: config 0 interface 20 has no altsetting 0
[  192.643237][ T4981] usb 4-1: New USB device found, idVendor=14aa, idProduct=0201, bcdDevice=8b.1d
[  192.661050][ T4981] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  192.682668][ T4981] usb 4-1: config 0 descriptor??
[  192.755338][ T5356] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  192.764726][ T5356] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  192.785231][ T5356] usb 1-1: Product: syz
[  192.789399][ T5356] usb 1-1: Manufacturer: syz
[  192.793972][ T5356] usb 1-1: SerialNumber: syz
[  192.857037][ T5356] cdc_mbim 1-1:1.0: skipping garbage
[  193.103198][ T5962] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  194.005856][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  194.012282][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  194.158043][ T4981] usb 4-1: string descriptor 0 read error: -71
[  194.166332][ T4981] dvb-usb: found a 'WideView/Yuan/Yakumo/Hama/Typhoon DVB-T USB2.0 (WT-200U)' in cold state, will try to load a firmware
[  194.315713][ T5962] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  194.338207][ T5356] cdc_mbim 1-1:1.0: setting tx_max = 184
[  194.350950][ T5356] cdc_mbim 1-1:1.0: cdc-wdm0: USB WDM device
[  194.390360][ T5356] cdc_mbim 1-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.0-1, CDC MBIM, a2:cf:0e:70:43:d1
[  195.346809][ T6010] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  195.355916][ T6010] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  195.363374][ T6010] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  196.263162][ T5356] usb 1-1: USB disconnect, device number 6
[  196.279622][ T5356] cdc_mbim 1-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.0-1, CDC MBIM
[  197.718997][ T4201] Bluetooth: hci5: command 0x1003 tx timeout
[  197.746241][ T4170] Bluetooth: hci5: sending frame failed (-49)
[  198.217501][ T4201] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  198.427828][ T4201] Bluetooth: hci0: Injecting HCI hardware error event
[  198.437733][ T6044] loop3: detected capacity change from 0 to 256
[  198.468137][ T4170] Bluetooth: hci0: hardware error 0x00
[  198.792895][ T6044] exfat: Deprecated parameter 'utf8'
[  198.798386][ T6044] exfat: Deprecated parameter 'utf8'
[  198.919138][ T6044] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  199.816841][ T1109] Bluetooth: hci5: command 0x1001 tx timeout
[  199.829478][ T5745] Bluetooth: hci5: sending frame failed (-49)
[  200.195258][ T6088] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  200.203092][ T6088] IPv6: NLM_F_CREATE should be set when creating new route
[  201.051844][ T6088] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.059887][ T6088] bridge0: port 1(bridge_slave_0) entered disabled state
[  201.647335][ T6088] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  201.681741][ T6088] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  201.901171][ T6092] Bluetooth: hci5: command 0x1009 tx timeout
[  202.273025][ T6088] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  202.296787][ T6088] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  202.306027][ T6088] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  202.314906][ T6088] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  202.487885][   T26] audit: type=1326 audit(1746087731.295:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6104 comm="syz.1.509" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb1346df969 code=0x0
[  202.513528][ T6088] syz.0.505 (6088) used greatest stack depth: 20904 bytes left
[  204.106149][ T6117] device pim6reg1 entered promiscuous mode
[  204.572277][ T6129] loop0: detected capacity change from 0 to 512
[  204.619294][ T6129] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  204.640073][ T6129] EXT4-fs (loop0): 1 truncate cleaned up
[  204.649248][ T6129] EXT4-fs (loop0): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  205.205492][ T4986] usb 1-1: new full-speed USB device number 7 using dummy_hcd
[  205.840889][ T4986] usb 1-1: config 0 has an invalid interface number: 20 but max is 1
[  205.853119][ T4986] usb 1-1: config 0 has an invalid interface number: 24 but max is 1
[  205.861858][ T4986] usb 1-1: config 0 has no interface number 0
[  206.021463][ T4986] usb 1-1: config 0 has no interface number 1
[  206.028256][ T4986] usb 1-1: config 0 interface 20 has no altsetting 0
[  206.036346][ T4986] usb 1-1: New USB device found, idVendor=14aa, idProduct=0201, bcdDevice=8b.1d
[  206.045453][ T4986] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  206.055702][ T4986] usb 1-1: config 0 descriptor??
[  208.244783][ T4986] usb 1-1: string descriptor 0 read error: -71
[  208.256537][ T4986] dvb-usb: found a 'WideView/Yuan/Yakumo/Hama/Typhoon DVB-T USB2.0 (WT-200U)' in cold state, will try to load a firmware
[  208.359154][ T6162] loop4: detected capacity change from 0 to 1024
[  209.288307][ T6170] kernel profiling enabled (shift: 63)
[  209.305807][ T6170] profiling shift: 63 too large
[  209.525313][ T6176] loop3: detected capacity change from 0 to 256
[  209.622351][ T6180] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  210.549703][ T6180] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  210.557320][ T6180] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  213.417405][ T6196] loop4: detected capacity change from 0 to 512
[  213.487987][ T4496] Bluetooth: hci5: command 0x1003 tx timeout
[  213.494240][ T4168] Bluetooth: hci5: sending frame failed (-49)
[  213.568935][ T6196] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  213.754688][ T6196] EXT4-fs (loop4): 1 truncate cleaned up
[  214.471965][ T6196] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  215.565570][ T4985] Bluetooth: hci5: command 0x1001 tx timeout
[  215.579706][ T4168] Bluetooth: hci5: sending frame failed (-49)
[  216.200894][ T6220] loop2: detected capacity change from 0 to 1024
[  216.678930][ T6231] loop4: detected capacity change from 0 to 256
[  216.725901][ T6231] exfat: Deprecated parameter 'utf8'
[  216.732054][ T6231] exfat: Deprecated parameter 'utf8'
[  216.764467][ T6231] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  217.645525][ T4496] Bluetooth: hci5: command 0x1009 tx timeout
[  220.658187][ T6270] loop3: detected capacity change from 0 to 256
[  220.704481][ T6270] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  220.794884][ T6274] netlink: 8 bytes leftover after parsing attributes in process `syz.2.558'.
[  220.804013][ T6274] netlink: 12 bytes leftover after parsing attributes in process `syz.2.558'.
[  221.341957][ T6273] loop0: detected capacity change from 0 to 256
[  221.636165][ T6273] exfat: Deprecated parameter 'utf8'
[  221.668130][ T6273] exfat: Deprecated parameter 'utf8'
[  221.870803][ T6273] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  221.883080][ T6093] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  223.438712][ T6290] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  223.673956][ T6093] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  223.726001][ T6093] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  224.166082][ T6093] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  224.181332][ T6093] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  224.234284][ T6093] usb 2-1: Product: syz
[  224.243244][ T6093] usb 2-1: Manufacturer: syz
[  224.578074][ T6093] usb 2-1: SerialNumber: syz
[  225.156059][ T6314] loop3: detected capacity change from 0 to 512
[  225.314353][ T6316] netlink: 8 bytes leftover after parsing attributes in process `syz.2.572'.
[  225.451633][ T6314] EXT4-fs (loop3): Test dummy encryption mode enabled
[  225.458694][ T6314] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  225.563023][ T6314] EXT4-fs error (device loop3): ext4_orphan_get:1427: comm syz.3.566: bad orphan inode 131083
[  225.580503][ T6314] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  225.977331][ T6093] usb 2-1: can't set config #1, error -71
[  225.984841][ T6093] usb 2-1: USB disconnect, device number 5
[  228.418227][ T6352] loop2: detected capacity change from 0 to 256
[  228.719345][ T6352] exfat: Deprecated parameter 'utf8'
[  228.726154][ T6352] exfat: Deprecated parameter 'utf8'
[  228.734766][ T6358] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  228.849046][ T6360] netlink: 8 bytes leftover after parsing attributes in process `syz.1.584'.
[  229.121637][ T6352] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  229.411860][ T6358] loop4: detected capacity change from 0 to 4096
[  229.448537][ T6358] ntfs3: Unknown parameter 'iocharsetXį¦¹Üuć"showmeta'
[  230.027077][ T6368] loop1: detected capacity change from 0 to 512
[  230.588131][ T6368] EXT4-fs (loop1): Test dummy encryption mode enabled
[  230.594945][ T6368] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  231.164209][ T6368] EXT4-fs error (device loop1): ext4_orphan_get:1427: comm syz.1.586: bad orphan inode 131083
[  231.175024][ T6368] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  233.121817][ T6388] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  233.162326][ T6388] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  233.173257][ T6388] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  234.269733][ T6392] loop2: detected capacity change from 0 to 8192
[  235.109651][ T6405] netlink: 8 bytes leftover after parsing attributes in process `syz.0.596'.
[  235.754126][ T6409] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  235.927710][ T6409] loop2: detected capacity change from 0 to 4096
[  235.935146][ T6409] ntfs3: Unknown parameter 'iocharsetXį¦¹Üuć"showmeta'
[  235.952627][ T6417] loop3: detected capacity change from 0 to 256
[  236.051841][ T6419] loop0: detected capacity change from 0 to 512
[  236.099659][ T6417] exfat: Deprecated parameter 'utf8'
[  236.138646][ T6417] exfat: Deprecated parameter 'utf8'
[  236.184872][ T6419] EXT4-fs (loop0): Test dummy encryption mode enabled
[  236.191869][ T6419] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  236.372122][ T6419] EXT4-fs error (device loop0): ext4_orphan_get:1427: comm syz.0.600: bad orphan inode 131083
[  236.387681][ T6419] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  236.576079][ T6417] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  237.859664][ T6441] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  238.257571][ T6454] loop2: detected capacity change from 0 to 2048
[  238.353992][ T6459] netlink: 8 bytes leftover after parsing attributes in process `syz.1.610'.
