last executing test programs:

1m14.00831891s ago: executing program 3 (id=41):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000001600), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_PORTS(r0, &(0x7f00000016c0)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000001640)={0x1c, r2, 0x1, 0x70bd29}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4008012)

1m13.945234216s ago: executing program 3 (id=42):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='workqueue_activate_work\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x4, 0x4, 0x4, 0x4}, 0x50)
close(r2)

1m13.923514459s ago: executing program 3 (id=43):
mkdirat(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x5498a8b52a905021)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000440)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
chdir(&(0x7f0000000140)='./file0\x00')
mknodat$loop(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x100, 0x0)

1m13.555396737s ago: executing program 3 (id=46):
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000080)='./file1\x00', 0x0, &(0x7f00000069c0)=ANY=[@ANYBLOB="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"], 0x1, 0x5531, &(0x7f0000000b00)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x192)
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000580)='./file1\x00', 0x88, &(0x7f00000004c0)=ANY=[], 0x6, 0x23e, &(0x7f00000001c0)="$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")
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000000)=ANY=[], 0x57)
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x28, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xf0667000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
setsockopt$IP_VS_SO_SET_DELDEST(0xffffffffffffffff, 0x0, 0x488, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94)
setxattr$trusted_overlay_origin(&(0x7f0000000180)='./file0\x00', &(0x7f0000000340), &(0x7f0000000380), 0x64, 0x1)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@index_on}]})

1m12.279873586s ago: executing program 3 (id=52):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x2800000, &(0x7f0000000380)={[{@debug}, {@delalloc}, {@journal_ioprio}, {@test_dummy_encryption}, {@nodiscard}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@acl}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x1, 0xbb4, &(0x7f00000017c0)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000000)=0x1, 0x4)
sendmmsg$inet(r0, &(0x7f0000000f40)=[{{&(0x7f0000000040)={0x2, 0x0, @remote}, 0x10, 0x0}}], 0x1, 0x2400c042)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={0x0}, 0x18)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r2}, &(0x7f00000001c0), &(0x7f0000000240)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x800448d2, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

1m9.684715837s ago: executing program 3 (id=65):
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x182800, 0x0)
ioctl$RTC_AIE_ON(r0, 0x7001)
ioctl$RTC_AIE_OFF(r0, 0x7002)

1m9.055229014s ago: executing program 32 (id=65):
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x182800, 0x0)
ioctl$RTC_AIE_ON(r0, 0x7001)
ioctl$RTC_AIE_OFF(r0, 0x7002)

6.64655015s ago: executing program 1 (id=459):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0xa0402, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000240)={0x80000011})
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, 0xffffffffffffffff, &(0x7f0000000c40))
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @remote}, 0x6}, 0x1c)
sendmsg$inet6(r0, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x20008814)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x4000000000000002, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
listen(0xffffffffffffffff, 0x621)
r2 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$sock_int(r2, 0x1, 0x4000000000000002, 0x0, 0x0)
bind$inet6(r2, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x37}}}, 0x1c)
syz_emit_ethernet(0x46, &(0x7f0000000100)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x2, 0x3, 0x38, 0x64, 0x0, 0x7, 0x6, 0x0, @remote, @remote}, {{0x4e22, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x9, 0x4, 0x6071, 0x0, 0xe7, {[@nop, @sack_perm={0x4, 0x2}, @fastopen={0x22, 0xd, "61a2b04aa599db14abfcf2"}]}}}}}}}, 0x0)

6.1396042s ago: executing program 1 (id=469):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x41}, 0x20000894)
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(0xffffffffffffffff, 0x0, 0x8011)
socket$nl_netfilter(0x10, 0x3, 0xc)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

6.139353686s ago: executing program 2 (id=470):
socket$nl_xfrm(0x10, 0x3, 0x6)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/fscaps', 0x0, 0x13c)
socket$inet6(0xa, 0x3, 0x5)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
syz_usb_connect$uac1(0x2, 0xdc, &(0x7f0000000380)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902ca0003010070000904000000010100000a24010800000201020d24060000030800000000000000240803960c03112d9cd2ce0c240208000103000000ff000924060506020100000924030003030005490c240206", @ANYRES8=r0, @ANYRES8=r1], 0x0)

5.457644715s ago: executing program 2 (id=471):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x3, 0x0, &(0x7f0000000100)="b9ff03", 0x0, 0x24, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='cgroup.max.depth\x00', 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[@ANYBLOB='-'], 0x9)

5.439531343s ago: executing program 2 (id=472):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_MSFILTER(r4, 0x0, 0x30, &(0x7f0000000d40)={0x6, {{0x2, 0x4e20, @multicast1}}, 0x1}, 0x90)

5.296192384s ago: executing program 0 (id=473):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="700000001000ffff27bd70100000000000000000", @ANYRES32=0x0, @ANYBLOB="31020500a38e05005000128008000100736974004400028008000100", @ANYRES32=0x0, @ANYBLOB="080014000000000006000e008100000008000100", @ANYRES32, @ANYBLOB="050009002900000008000c"], 0x70}, 0x1, 0x0, 0x0, 0x1}, 0x20040040)
recvmmsg(r1, &(0x7f0000005400), 0x0, 0x0, 0x0)
r5 = socket$inet6(0xa, 0x800000000000002, 0x0)
connect$inet6(r5, &(0x7f0000000040)={0xa, 0x1, 0x20000000, @dev={0xfe, 0x80, '\x00', 0x5}, 0x4}, 0x1c)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000"], 0x48)
r6 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
ioctl$USBDEVFS_REAPURBNDELAY(r6, 0x4008550d, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000280)={0x6}, 0x8)

5.282701619s ago: executing program 1 (id=475):
socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000009c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0x1, 0x120d, &(0x7f0000001280)="$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")
socket$inet_tcp(0x2, 0x1, 0x0)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = dup(r6)
setsockopt$inet_IP_IPSEC_POLICY(r7, 0x0, 0x10, 0x0, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000380)={'syz1\x00', {0xff, 0x6, 0x7fff, 0x8d5}, 0x24, [0x10000, 0xeba, 0x7, 0xe6a, 0x8, 0x1, 0x5, 0x7ff, 0x54, 0x7fffdfff, 0x2, 0xc, 0x8, 0x9, 0x9, 0xfffffff7, 0x7, 0x40000, 0xa, 0x23, 0x2, 0x0, 0xfffffffb, 0xfffffff4, 0x1, 0xda6, 0x3, 0xa7, 0xeb36, 0x2, 0x9, 0x76c9, 0x200, 0x1, 0x1, 0x1, 0x7, 0x9, 0xf, 0xb, 0x10, 0x80000000, 0x7, 0xb50, 0x0, 0x800, 0x3, 0x3, 0x6, 0xfffffffe, 0x5, 0x8, 0x24, 0x7fff, 0x8, 0x1, 0x200, 0x0, 0x0, 0x7f, 0x964e, 0x2d5, 0x149, 0x1], [0x66ac, 0xfffffff9, 0x4, 0x3, 0x8e, 0x7, 0x13e, 0x9, 0x4, 0x2, 0x0, 0x7, 0x7, 0x8001, 0x9, 0x8, 0x2, 0x5, 0x40, 0x7ff, 0x7ff, 0x5, 0x9, 0xc00, 0x189, 0x7ff, 0x0, 0x1, 0xfffffff7, 0x9, 0x9, 0x4d26, 0x10000, 0x8, 0x1, 0x6, 0x0, 0x4, 0x4c, 0x9, 0x8, 0x5, 0xe66, 0x8, 0x2, 0x81, 0x4b, 0x80, 0x6, 0xb, 0x4, 0x9, 0x1, 0x8d1, 0x8fd, 0xfffffffa, 0xe0, 0x8e, 0x10001, 0x4, 0x401, 0xade, 0x7f, 0x9], [0x8396, 0x7, 0x6, 0x9, 0x8000, 0x1, 0x9, 0xe88, 0x8, 0x6, 0x0, 0x400, 0x1000, 0x9, 0x6e, 0x8000, 0x7, 0x3, 0x6, 0x5, 0x3, 0xc9, 0x2, 0x3, 0x0, 0x2, 0x2, 0xc, 0x5, 0xb0f, 0x1e, 0x3, 0x800, 0x8, 0x9, 0x3, 0x4, 0xfffffff7, 0x4, 0xe, 0x464b, 0x6, 0x2e7, 0x7ff, 0x1ff, 0x6, 0x87ff, 0x2, 0x7fffffff, 0xffffffff, 0x4, 0xffff, 0x200d5d, 0xa0c787d, 0x1, 0x9, 0x4, 0x40, 0x3, 0x0, 0x1fc1, 0x9, 0x1, 0x3], [0x10000010, 0x7, 0x2, 0x2, 0x1ff, 0xfe, 0xff, 0x3, 0x80000000, 0x0, 0xe, 0x2, 0x4, 0x7, 0x7, 0x0, 0xfffffffd, 0xfffffff8, 0xc, 0xf, 0x3, 0x103, 0x6, 0xcc, 0x6, 0x4000400, 0xffffffff, 0x5, 0x2, 0x80000000, 0x4, 0x7, 0xfff, 0x40, 0x9, 0x0, 0x9, 0x1, 0x0, 0x7, 0x8ac1, 0x3, 0x4, 0x80000002, 0x80000002, 0xff, 0x6, 0x3, 0xfffff801, 0xffffbfff, 0x37d, 0xfffffff8, 0xd, 0x7, 0xd, 0x9, 0x6eaf, 0x0, 0x401, 0x5e02, 0x2, 0x3, 0x5, 0x400]}, 0x45c)
connect$inet(0xffffffffffffffff, 0x0, 0x0)

