last executing test programs:

2m47.939200785s ago: executing program 4 (id=5):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
syz_emit_ethernet(0x42, &(0x7f0000000440)={@link_local, @remote, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, '\x00@\x00', 0xc, 0x3c, 0x0, @rand_addr=' \x01\x00', @mcast2, {[], {0x0, 0x0, 0xc, 0x0, @gue={{0x1, 0x0, 0x1, 0x40, 0x0, @void}}}}}}}}, 0x0)
mount(&(0x7f0000000040)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)='exfat\x00', 0x0, 0x0)

2m47.814384775s ago: executing program 4 (id=10):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000440)={[{@noload}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@block_validity}, {@quota}]}, 0x3, 0x431, &(0x7f0000000940)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, 0x0)
chdir(&(0x7f0000000000)='./file0\x00')
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f00000003c0)='./bus\x00', 0x84902, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x11, r1, 0x0)
write$FUSE_ATTR(r0, &(0x7f0000000440)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}}}, 0x78)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000040)={{0x1}})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
r4 = fcntl$dupfd(r1, 0x0, r0)
bind$inet6(r4, &(0x7f0000000080)={0xa, 0x4e22, 0x94d4e31c, @dev={0xfe, 0x80, '\x00', 0x20}, 0xb}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$tipc(r7, &(0x7f0000002700)={0x0, 0x0, 0x0}, 0x0)
recvmsg(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1}, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000000000000000000000000000000000078c9b7225b76e3b4c55b58482dd229a19ab9cbb54852311e89aae6e6cd6ecfddd391d09aeb6ea6705fd0d17b34a27da6c01f01fbd8e693f9d833ff6649e8aee3f8b2e669cba0e415513635cee43013d0c8bde6321a9056e12ef6fe85820f9b0d9c98a77e49f83194d42d6c9bc41bd8e80a04bbca4796b1e57b95b22c203bbbb04f402066d4c9210f5780a2fa534da2efdf1206a38999c3b973092a36381b5f2221abbb40e180013d30a9d14cd49cfd03a19e9ffbfd1913c2479e9f7df1c96203acdebae7efb0b8", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000820000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$binfmt_script(r3, &(0x7f0000000000), 0x208e24b)
r8 = userfaultfd(0x801)
ioctl$UFFDIO_COPY(r8, 0x541b, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmsg$unix(r9, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)

2m46.075963077s ago: executing program 4 (id=16):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x3, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = openat$random(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
fsetxattr(0xffffffffffffffff, &(0x7f0000000000)=@known='security.selinux\x00', &(0x7f00000001c0)=':yz1', 0x1001, 0x0)
ioctl$RNDADDENTROPY(r3, 0x40085203, &(0x7f0000000000)=ANY=[])
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0xa, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
r6 = socket$packet(0x11, 0xa, 0x300)
setsockopt$SO_ATTACH_FILTER(r6, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000100)=[{0x80000006}]}, 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000300)={@local, @local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @private, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0)
r7 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
write$selinux_attr(r7, &(0x7f0000000100)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)
dup2(r0, r7)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000e2793b10d10501200006010203010902120008000000000904"], 0x0)
syz_usb_control_io(r8, 0x0, 0x0)
syz_usb_control_io$uac1(r8, 0x0, 0x0)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
r9 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r9}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r10 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sched_switch\x00', r10}, 0x10)

2m45.197830699s ago: executing program 4 (id=21):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x7, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f00000003c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$xdp(r3, &(0x7f00000002c0)={0x2c, 0xa, 0x0, 0x4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r2}, 0x10)
syz_usb_control_io$cdc_ncm(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(0xffffffffffffffff, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000400)=[{0x6}]}, 0x10)
write$binfmt_misc(r4, 0x0, 0x0)

2m45.197647149s ago: executing program 32 (id=21):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x7, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f00000003c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$xdp(r3, &(0x7f00000002c0)={0x2c, 0xa, 0x0, 0x4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r2}, 0x10)
syz_usb_control_io$cdc_ncm(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(0xffffffffffffffff, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000400)=[{0x6}]}, 0x10)
write$binfmt_misc(r4, 0x0, 0x0)

11.999818992s ago: executing program 3 (id=487):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="9feb010018000000000000008100000081000000050000000e0000000300000f01000000020000b23b22b01b2ef9d6526702136b86ca0400090000000400000001000000f700000002000000010000000900000020000000d2000000000000000300000000030000000300000009000000050000000000000c010000000d000000000000010000000036000b020f00000000000001000000002100060a0c000000000000090200000000000000002e0000"], &(0x7f00000003c0)=""/237, 0xa1, 0xed, 0x1, 0x101, 0x10000, @value}, 0x28)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000680)=ANY=[@ANYRES8=r0], &(0x7f0000000040)='GPL\x00', 0x8001, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000840)=ANY=[@ANYBLOB="1500000065ffff017f00000800395032303030"], 0x15)
r4 = dup(r3)
write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf7cf39e3100c8acaa47684f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d7559f3b14820ed58b15627c95aa0b784625704f07372c29184ff7f4a7c0000070015006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e000000000000041201baa80b0b8ed8fb1ec577c377f627daaf787a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bdeda7be586602d985430cea080000000000fb1a26abfb0767192361448279b05d96a703a660587a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aab926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb155481ef836eb0f8c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaed2b25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec0271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761036eafed1fb2b98b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe514283707c70600000000000000b7561301bb997316db01ee601f2c9659db9bc04f7089a660d8dcc3ae83169cf331efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a515d83129cd857c775f9e7d6101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbe3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562e00e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb2214209ed2d5d776e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b55ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f608ce27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e30400000000000000000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a95d32f46ed9bd1f00fb8191bbab2dc599dda61ee2010000294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bfe2777e808fcba821a00e8c5c39609ff854256cb490000000000c1fee30a3f7a85d1b2b458c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd210819203828b202779d386ed295f023c67d867014d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff00004043060000005dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df40600000000000000e9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b0600b805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1202000000b59fed817072a0da60160761fd3dffda0f7c742eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7000000000000000542954c167dd9b4acd946ffffffffffffffff1389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c9e281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b630500163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f700400fa0c61d5fe6d8ff353f631080405547d65375ae04f44f0c2543c772c5ccb137be7dc87746e1785a8214454d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b036e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e010000005a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb3985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1428c0805b4031a667e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a9cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab9100781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c1227c8bed10591958c906321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b863af34bac64c247672a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c39132a0f27080ece2a94c360b002c77f82662675a7713c7067081cac1599a998c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc215a18ca0265400abf38e90000000000000000008faf2cddffbfa66bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942ce18e57bb7f337df5435bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de286553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c03f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c872a4882d21db2046a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265441d513a1294b8439276394945d94a589708e32a1cb30a8b07b391201385e0b92ecbb7b13d7a87284164018ace6ce58a82c5de321452461089cdd69259f5390f5f508646a524490583c30630bedb47e158ad41c0a653e86a4f4f255cd2a6e95f33b586823aef5564d9de1f5bdd8c80e193f0597b8003860302cd243c00bc5a82c52afb115d16258d507937966bb89409d6d47b8b652d0761d7c72875ae1efb9bc7c6807c2d783e31fd9cd7e84d3d50d8fc44ab8ac9ccd2c0d42e3bd4c029241320446bbf47e23d1320de30fbdf7ed13f80c28fb5c13fccc2e3f73509bdcddad8a2fe48cdd61f2f43611704af64eed8b0cbbd08754f93b8f3d6347aad5cde1ccc5cbd5eaa87e52cea257c856a4af5243eeb5e89f0000000000000000f420df5e4c6d856b3d55e455c08110b2ef4255a38f81555e8e1f22d59c0bc3c9013e66a1f5bda1b695e1602c0afb5c35b2f68f3b151b1e869f40ff4d1bef5e926e1ff95f6321131e4cb797f53455a093a95e67605222d6acc29c46e5db1ef3b8b07e2169fb24ced4b3ae87ebeca06df93212e465bbd1a7e41df2e1a0d508f86cfc7a469ac682685c44692877d03c34c23a65d2677acc73b5d276fdebd685c9b7a079eae228d8426188cb19b083548f5f29e493ab079f33d1965dcbb165015c46998ad410d60cc65fcfa73bd65a43fc024455c4bf530d663976cf71490577251780ab6b1cf8d397444b5be575229f687a3d95ea6b2aa62fce8acb3d4a6a130b4fefa55d0c1d6f3fa448ee24e588e2965c9a442f0baf90923dda91a6850fb7b9c7f432b63001423fedcf053fa28024cc9a178a07042dabc07176fc524032c2edb340c9c18a83565c431aeb0c869683507255254430f90f61e4eca9c8fa98c000b35fec357ee1ebd08439bd95c1ab0753dfd2603d1608bd8c589a1e160000a6ee0ad13346e08738c2d7b00b5d121d918f1dc8bceded939fa8605b54b37cdfcea0bf2bc63e655dc04a2e50212ff89d6587d49896ce18916cf3adc12839c345ca91bb232b891fae2fdd68aaa38281c0feb2c107af3e080d6cdd1c6646ec6804d7e9960c02aa0db9eda24bbcb287fd2a890fa7f9d6ae0c0b1f8dd1603c9ea2f66b572276f96a28b5b6dd9f9bf6ad4bdaa2139b90faf1f40b0f141258578bd825daaaf718d21b7ac05fe5d1b699e5422ca341fe1c944f68fe3a6d783dcf30b0e09d7688f696883b61cb64464b04d351a0a69b0733c348049b0430ed40e200f4ff0000000000000000000000996bcc1b721b152c892fab887e7d20466d90c049c0fdf51dcc16d226a2619c6f47bc25b7f5df5c09fed638922ed127ab36aa7b0c58a2ce5894b1b0f5375d340d96b69b966b05daaf585121a9c7605ed8e9964eef1f14b74cbb2ccdadc6d0b77cf0492b75e1cd11bfdcfddde91b20366715ba0cbe1041be2a65c25d7ca15ef8b71bd2ab9a4294899a1964b0152518fc2ac15a728bcb9e2bc4b551dfdf9011a2a607bc39ad2c4d7c64dcf967724e9b63c397d5265ad3f1da4395a5a800d8845257dcbf210d4f00fe0bd3deed05e506736e6bb6d40ee6cb960bcdb33633ee87f82beb665a9a4c2d4d2b06479ade3a4cd6bba765c9f52b52a0bdd0849ab92baae3775570accb5a57ee9f0035fc6d3df4eebec2e7eb4ff863d3979a20f4428ddca471037b49d4fd130743a97faa02c293b721e52bf53d64c6585e138162331ef98792e1e9b21a6a084fb7b42c64062ef1323a8a65a8ed6038f274f28ff4f78136a1ef108efbe8c4f4e347d50dcdbc33bf3ade4c3a39d316061930d7dd39b8acdecc3f27830e3eda40e648328d95a9aee65a9dd09fd4e96d5b852025dc53ec3f30cc753e6a796084b4e34f521dbb230ae0f3b79142073d437e1fd22d3b7503ffa95b1d5c7740b0ecbfd35dc0f8af895583dfcc2689f6e02c2dd4b57f3dcac54f40da013eb221fa3d65de760576031052c25a96ed4b20230b36d46d3d3fd6bb1d77cc8a48a6b10fa0149e55ccde4a2b26cca2d1ca9191c74ab006a602543fc24d1283e353cfb917620000000024bf3eed258c02a591ec4cd295212d9a98d38745f6f6c4530900000000000000f184f239098bf32551c7cf454e2865974f6520112743f73c619c3cab5609e00178f7393e53462f31559220c026bbde09837bf1b3ffe748a3247c9569f0c5e99f4494f93e0fa1badca90c888616eca97bddabd8003fc12a084d4b11d841979e161b998ddda92f194c4ec7947b7b303be11e0962d429a2c542a28c4932e14c123dfe2b8ec47a11cce134fd6e42a9f4e00ab6de6b45"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
r6 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
sendmmsg$inet(r6, &(0x7f0000000440)=[{{&(0x7f00000001c0)={0x2, 0xffff, @multicast1}, 0x10, &(0x7f0000000080)=[{&(0x7f0000000200)="a9050000000074640000000000003552bde5c064", 0x14}], 0x1}}], 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
sendmsg$AUDIT_USER(r4, &(0x7f00000004c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x50, 0x3ed, 0x300, 0x70bd26, 0x25dfdbfd, "eae9c1c9bef2428397f9cbd82e84921a92a0bb30ecc70c78bdb50be3285863eb667c7091b33fca0d6e3026873b10b846a3e60f992308b2e179604ba962745756", [""]}, 0x50}, 0x1, 0x0, 0x0, 0x40001}, 0x2000c014)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
pipe2$9p(&(0x7f0000000180)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x0)
r9 = dup(r8)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r7, @ANYBLOB=',wfdno=', @ANYRESHEX=r9])
write$FUSE_DIRENTPLUS(r4, &(0x7f0000000580)=ANY=[@ANYBLOB="a8"], 0xa8)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])

11.876185953s ago: executing program 3 (id=488):
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="17"], 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x2, 0x4, 0x4, 0x8, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x2, 0x40, r0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a00)={{r1}, &(0x7f0000000980), &(0x7f00000009c0)=r0}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000300)={r1, &(0x7f0000000240), 0x0}, 0x20)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x400002, 0x55)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
syz_open_dev$usbfs(0x0, 0x75, 0x109301)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r2, 0x400455c8, 0x4)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01000000000000000000030000005800018044000400200001000a000004000000000000000000000000000000000000000100000000200002000a00000000000002fe8000000000000000000000000000bb000000000d0001007564703a73"], 0x6c}}, 0x0)
sendmsg$DEVLINK_CMD_RATE_SET(r5, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x54, 0x0, 0x8, 0x70bd2c, 0x25dfdbff, {}, [@DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @DEVLINK_ATTR_RATE_TX_MAX={0xc, 0xa7, 0xffff}, @DEVLINK_ATTR_RATE_NODE_NAME={0xf, 0xa8, @name2}, @handle=@pci={{0x8}, {0x11}}]}, 0x54}, 0x1, 0x0, 0x0, 0x24008054}, 0x20008000)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000040)=0x32)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='fd\x00')
getdents(r7, &(0x7f0000000040)=""/44, 0x2c)

9.126229987s ago: executing program 0 (id=495):
r0 = socket$inet(0x2, 0x3, 0x4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_emit_ethernet(0x3e, &(0x7f0000000000)={@local, @multicast, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "3000bb", 0x8, 0x2b, 0x0, @private2, @local, {[], {0x38, 0x0, 0x8}}}}}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000300)='mm_page_alloc\x00'}, 0x54)
mknod$loop(0x0, 0x0, 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
readlink(&(0x7f0000000340)='./file0\x00', &(0x7f0000000f80)=""/4096, 0x1000)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="190000000400000008000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000010000000400000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
r5 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000380)=ANY=[@ANYBLOB="12010000000000406d0422c2000000000001090224000100000000090400000103000000092100000001220b0009058103"], 0x0)
syz_usb_control_io$hid(r5, 0x0, 0x0)
syz_usb_control_io(r5, &(0x7f0000000100)={0x2c, &(0x7f0000000680)=ANY=[@ANYBLOB='\x00\x00\v'], 0x0, 0x0, 0x0, 0x0}, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)={0x14, 0x5, 0x1, 0x3, 0x0, 0x0, {0x2, 0x0, 0x9}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20008004}, 0x8080)
setsockopt$inet_opts(r0, 0x0, 0x4, 0x0, 0x0)

6.9274301s ago: executing program 1 (id=499):
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000001240)='./file0\x00', 0x0, &(0x7f0000002480)=ANY=[], 0x1, 0x11f4, &(0x7f0000001280)="$eJzs3M+LG2UYB/DHbWvr1v2h1moL0he96GXo7sGLgiyyBWlAaRuhFYSpO9GQMQmZsBARV09e/TvEozdBvOllL/4N3vbisQdxxMTapsRDqXTa8Plc8pD3/cLzkjDwDvPO0ZvffNrrVFknH8fKE2/FyjAi3UqRYiVu+zJee+PnX166ev3G5Z1Wa/dKSpd2rm29nlJav/DjB59/9/JP49Pvf7/+w8k43Pzw6Pft3w7PHp47+vPaJ90qdavUH4xTnm4OBuP8ZlmkvW7Vy1J6ryzyqkjdflWM5sY75WA4nKS8v7e2OhwVVZXy/iT1ikkaD9J4NEn5x3m3n7IsS2urwYNof3urruuIuj4RT0Zd1/VTsRqn4+lYi/XYiM14Jp6N5+JMPB9n44V4Mc5NZzXdNwAAAAAAAAAAAAAAAAAAACyXBzr/f6Hh5gEAAAAAAAAAAAAAAAAAAGBJXL1+4/JOq7V7JaVTEeXX++399uxzNr7TiW6UUcTF2Ig/Ynr6f2ZWX3qntXsxTW3GV+XBP/mD/fax+fzW9HUCC/Nbs3yaz5+M1bvz27ERZxbntxfmT8Wrr9yVz2Ijfv0oBlHGXvydvZP/Yiult99t3ZM/P50HAAAAyyBL/1q4f8+y/xqf5e/j/sA9++vjcf54s2snopp81svLshg1XtzuaPbNQUQ8Io0tcXHi0Wjj/y2Ozf2Rmu/nMS2auybx8Nz50ZvuBAAAAAAAAAAAgPvxMB4nbHqNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/MUOHAsAAAAACPO3TqNjAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4KgAA//86R81g")
r0 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
close(r0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f000000c400)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f00000002c0)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0xc12700}}, 0x50)
lstat(&(0x7f0000000040)='./file0\x00', 0x0)
syz_fuse_handle_req(r0, &(0x7f000000a3c0)="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", 0x2000, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000940)={0x78, 0x0, 0x0, {0x4000000000003, 0x0, 0x0, {0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

6.4973074s ago: executing program 1 (id=502):
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r1}, 0x18)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f0000000540)={[{@test_dummy_encryption}]}, 0x1, 0x236, &(0x7f0000000300)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x40042, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})