[  239.017219][ T6463] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  239.053941][ T6454] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  239.361565][ T6454] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.613: bg 0: block 234: padding at end of block bitmap is not set
[  239.384289][ T6454] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  239.397068][ T6454] EXT4-fs (loop2): This should not happen!! Data will be lost
[  239.397068][ T6454] 
[  239.406708][ T6454] EXT4-fs (loop2): Total free blocks count 0
[  239.412668][ T6454] EXT4-fs (loop2): Free/Dirty block details
[  239.418615][ T6454] EXT4-fs (loop2): free_blocks=0
[  239.423557][ T6454] EXT4-fs (loop2): dirty_blocks=8192
[  239.428835][ T6454] EXT4-fs (loop2): Block reservation details
[  239.434791][ T6454] EXT4-fs (loop2): i_reserved_data_blocks=512
[  239.541732][  T144] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  239.580073][  T144] EXT4-fs (loop2): This should not happen!! Data will be lost
[  239.580073][  T144] 
[  239.601405][ T6463] loop1: detected capacity change from 0 to 4096
[  239.676995][ T6466] loop4: detected capacity change from 0 to 8192
[  239.686004][ T6463] ntfs3: Unknown parameter 'iocharsetXį¦¹Üuć"showmeta'
[  240.286184][ T6473] loop1: detected capacity change from 0 to 512
[  240.340574][ T6473] EXT4-fs (loop1): Test dummy encryption mode enabled
[  240.347469][ T6473] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  240.868328][ T6473] EXT4-fs error (device loop1): ext4_orphan_get:1427: comm syz.1.617: bad orphan inode 131083
[  240.911468][ T6473] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  241.262133][ T6490] device pim6reg1 entered promiscuous mode
[  242.105538][ T6504] netlink: 8 bytes leftover after parsing attributes in process `syz.4.624'.
[  242.556831][ T6503] loop0: detected capacity change from 0 to 2048
[  242.571133][ T6507] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  242.665919][ T6503] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  242.957611][ T6503] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.626: bg 0: block 234: padding at end of block bitmap is not set
[  242.980353][ T6503] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  242.992973][ T6503] EXT4-fs (loop0): This should not happen!! Data will be lost
[  242.992973][ T6503] 
[  243.002636][ T6503] EXT4-fs (loop0): Total free blocks count 0
[  243.008639][ T6503] EXT4-fs (loop0): Free/Dirty block details
[  243.014513][ T6503] EXT4-fs (loop0): free_blocks=0
[  243.019461][ T6503] EXT4-fs (loop0): dirty_blocks=8192
[  243.024722][ T6503] EXT4-fs (loop0): Block reservation details
[  243.030701][ T6503] EXT4-fs (loop0): i_reserved_data_blocks=512
[  243.152625][ T4305] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  243.165502][ T6511] loop1: detected capacity change from 0 to 4096
[  243.179521][ T4305] EXT4-fs (loop0): This should not happen!! Data will be lost
[  243.179521][ T4305] 
[  243.215933][ T6511] ntfs3: Unknown parameter 'iocharsetXį¦¹Üuć"showmeta'
[  243.513733][ T6521] loop1: detected capacity change from 0 to 1024
[  243.982764][ T6525] loop3: detected capacity change from 0 to 512
[  244.311454][ T6525] EXT4-fs (loop3): Test dummy encryption mode enabled
[  244.318502][ T6525] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  244.501334][ T6525] EXT4-fs error (device loop3): ext4_orphan_get:1427: comm syz.3.632: bad orphan inode 131083
[  244.634544][ T6525] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  247.200418][ T6547] device pim6reg1 entered promiscuous mode
[  247.281131][ T6553] loop2: detected capacity change from 0 to 2048
[  247.471626][ T6560] loop4: detected capacity change from 0 to 256
[  247.522751][ T6553] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  247.699685][ T6560] exfat: Deprecated parameter 'utf8'
[  248.025353][ T6553] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.641: bg 0: block 234: padding at end of block bitmap is not set
[  248.044657][ T6560] exfat: Deprecated parameter 'utf8'
[  248.428347][ T6560] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  248.703493][ T6553] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  248.716065][ T6553] EXT4-fs (loop2): This should not happen!! Data will be lost
[  248.716065][ T6553] 
[  248.725733][ T6553] EXT4-fs (loop2): Total free blocks count 0
[  248.731693][ T6553] EXT4-fs (loop2): Free/Dirty block details
[  248.737605][ T6553] EXT4-fs (loop2): free_blocks=0
[  248.742526][ T6553] EXT4-fs (loop2): dirty_blocks=8048
[  248.747810][ T6553] EXT4-fs (loop2): Block reservation details
[  248.753763][ T6553] EXT4-fs (loop2): i_reserved_data_blocks=503
[  248.853161][ T4213] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  248.870963][ T4213] EXT4-fs (loop2): This should not happen!! Data will be lost
[  248.870963][ T4213] 
[  249.133113][ T6579] loop1: detected capacity change from 0 to 512
[  250.438397][ T4379] dvb-usb: did not find the firmware file 'dvb-usb-dtt200u-01.fw' (status -110). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  250.445494][ T6579] EXT4-fs (loop1): Test dummy encryption mode enabled
[  250.459413][ T4981] dvb-usb: did not find the firmware file 'dvb-usb-dtt200u-01.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  250.460567][ T6579] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  250.486169][ T4986] dvb-usb: did not find the firmware file 'dvb-usb-dtt200u-01.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  250.522183][ T4986] dvb-usb: found a 'WideView/Yuan/Yakumo/Hama/Typhoon DVB-T USB2.0 (WT-200U)' in cold state, will try to load a firmware
[  250.557219][ T4981] dvb-usb: found a 'WideView/Yuan/Yakumo/Hama/Typhoon DVB-T USB2.0 (WT-200U)' in cold state, will try to load a firmware
[  250.584800][ T4379] dvb-usb: found a 'WideView/Yuan/Yakumo/Hama/Typhoon DVB-T USB2.0 (WT-200U)' in cold state, will try to load a firmware
[  250.586133][ T6579] EXT4-fs error (device loop1): ext4_orphan_get:1427: comm syz.1.647: bad orphan inode 131083
[  250.599259][ T4986] usb 1-1: Direct firmware load for dvb-usb-dtt200u-01.fw failed with error -2
[  250.613436][ T6579] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  250.617372][ T4986] usb 1-1: Falling back to sysfs fallback for: dvb-usb-dtt200u-01.fw
[  250.881892][ T6590] loop2: detected capacity change from 0 to 1024
[  251.936026][ T6607] netlink: 8 bytes leftover after parsing attributes in process `syz.0.653'.
[  253.536294][ T6622] loop3: detected capacity change from 0 to 2048
[  253.554774][ T6623] loop4: detected capacity change from 0 to 256
[  253.635969][ T6623] exfat: Deprecated parameter 'utf8'
[  253.655332][ T6623] exfat: Deprecated parameter 'utf8'
[  253.705892][ T6622] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  253.856737][ T6623] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  254.387555][ T6629] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set
[  254.663993][ T6617] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.659: bg 0: block 234: padding at end of block bitmap is not set
[  254.772470][ T6617] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 117
[  254.808144][ T6617] EXT4-fs (loop3): This should not happen!! Data will be lost
[  254.808144][ T6617] 
[  255.080410][  T155] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 654 with error 28
[  255.120295][  T155] EXT4-fs (loop3): This should not happen!! Data will be lost
[  255.120295][  T155] 
[  255.137787][ T6642] netlink: 12 bytes leftover after parsing attributes in process `syz.1.662'.
[  255.153240][  T155] EXT4-fs (loop3): Total free blocks count 0
[  255.169122][  T155] EXT4-fs (loop3): Free/Dirty block details
[  255.175026][  T155] EXT4-fs (loop3): free_blocks=0
[  255.204289][  T155] EXT4-fs (loop3): dirty_blocks=656
[  255.251681][  T155] EXT4-fs (loop3): Block reservation details
[  255.265197][  T155] EXT4-fs (loop3): i_reserved_data_blocks=41
[  255.395927][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  255.402260][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  255.761055][ T6650] netlink: 8 bytes leftover after parsing attributes in process `syz.0.668'.
[  256.771090][ T6665] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  257.230066][ T6665] loop4: detected capacity change from 0 to 4096
[  257.331854][ T6665] ntfs3: Unknown parameter 'iocharsetXį¦¹Üuć"showmeta'
[  257.569514][ T6674] fuse: Bad value for 'fd'
[  258.082879][ T6676] loop2: detected capacity change from 0 to 2048
[  258.232795][ T6676] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  258.525382][ T6676] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.676: bg 0: block 234: padding at end of block bitmap is not set
[  258.560569][ T6682] loop4: detected capacity change from 0 to 256
[  258.566925][ T6676] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 117
[  258.579433][ T6676] EXT4-fs (loop2): This should not happen!! Data will be lost
[  258.579433][ T6676] 
[  258.679210][    T9] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  258.706210][ T6682] exfat: Deprecated parameter 'utf8'
[  258.711543][ T6682] exfat: Deprecated parameter 'utf8'
[  258.789185][    T9] EXT4-fs (loop2): This should not happen!! Data will be lost
[  258.789185][    T9] 
[  258.826650][ T6682] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  258.879813][    T9] EXT4-fs (loop2): Total free blocks count 0
[  258.955042][    T9] EXT4-fs (loop2): Free/Dirty block details
[  259.000108][ T6689] netlink: 8 bytes leftover after parsing attributes in process `syz.0.679'.