4.072459763s ago: executing program 0 (id=477):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
write$cgroup_subtree(r0, 0x0, 0xffbf)

3.599763292s ago: executing program 1 (id=478):
brk(0x689d80000003)
r0 = socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{0x0}], 0x1}}], 0x1, 0x9200000000000000)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="07000000040000008000000004000000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000007c0)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000340), 0x8000, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0, 0x9}, {0xf}, {0xe, 0xd}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0xffffffb8}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000081}, 0x4000c00)
mremap(&(0x7f0000000000/0x9000)=nil, 0x200003, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)

3.591153035s ago: executing program 0 (id=479):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xc, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)

3.59084034s ago: executing program 4 (id=480):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000025c0)={{{@in=@local, @in=@dev}}, {{@in6=@empty}, 0x0, @in6=@initdev}}, 0x0)
r2 = userfaultfd(0x801)
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r2, 0xc028aa03, &(0x7f0000000040)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00005cf000/0x4000)=nil, 0x400000, 0x2, 0x2})
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0)
r3 = syz_io_uring_setup(0x4b6, &(0x7f0000000100)={0x0, 0x0, 0x400, 0x0, 0x20e}, &(0x7f0000ff0000), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f0000000040)=[{0x0}, {0x0}], 0x2)

3.436423393s ago: executing program 4 (id=481):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000140)='./file0\x00', 0x8, &(0x7f0000002340)=ANY=[@ANYBLOB='shortname=mixed,shortname=lower,iocharset=cp863,shortname=lower,umask=00000000000000000000005,shortname=lower,codepage=1251,shortname=winnt,nonumtail=0,uid=', @ANYRESDEC=0x0, @ANYBLOB="000004a13470a0a3a4bedc186b0a4b00020000000000"], 0x5, 0x29d, &(0x7f0000000380)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)

2.956710953s ago: executing program 4 (id=483):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6(0xa, 0x2, 0x0)
mount$binderfs(0x0, 0x0, &(0x7f0000002400), 0x4000, 0x0)
ioctl$sock_FIOGETOWN(r1, 0x8903, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00\"DL^\x00'/18, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
socket$pppl2tp(0x18, 0x1, 0x1)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x3, &(0x7f0000000340)=@framed={{0x18, 0x0, 0x0, 0x0, 0xdc1f933, 0x0, 0x0, 0x0, 0xcb}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
recvmmsg(0xffffffffffffffff, &(0x7f0000000300)=[{{&(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000000280)=[{&(0x7f00000000c0)=""/85, 0x55}, {&(0x7f0000000480)=""/105, 0x69}, {&(0x7f0000000580)=""/167, 0xa7}], 0x3, &(0x7f0000000640)=""/246, 0xf6}}], 0x1, 0x12022, &(0x7f0000000380)={0x0, 0x989680})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newqdisc={0x54, 0x10, 0x1, 0x18000000, 0x10000018, {0x0, 0x0, 0x0, 0x0, {0x1}, {}, {0xe}}, [@TCA_INGRESS_BLOCK={0x8}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}}, 0x400000000000000)

2.668431041s ago: executing program 0 (id=484):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x10)
pipe2$9p(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x800)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000410"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x18)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000780)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})

2.667781455s ago: executing program 0 (id=485):
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000d00)={0x0, <r0=>0x0}, 0x8)
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000040)=r0, 0x4)
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x2000cd0, &(0x7f0000000440)=ANY=[], 0x1, 0x1514, &(0x7f0000001540)="$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")
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x10)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0x105042, 0x189)
write$binfmt_format(r6, &(0x7f0000000000)='1\x00', 0x2400)

2.41915092s ago: executing program 1 (id=486):
socket$packet(0x11, 0x2, 0x300)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c16, &(0x7f0000000040)={[{@nobh}, {@usrjquota}]}, 0xff, 0x240, &(0x7f00000002c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x104)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x121480, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
close_range(r0, 0xffffffffffffffff, 0x0)

2.377407935s ago: executing program 2 (id=487):
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x14, 0x0, 0x0)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
write$UHID_CREATE2(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x8031, r0, 0x1000)
r1 = syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x14a042)
close(0x3)
dup(r1)
syz_open_procfs(0x0, &(0x7f0000000280)='fd/3\x00')

1.648365501s ago: executing program 4 (id=488):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0xe21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$erofs(&(0x7f00000001c0), &(0x7f0000000140)='./file1\x00', 0x1000801, &(0x7f0000001040)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRES64, @ANYRES64, @ANYRESHEX, @ANYRES16, @ANYRES8, @ANYRES32], 0xfe, 0x1d1, &(0x7f0000000640)="$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")

1.500214558s ago: executing program 5 (id=489):
r0 = syz_open_dev$loop(&(0x7f0000000040), 0x569, 0x8200)
ioctl$LOOP_GET_STATUS(r0, 0x4c03, &(0x7f0000000080))
syz_emit_ethernet(0x0, 0x0, 0x0)

1.377390298s ago: executing program 5 (id=490):
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000080)='U', 0x1080}], 0x29a}, 0x0)
sendmsg$NL80211_CMD_PROBE_CLIENT(0xffffffffffffffff, 0x0, 0x4000000)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001880), 0x0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f00000018c0)=0x8)
pread64(0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff)
openat$vsock(0xffffffffffffff9c, 0x0, 0x40, 0x0)

580.4478ms ago: executing program 0 (id=491):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x100b})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000400)={0x8, 0x0, &(0x7f00000001c0)=[@increfs], 0x0, 0x0, 0x0})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000200)={0x10, 0x0, &(0x7f0000000000)=[@request_death={0x400c630e, 0x0, 0x1000000}], 0xfce3, 0x1000000, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000d80)={0x10, 0x0, &(0x7f0000000c40)=[@clear_death], 0x0, 0x0, 0x0})

462.527793ms ago: executing program 5 (id=492):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x804000, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}})
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x280008a, &(0x7f0000000240)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00'], 0x97, 0x2ad, &(0x7f0000000a80)="$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")

389.099143ms ago: executing program 2 (id=493):
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000a40)={[{@nodiscard}, {@whint_mode_user}, {@discard_unit_section}, {@alloc_mode_reuse}, {@checkpoint_diasble}, {@background_gc_on}, {@background_gc_on}, {@four_active_logs}, {@fsync_mode_posix}, {@block_mode}, {@data_flush}, {@heap}, {@jqfmt_vfsold}, {@noinline_dentry}]}, 0x1, 0x550f, &(0x7f000000cf00)="$eJzs3E1vG1UXAODjpGn69faNEAt2HalCSqTaivNRwS5AKz5EqqjAghU4tmO5tT1R7DghKxYsEQv+CQKJFUt+AwvW7BALEDskkGcm0FAQlXBskj6PND5zr6/PnGtVlc5M5ACeWgvJzz+W4npcjojZiLgWkZ2XiiOzkYfnIuJGRMw8cpSK+d8nLkbElYi4Pkqe5ywVb316a3hz/Yc3fvrqm/kLVz/78tvp7RqYtucjorubnx9085i28vigmK8N21nsrg2LmL/RfViM0zweNLezDAe143W1LK628vXp7n5/FHc6tfootto72fxuL79gf9g6zpN94EFtLxs3mttZbPfTLLaO8roOj/L/2476gzxPo8j3QZY+BoPjmM83D5v5fnYfZrHeGxTzed600TwcxWERi8tFPe00sjq2/803/d/2Zru3f5gMm3v9dtpL1ivVFyrV2+XqXtpoDppr5Vq3cXstWWx1RsvKg2atu9FK01anWamn3aVksVWvl6vVZPFOc7td6yXVamW1slxeXyrObiWv3nsn6TSSxVF8ud3bH7Q7/WQn3UvyTywlK5XVF5eSm9Xkrc2tZOv+3bubW2+/d+fdey9tvv5KseixspLFleWVlXJ1ubxSXXp8T/Pndf8fFUX/w/5hYkrTLgDg7NH/A9Nwev3/3v2I0+//Q/8/Fmeq/33C/t/+YUL0/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAT63v5j5/LTtZyMdXi/n/FVPPFONSRMxExK9/YTYunsg5W+SZ+5v1c3+q4etSZBlG15gvjisRsVEcv/z/tL8FAAAAOL+++PDGJ3m3nr8sTLsgJim/aTNz7f0x5StFxNzC92PKNjN6eXZMybJ/3xficEzZshtYl8aUbD675XZhTNmezOyJcOmRUMrDzETLAQAAJuJkJzDZLgQAAIBJ+njaBTAdpTh+lHn8LDj7y/s/HghePjECAAAAzqDStAsAAAAATl3W//v9PwAAADjf8t//AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAfmPnbnKWBuI4AP9b3r7gVyTGvVdxB8fwCC5dGg7gJTiAC7yCF+AMuPMIBgydEUG6MOm0jeZ5kjJMW37MELqYmWQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgSN+a3frLxzef+uYcT/2U6Q0AAADQ5dDs1u2bZao/y+df5FOvcr2KiDoiusbus3i8yZzlnOb3/Z+v72/+aMPXiDbh/B3zfDyNiLf5+PFy6F8BAAAA/l/7zXaVRuvpZTl1gxhTmrSpn78rlFdFRLP8XiitPue9LhTW/r8f4kOhtHYCa1EoLE25PZRK+yvt436ZtVtcFVUq6s6PXRpZrO8AAMCIZjfFuKMQAAAAxvR+6gYwjSp+LWVelgLnqcjLe09uagAAAMA/qJq6AQAAAMDg2vH/SPv/nez/BwAAANNI+/8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwpEOzW+8321XfnOPp3mO+1nHpTv+eAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/2Z93FAiBMAiDves7k7n/YaVBY0OTKhA+/sZgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHjzu7/8n5gaZ5K518bS80iydmpsnRp758bRH8bXrwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBif15SIASCIArmjP+d9P0PKwl6BhEioOFRRS0aAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAvuh3v/yfmBpnkrnTxtLxSLJ21di6auw9aBw9GG//BgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBi535e46jiAIB/Z2Zna6pijJJDRBQ86MWm29ram3hQggf/BCGk2xq79Uebgy1FzMWb5NyL6FFEUOKt/0PPLfRSbz3soYJnZWZnstM24PprZpt8PvDmfXcY5n3fBEK+814WAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKA2fnsaZ8VhcRKn1blb969tFP3th/rCjZ07K0Ur4qTNpB8PLzY/JMvdJQIAAMDhkdX1fUTczXfXij5dLOv/vL6mqPm/fXoS1/X8w3V/3de1f9F++fne83sDLU7GKW56bnM0PP5oKr3/b5bz7Zm/vKJXPvny3UsWC5FG+t72c+O8fJ7J1zdvvtMvwyNtZAsA/BPH6r4K6r+Hin7QZWIAHBq9RuFd1//ZYrc5AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALRhvB1P1nESESu9aVy4ff/axn79jZ07K3U7ff36Tnw5vWdxizwizm2Ohsdbnc18u3zl6oX10Wh4qf3gpYjoavS3qulf+GCGiyM6eT6C/yhIqx/2vOTzeAQd/lICAOBAyqtW1PV389214lyyFPHHdw/W/6824pix/r/34elbzbGa9f+gtRnOv9Wti5+uXr5y9fXNi+vnh+eHH79xYvDm4OSZU6fOrJbvSla9MQEAAODf6VetWf+nS4+u/x9txDFj/f/ZN4MvmmNl6v99TRf9us4EAADgcHv25d9/S/Y5n/T78fn61talweS49/nE5NhBqn/bkao16/9sqeusAAAAgDaMt5MH1v/PNuKYcf3/qe9f+LF5zywiFqr1/2Mbn4zOtjedudbGvxN3PUcAAAC6tVC15vp/Xu7/T/e2PKQR8dork7j6GsCZ6v/s3a9+aI7V3P9/sr0pzqV0efI8yn45orfcdUYAAAAcZE9UrSj2f8131z766ej7ffv/AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANr2ZwAAAP//uCM2tw==")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)
statfs(&(0x7f0000000040)='./file0\x00', 0x0)

