last executing test programs:

1m53.710007205s ago: executing program 3 (id=50):
r0 = epoll_create1(0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000c85000))
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000140))

1m53.142404318s ago: executing program 3 (id=54):
syz_mount_image$f2fs(&(0x7f0000000240), &(0x7f0000000200)='./bus\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0xfe, 0x54f8, &(0x7f0000005980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000001740)='.\x00', 0x51f001, 0x488)
write$FUSE_DIRENTPLUS(r0, 0x0, 0x10)
write$FUSE_ENTRY(r0, &(0x7f0000000000)={0x90, 0x0, 0x0, {0x1, 0x2, 0x4, 0x6, 0xff, 0x9, {0x3, 0x8, 0x0, 0x9, 0x5, 0x5, 0x6, 0x7, 0x189ff3ac, 0x4000, 0xfffffff9, 0x0, 0xffffffffffffffff, 0x8, 0x7}}}, 0x90)

1m49.574064911s ago: executing program 3 (id=80):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1700000007"], 0x50)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x4}, 0x6)
write$binfmt_misc(r0, &(0x7f0000000000), 0xd)

1m48.272705322s ago: executing program 3 (id=87):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x1000001, &(0x7f0000000180)={[{@resuid}, {@init_itable}, {@stripe={'stripe', 0x3d, 0xd40}}, {@noblock_validity}]}, 0x7, 0x453, &(0x7f00000009c0)="$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")
syz_mount_image$ext4(&(0x7f00000000c0)='ext3\x00', &(0x7f0000000380)='./file0\x00', 0x10e, &(0x7f0000000140)={[{@inlinecrypt}, {@nodelalloc}, {@jqfmt_vfsold}, {@bh}, {@block_validity}, {@quota}]}, 0x3, 0x460, &(0x7f0000001380)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount(0x0, &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x20, &(0x7f0000000140)='usrjquota=')

1m47.520848931s ago: executing program 3 (id=92):
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000000100)='./bus\x00', 0x2000088, &(0x7f00000003c0)={[{@discard_async}, {@autodefrag}, {@ref_verify}, {@compress_algo={'compress', 0x3d, 'no'}}, {@clear_cache}, {@noacl}, {@max_inline={'max_inline', 0x3d, [0x37, 0x37, 0x2d, 0x37, 0x2d, 0x70, 0x25]}}, {@thread_pool={'thread_pool', 0x3d, 0x6}}, {@ssd_spread}]}, 0x1, 0x55ae, &(0x7f0000005600)="$eJzs3X9snHUdB/DnruvaFdeWMOuArGwDJFtEOjdNCCR2bNNpYTnphE3I+gNH0DmtY8NVCCtinIERijWMwQoLbn9MEYqucyiJBewqul8IJtNFBbPFNWOkOBExYTG9u+d299zaHhMpwuu1tM/zvc/z/d73njx/3PvW73MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABEHwx+N3TL/t3roJ26+ru++8a85e+2D3kuMX3rq1avND20v2dTz31aNVq1qPLF1w0/2JpkfW93d3BkEs2S+W7t9w2fwrr69vuKI0HLDxc6ltZeVQT5nq+mKqMTbnwcF+uT9NQRAURwYoSm/npXfiOQNkdlfkDzisayf1tE4dP69x28qujc8uu3xL/ktnUOloT2C0pK+rgyeupdrk73jkiEw769KL5Vyiqf7RC+4deREAwFtSk0huMm9H029xM+22aD3Sro202yPt8B1Ce3bjVKTGHTvUPCdH66M0z9pUVCgZcp6Revr8Z9qJaP9IOxI13sI8cw9NR5rSoebZEqmP1jwBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3k0uuH5m/d49D7/8ldbf/u7h17/16sePrGq8ZaC7/qJ1ix/v2PG9vx2tWtV6ZOmCm+5PND2yvr+7Mwgqk/1iqe6xZ6ri8ZkDddseu6e3puFDC9cUpccNt2OyDg72hzsXVwRBc1blYDhsf3kQJHILyWawIb/wpeTOZ8ICAAAA7yVnJn/HM+1UHCzOaceSaTKW/BdKhcVrJ/W0Th0/r3Hbyq6Nzy67fMupj5cYYrzak46XaVee+IllBeMw/kbHO1EPD12RN87woiNG8/zpx/qnNdfdUHrl7gsWzphdv+XS4CfTD3csX3TfhBfHL9nXXpOX/yuHz//hmZP/AQAA+G/I/9FxhjdS/m+uqZh0cOp3ix67rur44fkP/Lyz7/kn4w8VD3Q//dLYcbf9cnVe/p+c85R5+T+ccZj/48Gp5X8AAAB4N/tf5//avHGGN1L+/8X+zZ//98pvTDk84187Xnj69xdvnVI+/7WyGTe8+cSCVxp2tf0pL//XFJb/x2RPO3xwVzjhZRVBUFP4SQUAAAByhP/vfuKjhTCvpz45iOb1y+4qe3LXG+tvjJ/V8o8zFvfPqv7i7tVf37ApNrChc92O5XNX5OX/2sLyf/E783IBAACAAvxm+y13V395ydYtew7N2XFnYvPYS+a+uuennVf1vXwsUfT8zX15+T9RWP4vGZ2XAwAAAJzEU+MmPnfo0UNfm7177YS9q9rmPD5t3+qFD/xz9t+veOnPxzddWJ6X/xsLy/9l6W165UOq087wrxA6KoKgdHCnJVXoC9o/mSkAAAAAb5Mwpzc1revduX7MrNfOPvzDNSuW/2rvpd++a2P1zQd+XXX7ucf2996Yl/9bhr//f3ing3D9f879//LW/2cVUnf9u8SNAQAAAHg/yl/PH94eP/XNBUN9/36h6/8/euaBko7m8ysnx7dVz3rig31Xra1+fVHHRZ/YfusbH46V//VTefm/rbD8X5S9fTu//w8AAABOwf/b9/8tzhtneCPd/79v3DPnrPnsPT+o/WbZU+e+eXfzd9oPTj9v87QzPlJ0fvecmX/4fl7+by8s/4fb07JfXk94fm6vCIKJgzvpuwluDae7LFLoKs4qpE58pEd92CNd6CrJKiS1RHp8rCIIpgzutEUKp4eF9khhoDxd2BQp7A0L6eshU3g0UugJr7R7y9PTjRZ+FhbSCyy6whUUp2WWRER6HBuqx2DhpD0OZJ4cAADgfSUMz+ksW5zbDKJRtis20gFlIx0QH+mAopEOGBM5IHrgUI8HjbmF8PEfz+1e+so1D9b1Xt1w9KzZe5bc0faBnkW9O7/wo55z/nL1Cws/nZf/NxWW/8NTMTa1GWr9fxCu/09/r2Fm/X9jWKiMFLrCQiJ6x4BE+BypsHtn+ByViXSPgYmZAgAAALynhZ8LFI3yPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAID/sHfvcVJVd4LATzf9oJum6YgBY4ygRkR3aZomGEQcUXRXo4tNJKtjhtAIjXZoAwq4YsyKr3GV6GLUmBjZwY+jJg6r+CDqRIXoiElGJfE5Kz4HnciqS9BR45gs++m+dYqqW112IaC0+/3+0XWqfud569F17r11LgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/P/hsiX3Nrw58H9965ffW/f697409TdTD9m8y19uqHt3yDlPbT5ocN0tbw1asPCNtklnXtsyffk1G1YuDaGlq1xZUrzsoUHl5aP/cMxdt13xcNO0wVPOrcrUm4mHfp1/yjN3Loytvto/hLvLQqhIB0bUJYHKzP26WN8edSF8LmwJZEu01SYl0g2Hh2tCWBa2BLJV3VsTQl1OYMoTD666rDNxVU0I+4YQqtNtvFCdtFGTDgyrSgK16cCciiTw/uZENnBPeRKArVHV3YPxzZB90a9oyc/Q0H1lRV5/lR+3czuZ9PD6xERD8XxvHbaDO5Wj4Lls2aanrduXBttdwdtjtXdbL3i3FWznJZ623C9SmW8om7eEqkP5zLZZ0xd0zI+PlIfGxj7FatpBz/O6TefM2Jp0r3kdxg40bJfX4QO1k+ove3viwStP/uPp+85fO3Vbu/lczibNTe9o1SHzmus1z2M04dP7PNm8LYW3r539aSv4ljTUl64QwvF/+nzZM3Ne2n3jB6+eOPH2Fy6+etrCa6ZMfHbQL8b+47W73D3t8oL5f8NHz//jyznelufljq1+WJ/MzeMjdTGxsT6ZmwMAAECv0Rv2mn519KsvnfrQ3YteXH5cxXfH/eqk3eorzv5+x/G7rhz/xUuvbH98l4L5/9DSjv/HQ/51uaNdHcKErsQFA0LYrevxJPCz2J2TB4SwV1eqJT9wWCqwOoQvdCX2z1aVKtE3lhiaCvy+PhOYkAqsiYGWVODGGFiSClwYAytSgRkxsDoVODwGQnv+OA6oz4yj5EBNDLQmG3FFPAvhnfrYWmpbrctWBQAAsJ1kZoeV+XdzznXY1gxxermipqcM8QzsohmqUzWkZ7DZaVXRGip6qqG8pxqy41700cMvqLmsp5oLTsMoy8/w4ZDvlA+YuPeP7rpxxE3NL0787rtjj//Kn998d/X+//Tf7zln/nUHFMz/mz56/l/dTUfKCo7/hzC562/MXZ6JdGTjrS15GQAAAIBtcNVjS5+84YCj/s99L99355euvaF89dVf/7+vbLxg71HHDS/r+3ffXlEw/59Q2vn/cZ9In5zM4dG4G2L2gBCa8gNJtQcXBpKj3v0yAQAAAOgNssfjs8fC2zO3ySna6fl0Yf6WrcwfD/xP6Db/5Zv++tkvX/vkiQuH7bPhiv925gdlnx/7u12OXTvy8bf2HPYPDX0Lz/9vKe38/9r826QTa2IvrhwQQt+cwCOxl52BLkNj4OVD8wOZ8a+JG2BxrCpzYkK2qsWxRGsMNKUCy4qV+G22xG75gcyTlW38guw42jMlcgIAAADwiYu7A+Jx+Xj+/z2TD/jS/oNeGvPinvcufG3C0hNOrf3hPrfs+vqAjkljDpxwyBHPFMz/W7fu/P+ueXDB6f0d/UIYWRFCn/QPAx6tTRYGjIG6skzi/tqkrj7pqs6rDWF858DSVb2SWf+/Ir3G4BM1SVUxsNveP900rDNxQ00II3MDz3zz+jGdifmpQLbxb9SEMKRztOnGV/ZNGq9MN35N3xD2zAlkqzq5bwidjVWlq3qwOnMdg3RVt1WHMDAnkK3qwOoQFgYAeqn4r3Rm7oPzFp49e3pHR9sZOzAR9+HXhFntHW2NM+Z0zKwu0qeZqT7nLWN0XuGYSr3yzfOZJYqmDrl9eCnp7O8Em3LbyuzHLzhxMHM/fheq7Bpnc2Xe3dHpIQ/fp7CJkPNNqtiQy3fwkGtzK9nyJBbUH/NXhX6h74J5bWc0njV9/vwzRiV/S83enPyNh5mSbTUqva1qu+tbCS+PoqtlpXzcbbVfbiUj5582d+S8hWePaD9t+iltp7R9p3nsqObmMV8dO6Z5ZOeompK/PQx1v+6qTg118/Uljms7DnX3ipxKPolPDQkJid6WmL6k7PwJ0359/7f2WHPaWSft8fd7zBxx0l9d/pu5JzYeMvlX1//l2oL5/9yPnv/HT534yZ9Zn6HY8f+GeJg/eXzLYf7WGFhW6vH/hmJH87MnBgxNBRbFwCKH+QEAAPhsiLsj497MuFf6urp/uvvImTMOef+XJ0y5+m/Hjjv1rPX7Nlx89bFL/sP6d5asOuLtgvn/otJ+/7+d1v/PLl3/tWLL/O8fSzQVW/8/vcx/dv3/RcXW/08v859d/3/Zp7D+/4JsILVJ3rH+PwAA8Fnwya3/3+Py/ukLBBRk6HF5//QFAgoy9LiMf6kXCNjq9f/ndPxF7aDL54w7dMTcHz+yau8lA2/70vMTf73P0oNG3LvylvdG3Vow/19S2vzfwv0AAACw83jol32/ffG7w+5/6pH3jyy79Lcbbzr+r9oOOOQPA5tPmXx0zfdv+reC+f+y0ub/n/z6f6HY+f9DiwVaii0MaP0/AAAAeqli6//dPPDloavnj7jxsZ+/ectLrb+YOf61f7fkB1+ZPqzp5jXrftMwY33B/H9FafP/eNpFeV7u2JsP65M17UJ6TbuN9dmfDAAAAEDvUB4aGytLzJu3MuphH7/NdZmlQD8qnevp+watWlD+0FVl1Rt/cMm0QxrPPfbMOUdetP77tU/+pHZqY/UZBfP/1aXN//N+l/FA7aT6y96eePCHK0/+4+n7zl87dcvxfwAAAGDHKXW/BAAAAAAAAAAAAAAA8Ol7qnXpQR+MOvqNmXuN+tM3jn3hB4u/+M1H/ubaP5/588Pv26t987ApBb//D5O7yhX7/X+87l/8fcGuebljqz2v/5e5P+WYWxd2LVn4aH0I++QGZp8/+3Mhc23+/XIDq6buP7gzcX66xH0vHv5aZ2JaOnDUiF3e60yMTwVa4yKJX0gH4lUV3+ufCsTlFZ9MB+L2WJEOVGUCl/RPxlGW3lYb6pJtVZbeVs/VhTAgJ5DdVnfXJW2UpQd4VSqQHeDp6UAc4KRMoDzdq1v7Jb2KgbpY9G/6Jb0CAGCnFb8FVoZZ7R1tTfErfLzdvSL/Nspbsuy8wmrLSmz++czSZFOH3D68lHSf9HfRLdcarwzVnUMYVfB1NTdLWdcot08tPWy6XYsMuafV3sqLlEvb2k1XVXxENcmIGmfM6ZhZ2ePAR/ecpbmixyyjCiY7uVnKuzZpCbWU0JcSRlTitimhy/F+eWhs7JPKNS4GG0Kenl4Rpf5eP3edv2Kvgtw8f1tz7aV9Bvd5/9/GX/TQgwMqO06d3HbR7o/988BRM3/8wwdbr/l9wfy/obT5f3XuuN7LXAxgUbyy3sEDQmgtcUQAAADw2fc/z11+x4lz1myYtbri2d/9bnb5cSdWbj7nrnPOvui5+xcfdcm/v3lb4yvKntp04hubzvrrN37ylesePuulw2ecddekdYesb6u+8bt/sfzUIQXz/6Glzf/jHqzMoeBkb8fqeP3/CwaE0HVp/YYk8LM43JMHhLBXV6ollkguqP+1WKIpCfws7jDZP5Zobcmvqm8MrEgFfl+fCaxOBdbEQGYvxU9DZlfOFfUhjOlKTc4vMTeWaEgFjouBoalAYww0pQL9Y2BCKvBm/0ygJRX4xxgI7fnb6s7+mW0FAACwNTLzrMr8uyE9z1tR0VOGsp4y1PaUobynDNU9ZSg2inj/jpihMnXySllOpsp0rTWpWgoyxIvhb3W/CjKE3+bnTBcsaDqef5A936AsP8O4H97RetDX5v1408U/evzIAy88csmVb196dL/BVz77v9vP7dd/U23B/L+ptPl/bf5t0vqaOP/fcv2/JPBI7N6V8dTxoTHw8qH5gcyOgTVxsrs4W1VLpkRm0r44lpgQA0NTgbkxMCEVaJ2cCSwbnB/IzLSzjV+Qbbw9UyInAAAAAJ+4uIMg7qaJ8/+V48I7exz5fvPuVw6cO+7xR847YnrNrtU1/zx+7dLxl1Y/tF/fgvn/hNLm/7G9frmNXRh782r/EO4u29KbbGBEXRKI+zHq4s/j96gL4XM5OziyJdpqkxJVqYbDwzXJL9Sr0lXdW5OsMRDvT3niwVWXdSauqglh35y9L9k2XqhO2qhJB4ZVJYHadGBORRKIe36ygXvKkwBss+xewfiCypzqktXQfbkir7/PyjVB08Mr2AfaTb7ufnO1o1SnH8jsU83auqetoDp2iIK3x2rvtt74bmvwbsv9IpX5hrJ5S6g6lM9smzV9Qcf8+EjuL1kL7KDnOfdXqqWkt8PrcNHH723PqtMdaEp9fDR1X67712FZrO6B2kn1l7098eCVJ//x9H3nr51acjeKiD8UPvjWuQc8l7N5d7TqkHnN9brPkxafJ73x38BQT1sIYfkFs5584l/ef75iffN/OXDs8tvefGz5Tw56YNaIL2y45Msb33r3qIL5f0tp8/+K1G2XD+LGnDcghOE5G/fRuPknDkg+B3MCyafkwMJAcsh9fX3RT04AAADY3rK7O7L7C9ozt8kJ4el5cmH+lq3MH/dXTOg2f6n9HjjmH7536FWvf+Pr63e//NGlT637T2++csS0Qx/Y9PSKla83H/v5pwvm/60fPf/vm+qm4/+O/7ODOP7frZ19V3Tf9AOLtmlXdEF17BCO/3drZ3+3Of7fLcf/Hf/vjuP/PXD8v1s7+9NW8C1pri9dIYTWATfc/ova6cP7XXHOt2as/fnT7zSNe6Hu3KPv/B+HLw7XnLfqzwXz/7mlzf+t/9f9on3Z9f9ai63/N7fY+n+LrP8HAADsUEUWmkvP8wpW7yvIkF69ryBDjwsE9rjEoPX/tnr9v9qTzj7plfq39rpm4u3/+c7pFz5/0onP7tvn+RNuP+GmkVcPf+nLGwrm/4tKm//Hl0O/3NZ7y/p/QycXqWpJDMy1MCAAAAA7o2I7CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPh0rXhw8Rc3L97noJue/fxNh//rsjWz9v7VAZtHjzm5cfjigWVX/t2/vDVowcI32iadeW3L9OXXbFi5NIT2rnJlSfGyhwaVl4/+wzF33XbFw03TBk85tzpTb2Xm9ot5uWOrH9aHsCznkbqY2FjfeWdLYMoxty6s6Ew8Wh/CPrmB2efP/lxn4sb6EPbLDayauv/gzsT56RL3vXj4a52JaenAUSN2ea8zMT4TKEt397r+SXfL0t29rH8IA3IC2e5+u39+Vdk2/mMmUJ5u4+a6pI0YqItFf1SXtBEDHbFEe98QRlaE0Cdd1a+rk6r6pKv6++qkqj7pqv5rdQjjQwgV6aperEqqqkiPfG1VUlUM7Lb3TzcN60wsqwphZG7gmW9eP6YzcXoqkG3861UhDOl8yaQbv6Myabwy3fhVlSHsGUKoSpf414qkRFW6xCsVIQzMCWQbP7UihIWBz4T44TMz98F5C8+ePb2jo+2MHZioyrRVE2a1d7Q1zpjTMbM61adiynLSm8/7+GN/ftM5Mzpvpw65fXgp6YpMucquLjdX5t0dvbP3PvarNreSLc9HQf0xf1XoF/oumNd2RuNZ0+fPP2NU8rfU7M3J3z6ZaLKtRvWWbbVfbiUj5582d+S8hWePaD9t+iltp7R9p3nsqObmMV8dO6Z5ZOeompK/22Oo13/yQ929IqeST+IDQEJCorclyvM+3Zp29g/ygi/6WzpaGaq7PqALphW5Wcq6Rrk9Bn3Yxxzxx/me0uOIRhVMHAqyNPecZXTBZGJLlpokS9f3uoLJYW5N5V2bNN4vD42NfYpth4b8u7mb961t2LzrMpuu1DQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPD/2IEDAQAAAAAg/9dGqKqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqsIOHAgAAAAAAPm/NkJVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVUVduBYAAAAAECYv3UYPRsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAlwIAAP//WKHPZA==")
chdir(&(0x7f0000000240)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000640)='./file1\x00', 0x42, 0x1ff)
unlink(&(0x7f0000000000)='./file1\x00')

1m44.437978972s ago: executing program 3 (id=117):
r0 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000100)={<r1=>r0})
bind$xdp(r1, &(0x7f0000000080)={0x2d, 0x0, 0x0, 0xc}, 0x10)
bind$xdp(r1, &(0x7f0000000080)={0x2d, 0x0, 0x0, 0xc}, 0x10)

1m43.734865952s ago: executing program 32 (id=117):
r0 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000100)={<r1=>r0})
bind$xdp(r1, &(0x7f0000000080)={0x2d, 0x0, 0x0, 0xc}, 0x10)
bind$xdp(r1, &(0x7f0000000080)={0x2d, 0x0, 0x0, 0xc}, 0x10)

1m17.679177579s ago: executing program 4 (id=286):
r0 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000800)=@newqdisc={0x154, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}, {0x0, 0x1}}, [@qdisc_kind_options=@q_choke={{0xa}, {0x124, 0x2, [@TCA_CHOKE_MAX_P={0x8, 0x3, 0x4}, @TCA_CHOKE_PARMS={0x14, 0x1, {0x3, 0xf65e, 0x1, 0x1d, 0xa, 0x13, 0x2}}, @TCA_CHOKE_STAB={0x104, 0x2, "fa9982df821f8ec2d13d54819f58ca2aa87dfe6a971d362c576449f86ee17eff0461193f40b68beb6df33a70067abaed57dd3a221882281e0a5822ec63638bf2e4012f3d9fc39941736271bd29305433974d5a07477b6abf86daf751cf1e451c3c96a57ee27e66ccb29aeabcc2de353ee01adde6821be1b092e71ef69b2f36433bbd2b8f7f4925f28c2cf6e01c84ab5d8cbfe125206821a9068728583600b1d85c132bfb2215299210e90ea668fca455292bd1659ccef687f1cca329269e8b47ec7dd247f78e87c6eb60495774bd8c21665e825206827ef41d0e707a0931446c763c898ff70ee31a7550d7f840063573f1dd056b15b6aa1f2d474eb544fc0b87"}]}}]}, 0x154}}, 0x0)

1m17.405044473s ago: executing program 4 (id=290):
syz_mount_image$squashfs(&(0x7f0000000100), &(0x7f0000000000)='./file0\x00', 0x808, &(0x7f0000000580)=ANY=[], 0xfd, 0x1a7, &(0x7f0000000d40)="$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")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x800053, 0x0, 0xfc, 0x0, &(0x7f00000000c0))

1m17.01561009s ago: executing program 4 (id=293):
syz_emit_ethernet(0x2a, &(0x7f0000000100)=ANY=[@ANYBLOB="efffffffffff9f875bf6a48508060001080006"], 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f0000000100)="f257a8ea7bc273dfaeab96850806", 0x2a, 0x0, &(0x7f0000000200)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @link_local}, 0x14)