[  259.093549][    T9] EXT4-fs (loop2): free_blocks=0
[  259.228028][    T9] EXT4-fs (loop2): dirty_blocks=6144
[  259.349470][    T9] EXT4-fs (loop2): Block reservation details
[  259.477410][    T9] EXT4-fs (loop2): i_reserved_data_blocks=384
[  259.628164][ T6685] loop3: detected capacity change from 0 to 8192
[  260.074997][ T6696] loop1: detected capacity change from 0 to 256
[  260.525264][ T6696] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  260.930748][ T6710] fuse: Bad value for 'fd'
[  261.623726][ T6717] loop2: detected capacity change from 0 to 1024
[  261.718887][ T6719] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  261.810830][ T6721] loop4: detected capacity change from 0 to 2048
[  261.919903][ T6719] loop3: detected capacity change from 0 to 4096
[  262.536158][ T6721] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  262.835301][ T6721] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.691: bg 0: block 234: padding at end of block bitmap is not set
[  262.856207][ T6721] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 117
[  262.868760][ T6721] EXT4-fs (loop4): This should not happen!! Data will be lost
[  262.868760][ T6721] 
[  262.921954][ T4393] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  262.935252][ T6719] ntfs3: Unknown parameter 'iocharsetXį¦¹Üuć"showmeta'
[  263.031902][ T4393] EXT4-fs (loop4): This should not happen!! Data will be lost
[  263.031902][ T4393] 
[  263.124666][ T4393] EXT4-fs (loop4): Total free blocks count 0
[  263.495628][ T4393] EXT4-fs (loop4): Free/Dirty block details
[  263.495648][ T4393] EXT4-fs (loop4): free_blocks=0
[  263.495665][ T4393] EXT4-fs (loop4): dirty_blocks=6144
[  263.495678][ T4393] EXT4-fs (loop4): Block reservation details
[  263.495690][ T4393] EXT4-fs (loop4): i_reserved_data_blocks=384
[  263.789511][ T6745] loop1: detected capacity change from 0 to 512
[  264.390114][ T6745] EXT4-fs (loop1): Test dummy encryption mode enabled
[  264.419342][ T6745] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  264.464818][ T6745] EXT4-fs error (device loop1): ext4_orphan_get:1427: comm syz.1.696: bad orphan inode 131083
[  264.468099][ T6748] fuse: Bad value for 'fd'
[  264.475935][ T6745] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  264.691019][ T6750] loop3: detected capacity change from 0 to 8192
[  265.954595][ T6770] loop4: detected capacity change from 0 to 256
[  265.986172][ T6768] loop1: detected capacity change from 0 to 2048
[  266.082330][ T6770] exfat: Deprecated parameter 'utf8'
[  266.126410][ T6770] exfat: Deprecated parameter 'utf8'
[  266.136072][ T6774] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  266.182432][ T6768] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  267.133404][ T6768] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.705: bg 0: block 234: padding at end of block bitmap is not set
[  267.149007][ T6768] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  267.161499][ T6768] EXT4-fs (loop1): This should not happen!! Data will be lost
[  267.161499][ T6768] 
[  267.171156][ T6768] EXT4-fs (loop1): Total free blocks count 0
[  267.177147][ T6768] EXT4-fs (loop1): Free/Dirty block details
[  267.183019][ T6768] EXT4-fs (loop1): free_blocks=0
[  267.187971][ T6768] EXT4-fs (loop1): dirty_blocks=8192
[  267.193238][ T6768] EXT4-fs (loop1): Block reservation details
[  267.199217][ T6768] EXT4-fs (loop1): i_reserved_data_blocks=512
[  267.225244][ T6770] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  267.400205][    T9] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  267.404028][ T6774] loop2: detected capacity change from 0 to 4096
[  267.413615][    T9] EXT4-fs (loop1): This should not happen!! Data will be lost
[  267.413615][    T9] 
[  267.856734][ T6774] ntfs3: Unknown parameter 'iocharsetXį¦¹Üuć"showmeta'
[  268.339590][ T6798] loop0: detected capacity change from 0 to 512
[  268.463311][ T6798] EXT4-fs (loop0): Test dummy encryption mode enabled
[  268.470359][ T6798] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  268.583302][ T6798] EXT4-fs error (device loop0): ext4_orphan_get:1427: comm syz.0.712: bad orphan inode 131083
[  268.597217][ T6798] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  268.939173][ T6791] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  268.949023][ T6791] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  269.800175][ T6818] netlink: 8 bytes leftover after parsing attributes in process `syz.1.708'.
[  271.305304][ T4256] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  271.562078][ T6821] loop1: detected capacity change from 0 to 8192
[  271.612783][ T6823] loop4: detected capacity change from 0 to 256
[  271.665905][ T6823] exfat: Deprecated parameter 'utf8'
[  271.671374][ T6823] exfat: Deprecated parameter 'utf8'
[  271.730920][ T6823] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  271.738814][ T6831] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  271.775550][ T4256] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  271.791274][ T4256] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  271.978214][ T4256] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  272.710818][ T4256] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  272.719484][ T4256] usb 3-1: Product: syz
[  272.723663][ T4256] usb 3-1: Manufacturer: syz
[  272.728618][ T4256] usb 3-1: SerialNumber: syz
[  272.750617][ T6833] loop0: detected capacity change from 0 to 4096
[  272.775531][ T4256] usb 3-1: can't set config #1, error -71
[  272.806018][ T4256] usb 3-1: USB disconnect, device number 5
[  272.856005][ T6833] ntfs3: Unknown parameter 'iocharsetXį¦¹Üuć"showmeta'
[  273.565319][ T6846] netlink: 8 bytes leftover after parsing attributes in process `syz.1.730'.
[  275.048440][ T6869] loop3: detected capacity change from 0 to 8192
[  275.394540][ T6885] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  275.989633][ T6890] netlink: 8 bytes leftover after parsing attributes in process `syz.1.743'.
[  276.661323][ T6885] loop3: detected capacity change from 0 to 4096
[  276.674981][ T6892] loop1: detected capacity change from 0 to 256
[  276.725759][ T6885] ntfs3: Unknown parameter 'iocharsetXį¦¹Üuć"showmeta'
[  276.771764][ T6892] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  277.399585][ T6901] netlink: 12 bytes leftover after parsing attributes in process `syz.4.746'.
[  278.890645][ T6915] loop1: detected capacity change from 0 to 1024
[  279.262943][ T6929] netlink: 8 bytes leftover after parsing attributes in process `syz.2.755'.
[  279.493826][ T6938] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  279.867892][ T6944] loop1: detected capacity change from 0 to 256
[  280.081028][ T6939] netlink: 12 bytes leftover after parsing attributes in process `syz.4.758'.
[  280.277668][ T6944] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  282.120222][ T6970] loop4: detected capacity change from 0 to 1024
[  282.784336][ T6981] netlink: 8 bytes leftover after parsing attributes in process `syz.4.771'.
[  283.052989][ T6983] netlink: 12 bytes leftover after parsing attributes in process `syz.0.773'.
[  284.180137][ T6993] loop1: detected capacity change from 0 to 32768
[  284.256228][ T6994] loop4: detected capacity change from 0 to 256
[  284.943965][ T6993] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  284.964640][ T6993] JBD2: Ignoring recovery information on journal
[  284.986370][ T6994] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  285.138177][ T6993] (syz.1.778,6993,1):ocfs2_read_journal_inode:1564 ERROR: status = -13
[  285.146866][ T6993] (syz.1.778,6993,1):ocfs2_mark_dead_nodes:1849 ERROR: status = -13
[  285.154852][ T6993] (syz.1.778,6993,1):ocfs2_check_volume:2478 ERROR: status = -13
[  285.162709][ T6993] (syz.1.778,6993,1):ocfs2_check_volume:2490 ERROR: status = -13
[  285.170472][ T6993] (syz.1.778,6993,1):ocfs2_mount_volume:1824 ERROR: status = -13
[  285.319549][ T6993] (syz.1.778,6993,1):ocfs2_fill_super:1177 ERROR: status = -13
[  286.420809][ T7012] loop0: detected capacity change from 0 to 1024
[  286.800564][ T7024] netlink: 12 bytes leftover after parsing attributes in process `syz.1.786'.
[  287.338868][ T7025] loop0: detected capacity change from 0 to 1024
[  287.548232][ T7029] netlink: 8 bytes leftover after parsing attributes in process `syz.3.785'.
[  287.560283][ T1112] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  288.139468][ T7033] device pim6reg1 entered promiscuous mode
[  288.202215][ T7035] loop4: detected capacity change from 0 to 256
[  289.791147][ T7035] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  289.865590][ T1112] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  290.114971][ T1112] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  290.401337][ T7048] loop1: detected capacity change from 0 to 32768
[  290.707020][ T7048] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  290.725403][ T7048] JBD2: Ignoring recovery information on journal
[  290.755450][ T1112] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  290.787508][ T1112] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  290.801234][ T7048] (syz.1.793,7048,0):ocfs2_read_journal_inode:1564 ERROR: status = -13
[  290.810073][ T7048] (syz.1.793,7048,0):ocfs2_mark_dead_nodes:1849 ERROR: status = -13
[  290.818182][ T7048] (syz.1.793,7048,0):ocfs2_check_volume:2478 ERROR: status = -13
[  290.825914][ T7048] (syz.1.793,7048,0):ocfs2_check_volume:2490 ERROR: status = -13
[  290.833644][ T7048] (syz.1.793,7048,0):ocfs2_mount_volume:1824 ERROR: status = -13
[  290.847326][ T1112] usb 3-1: Product: syz
[  290.851811][ T1112] usb 3-1: Manufacturer: syz
[  290.856909][ T1112] usb 3-1: SerialNumber: syz
[  290.882058][ T7048] (syz.1.793,7048,0):ocfs2_fill_super:1177 ERROR: status = -13
[  290.909072][ T1112] cdc_mbim 3-1:1.0: skipping garbage
[  291.226090][ T1112] cdc_mbim 3-1:1.0: bind() failure
[  291.233775][ T1112] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[  291.250133][ T7056] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[  291.669447][ T1112] cdc_ncm 3-1:1.1: bind() failure
[  291.725279][ T1112] usb 3-1: USB disconnect, device number 6
[  292.445136][ T7081] netlink: 12 bytes leftover after parsing attributes in process `syz.4.799'.
[  292.556117][ T7083] netlink: 8 bytes leftover after parsing attributes in process `syz.0.800'.
[  293.665434][ T4158] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  294.094075][ T7096] loop4: detected capacity change from 0 to 32768
[  294.195783][ T7096] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[  294.217490][ T7096] JBD2: Ignoring recovery information on journal
[  294.251501][ T7096] (syz.4.807,7096,1):ocfs2_read_journal_inode:1564 ERROR: status = -13
[  294.259888][ T7096] (syz.4.807,7096,1):ocfs2_mark_dead_nodes:1849 ERROR: status = -13
[  294.267911][ T7096] (syz.4.807,7096,1):ocfs2_check_volume:2478 ERROR: status = -13
[  294.275678][ T7096] (syz.4.807,7096,1):ocfs2_check_volume:2490 ERROR: status = -13
[  294.283412][ T7096] (syz.4.807,7096,1):ocfs2_mount_volume:1824 ERROR: status = -13
[  294.295317][ T4158] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  294.306970][ T4158] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  294.318875][ T7096] (syz.4.807,7096,1):ocfs2_fill_super:1177 ERROR: status = -13
[  294.646292][ T4158] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  294.655880][ T4158] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  294.664579][ T4158] usb 3-1: Product: syz
[  294.668825][ T4158] usb 3-1: Manufacturer: syz
[  294.673432][ T4158] usb 3-1: SerialNumber: syz
[  295.151388][ T7106] loop3: detected capacity change from 0 to 32768
[  295.192847][ T4158] cdc_mbim 3-1:1.0: skipping garbage
[  295.212983][ T7106] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.810 (7106)
[  295.235452][ T7093] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  295.280244][ T7108] loop4: detected capacity change from 0 to 256
[  295.329984][ T7106] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  295.339132][ T7106] BTRFS info (device loop3): max_inline at 0
[  295.345120][ T7106] BTRFS info (device loop3): enabling disk space caching
[  295.352258][ T7106] BTRFS info (device loop3): setting nodatasum
[  295.358448][ T7106] BTRFS info (device loop3): turning off barriers
[  295.365250][ T7106] BTRFS info (device loop3): turning on flush-on-commit
[  295.372196][ T7106] BTRFS info (device loop3): enabling ssd optimizations
[  295.379332][ T7106] BTRFS info (device loop3): using spread ssd allocation scheme
[  295.387226][ T7106] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  295.397016][ T7106] BTRFS info (device loop3): use zstd compression, level 3
[  295.404249][ T7106] BTRFS info (device loop3): force clearing of disk cache
[  295.411442][ T7106] BTRFS info (device loop3): max_inline at 4096
[  295.417741][ T7106] BTRFS info (device loop3): disk space caching is enabled
[  295.424944][ T7106] BTRFS info (device loop3): has skinny extents
[  295.439128][ T7108] exfat: Deprecated parameter 'utf8'
[  295.444462][ T7108] exfat: Deprecated parameter 'utf8'
[  295.488490][ T7100] loop1: detected capacity change from 0 to 32768
[  295.508237][ T7108] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  295.577821][ T7100] XFS (loop1): Invalid device [./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa], error=-2
[  295.758760][ T4158] cdc_mbim 3-1:1.0: failed GET_NTB_PARAMETERS
[  295.765361][ T4158] cdc_mbim 3-1:1.0: bind() failure
[  295.774118][ T4158] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[  295.830970][ T4158] cdc_ncm 3-1:1.1: bind() failure
[  296.367251][ T4158] usb 3-1: USB disconnect, device number 7
[  296.421354][ T7106] BTRFS info (device loop3): clearing free space tree
[  296.428922][ T7106] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  296.439001][ T7106] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  296.618851][ T7100] loop1: detected capacity change from 0 to 8192
[  296.745598][ T7100] REISERFS warning (device loop1): super-6515 reiserfs_parse_options: journaled quota format not specified.