388.438959ms ago: executing program 4 (id=494):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = fsopen(&(0x7f0000000300)='tracefs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000280)='gid', 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r3, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000004080)={{r3}, &(0x7f0000004000), &(0x7f0000004040)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r4, 0x18000000000002a0, 0x7f, 0x0, &(0x7f0000000100)="b9ff03076844268cb89e14f005dd1be0ffff00fe3a21632f77fbac14141de007031762079f4b4d2f87e5feca6aab845013f2325f1a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72", 0x0, 0x8, 0x60000000}, 0x50)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000180)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000000}}, {@barrier}, {@dioread_nolock}, {@test_dummy_encryption}, {@nobarrier}, {@grpjquota}, {@dioread_nolock}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x1, 0xba6, &(0x7f0000000c00)="$eJzs3M1rXFUUAPDzXj7bRicVEeumEZEWxGlaSbFFsJWKGxeCboWGdFJCph8kkZo0i4n+A6KuBTeCWpQu7LobBbdutG4tLoQisVEQ0cibjyQ2M0naTvJq8vvBzbt3zpvcc/KYeffCTALYsQayH2nEvog4nUQU6o+nEdFd7fVGVGrnLczPjvwxPzuSxOLi678mkUTE7fnZkcbvSurHPfVBb0R891ISj7y7et7J6Znx4XK5NFEfH5o6d/HQ5PTMs2Pnhs+WzpbOHz76/NCRoaODx4baVuufP5249vuTr/xc+euzv6/89sEnSZyIvnpsZR3tMhADS3+TlTojYrjdk+Wko17PyjqTznWelG5yUgAAtJSuWMM9FoXoiOXFWyG+/j7X5AAAAIC2WOyIWAQAAAC2ucT+HwAAALa5xucAbs/PjjRavp9I2Fq3TkZEf63+hXqrRTqjUj32RldE7L6dxMqvtSa1p923gYi4+eOxL7MWm/Q95LVU5iLi8WbXP6nW31/9Fvfq+tOIGGzD/AN3jP9P9Z9ow/x51w/AznT9ZO1Gtvr+ly6tf6LJ/a+zyb3rXuR9/2us/xZWrf+W6+9osf57bYNzXP70o0utYln9L1x7+YtGy+bPjvdV1F24NRfxRGez+pOl+pMW9Z/e4ByFfy6VWsXyrn/x44gD0bz+hmTt/090aHSsXBqs/Ww6x9y3Q5+3mj/v+rPrv7tF/etd/4sbnOPNU6eutoqtX3/6S3fyRrXXXX/k7eGpqYnDEd3Jq6sfP7J2Lo1zGr8jq//gU2u//pvVn70nVOp/h2wvMFc/ZuN37pjzxSuXv1qr/mzvl+f1P3OP1/+9Dc7x9DfvH2wVW7n/zVo2/82kthcGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIY0IvoiSYtL/TQtFiP2RMSjsTstX5icemb0wlvnz2SxiP7oSkfHyqXBiCjUxkk2PlztL4+P3DF+LiL2RsSHhV3VcXHkQvlM3sUDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwZE9E9EWSFiMijYiFQpoWi3lnBQAAALRdf94JAAAAAJvO/h8AAAC2P/t/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANtne/ddvJBFROb6r2jLd9VhXrpkBmy3NOwEgNx15JwDkpjPvBIDc3OUe33IBtqFknXhvy0hP23MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4MF1YN/1G0lEVI7vqrZMdz3W1fQZ+7cwO2AzpXknAOSmY61g59blAWw9L3HYuZrv8YGdJFkn3rt8TuW/kZ5NywkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAB09ftSVpMSLSaj9Ni8WIhyKiP7qS0bFyaTAiHo6IHwpdPdm4J++kAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaLvJ6Znx4XK5NKGjo5NvJ3kw0qh18n5nAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgD5PTM+PD5XJpYjLvTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIC8TU7PjA+Xy6WJDXSu3s3JKzp51wgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQH7+DQAA//+LYA3r")
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\v\x00\x00\x00\a\x00\x00\x00\b\x00\x00\x00\b\x00\x00'], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r6, 0x0, &(0x7f0000000280)=@udp}, 0x20)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
syz_emit_ethernet(0xfdef, &(0x7f0000000180)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xfde1, 0x300, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e22, 0x4d, 0x0, @wg=@data}}}}}, 0x0)
write$binfmt_script(r5, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r5, 0x0)
fdatasync(r5)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

276.381988ms ago: executing program 5 (id=495):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x800)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000002c00)=ANY=[@ANYBLOB="b0"], 0xb0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
chdir(&(0x7f0000000100)='./file0\x00')
r3 = socket$unix(0x1, 0x1, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
bind$unix(r3, &(0x7f0000001600)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

124.573833ms ago: executing program 2 (id=496):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x19)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
socket$inet(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x200000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x138, 0x10, 0x1, 0xfffffffe, 0x100, {{@in6=@remote, @in6=@remote, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@loopback, {0x0, 0x192, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0x2, 0xfffffffc, 0x7}, 0x70bd2a, 0x3504, 0xa, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
syz_open_procfs(0xffffffffffffffff, 0x0)
ioctl$sock_inet_SIOCSARP(r0, 0x8955, &(0x7f0000000a80)={{0x2, 0x4e22, @empty}, {0x0, @remote}, 0x48, {0x2, 0x0, @empty}, 'lo\x00'})

118.77579ms ago: executing program 5 (id=497):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000000e3ff000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000e00000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10)
getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f00000004c0))

50.930487ms ago: executing program 1 (id=498):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000fdffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000f40)=@acquire={0x128, 0x17, 0x1, 0xfbfffffe, 0x0, {{@in=@private=0xa0100ff}, @in=@broadcast, {@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x80}, {{@in=@local, @in6=@empty, 0x0, 0x0, 0x10, 0x4, 0x2, 0x0, 0x20}, {0x0, 0x0, 0x0, 0x4, 0x8000000, 0x9}, {0x10, 0x0, 0x0, 0xa}, 0x9, 0x6e6bba, 0x1}, 0x400}}, 0x128}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0x12, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x2, 0x1, 0x3c}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x80)
close(r4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map, r5, 0x5}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{}, &(0x7f00000001c0), &(0x7f0000000700)=r4}, 0x20)
syz_usb_connect(0x0, 0x24, &(0x7f0000000f80)=ANY=[@ANYBLOB="1201000012c35b400304106098c6f40000"], 0x0)

351.107µs ago: executing program 5 (id=499):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="16000000000000000400000005"], 0x50)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r3, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r3, 0x0)
connect$unix(r2, &(0x7f0000000640)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r3, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000680)='sched_switch\x00', r5}, 0x18)

0s ago: executing program 4 (id=500):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
io_destroy(0x0)

kernel console output (not intermixed with test programs):