1m16.754972456s ago: executing program 4 (id=296):
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
r0 = getegid()
syz_mount_image$hfsplus(&(0x7f0000000200), &(0x7f0000000240)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x80000c, &(0x7f00000003c0)=ANY=[@ANYBLOB='nobarrier,decompose,gid=', @ANYRESHEX=0x0, @ANYBLOB=',barrier,gid=', @ANYRESHEX=0x0, @ANYBLOB=',gid=', @ANYRESHEX=r0, @ANYBLOB=',uid=', @ANYRESHEX=0x0, @ANYBLOB="2c6e6c733d64656661756c742c001bb4a4447bd69aa8532125707aa318f1e60d28086a88ef2208cc30839fc1be7ad88539fad2c027aca664454d7bf988a9fa9f5f0cab42326f5c70febc7902ce02b8ec0adb23bef1c917d0bd"], 0x1, 0x6e3, &(0x7f00000009c0)="$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")
mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x800, &(0x7f0000000240)={[{}]})

1m16.339470162s ago: executing program 4 (id=300):
sendmmsg(0xffffffffffffffff, &(0x7f0000000b80)=[{{0x0, 0x0, &(0x7f0000000100)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000a40)="118db76e8efb27d530b26a8302bad647e35540226c4052b6d573165d39ad8ead67632e8fe108cf55473bc22914286359c3bb3decf99ed04d34d1a73ae48dae0e69ee69fe", 0x44}], 0x4}}], 0x1, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000010001fff001201000006000043be4354", @ANYRES32=0x0, @ANYBLOB="ff7f000000000000140012800a00010076786c616e00000004000280080004"], 0x3c}, 0x1, 0x8000a0ffffffff}, 0x0)
r0 = socket(0x10, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)

1m15.534565177s ago: executing program 4 (id=303):
r0 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x3, @remote}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240), 0x4000095, 0x0)
setsockopt$inet_mreq(r0, 0x0, 0x23, 0x0, 0x0)

1m14.703190881s ago: executing program 33 (id=303):
r0 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x3, @remote}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240), 0x4000095, 0x0)
setsockopt$inet_mreq(r0, 0x0, 0x23, 0x0, 0x0)

8.080703754s ago: executing program 1 (id=654):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x161283, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f00000000c0)={0x1, 0x0, [{0x287, 0x0, 0x2}]})

7.477423462s ago: executing program 1 (id=660):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), r1)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000000077400062c00070073797374656d5f753a6f626a6563745f723a756465765f68656c7065725f657865635f743a7330000800020000000000080004000000000014000600626f6e64300000000000000000000000080003"], 0x78}, 0x1, 0xffffffff00000003}, 0x0)

6.900970729s ago: executing program 1 (id=664):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_mount_image$bcachefs(&(0x7f00000000c0), &(0x7f0000005a40)='./file1\x00', 0x210082, &(0x7f0000000080)=ANY=[@ANYRES32=r0, @ANYRES8, @ANYBLOB="6712cc8b008bd896c260d9961fe7460c23e5b1d869c2c2ccf6ad251136681c1117ff5a0000000000000000"], 0x1, 0x5936, &(0x7f0000000100)="$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")
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000005b00)='./file1\x00', &(0x7f00000000c0)='vxfs\x00', 0x18642, 0x0)

4.942659145s ago: executing program 1 (id=680):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="9f01000083667d1040206402d14e0102030109021b000100000000090400000190f19c000905f3ed"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000380)={0x24, &(0x7f0000000140)={0x20, 0x13}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

4.653013768s ago: executing program 2 (id=681):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022, 0x0, 0x800000000038f}]})

4.096833746s ago: executing program 2 (id=685):
unshare(0x20000400)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r0 = fsopen(&(0x7f0000000040)='tmpfs\x00', 0x1)
flistxattr(r0, 0x0, 0xffde)

3.868759064s ago: executing program 2 (id=688):
syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="040e0500580cea"], 0x8)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f0000000240))
setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, 0x0, 0x0)

3.590022872s ago: executing program 2 (id=690):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)={0x44, r0, 0x801, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_KEY={0x28, 0x50, 0x0, 0x1, [@NL80211_KEY_DATA_WEP104={0x11, 0x1, "4abee33908f8eef16f162471f4"}, @NL80211_KEY_IDX={0x5, 0x2, 0x4}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac0b}]}]}, 0x44}}, 0x0)

3.151982076s ago: executing program 2 (id=691):
r0 = syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f00000015c0)='./file0\x00', 0x0, &(0x7f00000001c0)={[{@clear_cache}, {@user_subvol_rm}, {@compress_force_algo={'compress-force', 0x3d, 'zlib'}}, {@noautodefrag}, {@autodefrag}, {@autodefrag}, {@max_inline={'max_inline', 0x3d, [0x70, 0x32, 0x37, 0x0, 0x32, 0x36, 0x32, 0x36, 0x2d, 0x37]}}, {@nodatacow}], [{@dont_hash}, {@subj_type={'subj_type', 0x3d, 'autodefrag'}}, {@hash}, {@context={'context', 0x3d, 'system_u'}}]}, 0x0, 0x559e, &(0x7f00000103c0)="$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")
ioctl$BTRFS_IOC_SUBVOL_CREATE(r0, 0x5000940e, &(0x7f0000001600)={{r0}, "88c18c9c2cf0dacdfd86201fda0346c6b9b1f60bb683369a02fb7efdd71bb2070ca9e29b5fe5d1f5874703da7400e6d231a6b97511e6ba3d4aa151c5d66e065dc7b86ae465604191fec527002f8bc5847d27039658a921c9a1f87f80bc17962d1eb087b6fad970c11e942ac2da20197f856bd434fea49f577512bc83f0e38b948259d32e7011c06ab945af8aa37ac31f1138fa651ca2f9291fe122f687f475512f1ad9e6e673f56b4de50cdf35c96e0412ad65e91cdcaa1b99714838d08cebfb741cb4d12eba48d55287f88b8aa84da4f7a506f3ca11f4936161a3771341fe19de50d73bc0b48896f311bd6120e501f8e561a9cce1ee094b08c805fe39ff17866735a19d0df2e7408aaf787e223a6a29f90532f37b3f902fa5bc98f53961f7653ccb15c4f2aa3042aa307f0bd5b78ff16f76ba2e24b84c8234d458226ba0b12a709b39af708766c75a5269fc7f9e2e1584057fa9d83b6d43afe69fc88077bb4b6ae92a118d1da9109e6175b980592d9e88db31f53dcd372ea2e0747ff9006a1bb7e6ae75d3babc1aa6a8f914f0868fe94ca2039d2e634418229a3bbf18e5034ad795473e4f22acece6c8ec26dd34e281dc05e00067330054f3180bf385fe29737646ab8224ed1683285e327e5db0d24f52979717a7a9802432bed2c922e4066bac2b0c0417d0809d8a4fd7487ec421fa5a1a06e4b4505fd29284584feb8fc8d421473c714ef91d85e72a7f33699fbd2f6caa0dcc78b331f3c4379919bfcc9f311b819f1ba4137e7e45d7a1116d516a29953890216aa69378070a75aaf0c9bd8d2c9359cba01d58e05e7da56e0873aaeb06119e7f3bc8698a5cb2acdbe8630cb7d610a1ab9ab3086bcacf0579ccc63e74fd61f4e094c4b7ab0b1c5f4dd5336039486a7790da0ec2bf75a6bbe97fe0d39bc1705bbf5b8df707bbf86ecf82f7e356a1b68668fd70f543de499a6b4ade698072db2b9fe770eb4de46648a93e7362003164bbdbd9d7f41fe91edbe5149e7eafde4b7aa927c3458c95e5e22362e84454a925c6072868143a6ae2497543e60417a4a79128a611fa9f7fad465e3cf41550143400ec58a9bcadb89f638d195993da828731584ef815b7f630624fc0549b314c207c3b87c088837abcc224c20d7197d721746a2c98a7e0e0e94eb5536c6b497a6d7350d5f23c868ac56b9690f2c1a2efd6603bb9a96960a8637bdf6e1ffa1121a8afac712208f33ad430ce16538d06bc09031deb2ae2ae2763c53fdbc32c7b401225e78bc50762dc8b2834046424d0af02989c492790f794cdc82689310a4436fb20cc47c254525924f4ed6db00c675c21605fa46bb3a4297d121be3052ad36a9cecb9bc918189af5a20c9036b12eadc6259f8a8110597ff5e9dd4e57eb935958cc04d64e3ddec348ef9d2a9f1d291f7acc3f56a6d8136d5a6a1625a4730dbacebe6e14a53fde1676cd323931e75f255f534672059feb0c6c392e88b42cd0a202d095546647c3d1629aec0ff92a4edc9e33724e408e4bb424c85e509c8781ec2e3268c3aad36312fb731cd797466c563815227a134c4ce0be315562558c6e3e92c47af35d72e518b2796e57f2c4f66bc2e75275fa315cd2bd3eef09ab585a8875b25a7316aa92885c974329045edc2b3d0348f8d1e3e0e6d513518fdc1f2506408cd39b9a207ee74393cd09a341c1055d57b5b94b04db10506ffdd517967e377fecdfa13add67e742ff7dee1227a27355f7d817d733d8da60ea7f5fc64a45a5454f334076ad07b3dbb481db4b9197aa6f14c1cda5cea99e4a25e7bca8c4874477e15c06560b15f806f11ec40c3c7a2b6d88ace5236a0e247b0151297f51fa65611d00d3f1478e8cea1a9a7870af1ac559bd731198bf01222f84c10a944e74d138feb608df9424f9d8cc2c9cb0de01cc5540ccd9d354cb5df75166dc18fc57bfa636eaad15ee27d6e6e702eb0b933486a1b8496a74a8e2581ee7756391a5d9c873969fde7e8278f8aedf8b0fd0b4c5dc9fcc55240d84a8911d37ec79efc8e672f27210981caa5c8d3d8e7c50abf63e226c44487e22302b052ef19aaef95463eb90581ed7e9da4878535d41530de7f23ed7b1cb824f65bfee1396ed2a20d9dbb3a5a46084684d61918ce43ac592134535cedf03c5c9862644905e2d14fbefd5076c6bd93df2fae44bed890cc2cd7f3a495a7deb92b1805dadd928af5f26a97323fa391465fd3c0503c677a197da9dffb09b009781e44ab78466c758f254040873816e83b14f77725a11ccbf5027bd5defad68456cd0e2f18f53fee1c10fce98c08ab3557209b16b422b299a98b36821a702ecb8e03d00ea8400057fc717dc454767470cbfb2488a54f30ae76e9dd08267fbf5e4e05cca36adc0fd3017876290f41f08900ff760a7a4143a1f83c04c2f1e9814ec33e4699b0abe92e0d1ed1a34d0e6e73795e11748ed8e8d499d63ffb026c2f2ce190936acf5b73266fcbb686077f12224d23ce1ee0c7556cff1790cf518c6ee9d3268493436b4ee6416d4c72995c2a27aadf6387d69e85d57c066ccf5325f12251442ce0b34bbeb5e24594ba6ba362a2f1670197790ad5716c176d91cc91bc240fba9d61665ee45d777d2204344ffde411e3efc0e9338e8a2a483fbbe6788533c297ff905cc8ff9895824aef1d5c0f96e9b67e6eaf88072b2fe0d89fa065927a878ec17d5e6538c5309fabddd82b413c0aa37bb8dd49e9a8df07632919ef4da58957eb36aa9d9c4157bbd02b1bb66b1fec47481b41f69ed99f0e5993ef634dbd27354c2ce9f057b06288017fbc55572c202120c3071f1c17dec7511a0d6993051bc4ed37f67c4f3f0eb334db833cd52c14c9b723f4bd5324237b18145004446463256d5730b4461d0afba5f8fe78ad786b9ecc4c671c5214f101d12e995da1b20acde214d9c5b730c5114caa8958a7dea0eee9b366e920d3e6c0c5b8a7e6bf1bc7e7c20078b378a71479b428cc27d7c46a9491b77a34a191b798b2756122403a41a9455309ee1560d9e8468f31ad351912f245444e3558cbc46c75ef84c53ac9c202bc594c4212fc1e9a780ade43f7d9da5b4e11bac5df5142da7ea6e68935b95a4f4ff4ff4abe78cd2047ea6230d788ba80ce11d8c7689144d291af25f13ac1edfa76601180e5bbea9cf7e69b9b99a5ddc24b014e9c89013c980a1bf0ea20e52ff130c804087718895c8ba59081d95e00404c9286272bc629ecbb5b5b429a2332e16c21000491549c9aa52755408e4564d92fe89874553f590fbe97e180c771b7b2377cf8504a6032c3a41f3c07d11b111c4270ecc29a5006050d4e16b885886e3458b90fda0f8f9f9d47cd37b9090c3e9505a3c8cd1f77bfa44906b43a11abebef28d422c91be3fe030a4bd28c49ea19a4301bf18ec4926645b899b523d0865d3ed2f98f0ceb3b115827e192e6672b30c499356321b37f138b2c459c9b68069377bdb46f9e2356cf64dfb3f6e36e479d4a0f38278dd4e9c10ddc2e63e8649a20b9102bd9d75ffd148ec2ae0b358724786c6926e818ac149bc23b974b2d1521339e40a9668661baa0e775e34731262b89aba90e12eeb0561fec86a594dd2762b5ec77f73023688381f918d611c662866b7bfdae179edd3063f52d948ba3feb67ab00518d8f024b8c75a8f7aec38ace893d7753f9c1468292884ddb188cf0deddffe5339ed3c02a9043be0918bebe59a5225584d7662fe330bb7b198d17c1e6c31acec36580eeb2a73659c477e62b27c49b73c8ff175dd0de4d031a3a9733e53b8fbb90ae1a9be8aa3b2ef41f25d01707547f238e2b0e0d1fbd710cec751012e13f3c411e9dcc9c7f8c8b3f86c735fd39b252e37e81130daef81da40d5361daff0e29d18263cedaed2079c0ddb9801768c65fe5f6032a3236a8a7e467346fe4a2634c6b568fb14caaf14cd1adb4207ef7d81affa6f46d8a4951f8e5c6c7deb817ad89fa858d1677e7667d7e9d66c66e1e284fd4fbe98b4ac5612a93dc84c884f81e2dc0e2efd5ac7cc5adbc8302548db78c6b254b461f16151d1767f650c1edcd9c3a07a47132df186b3296e33612e0d2d2c91da6019022b95c0973cd3250f177cbf46585108b79acdb0df07d960c18245619485aaae4e443932fc7ec846d3692e813434e03bd510d089ef6eab7b8e4f6ffa6ba6cc7cfac58fb10105fa78e66fa5ce000212f140806f43a44888d05d40c418978cdf0954896c41ce68327d1f4bc2c3fa500004f52edefacdadcc1e20375421fe8ea7eacf54f38aa15231ab1f5fb55e5f8e6b4b6db57c916b102ddb722f0ec06a29d71c7a2856db5969b543499a673a361f99939da70874d28540dac488cb8910c7362dba288b52953ad13a06869bf3afd6271e96c93b18c1b473507000bbea08c427db12f68a08f227f645477c7ab97018da161c9249c7b5beb08c37a78883d1b268f86a4dde0c58be4c5ac4e3faa423c1fdc99c8425ad97a90235ac7a93796d5ef72f391b90fa456baad7163b334b796c75cf66169fc8ace8b6742e6641a4c0d0494865fe95ae3a783eb9686e4ec23459e2ce25fe016f428cf1df133895fd1b776510254b3820db76c4a73c8fecb04fef9bcb33c7ee08894dcae5f96803fe53ebc5de11d9fe109e77200b71d9320d2be03865747207e2cc94b0321c95a6a897413e4c1d688d8d6032622f0a8523d2d25306a0e373f00ad3c5dd1416e5c095711e31c96d8d29e3b5a7bb5e89b56b69a2360424db8c30286071d3d2b193ec99530f08cb420053b95e35fb729a973481a071c03ca6c10a5722cd6afd35c4fe2ab3e05fb2bab2b1d823213c9b0eb280282b2a84d076e0b4b5f52f2bb23ca767f7f4e25ab276f297ceeb5ff58b852d5d6f889c5c51f706766cc37690f3b38f02e59f2ece6731b7e7164812f5d551082ae21f07e47739ebb1be1c6eda6cc6969adf9d9472e4fabbbf98ac16b201f78ff7db566d7f1cabf2fc1728b4d7852982f08036f99de9106cfaeb8752939e4f28e9373333269befe262ee7e4af2af5ae1d49eb3f75c322b032408e8c60c96a1c163a6abaa337ecc8cac32d5e802c06fce9eba5fb25d5a2950b5be720642fc60d9a8bae6722226f84c87f79082c6dc95ded669f84921d378ce16d17b911cf33167f24b27be5b7580be91beca8c116ea1a8579fab778d3b64fc9c63c1d711b3989cfe34494c73fd5ac327835d64fc0024da3c90ef62573ef9013349f0c6693239d79b17cd1b01f07bb20a58835eaf668b40186533af776e48810e6894b9bcd76f2d4872fe7a45eaf97b7e9dd4f99e2d7dd98bfc9588ff4ec417f80a7d69c99e4fc03abea19b5e0e691f695641ae4b5e7b8a09653a4e9cb9373ced4283d28cedc15ccd6aecabc903ffaf35a6d33dc7c20591cdaa087d7b8c9984909d66bc035a1ea8a408f795c682312c736695daa620ce36bf7e1e10bb58c904ad87a8998f3f4f5b7feda9fa7d902218593f0c3dec3c6463d8fca5ab513400f65c256eb18d38b5c7eb014a30ae96467fb1e2662bc43988d810898c650b78de0e4cf1f02cbb1bf3c57b29f3b11871ae550670299eec2799583170537b15e18a83a6dc2b19c286b68f43dec7f38632ca292a94bac3991bc52570ee27d6e643f0ce6c698e7ed04afdc0c2b9d6f4ec1d3052d93136feb7f19c6e57fb535e2dff9caa53a1be1095acdffd01b7261958762f78cdee39a91c0545b7b82fa1fb4dd50100ed54b63739d08cd8f99101969f93bfada9b0b814c53f7cc4426d99ba12fabae7c57db8c91318ca2f74ecb2edf4"})
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r0, 0x50009417, &(0x7f00000005c0)={{r0}, 0x0, 0x2, @unused=[0x8e, 0x200, 0x4, 0x5], @subvolid=0x55})
ioctl$BTRFS_IOC_QUOTA_CTL(r0, 0xc0109428, &(0x7f0000000580)={0x1})

2.855469644s ago: executing program 0 (id=695):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x808003, &(0x7f0000000000), 0x3, 0x4ed, &(0x7f00000005c0)="$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")
r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000d80)='.\x00', 0x0, 0x2200020, 0x0)

2.723337245s ago: executing program 6 (id=697):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)

2.525846966s ago: executing program 6 (id=698):
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmmsg$inet(r0, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0xf5)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, r0, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)

2.4832214s ago: executing program 1 (id=699):
syz_mount_image$jfs(&(0x7f0000000100), &(0x7f0000000040)='./file1\x00', 0x1010006, &(0x7f0000000140)={[{@quota}, {@discard_size={'discard', 0x3d, 0xaff9}}, {@iocharset={'iocharset', 0x3d, 'none'}}, {@iocharset={'iocharset', 0x3d, 'macgreek'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-1'}}, {}, {@nodiscard}, {@noquota}, {@iocharset={'iocharset', 0x3d, 'cp874'}}]}, 0x24, 0x61e2, &(0x7f000000d780)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x1db)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
writev(r0, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x64000}], 0x1)

2.359970673s ago: executing program 5 (id=700):
syz_mount_image$hfs(&(0x7f0000000140), &(0x7f0000000040)='./file1\x00', 0x2810880, &(0x7f0000000000)=ANY=[], 0x8b, 0x2a7, &(0x7f0000000180)="$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")
socketpair$unix(0x1, 0x0, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0)

2.098096059s ago: executing program 6 (id=701):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x80000c, &(0x7f00000000c0)=ANY=[@ANYBLOB="666f7263652c6e6c733d6575632d6a702c626172726965722c747970653d883b7f382c756d61736b3d30303030303030303030303030303030303030303030362c666f7263652c626172726965722c747970653d49d388242c6769643d", @ANYRESHEX=0x0, @ANYBLOB="2c005dc15e246d930a23b5f4093707c10226afb28f3e2838bb917886a27afece1cbcf9ae2d32c2c3f5bf4bb6fcd73d5c59e463cd173c188e1eefaba6fceaeb5840cbeb145a56ad674e7f2f8c49eaf5b1c65eb6d762300b8c5c2ff69671e6b209000000", @ANYRES64=0x0, @ANYBLOB="49a8a1a7ccdfc7eb0a5e6d760f583ec85ed57dd1cb6163e4bbbabf11b2b4e644d954129ea6913927eeddef778da5dd9b83ddfb0d2ce6120fe01dc022cef79b54c9adbec51fd531c0f4f39300c1d9151c288e2a83750632863010599543349a282df9d20c7f8843d2c789aa507951e60572d03e745e367c5cc76b3a8f89b7427458c89f220488ddf560f7da5f2c8e5541bc4bf055c87531357ca2267e9cbe1d3e92567c", @ANYRESOCT, @ANYRESDEC=0x0], 0x2, 0x6e2, &(0x7f0000000c80)="$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")
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
mount$bind(0x0, &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101011, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)

1.928447953s ago: executing program 0 (id=702):
socket$vsock_stream(0x28, 0x1, 0x0)
r0 = syz_io_uring_setup(0x239, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000180)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x1206}})
io_uring_enter(r0, 0x2def, 0x0, 0x0, 0x0, 0x0)

1.881371055s ago: executing program 5 (id=703):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x9)
connect$inet(r0, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
shutdown(r0, 0x1)

1.672397159s ago: executing program 6 (id=704):
io_setup(0x9, &(0x7f0000000b80)=<r0=>0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0xff, 0x0, 0x7fc00100}]})
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_submit(r0, 0x1, &(0x7f00000002c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}])

1.467583725s ago: executing program 0 (id=705):
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='mounts\x00')
syz_mount_image$vfat(&(0x7f00000008c0), &(0x7f0000000000)='./file2\x00', 0x400, &(0x7f0000001d80)=ANY=[], 0xfd, 0x296, &(0x7f0000000540)="$eJzs3M1qE1EUwPFj0o80tU0WIiiIB92oi6GNL2CQFsSAUhtRF8LUTjRkTMrMWImI7c6tz1FcuhPUF+jGnQt30k0XCm66UCOdjzatQ6u2yYTm/4Myp3Pvydz5CmcGctfvvHpcq7hGxfQklVFJiSzLhkh+MwodC5cpPx6SdstycfT7pzO37t67XiyVpmZUp4uzlwuqOn723dPnr8998EZvvxl/Oyyr+fvr3wpfVk+unlr/NRt9esNTU+caDc+csy2dr7o1Q/WmbZmupdW6azk72it2Y2GhqWZ9fiy74Fiuq2a9qTWrqV5DPaep5kOzWlfDMHQsK/0m/c8Z5ZWZGbPYkcEgCSNxKx2naKZjG8sr3RgUAADoLUnV/4+qrlZdre9X/6eE+r9zqP+PkuNrEvsUuFn/Z8P7d8uln10cGQAAAAAAAAAAAAAAAAAAAAAAOIiNVivXarVy0TL6GxaRjIhE/yc9TnTGQc7/cPeHi0PW9sO9jIj9crG8WA6WQXuxIlWxxZKJQZEf/vUQCuLpa6WpCfXl5b29FOYvLZbT/vXh50fy8fmTQb7uzB+UbPv2C5KTE/I5Lr8Qmz8kF8635RuSk48PpCG2zPvX9Xb+i0nVqzdKu/JH/H4AAAAAABwFhm754/ndbzc0mjZkV3uwcvv9gOT2eT+w6/l6QE4PJLffAAAAAAD0E7f5rGbatuUQ7AiuiMiefZI+dCM9cqA6GKQ2z0HXt/41ujV64yAcarD2JNi1v+mc4JcSAAAAgI7YLvqTHgkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP1rj2nAMmEXf03U/3/mHmvbXLr7ewgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD0jt8BAAD//ysQG/U=")
mount$9p_fd(0x0, &(0x7f0000000180)='./file2\x00', &(0x7f00000000c0), 0x1, &(0x7f0000002640)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}})
mount(0x0, &(0x7f0000000000)='.\x00', 0x0, 0x2012024, 0x0)