[  297.263317][ T7149] netlink: 12 bytes leftover after parsing attributes in process `syz.2.816'.
[  298.074619][ T7157] netlink: 12 bytes leftover after parsing attributes in process `syz.4.818'.
[  298.323856][ T7159] netlink: 8 bytes leftover after parsing attributes in process `syz.0.822'.
[  298.556800][ T4205] usb 3-1: new full-speed USB device number 8 using dummy_hcd
[  299.035545][ T4205] usb 3-1: unable to get BOS descriptor or descriptor too short
[  299.079310][ T4205] usb 3-1: not running at top speed; connect to a high speed hub
[  299.165373][ T4205] usb 3-1: config 0 has an invalid interface number: 96 but max is 0
[  299.173614][ T4205] usb 3-1: config 0 has an invalid descriptor of length 10, skipping remainder of the config
[  299.204337][ T4205] usb 3-1: config 0 has no interface number 0
[  299.210924][ T4205] usb 3-1: config 0 interface 96 has no altsetting 0
[  299.405414][ T4205] usb 3-1: New USB device found, idVendor=25d4, idProduct=4cab, bcdDevice=2a.5f
[  299.424725][ T4205] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  299.470924][ T4205] usb 3-1: Product: syz
[  299.475115][ T4205] usb 3-1: Manufacturer: syz
[  299.634332][ T7156] loop1: detected capacity change from 0 to 32768
[  299.637704][ T4205] usb 3-1: SerialNumber: syz
[  299.660645][ T4205] usb 3-1: config 0 descriptor??
[  300.237603][ T7156] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  300.397238][ T7156] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  300.478509][ T7152] bridge0: port 3(gretap0) entered blocking state
[  300.490448][ T7152] bridge0: port 3(gretap0) entered disabled state
[  300.502496][ T7156] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  300.519003][ T7152] device gretap0 entered promiscuous mode
[  300.529176][ T4208] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  300.537671][ T7152] bridge0: port 3(gretap0) entered blocking state
[  300.544420][ T7152] bridge0: port 3(gretap0) entered forwarding state
[  300.552585][ T4208] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  300.833812][ T4208] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 281ms
[  300.843823][ T4205] r8712u: register rtl8712_netdev_ops to netdev_ops
[  300.858202][ T4205] usb 3-1: r8712u: USB_SPEED_LOW with 0 endpoints
[  300.879357][ T4208] gfs2: fsid=syz:syz.0: jid=0: Done
[  300.885525][ T7156] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  301.008443][ T7192] netlink: 16 bytes leftover after parsing attributes in process `syz.0.830'.
[  301.096061][ T4205] usb 3-1: r8712u: Boot from EFUSE: Autoload Failed
[  301.103655][ T4205] usb 3-1: r8712u: MAC Address from efuse = 00:e0:4c:87:00:00
[  301.111245][ T4205] usb 3-1: r8712u: Loading firmware from "rtlwifi/rtl8712u.bin"
[  301.143556][ T4205] usb 3-1: USB disconnect, device number 8
[  301.224821][ T7196] netlink: 12 bytes leftover after parsing attributes in process `syz.4.829'.
[  302.634249][ T7207] netlink: 8 bytes leftover after parsing attributes in process `syz.4.834'.
[  303.277596][ T7204] bridge0: port 3(gretap0) entered disabled state
[  305.614112][ T7237] hugetlbfs: syz.0.842 (7237): Using mlock ulimits for SHM_HUGETLB is deprecated
[  306.433904][ T7204] bridge0: port 2(bridge_slave_1) entered disabled state
[  306.441281][ T7204] bridge0: port 1(bridge_slave_0) entered disabled state
[  306.684145][ T7204] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  306.763935][ T7245] netlink: 12 bytes leftover after parsing attributes in process `syz.0.845'.
[  306.898688][ T7204] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  307.605062][ T7248] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  307.784321][ T7204] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  307.793681][ T7204] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  307.802099][ T7204] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  307.810604][ T7204] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  307.966547][ T7257] loop1: detected capacity change from 0 to 1024
[  308.390558][ T7264] IPv6: NLM_F_REPLACE set, but no existing node found!
[  308.637849][ T4205] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  309.228903][ T7269] loop4: detected capacity change from 0 to 256
[  309.247958][ T7266] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  309.261969][ T7266] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  309.315108][ T7269] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  309.356706][ T7269] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512
[  309.381947][ T7274] netlink: 6 bytes leftover after parsing attributes in process `syz.1.857'.
[  309.394989][ T7269] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found
[  309.417266][ T7274] loop1: detected capacity change from 0 to 256
[  309.423628][ T7269] UDF-fs: Scanning with blocksize 512 failed
[  309.431331][ T7269] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  309.442964][ T7269] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  309.455456][ T4205] usb 3-1: unable to get BOS descriptor or descriptor too short
[  309.463673][ T7274] exfat: Unknown parameter '0xffffffffffffffff’’’’’’’’'
[  309.580606][ T4205] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 32
[  309.631493][ T4205] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 447
[  309.869975][ T4205] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  309.871807][ T7280] netlink: 12 bytes leftover after parsing attributes in process `syz.0.858'.
[  309.889240][ T4205] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  309.915071][ T4205] usb 3-1: Product: syz
[  309.931640][ T4205] usb 3-1: Manufacturer: syz
[  309.947855][ T4205] usb 3-1: SerialNumber: syz
[  310.024030][ T7274] loop1: detected capacity change from 0 to 32768
[  310.149892][ T7274] JBD2: Ignoring recovery information on journal
[  310.246199][ T4205] cdc_ncm 3-1:1.0: CDC Union missing and no IAD found
[  310.258919][ T4205] cdc_ncm 3-1:1.0: bind() failure
[  310.268397][ T7274] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  310.310829][ T4205] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[  310.368829][ T4205] cdc_ncm 3-1:1.1: bind() failure
[  310.441579][ T4205] usb 3-1: USB disconnect, device number 9
[  310.794136][ T4167] ocfs2: Unmounting device (7,1) on (node local)
[  310.902395][ T7291] netlink: 8 bytes leftover after parsing attributes in process `syz.3.863'.
[  310.975857][ T7295] libceph: resolve '0.' (ret=-3): failed
[  311.020918][ T7295] loop0: detected capacity change from 0 to 256
[  311.156318][ T7295] FAT-fs (loop0): Unrecognized mount option "" or missing value
[  311.562118][ T7307] netlink: 12 bytes leftover after parsing attributes in process `syz.1.861'.
[  311.652821][ T4986] dvb-usb: did not find the firmware file 'dvb-usb-dtt200u-01.fw' (status -110). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  311.668320][ T4981] dvb-usb: did not find the firmware file 'dvb-usb-dtt200u-01.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  311.683492][ T4379] dvb-usb: did not find the firmware file 'dvb-usb-dtt200u-01.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  311.717312][ T4981] usb 4-1: USB disconnect, device number 6
[  311.727669][ T4379] usb 5-1: USB disconnect, device number 8
[  311.739374][ T4986] usb 1-1: USB disconnect, device number 7
[  311.809662][ T7306] loop3: detected capacity change from 0 to 8192
[  311.905765][ T7306] UDF-fs: bad mount option "@" or missing value
[  312.023248][ T7315] loop2: detected capacity change from 0 to 8
[  312.135855][ T4986] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  312.615211][ T4379] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  312.655531][ T4986] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  312.664592][ T4986] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  312.712297][ T4986] usb 1-1: config 0 descriptor??
[  312.776587][ T4986] cp210x 1-1:0.0: cp210x converter detected
[  313.045389][ T4379] usb 4-1: unable to get BOS descriptor or descriptor too short
[  313.153689][ T7328] netlink: 8 bytes leftover after parsing attributes in process `syz.1.877'.
[  313.175463][ T4379] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 32
[  313.191235][ T4379] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 447
[  313.251350][ T7329] netlink: 12 bytes leftover after parsing attributes in process `syz.4.875'.