6.49576598s ago: executing program 0 (id=503):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000500)=[{0x200000000006, 0x0, 0xcf, 0x7ffc1ff8}]})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000a50000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000440)='./bus\x00', 0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB="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", @ANYRES64, @ANYRES8=0x0, @ANYRES32=0x0, @ANYRESHEX, @ANYRES32, @ANYRESHEX, @ANYRESDEC], 0x25, 0x5586, &(0x7f00000079c0)="$eJzs3EtvG2UXAOAzTtP71y9CLNh1pAopkWqrTi+CFQVacRGtKi4LVuDYruXW9kSx44SsumCJWPBPEEisWPIbWMASdogFiB0SyDMTaNoGSuM4avs80vjMHL8+874jK9KZiRzAU2sh/e2XJE7FsYiYi4iTSeT7SblF3Im4XIx9LiJOR0Tlri0p838lDkfE8Yg4NSle1EzKtz47Oz5z8ec3f/362yOHTnz+1XcHunDgQD0fEf3VYn+jX8SsU8RbZb4x7uaxf2FcxtUdNfpZkd9or+QVNhrb4xp5PN8pxmer68NJvNlrNCex072Z51cHxQmH4852nckH0luNtfy41V7JY3eY5bGzVZx3c6v427Y1HBV1WmW9j/LyMRptxyLf3mwX61m9ncfmYFTmi7pZq705ieMylqeLZtZr5fNYecSL/Bh4qztY30zH7bVhNxukF2v1F2r1S9X6WtZqj9oXqo1+69KFdLHTmwyrjtqN/uVOlnV67Voz6y+li51ms1qvp4tX2ivdxiCt12vna+eqF5fKvbPpa9ffS3utdHESX+kO1kfd3jC9ma2lxSeW0uXa+ReX0jP19J1rN9Ibb1+9eu3Gux9cef/6y9feeLUcdN+00sXlc8vL1fq56nJ96Sla/8flpP/D+pMHp3/4fm+XDQq7fMEA2N19/X/c2/+H/h+Yur30//3b5fH+9P/xMP1/TLP/n7RU+v9/738rB9D/zof+fx/XD3vyaP3/4anPAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAmftx/ovX852F4vhEmf9fmXqmPE4iohIRfzzAXBzeUXOurDO/y/j5e+bwTRJ5hck5jpTb8Yi4XG6//3+/rwIAAAA8ub68c/rTolsvXhYOekLMUnHTpnLywynVSyJifuGnKVWrTF6enVKx/Pt9KDanVC2/gXV0SsWKW26HplXtocztCEfvCkkRKjOdDgAAMBM7O4HZdiEAAADM0if/+O5LM5sHM5bE9qPM7WfB+X/e//1A8NiO9wAAAIDHUHLQEwAAAAD2Xd7/+/0/AAAAeLIVv/8HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAf7JzP7lpA1EcgJ8Nhv5VUdV9r9IdHKNH6LLLwgF6CY5Ar9ALcAYiZZEjRBBhT5CcgBSJMU7Q90m2M+Po5xlg88bSAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXbqpVrN/f77/PTdnuztPntkAAAAAx2yq1az+Y9K0P6b+z6nra2oXEVFGxLHafRCjVuYg5VQn/r96Mob/EXXCvn+cjg8R8SMd91+6/hQAAADgeq0Xy2lTrTentARw2++ouJBm0ab89DNTXhER1eQuU1q5P33LFFb/vofxO1NavYD1LlNYs+Q2PH5vlOshbYPW5XEm8/pLrFtlN88FAAD61K4ETlQhAAAAXIFffQ+AS3he2heH0+E947i5pBeC71stAAAA4A0q+h4AAAAA0Lm6/n9N+/8V9v8DAACA7Jr9/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOjSplrN1ovl9NT9+Qtztrvz5JsRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPLA/7ygQAmEQBnvXdyZz/8NKg4bGJlUgfPyNwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwJvf/eX/xNQ4k8y9NpaeR5K1U2Pr1Ng7N47+ML5+DQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAxf68pEAIBEEUzBn/O+n7H1YS9AwiREDDo4paNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwRb/75f/E1DiTzJ02lo5HkrWrxtZVY+9B4+jBePs3AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAxb799EZRhgEAf3anu1DUWKtpYtVgwkEvUhYEuRqjaTz4EUyassXqIgo9CGnEXryZnrkYPRpjoqm3fgfONOGCNw491MSTh5r5V2bbFRqUmUJ/v+Td99nZ4f23E9Jn3lkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABKm+/Gq+0iTtKXiTwuj93eWp5P641ddWp99c50WtK4VfO4nwCvVd8cn2puIAAAABweSZnfR8TdztpsWrcnsvy/U56T5vw/PJfHZT6/O+/f2Fo+Wnw0Xeb/v/9276WdjiaSrJ+00YXFQf/U3qGMPaYpHnjPP/SMsWzls3svSfaFtD9ceXGzk61n67tbt97vZuGROkYLADyKk2VdBOXfQ2nda3JgABwaY5XEu8z/k4lmxwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABQh82VeKaMWxExPXY/Tm1sLc+Pqr9ZvTO9XpRzN2+uVttMm+hExMLioH+qxrkcXOVqXv9sbjDoX7l6re7geESM+OjG/v55Ugz/X8/pRsTQkRMvj2jn4330taudPUFxeUa9aziezu+hJ7eGjrT2LPh727kmLoC6gnbx/TyOLsZr/96Hg/La+/9brvm/IwAAnnqdoqSZ6N3O2mx6rDUZsf3jcP7/RiWOobx/+0Z+JH+/Xsn/731y7na1r2r+36tpfk+CmaVLX8xcvXb9rcVLcxf7F/ufv326907vzPmzZ8/PZPdKZhai7Y4JAAAA/0G3KNX8vz25d///WCWOB+z/51vCef7/5fe9r6t9JfL/ke5v+jU9EgAAgMOouxO98Ppff7ZGnNHqduOruaWlK738def96fy11uE+oiNFqeb/yWTTowIAAADqsLnSGtr/v1CJ4wH7/9Xn/5/96ZVfqm0mETEecTki+ifnLw8u1DedA62OHypnHXWbnikAAABNGS9Kdf+/kz3/39555KEdEW+eiPi7+A1/7DP/Tz749udqX9Xn/8/UOsuDpz2Vr0dWT0WMTTU9IgAAAJ5mR4uSJvt/dNZmP/312Eddz/8DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA1O2fAAAA//+FVSwP")
listxattr(&(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)=""/53, 0x35)

6.243560661s ago: executing program 1 (id=504):
r0 = getpid()
lseek(0xffffffffffffffff, 0x0, 0x3)
ioctl$KVM_GET_NESTED_STATE(0xffffffffffffffff, 0xc080aebe, &(0x7f0000000800)={{0x0, 0x0, 0x80}})
r1 = syz_pidfd_open(r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
set_robust_list(0x0, 0x0)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x9)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0xfffffffffffffffe, &(0x7f0000000380))
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000004000000e47f00000100000000000000", @ANYRES32, @ANYRES32=0x0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
setns(r1, 0x24020000)
syz_clone(0xd5ba2180, 0x0, 0x0, 0x0, 0x0, 0x0)

6.183479391s ago: executing program 0 (id=505):
r0 = syz_usb_connect$hid(0x4, 0x36, &(0x7f0000000100)=ANY=[], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000780)={0x24, 0x0, 0x0, 0x0, 0x0}, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r4 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0xfffffe00, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff) (fail_nth: 1)
r5 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
r6 = add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440)={'fscrypt:', @desc3}, &(0x7f0000000480)={0x0, "6035ae1e0fe721441705322225930e6c1e3e2a51a92fd796bc34d7cf6e0236805b4377f7ab1a9b01c103a4c6a7ef54e6763fd7264c39ea00c508ba6062696138"}, 0x48, 0xfffffffffffffffe)
keyctl$KEYCTL_MOVE(0x4, r6, r5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
keyctl$KEYCTL_MOVE(0x4, r4, r4, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0xffffffffffffff99)
socket$inet_tcp(0x2, 0x1, 0x0)
keyctl$KEYCTL_PKEY_ENCRYPT(0x19, &(0x7f00000001c0)={r5, 0x4a, 0x69}, &(0x7f0000000340)={'enc=', 'pkcs1', ' hash=', {'vmac(aes-fixed-time)\x00'}}, &(0x7f0000000500)="518f97da8f4fa3d56b44c806457458db088c32a5c9a5ae44fe99fdc8b3c86f1611914faf8d46497daa02ef25a2694cf3b3ca47cd4a42b28cf39591c86c3ef0e0e1da4fd5467e374c1184", &(0x7f0000000580)=""/105)
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f0000000680)='./file2\x00', 0x800000, &(0x7f0000000b80)=ANY=[@ANYBLOB="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"], 0x1, 0x5517, &(0x7f0000000d40)="$eJzs3M1rI2UYAPB32u1+dNe1iAdvO7AILWxC049Fb1V38QO7lFUPnjRNpiG7SaY0aVp78uBRPHjy3xAFTx79Gzx49iYeFG+CknmnutUVlKaN3f5+MHlm3nnzzPOGUnhmQgJwbs2lv/yUhOvhSghhOoRwLYRiPym3wloMz5Xnph7ZknL8j4GLIYTZEML1UfKYMylPfXpreHP1xzd+/vrbSxeufv7Vd5NbNTBpz4cQuttxf68bY96K8UE5Xh+2i9hdGZYxnug+LI/zGPeyzSLDXv1wXr2Iy604P9/e7Y/iVqfeGMVWe6sY3+7FC/aHrcM8xRse1HeK42a2WcR2Py9i6yDWtX8Q/7cd9AcxT7PM90GRPgwGhzGOZ/tZXM/2wyI2eoNyPObNm9n+KA7LWF4uNPJOs6hj8zif9P/bm+3e7n46zHb67byXrlZrL1Rrtyu1nbyZDbKVSr3bvL2Szrc6o2mVQVbvrrXyvNXJqo28u5DOtxqNSq2Wzt/JNtv1XlqrVZeri5XVhXLvVvrqvXfSTjOdH8WX273dQbvTT7fynTS+YyFdqi6/uJDerKVvrW+kG/fv3l3fePu9O+/ee2n99VfKSX8rK51fWlxaqtQWK0u1hXO0/o/Kose4fjiWZNIFAJw9/7X/v6H/B8bgOP3/Z7Px/OP7/537IZx8/x/0/2Nxpvrf897/n8D64Vj0/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA59b3M1+8VuzMxeOr5fhT5dAz5XESQpgKIfz2GNPh4pGc02WemX+YP/OXGr5JQpFhdI1L5TYbQlgrt1+fPulPAQAAAJ5cX35445PYrceXuUkXxGmKN22mrr0/pnxJCGFm7ocxZZsavTw7pmTF3/eFsD+mbMUNrMtjShZvuV0YV7Z/ZfpIuPxISGKYOtVyAACAU3G0EzjdLgQAAIDT9PGkC2AyknD4KPPwWXDxzfs/HwheOXIEAAAAnEHJpAsAAAAATlzR//v9PwAAAHiyxd//AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgN/ZuYPctIEoDMDPBhfaUhVV3fcq3cExeoQus4zYZZNLcARyhVwgZyC7HCGCCI+DQkKy8Rgr6Psk8xgL/cwgvJgZaQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgC7dV6v5zeWf67Y5m207eUYDAAAAHLOuVvP6zTS1vzf3fzS3fjXtIiLKiDg2dx/El4PMQZNTvfP56lUfbiPqhN13jJrrW0T8ba7Hn13/CgAAAHC+7hbLWZqtp5dp3x3iFK4mqaZFm3LyL1NuERHV9CFTWrnL+50prP5/D+MiU1q9gDXOFJaW3Ia50t46El0/7vtVu/GLUqRSfhyZbewAAMAJDQ5Kh7MQAAAAeva/7w7QjyKetzL3W4GjVJrtva8HLQAAAOATKvruAAAAANC5ev7v/D8AAAA4b+n8PwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALq0rlbzarGctc3ZbNvJMxoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgif15R4EQCIMw2Lu+M5n7H1YaNDU1qQLh428MBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAN7/7y/+JqXEmmXttLD2PJGunxtapsXduHP1hfP0aAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAu9uclBUIgCKJgzvjfSd//sJKgZxAhAhoeVdSiAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCLfvfL/4mpcSaZO20sHY8ka1eNravG3oPG0YPx9m8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAudu6eN44iDADw7O3tBQcQxiAXRggkCmiIcwkJ6RAFyKLgJyBZziWYXPhIXJAoQnJDh1ynQVAihAQyXf5D6kRKE7oUVwSJhiZo9iOeGCMOEu9e4ueRZue9vfXMO3uS5Xd3fQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAI3JuztxHjfzVdyr9924e2Ut9jd39dG1rVtLscU4azPpx8PL6YtssbtEAAAAODjypr4PIdwutldi35sv6/+iOSbW/N89W8VNPb+77m/6pvaP7ddf7rx4f6L5ap446Jn18ejo31Pp798qZ9tz/3pEvzzz5bWXvPxAeh9svjApyvOZfXP9+nuDMjzURrYAwP9xpOnroPl7KPbDLhMD4MDoJ4V3U//n893mBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANCGyWZ4uomzEMJSfyeObt69srZXf23r1lLTTl69upWOGYcoQghn1sejoy2uZdZdvHT53Op4PLrQfvBKCKGr2d+pl3/uoykODqGT8yN4REGv/rBnJZ+HCYp6Lfs2xVyog45+IQEA8MQq6hbr+tvF9krcly2EcO/7B+v/15M4TFn/3/n45I10rrT+H7a2wtm3vHH+8+WLly6/uX5+9ezo7OjTt44N3x4eP3XixKnl8lrJsismAAAAPJxB3dL6f7DrmPje4SQOU9b/X3w7/CodJ1f/72nn7l/XmQAAABxsz7/6x+/ZHvuzwSB8ubqxcWFYbe+/PlZtO0j1PztUt7T+zxe6zgoAAABow2Qze+D5/9NJHKa8///MDy/9lI6ZhxDm6vv/R9Y+G59ubzkzrY1/Xe56jQAAALSg989vzdUtvf9fLMT6v5elP/7Ga1Vcfw3gVPV//v7XP6Zzpc//H9+HZT5OeovV+Sj7xRD6i11nBAAAwJPqz3shPBWqFov934rtlU9+PvzhwPP/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG37KwAA///KUDmd")
symlink(&(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
readlinkat(0xffffffffffffff9c, &(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffffff, 0xb4)
readlink(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000200)=""/62, 0x3e)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000240)={'vcan0\x00'})

4.722240433s ago: executing program 1 (id=507):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r1, 0x25, &(0x7f0000000000)={0x1})
fcntl$lock(r1, 0x25, &(0x7f0000000180)={0x0, 0x1, 0x4, 0x100000000000})
close_range(r0, 0xffffffffffffffff, 0x0)

4.666399963s ago: executing program 1 (id=508):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000795d6c08450c3a616dc4010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000400)={0x2c, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000800)={0x84, &(0x7f0000000440)=ANY=[@ANYBLOB="0000f500000012"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)

3.090191326s ago: executing program 0 (id=521):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000000000020580416500000000000010902240001000000000904000001030000f11b39970000012202"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

2.281961987s ago: executing program 1 (id=528):
r0 = syz_usb_connect$cdc_ncm(0x3, 0x7a, &(0x7f00000004c0)=ANY=[@ANYBLOB="12010000020000402505a1a44000018203010902680002010040000904000001020e0000052406000105240000000d240f0100000000000000000006241a0000000c241b4800f3ff00050080050945811302020000000904010000020d00000904010102020d00000905820200f6f1"], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000a00)={0x84, &(0x7f00000002c0)={0x40, 0x16}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)

1.166206408s ago: executing program 3 (id=537):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYRESOCT=r0, @ANYRES32=r0], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
dup(0xffffffffffffffff)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000500)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
r5 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x1c1b42, 0x1a4)
ioctl$FIDEDUPERANGE(r5, 0xc0189436, &(0x7f0000000200)=ANY=[@ANYBLOB, @ANYBLOB="000000000600"])

1.155353239s ago: executing program 2 (id=538):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000010000000000fcdbdf2500000000", @ANYRES32=r1, @ANYBLOB="800000004a11010014001680100001800c000400"], 0x3c}, 0x1, 0x0, 0x0, 0x24000001}, 0x44)

1.086188159s ago: executing program 2 (id=539):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000060a0b0452002ca300000000020000002400048020000180070001006374000014000280080002400000000f08000140000000020900010073797a30000000000900020073797a32000000001400000011000100"], 0x78}}, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e22, @empty}, 0x67)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, 0x0, 0x0)
sendto$inet(r1, 0x0, 0x0, 0x20000800, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
syz_emit_ethernet(0x36, &(0x7f00000000c0)={@local, @random="cf3cccaf382f", @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0xc2}}}}}}, 0x0)

1.085942049s ago: executing program 2 (id=540):
r0 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r0, &(0x7f0000000440), 0x6f5, 0x2000000022, &(0x7f0000000480)={0x77359400})
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, 0x0, 0x0)
sendmsg$key(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="0208000002"], 0x10}}, 0x0)

976.228189ms ago: executing program 2 (id=542):
keyctl$KEYCTL_PKEY_DECRYPT(0x1a, &(0x7f0000000300), 0x0, &(0x7f0000000340), 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0x4, 0x9, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000440)=@framed={{}, [@printk={@ld}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00'}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x5, 0x41, 0x6, 0x2, 0x41, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000400)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000180)={0x30, r4, 0xd66771a5e8224ded, 0x0, 0xfffffffe, {{}, {@void, @void, @val={0xc}}}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r5}, @NL80211_ATTR_PID={0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fstat(0xffffffffffffffff, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r7 = openat$cgroup_devices(r6, &(0x7f0000000100)='devices.allow\x00', 0x2, 0x0)
write$cgroup_devices(r7, &(0x7f00000000c0)={'c', ' *:* ', 'rwm\x00'}, 0xa)

976.031859ms ago: executing program 5 (id=543):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x0)

585.54901ms ago: executing program 5 (id=544):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={0x0, r1}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r2)
sendmsg$NL80211_CMD_GET_WIPHY(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000580)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01030000000000000000010000000800070000000000080003"], 0x30}}, 0x0)

585.32664ms ago: executing program 5 (id=545):
r0 = socket(0x10, 0x803, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/110, 0x14b}, {&(0x7f0000000280)=""/85, 0x53}, {&(0x7f0000000fc0)=""/4096, 0x534}, {&(0x7f0000000400)=""/106, 0x500}, {&(0x7f0000000000)=""/66, 0x6a}, {&(0x7f0000000300)=""/83, 0x63c}, {&(0x7f00000007c0)=""/154, 0x4a}, {&(0x7f0000000100)=""/16, 0x158}], 0x208, &(0x7f0000000600)=""/191, 0x41}}], 0x3fffffffffffc30, 0x0, &(0x7f0000003700)={0x77359400})

585.11837ms ago: executing program 5 (id=546):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f00000001c0)=@x86={0x1, 0x0, 0x0, 0x0, 0x0, 0x4, 0x10, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfe, 0x0, 0x0, '\x00', 0x0, 0x8000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