0c03 length: 249 > 1
[   30.552387][ T6558] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   30.555421][ T6559] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   30.555637][ T6559] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   30.556022][ T6559] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   30.556287][ T6559] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   30.556493][ T6559] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   30.556792][ T6559] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   30.556983][ T6559] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   30.558053][ T6559] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   30.558304][ T6559] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   30.558604][ T6559] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   30.559952][ T6559] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   30.560776][ T6559] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   30.560995][ T6559] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   30.561546][ T6559] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   30.562137][ T6559] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   30.563565][ T6557] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   30.564120][ T6559] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   30.564255][ T6559] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   30.565418][ T6559] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   30.732185][ T6550] chnl_net:caif_netlink_parms(): no params data found
[   30.735682][ T6551] chnl_net:caif_netlink_parms(): no params data found
[   30.761825][ T6545] chnl_net:caif_netlink_parms(): no params data found
[   30.812293][ T6550] bridge0: port 1(bridge_slave_0) entered blocking state
[   30.813930][ T6550] bridge0: port 1(bridge_slave_0) entered disabled state
[   30.815199][ T6550] bridge_slave_0: entered allmulticast mode
[   30.816856][ T6550] bridge_slave_0: entered promiscuous mode
[   30.818066][ T6550] bridge0: port 2(bridge_slave_1) entered blocking state
[   30.818097][ T6550] bridge0: port 2(bridge_slave_1) entered disabled state
[   30.818181][ T6550] bridge_slave_1: entered allmulticast mode
[   30.818633][ T6550] bridge_slave_1: entered promiscuous mode
[   30.819108][ T6546] chnl_net:caif_netlink_parms(): no params data found
[   30.821774][ T6551] bridge0: port 1(bridge_slave_0) entered blocking state
[   30.821800][ T6551] bridge0: port 1(bridge_slave_0) entered disabled state
[   30.821859][ T6551] bridge_slave_0: entered allmulticast mode
[   30.822296][ T6551] bridge_slave_0: entered promiscuous mode
[   30.823211][ T6551] bridge0: port 2(bridge_slave_1) entered blocking state
[   30.823227][ T6551] bridge0: port 2(bridge_slave_1) entered disabled state
[   30.823270][ T6551] bridge_slave_1: entered allmulticast mode
[   30.823714][ T6551] bridge_slave_1: entered promiscuous mode
[   30.866656][ T6550] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   30.867883][ T6550] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   30.869519][ T6551] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   30.871263][ T6551] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   30.876993][ T6545] bridge0: port 1(bridge_slave_0) entered blocking state
[   30.878289][ T6545] bridge0: port 1(bridge_slave_0) entered disabled state
[   30.878398][ T6545] bridge_slave_0: entered allmulticast mode
[   30.878860][ T6545] bridge_slave_0: entered promiscuous mode
[   30.893473][ T6545] bridge0: port 2(bridge_slave_1) entered blocking state
[   30.894752][ T6545] bridge0: port 2(bridge_slave_1) entered disabled state
[   30.896073][ T6545] bridge_slave_1: entered allmulticast mode
[   30.897453][ T6545] bridge_slave_1: entered promiscuous mode
[   30.911633][ T6544] chnl_net:caif_netlink_parms(): no params data found
[   30.918126][ T6545] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   30.923498][ T6550] team0: Port device team_slave_0 added
[   30.928481][ T6551] team0: Port device team_slave_0 added
[   30.929867][ T6551] team0: Port device team_slave_1 added
[   30.938317][ T6545] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   30.943426][ T6550] team0: Port device team_slave_1 added
[   30.946679][ T6546] bridge0: port 1(bridge_slave_0) entered blocking state
[   30.947931][ T6546] bridge0: port 1(bridge_slave_0) entered disabled state
[   30.948022][ T6546] bridge_slave_0: entered allmulticast mode
[   30.948449][ T6546] bridge_slave_0: entered promiscuous mode
[   30.962772][ T6546] bridge0: port 2(bridge_slave_1) entered blocking state
[   30.962848][ T6546] bridge0: port 2(bridge_slave_1) entered disabled state
[   30.962914][ T6546] bridge_slave_1: entered allmulticast mode
[   30.963337][ T6546] bridge_slave_1: entered promiscuous mode
[   30.967791][ T6551] batman_adv: batadv0: Adding interface: batadv_slave_0
[   30.968025][ T6551] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   30.968043][ T6551] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   30.977162][ T6545] team0: Port device team_slave_0 added
[   30.978615][ T6550] batman_adv: batadv0: Adding interface: batadv_slave_0
[   30.978637][ T6550] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   30.978652][ T6550] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   30.989885][ T6551] batman_adv: batadv0: Adding interface: batadv_slave_1
[   30.989907][ T6551] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   30.989920][ T6551] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   30.998879][ T6550] batman_adv: batadv0: Adding interface: batadv_slave_1
[   30.998901][ T6550] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   30.998929][ T6550] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   31.004440][ T6545] team0: Port device team_slave_1 added
[   31.009649][ T6546] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   31.015616][ T6544] bridge0: port 1(bridge_slave_0) entered blocking state
[   31.016960][ T6544] bridge0: port 1(bridge_slave_0) entered disabled state
[   31.017040][ T6544] bridge_slave_0: entered allmulticast mode
[   31.017462][ T6544] bridge_slave_0: entered promiscuous mode
[   31.024376][ T6546] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   31.036562][ T6544] bridge0: port 2(bridge_slave_1) entered blocking state
[   31.036600][ T6544] bridge0: port 2(bridge_slave_1) entered disabled state
[   31.036669][ T6544] bridge_slave_1: entered allmulticast mode
[   31.037153][ T6544] bridge_slave_1: entered promiscuous mode
[   31.042236][ T6545] batman_adv: batadv0: Adding interface: batadv_slave_0
[   31.042258][ T6545] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   31.042274][ T6545] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   31.043053][ T6545] batman_adv: batadv0: Adding interface: batadv_slave_1
[   31.043060][ T6545] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   31.043073][ T6545] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   31.063507][ T6551] hsr_slave_0: entered promiscuous mode
[   31.065124][ T6551] hsr_slave_1: entered promiscuous mode
[   31.074133][ T6544] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   31.080008][ T6546] team0: Port device team_slave_0 added
[   31.082686][ T6550] hsr_slave_0: entered promiscuous mode
[   31.083003][ T6550] hsr_slave_1: entered promiscuous mode
[   31.083183][ T6550] debugfs: 'hsr0' already exists in 'hsr'
[   31.083223][ T6550] Cannot create hsr debugfs directory
[   31.088261][ T6544] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   31.091223][ T6545] hsr_slave_0: entered promiscuous mode
[   31.091874][ T6545] hsr_slave_1: entered promiscuous mode
[   31.092055][ T6545] debugfs: 'hsr0' already exists in 'hsr'
[   31.092066][ T6545] Cannot create hsr debugfs directory
[   31.092831][ T6546] team0: Port device team_slave_1 added
[   31.118800][ T6546] batman_adv: batadv0: Adding interface: batadv_slave_0
[   31.119986][ T6546] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   31.120757][ T6546] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   31.121730][ T6544] team0: Port device team_slave_0 added
[   31.122735][ T6546] batman_adv: batadv0: Adding interface: batadv_slave_1
[   31.122747][ T6546] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   31.122759][ T6546] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   31.139444][ T6544] team0: Port device team_slave_1 added
[   31.174239][ T6544] batman_adv: batadv0: Adding interface: batadv_slave_0
[   31.175724][ T6544] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   31.180184][ T6544] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   31.187457][ T6546] hsr_slave_0: entered promiscuous mode
[   31.188753][ T6546] hsr_slave_1: entered promiscuous mode
[   31.190000][ T6546] debugfs: 'hsr0' already exists in 'hsr'
[   31.190987][ T6546] Cannot create hsr debugfs directory
[   31.199642][ T6544] batman_adv: batadv0: Adding interface: batadv_slave_1
[   31.200826][ T6544] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   31.200845][ T6544] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   31.265515][ T6544] hsr_slave_0: entered promiscuous mode
[   31.266965][ T6544] hsr_slave_1: entered promiscuous mode
[   31.268154][ T6544] debugfs: 'hsr0' already exists in 'hsr'
[   31.269142][ T6544] Cannot create hsr debugfs directory
[   31.326715][ T6550] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   31.330206][ T6550] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   31.336804][ T6550] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   31.339419][ T6550] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   31.363386][ T6551] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   31.367309][ T6551] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   31.370075][ T6551] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   31.374579][ T6551] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   31.382986][ T6550] bridge0: port 2(bridge_slave_1) entered blocking state
[   31.383028][ T6550] bridge0: port 2(bridge_slave_1) entered forwarding state
[   31.383210][ T6550] bridge0: port 1(bridge_slave_0) entered blocking state
[   31.383240][ T6550] bridge0: port 1(bridge_slave_0) entered forwarding state
[   31.405524][ T6545] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   31.408022][ T6545] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   31.410351][ T6545] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   31.415852][ T6545] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   31.434467][ T6551] bridge0: port 2(bridge_slave_1) entered blocking state