1.385932541s ago: executing program 5 (id=706):
setresgid(0xee00, 0xee01, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000042c0)='mounts\x00')
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x2208050, &(0x7f0000000140)=ANY=[], 0x1, 0x1520, &(0x7f0000011680)="$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")
pread64(r0, &(0x7f0000002240)=""/237, 0xed, 0x4eb)

1.034951847s ago: executing program 0 (id=707):
ptrace(0x10, 0x1)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x6, 0x0, 0x0, 0x0, 0x8000000009917, 0x400000000000fffd}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0xffffffffffffffff}, 0x0)
sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x1}, 0x0)

812.178194ms ago: executing program 5 (id=708):
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="cf000003"], 0x1c}}, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f0000000380)={0x0, 0x0, "5a77bd318786aeb879ca62cdab2a0000000086d85b25a5665a3247e500f61681905db88235f8a5447dd2a2ed6e91626f068881e50f6853772b21a100efb76cba37ff3111d6847e8b9398a646717af75fc008daefba68e6222103472bc55704cdb72b4b996ed831f3b802549db3a8ffff7d34171113d806726615380fe65a6a0a72e1ac2b60bd6276fd8bb6363d10f70da60fd53ded22c87eb2be010e4a62fb73c33424b437bb192c9d06ea6ed04983fe5c5ca033dfce0a82575ef14eee686be0fc58e384f93a13f4e8bbf599394baea3a9ca1864f0a35d6cc38fca32ad6b39905a9727d2001457df7be7e1aefe363590d1f600"})
ioctl$USBDEVFS_CLEAR_HALT(r0, 0xc0105502, &(0x7f0000000300)={0x1, 0x1})

635.251264ms ago: executing program 0 (id=709):
r0 = socket$inet6(0xa, 0x1000080002, 0x100000000000088)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e23}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000400)={0xa, 0x4e23, 0xffff, @ipv4={'\x00', '\xff\xff', @loopback}, 0x6}, 0x1c)
recvfrom(r0, 0x0, 0x12, 0x0, 0x0, 0x0)

548.221909ms ago: executing program 5 (id=710):
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000000480)={0x0, 0x0, 0x0, {0x0, 0x1}, {0x74, 0x2}, @const={0x0, {0x8}}})
r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x822b01)
ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f0000000000)={0x1, 0x0, 0x0})
write$char_usb(r0, &(0x7f0000000040)="e2", 0x1068)

448.320164ms ago: executing program 2 (id=711):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000000)={0x3, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000001040)={0x3, {{0x2, 0x0, @multicast1}}}, 0x88)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000001140)={0x3, {{0x2, 0x4e23, @multicast2}}}, 0x90)

341.309954ms ago: executing program 6 (id=712):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x0, @any, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000000)=0x4, 0x4)
listen(r0, 0x5)

286.537476ms ago: executing program 1 (id=713):
r0 = timerfd_create(0x8, 0x0)
timerfd_settime(r0, 0x3, &(0x7f00000000c0)={{0x0, 0x989680}, {0x77359400}}, 0x0)
clock_settime(0x0, &(0x7f0000000100)={0x77359400})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
timerfd_settime(r0, 0x3, &(0x7f0000000300)={{}, {0x77359400}}, 0x0)

259.22791ms ago: executing program 0 (id=714):
r0 = fsopen(&(0x7f0000000040)='bpf\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x0)
fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, &(0x7f00000002c0)='mand\x00', 0x0, 0x0)

43.934426ms ago: executing program 5 (id=715):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r1)
sendmsg$NLBL_MGMT_C_VERSION(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)={0x14, r2, 0x1, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x4018)

0s ago: executing program 6 (id=716):
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
r1 = syz_io_uring_setup(0x186, &(0x7f0000000080)={0x0, 0x0, 0x13100, 0x2, 0x2de}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0xa0}})
io_uring_enter(r1, 0x2def, 0xb80c, 0xe, 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000000)=0x4000)

kernel console output (not intermixed with test programs):