580.3779ms ago: executing program 5 (id=547):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2001}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x8, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000280), r2)
sendmsg$IEEE802154_LIST_PHY(r2, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)={0x14, r3, 0x30b, 0xffffffff}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x40000)

567.04258ms ago: executing program 5 (id=548):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[], 0x48)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4040000}, 0x800)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000001200)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f000049c000/0x18000)=nil, &(0x7f0000000400)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000640)=0x1)
ioctl$KVM_SET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000140)=@x86={0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0xfffffffc})
ioctl$KVM_RUN(r5, 0xae80, 0x0)

259.94003ms ago: executing program 3 (id=549):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r2}, 0x10)
ioctl$KVM_CAP_X86_USER_SPACE_MSR(r1, 0x4068aea3, &(0x7f0000000040)={0xed, 0x0, 0x1})

203.020231ms ago: executing program 3 (id=550):
r0 = userfaultfd(0x80001)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x20}}, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x269)
syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
r2 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

202.5179ms ago: executing program 3 (id=551):
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305839, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r3, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r3, 0x0)
connect$unix(r2, &(0x7f0000000640)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r3, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)

69.96168ms ago: executing program 2 (id=552):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0xe4}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="780000004a00611400000000000000000a000100", @ANYRES32=0x0, @ANYBLOB="0000000014000100ff010000000000000000000f0000000106"], 0x78}, 0x1, 0x0, 0x0, 0x44000}, 0x840)

69.68578ms ago: executing program 0 (id=553):
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
mknodat(r1, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
chdir(&(0x7f00000000c0)='./bus\x00')
mknod(&(0x7f0000000080)='./bus\x00', 0x1000, 0x0)
r2 = open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
r3 = open(&(0x7f00000002c0)='./bus\x00', 0x60102, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0xa0842, 0x0)
splice(r2, 0x0, r3, 0x0, 0xffffffe1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

27.78995ms ago: executing program 2 (id=554):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000300))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000000)={0x8, 0x0, &(0x7f00000003c0)=[@increfs], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000180)={0x10, 0x0, &(0x7f0000000700)=[@request_death={0x400c6313, 0x0, 0xffffff7f00000000}], 0x0, 0x1000000000000, 0x0})

0s ago: executing program 0 (id=555):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x18)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$FS_IOC_SETFSLABEL(r1, 0x8991, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mkdir(0x0, 0x0)
write$char_usb(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r2, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x4}}], 0x18}, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = socket$tipc(0x1e, 0x5, 0x0)
listen(r5, 0x0)
accept4(r5, 0x0, 0x0, 0x800)

kernel console output (not intermixed with test programs):