[   31.434514][ T6551] bridge0: port 2(bridge_slave_1) entered forwarding state
[   31.434590][ T6551] bridge0: port 1(bridge_slave_0) entered blocking state
[   31.434618][ T6551] bridge0: port 1(bridge_slave_0) entered forwarding state
[   31.440749][ T6545] bridge0: port 2(bridge_slave_1) entered blocking state
[   31.440789][ T6545] bridge0: port 2(bridge_slave_1) entered forwarding state
[   31.440856][ T6545] bridge0: port 1(bridge_slave_0) entered blocking state
[   31.440882][ T6545] bridge0: port 1(bridge_slave_0) entered forwarding state
[   31.464701][ T6546] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   31.468510][ T6551] 8021q: adding VLAN 0 to HW filter on device bond0
[   31.473664][ T2136] bridge0: port 1(bridge_slave_0) entered disabled state
[   31.475388][ T2136] bridge0: port 2(bridge_slave_1) entered disabled state
[   31.476984][ T2136] bridge0: port 1(bridge_slave_0) entered disabled state
[   31.478641][ T2136] bridge0: port 2(bridge_slave_1) entered disabled state
[   31.481940][ T2136] bridge0: port 1(bridge_slave_0) entered disabled state
[   31.483982][ T2136] bridge0: port 2(bridge_slave_1) entered disabled state
[   31.498857][ T6546] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   31.501864][ T6546] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   31.504356][ T6546] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   31.512672][ T6545] 8021q: adding VLAN 0 to HW filter on device bond0
[   31.516409][ T6551] 8021q: adding VLAN 0 to HW filter on device team0
[   31.518599][ T6550] 8021q: adding VLAN 0 to HW filter on device bond0
[   31.525169][ T6545] 8021q: adding VLAN 0 to HW filter on device team0
[   31.544421][ T2136] bridge0: port 1(bridge_slave_0) entered blocking state
[   31.544473][ T2136] bridge0: port 1(bridge_slave_0) entered forwarding state
[   31.544832][ T2136] bridge0: port 1(bridge_slave_0) entered blocking state
[   31.544847][ T2136] bridge0: port 1(bridge_slave_0) entered forwarding state
[   31.552341][ T6544] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   31.555010][ T6544] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   31.557480][ T6544] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   31.559724][ T6544] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   31.563507][ T6550] 8021q: adding VLAN 0 to HW filter on device team0
[   31.583586][ T2699] bridge0: port 2(bridge_slave_1) entered blocking state
[   31.583629][ T2699] bridge0: port 2(bridge_slave_1) entered forwarding state
[   31.583993][ T2699] bridge0: port 1(bridge_slave_0) entered blocking state
[   31.584012][ T2699] bridge0: port 1(bridge_slave_0) entered forwarding state
[   31.584445][ T2699] bridge0: port 2(bridge_slave_1) entered blocking state
[   31.584467][ T2699] bridge0: port 2(bridge_slave_1) entered forwarding state
[   31.585305][ T2699] bridge0: port 2(bridge_slave_1) entered blocking state
[   31.585320][ T2699] bridge0: port 2(bridge_slave_1) entered forwarding state
[   31.609335][ T6545] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   31.616664][ T6550] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   31.657670][ T6546] 8021q: adding VLAN 0 to HW filter on device bond0
[   31.684558][ T6546] 8021q: adding VLAN 0 to HW filter on device team0
[   31.694757][ T6544] 8021q: adding VLAN 0 to HW filter on device bond0
[   31.706411][   T42] bridge0: port 1(bridge_slave_0) entered blocking state
[   31.706458][   T42] bridge0: port 1(bridge_slave_0) entered forwarding state
[   31.716733][ T6545] 8021q: adding VLAN 0 to HW filter on device batadv0
[   31.725741][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   31.725788][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   31.731545][ T6550] 8021q: adding VLAN 0 to HW filter on device batadv0
[   31.740780][ T6544] 8021q: adding VLAN 0 to HW filter on device team0
[   31.755931][   T42] bridge0: port 1(bridge_slave_0) entered blocking state
[   31.755983][   T42] bridge0: port 1(bridge_slave_0) entered forwarding state
[   31.756500][   T42] bridge0: port 2(bridge_slave_1) entered blocking state
[   31.756516][   T42] bridge0: port 2(bridge_slave_1) entered forwarding state
[   31.777355][ T6551] 8021q: adding VLAN 0 to HW filter on device batadv0
[   31.793398][ T6551] veth0_vlan: entered promiscuous mode
[   31.803377][ T6551] veth1_vlan: entered promiscuous mode
[   31.815594][ T6545] veth0_vlan: entered promiscuous mode
[   31.817956][ T6546] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   31.822212][ T6545] veth1_vlan: entered promiscuous mode
[   31.833063][ T6550] veth0_vlan: entered promiscuous mode
[   31.834812][ T6550] veth1_vlan: entered promiscuous mode
[   31.849729][ T6551] veth0_macvtap: entered promiscuous mode
[   31.856962][ T6550] veth0_macvtap: entered promiscuous mode
[   31.859086][ T6551] veth1_macvtap: entered promiscuous mode
[   31.861490][ T6545] veth0_macvtap: entered promiscuous mode
[   31.871488][ T6550] veth1_macvtap: entered promiscuous mode
[   31.875252][ T6550] batman_adv: batadv0: Interface activated: batadv_slave_0
[   31.876174][ T6551] batman_adv: batadv0: Interface activated: batadv_slave_0
[   31.876585][ T6550] batman_adv: batadv0: Interface activated: batadv_slave_1
[   31.877393][ T6551] batman_adv: batadv0: Interface activated: batadv_slave_1
[   31.883875][  T799] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   31.884048][  T799] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   31.884070][  T799] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   31.884093][  T799] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   31.884114][  T799] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   31.884133][  T799] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   31.884151][  T799] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   31.884168][  T799] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   31.897172][ T6545] veth1_macvtap: entered promiscuous mode
[   31.905040][ T6545] batman_adv: batadv0: Interface activated: batadv_slave_0
[   31.918920][ T6545] batman_adv: batadv0: Interface activated: batadv_slave_1
[   31.939465][ T2136] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   31.939726][ T2136] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   31.939742][ T2136] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   31.939755][ T2136] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   31.971811][ T6546] 8021q: adding VLAN 0 to HW filter on device batadv0
[   31.977583][ T1580] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   31.977611][ T1580] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   31.996834][ T6544] 8021q: adding VLAN 0 to HW filter on device batadv0
[   32.013436][ T6546] veth0_vlan: entered promiscuous mode
[   32.014972][ T6546] veth1_vlan: entered promiscuous mode
[   32.016360][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   32.016400][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   32.024671][ T1580] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   32.024703][ T1580] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   32.043152][ T6546] veth0_macvtap: entered promiscuous mode
[   32.046276][ T6546] veth1_macvtap: entered promiscuous mode
[   32.049902][ T2136] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   32.049932][ T2136] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   32.084551][  T799] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   32.084585][  T799] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   32.089864][ T6551] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   32.092050][ T6546] batman_adv: batadv0: Interface activated: batadv_slave_0
[   32.092968][ T6546] batman_adv: batadv0: Interface activated: batadv_slave_1
[   32.100018][ T2699] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   32.125952][ T1580] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   32.126003][ T1580] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   32.126020][ T1580] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   32.151698][ T6544] veth0_vlan: entered promiscuous mode
[   32.159084][  T799] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   32.159120][  T799] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   32.163414][ T6544] veth1_vlan: entered promiscuous mode
[   32.168396][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   32.168419][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   32.183829][  T799] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   32.183899][  T799] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   32.199215][ T6544] veth0_macvtap: entered promiscuous mode
[   32.203082][ T6544] veth1_macvtap: entered promiscuous mode
[   32.407914][ T6544] batman_adv: batadv0: Interface activated: batadv_slave_0
[   32.421586][ T6544] batman_adv: batadv0: Interface activated: batadv_slave_1
[   32.465559][ T6663] loop2: detected capacity change from 0 to 40427
[   32.467317][ T6663] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[   32.467358][ T6663] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   32.486710][ T6663] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   32.489612][   T42] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   32.490201][   T42] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   32.490239][   T42] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   32.492251][   T42] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   32.501695][ T6672] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   32.501915][ T6672] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   32.510055][ T6663] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   32.510230][ T6663] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   32.548197][  T799] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   32.548238][  T799] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   32.551278][ T6662] capability: warning: `syz.2.3' uses deprecated v2 capabilities in a way that may be insecure
[   32.562802][ T6674] xt_hashlimit: size too large, truncated to 1048576
[   32.570976][ T6547] Bluetooth: hci4: command tx timeout
[   32.578733][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   32.578772][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   32.617267][ T6674] loop3: detected capacity change from 0 to 256
[   32.674349][ T6679] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   32.677601][ T6679] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5'.