back_single_inode+0x145/0xff0
[  135.279823][   T12]  ? do_raw_spin_unlock+0x122/0x240
[  135.279854][   T12]  writeback_sb_inodes+0x6b5/0x1000
[  135.279887][   T12]  ? lockdep_hardirqs_on+0x9c/0x150
[  135.279917][   T12]  ? rcu_is_watching+0x15/0xb0
[  135.279956][   T12]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  135.280036][   T12]  ? rcu_is_watching+0x15/0xb0
[  135.280067][   T12]  wb_writeback+0x43b/0xaf0
[  135.280109][   T12]  ? queue_io+0x3b1/0x590
[  135.280146][   T12]  ? __pfx_wb_writeback+0x10/0x10
[  135.280188][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[  135.280216][   T12]  wb_workfn+0x409/0xef0
[  135.280269][   T12]  ? __pfx_wb_workfn+0x10/0x10
[  135.280303][   T12]  ? __lock_acquire+0xab9/0xd20
[  135.280347][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[  135.280388][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[  135.280408][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[  135.280439][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[  135.280475][   T12]  process_scheduled_works+0xade/0x17b0
[  135.280542][   T12]  ? __pfx_process_scheduled_works+0x10/0x10
[  135.280594][   T12]  worker_thread+0x8a0/0xda0
[  135.280645][   T12]  kthread+0x711/0x8a0
[  135.280675][   T12]  ? __pfx_worker_thread+0x10/0x10
[  135.280694][   T12]  ? __pfx_kthread+0x10/0x10
[  135.280721][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[  135.280742][   T12]  ? lockdep_hardirqs_on+0x9c/0x150
[  135.280764][   T12]  ? __pfx_kthread+0x10/0x10
[  135.280790][   T12]  ret_from_fork+0x3fc/0x770
[  135.280824][   T12]  ? __pfx_ret_from_fork+0x10/0x10
[  135.280862][   T12]  ? __switch_to_asm+0x39/0x70
[  135.280884][   T12]  ? __switch_to_asm+0x33/0x70
[  135.280905][   T12]  ? __pfx_kthread+0x10/0x10
[  135.280931][   T12]  ret_from_fork_asm+0x1a/0x30
[  135.280973][   T12]  </TASK>
[  135.280982][   T12] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  136.130046][ T6660] loop0: detected capacity change from 0 to 40427
[  136.171558][ T6660] F2FS-fs (loop0): invalid crc value
[  136.368009][ T6660] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[  136.846307][ T5836] syz-executor: attempt to access beyond end of device
[  136.846307][ T5836] loop0: rw=2051, sector=36912, nr_sectors = 8152 limit=40427
[  136.881101][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  136.899354][ T5836] syz-executor: attempt to access beyond end of device
[  136.899354][ T5836] loop0: rw=2051, sector=45096, nr_sectors = 85976 limit=40427
[  136.949664][ T5836] F2FS-fs (loop0): Issue discard(4614, 4614, 1019) failed, ret: -5
[  136.987017][ T5836] F2FS-fs (loop0): Issue discard(5637, 5637, 10747) failed, ret: -5
[  137.298851][ T6712] netlink: 'syz.4.228': attribute type 10 has an invalid length.
[  137.771910][ T6725] loop7: detected capacity change from 0 to 7
[  137.831055][ T6725] Dev loop7: unable to read RDB block 7
[  137.831121][ T6725]  loop7: unable to read partition table
[  137.831338][ T6725] loop7: partition table beyond EOD, truncated
[  137.831372][ T6725] loop_reread_partitions: partition scan of loop7 (þ被xü—ŸÑà– ) failed (rc=-5)
[  138.011350][ T6738] netlink: 4 bytes leftover after parsing attributes in process `syz.0.225'.
[  138.084068][ T6740] loop5: detected capacity change from 0 to 512
[  138.218138][ T6740] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.236: bg 0: block 16: invalid block bitmap
[  138.252741][ T6740] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  138.282961][ T6740] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.236: invalid indirect mapped block 5 (level 0)
[  138.377743][ T6740] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.236: invalid indirect mapped block 4294967295 (level 1)
[  138.455536][ T6740] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.236: invalid indirect mapped block 4294967295 (level 2)
[  138.538738][ T6740] EXT4-fs (loop5): 1 truncate cleaned up
[  138.588516][ T6740] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.651447][ T6755] loop4: detected capacity change from 0 to 512
[  138.706235][ T6755] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  138.749596][ T6759] loop0: detected capacity change from 0 to 512
[  138.790481][ T6755] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  138.829729][ T6759] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  138.832684][ T6740] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  138.862144][ T6755] EXT4-fs (loop4): 1 truncate cleaned up
[  138.902405][ T6759] EXT4-fs error (device loop0): ext4_find_inline_data_nolock:169: inode #17: comm syz.0.243: inline data xattr refers to an external xattr inode
[  138.976388][ T6755] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.043584][ T6759] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.243: couldn't read orphan inode 17 (err -117)
[  139.175579][ T6759] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.197885][ T6322] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.273493][ T6759] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  139.327182][ T5835] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.614339][ T5836] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.828194][ T6788] loop2: detected capacity change from 0 to 2048
[  140.055138][ T6798] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  140.180562][ T6798] NILFS (loop2): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  140.252960][ T6798] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=4)
[  140.298470][ T6798] Remounting filesystem read-only
[  140.386300][ T6806] loop0: detected capacity change from 0 to 2048
[  140.413480][ T6800] loop5: detected capacity change from 0 to 4096
[  140.452570][ T6806] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities
[  140.481480][ T6800] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  140.519733][ T5844] NILFS (loop2): disposed unprocessed dirty file(s) when stopping log writer
[  140.633160][ T6800] ntfs3(loop5): ino=1a, mi_enum_attr
[  140.668300][ T6800] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  140.722672][ T6800] ntfs3(loop5): Failed to initialize $Extend/$ObjId.
[  140.863978][ T6819] loop2: detected capacity change from 0 to 1024
[  140.870636][    T9] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  141.018938][ T6819] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  141.053346][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  141.134166][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  141.207141][    T9] usb 1-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00
[  141.247294][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  141.288760][ T6819] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  141.319281][    T9] usb 1-1: config 0 descriptor??
[  141.432983][ T6819] EXT4-fs (loop2): Remounting filesystem read-only
[  141.600624][ T5844] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.791166][    T9] lg-g15 0003:046D:C222.0002: item fetching failed at offset 10/11
[  141.836142][    T9] lg-g15 0003:046D:C222.0002: probe with driver lg-g15 failed with error -22
[  141.863206][ T6817] loop4: detected capacity change from 0 to 32768
[  141.958099][ T6817] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  141.998628][    T9] usb 1-1: USB disconnect, device number 2
[  142.166169][ T5835] ocfs2: Unmounting device (7,4) on (node local)
[  142.285191][ T6846] loop4: detected capacity change from 0 to 512
[  142.312154][ T6846] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.401056][ T6846] ext4 filesystem being mounted at /54/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  142.663846][ T6854] loop2: detected capacity change from 0 to 1024
[  142.703485][ T6854] EXT4-fs: Ignoring removed nomblk_io_submit option
[  142.773489][ T6854] EXT4-fs (loop2): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  142.827770][ T5835] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.056880][ T5844] EXT4-fs (loop2): unmounting filesystem 00000000-0500-0000-0000-000000000000.
[  143.427416][ T6876] loop4: detected capacity change from 0 to 1024
[  143.472950][ T6875] mkiss: ax0: crc mode is auto.
[  144.053451][ T6896] loop5: detected capacity change from 0 to 2048
[  144.129287][ T6896] UDF-fs: error (device loop5): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  144.153325][ T6902] netlink: 104 bytes leftover after parsing attributes in process `syz.2.287'.
[  144.182847][ T6896] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  144.437963][ T6906] loop2: detected capacity change from 0 to 2048
[  144.458425][ T6909] loop4: detected capacity change from 0 to 8
[  144.523422][ T6906] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.633966][ T6906] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  144.675626][ T6906] EXT4-fs (loop2): Delayed block allocation failed for inode 16 at logical offset 25 with max blocks 1 with error 28
[  144.729113][ T6906] EXT4-fs (loop2): This should not happen!! Data will be lost
[  144.729113][ T6906] 
[  144.756271][ T6917] veth0_to_bond: entered promiscuous mode
[  144.825150][ T6906] EXT4-fs (loop2): Total free blocks count 0
[  144.831238][ T6906] EXT4-fs (loop2): Free/Dirty block details
[  144.865159][ T6906] EXT4-fs (loop2): free_blocks=2415919504
[  144.891945][ T6906] EXT4-fs (loop2): dirty_blocks=16
[  144.925253][ T6906] EXT4-fs (loop2): Block reservation details
[  144.943919][ T6906] EXT4-fs (loop2): i_reserved_data_blocks=1
[  144.996193][ T6915] EXT4-fs (loop2): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 10 with error 28
[  145.056821][ T6926] loop4: detected capacity change from 0 to 1024
[  145.255936][ T5850] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  145.346477][ T5835] hfsplus: bad catalog entry type
[  145.352019][ T5835] hfsplus: bad catalog entry type
[  145.431855][ T5850] usb 2-1: Using ep0 maxpacket: 8
[  145.466178][ T5850] usb 2-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  145.482607][ T5850] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  145.504040][ T6904] loop0: detected capacity change from 0 to 32768
[  145.531164][ T5850] pvrusb2: Hardware description: Terratec Grabster AV400
[  145.558190][   T13] hfsplus: b-tree write err: -5, ino 4
[  145.566179][ T5850] pvrusb2: **********
[  145.570312][ T6904] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.288 (6904)
[  145.588553][ T5850] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  145.615403][ T5850] pvrusb2: Important functionality might not be entirely working.
[  145.623306][ T5850] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  145.637836][ T5850] pvrusb2: **********
[  145.659762][ T6904] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  145.715255][ T6904] BTRFS info (device loop0): using sha256 (sha256-x86_64) checksum algorithm
[  145.763101][ T2347] pvrusb2: Invalid write control endpoint
[  145.908967][ T6904] BTRFS info (device loop0): rebuilding free space tree
[  145.968412][ T6924] pvrusb2: Invalid write control endpoint
[  145.977048][ T5850] usb 2-1: USB disconnect, device number 4
[  146.015440][ T6904] BTRFS info (device loop0): disabling free space tree
[  146.034499][ T6904] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  146.085882][ T6904] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  146.103866][ T2347] pvrusb2: Invalid write control endpoint
[  146.146246][ T2347] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  146.173315][ T2347] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  146.201759][ T2347] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  146.209606][    C0] hrtimer: interrupt took 17219 ns
[  146.225471][ T2347] pvrusb2: Device being rendered inoperable
[  146.250243][ T2347] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  146.270314][ T2347] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  146.302212][ T2347] pvrusb2: Attached sub-driver cx25840
[  146.315647][ T2347] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  146.378000][ T2347] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  146.425837][ T6956] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  146.443184][ T6931] loop2: detected capacity change from 0 to 32768
[  146.469027][   T12] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.729821][ T5836] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  146.911959][   T12] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.330537][   T12] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.820755][   T12] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.153120][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  148.176914][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  148.189948][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  148.226084][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  148.247252][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  148.258910][ T6985] loop2: detected capacity change from 0 to 64
[  148.320382][ T6985] hfs: unable to locate alternate MDB
[  148.356354][ T6985] hfs: continuing without an alternate MDB
[  148.430284][ T6987] netlink: 'syz.5.315': attribute type 4 has an invalid length.
[  148.540807][   T12] bridge_slave_1: left allmulticast mode
[  148.579960][   T12] bridge_slave_1: left promiscuous mode
[  148.603987][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  148.682427][   T12] bridge_slave_0: left allmulticast mode
[  148.709025][   T12] bridge_slave_0: left promiscuous mode
[  148.714894][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  148.743256][ T6962] loop1: detected capacity change from 0 to 32768
[  148.788639][ T6991] vivid-000: disconnect
[  148.809627][ T6962] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.306 (6962)
[  148.850967][ T6991] vivid-000: reconnect
[  148.975446][ T6962] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  149.017131][ T6962] BTRFS info (device loop1): using sha256 (sha256-x86_64) checksum algorithm
[  149.046534][ T6962] BTRFS info (device loop1): using free-space-tree
[  149.055816][ T6997] loop5: detected capacity change from 0 to 64
[  149.476003][ T5840] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  150.315262][ T5839] Bluetooth: hci0: command tx timeout
[  150.578283][ T6995] loop0: detected capacity change from 0 to 40427
[  150.624169][ T6995] F2FS-fs (loop0): invalid crc value
[  150.988476][ T6995] F2FS-fs (loop0): Start checkpoint disabled!
[  151.031390][ T6995] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  151.319855][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  151.337193][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  151.348156][   T12] bond0 (unregistering): Released all slaves
[  151.712903][ T7027] loop2: detected capacity change from 0 to 40427
[  151.730882][ T7035] team0: Device ipvlan2 failed to register rx_handler
[  151.748299][ T7027] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504)
[  151.768188][ T7027] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  151.796879][ T7027] F2FS-fs (loop2): invalid crc value
[  152.226439][ T7027] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  152.254002][ T7027] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  152.292332][ T5826] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  152.397203][ T5839] Bluetooth: hci0: command tx timeout
[  152.453825][ T5844] syz-executor: attempt to access beyond end of device
[  152.453825][ T5844] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  152.485668][ T5826] usb 2-1: Using ep0 maxpacket: 32
[  152.520188][ T5844] CPU: 0 UID: 0 PID: 5844 Comm: syz-executor Not tainted 6.15.0-rc7-next-20250523-syzkaller #0 PREEMPT(full) 
[  152.520219][ T5844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  152.520232][ T5844] Call Trace:
[  152.520240][ T5844]  <TASK>
[  152.520249][ T5844]  dump_stack_lvl+0x189/0x250
[  152.520279][ T5844]  ? __pfx_dump_stack_lvl+0x10/0x10
[  152.520300][ T5844]  ? __pfx_queue_work_on+0x10/0x10
[  152.520320][ T5844]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  152.520344][ T5844]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  152.520380][ T5844]  f2fs_handle_critical_error+0x37c/0x540
[  152.520417][ T5844]  f2fs_write_end_io+0x5b8/0x7e0
[  152.520448][ T5844]  ? __submit_merged_bio+0x1d1/0x6a0
[  152.520490][ T5844]  __submit_merged_bio+0x27a/0x6a0
[  152.520525][ T5844]  __submit_merged_write_cond+0x255/0x530
[  152.520560][ T5844]  f2fs_write_data_pages+0x261d/0x3000
[  152.520630][ T5844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  152.520708][ T5844]  ? __mod_zone_page_state+0xd7/0x140
[  152.520741][ T5844]  ? folios_put_refs+0x560/0x640
[  152.520782][ T5844]  ? __pfx_folios_put_refs+0x10/0x10
[  152.520809][ T5844]  ? rcu_is_watching+0x15/0xb0
[  152.520846][ T5844]  ? __lock_acquire+0xab9/0xd20
[  152.520896][ T5844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  152.520928][ T5844]  do_writepages+0x32e/0x550
[  152.520975][ T5844]  ? do_raw_spin_unlock+0x122/0x240
[  152.521006][ T5844]  filemap_fdatawrite+0x191/0x230
[  152.521029][ T5844]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  152.521105][ T5844]  ? do_raw_spin_unlock+0x122/0x240
[  152.521136][ T5844]  f2fs_sync_dirty_inodes+0x31f/0x830
[  152.521186][ T5844]  f2fs_write_checkpoint+0x94a/0x1de0
[  152.521246][ T5844]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  152.521332][ T5844]  ? kill_f2fs_super+0x298/0x6c0
[  152.521371][ T5844]  kill_f2fs_super+0x2c3/0x6c0
[  152.521410][ T5844]  ? __pfx_kill_f2fs_super+0x10/0x10
[  152.521439][ T5844]  ? radix_tree_delete_item+0x2b6/0x400
[  152.521472][ T5844]  ? shrinker_free+0x2ce/0x3e0
[  152.521503][ T5844]  deactivate_locked_super+0xb9/0x130
[  152.521536][ T5844]  cleanup_mnt+0x425/0x4c0
[  152.521565][ T5844]  ? lockdep_hardirqs_on+0x9c/0x150
[  152.521593][ T5844]  task_work_run+0x1d4/0x260
[  152.521624][ T5844]  ? __pfx_task_work_run+0x10/0x10
[  152.521648][ T5844]  ? __x64_sys_umount+0x122/0x160
[  152.521673][ T5844]  ? exit_to_user_mode_loop+0x40/0x110
[  152.521707][ T5844]  exit_to_user_mode_loop+0xec/0x110
[  152.521740][ T5844]  do_syscall_64+0x2bd/0x3b0
[  152.521764][ T5844]  ? lockdep_hardirqs_on+0x9c/0x150
[  152.521786][ T5844]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.521807][ T5844]  ? clear_bhb_loop+0x60/0xb0
[  152.521838][ T5844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.521858][ T5844] RIP: 0033:0x7f985fb8fc97
[  152.521878][ T5844] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  152.521896][ T5844] RSP: 002b:00007ffecb7b69d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  152.521916][ T5844] RAX: 0000000000000000 RBX: 00007f985fc1089d RCX: 00007f985fb8fc97
[  152.521930][ T5844] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffecb7b6a90
[  152.521942][ T5844] RBP: 00007ffecb7b6a90 R08: 0000000000000000 R09: 0000000000000000
[  152.521954][ T5844] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffecb7b7b20
[  152.521966][ T5844] R13: 00007f985fc1089d R14: 000000000002531c R15: 00007ffecb7b7b60
[  152.521998][ T5844]  </TASK>
[  152.522007][ T5844] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  152.524683][ T5826] usb 2-1: unable to get BOS descriptor or descriptor too short
[  153.029284][   T12] hsr_slave_0: left promiscuous mode
[  153.048461][   T12] hsr_slave_1: left promiscuous mode
[  153.067838][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  153.085525][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  153.102015][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  153.106067][ T5826] usb 2-1: config 7 has an invalid interface number: 128 but max is 0
[  153.118553][ T5826] usb 2-1: config 7 contains an unexpected descriptor of type 0x1, skipping
[  153.128257][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  153.135371][ T5826] usb 2-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[  153.154189][ T5826] usb 2-1: config 7 has no interface number 0
[  153.180634][ T5826] usb 2-1: config 7 interface 128 altsetting 2 has an endpoint descriptor with address 0x17, changing to 0x7
[  153.203255][   T12] veth1_macvtap: left promiscuous mode
[  153.225051][ T5826] usb 2-1: config 7 interface 128 altsetting 2 bulk endpoint 0x7 has invalid maxpacket 32
[  153.241244][   T12] veth0_macvtap: left promiscuous mode
[  153.256598][ T5826] usb 2-1: config 7 interface 128 altsetting 2 endpoint 0x87 has an invalid bInterval 209, changing to 11
[  153.268497][   T12] veth1_vlan: left promiscuous mode
[  153.302495][ T5826] usb 2-1: config 7 interface 128 altsetting 2 has 2 endpoint descriptors, different from the interface descriptor's value: 6
[  153.305212][   T12] veth0_vlan: left promiscuous mode
[  153.326960][ T5826] usb 2-1: config 7 interface 128 has no altsetting 0
[  153.347298][ T5826] usb 2-1: New USB device found, idVendor=6033, idProduct=4108, bcdDevice=cc.13
[  153.356732][ T5826] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  153.364756][ T5826] usb 2-1: Product: syz
[  153.379456][ T5826] usb 2-1: Manufacturer: syz
[  153.394291][ T5826] usb 2-1: SerialNumber: syz
[  153.432763][ T7046] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  153.704092][ T5826] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  153.725527][ T5826] usb 2-1: MIDIStreaming interface descriptor not found
[  153.842776][ T5826] usb 2-1: USB disconnect, device number 5
[  153.981678][ T5849] udevd[5849]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:7.128/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  154.170063][ T7074] loop5: detected capacity change from 0 to 32768
[  154.249852][ T7074] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  154.330365][ T7074] XFS (loop5): Ending clean mount
[  154.350951][ T7074] XFS (loop5): Quotacheck needed: Please wait.
[  154.476203][ T5839] Bluetooth: hci0: command tx timeout
[  154.495610][ T7074] XFS (loop5): Quotacheck: Done.
[  154.823114][ T6322] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  155.380216][ T7108] loop0: detected capacity change from 0 to 4096
[  155.423235][ T7108] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  155.538839][ T7108] ntfs3(loop0): ino=b, mi_enum_attr
[  155.566573][ T7108] ntfs3(loop0): Failed to load $Extend (-22).
[  155.576636][ T7108] ntfs3(loop0): Failed to initialize $Extend.
[  155.656190][ T7108] ntfs3(loop0): ino=21, "blkio.bfq.io_queued_recursive" mmap(write) compressed not supported
[  155.879015][ T7116] loop5: detected capacity change from 0 to 1024
[  155.958997][   T12] team0 (unregistering): Port device team_slave_1 removed
[  156.148752][ T2985] hfsplus: b-tree write err: -5, ino 4
[  156.182668][   T12] team0 (unregistering): Port device team_slave_0 removed
[  156.227820][ T7126] loop1: detected capacity change from 0 to 2048
[  156.302516][ T7126] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  156.555630][ T5839] Bluetooth: hci0: command tx timeout
[  157.235123][ T7129] netlink: 292 bytes leftover after parsing attributes in process `syz.5.357'.
[  157.273375][ T7137] loop1: detected capacity change from 0 to 32768
[  157.354680][ T7137] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.361 (7137)
[  157.510558][ T7137] BTRFS info (device loop1): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  157.548110][ T7137] BTRFS info (device loop1): using crc32c (crc32c-x86_64) checksum algorithm
[  157.611529][ T7137] BTRFS info (device loop1): using free-space-tree
[  157.656946][ T6982] chnl_net:caif_netlink_parms(): no params data found
[  158.026308][ T7181] netlink: 20 bytes leftover after parsing attributes in process `syz.5.365'.
[  158.342543][ T6982] bridge0: port 1(bridge_slave_0) entered blocking state
[  158.343489][ T5826] kernel read not supported for file /vcs (pid: 5826 comm: kworker/1:3)
[  158.362399][ T6982] bridge0: port 1(bridge_slave_0) entered disabled state
[  158.362855][ T5840] BTRFS info (device loop1): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  158.370595][ T6982] bridge_slave_0: entered allmulticast mode
[  158.411569][ T6982] bridge_slave_0: entered promiscuous mode
[  158.441734][ T6982] bridge0: port 2(bridge_slave_1) entered blocking state
[  158.459365][ T6982] bridge0: port 2(bridge_slave_1) entered disabled state
[  158.475905][ T6982] bridge_slave_1: entered allmulticast mode
[  158.502352][ T6982] bridge_slave_1: entered promiscuous mode
[  158.858417][ T6982] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  158.891442][ T7151] loop2: detected capacity change from 0 to 40427
[  158.920714][ T7196] bridge0: port 2(bridge_slave_1) entered disabled state
[  158.931004][ T7196] bridge0: port 1(bridge_slave_0) entered disabled state
[  158.979568][ T6982] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  159.006340][ T7151] F2FS-fs (loop2): invalid crc value
[  159.283445][ T6982] team0: Port device team_slave_0 added
[  159.304758][ T6982] team0: Port device team_slave_1 added
[  159.410982][ T7151] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  159.466391][ T5826] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  159.547976][ T7218] loop0: detected capacity change from 0 to 128
[  159.591723][ T6982] batman_adv: batadv0: Adding interface: batadv_slave_0
[  159.613337][ T6982] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  159.679161][ T5826] usb 2-1: Using ep0 maxpacket: 16
[  159.700446][ T5844] syz-executor: attempt to access beyond end of device
[  159.700446][ T5844] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  159.709263][ T5826] usb 2-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3
[  159.739665][ T5826] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  159.744091][ T5844] CPU: 0 UID: 0 PID: 5844 Comm: syz-executor Not tainted 6.15.0-rc7-next-20250523-syzkaller #0 PREEMPT(full) 
[  159.744126][ T5844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  159.744141][ T5844] Call Trace:
[  159.744150][ T5844]  <TASK>
[  159.744161][ T5844]  dump_stack_lvl+0x189/0x250
[  159.744195][ T5844]  ? __pfx_dump_stack_lvl+0x10/0x10