olve './bus/file0': -2
[   95.386920][   T15] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   95.396249][   T15] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   95.404138][   T15] usb 6-1: Product: syz
[   95.408177][   T15] usb 6-1: Manufacturer: syz
[   95.412578][   T15] usb 6-1: SerialNumber: syz
[   95.495811][ T1429] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[   95.506168][  T313] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[   95.511066][ T1429] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[   95.523153][  T313] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[   95.525899][ T1429] F2FS-fs (loop0): invalid crc value
[   95.567647][ T1429] F2FS-fs (loop0): Found nat_bits in checkpoint
[   95.657305][ T1429] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[   95.665848][ T1429] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   95.746906][   T15] usb 6-1: 0:2 : does not exist
[   95.788303][   T15] usb 6-1: USB disconnect, device number 12
[   95.813013][ T1436] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[   95.824917][ T1436] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   95.838043][ T1436] F2FS-fs (loop2): invalid crc value
[   95.854885][ T1436] F2FS-fs (loop2): Found nat_bits in checkpoint
[   95.876121][  T382] udevd[382]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[   95.941267][ T1436] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   95.941278][ T1450] syz.1.242[1450] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   95.941335][ T1450] syz.1.242[1450] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   95.963017][ T1436] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   95.975119][ T1445] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[   95.995244][ T1445] ext4 filesystem being mounted at /58/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.343305][   T15] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[   98.046990][   T15] usb 6-1: Using ep0 maxpacket: 16
[   98.398296][ T1483] overlayfs: missing 'lowerdir'
[   98.990661][   T15] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   99.657349][   T15] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   99.667073][   T15] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   99.982336][   T15] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   99.992404][   T15] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  100.000901][   T24] kauditd_printk_skb: 94 callbacks suppressed
[  100.000913][   T24] audit: type=1326 audit(1733530175.999:767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1497 comm="syz.0.254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fd1be2ed9 code=0x7ffc0000
[  100.001493][   T15] usb 6-1: config 0 descriptor??
[  100.030091][   T24] audit: type=1326 audit(1733530175.999:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1497 comm="syz.0.254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fd1be2ed9 code=0x7ffc0000
[  100.058070][   T24] audit: type=1326 audit(1733530176.009:769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1497 comm="syz.0.254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f2fd1be2ed9 code=0x7ffc0000
[  100.095252][ T1490] EXT4-fs error (device loop1) in ext4_do_update_inode:5303: error 27
[  100.096853][   T15] usb 6-1: can't set config #0, error -71
[  100.103512][ T1490] EXT4-fs error (device loop1): ext4_dirty_inode:6110: inode #3: comm syz.1.253: mark_inode_dirty error
[  100.116287][   T24] audit: type=1326 audit(1733530176.109:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1474 comm="syz.3.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7ff457fb7f67 code=0x7ffc0000
[  100.120820][ T1490] EXT4-fs error (device loop1) in ext4_do_update_inode:5303: error 27
[  100.146550][   T15] usb 6-1: USB disconnect, device number 13
[  100.152398][ T1490] EXT4-fs error (device loop1): __ext4_ext_dirty:182: inode #3: comm syz.1.253: mark_inode_dirty error
[  100.167632][ T1490] Quota error (device loop1): write_blk: dquota write failed
[  100.174860][ T1490] Quota error (device loop1): qtree_write_dquot: Error -27 occurred while creating quota
[  100.174879][   T24] audit: type=1326 audit(1733530176.139:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1474 comm="syz.3.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff457fb6840 code=0x7ffc0000
[  100.184529][ T1490] EXT4-fs error (device loop1): ext4_acquire_dquot:6219: comm syz.1.253: Failed to acquire dquot type 0
[  100.221003][   T24] audit: type=1326 audit(1733530176.139:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1474 comm="syz.3.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff457fb7adb code=0x7ffc0000
[  100.244132][   T24] audit: type=1326 audit(1733530176.169:773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1474 comm="syz.3.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7ff457fb6b3a code=0x7ffc0000
[  100.244601][ T1490] EXT4-fs (loop1): 1 orphan inode deleted
[  100.270876][ T1475] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  100.272491][ T1490] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[  100.280827][   T24] audit: type=1326 audit(1733530176.169:774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1474 comm="syz.3.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7ff457fb6b3a code=0x7ffc0000
[  100.288852][ T1490] ext4 filesystem being mounted at /47/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.322148][ T1475] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  100.335679][ T1475] F2FS-fs (loop3): invalid crc value
[  100.352188][ T1475] F2FS-fs (loop3): Failed to start F2FS issue_checkpoint_thread (-12)
[  100.522215][ T1509] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000088,resuid=0x0000000000000000,noload,lazytime,usrquota,discard,data_err=abort,,errors=continue
[  100.577243][   T15] usb 6-1: new full-speed USB device number 14 using dummy_hcd
[  101.656815][ T1499] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  101.664921][ T1499] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  101.673960][ T1499] F2FS-fs (loop0): invalid crc value
[  102.984555][ T1499] F2FS-fs (loop0): Found nat_bits in checkpoint
[  103.018880][ T1522] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  103.026486][ T1522] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  103.038815][ T1522] F2FS-fs (loop1): invalid crc value
[  103.240525][ T1522] F2FS-fs (loop1): Found nat_bits in checkpoint
[  103.297457][   T15] usb 6-1: unable to read config index 0 descriptor/start: -71
[  103.304922][   T15] usb 6-1: can't read configurations, error -71
[  103.327323][ T1522] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  103.334220][ T1522] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  103.666106][   T48] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  103.675089][   T48] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  103.822722][ T1546] tipc: Started in network mode
[  103.827494][  T313] Bluetooth: hci0: Frame reassembly failed (-84)
[  103.832225][ T1546] tipc: Own node identity 00000000000000000000000000000001, cluster identity 4711
[  103.843170][ T1546] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  103.851498][ T1546] tipc: Enabled bearer <udp:s>, priority 10
[  103.866971][ T1545] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  104.275065][  T474] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  104.675331][ T1556] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000088,resuid=0x0000000000000000,noload,lazytime,usrquota,discard,data_err=abort,,errors=continue
[  104.695133][  T474] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  104.715382][  T474] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  104.732815][  T474] usb 4-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00
[  104.741994][  T474] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.754261][  T474] usb 4-1: config 0 descriptor??
[  104.784232][ T1553] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  104.806873][ T1553] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  104.842991][ T1553] F2FS-fs (loop1): invalid crc value
[  104.849383][ T1553] F2FS-fs (loop1): Found nat_bits in checkpoint
[  104.871387][ T1553] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  104.878320][ T1553] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  105.001065][  T488] tipc: 32-bit node address hash set to 1000000
[  105.076935][ T1385] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  105.097630][   T24] kauditd_printk_skb: 43 callbacks suppressed
[  105.097649][   T24] audit: type=1326 audit(1733530181.089:818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1552 comm="syz.1.264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f53e9c29ed9 code=0x7ffc0000
[  105.152449][   T24] audit: type=1326 audit(1733530181.089:819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1552 comm="syz.1.264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53e9c29ed9 code=0x7ffc0000
[  105.175967][   T24] audit: type=1326 audit(1733530181.089:820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1552 comm="syz.1.264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53e9c29ed9 code=0x7ffc0000
[  105.199120][   T24] audit: type=1326 audit(1733530181.129:821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1552 comm="syz.1.264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f53e9c29ed9 code=0x7ffc0000
[  105.222389][   T24] audit: type=1326 audit(1733530181.129:822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1552 comm="syz.1.264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53e9c29ed9 code=0x7ffc0000
[  105.245494][   T24] audit: type=1326 audit(1733530181.129:823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1552 comm="syz.1.264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53e9c29ed9 code=0x7ffc0000
[  105.268821][   T24] audit: type=1326 audit(1733530181.129:824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1552 comm="syz.1.264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f53e9c28747 code=0x7ffc0000
[  105.288026][  T474] lg-g15 0003:046D:C222.0012: unknown main item tag 0x0
[  105.292528][   T24] audit: type=1326 audit(1733530181.129:825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1552 comm="syz.1.264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53e9c29ed9 code=0x7ffc0000
[  105.300454][  T474] lg-g15 0003:046D:C222.0012: unknown main item tag 0x0
[  105.328626][   T24] audit: type=1326 audit(1733530181.129:826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1552 comm="syz.1.264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53e9c29ed9 code=0x7ffc0000
[  105.329163][  T474] lg-g15 0003:046D:C222.0012: unknown main item tag 0x0
[  105.351789][   T24] audit: type=1326 audit(1733530181.129:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1552 comm="syz.1.264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f53e9c29ed9 code=0x7ffc0000
[  105.376841][  T474] lg-g15 0003:046D:C222.0012: unknown main item tag 0x0
[  105.388841][  T474] lg-g15 0003:046D:C222.0012: unknown main item tag 0x0
[  105.396010][  T474] lg-g15 0003:046D:C222.0012: unknown main item tag 0x0
[  105.403000][  T474] lg-g15 0003:046D:C222.0012: unknown main item tag 0x0
[  105.413095][ T1571] EXT4-fs (loop1): Test dummy encryption mode enabled
[  105.413648][  T474] lg-g15 0003:046D:C222.0012: unknown main item tag 0x0
[  105.423084][ T1571] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue
[  105.427086][  T474] lg-g15 0003:046D:C222.0012: unknown main item tag 0x0
[  105.439906][ T1571] ext4 filesystem being mounted at /50/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  105.444464][  T474] lg-g15 0003:046D:C222.0012: unknown main item tag 0x0
[  105.460168][ T1571] overlayfs: failed to resolve './file2': -2
[  105.463421][  T474] lg-g15 0003:046D:C222.0012: unknown main item tag 0x0
[  105.474023][  T474] lg-g15 0003:046D:C222.0012: hidraw0: USB HID v0.00 Device [HID 046d:c222] on usb-dummy_hcd.3-1/input0
[  105.485158][ T1571] overlayfs: failed to resolve './file2': -2
[  105.496906][ T1385] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  105.519548][ T1385] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  105.529556][ T1385] usb 1-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00
[  105.556441][ T1385] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  105.566881][ T1385] usb 1-1: config 0 descriptor??
[  105.571760][   T15] usb 4-1: USB disconnect, device number 9
[  105.718345][ T1575] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  105.725921][ T1575] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  105.735222][ T1575] F2FS-fs (loop1): invalid crc value
[  105.741805][ T1575] F2FS-fs (loop1): Found nat_bits in checkpoint
[  105.778629][ T1575] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  105.785480][ T1575] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  105.886851][   T15] Bluetooth: hci0: command 0x1003 tx timeout
[  105.892710][  T654] Bluetooth: hci0: sending frame failed (-49)
[  105.980667][ T1585] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  105.988652][ T1585] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  106.008287][ T1585] F2FS-fs (loop2): invalid crc value
[  106.014807][ T1585] F2FS-fs (loop2): Found nat_bits in checkpoint
[  106.038047][ T1385] lg-g15 0003:046D:C222.0013: unknown main item tag 0x0
[  106.056692][ T1385] lg-g15 0003:046D:C222.0013: unknown main item tag 0x0
[  106.065706][ T1385] lg-g15 0003:046D:C222.0013: unknown main item tag 0x0
[  106.098415][ T1385] lg-g15 0003:046D:C222.0013: unknown main item tag 0x0
[  106.107250][ T1585] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  106.114176][ T1585] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  106.115598][ T1385] lg-g15 0003:046D:C222.0013: unknown main item tag 0x0
[  106.139804][ T1385] lg-g15 0003:046D:C222.0013: unknown main item tag 0x0
[  107.127053][ T1385] lg-g15 0003:046D:C222.0013: unknown main item tag 0x0
[  107.133839][ T1385] lg-g15 0003:046D:C222.0013: unknown main item tag 0x0
[  107.156846][ T1385] lg-g15 0003:046D:C222.0013: unknown main item tag 0x0
[  107.163613][ T1385] lg-g15 0003:046D:C222.0013: unknown main item tag 0x0
[  107.176852][ T1385] lg-g15 0003:046D:C222.0013: unknown main item tag 0x0
[  107.187874][ T1385] lg-g15 0003:046D:C222.0013: hidraw0: USB HID v0.00 Device [HID 046d:c222] on usb-dummy_hcd.0-1/input0
[  107.199985][ T1385] usb 1-1: USB disconnect, device number 9
[  107.370820][ T1603] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  107.404456][ T1603] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  107.417438][ T1603] F2FS-fs (loop3): invalid crc value
[  107.423775][ T1603] F2FS-fs (loop3): Found nat_bits in checkpoint
[  107.451468][ T1603] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  107.458369][ T1603] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  107.462259][ T1605] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  107.476888][ T1605] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  107.491088][ T1603] overlayfs: failed to resolve './file1': -2
[  107.492949][ T1605] F2FS-fs (loop2): invalid crc value
[  107.503359][ T1605] F2FS-fs (loop2): Found nat_bits in checkpoint
[  107.540122][ T1605] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  107.547217][ T1605] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  107.566858][ T1385] usb 1-1: new full-speed USB device number 10 using dummy_hcd
[  107.696828][  T305] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  107.946822][  T305] usb 2-1: Using ep0 maxpacket: 16
[  107.957082][ T1385] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  107.966850][ T1184] Bluetooth: hci0: command 0x1001 tx timeout
[  107.967448][ T1385] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  107.972820][  T654] Bluetooth: hci0: sending frame failed (-49)
[  108.117026][  T305] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  108.127846][  T305] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  108.137506][  T305] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  108.150270][  T305] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  108.159277][ T1385] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  108.168242][  T305] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  108.182162][ T1385] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  108.196283][  T305] usb 2-1: config 0 descriptor??
[  108.203133][ T1385] usb 1-1: Product: syz
[  108.211255][ T1385] usb 1-1: Manufacturer: syz
[  108.216290][ T1385] usb 1-1: SerialNumber: syz
[  108.546914][ T1385] usb 1-1: 0:2 : does not exist
[  108.579444][ T1632] EXT4-fs (loop3): Test dummy encryption mode enabled
[  108.591714][ T1385] usb 1-1: USB disconnect, device number 10
[  108.627920][ T1632] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue
[  108.646900][ T1632] ext4 filesystem being mounted at /65/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  108.682810][ T1632] overlayfs: failed to resolve './file2': -2
[  108.689938][  T305] microsoft 0003:045E:07DA.0014: No inputs registered, leaving
[  108.705614][  T305] microsoft 0003:045E:07DA.0014: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  108.724981][  T305] microsoft 0003:045E:07DA.0014: no inputs found
[  108.733318][ T1635] overlayfs: failed to resolve './file2': -2
[  108.743179][  T305] microsoft 0003:045E:07DA.0014: could not initialize ff, continuing anyway
[  108.904837][   T48] Bluetooth: hci1: Frame reassembly failed (-84)
[  108.906243][ T1642] tipc: Started in network mode
[  108.915919][ T1642] tipc: Own node identity 00000000000000000000000000000001, cluster identity 4711
[  108.925830][ T1642] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  108.934199][ T1642] tipc: Enabled bearer <udp:s>, priority 10
[  108.952972][ T1642] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  109.266859][  T401] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  109.507007][  T305] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  109.786902][  T401] usb 1-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[  109.795805][  T401] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  109.803591][  T401] usb 1-1: Product: syz
[  109.807578][  T401] usb 1-1: Manufacturer: syz
[  109.811970][  T401] usb 1-1: SerialNumber: syz
[  109.817481][  T401] usb 1-1: config 0 descriptor??
[  109.926852][   T54] tipc: 32-bit node address hash set to 1000000
[  110.046859][  T322] Bluetooth: hci0: command 0x1009 tx timeout
[  110.096968][  T305] usb 3-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[  110.105958][  T305] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  110.113983][  T305] usb 3-1: Product: syz
[  110.118165][  T305] usb 3-1: Manufacturer: syz
[  110.123783][  T305] usb 3-1: SerialNumber: syz
[  110.135128][  T305] usb 3-1: config 0 descriptor??
[  110.410702][   T54] usb 2-1: USB disconnect, device number 6
[  110.576867][  T401] r8152 1-1:0.0: Unknown version 0x0000
[  111.683586][  T401] usb 1-1: USB disconnect, device number 11
[  111.690192][ T1184] Bluetooth: hci1: command 0x1003 tx timeout
[  111.696195][   T40] Bluetooth: hci1: sending frame failed (-49)
[  112.016914][  T305] r8152 3-1:0.0: Unknown version 0x0000
[  112.020912][ T1664] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  112.025162][  T305] usb 3-1: USB disconnect, device number 7
[  112.038622][ T1664] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  112.047555][ T1664] F2FS-fs (loop0): invalid crc value
[  112.053877][ T1664] F2FS-fs (loop0): Found nat_bits in checkpoint
[  112.091382][ T1664] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  112.098336][ T1664] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  112.251101][ T1672] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000088,resuid=0x0000000000000000,noload,lazytime,usrquota,discard,data_err=abort,,errors=continue
[  112.758153][ T1681] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[  112.767012][ T1681] ext4 filesystem being mounted at /55/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.821294][ T1686] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  112.835286][ T1686] overlayfs: filesystem on './file0' not supported as upperdir
[  113.730956][ T1692] EXT4-fs error (device loop0) in ext4_do_update_inode:5303: error 27
[  113.739815][ T1692] EXT4-fs error (device loop0): ext4_dirty_inode:6110: inode #3: comm syz.0.291: mark_inode_dirty error
[  113.752640][ T1692] EXT4-fs error (device loop0) in ext4_do_update_inode:5303: error 27
[  113.761185][ T1692] EXT4-fs error (device loop0): __ext4_ext_dirty:182: inode #3: comm syz.0.291: mark_inode_dirty error
[  113.782861][ T1692] __quota_error: 57 callbacks suppressed
[  113.782881][ T1692] Quota error (device loop0): write_blk: dquota write failed
[  113.795827][ T1692] Quota error (device loop0): qtree_write_dquot: Error -27 occurred while creating quota
[  113.805585][ T1692] EXT4-fs error (device loop0): ext4_acquire_dquot:6219: comm syz.0.291: Failed to acquire dquot type 0
[  113.823960][ T1692] EXT4-fs (loop0): 1 orphan inode deleted
[  113.829682][ T1692] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[  113.838756][ T1692] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.238183][  T401] Bluetooth: hci1: command 0x1001 tx timeout
[  114.251295][  T669] Bluetooth: hci1: sending frame failed (-49)
[  114.589040][ T1699] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  114.681235][ T1699] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  114.793039][ T1699] F2FS-fs (loop2): invalid crc value
[  114.902693][ T1699] F2FS-fs (loop2): Found nat_bits in checkpoint
[  115.032099][ T1699] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  115.054245][ T1699] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  115.559356][ T1184] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  116.347138][  T950] Bluetooth: hci1: command 0x1009 tx timeout
[  117.976845][ T1184] usb 1-1: device descriptor read/all, error -71
[  118.003970][ T1740] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[  118.012827][ T1740] ext4 filesystem being mounted at /61/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  118.128727][ T1737] F2FS-fs (loop1): fault_type options not supported
[  118.144097][ T1737] F2FS-fs (loop1): invalid crc value
[  118.169091][ T1737] F2FS-fs (loop1): Found nat_bits in checkpoint
[  118.236942][ T1385] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  118.256590][ T1737] F2FS-fs (loop1): Start checkpoint disabled!
[  118.266938][ T1737] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  118.646885][ T1385] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  118.657624][ T1385] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  118.667162][ T1385] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  118.675988][ T1385] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.684286][ T1385] usb 3-1: config 0 descriptor??
[  118.917823][  T421] Bluetooth: hci0: Frame reassembly failed (-84)
[  118.918213][ T1760] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  118.940486][ T1760] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  119.367006][ T1385] usb 3-1: string descriptor 0 read error: -22
[  119.518338][ T1762] EXT4-fs error (device loop5) in ext4_do_update_inode:5303: error 27
[  119.527345][ T1762] EXT4-fs error (device loop5): ext4_dirty_inode:6110: inode #3: comm syz.5.307: mark_inode_dirty error
[  119.540124][ T1762] EXT4-fs error (device loop5) in ext4_do_update_inode:5303: error 27
[  119.548768][ T1762] EXT4-fs error (device loop5): __ext4_ext_dirty:182: inode #3: comm syz.5.307: mark_inode_dirty error
[  119.561370][ T1762] Quota error (device loop5): write_blk: dquota write failed
[  119.568847][ T1762] Quota error (device loop5): qtree_write_dquot: Error -27 occurred while creating quota
[  119.578608][ T1762] EXT4-fs error (device loop5): ext4_acquire_dquot:6219: comm syz.5.307: Failed to acquire dquot type 0
[  119.594720][ T1762] EXT4-fs (loop5): 1 orphan inode deleted
[  119.600349][ T1762] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  119.609288][ T1762] ext4 filesystem being mounted at /54/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  119.702273][ T1385] input: HID 256c:006d Pen as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:256C:006D.0015/input/input13
[  119.785747][  T305] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  119.806554][ T1385] uclogic 0003:256C:006D.0015: input,hidraw0: USB HID v0.00 Device [HID 256c:006d] on usb-dummy_hcd.2-1/input0
[  119.903185][ T1385] usb 3-1: USB disconnect, device number 8