[  313.460186][ T4379] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  313.480221][ T4379] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  313.509882][ T4379] usb 4-1: Product: syz
[  313.514292][ T4379] usb 4-1: Manufacturer: syz
[  313.534233][ T4379] usb 4-1: SerialNumber: syz
[  313.577930][ T7335] loop1: detected capacity change from 0 to 32768
[  313.596020][ T7295] loop0: detected capacity change from 0 to 1024
[  313.670028][ T7335] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  313.680525][ T7335] JBD2: Ignoring recovery information on journal
[  313.783028][ T7335] (syz.1.880,7335,0):ocfs2_read_journal_inode:1564 ERROR: status = -13
[  313.791367][ T7335] (syz.1.880,7335,0):ocfs2_mark_dead_nodes:1849 ERROR: status = -13
[  313.799644][ T7335] (syz.1.880,7335,0):ocfs2_check_volume:2478 ERROR: status = -13
[  313.805460][ T4986] cp210x 1-1:0.0: failed to get vendor val 0x000e size 678: -71
[  313.807427][ T7335] (syz.1.880,7335,0):ocfs2_check_volume:2490 ERROR: status = -13
[  313.822764][ T7335] (syz.1.880,7335,0):ocfs2_mount_volume:1824 ERROR: status = -13
[  313.840052][ T4986] cp210x 1-1:0.0: GPIO initialisation failed: -71
[  313.847807][ T7335] (syz.1.880,7335,0):ocfs2_fill_super:1177 ERROR: status = -13
[  313.891594][ T4379] cdc_ncm 4-1:1.0: CDC Union missing and no IAD found
[  313.905183][ T4379] cdc_ncm 4-1:1.0: bind() failure
[  313.924767][ T4986] usb 1-1: cp210x converter now attached to ttyUSB0
[  313.932649][ T4379] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[  313.963585][ T4986] usb 1-1: USB disconnect, device number 8
[  313.969701][ T4379] cdc_ncm 4-1:1.1: bind() failure
[  314.045357][ T4379] usb 4-1: USB disconnect, device number 7
[  314.055587][ T4986] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  314.085847][ T4986] cp210x 1-1:0.0: device disconnected
[  314.885030][ T7350] loop1: detected capacity change from 0 to 2048
[  315.328581][ T7351] loop4: detected capacity change from 0 to 8192
[  315.680154][ T7350] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  315.970297][ T7350] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.885: bg 0: block 234: padding at end of block bitmap is not set
[  315.992063][ T7350] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  316.004517][ T7350] EXT4-fs (loop1): This should not happen!! Data will be lost
[  316.004517][ T7350] 
[  316.014192][ T7350] EXT4-fs (loop1): Total free blocks count 0
[  316.020236][ T7350] EXT4-fs (loop1): Free/Dirty block details
[  316.026149][ T7350] EXT4-fs (loop1): free_blocks=0
[  316.031066][ T7350] EXT4-fs (loop1): dirty_blocks=8192
[  316.036356][ T7350] EXT4-fs (loop1): Block reservation details
[  316.042344][ T7350] EXT4-fs (loop1): i_reserved_data_blocks=512
[  316.082866][ T4735] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  316.114918][ T7354] device syzkaller0 entered promiscuous mode
[  316.115203][ T4735] EXT4-fs (loop1): This should not happen!! Data will be lost
[  316.115203][ T4735] 
[  316.142334][ T7351] UDF-fs: bad mount option "@" or missing value
[  316.947848][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  316.954250][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  317.413563][ T7368] loop4: detected capacity change from 0 to 40427
[  317.471244][ T7368] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  317.479172][ T7368] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  317.500192][ T7368] F2FS-fs (loop4): invalid crc value
[  317.518813][ T7368] F2FS-fs (loop4): Found nat_bits in checkpoint
[  317.612792][ T7378] loop3: detected capacity change from 0 to 256
[  317.620393][ T4379] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  317.881701][ T7368] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  317.888910][ T7368] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  319.147289][ T7387] netlink: 20 bytes leftover after parsing attributes in process `syz.2.894'.
[  320.775398][ T4379] usb 1-1: device descriptor read/all, error -71
[  320.828003][ T7395] loop2: detected capacity change from 0 to 1024
[  321.062427][ T7398] loop0: detected capacity change from 0 to 2048
[  321.237043][ T7398] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  321.768689][ T7398] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.898: bg 0: block 234: padding at end of block bitmap is not set
[  321.839319][ T7398] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1752 with error 117
[  321.872477][ T7398] EXT4-fs (loop0): This should not happen!! Data will be lost
[  321.872477][ T7398] 
[  322.516491][ T7405] netlink: 12 bytes leftover after parsing attributes in process `syz.1.895'.
[  323.133519][ T7415] loop2: detected capacity change from 0 to 8192
[  323.181706][ T7415] UDF-fs: bad mount option "@" or missing value
[  325.433814][ T7433] xt_CONNSECMARK: invalid mode: 0
[  326.665257][ T7436] netlink: 20 bytes leftover after parsing attributes in process `syz.2.907'.
[  327.571653][ T7448] loop3: detected capacity change from 0 to 1024
[  327.747896][ T7456] device syzkaller0 entered promiscuous mode
[  327.846742][ T4256] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  328.080103][ T7458] loop2: detected capacity change from 0 to 256
[  329.368790][ T7466] device syzkaller0 entered promiscuous mode
[  329.615306][ T4256] usb 5-1: unable to get BOS descriptor or descriptor too short
[  329.721598][ T7470] netlink: 20 bytes leftover after parsing attributes in process `syz.1.919'.
[  329.740246][ T7470] netlink: 20 bytes leftover after parsing attributes in process `syz.1.919'.
[  330.632223][ T4256] usb 5-1: unable to read config index 0 descriptor/all
[  330.658792][ T4256] usb 5-1: can't read configurations, error -71
[  331.367164][ T7494] netlink: 12 bytes leftover after parsing attributes in process `syz.2.921'.
[  331.543367][ T7496] loop1: detected capacity change from 0 to 512
[  331.801302][ T7496] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  331.821865][ T7504] loop0: detected capacity change from 0 to 1024
[  331.839899][ T7496] ext4 filesystem being mounted at /197/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  332.498941][ T7513] loop3: detected capacity change from 0 to 256
[  334.575299][ T7521] netlink: 20 bytes leftover after parsing attributes in process `syz.1.933'.
[  334.885375][ T7521] netlink: 20 bytes leftover after parsing attributes in process `syz.1.933'.
[  335.965364][ T4981] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  336.505896][ T4981] usb 4-1: unable to get BOS descriptor or descriptor too short
[  336.596368][ T4981] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 32
[  336.620271][ T4981] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 447
[  336.815886][ T4981] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  336.848372][ T4981] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  336.910162][ T4981] usb 4-1: Product: syz
[  336.923992][ T4981] usb 4-1: Manufacturer: syz
[  336.946396][ T4981] usb 4-1: SerialNumber: syz
[  337.266336][ T4981] cdc_ncm 4-1:1.0: CDC Union missing and no IAD found
[  337.276507][ T4981] cdc_ncm 4-1:1.0: bind() failure
[  338.029685][ T4981] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[  338.045084][ T4981] cdc_ncm 4-1:1.1: bind() failure
[  338.164519][ T4981] usb 4-1: USB disconnect, device number 8
[  338.198232][ T7552] loop1: detected capacity change from 0 to 4096
[  338.809847][ T7558] netlink: 20 bytes leftover after parsing attributes in process `syz.0.945'.
[  338.820647][ T7558] netlink: 20 bytes leftover after parsing attributes in process `syz.0.945'.
[  339.440570][ T7560] loop3: detected capacity change from 0 to 1024
[  339.787907][ T7566] loop2: detected capacity change from 0 to 256
[  339.842877][ T7562] loop0: detected capacity change from 0 to 40427
[  339.946400][ T7562] F2FS-fs (loop0): invalid crc value
[  340.021820][ T7562] F2FS-fs (loop0): Found nat_bits in checkpoint
[  340.207312][ T7562] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  340.887846][ T7581] attempt to access beyond end of device
[  340.887846][ T7581] loop0: rw=2049, want=53504, limit=40427
[  341.962384][ T7594] netlink: 6 bytes leftover after parsing attributes in process `syz.3.956'.
[  342.004265][ T7594] loop3: detected capacity change from 0 to 256
[  342.055884][ T7594] exfat: Unknown parameter '0xffffffffffffffff’’’’’’’’'
[  342.191521][ T7594] loop3: detected capacity change from 0 to 512
[  342.221877][ T7594] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  342.263465][ T7594] EXT4-fs (loop3): invalid journal inode
[  342.300496][ T7594] EXT4-fs (loop3): can't get journal size
[  342.366900][ T7594] EXT4-fs (loop3): 1 truncate cleaned up
[  342.392855][ T7594] EXT4-fs (loop3): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none.
[  342.805929][ T4275] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  343.056829][ T7605] netlink: 20 bytes leftover after parsing attributes in process `syz.1.958'.
[  343.072125][ T7605] netlink: 20 bytes leftover after parsing attributes in process `syz.1.958'.
[  343.975921][ T4275] usb 1-1: unable to get BOS descriptor or descriptor too short
[  344.107070][ T4275] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 32
[  344.232650][ T4275] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 447
[  344.729229][ T7611] loop1: detected capacity change from 0 to 40427
[  344.776035][ T4275] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  344.786622][ T7611] F2FS-fs (loop1): invalid crc value
[  344.804112][ T4275] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  344.818397][ T4275] usb 1-1: Product: syz
[  344.822814][ T4275] usb 1-1: Manufacturer: syz
[  344.828335][ T4275] usb 1-1: SerialNumber: syz
[  344.844449][ T7611] F2FS-fs (loop1): Found nat_bits in checkpoint
[  344.887701][ T7616] loop4: detected capacity change from 0 to 256
[  344.897232][ T7611] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  345.011171][ T7616] exfat: Deprecated parameter 'utf8'
[  345.032030][ T7616] exfat: Deprecated parameter 'utf8'
[  345.139119][ T4275] cdc_ncm 1-1:1.0: CDC Union missing and no IAD found
[  345.164150][ T4275] cdc_ncm 1-1:1.0: bind() failure
[  345.165717][ T7616] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  345.282649][ T7621] attempt to access beyond end of device
[  345.282649][ T7621] loop1: rw=2049, want=53504, limit=40427
[  345.423212][ T4275] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[  346.001735][ T4275] cdc_ncm 1-1:1.1: bind() failure
[  346.405400][ T4275] usb 1-1: USB disconnect, device number 11
[  346.798694][ T7639] device syzkaller0 entered promiscuous mode
[  346.909814][ T7642] loop2: detected capacity change from 0 to 32768
[  347.025685][ T7642] gfs2: Unknown parameter 'statfs_quaotum'
[  347.435521][ T7647] netlink: 20 bytes leftover after parsing attributes in process `syz.0.970'.
[  347.686228][ T7651] netlink: 6 bytes leftover after parsing attributes in process `syz.0.973'.
[  347.702053][ T7651] loop0: detected capacity change from 0 to 256
[  348.041814][ T7653] loop2: detected capacity change from 0 to 40427
[  348.085748][ T7651] exfat: Unknown parameter '0xffffffffffffffff’’’’’’’’'
[  348.311625][ T7653] F2FS-fs (loop2): invalid crc value
[  348.841417][ T7653] F2FS-fs (loop2): Found nat_bits in checkpoint
[  348.902728][ T7653] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  348.946050][ T7651] loop0: detected capacity change from 0 to 512
[  348.991014][ T7651] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  349.015581][ T7651] EXT4-fs (loop0): invalid journal inode
[  349.222456][ T7651] EXT4-fs (loop0): can't get journal size
[  349.696565][ T7675] attempt to access beyond end of device
[  349.696565][ T7675] loop2: rw=2049, want=53504, limit=40427
[  350.033865][ T7651] EXT4-fs (loop0): 1 truncate cleaned up
[  350.045373][ T7651] EXT4-fs (loop0): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none.