[  159.744219][ T5844]  ? __pfx_queue_work_on+0x10/0x10
[  159.744241][ T5844]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  159.744266][ T5844]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  159.744308][ T5844]  f2fs_handle_critical_error+0x37c/0x540
[  159.744350][ T5844]  f2fs_write_end_io+0x5b8/0x7e0
[  159.744384][ T5844]  ? __submit_merged_bio+0x1d1/0x6a0
[  159.744433][ T5844]  __submit_merged_bio+0x27a/0x6a0
[  159.744472][ T5844]  __submit_merged_write_cond+0x255/0x530
[  159.744512][ T5844]  f2fs_write_data_pages+0x261d/0x3000
[  159.744543][ T5844]  ? __lock_acquire+0xab9/0xd20
[  159.744625][ T5844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  159.744720][ T5844]  ? __mod_zone_page_state+0xd7/0x140
[  159.744755][ T5844]  ? unwind_next_frame+0xa5/0x2390
[  159.744790][ T5844]  ? rcu_is_watching+0x15/0xb0
[  159.744810][ T5844]  ? __kasan_check_byte+0x12/0x40
[  159.744859][ T5844]  ? is_bpf_text_address+0x26/0x2b0
[  159.744880][ T5844]  ? rcu_is_watching+0x15/0xb0
[  159.744906][ T5844]  ? rcu_is_watching+0x15/0xb0
[  159.744929][ T5844]  ? lock_release+0x4b/0x3e0
[  159.744960][ T5844]  ? lock_release+0x4b/0x3e0
[  159.745019][ T5844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  159.745055][ T5844]  do_writepages+0x32e/0x550
[  159.745108][ T5844]  ? do_raw_spin_unlock+0x122/0x240
[  159.745144][ T5844]  filemap_fdatawrite+0x191/0x230
[  159.745169][ T5844]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  159.745261][ T5844]  ? do_raw_spin_unlock+0x122/0x240
[  159.745295][ T5844]  f2fs_sync_dirty_inodes+0x31f/0x830
[  159.745353][ T5844]  f2fs_write_checkpoint+0x94a/0x1de0
[  159.745426][ T5844]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  159.745530][ T5844]  ? kill_f2fs_super+0x298/0x6c0
[  159.745579][ T5844]  kill_f2fs_super+0x2c3/0x6c0
[  159.745623][ T5844]  ? __pfx_kill_f2fs_super+0x10/0x10
[  159.745655][ T5844]  ? radix_tree_delete_item+0x2b6/0x400
[  159.745691][ T5844]  ? shrinker_free+0x2ce/0x3e0
[  159.745727][ T5844]  deactivate_locked_super+0xb9/0x130
[  159.745764][ T5844]  cleanup_mnt+0x425/0x4c0
[  159.745797][ T5844]  ? lockdep_hardirqs_on+0x9c/0x150
[  159.745829][ T5844]  task_work_run+0x1d4/0x260
[  159.745873][ T5844]  ? __pfx_task_work_run+0x10/0x10
[  159.745900][ T5844]  ? __x64_sys_umount+0x122/0x160
[  159.745931][ T5844]  ? exit_to_user_mode_loop+0x40/0x110
[  159.745972][ T5844]  exit_to_user_mode_loop+0xec/0x110
[  159.746008][ T5844]  do_syscall_64+0x2bd/0x3b0
[  159.746032][ T5844]  ? lockdep_hardirqs_on+0x9c/0x150
[  159.746058][ T5844]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.746081][ T5844]  ? clear_bhb_loop+0x60/0xb0
[  159.746111][ T5844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.746134][ T5844] RIP: 0033:0x7f985fb8fc97
[  159.746155][ T5844] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  159.746175][ T5844] RSP: 002b:00007ffecb7b69d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  159.746199][ T5844] RAX: 0000000000000000 RBX: 00007f985fc1089d RCX: 00007f985fb8fc97
[  159.746215][ T5844] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffecb7b6a90
[  159.746230][ T5844] RBP: 00007ffecb7b6a90 R08: 0000000000000000 R09: 0000000000000000
[  159.746244][ T5844] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffecb7b7b20
[  159.746259][ T5844] R13: 00007f985fc1089d R14: 0000000000026f30 R15: 00007ffecb7b7b60
[  159.746301][ T5844]  </TASK>
[  159.766422][ T5844] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  159.775131][ T6982] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  160.135620][ T5826] usb 2-1: Product: syz
[  160.139823][ T5826] usb 2-1: Manufacturer: syz
[  160.144466][ T5826] usb 2-1: SerialNumber: syz
[  160.153529][ T5826] usb 2-1: config 0 descriptor??
[  160.224313][ T6982] batman_adv: batadv0: Adding interface: batadv_slave_1
[  160.236497][ T6982] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  160.263957][ T6982] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  160.409778][ T7222] loop5: detected capacity change from 0 to 1024
[  160.447000][ T6982] hsr_slave_0: entered promiscuous mode
[  160.464594][ T6982] hsr_slave_1: entered promiscuous mode
[  160.484490][ T7222] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  160.504346][ T6982] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  160.521332][ T6982] Cannot create hsr debugfs directory
[  160.521418][ T7222] ext4 filesystem being mounted at /48/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  160.570947][ T5826] dvb-usb: found a 'AME DTV-5100 USB2.0 DVB-T' in warm state.
[  160.598367][ T5826] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  160.618918][ T2985] kworker/u8:8: attempt to access beyond end of device
[  160.618918][ T2985] loop0: rw=1, sector=145, nr_sectors = 16 limit=128
[  160.652894][ T6322] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.666773][ T5826] dvbdev: DVB: registering new adapter (AME DTV-5100 USB2.0 DVB-T)
[  160.682265][ T2985] kworker/u8:8: attempt to access beyond end of device
[  160.682265][ T2985] loop0: rw=1, sector=169, nr_sectors = 8 limit=128
[  160.700369][ T5826] usb 2-1: media controller created
[  160.737850][ T2985] kworker/u8:8: attempt to access beyond end of device
[  160.737850][ T2985] loop0: rw=1, sector=185, nr_sectors = 8 limit=128
[  160.795848][ T2985] kworker/u8:8: attempt to access beyond end of device
[  160.795848][ T2985] loop0: rw=1, sector=201, nr_sectors = 8 limit=128
[  160.877341][ T5826] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  160.886701][ T2985] kworker/u8:8: attempt to access beyond end of device
[  160.886701][ T2985] loop0: rw=1, sector=217, nr_sectors = 8 limit=128
[  160.946575][ T2985] kworker/u8:8: attempt to access beyond end of device
[  160.946575][ T2985] loop0: rw=1, sector=233, nr_sectors = 8 limit=128
[  160.993874][ T2985] kworker/u8:8: attempt to access beyond end of device
[  160.993874][ T2985] loop0: rw=1, sector=249, nr_sectors = 8 limit=128
[  161.017706][ T5826] dvb-usb: no frontend was attached by 'AME DTV-5100 USB2.0 DVB-T'
[  161.027741][ T5826] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully initialized and connected.
[  161.050339][ T2985] kworker/u8:8: attempt to access beyond end of device
[  161.050339][ T2985] loop0: rw=1, sector=265, nr_sectors = 8 limit=128
[  161.092812][ T2985] kworker/u8:8: attempt to access beyond end of device
[  161.092812][ T2985] loop0: rw=1, sector=281, nr_sectors = 8 limit=128
[  161.162713][ T7231] netlink: 172 bytes leftover after parsing attributes in process `syz.2.375'.
[  161.218965][ T7231] netlink: 16 bytes leftover after parsing attributes in process `syz.2.375'.
[  161.345418][ T5826] usb 2-1: USB disconnect, device number 6
[  161.432943][ T7236] netlink: 'syz.0.377': attribute type 9 has an invalid length.
[  161.515510][ T5826] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully deinitialized and disconnected.
[  161.538846][ T7236] bond_slave_0: entered promiscuous mode
[  161.545247][ T7236] bond_slave_1: entered promiscuous mode
[  161.574932][ T7236] macvlan2: entered promiscuous mode
[  161.625533][ T7236] bond0: entered promiscuous mode
[  161.655961][ T7236] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  161.781832][ T6982] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  161.814823][ T7242] loop2: detected capacity change from 0 to 1024
[  161.857336][ T6982] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  161.920477][ T6982] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  161.974540][ T6982] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  162.107206][   T12] hfsplus: b-tree write err: -5, ino 4
[  162.174593][ T7253] loop6: detected capacity change from 0 to 63
[  162.583942][ T6982] 8021q: adding VLAN 0 to HW filter on device bond0
[  162.698336][ T6982] 8021q: adding VLAN 0 to HW filter on device team0
[  162.722279][ T7261] loop0: detected capacity change from 0 to 512
[  162.761014][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  162.768280][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  162.786231][ T7261] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  162.833105][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  162.840373][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  162.864146][ T7261] EXT4-fs (loop0): 1 truncate cleaned up
[  162.873017][ T7261] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.071165][ T7268] batman_adv: batadv0: Adding interface: dummy0
[  163.099170][ T7268] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  163.143359][ T5836] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.238169][ T7268] batman_adv: batadv0: Interface activated: dummy0
[  163.642396][ T7251] loop1: detected capacity change from 0 to 40427
[  163.745522][ T7251] F2FS-fs (loop1): build fault injection rate: 690
[  163.810474][ T7251] F2FS-fs (loop1): invalid crc value
[  164.228549][ T7263] loop2: detected capacity change from 0 to 32768
[  164.276530][ T7263] btrfs: Deprecated parameter 'usebackuproot'
[  164.292860][ T6982] 8021q: adding VLAN 0 to HW filter on device batadv0
[  164.305231][ T7251] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  164.313087][ T7263] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  164.383900][ T7263] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.386 (7263)
[  164.449901][ T7263] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  164.494117][ T7263] BTRFS info (device loop2): using crc32c (crc32c-x86_64) checksum algorithm
[  164.535279][ T7263] BTRFS info (device loop2): using free-space-tree
[  164.601387][ T5840] CPU: 1 UID: 0 PID: 5840 Comm: syz-executor Not tainted 6.15.0-rc7-next-20250523-syzkaller #0 PREEMPT(full) 
[  164.601420][ T5840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  164.601433][ T5840] Call Trace:
[  164.601442][ T5840]  <TASK>
[  164.601451][ T5840]  dump_stack_lvl+0x189/0x250
[  164.601481][ T5840]  ? __pfx_dump_stack_lvl+0x10/0x10
[  164.601503][ T5840]  ? __pfx_queue_work_on+0x10/0x10
[  164.601521][ T5840]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  164.601544][ T5840]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  164.601583][ T5840]  f2fs_handle_critical_error+0x37c/0x540
[  164.601621][ T5840]  f2fs_write_end_io+0x5b8/0x7e0
[  164.601652][ T5840]  ? __submit_merged_bio+0x1d1/0x6a0
[  164.601727][ T5840]  __submit_merged_bio+0x27a/0x6a0
[  164.601772][ T5840]  __submit_merged_write_cond+0x255/0x530
[  164.601808][ T5840]  f2fs_write_data_pages+0x261d/0x3000
[  164.601884][ T5840]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  164.601974][ T5840]  ? __mod_zone_page_state+0xd7/0x140
[  164.602009][ T5840]  ? folios_put_refs+0x560/0x640
[  164.602056][ T5840]  ? __lock_acquire+0xab9/0xd20
[  164.602100][ T5840]  ? do_raw_spin_lock+0x121/0x290
[  164.602142][ T5840]  ? do_raw_spin_unlock+0x122/0x240
[  164.602168][ T5840]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  164.602201][ T5840]  do_writepages+0x32e/0x550
[  164.602250][ T5840]  ? do_raw_spin_unlock+0x122/0x240
[  164.602283][ T5840]  filemap_fdatawrite+0x191/0x230
[  164.602306][ T5840]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  164.602392][ T5840]  ? do_raw_spin_unlock+0x122/0x240
[  164.602425][ T5840]  f2fs_sync_dirty_inodes+0x31f/0x830
[  164.602479][ T5840]  f2fs_write_checkpoint+0x94a/0x1de0
[  164.602544][ T5840]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  164.602633][ T5840]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  164.602665][ T5840]  ? kfree+0x18e/0x440
[  164.602687][ T5840]  ? kill_f2fs_super+0x298/0x6c0
[  164.602726][ T5840]  kill_f2fs_super+0x2c3/0x6c0
[  164.602775][ T5840]  ? __pfx_kill_f2fs_super+0x10/0x10
[  164.602804][ T5840]  ? radix_tree_delete_item+0x2b6/0x400
[  164.602839][ T5840]  ? shrinker_free+0x2ce/0x3e0
[  164.602872][ T5840]  deactivate_locked_super+0xb9/0x130
[  164.602906][ T5840]  cleanup_mnt+0x425/0x4c0
[  164.602937][ T5840]  ? lockdep_hardirqs_on+0x9c/0x150
[  164.602966][ T5840]  task_work_run+0x1d4/0x260
[  164.602999][ T5840]  ? __pfx_task_work_run+0x10/0x10
[  164.603023][ T5840]  ? __x64_sys_umount+0x122/0x160
[  164.603052][ T5840]  ? exit_to_user_mode_loop+0x40/0x110
[  164.603089][ T5840]  exit_to_user_mode_loop+0xec/0x110
[  164.603122][ T5840]  do_syscall_64+0x2bd/0x3b0
[  164.603146][ T5840]  ? lockdep_hardirqs_on+0x9c/0x150
[  164.603170][ T5840]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.603192][ T5840]  ? clear_bhb_loop+0x60/0xb0
[  164.603220][ T5840]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.603240][ T5840] RIP: 0033:0x7f69e758fc97
[  164.603260][ T5840] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  164.603277][ T5840] RSP: 002b:00007ffc743c8f78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  164.603325][ T5840] RAX: 0000000000000000 RBX: 00007f69e761089d RCX: 00007f69e758fc97
[  164.603339][ T5840] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc743c9030
[  164.603352][ T5840] RBP: 00007ffc743c9030 R08: 0000000000000000 R09: 0000000000000000
[  164.603365][ T5840] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc743ca0c0
[  164.603379][ T5840] R13: 00007f69e761089d R14: 000000000002825a R15: 00007ffc743ca100
[  164.603418][ T5840]  </TASK>
[  164.603427][ T5840] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  165.052433][   T12] BTRFS warning (device loop2): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0
[  165.092520][ T7263] BTRFS error (device loop2): failed to load root extent
[  165.111784][ T7263] BTRFS warning (device loop2): try to load backup roots slot 1
[  165.161788][   T49] BTRFS warning (device loop2): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0
[  165.197910][   T30] audit: type=1326 audit(1748060558.626:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7300 comm="syz.0.394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6f318e969 code=0x7fc00000
[  165.230808][ T7263] BTRFS warning (device loop2): couldn't read tree root
[  165.268257][ T7263] BTRFS warning (device loop2): try to load backup roots slot 2
[  165.306599][   T36] BTRFS error (device loop2): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[  165.343327][ T7263] BTRFS warning (device loop2): couldn't read tree root
[  165.355801][ T7263] BTRFS warning (device loop2): try to load backup roots slot 3
[  165.428038][ T7335] loop0: detected capacity change from 0 to 64
[  165.451281][ T7263] BTRFS info (device loop2): rebuilding free space tree
[  165.604067][ T7263] BTRFS info (device loop2): checking UUID tree
[  165.648675][ T6982] veth0_vlan: entered promiscuous mode
[  165.719046][ T6982] veth1_vlan: entered promiscuous mode
[  165.913139][ T6982] veth0_macvtap: entered promiscuous mode
[  165.964954][ T5844] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  165.979886][ T6982] veth1_macvtap: entered promiscuous mode
[  166.112028][ T6982] batman_adv: batadv0: Interface activated: batadv_slave_0
[  166.215931][ T6982] batman_adv: batadv0: Interface activated: batadv_slave_1
[  166.280106][ T6982] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  166.350342][ T6982] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  166.383618][ T6982] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  166.433209][ T6982] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  166.936484][ T2985] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  166.975157][ T2985] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  167.126335][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  167.173339][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  167.734809][ T7356] loop5: detected capacity change from 0 to 32768
[  167.793793][ T7356] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  168.023414][ T7356] XFS (loop5): Ending clean mount
[  168.068042][ T7356] XFS (loop5): Quotacheck needed: Please wait.
[  168.220889][ T7356] XFS (loop5): Quotacheck: Done.
[  168.292448][ T7364] loop0: detected capacity change from 0 to 40427
[  168.363624][ T7364] F2FS-fs (loop0): build fault injection rate: 771
[  168.393853][ T7364] F2FS-fs (loop0): invalid crc value
[  168.453223][ T6322] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  168.672185][ T7376] loop2: detected capacity change from 0 to 32768
[  168.785550][ T7364] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  168.804047][ T7376] overlayfs: upper fs needs to support d_type.
[  168.892974][ T7376] overlayfs: upper fs does not support tmpfile.
[  169.023890][ T7376] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  169.096890][ T5836] bio_check_eod: 13 callbacks suppressed
[  169.096933][ T5836] syz-executor: attempt to access beyond end of device
[  169.096933][ T5836] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  169.104873][ T7376] ERROR: (device loop2): dbAlloc: the hint is outside the map
[  169.104873][ T7376] 
[  169.129892][ T5836] CPU: 0 UID: 0 PID: 5836 Comm: syz-executor Not tainted 6.15.0-rc7-next-20250523-syzkaller #0 PREEMPT(full) 
[  169.129922][ T5836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  169.129935][ T5836] Call Trace:
[  169.129943][ T5836]  <TASK>
[  169.129953][ T5836]  dump_stack_lvl+0x189/0x250
[  169.129983][ T5836]  ? __pfx_dump_stack_lvl+0x10/0x10
[  169.130004][ T5836]  ? __pfx_queue_work_on+0x10/0x10
[  169.130023][ T5836]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  169.130057][ T5836]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  169.130093][ T5836]  f2fs_handle_critical_error+0x37c/0x540
[  169.130129][ T5836]  f2fs_write_end_io+0x5b8/0x7e0
[  169.130160][ T5836]  ? __submit_merged_bio+0x1d1/0x6a0
[  169.130202][ T5836]  __submit_merged_bio+0x27a/0x6a0
[  169.130236][ T5836]  __submit_merged_write_cond+0x255/0x530
[  169.130270][ T5836]  f2fs_write_data_pages+0x261d/0x3000
[  169.130338][ T5836]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  169.130379][ T5836]  ? arch_stack_walk+0xfc/0x150
[  169.130429][ T5836]  ? __mod_zone_page_state+0xd7/0x140
[  169.130459][ T5836]  ? folios_put_refs+0x560/0x640
[  169.130500][ T5836]  ? __lock_acquire+0xab9/0xd20
[  169.130541][ T5836]  ? do_raw_spin_lock+0x121/0x290
[  169.130579][ T5836]  ? do_raw_spin_unlock+0x122/0x240
[  169.130605][ T5836]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  169.130636][ T5836]  do_writepages+0x32e/0x550
[  169.130684][ T5836]  ? do_raw_spin_unlock+0x122/0x240
[  169.130715][ T5836]  filemap_fdatawrite+0x191/0x230
[  169.130737][ T5836]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  169.130812][ T5836]  ? do_raw_spin_unlock+0x122/0x240
[  169.130843][ T5836]  f2fs_sync_dirty_inodes+0x31f/0x830
[  169.130892][ T5836]  f2fs_write_checkpoint+0x94a/0x1de0
[  169.130950][ T5836]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  169.131038][ T5836]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  169.131070][ T5836]  ? kfree+0x18e/0x440
[  169.131090][ T5836]  ? kill_f2fs_super+0x298/0x6c0
[  169.131128][ T5836]  kill_f2fs_super+0x2c3/0x6c0
[  169.131167][ T5836]  ? __pfx_kill_f2fs_super+0x10/0x10
[  169.131196][ T5836]  ? radix_tree_delete_item+0x2b6/0x400
[  169.131228][ T5836]  ? shrinker_free+0x2ce/0x3e0
[  169.131259][ T5836]  deactivate_locked_super+0xb9/0x130
[  169.131294][ T5836]  cleanup_mnt+0x425/0x4c0
[  169.131324][ T5836]  ? lockdep_hardirqs_on+0x9c/0x150
[  169.131352][ T5836]  task_work_run+0x1d4/0x260
[  169.131383][ T5836]  ? __pfx_task_work_run+0x10/0x10
[  169.131408][ T5836]  ? __x64_sys_umount+0x122/0x160
[  169.131435][ T5836]  ? exit_to_user_mode_loop+0x40/0x110
[  169.131471][ T5836]  exit_to_user_mode_loop+0xec/0x110
[  169.131503][ T5836]  do_syscall_64+0x2bd/0x3b0
[  169.131528][ T5836]  ? lockdep_hardirqs_on+0x9c/0x150
[  169.131551][ T5836]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.131572][ T5836]  ? clear_bhb_loop+0x60/0xb0
[  169.131598][ T5836]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.131619][ T5836] RIP: 0033:0x7fc6f318fc97
[  169.131639][ T5836] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  169.131656][ T5836] RSP: 002b:00007ffd41e70088 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  169.131678][ T5836] RAX: 0000000000000000 RBX: 00007fc6f321089d RCX: 00007fc6f318fc97
[  169.131693][ T5836] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd41e70140
[  169.131706][ T5836] RBP: 00007ffd41e70140 R08: 0000000000000000 R09: 0000000000000000
[  169.131718][ T5836] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd41e711d0
[  169.131732][ T5836] R13: 00007fc6f321089d R14: 000000000002941d R15: 00007ffd41e71210
[  169.131767][ T5836]  </TASK>
[  169.131775][ T5836] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  169.413011][ T7376] overlayfs: failed to set uuid (/file0, err=-5); falling back to uuid=null.
[  169.522924][ T7376] ERROR: (device loop2): dbAlloc: the hint is outside the map
[  169.522924][ T7376] 
[  169.541429][ T7376] overlayfs: failed to verify upper root origin
[  169.778392][   T36] read_mapping_page failed!
[  169.798018][   T36] ERROR: (device loop2): txCommit: 
[  169.798018][   T36] 
[  169.807211][   T36] jfs_write_inode: jfs_commit_inode failed!
[  170.231287][ T7430] loop1: detected capacity change from 0 to 2048
[  170.421078][ T7430] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.489067][ T7438] loop2: detected capacity change from 0 to 64
[  170.815531][ T5908] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  170.871289][ T7448] loop2: detected capacity change from 0 to 512
[  170.881952][ T7450] netlink: 'syz.5.421': attribute type 1 has an invalid length.
[  170.918764][ T7448] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  170.984701][ T7448] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.025178][ T5908] usb 7-1: Using ep0 maxpacket: 8
[  171.036241][ T7448] ext4 filesystem being mounted at /93/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.047892][ T5908] usb 7-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 0
[  171.083138][ T5908] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  171.091008][ T5840] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.105682][ T5908] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  171.113760][ T5908] usb 7-1: SerialNumber: syz
[  171.149383][ T5908] cdc_ether 7-1:1.0: probe with driver cdc_ether failed with error -22
[  171.373518][ T7460] loop1: detected capacity change from 0 to 1024
[  171.387313][   T10] usb 7-1: USB disconnect, device number 2
[  172.118969][ T5844] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.628394][ T7504] loop1: detected capacity change from 0 to 1024
[  173.661895][ T7472] loop2: detected capacity change from 0 to 32768
[  173.680047][ T7504] EXT4-fs: Ignoring removed bh option
[  173.733503][ T7472] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  173.745485][ T7504] EXT4-fs: inline encryption not supported
[  173.776758][ T7504] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  173.884563][ T7504] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce028, mo2=0000]
[  173.940756][ T7472] XFS (loop2): Ending clean mount
[  173.980226][ T7472] XFS (loop2): Quotacheck needed: Please wait.
[  174.023567][ T7504] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 2: comm syz.1.436: lblock 2 mapped to illegal pblock 2 (length 1)
[  174.135627][ T7504] EXT4-fs (loop1): Remounting filesystem read-only
[  174.142240][ T7504] Quota error (device loop1): qtree_write_dquot: dquota write failed
[  174.215183][ T7504] Quota error (device loop1): v2_write_file_info: Can't write info structure
[  174.244405][ T7504] EXT4-fs (loop1): 1 orphan inode deleted
[  174.269360][ T7504] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.280466][ T7472] XFS (loop2): Quotacheck: Done.
[  174.494480][ T7493] loop5: detected capacity change from 0 to 40427
[  174.531699][ T5844] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  174.602041][ T5840] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.087995][ T7493] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  175.271118][ T7493] syz.5.433: attempt to access beyond end of device
[  175.271118][ T7493] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  175.296497][ T7528] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  175.302909][ T7528] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  175.468646][ T7528] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  175.480759][ T6322] syz-executor: attempt to access beyond end of device
[  175.480759][ T6322] loop5: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  175.498797][ T7528] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  175.515295][ T6322] CPU: 1 UID: 0 PID: 6322 Comm: syz-executor Not tainted 6.15.0-rc7-next-20250523-syzkaller #0 PREEMPT(full) 
[  175.515327][ T6322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  175.515340][ T6322] Call Trace:
[  175.515349][ T6322]  <TASK>
[  175.515358][ T6322]  dump_stack_lvl+0x189/0x250
[  175.515388][ T6322]  ? __pfx_dump_stack_lvl+0x10/0x10
[  175.515409][ T6322]  ? __pfx_queue_work_on+0x10/0x10
[  175.515427][ T6322]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  175.515450][ T6322]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  175.515495][ T6322]  f2fs_handle_critical_error+0x37c/0x540
[  175.515532][ T6322]  f2fs_write_end_io+0x5b8/0x7e0
[  175.515567][ T6322]  ? __submit_merged_bio+0x1d1/0x6a0
[  175.515608][ T6322]  __submit_merged_bio+0x27a/0x6a0
[  175.515639][ T6322]  __submit_merged_write_cond+0x255/0x530
[  175.515672][ T6322]  f2fs_write_data_pages+0x261d/0x3000
[  175.515699][ T6322]  ? __lock_acquire+0xab9/0xd20
[  175.515765][ T6322]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  175.515840][ T6322]  ? __mod_zone_page_state+0xd7/0x140
[  175.515872][ T6322]  ? folios_put_refs+0x560/0x640
[  175.515911][ T6322]  ? __pfx_folios_put_refs+0x10/0x10
[  175.515937][ T6322]  ? rcu_is_watching+0x15/0xb0
[  175.515966][ T6322]  ? __lock_acquire+0xab9/0xd20
[  175.516012][ T6322]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  175.516042][ T6322]  do_writepages+0x32e/0x550