[  119.967176][  T950] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  120.036901][  T305] usb 2-1: Using ep0 maxpacket: 32
[  120.166892][  T305] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  120.176854][  T401] usb 6-1: new full-speed USB device number 16 using dummy_hcd
[  120.177653][  T305] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  120.194569][  T305] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  120.203349][  T305] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  120.212187][  T305] usb 2-1: config 0 descriptor??
[  120.337012][  T950] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  120.347906][  T950] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  120.357444][  T950] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  120.366442][  T950] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  120.374969][  T950] usb 4-1: config 0 descriptor??
[  120.420216][ T1774] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[  120.429140][ T1774] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  120.446534][   T24] audit: type=1326 audit(1733530196.439:885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1775 comm="syz.2.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992e26bed9 code=0x7ffc0000
[  120.470231][   T24] audit: type=1326 audit(1733530196.439:886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1775 comm="syz.2.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f992e26bed9 code=0x7ffc0000
[  120.498561][   T24] audit: type=1326 audit(1733530196.469:887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1775 comm="syz.2.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992e26bed9 code=0x7ffc0000
[  120.522308][   T24] audit: type=1326 audit(1733530196.469:888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1775 comm="syz.2.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f992e26bed9 code=0x7ffc0000
[  120.545837][   T24] audit: type=1326 audit(1733530196.489:889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1775 comm="syz.2.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992e26bed9 code=0x7ffc0000
[  120.569086][  T401] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  120.579145][   T24] audit: type=1326 audit(1733530196.499:890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1775 comm="syz.2.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f992e26bed9 code=0x7ffc0000
[  120.602462][  T401] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  120.611371][   T24] audit: type=1326 audit(1733530196.519:891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1775 comm="syz.2.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992e26bed9 code=0x7ffc0000
[  120.634916][   T24] audit: type=1326 audit(1733530196.519:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1775 comm="syz.2.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f992e26bed9 code=0x7ffc0000
[  120.708603][ T1776] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  120.716258][ T1776] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  120.725102][ T1776] F2FS-fs (loop2): invalid crc value
[  120.731544][ T1776] F2FS-fs (loop2): Found nat_bits in checkpoint
[  120.753811][ T1776] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  120.760797][ T1776] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  120.768081][  T305] savu 0003:1E7D:2D5A.0016: hiddev96,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.1-1/input0
[  120.779812][  T401] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  120.788899][  T401] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  120.796694][  T401] usb 6-1: Product: syz
[  120.800726][  T401] usb 6-1: Manufacturer: syz
[  120.802064][ T1776] overlayfs: invalid origin (000000790066696c65300000000000000000000000000000000000000000000000000000000000000000000000000000)
[  120.805103][  T401] usb 6-1: SerialNumber: syz
[  120.936909][  T322] Bluetooth: hci0: command 0x1003 tx timeout
[  120.942750][  T654] Bluetooth: hci0: sending frame failed (-49)
[  121.037688][ T1767] netlink: 8 bytes leftover after parsing attributes in process `syz.1.306'.
[  121.076881][  T950] usb 4-1: string descriptor 0 read error: -22
[  121.116893][  T401] usb 6-1: 0:2 : does not exist
[  121.160584][  T401] usb 6-1: USB disconnect, device number 16
[  121.206861][ T1184] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  121.336908][  T950] uclogic 0003:256C:006D.0017: interface is invalid, ignoring
[  121.540031][  T401] usb 4-1: USB disconnect, device number 10
[  121.550272][ T1385] usb 2-1: USB disconnect, device number 7
[  122.378784][ T1790] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  122.386368][ T1790] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  122.398891][ T1790] F2FS-fs (loop1): invalid crc value
[  122.477188][ T1184] usb 3-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[  122.507043][ T1184] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  122.515015][ T1184] usb 3-1: Product: syz
[  122.532819][ T1790] F2FS-fs (loop1): Found nat_bits in checkpoint
[  122.598869][ T1790] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  122.605877][ T1790] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  122.670574][ T1184] usb 3-1: Manufacturer: syz
[  122.696898][ T1184] usb 3-1: SerialNumber: syz
[  122.702073][ T1184] usb 3-1: config 0 descriptor??
[  122.728238][ T1788] F2FS-fs (loop5): fault_type options not supported
[  122.736120][ T1788] F2FS-fs (loop5): invalid crc value
[  122.742321][ T1788] F2FS-fs (loop5): Found nat_bits in checkpoint
[  122.779153][ T1798] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  122.780294][ T1788] F2FS-fs (loop5): Start checkpoint disabled!
[  122.792942][ T1798] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.794409][ T1788] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  123.089136][  T950] Bluetooth: hci0: command 0x1001 tx timeout
[  123.095173][  T654] Bluetooth: hci0: sending frame failed (-49)
[  123.142736][ T1808] syz.1.316[1808] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  123.143144][ T1808] syz.1.316[1808] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  123.377176][ T1811] F2FS-fs (loop1): fault_type options not supported
[  123.395798][ T1811] F2FS-fs (loop1): invalid crc value
[  123.408942][ T1811] F2FS-fs (loop1): Found nat_bits in checkpoint
[  123.446107][ T1811] F2FS-fs (loop1): Start checkpoint disabled!
[  123.452851][ T1811] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  124.093389][ T1821] EXT4-fs error (device loop3) in ext4_do_update_inode:5303: error 27
[  124.102656][ T1821] EXT4-fs error (device loop3): ext4_dirty_inode:6110: inode #3: comm syz.3.318: mark_inode_dirty error
[  124.117731][ T1821] EXT4-fs error (device loop3) in ext4_do_update_inode:5303: error 27
[  124.126556][ T1821] EXT4-fs error (device loop3): __ext4_ext_dirty:182: inode #3: comm syz.3.318: mark_inode_dirty error
[  124.156053][ T1821] EXT4-fs error (device loop3): ext4_acquire_dquot:6219: comm syz.3.318: Failed to acquire dquot type 0
[  124.171913][ T1821] EXT4-fs (loop3): 1 orphan inode deleted
[  124.177561][ T1821] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  124.186623][ T1821] ext4 filesystem being mounted at /71/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.666820][ T1184] r8152 3-1:0.0: Unknown version 0x0000
[  124.672955][ T1184] usb 3-1: USB disconnect, device number 9
[  124.892905][ T1826] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  124.902220][ T1826] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  124.911366][ T1826] F2FS-fs (loop5): invalid crc value
[  124.932064][ T1826] F2FS-fs (loop5): Found nat_bits in checkpoint
[  127.718899][ T1840] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  127.726469][ T1840] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  127.739116][ T1840] F2FS-fs (loop1): invalid crc value
[  127.916180][ T1840] F2FS-fs (loop1): Found nat_bits in checkpoint
[  128.056167][ T1840] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  128.063086][ T1840] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  128.128317][  T305] Bluetooth: hci0: command 0x1009 tx timeout
[  128.238706][  T421] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  128.254923][  T421] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  128.264103][   T24] kauditd_printk_skb: 33 callbacks suppressed
[  128.264115][   T24] audit: type=1326 audit(1733530204.259:924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1857 comm="syz.5.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13b7dcded9 code=0x7ffc0000
[  128.294773][   T24] audit: type=1326 audit(1733530204.289:925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1857 comm="syz.5.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13b7dcded9 code=0x7ffc0000
[  128.327064][   T24] audit: type=1326 audit(1733530204.319:926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1857 comm="syz.5.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f13b7dcded9 code=0x7ffc0000
[  128.376844][   T24] audit: type=1326 audit(1733530204.319:927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1857 comm="syz.5.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13b7dcded9 code=0x7ffc0000
[  128.426841][ T1184] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  128.432854][ T1851] kvm [1849]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc1 data 0x0
[  128.434259][   T24] audit: type=1326 audit(1733530204.319:928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1857 comm="syz.5.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13b7dcded9 code=0x7ffc0000
[  128.442993][ T1851] kvm [1849]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc2 data 0x0
[  128.475266][ T1851] kvm [1849]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc1 data 0x0
[  128.484156][ T1851] kvm [1849]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc2 data 0x0
[  128.496847][   T24] audit: type=1326 audit(1733530204.319:929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1857 comm="syz.5.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f13b7dcded9 code=0x7ffc0000
[  128.547627][   T24] audit: type=1326 audit(1733530204.319:930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1857 comm="syz.5.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13b7dcded9 code=0x7ffc0000
[  128.564763][ T1858] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  128.583324][ T1858] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  128.592248][ T1858] F2FS-fs (loop5): invalid crc value
[  128.597590][   T24] audit: type=1326 audit(1733530204.319:931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1857 comm="syz.5.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13b7dcded9 code=0x7ffc0000
[  128.621307][   T24] audit: type=1326 audit(1733530204.319:932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1857 comm="syz.5.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f13b7dcded9 code=0x7ffc0000
[  128.645488][   T24] audit: type=1326 audit(1733530204.319:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1857 comm="syz.5.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13b7dcded9 code=0x7ffc0000
[  128.670081][ T1858] F2FS-fs (loop5): Found nat_bits in checkpoint
[  128.686375][ T1860] EXT4-fs (loop1): Test dummy encryption mode enabled
[  128.710919][ T1860] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue
[  128.723975][ T1860] ext4 filesystem being mounted at /65/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  128.724669][ T1858] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  128.741322][ T1858] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  128.803933][ T1858] overlayfs: failed to resolve './file1': -2
[  128.866962][ T1184] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  128.897137][ T1184] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  128.908037][ T1184] usb 4-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00
[  128.917946][ T1184] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  129.516892][ T1184] usb 4-1: config 0 descriptor??
[  129.567576][ T1875] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  129.575136][ T1875] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  129.587718][ T1875] F2FS-fs (loop2): invalid crc value
[  129.804025][ T1875] F2FS-fs (loop2): Found nat_bits in checkpoint
[  129.886926][ T1875] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  129.893828][ T1875] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  130.038113][ T1184] lg-g15 0003:046D:C222.0018: unknown main item tag 0x0
[  130.048030][ T1184] lg-g15 0003:046D:C222.0018: unknown main item tag 0x0
[  130.057522][ T1184] lg-g15 0003:046D:C222.0018: unknown main item tag 0x0
[  130.064325][ T1184] lg-g15 0003:046D:C222.0018: unknown main item tag 0x0
[  130.072575][ T1885] EXT4-fs (loop0): Test dummy encryption mode enabled
[  130.074662][ T1184] lg-g15 0003:046D:C222.0018: unknown main item tag 0x0
[  130.086527][ T1184] lg-g15 0003:046D:C222.0018: unknown main item tag 0x0
[  130.103577][ T1885] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue
[  130.114467][ T1184] lg-g15 0003:046D:C222.0018: unknown main item tag 0x0
[  130.121696][ T1184] lg-g15 0003:046D:C222.0018: unknown main item tag 0x0
[  130.137410][ T1885] ext4 filesystem being mounted at /63/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  130.157199][ T1184] lg-g15 0003:046D:C222.0018: unknown main item tag 0x0
[  130.158266][ T1888] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  130.164135][ T1184] lg-g15 0003:046D:C222.0018: unknown main item tag 0x0
[  130.179648][ T1184] lg-g15 0003:046D:C222.0018: unknown main item tag 0x0
[  130.187078][ T1184] lg-g15 0003:046D:C222.0018: hidraw0: USB HID v0.00 Device [HID 046d:c222] on usb-dummy_hcd.3-1/input0
[  130.206538][  T313] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  130.219752][  T313] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  130.226662][ T1888] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  130.250482][ T1885] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  130.264639][ T1881] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  130.272387][ T1885] overlayfs: filesystem on './file0' not supported as upperdir
[  130.277867][ T1184] usb 4-1: USB disconnect, device number 11
[  130.305421][ T1881] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  130.331652][ T1881] F2FS-fs (loop1): invalid crc value
[  130.344659][ T1881] F2FS-fs (loop1): Found nat_bits in checkpoint
[  130.372298][ T1881] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  130.379198][ T1881] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  130.598343][ T1881] overlayfs: failed to resolve './bus/file0': -2
[  131.001364][ T1905] EXT4-fs error (device loop0) in ext4_do_update_inode:5303: error 27
[  131.010520][ T1905] EXT4-fs error (device loop0): ext4_dirty_inode:6110: inode #3: comm syz.0.333: mark_inode_dirty error
[  131.023356][ T1905] EXT4-fs error (device loop0) in ext4_do_update_inode:5303: error 27
[  131.031900][ T1905] EXT4-fs error (device loop0): __ext4_ext_dirty:182: inode #3: comm syz.0.333: mark_inode_dirty error
[  131.044497][ T1905] EXT4-fs error (device loop0): ext4_acquire_dquot:6219: comm syz.0.333: Failed to acquire dquot type 0
[  131.060704][ T1905] EXT4-fs (loop0): 1 orphan inode deleted
[  131.066281][ T1905] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[  131.075379][ T1905] ext4 filesystem being mounted at /64/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  131.613546][ T1903] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  131.626380][ T1903] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  131.646314][ T1903] F2FS-fs (loop2): invalid crc value
[  132.378950][  T313] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  132.390280][ T1917] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  132.397894][ T1917] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  132.410721][ T1917] F2FS-fs (loop5): invalid crc value
[  132.483175][  T313] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  132.502729][ T1903] F2FS-fs (loop2): Found nat_bits in checkpoint
[  132.512393][ T1917] F2FS-fs (loop5): Found nat_bits in checkpoint
[  132.587497][ T1917] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  132.594399][ T1917] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  132.739574][ T1903] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  132.746990][ T1903] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  132.801519][ T1903] overlayfs: failed to resolve './bus/file0': -2
[  132.899257][  T313] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  132.986835][  T313] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  133.240334][  T421] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  133.270236][  T421] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  133.309285][ T1936] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  133.351728][ T1936] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  133.528226][ T1936] F2FS-fs (loop1): invalid crc value
[  133.692324][ T1936] F2FS-fs (loop1): Found nat_bits in checkpoint
[  133.902582][ T1936] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  133.914960][ T1936] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  133.922596][   T24] kauditd_printk_skb: 67 callbacks suppressed
[  133.922608][   T24] audit: type=1400 audit(1733530209.919:999): avc:  denied  { unlink } for  pid=77 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  133.998600][ T1951] EXT4-fs (loop5): Test dummy encryption mode enabled
[  134.029361][ T1951] EXT4-fs (loop5): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue
[  134.046249][ T1936] overlayfs: failed to resolve './bus/file0': -2
[  134.063161][ T1951] ext4 filesystem being mounted at /61/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  134.158024][   T48] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  134.173969][   T48] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  134.565136][ T1963] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  134.632147][ T1963] ext4 filesystem being mounted at /62/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  135.207851][ T1952] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  135.235631][ T1952] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  135.244976][ T1952] F2FS-fs (loop3): invalid crc value
[  135.319822][  T654] Bluetooth: hci0: sending frame failed (-49)
[  135.327342][ T1978] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  135.333409][ T1952] F2FS-fs (loop3): Found nat_bits in checkpoint
[  135.340971][ T1978] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  135.665673][ T1952] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  135.675701][ T1952] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  135.791163][ T1952] overlayfs: failed to resolve './bus/file0': -2
[  135.879178][  T421] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  135.889816][  T421] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  136.066565][ T1994] overlayfs: missing 'workdir'
[  136.306962][ T1991] kvm [1990]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc1 data 0x0
[  136.315668][ T1991] kvm [1990]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc2 data 0x0
[  136.325006][ T1991] kvm [1990]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc1 data 0x0
[  136.333735][ T1991] kvm [1990]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc2 data 0x0
[  136.379610][ T2005] EXT4-fs (loop2): Test dummy encryption mode enabled
[  136.400956][ T2005] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue
[  136.431538][ T2005] ext4 filesystem being mounted at /65/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  136.466835][  T535] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  136.486933][  T305] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  136.726516][  T535] usb 4-1: Using ep0 maxpacket: 32
[  136.726828][  T305] usb 1-1: Using ep0 maxpacket: 32
[  136.836920][ T1358] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  136.847126][  T305] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  136.858064][  T305] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  136.876872][  T305] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  136.876902][  T535] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  136.887043][  T305] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  136.906837][  T535] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  136.917555][  T305] usb 1-1: config 0 descriptor??
[  136.927539][  T535] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  136.936406][  T535] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  136.947993][  T535] usb 4-1: config 0 descriptor??
[  137.096835][ T1358] usb 3-1: Using ep0 maxpacket: 16
[  137.216889][ T1358] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  137.227744][ T1358] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  137.237350][   T24] audit: type=1400 audit(1733530213.229:1000): avc:  denied  { create } for  pid=2016 comm="syz.5.358" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  137.257000][ T1358] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  137.270188][ T1358] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  137.282336][ T1358] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  137.291100][ T1358] usb 3-1: config 0 descriptor??
[  137.326999][  T474] Bluetooth: hci0: command 0x1003 tx timeout
[  137.332871][  T654] Bluetooth: hci0: sending frame failed (-49)
[  137.456923][   T24] audit: type=1400 audit(1733530213.419:1001): avc:  denied  { map } for  pid=2016 comm="syz.5.358" path="/dev/bus/usb/006/001" dev="devtmpfs" ino=170 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  137.482838][   T24] audit: type=1400 audit(1733530213.419:1002): avc:  denied  { execute } for  pid=2016 comm="syz.5.358" path="/dev/bus/usb/006/001" dev="devtmpfs" ino=170 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  137.547389][  T305] savu 0003:1E7D:2D5A.0019: hiddev96,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.0-1/input0
[  137.568742][  T535] savu 0003:1E7D:2D5A.001A: hiddev97,hidraw1: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.3-1/input0
[  137.747679][ T1358] microsoft 0003:045E:07DA.001B: No inputs registered, leaving
[  137.755508][ T1358] microsoft 0003:045E:07DA.001B: hidraw2: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  137.766806][ T1358] microsoft 0003:045E:07DA.001B: no inputs found
[  137.772856][ T1358] microsoft 0003:045E:07DA.001B: could not initialize ff, continuing anyway
[  137.787361][ T1999] netlink: 8 bytes leftover after parsing attributes in process `syz.3.351'.
[  137.796136][ T2003] netlink: 8 bytes leftover after parsing attributes in process `syz.0.353'.
[  138.131310][ T2024] xt_hashlimit: size too large, truncated to 1048576
[  138.306603][ T1385] usb 4-1: USB disconnect, device number 12
[  138.320314][  T519] usb 1-1: USB disconnect, device number 14
[  138.399260][ T2032] overlayfs: missing 'workdir'
[  138.644415][   T24] audit: type=1400 audit(1733530214.639:1003): avc:  denied  { name_bind } for  pid=2038 comm="syz.3.363" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  138.689383][ T2045] capability: warning: `syz.0.365' uses deprecated v2 capabilities in a way that may be insecure
[  138.986823][   T15] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  140.165533][   T15] usb 1-1: Using ep0 maxpacket: 32
[  140.240599][ T2052] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  140.248211][ T2052] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  140.262414][ T2052] F2FS-fs (loop5): invalid crc value
[  140.307469][  T950] Bluetooth: hci0: command 0x1001 tx timeout
[  140.311594][ T2052] F2FS-fs (loop5): Found nat_bits in checkpoint
[  140.313313][  T654] Bluetooth: hci0: sending frame failed (-49)
[  140.328392][  T519] usb 3-1: USB disconnect, device number 10
[  140.344081][   T15] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  140.356957][   T15] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  140.370985][   T15] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  140.380507][   T15] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  140.388976][   T15] usb 1-1: config 0 descriptor??