[  351.398093][ T7689] loop1: detected capacity change from 0 to 32768
[  352.045838][ T7689] gfs2: Unknown parameter 'statfs_quaotum'
[  352.476428][ T7703] netlink: 20 bytes leftover after parsing attributes in process `syz.4.983'.
[  352.505023][ T7703] netlink: 20 bytes leftover after parsing attributes in process `syz.4.983'.
[  354.485451][ T7717] loop2: detected capacity change from 0 to 1024
[  354.855338][ T4986] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  355.245420][ T4986] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  355.327842][ T4986] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  355.925918][ T7734] loop3: detected capacity change from 0 to 40427
[  357.159417][ T4986] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  357.169459][ T4986] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  357.177496][ T4986] usb 5-1: Product: syz
[  357.181648][ T4986] usb 5-1: Manufacturer: syz
[  357.186254][ T4986] usb 5-1: SerialNumber: syz
[  357.332288][ T7734] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  357.340089][ T7734] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  357.350557][ T7734] F2FS-fs (loop3): invalid crc value
[  357.566108][ T7736] loop0: detected capacity change from 0 to 40427
[  357.574082][ T4986] cdc_mbim 5-1:1.0: skipping garbage
[  357.594152][ T7734] F2FS-fs (loop3): Found nat_bits in checkpoint
[  357.597287][ T7723] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  357.649410][ T7736] F2FS-fs (loop0): invalid crc value
[  357.656788][ T7753] loop2: detected capacity change from 0 to 1024
[  357.667876][ T7734] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  357.674911][ T7734] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  357.906196][ T7736] F2FS-fs (loop0): Found nat_bits in checkpoint
[  358.570685][ T7736] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  358.615590][ T7762] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  358.731810][ T4986] cdc_mbim 5-1:1.0: setting tx_max = 184
[  358.738928][ T4986] cdc_mbim 5-1:1.0: cdc-wdm0: USB WDM device
[  358.751460][ T4986] cdc_mbim 5-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.4-1, CDC MBIM, 62:6f:b3:ac:94:6a
[  358.812773][ T7764] netlink: 6 bytes leftover after parsing attributes in process `syz.2.1000'.
[  358.854247][ T7764] loop2: detected capacity change from 0 to 256
[  358.878852][ T7764] exfat: Unknown parameter '0xffffffffffffffff’’’’’’’’'
[  359.040768][ T7764] loop2: detected capacity change from 0 to 512
[  359.069409][ T4206] usb 5-1: USB disconnect, device number 11
[  359.090399][ T4206] cdc_mbim 5-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.4-1, CDC MBIM
[  359.101528][ T7764] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  359.118446][ T7764] EXT4-fs (loop2): invalid journal inode
[  359.142703][ T7764] EXT4-fs (loop2): can't get journal size
[  359.289847][ T7764] EXT4-fs (loop2): 1 truncate cleaned up
[  359.298709][ T7764] EXT4-fs (loop2): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none.
[  359.851408][ T7794] loop0: detected capacity change from 0 to 40427
[  359.929913][ T7794] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  359.937860][ T7794] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  359.949006][ T7794] F2FS-fs (loop0): invalid crc value
[  360.035731][ T7794] F2FS-fs (loop0): Found nat_bits in checkpoint
[  360.100943][ T7794] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  360.109339][ T7794] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  360.912506][ T7814] loop3: detected capacity change from 0 to 1024
[  361.193075][ T7816] loop4: detected capacity change from 0 to 32768
[  361.285986][ T7816] gfs2: Unknown parameter 'statfs_quaotum'
[  362.297468][ T7834] loop3: detected capacity change from 0 to 4096
[  362.709333][ T7847] device syzkaller0 entered promiscuous mode
[  362.807833][ T7860] loop3: detected capacity change from 0 to 512
[  362.836125][ T7852] loop0: detected capacity change from 0 to 40427
[  362.882942][ T7852] F2FS-fs (loop0): invalid crc value
[  362.904408][ T7852] F2FS-fs (loop0): Found nat_bits in checkpoint
[  362.999101][ T7852] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  363.789058][ T7872] attempt to access beyond end of device
[  363.789058][ T7872] loop0: rw=2049, want=53504, limit=40427
[  364.930378][ T7860] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  364.948723][ T7860] ext4 filesystem being mounted at /222/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  365.203097][ T7876] loop1: detected capacity change from 0 to 1024
[  365.836713][ T7880] loop0: detected capacity change from 0 to 512
[  366.101424][ T7882] loop3: detected capacity change from 0 to 32768
[  366.112145][ T7880] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  366.123577][ T7880] ext4 filesystem being mounted at /216/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  366.148193][ T7882] gfs2: Unknown parameter 'statfs_quaotum'
[  366.594168][ T7889] loop3: detected capacity change from 0 to 1024
[  366.826358][ T7853] bridge0: port 2(bridge_slave_1) entered disabled state
[  366.833780][ T7853] bridge0: port 1(bridge_slave_0) entered disabled state
[  367.151160][ T7891] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  367.159249][ T7891] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  367.881691][ T7916] loop1: detected capacity change from 0 to 64
[  369.568327][ T7932] loop1: detected capacity change from 0 to 64
[  369.588634][ T7928] loop3: detected capacity change from 0 to 40427
[  369.615507][ T7853] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  369.627506][ T7928] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  369.635355][ T7928] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  369.646652][ T7928] F2FS-fs (loop3): invalid crc value
[  369.682853][ T7928] F2FS-fs (loop3): Found nat_bits in checkpoint
[  369.704395][ T7853] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  369.727876][ T7928] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  369.734940][ T7928] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  370.051956][ T7853] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  370.070971][ T7853] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  370.083602][ T7853] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  370.098264][ T7853] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  370.263110][ T7903] netlink: 6 bytes leftover after parsing attributes in process `syz.0.1031'.
[  371.174894][ T7961] loop1: detected capacity change from 0 to 256
[  371.616621][ T7965] loop0: detected capacity change from 0 to 256
[  371.701380][ T7961] exfat: Deprecated parameter 'utf8'
[  371.787558][ T7961] exfat: Deprecated parameter 'utf8'
[  372.723990][ T7977] loop3: detected capacity change from 0 to 512
[  373.414831][ T7961] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  373.441903][ T7977] EXT4-fs (loop3): Test dummy encryption mode enabled
[  373.448756][ T7977] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  373.492114][ T7977] EXT4-fs error (device loop3): ext4_orphan_get:1427: comm syz.3.1043: bad orphan inode 131083
[  373.503607][ T7977] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  373.891729][ T7988] loop4: detected capacity change from 0 to 8
[  374.257074][ T7994] xt_CONNSECMARK: invalid mode: 0
[  375.280405][ T8002] netlink: 6 bytes leftover after parsing attributes in process `syz.2.1058'.
[  375.308302][ T8002] loop2: detected capacity change from 0 to 256
[  375.406320][ T8002] exfat: Unknown parameter '0xffffffffffffffff’’’’’’’’'
[  375.484201][ T8002] loop2: detected capacity change from 0 to 512
[  375.494183][ T8014] loop4: detected capacity change from 0 to 256
[  375.705786][ T8011] loop0: detected capacity change from 0 to 40427
[  375.715920][ T8008] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  375.723962][ T8008] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  375.748788][ T8002] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  375.771052][ T8011] F2FS-fs (loop0): invalid crc value
[  375.771814][ T8014] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  375.821917][ T8002] EXT4-fs (loop2): invalid journal inode
[  375.823968][ T8011] F2FS-fs (loop0): Found nat_bits in checkpoint
[  375.868712][ T8002] EXT4-fs (loop2): can't get journal size
[  375.895291][ T8011] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  376.190012][ T8022] loop3: detected capacity change from 0 to 512
[  376.711635][ T8024] attempt to access beyond end of device
[  376.711635][ T8024] loop0: rw=2049, want=53504, limit=40427
[  377.326323][ T8002] EXT4-fs (loop2): 1 truncate cleaned up
[  377.336187][ T8002] EXT4-fs (loop2): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none.
[  377.455679][ T8022] EXT4-fs (loop3): Test dummy encryption mode enabled
[  377.463421][ T8022] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  377.533779][ T8022] EXT4-fs error (device loop3): ext4_orphan_get:1427: comm syz.3.1064: bad orphan inode 131083
[  377.537564][ T8027] loop4: detected capacity change from 0 to 1024
[  377.555352][ T8022] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  377.806086][ T8029] loop1: detected capacity change from 0 to 512
[  378.008639][ T8029] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  378.040257][ T8029] ext4 filesystem being mounted at /230/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  378.166171][ T8032] loop3: detected capacity change from 0 to 40427
[  378.207955][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  378.214354][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  379.377078][ T8032] F2FS-fs (loop3): invalid crc value
[  379.519114][ T8032] F2FS-fs (loop3): Found nat_bits in checkpoint
[  379.575632][ T8032] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  379.630705][ T8049] loop4: detected capacity change from 0 to 64
[  379.798810][ T8052] loop1: detected capacity change from 0 to 8
[  379.816126][ T8049] overlayfs: unrecognized mount option "ˆ¼bnė›	" or missing value
[  379.906197][ T8056] attempt to access beyond end of device
[  379.906197][ T8056] loop3: rw=2049, want=53504, limit=40427
[  380.624466][ T8068] loop2: detected capacity change from 0 to 1024
[  381.386343][ T8074] loop0: detected capacity change from 0 to 512
[  382.558926][ T8074] EXT4-fs (loop0): Test dummy encryption mode enabled
[  382.565954][ T8074] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  382.755783][ T8082] loop3: detected capacity change from 0 to 4096
[  383.519484][ T8074] EXT4-fs error (device loop0): ext4_orphan_get:1427: comm syz.0.1078: bad orphan inode 131083
[  383.545830][ T8074] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  383.778944][ T8089] loop2: detected capacity change from 0 to 4096
[  383.832538][ T8093] loop3: detected capacity change from 0 to 512
[  383.955426][ T8095] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1082'.
[  383.970697][ T8095] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1082'.