[   32.679538][ T6679] bridge_slave_1: left allmulticast mode
[   32.680999][ T6618] usb 1-1: new full-speed USB device number 2 using dummy_hcd
[   32.687073][ T6679] bridge_slave_1: left promiscuous mode
[   32.687265][ T6679] bridge0: port 2(bridge_slave_1) entered disabled state
[   32.696562][ T6679] bridge_slave_0: left allmulticast mode
[   32.696780][ T6547] Bluetooth: hci2: command tx timeout
[   32.696914][ T6547] Bluetooth: hci0: command tx timeout
[   32.696976][ T6547] Bluetooth: hci3: command tx timeout
[   32.697029][ T6547] Bluetooth: hci1: command tx timeout
[   32.713420][ T6679] bridge_slave_0: left promiscuous mode
[   32.713593][ T6679] bridge0: port 1(bridge_slave_0) entered disabled state
[   32.900343][ T6682] loop3: detected capacity change from 0 to 512
[   32.949691][ T6682] EXT4-fs (loop3): orphan cleanup on readonly fs
[   32.953265][ T6682] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[   32.953428][ T6682] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[   32.953465][ T6682] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.6: Failed to acquire dquot type 1
[   33.423066][ T6682] EXT4-fs (loop3): 1 truncate cleaned up
[   33.730252][ T6682] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   33.755943][ T6618] usb 1-1: config 1 has an invalid interface number: 105 but max is 0
[   33.755974][ T6618] usb 1-1: config 1 has no interface number 0
[   33.755996][ T6618] usb 1-1: config 1 interface 105 has no altsetting 0
[   33.759220][ T6618] usb 1-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[   33.759246][ T6618] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   33.759264][ T6618] usb 1-1: Product: syz
[   33.759277][ T6618] usb 1-1: Manufacturer: syz
[   33.759289][ T6618] usb 1-1: SerialNumber: syz
[   33.765602][ T6680] EXT4-fs error (device loop3): ext4_lookup:1791: inode #2: comm syz.3.6: deleted inode referenced: 12
[   33.922645][ T6546] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.011274][ T6691] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   34.011472][ T6691] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   34.691582][ T6148] Bluetooth: hci4: command tx timeout
[   34.731199][ T6547] Bluetooth: hci3: command tx timeout
[   34.733520][ T6547] Bluetooth: hci0: command tx timeout
[   34.735732][ T6547] Bluetooth: hci2: command tx timeout
[   34.739334][ T6148] Bluetooth: hci1: command tx timeout
[   34.931111][ T6700] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   34.931296][ T6700] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   34.938507][ T6702] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   34.944027][ T6702] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   35.147078][ T6706] vhci_hcd: invalid port number 96
[   35.147139][ T6706] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   35.352276][ T6708] loop4: detected capacity change from 0 to 256
[   35.352656][ T6708] =======================================================
[   35.352656][ T6708] WARNING: The mand mount option has been deprecated and
[   35.352656][ T6708]          and is ignored by this kernel. Remove the mand
[   35.352656][ T6708]          option from the mount to silence this warning.
[   35.352656][ T6708] =======================================================
[   35.369641][ T6708] FAT-fs (loop4): Directory bread(block 64) failed
[   35.369684][ T6708] FAT-fs (loop4): Directory bread(block 65) failed
[   35.369718][ T6708] FAT-fs (loop4): Directory bread(block 66) failed
[   35.369732][ T6708] FAT-fs (loop4): Directory bread(block 67) failed
[   35.369755][ T6708] FAT-fs (loop4): Directory bread(block 68) failed
[   35.369779][ T6708] FAT-fs (loop4): Directory bread(block 69) failed
[   35.369801][ T6708] FAT-fs (loop4): Directory bread(block 70) failed
[   35.369811][ T6708] FAT-fs (loop4): Directory bread(block 71) failed
[   35.369832][ T6708] FAT-fs (loop4): Directory bread(block 72) failed
[   35.369841][ T6708] FAT-fs (loop4): Directory bread(block 73) failed
[   36.069498][ T6618] aqc111 1-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -32
[   36.367629][ T6618] aqc111 1-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -71
[   36.389855][ T6618] aqc111 1-1:1.105 eth0: register 'aqc111' at usb-dummy_hcd.0-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter, be:c7:d7:88:8a:6d
[   36.437802][ T6618] usb 1-1: USB disconnect, device number 2
[   36.438950][ T6618] aqc111 1-1:1.105 eth0: unregister 'aqc111' usb-dummy_hcd.0-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter
[   36.498265][ T6719] capability: warning: `syz.0.18' uses 32-bit capabilities (legacy support in use)
[   36.990426][ T6549] Bluetooth: hci4: command tx timeout
[   36.990474][ T6549] Bluetooth: hci1: command tx timeout
[   36.990505][ T6549] Bluetooth: hci2: command tx timeout
[   36.990525][ T6549] Bluetooth: hci0: command tx timeout
[   36.990542][ T6549] Bluetooth: hci3: command tx timeout
[   37.007636][ T6618] aqc111 1-1:1.105 eth0 (unregistered): Failed to write(0x1) reg index 0x0002: -19
[   37.007703][ T6618] aqc111 1-1:1.105 eth0 (unregistered): Failed to write(0x1) reg index 0x0002: -19
[   37.007748][ T6618] aqc111 1-1:1.105 eth0 (unregistered): Failed to write(0x61) reg index 0x0000: -19
[   37.014345][ T6721] hub 8-0:1.0: USB hub found
[   37.015639][ T6721] hub 8-0:1.0: 8 ports detected
[   37.513813][ T6732] loop0: detected capacity change from 0 to 16
[   37.518780][ T6732] erofs (device loop0): mounted with root inode @ nid 36.
[   38.018679][ T6728] Zero length message leads to an empty skb
[   39.653079][ T6737] erofs (device loop0): bogus lookback distance 1388 @ lcn 42 of nid 36
[   39.763012][ T6549] Bluetooth: hci0: command tx timeout
[   39.763074][ T6549] Bluetooth: hci2: command tx timeout
[   39.763140][ T6148] Bluetooth: hci3: command tx timeout
[   39.763450][ T6549] Bluetooth: hci1: command tx timeout
[   39.763471][ T6549] Bluetooth: hci4: command tx timeout
[   39.978882][ T6737] erofs (device loop0): failed to decompress -46 in[60, 4036] out[1851]
[   39.978927][ T6737] erofs (device loop0): read error -117 @ 43 of nid 36
[   40.030023][ T6747] loop1: detected capacity change from 0 to 1024
[   40.035354][ T6747] EXT4-fs: inline encryption not supported
[   40.101553][ T6747] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.319838][ T6755] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   40.320015][ T6755] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   40.763410][ T6756] netlink: 16 bytes leftover after parsing attributes in process `syz.0.23'.
[   40.809215][ T6759] loop2: detected capacity change from 0 to 1024
[   41.072424][ T6759] EXT4-fs: Ignoring removed orlov option
[   41.110457][ T6759] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   41.129541][ T6759] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.167207][   T31] audit: type=1326 audit(41.140:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6758 comm="syz.2.25" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   41.172860][   T31] audit: type=1326 audit(41.140:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6758 comm="syz.2.25" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   41.176539][   T31] audit: type=1326 audit(41.150:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6758 comm="syz.2.25" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   41.184315][   T31] audit: type=1326 audit(41.160:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6758 comm="syz.2.25" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   41.200997][   T31] audit: type=1326 audit(41.160:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6758 comm="syz.2.25" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   41.201035][   T31] audit: type=1326 audit(41.160:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6758 comm="syz.2.25" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   41.201050][   T31] audit: type=1326 audit(41.160:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6758 comm="syz.2.25" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   41.201064][   T31] audit: type=1326 audit(41.160:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6758 comm="syz.2.25" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=199 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   41.201076][   T31] audit: type=1326 audit(41.160:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6758 comm="syz.2.25" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   41.201089][   T31] audit: type=1326 audit(41.160:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6758 comm="syz.2.25" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   41.223367][ T6711] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   41.236553][ T6545] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.518833][ T6771] netlink: 8 bytes leftover after parsing attributes in process `syz.1.27'.
[   41.560435][ T6551] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.572047][ T6711] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   41.575566][ T6711] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   41.588699][ T6774] mmap: syz.2.28 (6774): VmData 45862912 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[   41.592607][ T6711] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   41.594846][ T6711] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   41.596366][ T6711] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   41.602171][ T6711] usb 1-1: config 0 descriptor??
[   41.980073][ T6772] netlink: 76 bytes leftover after parsing attributes in process `syz.1.27'.
[   42.462770][ T6711] plantronics 0003:047F:FFFF.0001: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[   42.555176][ T6778] xt_CT: No such helper "pptp"
[   42.663722][ T6787] binder: 6776:6787 IncRefs 0 refcount change on invalid ref 0 ret -22
[   44.089365][ T6791] loop3: detected capacity change from 0 to 512
[   44.732265][ T6791] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   44.732301][ T6791] EXT4-fs (loop3): blocks per group (95) and clusters per group (32768) inconsistent
[   45.330804][ T6806] netlink: 'syz.0.35': attribute type 13 has an invalid length.
[   45.559655][ T6799] loop2: detected capacity change from 0 to 40427
[   45.573992][ T6799] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[   45.574031][ T6799] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   45.586253][ T6814] loop3: detected capacity change from 0 to 512
[   45.593241][ T6799] F2FS-fs (loop2): invalid crc value