[  140.406964][ T2052] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  140.413813][ T2052] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  140.442961][   T24] audit: type=1400 audit(1733530216.419:1004): avc:  denied  { mount } for  pid=2049 comm="syz.5.367" name="/" dev="loop5" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  141.379184][   T24] audit: type=1400 audit(1733530217.139:1005): avc:  denied  { unmount } for  pid=394 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  141.408777][   T48] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  141.426839][   T48] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  141.620911][ T2067] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  141.631131][   T15] savu 0003:1E7D:2D5A.001C: hiddev96,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.0-1/input0
[  141.642823][ T2067] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  141.672198][ T2067] F2FS-fs (loop3): invalid crc value
[  141.678570][ T2067] F2FS-fs (loop3): Found nat_bits in checkpoint
[  141.715126][ T2067] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  141.722065][ T2067] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  141.746103][ T2067] overlayfs: failed to resolve './file0': -2
[  141.751978][  T950] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  141.933061][ T2047] netlink: 8 bytes leftover after parsing attributes in process `syz.0.366'.
[  142.016814][  T950] usb 3-1: Using ep0 maxpacket: 32
[  142.057761][ T2080] EXT4-fs (loop3): Quota format mount options ignored when QUOTA feature is enabled
[  142.078336][ T2080] EXT4-fs (loop3): mounted filesystem without journal. Opts: barrier,jqfmt=vfsold,noquota,min_batch_time=0x0000000000000010,journal_dev=0x000000000000000d,,errors=continue
[  142.095366][ T2080] ext4 filesystem being mounted at /83/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  142.136909][  T950] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  142.147681][  T950] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  142.157176][  T950] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  142.166000][  T950] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  142.174751][  T950] usb 3-1: config 0 descriptor??
[  142.366954][ T1385] Bluetooth: hci0: command 0x1009 tx timeout
[  142.377021][  T519] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  142.463034][   T15] usb 1-1: USB disconnect, device number 15
[  142.478728][ T2086] overlayfs: missing 'workdir'
[  142.658755][  T950] savu 0003:1E7D:2D5A.001D: hiddev96,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.2-1/input0
[  142.736880][  T519] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  142.747700][  T519] usb 4-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  142.756532][  T519] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  142.765256][  T519] usb 4-1: config 0 descriptor??
[  142.816872][ T1358] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  142.927539][ T2069] netlink: 8 bytes leftover after parsing attributes in process `syz.2.372'.
[  142.946861][   T15] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  143.056830][ T1358] usb 6-1: Using ep0 maxpacket: 32
[  143.176885][ T1358] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  143.187703][ T1358] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  143.197286][   T15] usb 1-1: Using ep0 maxpacket: 32
[  143.202292][ T1358] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  143.211071][ T1358] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.219642][ T1358] usb 6-1: config 0 descriptor??
[  143.247855][  T519] keytouch 0003:0926:3333.001E: fixing up Keytouch IEC report descriptor
[  143.258229][  T519] input: HID 0926:3333 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:0926:3333.001E/input/input15
[  143.327088][   T15] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  143.339206][   T24] audit: type=1400 audit(1733530219.339:1006): avc:  denied  { read } for  pid=80 comm="acpid" name="event3" dev="devtmpfs" ino=895 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  143.340296][  T519] keytouch 0003:0926:3333.001E: input,hidraw1: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.3-1/input0
[  143.365785][   T15] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  143.383879][   T15] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  143.389592][   T24] audit: type=1400 audit(1733530219.339:1007): avc:  denied  { open } for  pid=80 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=895 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  143.397326][   T15] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.416069][   T24] audit: type=1400 audit(1733530219.339:1008): avc:  denied  { ioctl } for  pid=80 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=895 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  143.427663][   T15] usb 1-1: config 0 descriptor??
[  143.453982][  T519] usb 3-1: USB disconnect, device number 11
[  143.590037][ T2096] F2FS-fs (loop2): fault_type options not supported
[  143.597479][ T2096] F2FS-fs (loop2): invalid crc value
[  143.603494][ T2096] F2FS-fs (loop2): Found nat_bits in checkpoint
[  143.625586][ T2096] F2FS-fs (loop2): Start checkpoint disabled!
[  143.632246][ T2096] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  143.700915][ T1358] savu 0003:1E7D:2D5A.001F: hiddev96,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.5-1/input0
[  143.928000][  T535] usb 4-1: USB disconnect, device number 13
[  143.967687][ T2092] netlink: 8 bytes leftover after parsing attributes in process `syz.5.377'.
[  143.967721][   T15] savu 0003:1E7D:2D5A.0020: hiddev97,hidraw1: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.0-1/input0
[  143.996882][ T1358] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  144.160715][ T2090] netlink: 8 bytes leftover after parsing attributes in process `syz.0.375'.
[  144.236819][ T1358] usb 3-1: Using ep0 maxpacket: 32
[  144.366878][ T1358] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  144.377595][ T1358] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  144.387126][ T1358] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  144.395983][ T1358] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.404269][ T1358] usb 3-1: config 0 descriptor??
[  144.483478][ T2105] FAULT_INJECTION: forcing a failure.
[  144.483478][ T2105] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  144.496397][ T2105] CPU: 0 PID: 2105 Comm: syz.3.380 Not tainted 5.10.227-syzkaller-00554-g550d1177dc67 #0
[  144.505928][ T2105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  144.515829][ T2105] Call Trace:
[  144.518962][ T2105]  dump_stack_lvl+0x1e2/0x24b
[  144.523462][ T2105]  ? bfq_pos_tree_add_move+0x43b/0x43b
[  144.528757][ T2105]  dump_stack+0x15/0x17
[  144.532745][ T2105]  should_fail+0x3c6/0x510
[  144.537006][ T2105]  should_fail_usercopy+0x1a/0x20
[  144.541860][ T2105]  _copy_from_user+0x20/0xd0
[  144.546288][ T2105]  kstrtouint_from_user+0xca/0x2a0
[  144.551236][ T2105]  ? kstrtol_from_user+0x310/0x310
[  144.556179][ T2105]  ? snprintf+0xd6/0x120
[  144.560262][ T2105]  ? memset+0x35/0x40
[  144.564080][ T2105]  proc_fail_nth_write+0xa6/0x290
[  144.568939][ T2105]  ? security_file_permission+0x7b/0xb0
[  144.574448][ T2105]  ? proc_fail_nth_read+0x210/0x210
[  144.579471][ T2105]  ? security_file_permission+0x86/0xb0
[  144.584852][ T2105]  ? rw_verify_area+0x1c3/0x360
[  144.589540][ T2105]  ? proc_fail_nth_read+0x210/0x210
[  144.594572][ T2105]  vfs_write+0x36a/0xe70
[  144.598659][ T2105]  ? kernel_write+0x3d0/0x3d0
[  144.603204][ T2105]  ? __kasan_check_write+0x14/0x20
[  144.608116][ T2105]  ? mutex_lock+0xa5/0x110
[  144.612362][ T2105]  ? mutex_trylock+0xa0/0xa0
[  144.616800][ T2105]  ? __fdget_pos+0x2e7/0x3a0
[  144.621287][ T2105]  ? ksys_write+0x77/0x2c0
[  144.625468][ T2105]  ksys_write+0x199/0x2c0
[  144.629636][ T2105]  ? __ia32_sys_read+0x90/0x90
[  144.634240][ T2105]  ? debug_smp_processor_id+0x17/0x20
[  144.639445][ T2105]  __x64_sys_write+0x7b/0x90
[  144.643868][ T2105]  do_syscall_64+0x34/0x70
[  144.648120][ T2105]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  144.653848][ T2105] RIP: 0033:0x7ff457fb698f
[  144.658102][ T2105] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  144.677547][ T2105] RSP: 002b:00007ff45662f050 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  144.685785][ T2105] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff457fb698f
[  144.693602][ T2105] RDX: 0000000000000001 RSI: 00007ff45662f0b0 RDI: 0000000000000007
[  144.701416][ T2105] RBP: 00007ff45662f0a0 R08: 0000000000000000 R09: 0000000000000000
[  144.709222][ T2105] R10: 000000000000004a R11: 0000000000000293 R12: 0000000000000001
[  144.717031][ T2105] R13: 0000000000000000 R14: 00007ff45817dfa0 R15: 00007ffe208f6c48
[  144.729623][   T15] usb 1-1: USB disconnect, device number 16
[  144.741125][ T1184] usb 6-1: USB disconnect, device number 17
[  144.766606][   T24] audit: type=1400 audit(1733530220.759:1009): avc:  denied  { write } for  pid=2106 comm="syz.0.381" name="raw6" dev="proc" ino=4026532328 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  145.630198][ T1358] savu 0003:1E7D:2D5A.0021: hiddev96,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.2-1/input0
[  145.641872][  T535] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  145.661587][ T2117] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  145.669223][ T2117] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  145.683293][ T2117] F2FS-fs (loop0): invalid crc value
[  145.767257][ T1184] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  145.774929][ T2117] F2FS-fs (loop0): Found nat_bits in checkpoint
[  145.840773][ T2117] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  145.847668][ T2117] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  145.887399][ T2101] netlink: 8 bytes leftover after parsing attributes in process `syz.2.379'.
[  147.292302][ T2128] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  147.299878][ T2128] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  147.309502][ T2128] F2FS-fs (loop1): invalid crc value
[  147.323704][ T2128] F2FS-fs (loop1): Found nat_bits in checkpoint
[  147.355345][  T535] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  147.367973][  T535] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  147.378822][  T535] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  147.387786][ T2128] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  147.388523][  T535] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  147.394640][ T2128] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  147.406106][  T535] usb 4-1: config 0 descriptor??
[  147.571605][  T401] usb 3-1: reset high-speed USB device number 12 using dummy_hcd
[  148.270718][  T313] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  148.295675][ T2140] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  148.303337][ T2140] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  148.318020][ T2140] F2FS-fs (loop0): invalid crc value
[  148.387331][  T535] usb 4-1: can't set config #0, error -71
[  148.395147][  T535] usb 4-1: USB disconnect, device number 14
[  148.407165][ T1184] usb 6-1: unable to read config index 0 descriptor/all
[  148.413983][ T1184] usb 6-1: can't read configurations, error -71
[  148.454441][  T313] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  148.514726][ T2140] F2FS-fs (loop0): Found nat_bits in checkpoint
[  148.597579][ T2140] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  148.604472][ T2140] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  148.628372][ T2152] overlayfs: invalid origin (000000790066696c65300000000000000000000000000000000000000000000000000000000000000000000000000000)
[  149.177120][ T2154] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  149.184721][ T2154] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  149.199123][ T2154] F2FS-fs (loop2): invalid crc value
[  149.374605][ T2154] F2FS-fs (loop2): Found nat_bits in checkpoint
[  149.439316][ T1358] usb 3-1: USB disconnect, device number 12
[  149.503204][ T2154] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  149.510142][ T2154] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  149.778709][   T24] audit: type=1400 audit(1733530225.779:1010): avc:  denied  { create } for  pid=2158 comm="syz.3.393" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  149.847814][  T421] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  149.856607][  T421] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  149.887142][   T24] audit: type=1400 audit(1733530225.839:1011): avc:  denied  { connect } for  pid=2158 comm="syz.3.393" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  149.908137][   T24] audit: type=1400 audit(1733530225.839:1012): avc:  denied  { read write } for  pid=2158 comm="syz.3.393" name="rtc0" dev="devtmpfs" ino=254 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  149.935212][   T24] audit: type=1400 audit(1733530225.839:1013): avc:  denied  { ioctl open } for  pid=2158 comm="syz.3.393" path="/dev/rtc0" dev="devtmpfs" ino=254 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  149.988394][ T2148] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  150.001610][ T2148] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  150.959677][ T2148] F2FS-fs (loop5): invalid crc value
[  150.966301][ T2148] F2FS-fs (loop5): Found nat_bits in checkpoint
[  150.989972][ T2173] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  150.997611][ T2173] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  151.006525][ T2173] F2FS-fs (loop0): invalid crc value
[  151.009231][ T2148] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  151.011883][ T1358] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  151.018784][ T2148] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  151.027604][ T2173] F2FS-fs (loop0): Found nat_bits in checkpoint
[  151.061825][ T2173] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  151.068700][ T2173] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  151.103020][ T2166] F2FS-fs (loop1): fault_type options not supported
[  151.135219][ T2188] FAULT_INJECTION: forcing a failure.
[  151.135219][ T2188] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  151.151303][ T2188] CPU: 0 PID: 2188 Comm: syz.2.397 Not tainted 5.10.227-syzkaller-00554-g550d1177dc67 #0
[  151.160910][ T2188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  151.170801][ T2188] Call Trace:
[  151.170952][ T2166] F2FS-fs (loop1): invalid crc value
[  151.173937][ T2188]  dump_stack_lvl+0x1e2/0x24b
[  151.173953][ T2188]  ? panic+0x812/0x812
[  151.187479][ T2188]  ? bfq_pos_tree_add_move+0x43b/0x43b
[  151.192769][ T2188]  dump_stack+0x15/0x17
[  151.196757][ T2188]  should_fail+0x3c6/0x510
[  151.201011][ T2188]  should_fail_usercopy+0x1a/0x20
[  151.205871][ T2188]  strncpy_from_user+0x24/0x2d0
[  151.210555][ T2188]  ? getname_flags+0xba/0x520
[  151.215063][ T2188]  getname_flags+0xf2/0x520
[  151.219405][ T2188]  getname+0x19/0x20
[  151.223135][ T2188]  do_sys_openat2+0xd7/0x710
[  151.227567][ T2188]  ? mutex_trylock+0xa0/0xa0
[  151.231988][ T2188]  ? do_sys_open+0x220/0x220
[  151.236418][ T2188]  ? __kasan_check_write+0x14/0x20
[  151.241364][ T2188]  ? ksys_write+0x260/0x2c0
[  151.245703][ T2188]  __x64_sys_openat+0x243/0x290
[  151.250391][ T2188]  ? __ia32_sys_open+0x270/0x270
[  151.255164][ T2188]  ? debug_smp_processor_id+0x17/0x20
[  151.260369][ T2188]  do_syscall_64+0x34/0x70
[  151.264623][ T2188]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  151.270348][ T2188] RIP: 0033:0x7f992e26a840
[  151.274607][ T2188] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  151.294044][ T2188] RSP: 002b:00007f992c8e2b90 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  151.302287][ T2188] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f992e26a840
[  151.310097][ T2188] RDX: 0000000000000000 RSI: 00007f992c8e2c30 RDI: 00000000ffffff9c
[  151.317911][ T2188] RBP: 00007f992c8e2c30 R08: 0000000000000000 R09: 0000000000000000
[  151.325721][ T2188] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  151.333533][ T2188] R13: 0000000000000000 R14: 00007f992e431fa0 R15: 00007ffcc65be1c8
[  151.344860][ T2166] F2FS-fs (loop1): Found nat_bits in checkpoint
[  151.377780][  T313] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  151.386865][  T313] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  151.421736][ T2166] F2FS-fs (loop1): Start checkpoint disabled!
[  151.457034][ T2166] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  151.517159][ T1358] usb 4-1: config 0 has an invalid interface number: 222 but max is 0
[  151.525407][ T1358] usb 4-1: config 0 has no interface number 0
[  151.556887][ T1358] usb 4-1: config 0 interface 222 altsetting 0 endpoint 0xC has invalid wMaxPacketSize 0
[  151.701732][ T2192] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  151.711277][ T2192] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  151.716860][ T1358] usb 4-1: New USB device found, idVendor=0b49, idProduct=064f, bcdDevice=d4.fd
[  151.734647][ T2192] F2FS-fs (loop2): invalid crc value
[  151.746813][ T1358] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  151.757185][ T2205] EXT4-fs (loop0): Test dummy encryption mode enabled
[  151.763983][ T1358] usb 4-1: Product: syz
[  151.777102][ T1358] usb 4-1: Manufacturer: syz
[  151.787018][ T1358] usb 4-1: SerialNumber: syz
[  151.787825][ T2205] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue
[  151.794960][ T1358] usb 4-1: config 0 descriptor??
[  151.808011][ T2192] F2FS-fs (loop2): Found nat_bits in checkpoint
[  151.823969][ T2205] ext4 filesystem being mounted at /84/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  151.854255][ T2192] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  151.861281][ T2192] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  151.877839][ T2192] overlayfs: failed to resolve './bus/file0': -2
[  151.885421][ T2216] xt_hashlimit: size too large, truncated to 1048576
[  151.940061][   T24] audit: type=1400 audit(1733530227.939:1014): avc:  denied  { remount } for  pid=2191 comm="syz.2.399" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  151.942724][ T2217] FAULT_INJECTION: forcing a failure.
[  151.942724][ T2217] name failslab, interval 1, probability 0, space 0, times 0
[  151.971662][ T2217] CPU: 1 PID: 2217 Comm: syz.0.405 Not tainted 5.10.227-syzkaller-00554-g550d1177dc67 #0
[  151.981266][ T2217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  151.991159][ T2217] Call Trace:
[  151.994294][ T2217]  dump_stack_lvl+0x1e2/0x24b
[  151.998799][ T2217]  ? panic+0x812/0x812
[  152.002707][ T2217]  ? bfq_pos_tree_add_move+0x43b/0x43b
[  152.008000][ T2217]  dump_stack+0x15/0x17
[  152.011998][ T2217]  should_fail+0x3c6/0x510
[  152.016246][ T2217]  ? nf_ct_ext_add+0x208/0x410
[  152.020845][ T2217]  __should_failslab+0xa4/0xe0
[  152.025444][ T2217]  should_failslab+0x9/0x20
[  152.029786][ T2217]  __kmalloc_track_caller+0x5f/0x320
[  152.034907][ T2217]  krealloc+0x6f/0x110
[  152.038808][ T2217]  nf_ct_ext_add+0x208/0x410
[  152.043236][ T2217]  init_conntrack+0x512/0xf80
[  152.047753][ T2217]  ? hash_conntrack_raw+0x84/0x660
[  152.052695][ T2217]  ? early_drop+0x5a0/0x5a0
[  152.057041][ T2217]  nf_conntrack_in+0x4ec/0xce0
[  152.061639][ T2217]  ? nf_conntrack_free+0x140/0x140
[  152.066584][ T2217]  ? sk_setup_caps+0x430/0x430
[  152.071183][ T2217]  ? skb_orphan+0x4d/0xd0
[  152.075348][ T2217]  ipv6_conntrack_in+0x1d/0x30
[  152.079949][ T2217]  ? ipv4_confirm+0x240/0x240
[  152.084460][ T2217]  nf_hook_slow+0xbe/0x200
[  152.088717][ T2217]  ipv6_rcv+0x231/0x270
[  152.092706][ T2217]  ? ip6_rcv_finish+0x350/0x350
[  152.097393][ T2217]  ? refcount_add+0x80/0x80
[  152.101733][ T2217]  ? __kasan_slab_alloc+0xc3/0xe0
[  152.106591][ T2217]  ? __kasan_slab_alloc+0xb1/0xe0
[  152.111454][ T2217]  ? ip6_rcv_finish+0x350/0x350
[  152.116142][ T2217]  __netif_receive_skb+0x1c6/0x530
[  152.121088][ T2217]  ? ksys_write+0x199/0x2c0
[  152.125430][ T2217]  ? __x64_sys_write+0x7b/0x90
[  152.130026][ T2217]  ? do_syscall_64+0x34/0x70
[  152.134454][ T2217]  ? deliver_ptype_list_skb+0x3c0/0x3c0
[  152.139836][ T2217]  netif_receive_skb+0xb0/0x480
[  152.144521][ T2217]  ? netif_receive_skb_core+0x210/0x210
[  152.149906][ T2217]  tun_rx_batched+0x6d9/0x870
[  152.154421][ T2217]  ? eth_type_trans+0x2e4/0x620
[  152.159101][ T2217]  ? local_bh_enable+0x30/0x30
[  152.163702][ T2217]  tun_get_user+0x2bf3/0x38f0
[  152.168218][ T2217]  ? _kstrtoull+0x3a0/0x4a0
[  152.172556][ T2217]  ? tun_do_read+0x1f60/0x1f60
[  152.177155][ T2217]  ? kstrtouint_from_user+0x20a/0x2a0
[  152.182384][ T2217]  ? kstrtol_from_user+0x310/0x310
[  152.187325][ T2217]  ? avc_policy_seqno+0x1b/0x70
[  152.192005][ T2217]  ? selinux_file_permission+0x2bb/0x560
[  152.197483][ T2217]  ? fsnotify_perm+0x67/0x4e0
[  152.201982][ T2217]  tun_chr_write_iter+0x1a8/0x250
[  152.206845][ T2217]  vfs_write+0xb4c/0xe70
[  152.210921][ T2217]  ? kernel_write+0x3d0/0x3d0
[  152.215432][ T2217]  ? __fdget_pos+0x209/0x3a0
[  152.219855][ T2217]  ? ksys_write+0x77/0x2c0
[  152.224109][ T2217]  ksys_write+0x199/0x2c0
[  152.228277][ T2217]  ? __ia32_sys_read+0x90/0x90
[  152.232879][ T2217]  ? debug_smp_processor_id+0x17/0x20
[  152.238085][ T2217]  __x64_sys_write+0x7b/0x90
[  152.242510][ T2217]  do_syscall_64+0x34/0x70
[  152.246764][ T2217]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  152.252491][ T2217] RIP: 0033:0x7f2fd1be198f
[  152.256744][ T2217] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  152.276182][ T2217] RSP: 002b:00007f2fd0239020 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  152.284429][ T2217] RAX: ffffffffffffffda RBX: 00007f2fd1da9080 RCX: 00007f2fd1be198f
[  152.292260][ T2217] RDX: 000000000000009a RSI: 0000000020000040 RDI: 00000000000000c8
[  152.300052][ T2217] RBP: 00007f2fd02390a0 R08: 0000000000000000 R09: 0000000000000000
[  152.307860][ T2217] R10: 000000000000009a R11: 0000000000000293 R12: 0000000000000001
[  152.315670][ T2217] R13: 0000000000000001 R14: 00007f2fd1da9080 R15: 00007ffdd8792048
[  152.342859][  T305] usb 4-1: USB disconnect, device number 15
[  152.474663][  T313] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  152.487034][  T313] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  152.500072][   T24] audit: type=1326 audit(1733530228.499:1015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2222 comm="syz.3.408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff457fb7ed9 code=0x7ffc0000
[  152.523310][  T519] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  152.577068][   T24] audit: type=1326 audit(1733530228.529:1016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2222 comm="syz.3.408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7ff457fb7ed9 code=0x7ffc0000
[  152.636815][   T24] audit: type=1326 audit(1733530228.529:1017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2222 comm="syz.3.408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff457fb7ed9 code=0x7ffc0000
[  152.686917][   T24] audit: type=1326 audit(1733530228.529:1018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2222 comm="syz.3.408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff457fb7ed9 code=0x7ffc0000
[  152.741792][ T2223] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  152.756880][ T2223] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  152.775836][ T2223] F2FS-fs (loop3): invalid crc value
[  152.786869][  T519] usb 2-1: Using ep0 maxpacket: 32
[  152.791879][   T24] audit: type=1326 audit(1733530228.529:1019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2222 comm="syz.3.408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff457fb7ed9 code=0x7ffc0000
[  152.818315][ T2223] F2FS-fs (loop3): Found nat_bits in checkpoint
[  152.841921][ T2223] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  152.848843][ T2223] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  152.862888][ T2224] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  152.871280][ T2224] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  152.884062][ T2224] F2FS-fs (loop0): invalid crc value
[  152.901574][ T2224] F2FS-fs (loop0): Found nat_bits in checkpoint
[  152.915182][ T2223] overlayfs: invalid origin (0000007900000000000000ffffffff000000000000000000000000000000000000000000000000000000000000000000)
[  152.928634][  T519] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  152.939645][  T519] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  152.949566][  T519] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  152.949768][ T2224] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  152.958570][  T519] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  152.976698][  T519] usb 2-1: config 0 descriptor??