[  384.005944][ T4205] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  384.220029][ T8093] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  384.353624][ T8093] ext4 filesystem being mounted at /234/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  384.704676][ T8099] loop1: detected capacity change from 0 to 512
[  385.208630][ T4205] usb 5-1: unable to get BOS descriptor or descriptor too short
[  385.305815][ T4205] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 32
[  385.458561][ T4205] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 447
[  385.487516][ T8099] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  385.512307][ T8110] netlink: 6 bytes leftover after parsing attributes in process `syz.0.1086'.
[  385.528262][ T8099] ext4 filesystem being mounted at /235/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  385.574843][ T8112] loop0: detected capacity change from 0 to 256
[  385.777883][ T8112] exfat: Unknown parameter '0xffffffffffffffff’’’’’’’’'
[  386.232317][ T8115] loop2: detected capacity change from 0 to 40427
[  386.321830][ T4205] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  386.331004][ T4205] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  386.349724][ T4205] usb 5-1: Product: syz
[  386.352267][ T8115] F2FS-fs (loop2): invalid crc value
[  386.353942][ T4205] usb 5-1: Manufacturer: syz
[  386.384943][ T8121] loop3: detected capacity change from 0 to 8
[  386.385192][ T4205] usb 5-1: SerialNumber: syz
[  386.410100][ T8115] F2FS-fs (loop2): Found nat_bits in checkpoint
[  386.455226][ T8115] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  386.505321][ T4205] usb 5-1: can't set config #1, error -71
[  386.546482][ T4205] usb 5-1: USB disconnect, device number 12
[  386.680225][ T8125] loop4: detected capacity change from 0 to 1024
[  386.764893][ T8127] attempt to access beyond end of device
[  386.764893][ T8127] loop2: rw=2049, want=53504, limit=40427
[  388.621564][ T8145] loop1: detected capacity change from 0 to 512
[  389.228883][ T8145] EXT4-fs (loop1): Test dummy encryption mode enabled
[  389.235925][ T8145] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  389.315936][ T8145] EXT4-fs error (device loop1): ext4_orphan_get:1427: comm syz.1.1094: bad orphan inode 131083
[  389.389004][ T8151] loop3: detected capacity change from 0 to 64
[  389.401311][ T8145] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  390.188772][ T8156] loop0: detected capacity change from 0 to 512
[  390.421841][ T8156] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  390.438566][ T8156] ext4 filesystem being mounted at /232/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  390.480618][ T8167] loop1: detected capacity change from 0 to 64
[  391.132241][ T8168] loop3: detected capacity change from 0 to 512
[  391.335044][ T8168] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  391.368780][ T8168] ext4 filesystem being mounted at /238/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  391.401468][ T8176] loop2: detected capacity change from 0 to 512
[  391.628846][ T8182] loop4: detected capacity change from 0 to 1024
[  391.635462][ T5356] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  391.845087][ T8176] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  392.065422][ T8176] ext4 filesystem being mounted at /186/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  392.195669][ T5356] usb 1-1: unable to get BOS descriptor or descriptor too short
[  392.307024][ T5356] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 32
[  392.325767][ T5356] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 447
[  392.595350][ T5356] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  392.643203][ T5356] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  392.691803][ T5356] usb 1-1: Product: syz
[  392.708071][ T8195] loop4: detected capacity change from 0 to 64
[  392.715283][ T5356] usb 1-1: Manufacturer: syz
[  392.730076][ T5356] usb 1-1: SerialNumber: syz
[  393.009832][ T8187] loop1: detected capacity change from 0 to 40427
[  393.066152][ T5356] cdc_ncm 1-1:1.0: CDC Union missing and no IAD found
[  393.078292][ T5356] cdc_ncm 1-1:1.0: bind() failure
[  393.088520][ T5356] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[  393.099235][ T5356] cdc_ncm 1-1:1.1: bind() failure
[  393.126332][ T5356] usb 1-1: USB disconnect, device number 12
[  393.146748][ T8187] F2FS-fs (loop1): Insane cp_payload (553648128 >= 504)
[  393.159978][ T8187] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  393.173260][ T8187] F2FS-fs (loop1): Unrecognized mount option "fault_t000000000000770" or missing value
[  393.304989][ T8205] loop2: detected capacity change from 0 to 512
[  393.408966][ T8205] EXT4-fs (loop2): Test dummy encryption mode enabled
[  393.415964][ T8205] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  393.532899][ T8205] EXT4-fs error (device loop2): ext4_orphan_get:1427: comm syz.2.1107: bad orphan inode 131083
[  393.547607][ T8205] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  394.498898][ T8227] loop0: detected capacity change from 0 to 512
[  394.584598][ T8230] loop2: detected capacity change from 0 to 256
[  394.826813][ T8227] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  395.229645][ T8227] ext4 filesystem being mounted at /235/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  395.414237][ T8238] loop2: detected capacity change from 0 to 1024
[  395.434266][ T8236] device syzkaller0 entered promiscuous mode
[  396.374392][ T8244] loop3: detected capacity change from 0 to 40427
[  396.569857][ T8250] loop4: detected capacity change from 0 to 512
[  397.359797][ T8250] EXT4-fs (loop4): Test dummy encryption mode enabled
[  397.366671][ T8250] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  397.416002][ T8250] EXT4-fs error (device loop4): ext4_orphan_get:1427: comm syz.4.1120: bad orphan inode 131083
[  397.435659][ T8250] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  397.455976][ T8244] F2FS-fs (loop3): invalid crc value
[  397.477310][ T8244] F2FS-fs (loop3): Found nat_bits in checkpoint
[  397.525225][ T8244] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  397.703643][ T8244] attempt to access beyond end of device
[  397.703643][ T8244] loop3: rw=2049, want=53504, limit=40427
[  397.877118][ T7169] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  397.891252][ T8264] loop4: detected capacity change from 0 to 256
[  397.985750][ T8264] exfat: Deprecated parameter 'utf8'
[  397.991131][ T8264] exfat: Deprecated parameter 'utf8'
[  398.074102][ T8264] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  398.121771][ T8252] loop0: detected capacity change from 0 to 40427
[  398.280101][ T8266] loop1: detected capacity change from 0 to 40427
[  398.339318][ T8266] F2FS-fs (loop1): invalid crc value
[  398.346978][ T8252] F2FS-fs (loop0): Insane cp_payload (553648128 >= 504)
[  398.374529][ T8252] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  398.383709][ T8252] F2FS-fs (loop0): Unrecognized mount option "fault_t000000000000770" or missing value
[  398.402010][ T8266] F2FS-fs (loop1): Found nat_bits in checkpoint
[  398.455391][ T8266] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  399.490435][ T8252] loop0: detected capacity change from 0 to 512
[  399.497212][ T7169] usb 3-1: unable to get BOS descriptor or descriptor too short
[  399.586036][ T8252] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpid,grpquota,,errors=continue. Quota mode: writeback.
[  399.610487][ T7169] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 32
[  399.623247][ T8252] ext4 filesystem being mounted at /237/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  399.702977][ T8279] attempt to access beyond end of device
[  399.702977][ T8279] loop1: rw=2049, want=53504, limit=40427
[  400.428987][ T7169] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 447
[  400.466735][ T8283] 
[  400.469088][ T8283] ======================================================
[  400.474810][ T8282] loop4: detected capacity change from 0 to 256
[  400.476107][ T8283] WARNING: possible circular locking dependency detected
[  400.476124][ T8283] 5.15.180-syzkaller #0 Not tainted
[  400.476134][ T8283] ------------------------------------------------------
[  400.476140][ T8283] syz.0.1121/8283 is trying to acquire lock:
[  400.476149][ T8283] ffff888062aaaa58 (&ei->i_data_sem/2){++++}-{3:3}, at: ext4_map_blocks+0x901/0x1c60
[  400.517025][ T8283] 
[  400.517025][ T8283] but task is already holding lock:
[  400.524366][ T8283] ffff88807c032208 (&s->s_dquot.dqio_sem){++++}-{3:3}, at: v2_write_dquot+0x12b/0x190
[  400.527245][ T7169] usb 3-1: string descriptor 0 read error: -71
[  400.533925][ T8283] 
[  400.533925][ T8283] which lock already depends on the new lock.