[   45.612658][ T6799] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   45.617727][ T6799] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   45.618348][ T6799] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   45.635019][ T6814] EXT4-fs (loop3): 1 orphan inode deleted
[   45.638351][ T6814] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.661957][ T6814] EXT4-fs warning (device loop3): ext4_group_extend:1862: can't shrink FS - resize aborted
[   45.738471][ T6794] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:13: Failed to release dquot type 1
[   45.744691][ T6546] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.876864][ T6829] vhci_hcd: invalid port number 96
[   45.876893][ T6829] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   46.194318][ T6837] loop2: detected capacity change from 0 to 1024
[   46.196388][ T6837] EXT4-fs: Ignoring removed orlov option
[   46.456376][ T6604] usb 1-1: USB disconnect, device number 3
[   46.474038][ T6837] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   46.485694][ T6837] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.530976][ T6551] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.618058][ T6840] loop3: detected capacity change from 0 to 40427
[   46.625147][ T6840] F2FS-fs (loop3): Invalid SB checksum offset: 0
[   46.625224][ T6840] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[   46.630009][ T6849] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   46.632219][ T6840] F2FS-fs (loop3): invalid crc value
[   46.634075][ T6849] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   46.652297][ T6840] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   46.658682][ T6840] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[   46.659103][ T6840] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   46.676372][ T6855] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   46.762496][ T6858] loop2: detected capacity change from 0 to 8192
[   46.885711][ T6859] overlayfs: invalid origin (00000079000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000)
[   47.457720][ T6546] syz-executor: attempt to access beyond end of device
[   47.457720][ T6546] loop3: rw=524288, sector=45064, nr_sectors = 8 limit=40427
[   47.457937][ T6546] syz-executor: attempt to access beyond end of device
[   47.457937][ T6546] loop3: rw=0, sector=45064, nr_sectors = 8 limit=40427
[   47.492116][ T6792] kworker/u8:12: attempt to access beyond end of device
[   47.492116][ T6792] loop3: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[   47.492332][ T6792] CPU: 0 UID: 0 PID: 6792 Comm: kworker/u8:12 Not tainted syzkaller #0 PREEMPT 
[   47.492342][ T6792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025
[   47.492346][ T6792] Workqueue: writeback wb_workfn (flush-7:3)
[   47.492365][ T6792] Call trace:
[   47.492367][ T6792]  show_stack+0x2c/0x3c (C)
[   47.492379][ T6792]  __dump_stack+0x30/0x40
[   47.492387][ T6792]  dump_stack_lvl+0xd8/0x12c
[   47.492393][ T6792]  dump_stack+0x1c/0x28
[   47.492398][ T6792]  f2fs_handle_critical_error+0x34c/0x4b8
[   47.492406][ T6792]  f2fs_stop_checkpoint+0x5c/0x70
[   47.492413][ T6792]  f2fs_write_end_io+0x768/0xa70
[   47.492418][ T6792]  bio_endio+0x858/0x894
[   47.492423][ T6792]  submit_bio_noacct+0x158/0x177c
[   47.492430][ T6792]  submit_bio+0x3b4/0x550
[   47.492439][ T6792]  f2fs_submit_write_bio+0x13c/0x324
[   47.492446][ T6792]  __submit_merged_bio+0x254/0x704
[   47.492452][ T6792]  __submit_merged_write_cond+0x23c/0x4ac
[   47.492459][ T6792]  f2fs_write_data_pages+0x1d28/0x2634
[   47.492466][ T6792]  do_writepages+0x270/0x468
[   47.492473][ T6792]  __writeback_single_inode+0x15c/0x13e8
[   47.492479][ T6792]  writeback_sb_inodes+0x55c/0xe40
[   47.492483][ T6792]  wb_writeback+0x3cc/0xd70
[   47.492488][ T6792]  wb_workfn+0x338/0xdc0
[   47.492494][ T6792]  process_one_work+0x7e8/0x155c
[   47.492501][ T6792]  worker_thread+0x958/0xed8
[   47.492507][ T6792]  kthread+0x5fc/0x75c
[   47.492512][ T6792]  ret_from_fork+0x10/0x20
[   47.492636][ T6792] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[   47.492660][ T6792] CPU: 0 UID: 0 PID: 6792 Comm: kworker/u8:12 Not tainted syzkaller #0 PREEMPT 
[   47.492666][ T6792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025
[   47.492669][ T6792] Workqueue: writeback wb_workfn (flush-7:3)
[   47.492678][ T6792] Call trace:
[   47.492680][ T6792]  show_stack+0x2c/0x3c (C)
[   47.492686][ T6792]  __dump_stack+0x30/0x40
[   47.492692][ T6792]  dump_stack_lvl+0xd8/0x12c
[   47.492697][ T6792]  dump_stack+0x1c/0x28
[   47.492702][ T6792]  f2fs_handle_critical_error+0x34c/0x4b8
[   47.492709][ T6792]  f2fs_stop_checkpoint+0x5c/0x70
[   47.492714][ T6792]  f2fs_write_end_io+0x768/0xa70
[   47.492719][ T6792]  bio_endio+0x858/0x894
[   47.492723][ T6792]  submit_bio_noacct+0x158/0x177c
[   47.492729][ T6792]  submit_bio+0x3b4/0x550
[   47.492734][ T6792]  f2fs_submit_write_bio+0x13c/0x324
[   47.492740][ T6792]  __submit_merged_bio+0x254/0x704
[   47.492747][ T6792]  __submit_merged_write_cond+0x23c/0x4ac
[   47.492753][ T6792]  f2fs_write_data_pages+0x1d28/0x2634
[   47.492760][ T6792]  do_writepages+0x270/0x468
[   47.492766][ T6792]  __writeback_single_inode+0x15c/0x13e8
[   47.492771][ T6792]  writeback_sb_inodes+0x55c/0xe40
[   47.492776][ T6792]  wb_writeback+0x3cc/0xd70
[   47.492780][ T6792]  wb_workfn+0x338/0xdc0
[   47.492786][ T6792]  process_one_work+0x7e8/0x155c
[   47.492792][ T6792]  worker_thread+0x958/0xed8
[   47.492797][ T6792]  kthread+0x5fc/0x75c
[   47.492802][ T6792]  ret_from_fork+0x10/0x20
[   47.492809][ T6792] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[   47.555632][ T6865] loop1: detected capacity change from 0 to 512
[   47.558769][ T6865] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102]
[   47.558820][ T6865] System zones: 1-12
[   47.564990][ T6865] EXT4-fs error (device loop1): ext4_xattr_inode_iget:442: comm syz.1.53: error while reading EA inode 32 err=-116
[   47.566964][ T6865] EXT4-fs (loop1): Remounting filesystem read-only
[   47.566996][ T6865] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   47.567010][ T6865] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   47.567045][ T6865] EXT4-fs (loop1): 1 orphan inode deleted
[   47.567685][ T6865] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.960103][   T31] kauditd_printk_skb: 31 callbacks suppressed
[   47.960162][   T31] audit: type=1107 audit(47.760:42): pid=6862 uid=0 auid=4294967295 ses=4294967295 subj=_ msg=''
[   48.871106][ T6545] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.928782][ T6873] loop4: detected capacity change from 0 to 1024
[   48.955661][ T6881] loop0: detected capacity change from 0 to 1024
[   48.956048][ T6881] EXT4-fs: Ignoring removed orlov option
[   48.959418][ T6879] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   48.959573][ T6879] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   48.968710][ T6881] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   48.974142][ T6881] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.012205][ T6550] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.376177][ T6893] xt_hashlimit: max too large, truncated to 1048576
[   50.685575][  T231] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.701374][ T6907] loop4: detected capacity change from 0 to 256
[   50.753304][  T231] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.755239][ T6547] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   50.756192][ T6547] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   50.758381][ T6547] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   50.762437][ T6547] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   50.763952][ T6547] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   50.866015][  T231] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.951168][  T231] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.953259][ T6920] loop2: detected capacity change from 0 to 1024
[   50.955189][ T6920] EXT4-fs: Ignoring removed orlov option
[   50.968962][ T6920] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   51.002622][ T6920] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.043222][ T6551] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.163862][ T6937] loop0: detected capacity change from 0 to 512
[   51.166175][ T6937] EXT4-fs: Ignoring removed mblk_io_submit option
[   51.170525][ T6937] EXT4-fs: Ignoring removed mblk_io_submit option
[   51.175221][ T6937] EXT4-fs (loop0): Test dummy encryption mode enabled
[   51.176448][ T6937] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   51.181168][ T6937] EXT4-fs (loop0): 1 truncate cleaned up
[   51.183179][ T6937] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.210768][  T231] bridge_slave_1: left allmulticast mode
[   51.212057][  T231] bridge_slave_1: left promiscuous mode
[   51.213928][  T231] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.223735][  T231] bridge_slave_0: left allmulticast mode
[   51.224813][  T231] bridge_slave_0: left promiscuous mode
[   51.226115][  T231] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.239559][ T6550] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.282000][   T31] audit: type=1326 audit(51.260:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6948 comm="syz.0.81" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb555b3a8 code=0x7ffc0000
[   51.285673][   T31] audit: type=1326 audit(51.260:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6948 comm="syz.0.81" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb555b3a8 code=0x7ffc0000
[   51.299339][   T31] audit: type=1326 audit(51.270:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6948 comm="syz.0.81" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb555b3a8 code=0x7ffc0000
[   51.305365][   T31] audit: type=1326 audit(51.280:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6948 comm="syz.0.81" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb555b3a8 code=0x7ffc0000
[   51.308987][   T31] audit: type=1326 audit(51.280:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6948 comm="syz.0.81" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb555b3a8 code=0x7ffc0000
[   51.364234][   T31] audit: type=1326 audit(51.280:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6948 comm="syz.0.81" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb555b3a8 code=0x7ffc0000
[   51.369607][   T31] audit: type=1326 audit(51.280:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6948 comm="syz.0.81" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb555b3a8 code=0x7ffc0000