[  175.516088][ T6322]  ? do_raw_spin_unlock+0x122/0x240
[  175.516119][ T6322]  filemap_fdatawrite+0x191/0x230
[  175.516142][ T6322]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  175.516213][ T6322]  ? do_raw_spin_unlock+0x122/0x240
[  175.516245][ T6322]  f2fs_sync_dirty_inodes+0x31f/0x830
[  175.516293][ T6322]  f2fs_write_checkpoint+0x94a/0x1de0
[  175.516353][ T6322]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  175.516436][ T6322]  ? kill_f2fs_super+0x298/0x6c0
[  175.516483][ T6322]  kill_f2fs_super+0x2c3/0x6c0
[  175.516523][ T6322]  ? __pfx_kill_f2fs_super+0x10/0x10
[  175.516552][ T6322]  ? radix_tree_delete_item+0x2b6/0x400
[  175.516584][ T6322]  ? shrinker_free+0x2ce/0x3e0
[  175.516617][ T6322]  deactivate_locked_super+0xb9/0x130
[  175.516651][ T6322]  cleanup_mnt+0x425/0x4c0
[  175.516681][ T6322]  ? lockdep_hardirqs_on+0x9c/0x150
[  175.516708][ T6322]  task_work_run+0x1d4/0x260
[  175.516740][ T6322]  ? __pfx_task_work_run+0x10/0x10
[  175.516765][ T6322]  ? __x64_sys_umount+0x122/0x160
[  175.516792][ T6322]  ? exit_to_user_mode_loop+0x40/0x110
[  175.516828][ T6322]  exit_to_user_mode_loop+0xec/0x110
[  175.516860][ T6322]  do_syscall_64+0x2bd/0x3b0
[  175.516886][ T6322]  ? lockdep_hardirqs_on+0x9c/0x150
[  175.516909][ T6322]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.516931][ T6322]  ? clear_bhb_loop+0x60/0xb0
[  175.516957][ T6322]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.516978][ T6322] RIP: 0033:0x7f27a118fc97
[  175.516998][ T6322] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  175.517016][ T6322] RSP: 002b:00007ffec2d35768 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  175.517038][ T6322] RAX: 0000000000000000 RBX: 00007f27a121089d RCX: 00007f27a118fc97
[  175.517052][ T6322] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffec2d35820
[  175.517065][ T6322] RBP: 00007ffec2d35820 R08: 0000000000000000 R09: 0000000000000000
[  175.517078][ T6322] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffec2d368b0
[  175.517092][ T6322] R13: 00007f27a121089d R14: 000000000002acc6 R15: 00007ffec2d368f0
[  175.517126][ T6322]  </TASK>
[  175.517136][ T6322] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  176.029137][ T7528] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  176.055262][ T7528] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[  176.123401][ T7539] loop0: detected capacity change from 0 to 40427
[  176.136731][ T7539] F2FS-fs (loop0): heap/no_heap options were deprecated
[  176.187783][ T7539] F2FS-fs (loop0): invalid crc value
[  176.625645][ T7567] netlink: 12 bytes leftover after parsing attributes in process `syz.2.451'.
[  176.627776][ T7539] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  176.693696][ T7567] netlink: 12 bytes leftover after parsing attributes in process `syz.2.451'.
[  177.001067][ T5836] syz-executor: attempt to access beyond end of device
[  177.001067][ T5836] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  177.023487][ T5836] CPU: 0 UID: 0 PID: 5836 Comm: syz-executor Not tainted 6.15.0-rc7-next-20250523-syzkaller #0 PREEMPT(full) 
[  177.023520][ T5836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  177.023533][ T5836] Call Trace:
[  177.023542][ T5836]  <TASK>
[  177.023552][ T5836]  dump_stack_lvl+0x189/0x250
[  177.023585][ T5836]  ? __pfx_dump_stack_lvl+0x10/0x10
[  177.023608][ T5836]  ? __pfx_queue_work_on+0x10/0x10
[  177.023636][ T5836]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  177.023661][ T5836]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  177.023702][ T5836]  f2fs_handle_critical_error+0x37c/0x540
[  177.023741][ T5836]  f2fs_write_end_io+0x5b8/0x7e0
[  177.023774][ T5836]  ? __submit_merged_bio+0x1d1/0x6a0
[  177.023822][ T5836]  __submit_merged_bio+0x27a/0x6a0
[  177.023860][ T5836]  __submit_merged_write_cond+0x255/0x530
[  177.023899][ T5836]  f2fs_write_data_pages+0x261d/0x3000
[  177.023980][ T5836]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  177.024091][ T5836]  ? folios_put_refs+0x559/0x640
[  177.024141][ T5836]  ? __lock_acquire+0xab9/0xd20
[  177.024186][ T5836]  ? do_raw_spin_lock+0x121/0x290
[  177.024229][ T5836]  ? do_raw_spin_unlock+0x122/0x240
[  177.024257][ T5836]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  177.024291][ T5836]  do_writepages+0x32e/0x550
[  177.024343][ T5836]  ? do_raw_spin_unlock+0x122/0x240
[  177.024376][ T5836]  filemap_fdatawrite+0x191/0x230
[  177.024402][ T5836]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  177.024492][ T5836]  ? do_raw_spin_unlock+0x122/0x240
[  177.024525][ T5836]  f2fs_sync_dirty_inodes+0x31f/0x830
[  177.024580][ T5836]  f2fs_write_checkpoint+0x94a/0x1de0
[  177.024654][ T5836]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  177.024747][ T5836]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  177.024781][ T5836]  ? kfree+0x18e/0x440
[  177.024804][ T5836]  ? kill_f2fs_super+0x298/0x6c0
[  177.024845][ T5836]  kill_f2fs_super+0x2c3/0x6c0
[  177.024888][ T5836]  ? __pfx_kill_f2fs_super+0x10/0x10
[  177.024919][ T5836]  ? radix_tree_delete_item+0x2b6/0x400
[  177.024955][ T5836]  ? shrinker_free+0x2ce/0x3e0
[  177.024991][ T5836]  deactivate_locked_super+0xb9/0x130
[  177.025026][ T5836]  cleanup_mnt+0x425/0x4c0
[  177.025056][ T5836]  ? lockdep_hardirqs_on+0x9c/0x150
[  177.025085][ T5836]  task_work_run+0x1d4/0x260
[  177.025119][ T5836]  ? __pfx_task_work_run+0x10/0x10
[  177.025144][ T5836]  ? __x64_sys_umount+0x122/0x160
[  177.025174][ T5836]  ? exit_to_user_mode_loop+0x40/0x110
[  177.025213][ T5836]  exit_to_user_mode_loop+0xec/0x110
[  177.025246][ T5836]  do_syscall_64+0x2bd/0x3b0
[  177.025272][ T5836]  ? lockdep_hardirqs_on+0x9c/0x150
[  177.025296][ T5836]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.025318][ T5836]  ? clear_bhb_loop+0x60/0xb0
[  177.025347][ T5836]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.025369][ T5836] RIP: 0033:0x7fc6f318fc97
[  177.025389][ T5836] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  177.025409][ T5836] RSP: 002b:00007ffd41e70088 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  177.025433][ T5836] RAX: 0000000000000000 RBX: 00007fc6f321089d RCX: 00007fc6f318fc97
[  177.025448][ T5836] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd41e70140
[  177.025461][ T5836] RBP: 00007ffd41e70140 R08: 0000000000000000 R09: 0000000000000000
[  177.025474][ T5836] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd41e711d0
[  177.025488][ T5836] R13: 00007fc6f321089d R14: 000000000002b2d6 R15: 00007ffd41e71210
[  177.025525][ T5836]  </TASK>
[  177.027627][ T7528] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  177.252045][ T5836] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  177.295075][ T7528] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[  177.740255][ T7586] netlink: 'syz.2.456': attribute type 3 has an invalid length.
[  177.844775][ T7528] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  177.866242][ T7528] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  179.578501][ T7596] loop5: detected capacity change from 0 to 40427
[  179.655222][ T7596] F2FS-fs (loop5): build fault injection type: 0x7
[  179.723716][ T7596] F2FS-fs (loop5): invalid crc value
[  179.878345][ T7643] loop0: detected capacity change from 0 to 512
[  180.052725][ T7643] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  180.140195][ T7643] ext4 filesystem being mounted at /110/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  180.203434][ T7596] F2FS-fs (loop5): Start checkpoint disabled!
[  180.287649][ T7643] EXT4-fs error (device loop0): ext4_lookup:1787: inode #12: comm syz.0.472: iget: bad i_size value: 2533274857506816
[  180.295126][ T7596] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  180.410671][ T7656] loop6: detected capacity change from 0 to 4096
[  180.491593][ T5836] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.518809][ T7596] syz.5.459: attempt to access beyond end of device
[  180.518809][ T7596] loop5: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  180.688206][ T7628] loop1: detected capacity change from 0 to 32768
[  180.731701][ T7628] (syz.1.467,7628,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  180.773173][ T2985] kworker/u8:8: attempt to access beyond end of device
[  180.773173][ T2985] loop5: rw=2049, sector=45112, nr_sectors = 8 limit=40427
[  180.837383][ T7628] (syz.1.467,7628,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  180.845088][ T2985] CPU: 1 UID: 0 PID: 2985 Comm: kworker/u8:8 Not tainted 6.15.0-rc7-next-20250523-syzkaller #0 PREEMPT(full) 
[  180.845125][ T2985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  180.845141][ T2985] Workqueue: writeback wb_workfn (flush-7:5)
[  180.845199][ T2985] Call Trace:
[  180.845209][ T2985]  <TASK>
[  180.845220][ T2985]  dump_stack_lvl+0x189/0x250
[  180.845251][ T2985]  ? __pfx_dump_stack_lvl+0x10/0x10
[  180.845275][ T2985]  ? __pfx_queue_work_on+0x10/0x10
[  180.845297][ T2985]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  180.845323][ T2985]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  180.845364][ T2985]  f2fs_handle_critical_error+0x37c/0x540
[  180.845404][ T2985]  f2fs_write_end_io+0x5b8/0x7e0
[  180.845440][ T2985]  ? __submit_merged_bio+0x1d1/0x6a0
[  180.845488][ T2985]  __submit_merged_bio+0x27a/0x6a0
[  180.845525][ T2985]  __submit_merged_write_cond+0x255/0x530
[  180.845571][ T2985]  f2fs_write_data_pages+0x261d/0x3000
[  180.845648][ T2985]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  180.845698][ T2985]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  180.845814][ T2985]  ? kvm_sched_clock_read+0x11/0x20
[  180.845838][ T2985]  ? sched_clock+0x3f/0x60
[  180.845866][ T2985]  ? sched_clock_cpu+0x74/0x430
[  180.845922][ T2985]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  180.845958][ T2985]  do_writepages+0x32e/0x550
[  180.846012][ T2985]  ? reacquire_held_locks+0x127/0x1d0
[  180.846035][ T2985]  ? writeback_sb_inodes+0x372/0x1000
[  180.846084][ T2985]  __writeback_single_inode+0x145/0xff0
[  180.846123][ T2985]  ? do_raw_spin_unlock+0x122/0x240
[  180.846159][ T2985]  writeback_sb_inodes+0x6b5/0x1000
[  180.846233][ T2985]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  180.846322][ T2985]  ? rcu_is_watching+0x15/0xb0
[  180.846358][ T2985]  wb_writeback+0x43b/0xaf0
[  180.846405][ T2985]  ? queue_io+0x3b1/0x590
[  180.846446][ T2985]  ? __pfx_wb_writeback+0x10/0x10
[  180.846494][ T2985]  ? _raw_spin_unlock_irq+0x23/0x50
[  180.846526][ T2985]  wb_workfn+0x409/0xef0
[  180.846577][ T2985]  ? __pfx_wb_workfn+0x10/0x10
[  180.846615][ T2985]  ? __lock_acquire+0xab9/0xd20
[  180.846663][ T2985]  ? process_scheduled_works+0x9ef/0x17b0
[  180.846709][ T2985]  ? _raw_spin_unlock_irq+0x23/0x50
[  180.846732][ T2985]  ? process_scheduled_works+0x9ef/0x17b0
[  180.846769][ T2985]  ? process_scheduled_works+0x9ef/0x17b0
[  180.846809][ T2985]  process_scheduled_works+0xade/0x17b0
[  180.846884][ T2985]  ? __pfx_process_scheduled_works+0x10/0x10
[  180.846944][ T2985]  worker_thread+0x8a0/0xda0
[  180.846971][ T2985]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  180.847014][ T2985]  ? __kthread_parkme+0x7b/0x200
[  180.847051][ T2985]  kthread+0x711/0x8a0
[  180.847084][ T2985]  ? __pfx_worker_thread+0x10/0x10
[  180.847106][ T2985]  ? __pfx_kthread+0x10/0x10
[  180.847150][ T2985]  ? _raw_spin_unlock_irq+0x23/0x50
[  180.847173][ T2985]  ? lockdep_hardirqs_on+0x9c/0x150
[  180.847197][ T2985]  ? __pfx_kthread+0x10/0x10
[  180.847226][ T2985]  ret_from_fork+0x3fc/0x770
[  180.847263][ T2985]  ? __pfx_ret_from_fork+0x10/0x10
[  180.847304][ T2985]  ? __switch_to_asm+0x39/0x70
[  180.847327][ T2985]  ? __switch_to_asm+0x33/0x70
[  180.847350][ T2985]  ? __pfx_kthread+0x10/0x10
[  180.847379][ T2985]  ret_from_fork_asm+0x1a/0x30
[  180.847424][ T2985]  </TASK>
[  180.847434][ T2985] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  181.248510][ T7628] JBD2: Ignoring recovery information on journal
[  181.296151][ T7646] loop2: detected capacity change from 0 to 40427
[  181.476500][ T7628] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  181.807921][ T7646] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  181.907406][ T7628] (syz.1.467,7628,0):ocfs2_check_set_options:1244 ERROR: Invalid heartbeat mount options
[  181.933100][ T7684] netlink: 8 bytes leftover after parsing attributes in process `syz.0.482'.
[  181.971223][ T7684] netlink: 4 bytes leftover after parsing attributes in process `syz.0.482'.
[  181.994014][ T7684] netlink: 'syz.0.482': attribute type 11 has an invalid length.
[  182.007467][ T7646] F2FS-fs (loop2): access invalid blkaddr:2048
[  182.014085][ T7646] CPU: 1 UID: 0 PID: 7646 Comm: syz.2.473 Not tainted 6.15.0-rc7-next-20250523-syzkaller #0 PREEMPT(full) 
[  182.014117][ T7646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  182.014143][ T7646] Call Trace:
[  182.014153][ T7646]  <TASK>
[  182.014162][ T7646]  dump_stack_lvl+0x189/0x250
[  182.014194][ T7646]  ? __pfx_dump_stack_lvl+0x10/0x10
[  182.014217][ T7646]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[  182.014245][ T7646]  ? stack_depot_save_flags+0x429/0x900
[  182.014279][ T7646]  __f2fs_is_valid_blkaddr+0xe52/0x14f0
[  182.014319][ T7646]  f2fs_map_blocks+0xd93/0x4510
[  182.014405][ T7646]  ? __pfx_f2fs_map_blocks+0x10/0x10
[  182.014437][ T7646]  ? xa_load+0x60/0x210
[  182.014497][ T7646]  ? xa_load+0x1ea/0x210
[  182.014537][ T7646]  f2fs_mpage_readpages+0xd16/0x1a30
[  182.014572][ T7646]  ? __pfx_css_rstat_updated+0x10/0x10
[  182.014621][ T7646]  ? __pfx_f2fs_mpage_readpages+0x10/0x10
[  182.014684][ T7646]  ? f2fs_readahead+0x177/0x330
[  182.014718][ T7646]  read_pages+0x177/0x580
[  182.014751][ T7646]  ? __pfx_read_pages+0x10/0x10
[  182.014785][ T7646]  ? filemap_add_folio+0x1af/0x270
[  182.014818][ T7646]  page_cache_ra_unbounded+0x6b0/0x7b0
[  182.014868][ T7646]  f2fs_readdir+0x49b/0xa60
[  182.014927][ T7646]  ? __pfx_f2fs_readdir+0x10/0x10
[  182.014969][ T7646]  ? end_current_label_crit_section+0x152/0x180
[  182.015005][ T7646]  ? iterate_dir+0x49f/0x770
[  182.015035][ T7646]  ? down_read_killable+0x1d1/0x350
[  182.015069][ T7646]  iterate_dir+0x5af/0x770
[  182.015108][ T7646]  __se_sys_getdents+0xe4/0x250
[  182.015154][ T7646]  ? __pfx___se_sys_getdents+0x10/0x10
[  182.015187][ T7646]  ? __pfx_filldir+0x10/0x10
[  182.015210][ T7646]  ? rcu_is_watching+0x15/0xb0
[  182.015237][ T7646]  ? do_syscall_64+0xbe/0x3b0
[  182.015267][ T7646]  do_syscall_64+0xfa/0x3b0
[  182.015291][ T7646]  ? lockdep_hardirqs_on+0x9c/0x150
[  182.015313][ T7646]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.015333][ T7646]  ? clear_bhb_loop+0x60/0xb0
[  182.015360][ T7646]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.015383][ T7646] RIP: 0033:0x7f985fb8e969
[  182.015415][ T7646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.015435][ T7646] RSP: 002b:00007f9860984038 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[  182.015458][ T7646] RAX: ffffffffffffffda RBX: 00007f985fdb5fa0 RCX: 00007f985fb8e969
[  182.015475][ T7646] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  182.015488][ T7646] RBP: 00007f985fc10ab1 R08: 0000000000000000 R09: 0000000000000000
[  182.015501][ T7646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  182.015515][ T7646] R13: 0000000000000000 R14: 00007f985fdb5fa0 R15: 00007ffecb7b7748
[  182.015550][ T7646]  </TASK>
[  182.388914][ T7628] syz.1.467 (7628) used greatest stack depth: 18984 bytes left
[  182.636559][ T7646] syz.2.473: attempt to access beyond end of device
[  182.636559][ T7646] loop2: rw=524288, sector=45064, nr_sectors = 8 limit=40427
[  182.653732][ T7646] syz.2.473: attempt to access beyond end of device
[  182.653732][ T7646] loop2: rw=0, sector=45064, nr_sectors = 8 limit=40427
[  182.742989][ T5840] ocfs2: Unmounting device (7,1) on (node local)
[  182.830687][ T5844] syz-executor: attempt to access beyond end of device
[  182.830687][ T5844] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  182.912615][ T5844] CPU: 1 UID: 0 PID: 5844 Comm: syz-executor Not tainted 6.15.0-rc7-next-20250523-syzkaller #0 PREEMPT(full) 
[  182.912644][ T5844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  182.912657][ T5844] Call Trace:
[  182.912665][ T5844]  <TASK>
[  182.912675][ T5844]  dump_stack_lvl+0x189/0x250
[  182.912705][ T5844]  ? __pfx_dump_stack_lvl+0x10/0x10
[  182.912726][ T5844]  ? __pfx_queue_work_on+0x10/0x10
[  182.912746][ T5844]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  182.912770][ T5844]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  182.912815][ T5844]  f2fs_handle_critical_error+0x37c/0x540
[  182.912851][ T5844]  f2fs_write_end_io+0x5b8/0x7e0
[  182.912882][ T5844]  ? __submit_merged_bio+0x1d1/0x6a0
[  182.912922][ T5844]  __submit_merged_bio+0x27a/0x6a0
[  182.912954][ T5844]  __submit_merged_write_cond+0x255/0x530
[  182.912987][ T5844]  f2fs_write_data_pages+0x261d/0x3000
[  182.913055][ T5844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  182.913082][ T5844]  ? is_bpf_text_address+0x26/0x2b0
[  182.913118][ T5844]  ? arch_stack_walk+0xfc/0x150
[  182.913198][ T5844]  ? __pfx_css_rstat_updated+0x10/0x10
[  182.913216][ T5844]  ? rcu_read_lock_sched_held+0x89/0x100
[  182.913247][ T5844]  ? __lock_acquire+0xab9/0xd20
[  182.913296][ T5844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  182.913328][ T5844]  do_writepages+0x32e/0x550
[  182.913375][ T5844]  ? do_raw_spin_unlock+0x122/0x240
[  182.913406][ T5844]  filemap_fdatawrite+0x191/0x230
[  182.913429][ T5844]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  182.913502][ T5844]  ? do_raw_spin_unlock+0x122/0x240
[  182.913532][ T5844]  f2fs_sync_dirty_inodes+0x31f/0x830
[  182.913579][ T5844]  f2fs_write_checkpoint+0x94a/0x1de0
[  182.913637][ T5844]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  182.913718][ T5844]  ? kill_f2fs_super+0x298/0x6c0
[  182.913757][ T5844]  kill_f2fs_super+0x2c3/0x6c0
[  182.913795][ T5844]  ? __pfx_kill_f2fs_super+0x10/0x10
[  182.913832][ T5844]  ? radix_tree_delete_item+0x2b6/0x400
[  182.913865][ T5844]  ? shrinker_free+0x2ce/0x3e0
[  182.913897][ T5844]  deactivate_locked_super+0xb9/0x130
[  182.913932][ T5844]  cleanup_mnt+0x425/0x4c0
[  182.913962][ T5844]  ? lockdep_hardirqs_on+0x9c/0x150
[  182.913989][ T5844]  task_work_run+0x1d4/0x260
[  182.914021][ T5844]  ? __pfx_task_work_run+0x10/0x10
[  182.914046][ T5844]  ? __x64_sys_umount+0x122/0x160
[  182.914073][ T5844]  ? exit_to_user_mode_loop+0x40/0x110
[  182.914109][ T5844]  exit_to_user_mode_loop+0xec/0x110
[  182.914141][ T5844]  do_syscall_64+0x2bd/0x3b0
[  182.914165][ T5844]  ? lockdep_hardirqs_on+0x9c/0x150
[  182.914189][ T5844]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.914211][ T5844]  ? clear_bhb_loop+0x60/0xb0
[  182.914237][ T5844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.914258][ T5844] RIP: 0033:0x7f985fb8fc97
[  182.914278][ T5844] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  182.914297][ T5844] RSP: 002b:00007ffecb7b69d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  182.914320][ T5844] RAX: 0000000000000000 RBX: 00007f985fc1089d RCX: 00007f985fb8fc97
[  182.914335][ T5844] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffecb7b6a90
[  182.914348][ T5844] RBP: 00007ffecb7b6a90 R08: 0000000000000000 R09: 0000000000000000
[  182.914361][ T5844] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffecb7b7b20
[  182.914375][ T5844] R13: 00007f985fc1089d R14: 000000000002c834 R15: 00007ffecb7b7b60
[  182.914411][ T5844]  </TASK>
[  182.914420][ T5844] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  183.487263][ T7693] loop5: detected capacity change from 0 to 32768
[  183.569811][ T7693] ocfs2: Slot 0 on device (7,5) was already allocated to this node!
[  183.658776][ T7693] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  184.299622][ T7697] loop6: detected capacity change from 0 to 40427
[  184.357183][ T7697] F2FS-fs (loop6): build fault injection type: 0x7
[  184.397848][ T7697] F2FS-fs (loop6): invalid crc value
[  184.797172][ T7697] F2FS-fs (loop6): Start checkpoint disabled!
[  184.825859][ T6322] ocfs2: Unmounting device (7,5) on (node local)
[  184.832419][ T7697] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  185.007236][ T5889] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  185.139231][ T1083] kworker/u8:5: attempt to access beyond end of device
[  185.139231][ T1083] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  185.195875][ T1083] CPU: 1 UID: 0 PID: 1083 Comm: kworker/u8:5 Not tainted 6.15.0-rc7-next-20250523-syzkaller #0 PREEMPT(full) 
[  185.195910][ T1083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  185.195933][ T1083] Workqueue: writeback wb_workfn (flush-7:6)
[  185.195972][ T1083] Call Trace:
[  185.195980][ T1083]  <TASK>
[  185.195990][ T1083]  dump_stack_lvl+0x189/0x250
[  185.196018][ T1083]  ? __pfx_dump_stack_lvl+0x10/0x10
[  185.196040][ T1083]  ? __pfx_queue_work_on+0x10/0x10
[  185.196060][ T1083]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  185.196084][ T1083]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  185.196121][ T1083]  f2fs_handle_critical_error+0x37c/0x540
[  185.196156][ T1083]  f2fs_write_end_io+0x5b8/0x7e0
[  185.196182][ T1083]  ? __submit_merged_bio+0x1d1/0x6a0
[  185.196215][ T1083]  __submit_merged_bio+0x27a/0x6a0
[  185.196242][ T1083]  __submit_merged_write_cond+0x255/0x530
[  185.196270][ T1083]  f2fs_write_data_pages+0x261d/0x3000
[  185.196324][ T1083]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  185.196361][ T1083]  ? unwind_next_frame+0xa5/0x2390
[  185.196412][ T1083]  ? ret_from_fork_asm+0x1a/0x30
[  185.196435][ T1083]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  185.196472][ T1083]  ? __lock_acquire+0xab9/0xd20
[  185.196504][ T1083]  ? __update_page_owner_handle+0x5a/0x570
[  185.196538][ T1083]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  185.196563][ T1083]  do_writepages+0x32e/0x550
[  185.196596][ T1083]  ? reacquire_held_locks+0x127/0x1d0
[  185.196612][ T1083]  ? writeback_sb_inodes+0x372/0x1000
[  185.196648][ T1083]  __writeback_single_inode+0x145/0xff0
[  185.196679][ T1083]  ? do_raw_spin_unlock+0x122/0x240
[  185.196704][ T1083]  writeback_sb_inodes+0x6b5/0x1000
[  185.196733][ T1083]  ? __lock_acquire+0xab9/0xd20
[  185.196778][ T1083]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  185.196844][ T1083]  ? rcu_is_watching+0x15/0xb0
[  185.196870][ T1083]  wb_writeback+0x43b/0xaf0
[  185.196906][ T1083]  ? queue_io+0x3b1/0x590
[  185.196945][ T1083]  ? __pfx_wb_writeback+0x10/0x10
[  185.196981][ T1083]  ? _raw_spin_unlock_irq+0x23/0x50
[  185.197004][ T1083]  wb_workfn+0x409/0xef0
[  185.197041][ T1083]  ? __pfx_wb_workfn+0x10/0x10
[  185.197068][ T1083]  ? __lock_acquire+0xab9/0xd20
[  185.197105][ T1083]  ? process_scheduled_works+0x9ef/0x17b0
[  185.197141][ T1083]  ? _raw_spin_unlock_irq+0x23/0x50
[  185.197158][ T1083]  ? process_scheduled_works+0x9ef/0x17b0
[  185.197187][ T1083]  ? process_scheduled_works+0x9ef/0x17b0
[  185.197219][ T1083]  process_scheduled_works+0xade/0x17b0
[  185.197275][ T1083]  ? __pfx_process_scheduled_works+0x10/0x10
[  185.197321][ T1083]  worker_thread+0x8a0/0xda0
[  185.197362][ T1083]  kthread+0x711/0x8a0
[  185.197388][ T1083]  ? __pfx_worker_thread+0x10/0x10
[  185.197405][ T1083]  ? __pfx_kthread+0x10/0x10
[  185.197433][ T1083]  ? _raw_spin_unlock_irq+0x23/0x50
[  185.197452][ T1083]  ? lockdep_hardirqs_on+0x9c/0x150
[  185.197471][ T1083]  ? __pfx_kthread+0x10/0x10
[  185.197498][ T1083]  ret_from_fork+0x3fc/0x770
[  185.197533][ T1083]  ? __pfx_ret_from_fork+0x10/0x10
[  185.197572][ T1083]  ? __switch_to_asm+0x39/0x70
[  185.197594][ T1083]  ? __switch_to_asm+0x33/0x70
[  185.197615][ T1083]  ? __pfx_kthread+0x10/0x10
[  185.197643][ T1083]  ret_from_fork_asm+0x1a/0x30
[  185.197684][ T1083]  </TASK>
[  185.197694][ T1083] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  185.205126][ T5889] usb 2-1: config 220 has an invalid interface number: 76 but max is 2
[  185.865907][ T5889] usb 2-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  185.942878][ T5889] usb 2-1: config 220 contains an unexpected descriptor of type 0x1, skipping
[  186.012940][ T5889] usb 2-1: config 220 has an invalid descriptor of length 1, skipping remainder of the config
[  186.045845][ T7744] loop5: detected capacity change from 0 to 1024
[  186.055578][ T5889] usb 2-1: config 220 has no interface number 2
[  186.061993][ T5889] usb 2-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  186.119173][ T5889] usb 2-1: config 220 interface 0 has no altsetting 0
[  186.146185][ T5889] usb 2-1: config 220 interface 76 has no altsetting 0
[  186.190882][ T5889] usb 2-1: config 220 interface 1 has no altsetting 0
[  186.208136][ T7744] hfsplus: bad catalog entry type
[  186.242104][ T5889] usb 2-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  186.271904][ T5889] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  186.305107][ T5889] usb 2-1: Product: syz
[  186.326564][ T5889] usb 2-1: Manufacturer: syz
[  186.338094][ T5889] usb 2-1: SerialNumber: syz
[  186.588165][ T5889] usb 2-1: selecting invalid altsetting 0
[  186.625975][ T5889] usb 2-1: Found UVC 7.01 device syz (8086:0b07)
[  186.649701][ T5889] usb 2-1: No valid video chain found.
[  186.689844][ T5889] usb 2-1: selecting invalid altsetting 0
[  186.725088][ T5889] usbtest 2-1:220.1: probe with driver usbtest failed with error -22
[  186.784438][ T5889] usb 2-1: USB disconnect, device number 7
[  186.805539][   T10] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  186.959706][ T7742] loop0: detected capacity change from 0 to 32768
[  186.996019][   T10] usb 7-1: Using ep0 maxpacket: 16
[  187.013549][   T10] usb 7-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  187.025299][ T7742] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  187.041192][   T10] usb 7-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  187.076172][   T10] usb 7-1: Product: syz