[  400.533925][ T8283] 
[  400.533932][ T8283] 
[  400.533932][ T8283] the existing dependency chain (in reverse order) is:
[  400.533939][ T8283] 
[  400.533939][ T8283] -> #2 (&s->s_dquot.dqio_sem){++++}-{3:3}:
[  400.533968][ T8283]        down_read+0x44/0x2e0
[  400.533990][ T8283]        v2_read_dquot+0x4a/0x110
[  400.534005][ T8283]        dquot_acquire+0x152/0x520
[  400.534027][ T8283]        ext4_acquire_dquot+0x2d9/0x4a0
[  400.534046][ T8283]        dqget+0x778/0xeb0
[  400.534064][ T8283]        __dquot_initialize+0x3b6/0xcb0
[  400.534083][ T8283]        ext4_file_open+0x2d1/0x6a0
[  400.534107][ T8283]        do_dentry_open+0x7ff/0xf80
[  400.534122][ T8283]        path_openat+0x2682/0x2f30
[  400.534139][ T8283]        do_filp_open+0x1b3/0x3e0
[  400.534155][ T8283]        do_sys_openat2+0x142/0x4a0
[  400.534169][ T8283]        __x64_sys_openat+0x135/0x160
[  400.534184][ T8283]        do_syscall_64+0x4c/0xa0
[  400.534199][ T8283]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  400.534218][ T8283] 
[  400.534218][ T8283] -> #1 (&dquot->dq_lock){+.+.}-{3:3}:
[  400.534242][ T8283]        __mutex_lock_common+0x1eb/0x2390
[  400.540629][ T7169] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  400.550764][ T8283]        mutex_lock_nested+0x17/0x20
[  400.550786][ T8283]        dquot_commit+0x5a/0x410
[  400.550823][ T8283]        ext4_write_dquot+0x1f0/0x360
[  400.550843][ T8283]        mark_all_dquot_dirty+0xf9/0x400
[  400.550863][ T8283]        __dquot_alloc_space+0x5d0/0xe20
[  400.550882][ T8283]        ext4_mb_new_blocks+0xf68/0x4940
[  400.550898][ T8283]        ext4_ext_map_blocks+0x146c/0x64e0
[  400.550917][ T8283]        ext4_map_blocks+0x9cd/0x1c60
[  400.550935][ T8283]        ext4_getblk+0x16d/0x630
[  400.564299][ T7169] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  400.567974][ T8283]        ext4_bread+0x26/0x180
[  400.567996][ T8283]        ext4_append+0x2c3/0x560
[  400.568013][ T8283]        ext4_init_new_dir+0x2a2/0x940
[  400.627497][ T7169] usb 3-1: can't set config #1, error -71
[  400.629047][ T8283]        ext4_mkdir+0x47d/0xc50
[  400.636105][ T7169] usb 3-1: USB disconnect, device number 10
[  400.640358][ T8283]        vfs_mkdir+0x387/0x570
[  400.755023][ T8283]        do_mkdirat+0x1d7/0x5a0
[  400.759855][ T8283]        __x64_sys_mkdirat+0x85/0x90
[  400.765122][ T8283]        do_syscall_64+0x4c/0xa0
[  400.770055][ T8283]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  400.776452][ T8283] 
[  400.776452][ T8283] -> #0 (&ei->i_data_sem/2){++++}-{3:3}:
[  400.784273][ T8283]        __lock_acquire+0x2c33/0x7c60
[  400.789651][ T8283]        lock_acquire+0x197/0x3f0
[  400.794676][ T8283]        down_write+0x38/0x60
[  400.799348][ T8283]        ext4_map_blocks+0x901/0x1c60
[  400.804712][ T8283]        ext4_getblk+0x16d/0x630
[  400.809632][ T8283]        ext4_bread+0x26/0x180
[  400.814374][ T8283]        ext4_quota_write+0x230/0x570
[  400.819727][ T8283]        do_insert_tree+0x115c/0x1970
[  400.825077][ T8283]        do_insert_tree+0x5b1/0x1970
[  400.830348][ T8283]        do_insert_tree+0x5b1/0x1970
[  400.835612][ T8283]        do_insert_tree+0x5b1/0x1970
[  400.840873][ T8283]        qtree_write_dquot+0x361/0x4b0
[  400.846304][ T8283]        v2_write_dquot+0x108/0x190
[  400.851476][ T8283]        dquot_acquire+0x2d5/0x520
[  400.856563][ T8283]        ext4_acquire_dquot+0x2d9/0x4a0
[  400.862087][ T8283]        dqget+0x778/0xeb0
[  400.866479][ T8283]        dquot_set_dqblk+0x27/0xf90
[  400.871654][ T8283]        quota_setquota+0x4ac/0x530
[  400.876829][ T8283]        __se_sys_quotactl+0x295/0x6c0
[  400.882285][ T8283]        do_syscall_64+0x4c/0xa0
[  400.887205][ T8283]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  400.893596][ T8283] 
[  400.893596][ T8283] other info that might help us debug this:
[  400.893596][ T8283] 
[  400.903919][ T8283] Chain exists of:
[  400.903919][ T8283]   &ei->i_data_sem/2 --> &dquot->dq_lock --> &s->s_dquot.dqio_sem
[  400.903919][ T8283] 
[  400.917534][ T8283]  Possible unsafe locking scenario:
[  400.917534][ T8283] 
[  400.924973][ T8283]        CPU0                    CPU1
[  400.930317][ T8283]        ----                    ----
[  400.935657][ T8283]   lock(&s->s_dquot.dqio_sem);
[  400.940485][ T8283]                                lock(&dquot->dq_lock);
[  400.947397][ T8283]                                lock(&s->s_dquot.dqio_sem);
[  400.954739][ T8283]   lock(&ei->i_data_sem/2);
[  400.959307][ T8283] 
[  400.959307][ T8283]  *** DEADLOCK ***
[  400.959307][ T8283] 
[  400.967422][ T8283] 3 locks held by syz.0.1121/8283:
[  400.972507][ T8283]  #0: ffff88807c0320e0 (&type->s_umount_key#32){++++}-{3:3}, at: user_get_super+0x118/0x240
[  400.982674][ T8283]  #1: ffff88805e1a0968 (&dquot->dq_lock){+.+.}-{3:3}, at: dquot_acquire+0x63/0x520
[  400.992054][ T8283]  #2: ffff88807c032208 (&s->s_dquot.dqio_sem){++++}-{3:3}, at: v2_write_dquot+0x12b/0x190
[  401.002026][ T8283] 
[  401.002026][ T8283] stack backtrace:
[  401.007888][ T8283] CPU: 0 PID: 8283 Comm: syz.0.1121 Not tainted 5.15.180-syzkaller #0
[  401.016023][ T8283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  401.026058][ T8283] Call Trace:
[  401.029328][ T8283]  <TASK>
[  401.032260][ T8283]  dump_stack_lvl+0x168/0x230
[  401.036923][ T8283]  ? load_image+0x3b0/0x3b0
[  401.041407][ T8283]  ? show_regs_print_info+0x20/0x20
[  401.046590][ T8283]  ? print_circular_bug+0x12b/0x1a0
[  401.051777][ T8283]  check_noncircular+0x274/0x310
[  401.056696][ T8283]  ? add_chain_block+0x940/0x940
[  401.061615][ T8283]  ? lockdep_lock+0xdc/0x1e0
[  401.066183][ T8283]  ? __lock_acquire+0x13ad/0x7c60
[  401.071187][ T8283]  ? mark_lock+0x94/0x320
[  401.075502][ T8283]  __lock_acquire+0x2c33/0x7c60
[  401.080352][ T8283]  ? verify_lock_unused+0x140/0x140
[  401.085532][ T8283]  ? verify_lock_unused+0x140/0x140
[  401.090710][ T8283]  ? verify_lock_unused+0x140/0x140
[  401.095887][ T8283]  ? mark_lock+0x94/0x320
[  401.100195][ T8283]  ? __lock_acquire+0x289d/0x7c60
[  401.105204][ T8283]  lock_acquire+0x197/0x3f0
[  401.109687][ T8283]  ? ext4_map_blocks+0x901/0x1c60
[  401.114689][ T8283]  ? __might_sleep+0xf0/0xf0
[  401.119254][ T8283]  ? read_lock_is_recursive+0x10/0x10
[  401.124605][ T8283]  ? percpu_counter_add_batch+0x13b/0x160
[  401.130303][ T8283]  ? rcu_is_watching+0x11/0xa0
[  401.135047][ T8283]  ? ext4_es_lookup_extent+0x408/0xa10
[  401.140489][ T8283]  down_write+0x38/0x60
[  401.144631][ T8283]  ? ext4_map_blocks+0x901/0x1c60
[  401.149644][ T8283]  ext4_map_blocks+0x901/0x1c60
[  401.154486][ T8283]  ? ext4_map_blocks+0x310/0x1c60
[  401.159498][ T8283]  ? ext4_issue_zeroout+0x250/0x250
[  401.164681][ T8283]  ? ext4_issue_zeroout+0x250/0x250
[  401.169881][ T8283]  ext4_getblk+0x16d/0x630
[  401.174280][ T8283]  ? do_insert_tree+0x5b1/0x1970
[  401.179194][ T8283]  ? do_insert_tree+0x5b1/0x1970
[  401.184115][ T8283]  ? do_insert_tree+0x5b1/0x1970
[  401.189032][ T8283]  ? ext4_get_block_unwritten+0x30/0x30
[  401.194561][ T8283]  ? ext4_getblk+0x23f/0x630
[  401.199131][ T8283]  ? ext4_get_block_unwritten+0x30/0x30
[  401.204654][ T8283]  ext4_bread+0x26/0x180
[  401.208877][ T8283]  ext4_quota_write+0x230/0x570
[  401.213715][ T8283]  ? ext4_quota_read+0x3a0/0x3a0
[  401.218629][ T8283]  ? memset+0x1e/0x40
[  401.222593][ T8283]  ? ext4_quota_read+0x327/0x3a0
[  401.227519][ T8283]  do_insert_tree+0x115c/0x1970
[  401.232355][ T8283]  ? ext4_quota_read+0x3a0/0x3a0
[  401.237279][ T8283]  do_insert_tree+0x5b1/0x1970
[  401.242019][ T8283]  ? from_kgid+0x159/0x680
[  401.246419][ T8283]  do_insert_tree+0x5b1/0x1970
[  401.251163][ T8283]  ? from_kgid+0x159/0x680
[  401.255561][ T8283]  do_insert_tree+0x5b1/0x1970
[  401.260309][ T8283]  qtree_write_dquot+0x361/0x4b0
[  401.265224][ T8283]  v2_write_dquot+0x108/0x190
[  401.269881][ T8283]  dquot_acquire+0x2d5/0x520
[  401.274453][ T8283]  ext4_acquire_dquot+0x2d9/0x4a0
[  401.279460][ T8283]  dqget+0x778/0xeb0
[  401.283341][ T8283]  dquot_set_dqblk+0x27/0xf90
[  401.288005][ T8283]  quota_setquota+0x4ac/0x530
[  401.292664][ T8283]  ? quota_getnextquota+0x450/0x450
[  401.297849][ T8283]  ? bpf_lsm_capable+0x5/0x10
[  401.302507][ T8283]  ? do_quotactl+0x4f3/0x710
[  401.307347][ T8283]  __se_sys_quotactl+0x295/0x6c0
[  401.312284][ T8283]  ? __x64_sys_quotactl+0xa0/0xa0
[  401.317291][ T8283]  ? lockdep_hardirqs_on+0x94/0x140
[  401.322470][ T8283]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  401.328652][ T8283]  do_syscall_64+0x4c/0xa0
[  401.333056][ T8283]  ? clear_bhb_loop+0x15/0x70
[  401.337714][ T8283]  ? clear_bhb_loop+0x15/0x70
[  401.342369][ T8283]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  401.348256][ T8283] RIP: 0033:0x7fa5c2124969
[  401.352654][ T8283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  401.372260][ T8283] RSP: 002b:00007fa5bff6b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3
[  401.380658][ T8283] RAX: ffffffffffffffda RBX: 00007fa5c234c080 RCX: 00007fa5c2124969
[  401.388621][ T8283] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffff80000801
[  401.396572][ T8283] RBP: 00007fa5c21a6ab1 R08: 0000000000000000 R09: 0000000000000000
[  401.404518][ T8283] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000000
[  401.412469][ T8283] R13: 0000000000000000 R14: 00007fa5c234c080 R15: 00007fff80a87a78
[  401.420513][ T8283]  </TASK>
[  401.423566][    C0] vkms_vblank_simulate: vblank timer overrun
[  401.447114][ T8275] bridge0: port 2(bridge_slave_1) entered disabled state
[  401.452927][ T8282] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  401.454254][ T8275] bridge0: port 1(bridge_slave_0) entered disabled state
[  402.517757][ T8295] loop1: detected capacity change from 0 to 256
[  403.070822][ T8275] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  403.113029][ T8275] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  403.501739][ T8275] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  403.510772][ T8275] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  403.520052][ T8275] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  403.529005][ T8275] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0