[  152.978511][ T2224] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  153.015624][ T2224] overlayfs: failed to resolve './bus/file0': -2
[  153.037054][  T421] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  153.046443][  T421] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  153.126829][  T950] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  153.146992][  T305] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  153.382347][ T2243] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  153.421016][ T2243] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  153.433166][ T2243] F2FS-fs (loop3): invalid crc value
[  153.443374][ T2243] F2FS-fs (loop3): Found nat_bits in checkpoint
[  153.506925][ T2243] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  153.514166][ T2243] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  153.901935][ T2257] netlink: 8 bytes leftover after parsing attributes in process `syz.1.401'.
[  154.148838][  T519] savu 0003:1E7D:2D5A.0022: hiddev96,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.1-1/input0
[  154.262969][ T2262] EXT4-fs (loop0): Test dummy encryption mode enabled
[  154.271703][ T2262] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue
[  154.282401][ T2262] ext4 filesystem being mounted at /90/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  154.297180][  T305] usb 3-1: device descriptor read/64, error -71
[  154.904474][  T401] usb 2-1: USB disconnect, device number 8
[  155.251311][ T2274] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  155.266859][ T2274] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  155.285845][ T2274] F2FS-fs (loop0): invalid crc value
[  155.296048][ T2274] F2FS-fs (loop0): Found nat_bits in checkpoint
[  155.296986][  T950] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30
[  155.312823][  T950] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  155.323540][  T950] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  155.333100][  T950] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[  155.360125][  T950] usb 6-1: New USB device found, idVendor=04d8, idProduct=c002, bcdDevice= 0.00
[  155.371995][  T950] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  155.384450][ T2274] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  155.384805][  T950] usb 6-1: config 0 descriptor??
[  155.393313][ T2274] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  155.415923][ T2274] overlayfs: failed to resolve './bus/file0': -2
[  155.497153][  T313] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  155.505825][  T313] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  155.586828][  T305] usb 3-1: device descriptor read/64, error -71
[  155.630188][ T2285] kvm [2284]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc1 data 0x0
[  155.638978][ T2285] kvm [2284]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc2 data 0x0
[  155.675237][   T24] kauditd_printk_skb: 47 callbacks suppressed
[  155.675248][   T24] audit: type=1326 audit(1733530231.669:1067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2293 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fd1be2ed9 code=0x7ffc0000
[  155.737468][   T24] audit: type=1326 audit(1733530231.669:1068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2293 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f2fd1be2ed9 code=0x7ffc0000
[  155.793545][   T24] audit: type=1326 audit(1733530231.709:1069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2293 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fd1be2ed9 code=0x7ffc0000
[  155.840339][   T24] audit: type=1326 audit(1733530231.709:1070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2293 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2fd1be2ed9 code=0x7ffc0000
[  155.856893][  T305] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  155.904960][   T24] audit: type=1326 audit(1733530231.709:1071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2293 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fd1be2ed9 code=0x7ffc0000
[  155.916914][  T950] usbhid 6-1:0.0: can't add hid device: -71
[  155.950143][  T950] usbhid: probe of 6-1:0.0 failed with error -71
[  155.963943][   T24] audit: type=1326 audit(1733530231.709:1072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2293 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fd1be2ed9 code=0x7ffc0000
[  155.987622][   T24] audit: type=1326 audit(1733530231.709:1073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2293 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2fd1be2ed9 code=0x7ffc0000
[  155.988672][  T950] usb 6-1: USB disconnect, device number 20
[  156.011446][   T24] audit: type=1326 audit(1733530231.709:1074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2293 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fd1be2ed9 code=0x7ffc0000
[  156.040139][   T24] audit: type=1326 audit(1733530231.709:1075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2293 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fd1be2ed9 code=0x7ffc0000
[  156.063388][   T24] audit: type=1326 audit(1733530231.709:1076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2293 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f2fd1be2ed9 code=0x7ffc0000
[  156.100578][ T2294] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  156.115131][ T2294] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  156.126996][ T2294] F2FS-fs (loop0): invalid crc value
[  156.186345][ T2294] F2FS-fs (loop0): Found nat_bits in checkpoint
[  156.410923][ T2294] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  156.483610][ T2294] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  157.134103][ T2314] EXT4-fs (loop5): Test dummy encryption mode enabled
[  157.187819][ T2314] EXT4-fs (loop5): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue
[  157.208744][ T2300] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  157.226954][ T2314] ext4 filesystem being mounted at /81/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  157.267062][ T2300] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  157.279448][ T2300] F2FS-fs (loop2): invalid crc value
[  157.285823][ T2300] F2FS-fs (loop2): Found nat_bits in checkpoint
[  157.557812][ T2300] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  157.580177][ T2300] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  157.673244][ T2329] netlink: 28 bytes leftover after parsing attributes in process `syz.3.428'.
[  158.451415][ T2337] EXT4-fs (loop1): mounted filesystem without journal. Opts: data_err=ignore,nogrpid,bsddf,jqfmt=vfsv0,jqfmt=vfsv0,minixdf,abort,,errors=continue
[  158.467535][ T2337] ext4 filesystem being mounted at /76/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  158.497599][ T2342] EXT4-fs (loop3): Test dummy encryption mode enabled
[  158.547641][ T2342] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue
[  158.563051][ T2342] ext4 filesystem being mounted at /94/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  158.595796][ T2337] fs-verity: sha512 using implementation "sha512-avx2"
[  158.647629][ T2337] fs-verity (loop1, inode 13): ext4_end_enable_verity() failed with err -30
[  159.007698][ T2335] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  159.062047][ T2335] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  159.228680][ T2335] F2FS-fs (loop5): invalid crc value
[  159.453746][ T2335] F2FS-fs (loop5): Found nat_bits in checkpoint
[  159.711894][ T2335] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  159.718949][ T2335] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  160.490713][  T401] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  160.597448][ T2375] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  160.690906][   T24] kauditd_printk_skb: 53 callbacks suppressed
[  160.690917][   T24] audit: type=1326 audit(1733530236.689:1130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2377 comm="syz.1.440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f53e9c29f67 code=0x7ffc0000
[  160.721265][   T24] audit: type=1326 audit(1733530236.689:1131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2377 comm="syz.1.440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f53e9c28840 code=0x7ffc0000
[  160.745308][   T24] audit: type=1326 audit(1733530236.749:1132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2377 comm="syz.1.440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f53e9c29adb code=0x7ffc0000
[  160.768554][   T24] audit: type=1326 audit(1733530236.749:1133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2377 comm="syz.1.440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f53e9c28b3a code=0x7ffc0000
[  160.776973][  T401] usb 4-1: Using ep0 maxpacket: 32
[  160.791577][   T24] audit: type=1326 audit(1733530236.749:1134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2377 comm="syz.1.440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f53e9c28b3a code=0x7ffc0000
[  160.819395][   T24] audit: type=1326 audit(1733530236.789:1135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2377 comm="syz.1.440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f53e9c28747 code=0x7ffc0000
[  160.842630][   T24] audit: type=1326 audit(1733530236.789:1136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2377 comm="syz.1.440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f53e9c2b67a code=0x7ffc0000
[  160.880605][ T2378] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  160.893093][ T2378] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  160.908110][ T2378] F2FS-fs (loop1): invalid crc value
[  160.914517][ T2378] F2FS-fs (loop1): Found nat_bits in checkpoint
[  160.916977][  T401] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  160.965775][  T401] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  160.975699][  T401] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  160.984748][  T401] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  160.996166][  T401] usb 4-1: config 0 descriptor??
[  161.003700][ T2378] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  161.010727][ T2378] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  161.025277][   T24] audit: type=1326 audit(1733530237.019:1137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2377 comm="syz.1.440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f53e9c28840 code=0x7ffc0000
[  161.048499][   T24] audit: type=1326 audit(1733530237.019:1138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2377 comm="syz.1.440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f53e9c28c27 code=0x7ffc0000
[  161.071722][   T24] audit: type=1326 audit(1733530237.019:1139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2377 comm="syz.1.440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f53e9c28840 code=0x7ffc0000
[  161.077905][ T2390] EXT4-fs (loop2): Test dummy encryption mode enabled
[  161.162483][ T2390] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue
[  161.173755][ T2390] ext4 filesystem being mounted at /81/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  161.251033][ T2386] EXT4-fs (loop5): Test dummy encryption mode enabled
[  161.356568][ T2386] EXT4-fs (loop5): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue
[  161.519897][  T401] savu 0003:1E7D:2D5A.0023: hiddev96,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.3-1/input0
[  161.588184][ T2386] ext4 filesystem being mounted at /83/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  161.684223][ T2390] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  161.911324][ T2362] netlink: 8 bytes leftover after parsing attributes in process `syz.3.436'.
[  161.929879][ T2390] overlayfs: filesystem on './file0' not supported as upperdir
[  162.136397][ T2411] binder: 2399:2411 ioctl 541b 0 returned -22
[  165.796868][  T535] usb 4-1: reset high-speed USB device number 16 using dummy_hcd
[  167.393042][ T2426] syz.5.448[2426] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  167.393339][ T2426] syz.5.448[2426] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  167.546840][ T2430] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  167.565439][ T2430] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  167.579204][ T2430] F2FS-fs (loop1): invalid crc value
[  167.701823][ T2430] F2FS-fs (loop1): Found nat_bits in checkpoint
[  167.803217][ T2430] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  167.810194][ T2430] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  168.106866][  T535] usb 4-1: device descriptor read/64, error -71
[  168.119198][ T2440] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[  168.135570][ T2440] ext4 filesystem being mounted at /83/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  168.177922][  T421] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  168.188283][  T421] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  168.281530][  T535] usb 4-1: device reset changed ep0 maxpacket size!
[  168.289016][ T1184] usb 4-1: USB disconnect, device number 16
[  168.337954][ T2452] EXT4-fs (loop1): Test dummy encryption mode enabled
[  168.350056][ T2452] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue
[  168.361727][ T2452] ext4 filesystem being mounted at /81/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  168.436907][  T444] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  168.490355][ T1184] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  170.091955][ T2465] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  170.099555][ T2465] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  170.113330][ T2465] F2FS-fs (loop2): invalid crc value
[  170.131267][   T24] kauditd_printk_skb: 18 callbacks suppressed
[  170.131279][   T24] audit: type=1326 audit(1733530246.129:1158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2469 comm="syz.5.459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13b7dcded9 code=0x7ffc0000
[  170.160413][   T24] audit: type=1326 audit(1733530246.129:1159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2469 comm="syz.5.459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13b7dcded9 code=0x7ffc0000
[  170.167682][ T2465] F2FS-fs (loop2): Found nat_bits in checkpoint
[  170.251850][   T24] audit: type=1326 audit(1733530246.129:1160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2469 comm="syz.5.459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f13b7dcded9 code=0x7ffc0000
[  170.276160][   T24] audit: type=1326 audit(1733530246.129:1161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2469 comm="syz.5.459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13b7dcded9 code=0x7ffc0000
[  170.365624][ T2465] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  170.372606][ T2465] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  170.702905][   T24] audit: type=1326 audit(1733530246.129:1162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2469 comm="syz.5.459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13b7dcded9 code=0x7ffc0000
[  170.744428][   T24] audit: type=1326 audit(1733530246.129:1163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2469 comm="syz.5.459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f13b7dcc840 code=0x7ffc0000
[  172.024089][  T474] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  172.073500][   T24] audit: type=1326 audit(1733530246.129:1164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2469 comm="syz.5.459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f13b7dcdadb code=0x7ffc0000
[  172.101161][   T48] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  172.137501][   T48] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  172.226917][  T444] usb 1-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[  172.268449][ T2477] EXT4-fs error (device loop1) in ext4_do_update_inode:5303: error 27
[  172.277410][ T2477] EXT4-fs error (device loop1): ext4_dirty_inode:6110: inode #3: comm syz.1.460: mark_inode_dirty error
[  172.290196][ T2477] EXT4-fs error (device loop1) in ext4_do_update_inode:5303: error 27
[  172.298688][ T2477] EXT4-fs error (device loop1): __ext4_ext_dirty:182: inode #3: comm syz.1.460: mark_inode_dirty error
[  172.310880][ T2477] Quota error (device loop1): write_blk: dquota write failed
[  172.318278][ T2477] Quota error (device loop1): qtree_write_dquot: Error -27 occurred while creating quota
[  172.328003][ T2477] EXT4-fs error (device loop1): ext4_acquire_dquot:6219: comm syz.1.460: Failed to acquire dquot type 0
[  172.346694][ T2477] EXT4-fs (loop1): 1 orphan inode deleted
[  172.352294][ T2477] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[  172.361380][ T2477] ext4 filesystem being mounted at /83/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  172.393364][  T444] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  172.406555][   T24] audit: type=1326 audit(1733530246.129:1165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2469 comm="syz.5.459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f13b7dcdadb code=0x7ffc0000
[  172.431135][  T444] usb 1-1: Product: syz
[  172.435220][  T444] usb 1-1: Manufacturer: syz
[  172.440001][  T444] usb 1-1: SerialNumber: syz
[  172.445501][  T444] usb 1-1: config 0 descriptor??
[  172.466868][ T1184] usb 4-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[  172.479098][ T1184] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  172.506807][ T1184] usb 4-1: Product: syz
[  172.511644][ T1184] usb 4-1: config 0 descriptor??
[  172.526851][ T1184] usb 4-1: can't set config #0, error -71
[  172.534469][  T474] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  172.538736][ T1184] usb 4-1: USB disconnect, device number 17
[  172.546123][  T474] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  172.560847][  T474] usb 6-1: New USB device found, idVendor=046d, idProduct=c086, bcdDevice= 0.00
[  172.569818][  T474] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  172.600698][  T474] usb 6-1: config 0 descriptor??
[  172.878404][ T2493] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  172.897903][ T2484] F2FS-fs (loop3): fault_type options not supported
[  172.928308][ T2484] F2FS-fs (loop3): invalid crc value
[  172.939237][ T2493] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1047: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  172.954974][ T2484] F2FS-fs (loop3): Found nat_bits in checkpoint
[  172.955109][ T2493] EXT4-fs (loop1): 1 truncate cleaned up
[  172.966685][ T2493] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[  173.013673][ T2484] F2FS-fs (loop3): Start checkpoint disabled!
[  173.024482][ T2484] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  173.169540][  T474] logitech-hidpp-device 0003:046D:C086.0024: hidraw0: USB HID v0.00 Device [HID 046d:c086] on usb-dummy_hcd.5-1/input0
[  173.174940][ T2508] EXT4-fs (loop2): Test dummy encryption mode enabled
[  173.216866][  T444] r8152 1-1:0.0: Unknown version 0x0000
[  173.223381][ T2508] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue
[  173.264586][  T444] usb 1-1: USB disconnect, device number 17
[  173.435894][ T2508] ext4 filesystem being mounted at /88/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  173.535165][  T474] usb 6-1: USB disconnect, device number 21
[  175.945308][ T2532] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000088,resuid=0x0000000000000000,noload,lazytime,usrquota,discard,data_err=abort,,errors=continue
[  176.147114][  T535] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  176.175703][ T2543] FAULT_INJECTION: forcing a failure.
[  176.175703][ T2543] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  176.392246][ T2543] CPU: 0 PID: 2543 Comm: syz.2.475 Not tainted 5.10.227-syzkaller-00554-g550d1177dc67 #0
[  176.401864][ T2543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  176.411756][ T2543] Call Trace:
[  176.414889][ T2543]  dump_stack_lvl+0x1e2/0x24b
[  176.419396][ T2543]  ? panic+0x812/0x812
[  176.423304][ T2543]  ? bfq_pos_tree_add_move+0x43b/0x43b
[  176.428611][ T2543]  dump_stack+0x15/0x17
[  176.432591][ T2543]  should_fail+0x3c6/0x510
[  176.436858][ T2543]  should_fail_usercopy+0x1a/0x20
[  176.441705][ T2543]  strncpy_from_user+0x24/0x2d0
[  176.446392][ T2543]  ? getname_flags+0xba/0x520
[  176.450909][ T2543]  getname_flags+0xf2/0x520
[  176.455244][ T2543]  user_path_at_empty+0x2d/0x50
[  176.459935][ T2543]  __se_sys_mount+0x285/0x3b0
[  176.464443][ T2543]  ? __x64_sys_mount+0xd0/0xd0
[  176.469041][ T2543]  ? __kasan_check_read+0x11/0x20
[  176.473911][ T2543]  __x64_sys_mount+0xbf/0xd0
[  176.478340][ T2543]  do_syscall_64+0x34/0x70
[  176.482580][ T2543]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  176.488309][ T2543] RIP: 0033:0x7f992e26bed9
[  176.492563][ T2543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.512012][ T2543] RSP: 002b:00007f992c8e3058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  176.520249][ T2543] RAX: ffffffffffffffda RBX: 00007f992e431fa0 RCX: 00007f992e26bed9
[  176.528058][ T2543] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000
[  176.535870][ T2543] RBP: 00007f992c8e30a0 R08: 0000000020000100 R09: 0000000000000000
[  176.543679][ T2543] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  176.551492][ T2543] R13: 0000000000000000 R14: 00007f992e431fa0 R15: 00007ffcc65be1c8
[  177.134803][   T24] kauditd_printk_skb: 139 callbacks suppressed
[  177.134823][   T24] audit: type=1326 audit(1733530253.129:1305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2550 comm="syz.3.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff457fb7ed9 code=0x7ffc0000
[  177.173959][   T24] audit: type=1326 audit(1733530253.169:1306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2550 comm="syz.3.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7ff457fb7ed9 code=0x7ffc0000
[  177.198153][   T24] audit: type=1326 audit(1733530253.169:1307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2550 comm="syz.3.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff457fb7ed9 code=0x7ffc0000
[  177.222680][   T24] audit: type=1326 audit(1733530253.169:1308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2550 comm="syz.3.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff457fb7ed9 code=0x7ffc0000
[  177.254085][   T24] audit: type=1326 audit(1733530253.169:1309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2550 comm="syz.3.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff457fb7ed9 code=0x7ffc0000
[  177.277342][   T24] audit: type=1326 audit(1733530253.169:1310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2550 comm="syz.3.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff457fb7ed9 code=0x7ffc0000
[  177.300701][   T24] audit: type=1326 audit(1733530253.169:1311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2550 comm="syz.3.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff457fb7ed9 code=0x7ffc0000
[  177.324176][   T24] audit: type=1326 audit(1733530253.169:1312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2550 comm="syz.3.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff457fb7ed9 code=0x7ffc0000
[  177.326874][  T444] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  177.351970][   T24] audit: type=1326 audit(1733530253.169:1313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2550 comm="syz.3.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff457fb7ed9 code=0x7ffc0000
[  177.389057][   T24] audit: type=1326 audit(1733530253.169:1314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2550 comm="syz.3.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff457fb7ed9 code=0x7ffc0000
[  177.415214][ T2552] EXT4-fs (loop3): 1 orphan inode deleted
[  177.420918][ T2552] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,
[  177.439584][ T2552] ext4 filesystem being mounted at /101/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  177.558014][ T2555] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  177.589953][ T2555] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=2555 comm=syz.5.478
[  177.616994][  T535] usb 2-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[  177.636035][  T535] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  177.646110][  T535] usb 2-1: Product: syz
[  177.650673][  T535] usb 2-1: Manufacturer: syz
[  177.655112][  T535] usb 2-1: SerialNumber: syz
[  177.665395][  T535] usb 2-1: config 0 descriptor??
[  177.746908][  T444] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  177.756941][  T444] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  177.769702][ T2565] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  177.777387][ T2565] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  177.786151][ T2565] F2FS-fs (loop3): invalid crc value