[  187.101246][   T10] usb 7-1: Manufacturer: syz
[  187.120597][   T10] usb 7-1: SerialNumber: syz
[  187.143666][   T10] usb 7-1: config 0 descriptor??
[  187.460290][   T10] usb 7-1: USB disconnect, device number 3
[  187.521135][ T7742] XFS (loop0): Ending clean mount
[  188.043500][ T5836] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  188.195172][ T2155] usb 2-1: new full-speed USB device number 8 using dummy_hcd
[  188.415676][ T2155] usb 2-1: config 0 has an invalid interface number: 65 but max is 0
[  188.423886][ T2155] usb 2-1: config 0 has no interface number 0
[  188.425854][ T7782] loop5: detected capacity change from 0 to 32768
[  188.475949][ T2155] usb 2-1: config 0 interface 65 has no altsetting 0
[  188.480992][ T7782] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.502 (7782)
[  188.507058][ T2155] usb 2-1: New USB device found, idVendor=07c4, idProduct=a4a5, bcdDevice=aa.d5
[  188.535601][ T2155] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  188.543699][ T2155] usb 2-1: Product: syz
[  188.594801][ T2155] usb 2-1: Manufacturer: syz
[  188.621648][ T7782] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  188.643107][ T2155] usb 2-1: SerialNumber: syz
[  188.685730][ T2155] usb 2-1: config 0 descriptor??
[  188.706077][ T7782] BTRFS info (device loop5): using sha256 (sha256-x86_64) checksum algorithm
[  188.747099][ T7782] BTRFS info (device loop5): using free-space-tree
[  188.914689][ T2155] usb-storage 2-1:0.65: USB Mass Storage device detected
[  188.964385][ T2155] usb-storage 2-1:0.65: Quirks match for vid 07c4 pid a4a5: 420
[  189.033831][ T7782] BTRFS info (device loop5): rebuilding free space tree
[  189.097623][ T2155] usb 2-1: USB disconnect, device number 8
[  189.106402][ T7796] loop2: detected capacity change from 0 to 32768
[  189.138712][ T7796] BTRFS: device /dev/loop2 (7:2) using temp-fsid 53bba0a7-adf1-498a-b984-4ea0c7dc5227
[  189.190743][ T7796] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.507 (7796)
[  189.295177][   T10] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  189.329449][ T7796] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  189.389745][ T7796] BTRFS info (device loop2): using sha256 (sha256-x86_64) checksum algorithm
[  189.423784][ T7796] BTRFS info (device loop2): using free-space-tree
[  189.493563][   T10] usb 7-1: New USB device found, idVendor=0547, idProduct=6801, bcdDevice=43.6f
[  189.529183][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  189.530813][ T6322] BTRFS info (device loop5): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  189.564336][   T10] usb 7-1: Product: syz
[  189.581916][ T7796] BTRFS info (device loop2): rebuilding free space tree
[  189.595175][   T10] usb 7-1: Manufacturer: syz
[  189.599864][   T10] usb 7-1: SerialNumber: syz
[  189.770122][ T7796] BTRFS info (device loop2): checking UUID tree
[  189.786698][   T10] usb 7-1: config 0 descriptor??
[  189.844900][   T10] gspca_main: touptek-2.14.0 probing 0547:6801
[  190.077238][ T5887] usb 7-1: USB disconnect, device number 4
[  190.299957][ T5844] BTRFS info (device loop2): last unmount of filesystem 53bba0a7-adf1-498a-b984-4ea0c7dc5227
[  190.886131][ T7878] netlink: 8 bytes leftover after parsing attributes in process `syz.6.521'.
[  190.945357][ T7878] netlink: 8 bytes leftover after parsing attributes in process `syz.6.521'.
[  191.554907][   T10] kernel read not supported for file /dsp (pid: 10 comm: kworker/0:1)
[  191.809181][ T7902] syz.5.528 uses obsolete (PF_INET,SOCK_PACKET)
[  191.830165][ T7867] loop0: detected capacity change from 0 to 32768
[  191.895512][ T7867] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.517 (7867)
[  191.990291][ T7867] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  192.055184][ T7867] BTRFS info (device loop0): using sha256 (sha256-x86_64) checksum algorithm
[  192.064094][ T7867] BTRFS info (device loop0): disk space caching is enabled
[  192.134582][ T7867] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  192.163968][ T7904] loop2: detected capacity change from 0 to 4096
[  192.332689][ T7919] overlay: Unknown parameter '
[  192.332689][ T7919] time
[  192.332689][ T7919] string
[  192.332689][ T7919] statistic
[  192.332689][ T7919] state
[  192.332689][ T7919] realm
[  192.332689][ T7919] rateest
[  192.332689][ T7919] quota
[  192.332689][ T7919] pkttype
[  192.332689][ T7919] physdev
[  192.332689][ T7919] cgroup
[  192.332689][ T7919] cgroup
[  192.332689][ T7919] cgroup
[  192.332689][ T7919] owner
[  192.332689][ T7919] nfacct
[  192.332689][ T7919] nfacct
[  192.332689][ T7919] mac
[  192.332689][ T7919] limit
[  192.332689][ T7919] ipvs
[  192.332689][ T7919] helper
[  192.332689][ T7919] devgroup
[  192.332689][ T7919] cpu
[  192.332689][ T7919] conntrack
[  192.332689][ T7919] conntrack
[  192.332689][ T7919] conntrack
[  192.332689][ T7919] connlabel
[  192.332689][ T7919] connbytes
[  192.332689][ T7919] comment
[  192.332689][ T7919] bpf
[  192.332689][ T7919] bpf
[  192.332689][ T7919] connmark
[  192.332689][ T7919] mark
[  192.332689][ T7919] rpfilter
[  192.332689][ T7919] ah
[  192.332689][ T7919] tcpmss
[  192.332689][ T7919] socket
[  192.332689][ T7919] socket
[  192.332689][ T7919] socket
[  192.332689][ T7919] socket
[  192.332689][ T7919] sctp
[  192.332689][ T7919] recent
[  192.332689][ T7919] recent
[  192.332689][ T7919] policy
[  192.332689][ T7919] osf
[  192.332689][ T7919] multiport
[  192.332689][ T7919] length
[  192.332689][ T7919] l2tp
[  192.332689][ T7919] iprange
[  192.332689][ T7919] ipcomp
[  192.332689][ T7919] ttl
[  192.332689][ T7919] hashlimit
[  192.332689][ T7919] hashlimit
[  192.332689][ T7919] hashlimit
[  192.332689][ T7919] esp
[  192.332689][ T7919] ecn
[  192.332689][ T7919] tos
[  192.332689][ T7919] dscp
[  192.332689][ T7919] dccp
[  192.332689][ T7919] connlimit
[  192.332689][ T7919] cluster
[  192.332689][ T7919] addrtype
[  192.332689][ T7919] addrtype
[  192.332689][ T7919] set
[  192.332689][ T7919] set
[  192.332689][ T7919] set
[  192.332689][ T7919] set
[  192.332689][ T7919] set
[  192.332689][ T7919] icmp
[  192.693029][ T7891] loop1: detected capacity change from 0 to 32768
[  192.785341][ T7904] ntfs3(loop2): ino=1a, mi_enum_attr
[  192.790733][ T7904] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  192.818534][ T7891] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.524 (7891)
[  192.862575][ T7867] BTRFS info (device loop0): rebuilding free space tree
[  192.922493][ T7891] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  192.969584][ T7891] BTRFS info (device loop1): using crc32c (crc32c-x86_64) checksum algorithm
[  192.994383][ T7867] BTRFS info (device loop0): disabling free space tree
[  193.006331][ T7867] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  193.024420][ T7867] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  193.040880][ T7891] BTRFS info (device loop1): disk space caching is enabled
[  193.095160][ T7891] BTRFS warning (device loop1): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  193.363808][ T5836] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  193.411962][ T7891] BTRFS info (device loop1): rebuilding free space tree
[  193.585898][ T7891] BTRFS info (device loop1): disabling free space tree
[  193.638332][ T7891] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  193.669680][ T7891] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  193.720653][ T7899] loop6: detected capacity change from 0 to 32768
[  193.880894][ T7899] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  194.255817][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  194.262739][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  194.389874][ T7971] BTRFS info (device loop1 state M): max_inline set to 4096
[  194.573255][ T7899] XFS (loop6): Ending clean mount
[  194.627779][ T5840] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  194.660994][ T7899] XFS (loop6): Quotacheck needed: Please wait.
[  194.839844][ T7899] XFS (loop6): Quotacheck: Done.
[  195.140391][ T6982] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  195.460182][ T7996] hsr0: entered promiscuous mode
[  196.255168][ T5850] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  196.445229][ T5850] usb 7-1: Using ep0 maxpacket: 32
[  196.458289][ T7994] loop0: detected capacity change from 0 to 32768
[  196.464133][ T5850] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 102, changing to 10
[  196.495178][ T7994] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.544 (7994)
[  196.501190][ T5850] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24624, setting to 1024
[  196.562146][ T5850] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  196.582388][ T7994] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  196.611341][ T5850] usb 7-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  196.635531][ T5850] usb 7-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  196.664146][ T7994] BTRFS info (device loop0): using sha256 (sha256-x86_64) checksum algorithm
[  196.674624][ T5850] usb 7-1: Product: syz
[  196.694925][ T5850] usb 7-1: Manufacturer: syz
[  196.699672][ T5850] usb 7-1: SerialNumber: syz
[  196.701750][ T7994] BTRFS info (device loop0): disk space caching is enabled
[  196.737325][ T8002] loop5: detected capacity change from 0 to 32768
[  196.754577][ T7994] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  196.783037][ T5850] input: appletouch as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/input/input9
[  196.796281][ T8002] BTRFS: device /dev/loop5 (7:5) using temp-fsid b8ba3eb0-3bdf-4f34-928f-7855884601f4
[  196.837394][ T8002] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.547 (8002)
[  196.901484][ T8003] loop1: detected capacity change from 0 to 32768
[  196.998079][ T8002] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  197.026394][ T8002] BTRFS info (device loop5): using sha256 (sha256-x86_64) checksum algorithm
[  197.072748][ T8002] BTRFS info (device loop5): using free-space-tree
[  197.086683][ T8003] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  197.115359][ T7994] BTRFS info (device loop0): rebuilding free space tree
[  197.311679][ T7994] BTRFS info (device loop0): disabling free space tree
[  197.364310][ T7994] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  197.455672][ T8003] XFS (loop1): Ending clean mount
[  197.461832][ T7994] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  197.545636][ T8003] XFS (loop1): User initiated shutdown received.
[  197.578133][ T8003] XFS (loop1): Metadata I/O Error (0x4) detected at xfs_fs_goingdown+0x71/0x150 (fs/xfs/xfs_fsops.c:472).  Shutting down filesystem.
[  197.619335][ T8003] XFS (loop1): Please unmount the filesystem and rectify the problem(s)
[  198.534839][    C0] appletouch 7-1:1.0: atp_complete: usb_submit_urb failed with result -19
[  198.535762][ T5840] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  198.543505][ T5887] usb 7-1: USB disconnect, device number 5
[  198.778874][ T5836] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  198.871791][ T5887] appletouch 7-1:1.0: input: appletouch disconnected
[  199.141571][ T6322] BTRFS info (device loop5): last unmount of filesystem b8ba3eb0-3bdf-4f34-928f-7855884601f4
[  200.115428][ T5826] usb 2-1: new full-speed USB device number 9 using dummy_hcd
[  200.307536][ T5826] usb 2-1: config 4 has an invalid interface number: 44 but max is 0
[  200.347828][ T5826] usb 2-1: config 4 has no interface number 0
[  200.371958][ T5826] usb 2-1: config 4 interface 44 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  200.393111][ T5826] usb 2-1: New USB device found, idVendor=1044, idProduct=7001, bcdDevice= 5.20
[  200.405702][ T5826] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  200.426573][ T5826] usb 2-1: Product: syz
[  200.434348][ T5826] usb 2-1: Manufacturer: syz
[  200.449253][ T5826] usb 2-1: SerialNumber: syz
[  200.470626][ T8078] loop2: detected capacity change from 0 to 32768
[  200.945182][ T5826] dvb-usb: found a 'Gigabyte U7000' in warm state.
[  200.956523][ T5826] dvb-usb: will use the device's hardware PID filter (table count: 32).
[  201.017212][ T5826] dvbdev: DVB: registering new adapter (Gigabyte U7000)
[  201.024309][ T5826] usb 2-1: media controller created
[  201.080686][ T5826] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  201.351844][ T5826] DVB: Unable to find symbol dib7000p_attach()
[  201.394200][ T5826] dvb-usb: no frontend was attached by 'Gigabyte U7000'
[  201.671170][ T5826] rc_core: IR keymap rc-dib0700-rc5 not found
[  201.692517][ T5826] Registered IR keymap rc-empty
[  201.716139][ T5826] dvb-usb: could not initialize remote control.
[  201.745199][ T5826] dvb-usb: Gigabyte U7000 successfully initialized and connected.
[  201.785664][ T5826] dib0700: There's no endpoint for remote controller
[  202.057839][   T10] usb 2-1: USB disconnect, device number 9
[  202.110600][   T10] dvb-usb: Gigabyte U7000 successfully deinitialized and disconnected.
[  202.319635][ T8155] loop2: detected capacity change from 0 to 764
[  202.355903][ T8155] rock: directory entry would overflow storage
[  202.370486][ T8155] rock: sig=0x4654, size=5, remaining=4
[  202.528925][ T8157] loop6: detected capacity change from 0 to 2048
[  202.623896][ T8157] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  202.795199][ T8134] loop0: detected capacity change from 0 to 40427
[  203.172336][   T30] audit: type=1326 audit(1748060596.616:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8174 comm="syz.1.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69e758e969 code=0x7ffc0000
[  203.221630][   T30] audit: type=1326 audit(1748060596.616:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8174 comm="syz.1.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69e758e969 code=0x7ffc0000
[  203.245361][   T30] audit: type=1326 audit(1748060596.626:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8174 comm="syz.1.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=444 compat=0 ip=0x7f69e758e969 code=0x7ffc0000
[  203.288963][ T8134] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  203.295434][   T30] audit: type=1326 audit(1748060596.626:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8174 comm="syz.1.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69e758e969 code=0x7ffc0000
[  203.411779][   T30] audit: type=1326 audit(1748060596.626:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8174 comm="syz.1.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69e758e969 code=0x7ffc0000
[  203.505426][   T30] audit: type=1326 audit(1748060596.626:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8174 comm="syz.1.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=446 compat=0 ip=0x7f69e758e969 code=0x7ffc0000
[  203.559499][ T5836] syz-executor: attempt to access beyond end of device
[  203.559499][ T5836] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  203.591107][   T30] audit: type=1326 audit(1748060596.626:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8174 comm="syz.1.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69e758e969 code=0x7ffc0000
[  203.626809][ T5836] CPU: 1 UID: 0 PID: 5836 Comm: syz-executor Not tainted 6.15.0-rc7-next-20250523-syzkaller #0 PREEMPT(full) 
[  203.626845][ T5836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  203.626858][ T5836] Call Trace:
[  203.626868][ T5836]  <TASK>
[  203.626877][ T5836]  dump_stack_lvl+0x189/0x250
[  203.626911][ T5836]  ? __pfx_dump_stack_lvl+0x10/0x10
[  203.626934][ T5836]  ? __pfx_queue_work_on+0x10/0x10
[  203.626954][ T5836]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  203.626979][ T5836]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  203.627015][ T5836]  f2fs_handle_critical_error+0x37c/0x540
[  203.627052][ T5836]  f2fs_write_end_io+0x5b8/0x7e0
[  203.627083][ T5836]  ? __submit_merged_bio+0x1d1/0x6a0
[  203.627125][ T5836]  __submit_merged_bio+0x27a/0x6a0
[  203.627159][ T5836]  __submit_merged_write_cond+0x255/0x530
[  203.627194][ T5836]  f2fs_write_data_pages+0x261d/0x3000
[  203.627271][ T5836]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  203.627361][ T5836]  ? folios_put_refs+0x559/0x640
[  203.627405][ T5836]  ? __lock_acquire+0xab9/0xd20
[  203.627446][ T5836]  ? do_raw_spin_lock+0x121/0x290
[  203.627483][ T5836]  ? do_raw_spin_unlock+0x122/0x240
[  203.627509][ T5836]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  203.627539][ T5836]  do_writepages+0x32e/0x550
[  203.627584][ T5836]  ? do_raw_spin_unlock+0x122/0x240
[  203.627615][ T5836]  filemap_fdatawrite+0x191/0x230
[  203.627637][ T5836]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  203.627709][ T5836]  ? do_raw_spin_unlock+0x122/0x240
[  203.627740][ T5836]  f2fs_sync_dirty_inodes+0x31f/0x830
[  203.627788][ T5836]  f2fs_write_checkpoint+0x94a/0x1de0
[  203.627846][ T5836]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  203.627928][ T5836]  ? kill_f2fs_super+0x298/0x6c0
[  203.627964][ T5836]  kill_f2fs_super+0x2c3/0x6c0
[  203.628003][ T5836]  ? __pfx_kill_f2fs_super+0x10/0x10
[  203.628032][ T5836]  ? radix_tree_delete_item+0x2b6/0x400
[  203.628064][ T5836]  ? shrinker_free+0x2ce/0x3e0
[  203.628094][ T5836]  deactivate_locked_super+0xb9/0x130
[  203.628128][ T5836]  cleanup_mnt+0x425/0x4c0
[  203.628157][ T5836]  ? lockdep_hardirqs_on+0x9c/0x150
[  203.628185][ T5836]  task_work_run+0x1d4/0x260
[  203.628216][ T5836]  ? __pfx_task_work_run+0x10/0x10
[  203.628245][ T5836]  ? __x64_sys_umount+0x122/0x160
[  203.628273][ T5836]  ? exit_to_user_mode_loop+0x40/0x110
[  203.628308][ T5836]  exit_to_user_mode_loop+0xec/0x110
[  203.628353][ T5836]  do_syscall_64+0x2bd/0x3b0
[  203.628378][ T5836]  ? lockdep_hardirqs_on+0x9c/0x150
[  203.628402][ T5836]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.628423][ T5836]  ? clear_bhb_loop+0x60/0xb0
[  203.628450][ T5836]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.628472][ T5836] RIP: 0033:0x7fc6f318fc97
[  203.628491][ T5836] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  203.628511][ T5836] RSP: 002b:00007ffd41e70088 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  203.628560][ T5836] RAX: 0000000000000000 RBX: 00007fc6f321089d RCX: 00007fc6f318fc97
[  203.628575][ T5836] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd41e70140
[  203.628590][ T5836] RBP: 00007ffd41e70140 R08: 0000000000000000 R09: 0000000000000000
[  203.628603][ T5836] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd41e711d0
[  203.628617][ T5836] R13: 00007fc6f321089d R14: 0000000000031a59 R15: 00007ffd41e71210
[  203.628654][ T5836]  </TASK>
[  203.628662][ T5836] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  203.785833][   T30] audit: type=1326 audit(1748060596.626:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8174 comm="syz.1.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69e758e969 code=0x7ffc0000
[  203.955535][ T5850] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  204.006880][   T30] audit: type=1800 audit(1748060596.826:16): pid=8134 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.570" name="bus" dev="loop0" ino=10 res=0 errno=0
[  204.257985][ T5850] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  204.285175][ T5850] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  204.313800][ T5850] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  204.366019][ T5850] usb 6-1: New USB device found, idVendor=056a, idProduct=010e, bcdDevice= 0.00
[  204.389272][ T5850] usb 6-1: New USB device strings: Mfr=0, Product=32, SerialNumber=0
[  204.417269][ T5850] usb 6-1: Product: syz
[  204.430327][ T5850] usb 6-1: config 0 descriptor??
[  204.647250][ T8180] loop6: detected capacity change from 0 to 40427
[  204.710586][ T8180] F2FS-fs (loop6): build fault injection rate: 690
[  204.737648][ T8180] F2FS-fs (loop6): Image doesn't support compression
[  204.744479][ T8180] F2FS-fs (loop6): heap/no_heap options were deprecated
[  204.767400][ T8180] F2FS-fs (loop6): Image doesn't support compression
[  204.823483][ T8180] F2FS-fs (loop6): invalid crc value
[  204.878922][ T5850] hid (null): nested delimiters
[  204.897598][ T8205] loop1: detected capacity change from 0 to 1024
[  204.919937][ T5850] wacom 0003:056A:010E.0003: nested delimiters
[  204.985351][ T5850] wacom 0003:056A:010E.0003: item 0 2 2 10 parsing failed
[  204.993381][ T5850] wacom 0003:056A:010E.0003: parse failed
[  205.075327][ T5850] wacom 0003:056A:010E.0003: probe with driver wacom failed with error -22
[  205.158699][ T5850] usb 6-1: USB disconnect, device number 2
[  205.288397][ T8180] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  205.422604][ T8217] loop1: detected capacity change from 0 to 128
[  205.442749][ T8180] syz.6.591: attempt to access beyond end of device
[  205.442749][ T8180] loop6: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  205.460426][ T8217] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  205.484845][ T8180] CPU: 1 UID: 0 PID: 8180 Comm: syz.6.591 Not tainted 6.15.0-rc7-next-20250523-syzkaller #0 PREEMPT(full) 
[  205.484880][ T8180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  205.484893][ T8180] Call Trace:
[  205.484904][ T8180]  <TASK>
[  205.484914][ T8180]  dump_stack_lvl+0x189/0x250
[  205.484950][ T8180]  ? __pfx_dump_stack_lvl+0x10/0x10
[  205.484979][ T8180]  ? __pfx_queue_work_on+0x10/0x10
[  205.484997][ T8180]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  205.485023][ T8180]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  205.485069][ T8180]  f2fs_handle_critical_error+0x37c/0x540
[  205.485112][ T8180]  f2fs_write_end_io+0x5b8/0x7e0
[  205.485145][ T8180]  ? __submit_merged_bio+0x1d1/0x6a0
[  205.485192][ T8180]  __submit_merged_bio+0x27a/0x6a0
[  205.485219][ T8180]  ? up_write+0x1c4/0x420
[  205.485252][ T8180]  __submit_merged_write_cond+0x44c/0x530
[  205.485292][ T8180]  f2fs_sync_node_pages+0x1861/0x19f0
[  205.485352][ T8180]  ? __pfx_f2fs_sync_node_pages+0x10/0x10
[  205.485418][ T8180]  ? f2fs_write_checkpoint+0xe33/0x1de0
[  205.485457][ T8180]  ? up_write+0x1c4/0x420
[  205.485476][ T8180]  ? do_raw_spin_unlock+0x122/0x240
[  205.485510][ T8180]  f2fs_write_checkpoint+0xe5f/0x1de0
[  205.485578][ T8180]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  205.485673][ T8180]  ? __pfx_down_write+0x10/0x10
[  205.485720][ T8180]  f2fs_issue_checkpoint+0x328/0x490
[  205.485760][ T8180]  ? __pfx_f2fs_issue_checkpoint+0x10/0x10
[  205.485796][ T8180]  ? __lock_acquire+0xab9/0xd20
[  205.485847][ T8180]  ? __up_read+0x280/0x680
[  205.485886][ T8180]  ? f2fs_sync_fs+0x200/0x3d0
[  205.485915][ T8180]  f2fs_do_sync_file+0x86a/0x1860
[  205.485955][ T8180]  ? is_bpf_text_address+0x26/0x2b0
[  205.485980][ T8180]  ? __pfx_f2fs_do_sync_file+0x10/0x10
[  205.486082][ T8180]  ? down_write+0x162/0x1f0
[  205.486111][ T8180]  ? __pfx_down_write+0x10/0x10
[  205.486142][ T8180]  ? sb_start_write+0x114/0x1c0
[  205.486175][ T8180]  ? mnt_want_write_file+0x164/0x200
[  205.486210][ T8180]  __f2fs_ioctl+0x3a51/0xb610
[  205.486264][ T8180]  ? do_vfs_ioctl+0xe80/0x1990
[  205.486303][ T8180]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  205.486346][ T8180]  ? kasan_quarantine_put+0xdd/0x220
[  205.486387][ T8180]  ? __pfx___f2fs_ioctl+0x10/0x10
[  205.486414][ T8180]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  205.486447][ T8180]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  205.486480][ T8180]  ? tomoyo_path_number_perm+0x4e2/0x5a0
[  205.486510][ T8180]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  205.486545][ T8180]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  205.486603][ T8180]  ? __lock_acquire+0xab9/0xd20
[  205.486667][ T8180]  ? __fget_files+0x2a/0x420
[  205.486697][ T8180]  ? __fget_files+0x2a/0x420
[  205.486722][ T8180]  ? __fget_files+0x3a0/0x420
[  205.486746][ T8180]  ? __fget_files+0x2a/0x420
[  205.486776][ T8180]  ? f2fs_ioctl+0x135/0x250
[  205.486797][ T8180]  ? __pfx_f2fs_ioctl+0x10/0x10
[  205.486817][ T8180]  __se_sys_ioctl+0xfc/0x170
[  205.486855][ T8180]  do_syscall_64+0xfa/0x3b0
[  205.486880][ T8180]  ? lockdep_hardirqs_on+0x9c/0x150
[  205.486904][ T8180]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.486927][ T8180]  ? clear_bhb_loop+0x60/0xb0
[  205.486956][ T8180]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.486978][ T8180] RIP: 0033:0x7f048c18e969
[  205.486999][ T8180] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.487019][ T8180] RSP: 002b:00007f048d0c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  205.487043][ T8180] RAX: ffffffffffffffda RBX: 00007f048c3b5fa0 RCX: 00007f048c18e969
[  205.487060][ T8180] RDX: 0000000000000000 RSI: 000000000000f502 RDI: 0000000000000004
[  205.487081][ T8180] RBP: 00007f048c210ab1 R08: 0000000000000000 R09: 0000000000000000
[  205.487096][ T8180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  205.487109][ T8180] R13: 0000000000000000 R14: 00007f048c3b5fa0 R15: 00007fff285535d8
[  205.487151][ T8180]  </TASK>
[  205.509766][ T8218] loop0: detected capacity change from 0 to 256
[  205.531594][ T8180] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  205.697191][ T8217] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  205.756670][ T8218] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  205.815359][ T8180] CPU: 0 UID: 0 PID: 8180 Comm: syz.6.591 Not tainted 6.15.0-rc7-next-20250523-syzkaller #0 PREEMPT(full) 
[  205.815398][ T8180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  205.815414][ T8180] Call Trace:
[  205.815424][ T8180]  <TASK>
[  205.815434][ T8180]  dump_stack_lvl+0x189/0x250
[  205.815471][ T8180]  ? __pfx_dump_stack_lvl+0x10/0x10
[  205.815498][ T8180]  ? __pfx_queue_work_on+0x10/0x10
[  205.815519][ T8180]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  205.815547][ T8180]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  205.815591][ T8180]  f2fs_handle_critical_error+0x37c/0x540