[  177.792684][ T2565] F2FS-fs (loop3): Found nat_bits in checkpoint
[  177.816113][ T2565] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  177.823105][ T2565] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  177.836834][   T54] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  177.856983][  T444] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  177.867959][ T2568] EXT4-fs (loop5): Test dummy encryption mode enabled
[  177.875680][  T444] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  177.886647][  T444] usb 3-1: SerialNumber: syz
[  177.887684][ T2568] EXT4-fs (loop5): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue
[  177.902407][ T2568] ext4 filesystem being mounted at /90/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  177.945297][ T2565] overlayfs: failed to resolve './bus/file0': -2
[  178.217475][  T444] usb 3-1: 0:2 : does not exist
[  178.232826][  T444] usb 3-1: USB disconnect, device number 15
[  178.267406][  T421] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  178.278884][  T919] udevd[919]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  178.314976][  T421] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  178.406914][   T54] usb 1-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[  178.426840][  T535] r8152 2-1:0.0: Unknown version 0x0000
[  178.432506][   T54] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  178.432920][  T535] usb 2-1: USB disconnect, device number 9
[  178.446715][   T54] usb 1-1: Product: syz
[  178.451591][ T2580] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  178.451967][   T54] usb 1-1: Manufacturer: syz
[  178.462917][ T2580] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  178.466345][   T54] usb 1-1: SerialNumber: syz
[  178.472742][ T2580] F2FS-fs (loop5): invalid crc value
[  178.480887][   T54] usb 1-1: config 0 descriptor??
[  178.482711][ T2580] F2FS-fs (loop5): Found nat_bits in checkpoint
[  178.529082][ T2580] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  178.535982][ T2580] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  178.556079][ T2580] overlayfs: failed to resolve './file1': -2
[  179.828456][  T654] Bluetooth: hci0: sending frame failed (-49)
[  179.835618][ T2604] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  179.845041][ T2604] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  181.217094][ T2618]  loop1: p3 < > p4 < >
[  181.221077][ T2618] loop1: partition table partially beyond EOD, truncated
[  181.236907][ T2618] loop1: p3 start 4284289 is beyond EOD, truncated
[  181.245267][ T2618] syz.1.491[2618] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  181.245318][ T2618] syz.1.491[2618] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  181.400973][  T382] udevd[382]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  181.887021][  T950] Bluetooth: hci0: command 0x1003 tx timeout
[  181.937087][  T654] Bluetooth: hci0: sending frame failed (-49)
[  182.416267][   T24] kauditd_printk_skb: 46 callbacks suppressed
[  182.416279][   T24] audit: type=1326 audit(1733530258.409:1361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2632 comm="syz.2.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f992e26bed9 code=0x7ffc0000
[  182.486702][   T24] audit: type=1326 audit(1733530258.439:1362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2632 comm="syz.2.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992e26bed9 code=0x7ffc0000
[  182.536836][   T24] audit: type=1326 audit(1733530258.439:1363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2632 comm="syz.2.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992e26bed9 code=0x7ffc0000
[  182.560029][   T24] audit: type=1326 audit(1733530258.439:1364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2632 comm="syz.2.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f992e26bed9 code=0x7ffc0000
[  182.583939][   T24] audit: type=1326 audit(1733530258.439:1365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2632 comm="syz.2.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992e26bed9 code=0x7ffc0000
[  182.607815][   T24] audit: type=1326 audit(1733530258.439:1366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2632 comm="syz.2.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992e26bed9 code=0x7ffc0000
[  183.521528][   T24] audit: type=1326 audit(1733530258.439:1367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2632 comm="syz.2.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f992e26bed9 code=0x7ffc0000
[  183.554399][   T24] audit: type=1326 audit(1733530258.439:1368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2632 comm="syz.2.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992e26bed9 code=0x7ffc0000
[  183.592833][   T24] audit: type=1326 audit(1733530258.439:1369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2632 comm="syz.2.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992e26bed9 code=0x7ffc0000
[  183.616845][   T54] r8152 1-1:0.0: Unknown version 0x0000
[  183.622606][ T2636] udc-core: couldn't find an available UDC or it's busy
[  183.629918][ T2643] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  183.637581][ T2643] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  183.646535][ T2643] F2FS-fs (loop1): invalid crc value
[  183.667027][ T2636] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  183.678726][ T2643] F2FS-fs (loop1): Found nat_bits in checkpoint
[  183.827742][   T24] audit: type=1326 audit(1733530258.439:1370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2632 comm="syz.2.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f992e26bed9 code=0x7ffc0000
[  183.967057][   T54] Bluetooth: hci0: command 0x1001 tx timeout
[  183.973187][  T654] Bluetooth: hci0: sending frame failed (-49)
[  183.989518][ T2643] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  183.996560][ T2643] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  184.575012][ T1184] usb 1-1: USB disconnect, device number 18
[  184.657118][  T421] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  184.665811][  T421] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  185.091536][ T2659] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  185.107245][ T2659] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  185.116301][ T2659] F2FS-fs (loop5): invalid crc value
[  185.171314][ T2659] F2FS-fs (loop5): Found nat_bits in checkpoint
[  185.208103][ T2659] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  185.215020][ T2659] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  185.243232][ T2674] EXT4-fs (loop1): Test dummy encryption mode enabled
[  185.268328][ T2674] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue
[  185.282379][ T2667] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  185.291512][ T2674] ext4 filesystem being mounted at /94/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  185.296840][ T2667] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  185.309018][ T2674] overlayfs: failed to resolve './file2': -2
[  185.316709][ T2667] F2FS-fs (loop0): invalid crc value
[  185.323382][ T2674] overlayfs: failed to resolve './file2': -2
[  185.338530][ T2667] F2FS-fs (loop0): Found nat_bits in checkpoint
[  185.360546][ T2667] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  185.367629][ T2667] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  185.386822][   T15] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  185.577440][ T2691] FAULT_INJECTION: forcing a failure.
[  185.577440][ T2691] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  185.590323][ T2691] CPU: 0 PID: 2691 Comm: syz.0.505 Not tainted 5.10.227-syzkaller-00554-g550d1177dc67 #0
[  185.599903][ T2691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  185.609797][ T2691] Call Trace:
[  185.612929][ T2691]  dump_stack_lvl+0x1e2/0x24b
[  185.617447][ T2691]  ? bfq_pos_tree_add_move+0x43b/0x43b
[  185.622737][ T2691]  ? release_firmware_map_entry+0x18d/0x18d
[  185.628480][ T2691]  dump_stack+0x15/0x17
[  185.632450][ T2691]  should_fail+0x3c6/0x510
[  185.637140][ T2691]  should_fail_usercopy+0x1a/0x20
[  185.642000][ T2691]  strncpy_from_user+0x24/0x2d0
[  185.646685][ T2691]  __se_sys_add_key+0xd5/0x480
[  185.651288][ T2691]  ? sysvec_reschedule_ipi+0x83/0x160
[  185.656494][ T2691]  ? __x64_sys_add_key+0xd0/0xd0
[  185.661277][ T2691]  __x64_sys_add_key+0xbf/0xd0
[  185.665866][ T2691]  do_syscall_64+0x34/0x70
[  185.670120][ T2691]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  185.675848][ T2691] RIP: 0033:0x7f2fd1be2ed9
[  185.680105][ T2691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.699540][ T2691] RSP: 002b:00007f2fd0218058 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8
[  185.707784][ T2691] RAX: ffffffffffffffda RBX: 00007f2fd1da9160 RCX: 00007f2fd1be2ed9
[  185.715605][ T2691] RDX: 00000000200000c0 RSI: 0000000020000080 RDI: 0000000020000040
[  185.723432][ T2691] RBP: 00007f2fd02180a0 R08: ffffffffffffffff R09: 0000000000000000
[  185.731223][ T2691] R10: 00000000000052ba R11: 0000000000000246 R12: 0000000000000001
[  185.739031][ T2691] R13: 0000000000000001 R14: 00007f2fd1da9160 R15: 00007ffdd8792048
[  186.376885][   T15] usb 3-1: Using ep0 maxpacket: 32
[  186.448736][ T2691] F2FS-fs (loop0): Small segment_count (9 < 1 * 24)
[  186.455202][ T2691] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  186.507050][   T15] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  186.570310][ T2691] F2FS-fs (loop0): Found nat_bits in checkpoint
[  186.625779][ T2691] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  186.632691][ T2691] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  186.643642][ T2691] attempt to access beyond end of device
[  186.643642][ T2691] loop0: rw=2049, want=53256, limit=40427
[  186.689888][   T15] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  186.733890][  T950] Bluetooth: hci0: command 0x1009 tx timeout
[  186.743944][   T15] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  186.759957][   T15] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  186.772223][   T15] usb 3-1: config 0 descriptor??
[  187.081408][ T2717] cgroup: syz.5.514 (2717) created nested cgroup for controller "memory" which has incomplete hierarchy support. Nested cgroups may change behavior in the future.
[  187.097741][ T2717] cgroup: "memory" requires setting use_hierarchy to 1 on the root
[  187.259673][   T15] savu 0003:1E7D:2D5A.0025: hiddev96,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.2-1/input0
[  187.271293][  T401] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  187.516803][  T401] usb 2-1: Using ep0 maxpacket: 8
[  187.527430][ T2669] netlink: 8 bytes leftover after parsing attributes in process `syz.2.501'.
[  187.773260][   T24] kauditd_printk_skb: 103 callbacks suppressed
[  187.773271][   T24] audit: type=1326 audit(1733530263.769:1474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2714 comm="syz.5.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13b7dcded9 code=0x7ffc0000
[  187.802637][   T24] audit: type=1326 audit(1733530263.769:1475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2714 comm="syz.5.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13b7dcded9 code=0x7ffc0000
[  187.836850][  T401] usb 2-1: New USB device found, idVendor=0c45, idProduct=613a, bcdDevice=c4.6d
[  187.845830][  T401] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  187.858095][  T401] usb 2-1: Product: syz
[  187.862117][  T401] usb 2-1: Manufacturer: syz
[  187.866548][  T401] usb 2-1: SerialNumber: syz
[  187.883135][ T2721] netlink: 12 bytes leftover after parsing attributes in process `syz.5.515'.
[  187.883507][  T401] usb 2-1: config 0 descriptor??
[  187.960568][   T24] audit: type=1326 audit(1733530263.959:1476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2724 comm="syz.5.517" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f13b7dcded9 code=0x0
[  188.039270][   T15] usb 3-1: USB disconnect, device number 16
[  188.491445][  T283] attempt to access beyond end of device
[  188.491445][  T283] loop0: rw=2049, want=45112, limit=40427
[  188.856835][   T15] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  188.908520][ T2739] kvm: emulating exchange as write
[  189.286635][   T54] usb 2-1: USB disconnect, device number 10
[  189.458769][ T2767] syz.5.533 uses obsolete (PF_INET,SOCK_PACKET)
[  189.735047][   T24] audit: type=1400 audit(1733530265.729:1477): avc:  denied  { connect } for  pid=2766 comm="syz.5.533" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  189.776799][   T15] usb 1-1: Using ep0 maxpacket: 32
[  189.897009][   T15] usb 1-1: config 0 has an invalid descriptor of length 27, skipping remainder of the config
[  189.907792][   T15] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  189.916864][   T54] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  190.416060][   T15] usb 1-1: New USB device found, idVendor=0458, idProduct=5016, bcdDevice= 0.00
[  190.426223][   T15] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.431420][ T2780] netlink: 8 bytes leftover after parsing attributes in process `syz.2.538'.
[  190.461625][   T15] usb 1-1: config 0 descriptor??
[  190.545627][   T24] audit: type=1400 audit(1733530266.529:1478): avc:  denied  { read } for  pid=2785 comm="syz.2.540" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  190.570421][ T2791] netlink: 4 bytes leftover after parsing attributes in process `syz.5.541'.
[  190.579151][   T24] audit: type=1400 audit(1733530266.569:1479): avc:  denied  { setopt } for  pid=2785 comm="syz.2.540" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  190.953299][ T2802] netlink: 12 bytes leftover after parsing attributes in process `syz.5.544'.
[  191.006834][   T15] usb 1-1: string descriptor 0 read error: -71
[  191.017090][   T54] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  191.018205][   T15] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  191.027140][   T54] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  191.040978][   T15] usb 1-1: USB disconnect, device number 19
[  191.047523][   T54] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 62976, setting to 1024
[  191.063813][   T54] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  191.076091][   T54] usb 2-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  191.336863][   T54] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  191.345791][   T54] usb 2-1: New USB device strings: Mfr=1, Product=130, SerialNumber=3
[  191.353872][   T54] usb 2-1: Product: syz
[  191.357824][   T54] usb 2-1: Manufacturer: syz
[  191.362206][   T54] usb 2-1: SerialNumber: syz
[  191.417441][   T54] cdc_mbim 2-1:1.0: skipping garbage
[  191.597856][  T474] ==================================================================
[  191.605755][  T474] BUG: KASAN: use-after-free in __list_del_entry_valid+0x2f/0x120
[  191.610042][   T24] audit: type=1400 audit(1733530267.609:1480): avc:  denied  { listen } for  pid=2830 comm="syz.0.555" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  191.613371][  T474] Read of size 8 at addr ffff8881169ab208 by task kworker/1:5/474
[  191.613374][  T474] 
[  191.613386][  T474] CPU: 1 PID: 474 Comm: kworker/1:5 Not tainted 5.10.227-syzkaller-00554-g550d1177dc67 #0
[  191.613392][  T474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  191.613410][  T474] Workqueue: events binder_deferred_func
[  191.633417][   T24] audit: type=1400 audit(1733530267.629:1481): avc:  denied  { accept } for  pid=2830 comm="syz.0.555" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  191.640276][  T474] 
[  191.640281][  T474] Call Trace:
[  191.640297][  T474]  dump_stack_lvl+0x1e2/0x24b
[  191.640306][  T474]  ? bfq_pos_tree_add_move+0x43b/0x43b
[  191.640313][  T474]  ? panic+0x812/0x812
[  191.640325][  T474]  print_address_description+0x81/0x3b0
[  191.640334][  T474]  kasan_report+0x179/0x1c0
[  191.640344][  T474]  ? __list_del_entry_valid+0x2f/0x120
[  191.640360][  T474]  ? __list_del_entry_valid+0x2f/0x120
[  191.726040][  T474]  __asan_report_load8_noabort+0x14/0x20
[  191.731514][  T474]  __list_del_entry_valid+0x2f/0x120
[  191.736640][  T474]  binder_release_work+0xcd/0x680
[  191.741481][  T474]  binder_deferred_func+0x1847/0x1bc0
[  191.746690][  T474]  ? read_word_at_a_time+0x12/0x20
[  191.751630][  T474]  process_one_work+0x6dc/0xbd0
[  191.756317][  T474]  worker_thread+0xaea/0x1510
[  191.760836][  T474]  kthread+0x34b/0x3d0
[  191.764732][  T474]  ? worker_clr_flags+0x180/0x180
[  191.769594][  T474]  ? kthread_blkcg+0xd0/0xd0
[  191.774022][  T474]  ret_from_fork+0x1f/0x30
[  191.778272][  T474] 
[  191.780440][  T474] Allocated by task 2829:
[  191.784625][  T474]  ____kasan_kmalloc+0xdb/0x110
[  191.789314][  T474]  __kasan_kmalloc+0x9/0x10
[  191.793636][  T474]  kmem_cache_alloc_trace+0x18a/0x2e0
[  191.798846][  T474]  binder_thread_write+0x9ce/0x6c70
[  191.803878][  T474]  binder_ioctl_write_read+0x216/0x6a80
[  191.809270][  T474]  binder_ioctl+0x314/0x1e00
[  191.813689][  T474]  __se_sys_ioctl+0x114/0x190
[  191.818211][  T474]  __x64_sys_ioctl+0x7b/0x90
[  191.822624][  T474]  do_syscall_64+0x34/0x70
[  191.826876][  T474]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  191.832597][  T474] 
[  191.834769][  T474] Freed by task 474:
[  191.838505][  T474]  kasan_set_track+0x4b/0x70
[  191.842931][  T474]  kasan_set_free_info+0x23/0x40
[  191.847704][  T474]  ____kasan_slab_free+0x121/0x160
[  191.852658][  T474]  __kasan_slab_free+0x11/0x20
[  191.857251][  T474]  slab_free_freelist_hook+0xc0/0x190
[  191.862476][  T474]  kfree+0xc3/0x270
[  191.866116][  T474]  binder_free_ref+0x128/0x260
[  191.870711][  T474]  binder_deferred_func+0x171c/0x1bc0
[  191.875919][  T474]  process_one_work+0x6dc/0xbd0
[  191.880605][  T474]  worker_thread+0xaea/0x1510
[  191.885112][  T474]  kthread+0x34b/0x3d0
[  191.889020][  T474]  ret_from_fork+0x1f/0x30
[  191.893267][  T474] 
[  191.895447][  T474] The buggy address belongs to the object at ffff8881169ab200
[  191.895447][  T474]  which belongs to the cache kmalloc-64 of size 64
[  191.909155][  T474] The buggy address is located 8 bytes inside of
[  191.909155][  T474]  64-byte region [ffff8881169ab200, ffff8881169ab240)
[  191.922005][  T474] The buggy address belongs to the page:
[  191.927494][  T474] page:ffffea00045a6ac0 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1169ab
[  191.937565][  T474] flags: 0x4000000000000200(slab)
[  191.942401][  T474] raw: 4000000000000200 ffffea000453de00 0000000400000004 ffff888100043800
[  191.950819][  T474] raw: 0000000000000000 0000000080200020 00000001ffffffff 0000000000000000
[  191.959228][  T474] page dumped because: kasan: bad access detected
[  191.965487][  T474] page_owner tracks the page as allocated
[  191.971042][  T474] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 108, ts 4683504194, free_ts 0
[  191.985880][  T474]  prep_new_page+0x166/0x180
[  191.990306][  T474]  get_page_from_freelist+0x2d8c/0x2f30
[  191.995684][  T474]  __alloc_pages_nodemask+0x435/0xaf0
[  192.000891][  T474]  new_slab+0x80/0x400
[  192.004795][  T474]  ___slab_alloc+0x302/0x4b0
[  192.009224][  T474]  __slab_alloc+0x63/0xa0
[  192.013398][  T474]  __kmalloc+0x204/0x330
[  192.017470][  T474]  kvmalloc_node+0x82/0x130
[  192.021809][  T474]  simple_xattr_alloc+0x43/0xa0
[  192.026498][  T474]  shmem_initxattrs+0x8d/0x200
[  192.031102][  T474]  security_inode_init_security+0x252/0x390
[  192.036823][  T474]  shmem_symlink+0x147/0x610
[  192.041252][  T474]  vfs_symlink+0x367/0x4f0
[  192.045501][  T474]  do_symlinkat+0x19b/0x400
[  192.049842][  T474]  __x64_sys_symlink+0x60/0x70
[  192.054442][  T474]  do_syscall_64+0x34/0x70
[  192.058690][  T474] page_owner free stack trace missing
[  192.063896][  T474] 
[  192.066068][  T474] Memory state around the buggy address:
[  192.071540][  T474]  ffff8881169ab100: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  192.079435][  T474]  ffff8881169ab180: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  192.087337][  T474] >ffff8881169ab200: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  192.095228][  T474]                       ^
[  192.099401][  T474]  ffff8881169ab280: 00 00 00 00 00 00 00 02 fc fc fc fc fc fc fc fc
[  192.107302][  T474]  ffff8881169ab300: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  192.115191][  T474] ==================================================================
[  192.123090][  T474] Disabling lock debugging due to kernel taint
[  192.129623][  T474] general protection fault, probably for non-canonical address 0xff5ffc398000003b: 0000 [#1] PREEMPT SMP KASAN
[  192.141136][  T474] KASAN: maybe wild-memory-access in range [0xfb0001cc000001d8-0xfb0001cc000001df]
[  192.150251][  T474] CPU: 1 PID: 474 Comm: kworker/1:5 Tainted: G    B             5.10.227-syzkaller-00554-g550d1177dc67 #0
[  192.161356][  T474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  192.171251][  T474] Workqueue: events binder_deferred_func
[  192.176896][  T474] RIP: 0010:__list_del_entry_valid+0x75/0x120
[  192.182792][  T474] Code: 1e 48 85 db 74 68 4d 85 ff 74 74 48 ba 00 01 00 00 00 00 ad de 48 39 d3 74 76 48 83 c2 22 49 39 d7 74 7e 4c 89 f8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ff e8 ac 90 51 ff 49 8b 17 4c 39 f2 75
[  192.202233][  T474] RSP: 0018:ffffc90000f27c20 EFLAGS: 00010a02
[  192.208133][  T474] RAX: 1f6000398000003b RBX: ffff88811a27df00 RCX: ffffffff8256c799
[  192.215944][  T474] RDX: dead000000000122 RSI: 0000000000000286 RDI: ffff8881169ab200
[  192.223754][  T474] RBP: ffffc90000f27c40 R08: ffffffff813e2a3b R09: 0000000000000003
[  192.231566][  T474] R10: fffffbfff0e11248 R11: dffffc0000000001 R12: dffffc0000000000
[  192.239380][  T474] R13: ffff8881169ab200 R14: ffff8881169ab200 R15: fb0001cc000001da
[  192.247190][  T474] FS:  0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  192.255961][  T474] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  192.262376][  T474] CR2: 000000002002e000 CR3: 0000000117709000 CR4: 00000000003526a0
[  192.270191][  T474] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  192.277998][  T474] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  192.285810][  T474] Call Trace:
[  192.288945][  T474]  ? __die_body+0x62/0xb0
[  192.293103][  T474]  ? die_addr+0x9f/0xd0
[  192.297097][  T474]  ? exc_general_protection+0x3ff/0x490
[  192.302479][  T474]  ? check_panic_on_warn+0x65/0xb0
[  192.307426][  T474]  ? asm_exc_general_protection+0x1e/0x30
[  192.312979][  T474]  ? check_panic_on_warn+0x5b/0xb0
[  192.317928][  T474]  ? __list_del_entry_valid+0x49/0x120
[  192.323219][  T474]  ? __list_del_entry_valid+0x75/0x120
[  192.328515][  T474]  binder_release_work+0xcd/0x680
[  192.333377][  T474]  binder_deferred_func+0x1847/0x1bc0
[  192.338582][  T474]  ? read_word_at_a_time+0x12/0x20
[  192.343532][  T474]  process_one_work+0x6dc/0xbd0
[  192.348215][  T474]  worker_thread+0xaea/0x1510
[  192.352734][  T474]  kthread+0x34b/0x3d0
[  192.356639][  T474]  ? worker_clr_flags+0x180/0x180
[  192.361495][  T474]  ? kthread_blkcg+0xd0/0xd0
[  192.365932][  T474]  ret_from_fork+0x1f/0x30
[  192.370171][  T474] Modules linked in:
[  192.374049][  T474] ---[ end trace 7cadd48bd5fd7e78 ]---
[  192.379660][  T474] RIP: 0010:__list_del_entry_valid+0x75/0x120
[  192.385638][  T474] Code: 1e 48 85 db 74 68 4d 85 ff 74 74 48 ba 00 01 00 00 00 00 ad de 48 39 d3 74 76 48 83 c2 22 49 39 d7 74 7e 4c 89 f8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ff e8 ac 90 51 ff 49 8b 17 4c 39 f2 75
[  192.405053][  T474] RSP: 0018:ffffc90000f27c20 EFLAGS: 00010a02
[  192.410968][  T474] RAX: 1f6000398000003b RBX: ffff88811a27df00 RCX: ffffffff8256c799
[  192.418856][  T474] RDX: dead000000000122 RSI: 0000000000000286 RDI: ffff8881169ab200
[  192.426644][  T474] RBP: ffffc90000f27c40 R08: ffffffff813e2a3b R09: 0000000000000003
[  192.434500][  T474] R10: fffffbfff0e11248 R11: dffffc0000000001 R12: dffffc0000000000
[  192.442287][  T474] R13: ffff8881169ab200 R14: ffff8881169ab200 R15: fb0001cc000001da
[  192.450095][  T474] FS:  0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  192.458855][  T474] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  192.465271][  T474] CR2: 000000002002e000 CR3: 0000000117709000 CR4: 00000000003506a0
[  192.473104][  T474] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  192.480912][  T474] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  192.488727][  T474] Kernel panic - not syncing: Fatal exception
[  192.494803][  T474] Kernel Offset: disabled
[  192.498931][  T474] Rebooting in 86400 seconds..