[  205.815635][ T8180]  f2fs_write_end_io+0x5b8/0x7e0
[  205.815671][ T8180]  ? __submit_merged_bio+0x1d1/0x6a0
[  205.815723][ T8180]  __submit_merged_bio+0x27a/0x6a0
[  205.815751][ T8180]  ? up_write+0x1c4/0x420
[  205.815795][ T8180]  __submit_merged_write_cond+0x44c/0x530
[  205.815839][ T8180]  f2fs_sync_node_pages+0x1861/0x19f0
[  205.815908][ T8180]  ? __pfx_f2fs_sync_node_pages+0x10/0x10
[  205.815983][ T8180]  ? f2fs_write_checkpoint+0xe33/0x1de0
[  205.816030][ T8180]  ? up_write+0x1c4/0x420
[  205.816053][ T8180]  ? do_raw_spin_unlock+0x122/0x240
[  205.816093][ T8180]  f2fs_write_checkpoint+0xe5f/0x1de0
[  205.816168][ T8180]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  205.816269][ T8180]  ? __pfx_down_write+0x10/0x10
[  205.816320][ T8180]  f2fs_issue_checkpoint+0x328/0x490
[  205.816363][ T8180]  ? __pfx_f2fs_issue_checkpoint+0x10/0x10
[  205.816402][ T8180]  ? __lock_acquire+0xab9/0xd20
[  205.816460][ T8180]  ? __up_read+0x280/0x680
[  205.816501][ T8180]  ? f2fs_sync_fs+0x200/0x3d0
[  205.816536][ T8180]  f2fs_do_sync_file+0x86a/0x1860
[  205.816581][ T8180]  ? is_bpf_text_address+0x26/0x2b0
[  205.816609][ T8180]  ? __pfx_f2fs_do_sync_file+0x10/0x10
[  205.816711][ T8180]  ? down_write+0x162/0x1f0
[  205.816742][ T8180]  ? __pfx_down_write+0x10/0x10
[  205.816777][ T8180]  ? sb_start_write+0x114/0x1c0
[  205.816821][ T8180]  ? mnt_want_write_file+0x164/0x200
[  205.816860][ T8180]  __f2fs_ioctl+0x3a51/0xb610
[  205.816922][ T8180]  ? do_vfs_ioctl+0xe80/0x1990
[  205.816965][ T8180]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  205.817014][ T8180]  ? kasan_quarantine_put+0xdd/0x220
[  205.817059][ T8180]  ? __pfx___f2fs_ioctl+0x10/0x10
[  205.817087][ T8180]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  205.817125][ T8180]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  205.817161][ T8180]  ? tomoyo_path_number_perm+0x4e2/0x5a0
[  205.817194][ T8180]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  205.817231][ T8180]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  205.817295][ T8180]  ? __lock_acquire+0xab9/0xd20
[  205.817365][ T8180]  ? __fget_files+0x2a/0x420
[  205.817398][ T8180]  ? __fget_files+0x2a/0x420
[  205.817425][ T8180]  ? __fget_files+0x3a0/0x420
[  205.817453][ T8180]  ? __fget_files+0x2a/0x420
[  205.817487][ T8180]  ? f2fs_ioctl+0x135/0x250
[  205.817511][ T8180]  ? __pfx_f2fs_ioctl+0x10/0x10
[  205.817534][ T8180]  __se_sys_ioctl+0xfc/0x170
[  205.817576][ T8180]  do_syscall_64+0xfa/0x3b0
[  205.817604][ T8180]  ? lockdep_hardirqs_on+0x9c/0x150
[  205.817632][ T8180]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.817657][ T8180]  ? clear_bhb_loop+0x60/0xb0
[  205.817689][ T8180]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.817712][ T8180] RIP: 0033:0x7f048c18e969
[  205.817736][ T8180] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.817757][ T8180] RSP: 002b:00007f048d0c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  205.817784][ T8180] RAX: ffffffffffffffda RBX: 00007f048c3b5fa0 RCX: 00007f048c18e969
[  205.817809][ T8180] RDX: 0000000000000000 RSI: 000000000000f502 RDI: 0000000000000004
[  205.817824][ T8180] RBP: 00007f048c210ab1 R08: 0000000000000000 R09: 0000000000000000
[  205.817839][ T8180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  205.817853][ T8180] R13: 0000000000000000 R14: 00007f048c3b5fa0 R15: 00007fff285535d8
[  205.817898][ T8180]  </TASK>
[  205.817909][ T8180] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  206.628379][ T3525] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  207.188636][ T8255] loop2: detected capacity change from 0 to 64
[  207.295082][   T30] audit: type=1800 audit(1748060600.726:17): pid=8255 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.613" name="file1" dev="loop2" ino=18 res=0 errno=0
[  207.950662][ T8269] loop6: detected capacity change from 0 to 512
[  208.049750][ T8269] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  208.096734][ T8244] loop1: detected capacity change from 0 to 40427
[  208.115201][ T8269] ext4 filesystem being mounted at /37/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  208.151703][ T8244] F2FS-fs (loop1): build fault injection rate: 690
[  208.184891][ T8277] netlink: 'syz.2.621': attribute type 4 has an invalid length.
[  208.219655][ T8244] F2FS-fs (loop1): invalid crc value
[  208.274199][   T30] audit: type=1800 audit(1748060601.716:18): pid=8269 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.619" name="file1" dev="loop6" ino=15 res=0 errno=0
[  208.344709][   T30] audit: type=1800 audit(1748060601.766:19): pid=8269 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.619" name="file2" dev="loop6" ino=16 res=0 errno=0
[  208.484527][ T6982] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.613835][ T8244] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  208.696967][   T30] audit: type=1800 audit(1748060602.136:20): pid=8244 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.606" name="file1" dev="loop1" ino=10 res=0 errno=0
[  208.809119][ T5840] syz-executor: attempt to access beyond end of device
[  208.809119][ T5840] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  208.858734][ T5840] CPU: 1 UID: 0 PID: 5840 Comm: syz-executor Not tainted 6.15.0-rc7-next-20250523-syzkaller #0 PREEMPT(full) 
[  208.858766][ T5840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  208.858789][ T5840] Call Trace:
[  208.858798][ T5840]  <TASK>
[  208.858807][ T5840]  dump_stack_lvl+0x189/0x250
[  208.858839][ T5840]  ? __pfx_dump_stack_lvl+0x10/0x10
[  208.858860][ T5840]  ? __pfx_queue_work_on+0x10/0x10
[  208.858879][ T5840]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  208.858903][ T5840]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  208.858937][ T5840]  f2fs_handle_critical_error+0x37c/0x540
[  208.858971][ T5840]  f2fs_write_end_io+0x5b8/0x7e0
[  208.859002][ T5840]  ? __submit_merged_bio+0x1d1/0x6a0
[  208.859043][ T5840]  __submit_merged_bio+0x27a/0x6a0
[  208.859074][ T5840]  __submit_merged_write_cond+0x255/0x530
[  208.859107][ T5840]  f2fs_write_data_pages+0x261d/0x3000
[  208.859134][ T5840]  ? __lock_acquire+0xab9/0xd20
[  208.859198][ T5840]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  208.859278][ T5840]  ? stack_depot_save_flags+0x40/0x900
[  208.859321][ T5840]  ? __lock_acquire+0xab9/0xd20
[  208.859360][ T5840]  ? do_raw_spin_lock+0x121/0x290
[  208.859422][ T5840]  ? do_raw_spin_unlock+0x122/0x240
[  208.859448][ T5840]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  208.859480][ T5840]  do_writepages+0x32e/0x550
[  208.859526][ T5840]  ? do_raw_spin_unlock+0x122/0x240
[  208.859557][ T5840]  filemap_fdatawrite+0x191/0x230
[  208.859580][ T5840]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  208.859654][ T5840]  ? do_raw_spin_unlock+0x122/0x240
[  208.859684][ T5840]  f2fs_sync_dirty_inodes+0x31f/0x830
[  208.859733][ T5840]  f2fs_write_checkpoint+0x94a/0x1de0
[  208.859799][ T5840]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  208.859875][ T5840]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  208.859918][ T5840]  ? kfree+0x18e/0x440
[  208.859938][ T5840]  ? kill_f2fs_super+0x298/0x6c0
[  208.859977][ T5840]  kill_f2fs_super+0x2c3/0x6c0
[  208.860016][ T5840]  ? __pfx_kill_f2fs_super+0x10/0x10
[  208.860045][ T5840]  ? radix_tree_delete_item+0x2b6/0x400
[  208.860077][ T5840]  ? shrinker_free+0x2ce/0x3e0
[  208.860109][ T5840]  deactivate_locked_super+0xb9/0x130
[  208.860144][ T5840]  cleanup_mnt+0x425/0x4c0
[  208.860174][ T5840]  ? lockdep_hardirqs_on+0x9c/0x150
[  208.860202][ T5840]  task_work_run+0x1d4/0x260
[  208.860233][ T5840]  ? __pfx_task_work_run+0x10/0x10
[  208.860258][ T5840]  ? __x64_sys_umount+0x122/0x160
[  208.860285][ T5840]  ? exit_to_user_mode_loop+0x40/0x110
[  208.860320][ T5840]  exit_to_user_mode_loop+0xec/0x110
[  208.860352][ T5840]  do_syscall_64+0x2bd/0x3b0
[  208.860378][ T5840]  ? lockdep_hardirqs_on+0x9c/0x150
[  208.860401][ T5840]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.860422][ T5840]  ? clear_bhb_loop+0x60/0xb0
[  208.860449][ T5840]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.860470][ T5840] RIP: 0033:0x7f69e758fc97
[  208.860490][ T5840] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  208.860509][ T5840] RSP: 002b:00007ffc743c8f78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  208.860532][ T5840] RAX: 0000000000000000 RBX: 00007f69e761089d RCX: 00007f69e758fc97
[  208.860547][ T5840] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc743c9030
[  208.860560][ T5840] RBP: 00007ffc743c9030 R08: 0000000000000000 R09: 0000000000000000
[  208.860574][ T5840] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc743ca0c0
[  208.860588][ T5840] R13: 00007f69e761089d R14: 0000000000032f20 R15: 00007ffc743ca100
[  208.860622][ T5840]  </TASK>
[  208.860632][ T5840] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  209.334580][ T8274] loop5: detected capacity change from 0 to 32768
[  209.416596][ T8274] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.620 (8274)
[  209.467734][ T8274] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  209.508062][ T8274] BTRFS info (device loop5): using crc32c (crc32c-x86_64) checksum algorithm
[  209.534379][ T8274] BTRFS info (device loop5): using free-space-tree
[  209.568611][ T8296] mmap: syz.0.630 (8296) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  210.224004][ T6322] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  210.547803][ T8327] netlink: 8 bytes leftover after parsing attributes in process `syz.1.625'.
[  211.401129][ T8320] loop2: detected capacity change from 0 to 32768
[  211.656060][ T8320] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  212.251518][ T5844] ocfs2: Unmounting device (7,2) on (node local)
[  212.724445][ T8368] loop1: detected capacity change from 0 to 64
[  213.149427][ T8348] loop5: detected capacity change from 0 to 32768
[  213.224930][ T8348] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.641 (8348)
[  213.304841][ T8348] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  213.332771][ T8348] BTRFS info (device loop5): using sha256 (sha256-x86_64) checksum algorithm
[  213.366657][ T8348] BTRFS info (device loop5): using free-space-tree
[  213.475260][ T8382] loop0: detected capacity change from 0 to 4096
[  213.725293][ T8407] netlink: 8 bytes leftover after parsing attributes in process `syz.2.653'.
[  214.087199][ T6322] BTRFS info (device loop5): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  214.495179][ T8428] netlink: 12 bytes leftover after parsing attributes in process `syz.1.660'.
[  215.637704][ T8459] netlink: 8 bytes leftover after parsing attributes in process `syz.5.669'.
[  215.726070][ T8462] loop0: detected capacity change from 0 to 1024
[  215.858011][ T8462] hfsplus: walked past end of dir
[  215.911421][ T8469] loop5: detected capacity change from 0 to 64
[  216.011517][ T8469] hfs: bad catalog entry type 0
[  216.212269][ T8473] loop0: detected capacity change from 0 to 1024
[  216.252138][ T8442] loop1: detected capacity change from 0 to 32768
[  216.303427][ T8442] bcachefs (/dev/loop1): error validating superblock: Invalid superblock section replicas_v0: no devices in entry journal: 1/0 []
[  216.303427][ T8442] replicas_v0 (size 24):
[  216.303427][ T8442] btree: 1 [0] journal: 1 [0] user: 1 [65] journal: 0 []
[  216.303427][ T8442] 
[  216.430231][ T8442] bcachefs: bch2_fs_get_tree() error: invalid_replicas_entry
[  216.501456][ T8442] bcachefs (/dev/fb0): error reading superblock: error opening /dev/fb0: ENOTBLK
[  216.550355][ T8442] bcachefs: bch2_fs_get_tree() error: ENOTBLK
[  216.654331][ T8478] loop5: detected capacity change from 0 to 4096
[  216.936756][ T8478] ntfs3(loop5): Failed to initialize $Extend/$ObjId.
[  217.002219][ T8478] ntfs3(loop5): ino=1e, "file1" attr_set_size
[  217.177429][ T5850] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  217.365511][ T5850] usb 2-1: Using ep0 maxpacket: 16
[  217.412191][ T5850] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  217.452467][ T5850] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  217.486770][ T5850] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  217.508620][ T5850] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  217.540856][ T8505] netlink: 12 bytes leftover after parsing attributes in process `syz.6.684'.
[  217.550568][ T5850] usb 2-1: Product: syz
[  217.554782][ T5850] usb 2-1: Manufacturer: syz
[  217.571666][ T5850] usb 2-1: SerialNumber: syz
[  217.643192][ T5850] usb 2-1: config 0 descriptor??
[  217.700932][ T5850] em28xx 2-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  217.745115][ T5850] em28xx 2-1:0.0: Audio interface 0 found (Vendor Class)
[  217.799770][ T8510] netlink: 32 bytes leftover after parsing attributes in process `syz.5.686'.
[  217.842242][ T8510] netlink: 32 bytes leftover after parsing attributes in process `syz.5.686'.
[  218.121289][ T8520] netlink: 12 bytes leftover after parsing attributes in process `syz.5.689'.
[  218.350468][ T5850] em28xx 2-1:0.0: chip ID is em2874
[  218.580583][ T5850] usb 2-1: USB disconnect, device number 10
[  218.588349][ T5850] em28xx 2-1:0.0: Disconnecting em28xx
[  218.631926][ T5850] em28xx 2-1:0.0: Freeing device
[  219.008994][ T8538] loop0: detected capacity change from 0 to 512
[  219.093023][ T8538] EXT4-fs (loop0): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  219.354730][ T8538] Quota error (device loop0): v2_read_file_info: Free block number 58381 out of range (1, 6).
[  219.396090][ T8538] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  219.492386][ T8556] loop5: detected capacity change from 0 to 64
[  219.509695][ T8549] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[  219.549724][ T8549] Quota error (device loop0): v2_read_file_info: Free block number 58381 out of range (1, 6).
[  219.584387][ T8549] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  219.776334][ T8562] loop6: detected capacity change from 0 to 1024
[  219.788121][ T5836] EXT4-fs (loop0): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  220.056413][   T49] hfsplus: b-tree write err: -5, ino 4
[  220.125255][ T8528] loop2: detected capacity change from 0 to 32768
[  220.167258][ T8528] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.691 (8528)
[  220.250940][ T8528] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  220.302499][ T8528] BTRFS info (device loop2): using sha256 (sha256-x86_64) checksum algorithm
[  220.343201][ T8528] BTRFS info (device loop2): using free-space-tree
[  220.376391][ T8573] loop0: detected capacity change from 0 to 128
[  220.480290][ T8589] loop5: detected capacity change from 0 to 256
[  220.531346][ T8528] BTRFS info (device loop2): rebuilding free space tree
[  220.596781][ T8589] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x46ae1815, utbl_chksum : 0xe619d30d)
[  220.635378][ T8589] exFAT-fs (loop5): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  220.864351][ T8597] ptrace attach of "./syz-executor exec"[5836] was attempted by "./syz-executor exec"[8597]
[  221.002989][ T8553] loop1: detected capacity change from 0 to 32768
[  221.093754][   T30] audit: type=1326 audit(1748060614.526:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8569 comm="syz.6.704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f048c18e969 code=0x7fc00000
[  221.115916][    C0] vkms_vblank_simulate: vblank timer overrun
[  221.184483][   T30] audit: type=1800 audit(1748060614.596:22): pid=8553 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.699" name="file1" dev="loop1" ino=4 res=0 errno=0
[  221.380619][   T13] BTRFS info (device loop2): qgroup scan completed (inconsistency flag cleared)
[  221.391204][ T5844] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  326.704933][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  326.711956][    C0] rcu: 	(detected by 0, t=10502 jiffies, g=27161, q=1182 ncpus=2)
[  326.719782][    C0] rcu: All QSes seen, last rcu_preempt kthread activity 10500 (4294969791-4294959291), jiffies_till_next_fqs=1, root ->qsmask 0x0
[  326.733168][    C0] rcu: rcu_preempt kthread starved for 10500 jiffies! g27161 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[  326.744378][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  326.754361][    C0] rcu: RCU grace-period kthread stack dump:
[  326.760260][    C0] task:rcu_preempt     state:R  running task     stack:26824 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00004000
[  326.773801][    C0] Call Trace:
[  326.777104][    C0]  <TASK>
[  326.780588][    C0]  __schedule+0x16f5/0x4d00
[  326.785134][    C0]  ? do_raw_spin_unlock+0x122/0x240
[  326.790377][    C0]  ? schedule+0x165/0x360
[  326.794732][    C0]  ? __lock_acquire+0xab9/0xd20
[  326.799614][    C0]  ? __pfx___schedule+0x10/0x10
[  326.804508][    C0]  ? schedule+0x91/0x360
[  326.808779][    C0]  schedule+0x165/0x360
[  326.812964][    C0]  schedule_timeout+0x12b/0x270
[  326.817851][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  326.823254][    C0]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  326.829173][    C0]  ? __pfx_process_timeout+0x10/0x10
[  326.834497][    C0]  ? prepare_to_swait_event+0x341/0x380
[  326.840078][    C0]  rcu_gp_fqs_loop+0x301/0x1540
[  326.844960][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  326.850201][    C0]  ? __pfx_rcu_gp_init+0x10/0x10
[  326.855175][    C0]  ? __pfx_rcu_watching_snap_save+0x10/0x10
[  326.861106][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  326.866428][    C0]  ? _raw_spin_unlock_irq+0x2e/0x50
[  326.871664][    C0]  ? finish_swait+0xcd/0x1f0
[  326.876288][    C0]  rcu_gp_kthread+0x99/0x390
[  326.880917][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  326.886238][    C0]  ? __kthread_parkme+0x7b/0x200
[  326.891200][    C0]  ? __kthread_parkme+0x1a1/0x200
[  326.896261][    C0]  kthread+0x711/0x8a0
[  326.900365][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  326.905598][    C0]  ? __pfx_kthread+0x10/0x10
[  326.910225][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  326.915456][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  326.920681][    C0]  ? __pfx_kthread+0x10/0x10
[  326.925303][    C0]  ret_from_fork+0x3fc/0x770
[  326.929939][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  326.935098][    C0]  ? __switch_to_asm+0x39/0x70
[  326.939889][    C0]  ? __switch_to_asm+0x33/0x70
[  326.944678][    C0]  ? __pfx_kthread+0x10/0x10
[  326.949303][    C0]  ret_from_fork_asm+0x1a/0x30
[  326.954115][    C0]  </TASK>
[  326.957152][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  326.963507][    C0] Sending NMI from CPU 0 to CPUs 1:
[  326.968761][    C1] NMI backtrace for cpu 1
[  326.968837][    C1] CPU: 1 UID: 0 PID: 8617 Comm: udevd Not tainted 6.15.0-rc7-next-20250523-syzkaller #0 PREEMPT(full) 
[  326.968859][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  326.968871][    C1] RIP: 0010:lock_acquire+0xe/0x360
[  326.968903][    C1] Code: 98 29 c9 09 cc 0f 1f 80 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 55 41 57 41 56 41 55 41 54 53 <48> 83 ec 60 4d 89 ce 45 89 c7 41 89 cc 89 54 24 04 89 f3 49 89 fd
[  326.968920][    C1] RSP: 0018:ffffc90000a08ba0 EFLAGS: 00000046
[  326.968936][    C1] RAX: 0000000000010002 RBX: ffffffff99cafb58 RCX: 0000000000000000
[  326.968948][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff99cafb70
[  326.968960][    C1] RBP: ffffc90000a08c78 R08: 0000000000000001 R09: 0000000000000000
[  326.968991][    C1] R10: ffffc90000a08ca0 R11: fffff52000141196 R12: dffffc0000000000
[  326.969004][    C1] R13: dffffc0000000000 R14: 0000000000000802 R15: 1ffff9200014117c
[  326.969018][    C1] FS:  0000000000000000(0000) GS:ffff888125d56000(0000) knlGS:0000000000000000
[  326.969032][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  326.969044][    C1] CR2: 00007f0095226000 CR3: 0000000077088000 CR4: 00000000003526f0
[  326.969060][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  326.969071][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  326.969082][    C1] Call Trace:
[  326.969091][    C1]  <IRQ>
[  326.969103][    C1]  _raw_spin_lock_irqsave+0xa7/0xf0
[  326.969130][    C1]  ? debug_object_activate+0xbb/0x420
[  326.969159][    C1]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[  326.969177][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  326.969290][    C1]  debug_object_activate+0xbb/0x420
[  326.969337][    C1]  enqueue_hrtimer+0x30/0x3a0
[  326.969360][    C1]  __hrtimer_run_queues+0x656/0xc60
[  326.969399][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  326.969427][    C1]  ? read_tsc+0x9/0x20
[  326.969456][    C1]  hrtimer_interrupt+0x45b/0xaa0
[  326.969501][    C1]  __sysvec_apic_timer_interrupt+0x10b/0x410
[  326.969521][    C1]  sysvec_apic_timer_interrupt+0xa1/0xc0
[  326.969544][    C1]  </IRQ>
[  326.969550][    C1]  <TASK>
[  326.969557][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  326.969578][    C1] RIP: 0010:lock_acquire+0x175/0x360
[  326.969605][    C1] Code: 00 00 00 00 9c 8f 44 24 30 f7 44 24 30 00 02 00 00 0f 85 cd 00 00 00 f7 44 24 08 00 02 00 00 74 01 fb 65 48 8b 05 4b 7e fe 10 <48> 3b 44 24 58 0f 85 f2 00 00 00 48 83 c4 60 5b 41 5c 41 5d 41 5e
[  326.969621][    C1] RSP: 0018:ffffc9001043f118 EFLAGS: 00000206
[  326.969639][    C1] RAX: dfbd3de38de11600 RBX: 0000000000000000 RCX: dfbd3de38de11600
[  326.969653][    C1] RDX: 0000000000000000 RSI: ffffffff8db6b987 RDI: ffffffff8be29300
[  326.969666][    C1] RBP: ffffffff81728a45 R08: 0000000000000000 R09: ffffffff81728a45
[  326.969678][    C1] R10: ffffc9001043f2d8 R11: ffffffff81ace0c0 R12: 0000000000000002
[  326.969691][    C1] R13: ffffffff8e13f140 R14: 0000000000000000 R15: 0000000000000246
[  326.969707][    C1]  ? unwind_next_frame+0xa5/0x2390
[  326.969736][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  326.969758][    C1]  ? unwind_next_frame+0xa5/0x2390
[  326.969796][    C1]  ? unwind_next_frame+0xa5/0x2390
[  326.969825][    C1]  ? __x64_sys_execve+0x94/0xb0
[  326.969843][    C1]  ? unwind_next_frame+0xa5/0x2390
[  326.969870][    C1]  unwind_next_frame+0xc2/0x2390
[  326.969898][    C1]  ? unwind_next_frame+0xa5/0x2390
[  326.969931][    C1]  ? unwind_next_frame+0xa5/0x2390
[  326.969961][    C1]  ? do_execveat_common+0x510/0x6a0
[  326.969982][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  326.970003][    C1]  arch_stack_walk+0x11c/0x150
[  326.970024][    C1]  ? __x64_sys_execve+0x94/0xb0
[  326.970044][    C1]  stack_trace_save+0x9c/0xe0
[  326.970066][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  326.970085][    C1]  ? __mmput+0x118/0x420
[  326.970113][    C1]  ? bprm_execve+0x99c/0x1440
[  326.970140][    C1]  ? do_execveat_common+0x510/0x6a0
[  326.970157][    C1]  ? __x64_sys_execve+0x94/0xb0
[  326.970184][    C1]  ? do_syscall_64+0xfa/0x3b0
[  326.970207][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.970229][    C1]  kasan_save_track+0x3e/0x80
[  326.970257][    C1]  ? kasan_save_track+0x3e/0x80
[  326.970285][    C1]  ? __kasan_kmalloc+0x93/0xb0
[  326.970301][    C1]  ? __kmalloc_cache_noprof+0x230/0x3d0
[  326.970319][    C1]  ? kmem_cache_free+0x166/0x400
[  326.970336][    C1]  ? exit_mmap+0x53f/0xb50
[  326.970356][    C1]  ? __mmput+0x118/0x420
[  326.970382][    C1]  ? exec_mmap+0x6ac/0x7d0
[  326.970412][    C1]  ? begin_new_exec+0x129c/0x2120
[  326.970440][    C1]  ? load_elf_binary+0x96a/0x2790
[  326.970459][    C1]  ? bprm_execve+0x99c/0x1440
[  326.970486][    C1]  ? do_execveat_common+0x510/0x6a0
[  326.970503][    C1]  ? __x64_sys_execve+0x94/0xb0
[  326.970548][    C1]  __kasan_kmalloc+0x93/0xb0
[  326.970568][    C1]  __kmalloc_cache_noprof+0x230/0x3d0
[  326.970586][    C1]  ? kmem_cache_free+0x166/0x400
[  326.970606][    C1]  ? exit_mmap+0x53f/0xb50
[  326.970625][    C1]  kmem_cache_free+0x166/0x400
[  326.970647][    C1]  exit_mmap+0x53f/0xb50
[  326.970665][    C1]  ? uprobe_clear_state+0x20f/0x290
[  326.970692][    C1]  ? __pfx_exit_mmap+0x10/0x10
[  326.970709][    C1]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  326.970738][    C1]  ? __pfx_exit_aio+0x10/0x10
[  326.970761][    C1]  ? uprobe_clear_state+0x274/0x290
[  326.970788][    C1]  __mmput+0x118/0x420
[  326.970817][    C1]  exec_mmap+0x6ac/0x7d0
[  326.970843][    C1]  ? generic_permission+0x2e5/0x690
[  326.970873][    C1]  ? __pfx_exec_mmap+0x10/0x10
[  326.970906][    C1]  begin_new_exec+0x129c/0x2120
[  326.970937][    C1]  ? __pfx_load_elf_phdrs+0x10/0x10
[  326.970962][    C1]  load_elf_binary+0x96a/0x2790
[  326.970989][    C1]  ? load_elf_binary+0x881/0x2790
[  326.971007][    C1]  ? load_misc_binary+0x110/0xc40
[  326.971026][    C1]  ? __lock_acquire+0xab9/0xd20
[  326.971057][    C1]  ? __pfx_load_elf_binary+0x10/0x10
[  326.971085][    C1]  bprm_execve+0x99c/0x1440
[  326.971122][    C1]  ? __pfx_bprm_execve+0x10/0x10
[  326.971155][    C1]  do_execveat_common+0x510/0x6a0
[  326.971187][    C1]  __x64_sys_execve+0x94/0xb0
[  326.971204][    C1]  do_syscall_64+0xfa/0x3b0
[  326.971226][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  326.971246][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.971264][    C1]  ? clear_bhb_loop+0x60/0xb0
[  326.971285][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.971303][    C1] RIP: 0033:0x7f0094af2107
[  326.971355][    C1] Code: Unable to access opcode bytes at 0x7f0094af20dd.
[  326.971365][    C1] RSP: 002b:00007ffdd730b7e8 EFLAGS: 00000206 ORIG_RAX: 000000000000003b
[  326.971384][    C1] RAX: ffffffffffffffda RBX: 000055be877b7140 RCX: 00007f0094af2107
[  326.971397][    C1] RDX: 000055be95959f30 RSI: 00007ffdd730b900 RDI: 00007ffdd730bd00
[  326.971409][    C1] RBP: 0000000000000009 R08: 0000000000000000 R09: 0000000000000000
[  326.971421][    C1] R10: 0000000000000008 R11: 0000000000000206 R12: 000055be95959f30
[  326.971433][    C1] R13: 00007ffdd730b900 R14: 000000000000000e R15: 000000000000000b
[  326.971454][    C1]  </TASK>