[   51.769176][   T31] audit: type=1326 audit(51.280:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6948 comm="syz.0.81" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb555b3a8 code=0x7ffc0000
[   51.773930][   T31] audit: type=1326 audit(51.280:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6948 comm="syz.0.81" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffb555b3a8 code=0x7ffc0000
[   52.048289][ T6955] loop4: detected capacity change from 0 to 512
[   52.052052][ T6955] EXT4-fs: Ignoring removed mblk_io_submit option
[   52.052079][ T6955] EXT4-fs: Ignoring removed bh option
[   52.052467][ T6955] EXT4-fs (loop4): Test dummy encryption mode enabled
[   52.052480][ T6955] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   52.059879][ T6955] EXT4-fs (loop4): 1 truncate cleaned up
[   52.061795][ T6955] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   52.066060][ T6955] fscrypt: AES-256-XTS using implementation "xts-aes-ce"
[   52.235611][ T6955] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.553852][ T6971] netlink: 4 bytes leftover after parsing attributes in process `syz.0.84'.
[   52.851033][ T6148] Bluetooth: hci2: command tx timeout
[   53.153968][ T6973] process 'syz.4.86' launched '/dev/fd/3' with NULL argv: empty string added
[   53.206005][  T231] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   53.207336][ T6966] loop2: detected capacity change from 0 to 40427
[   53.218315][ T6966] F2FS-fs (loop2): build fault injection rate: 771
[   53.220947][ T6966] F2FS-fs (loop2): invalid crc value
[   53.223568][  T231] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   53.241266][  T231] bond0 (unregistering): Released all slaves
[   53.260185][ T6970] batadv_slave_1: entered promiscuous mode
[   53.260576][ T6970] batadv_slave_1: left promiscuous mode
[   53.261530][ T6971] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   53.272513][ T6971] batman_adv: batadv0: Removing interface: batadv_slave_1
[   53.334510][ T6966] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   53.337261][ T6910] chnl_net:caif_netlink_parms(): no params data found
[   53.343857][ T6966] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   53.457062][ T6551] syz-executor: attempt to access beyond end of device
[   53.457062][ T6551] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   53.457426][ T6551] CPU: 0 UID: 0 PID: 6551 Comm: syz-executor Not tainted syzkaller #0 PREEMPT 
[   53.457440][ T6551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025
[   53.457445][ T6551] Call trace:
[   53.457448][ T6551]  show_stack+0x2c/0x3c (C)
[   53.457463][ T6551]  __dump_stack+0x30/0x40
[   53.457470][ T6551]  dump_stack_lvl+0xd8/0x12c
[   53.457476][ T6551]  dump_stack+0x1c/0x28
[   53.457481][ T6551]  f2fs_handle_critical_error+0x34c/0x4b8
[   53.457490][ T6551]  f2fs_stop_checkpoint+0x5c/0x70
[   53.457496][ T6551]  f2fs_write_end_io+0x768/0xa70
[   53.457500][ T6551]  bio_endio+0x858/0x894
[   53.457506][ T6551]  submit_bio_noacct+0x158/0x177c
[   53.457512][ T6551]  submit_bio+0x3b4/0x550
[   53.457517][ T6551]  f2fs_submit_write_bio+0x13c/0x324
[   53.457524][ T6551]  __submit_merged_bio+0x254/0x704
[   53.457530][ T6551]  __submit_merged_write_cond+0x23c/0x4ac
[   53.457537][ T6551]  f2fs_write_data_pages+0x1d28/0x2634
[   53.457544][ T6551]  do_writepages+0x270/0x468
[   53.457551][ T6551]  filemap_fdatawrite+0x14c/0x1f4
[   53.457558][ T6551]  f2fs_sync_dirty_inodes+0x2b8/0x788
[   53.457564][ T6551]  f2fs_write_checkpoint+0x690/0x16a0
[   53.457570][ T6551]  kill_f2fs_super+0x21c/0x584
[   53.457577][ T6551]  deactivate_locked_super+0xc4/0x12c
[   53.457583][ T6551]  deactivate_super+0xe0/0x100
[   53.457588][ T6551]  cleanup_mnt+0x31c/0x3ac
[   53.457594][ T6551]  __cleanup_mnt+0x20/0x30
[   53.457600][ T6551]  task_work_run+0x1dc/0x260
[   53.457607][ T6551]  exit_to_user_mode_loop+0xfc/0x168
[   53.457614][ T6551]  el0_svc+0x170/0x254
[   53.457620][ T6551]  el0t_64_sync_handler+0x84/0x12c
[   53.457625][ T6551]  el0t_64_sync+0x198/0x19c
[   53.457649][ T6551] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[   53.609409][ T6910] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.612984][ T6910] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.614707][ T6910] bridge_slave_0: entered allmulticast mode
[   53.618262][ T6910] bridge_slave_0: entered promiscuous mode
[   53.625017][ T6910] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.629797][ T6910] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.632138][ T6910] bridge_slave_1: entered allmulticast mode
[   53.637909][ T6910] bridge_slave_1: entered promiscuous mode
[   53.700111][ T6910] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   53.713104][ T6910] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   53.815911][ T6910] team0: Port device team_slave_0 added
[   53.818746][ T6910] team0: Port device team_slave_1 added
[   53.848696][ T6910] batman_adv: batadv0: Adding interface: batadv_slave_0
[   53.848836][ T6910] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.848849][ T6910] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   53.877600][ T6910] batman_adv: batadv0: Adding interface: batadv_slave_1
[   53.877637][ T6910] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.877668][ T6910] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   53.916983][  T231] hsr_slave_0: left promiscuous mode
[   53.918116][  T231] hsr_slave_1: left promiscuous mode
[   53.920409][  T231] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   53.920443][  T231] batman_adv: batadv0: Removing interface: batadv_slave_0
[   53.928130][  T231] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   53.928147][  T231] batman_adv: batadv0: Removing interface: batadv_slave_1
[   53.946279][  T231] veth1_macvtap: left promiscuous mode
[   53.948443][  T231] veth0_macvtap: left promiscuous mode
[   53.949111][  T231] veth1_vlan: left promiscuous mode
[   53.949171][  T231] veth0_vlan: left promiscuous mode
[   54.409968][  T231] team0 (unregistering): Port device team_slave_1 removed
[   54.426402][  T231] team0 (unregistering): Port device team_slave_0 removed
[   54.473273][ T7029] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   54.473446][ T7029] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   54.477160][ T7029] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   54.477376][ T7029] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   54.832288][ T7018] tipc: Enabling <eth:lo> not permitted
[   54.832344][ T7018] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[   54.903729][ T6910] hsr_slave_0: entered promiscuous mode
[   54.906904][ T6910] hsr_slave_1: entered promiscuous mode
[   54.908125][ T6910] debugfs: 'hsr0' already exists in 'hsr'
[   54.908343][ T6910] Cannot create hsr debugfs directory
[   54.937864][ T6148] Bluetooth: hci2: command tx timeout
[   54.967300][ T7033] loop2: detected capacity change from 0 to 40427
[   54.980043][ T7033] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504)
[   54.980074][ T7033] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   54.984608][ T7033] F2FS-fs (loop2): build fault injection rate: 17008
[   54.984641][ T7033] F2FS-fs (loop2): build fault injection type: 0x1f8
[   55.251633][ T7033] F2FS-fs (loop2): invalid crc value
[   55.298632][ T7033] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   55.303120][ T7033] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   55.303180][ T7033] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   55.333129][ T6910] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   55.338392][ T6910] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   55.344601][ T6910] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   55.348641][ T6910] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   55.989356][ T6910] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.027380][ T6910] 8021q: adding VLAN 0 to HW filter on device team0
[   56.052421][ T7068] loop1: detected capacity change from 0 to 1024
[   56.054479][ T7068] EXT4-fs: Ignoring removed nobh option
[   56.095232][ T7068] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   56.212555][ T7068] EXT4-fs error (device loop1): ext4_ext_check_inode:523: inode #11: comm syz.1.101: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   56.220676][ T7068] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.101: couldn't read orphan inode 11 (err -117)
[   56.232404][ T7068] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.384555][ T6685] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.384601][ T6685] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.509037][ T7068] netlink: 8 bytes leftover after parsing attributes in process `syz.1.101'.
[   56.510407][ T7068] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.515273][ T2699] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.515309][ T2699] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.521269][ T6551] syz-executor: attempt to access beyond end of device
[   56.521269][ T6551] loop2: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[   56.521322][ T6551] CPU: 1 UID: 0 PID: 6551 Comm: syz-executor Not tainted syzkaller #0 PREEMPT 
[   56.521335][ T6551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025
[   56.521343][ T6551] Call trace:
[   56.521347][ T6551]  show_stack+0x2c/0x3c (C)
[   56.521367][ T6551]  __dump_stack+0x30/0x40
[   56.521379][ T6551]  dump_stack_lvl+0xd8/0x12c
[   56.521386][ T6551]  dump_stack+0x1c/0x28
[   56.521392][ T6551]  f2fs_handle_critical_error+0x34c/0x4b8
[   56.521401][ T6551]  f2fs_stop_checkpoint+0x5c/0x70
[   56.521407][ T6551]  f2fs_write_end_io+0x768/0xa70
[   56.521413][ T6551]  bio_endio+0x858/0x894
[   56.521418][ T6551]  submit_bio_noacct+0x158/0x177c
[   56.521424][ T6551]  submit_bio+0x3b4/0x550
[   56.521430][ T6551]  f2fs_submit_write_bio+0x13c/0x324
[   56.521437][ T6551]  __submit_merged_bio+0x254/0x704
[   56.521443][ T6551]  __submit_merged_write_cond+0x23c/0x4ac
[   56.521450][ T6551]  f2fs_write_data_pages+0x1d28/0x2634
[   56.521457][ T6551]  do_writepages+0x270/0x468
[   56.521464][ T6551]  filemap_fdatawrite+0x14c/0x1f4
[   56.521471][ T6551]  f2fs_sync_dirty_inodes+0x2b8/0x788
[   56.521477][ T6551]  f2fs_write_checkpoint+0x690/0x16a0
[   56.521483][ T6551]  kill_f2fs_super+0x21c/0x584
[   56.521490][ T6551]  deactivate_locked_super+0xc4/0x12c
[   56.521496][ T6551]  deactivate_super+0xe0/0x100
[   56.521501][ T6551]  cleanup_mnt+0x31c/0x3ac
[   56.521507][ T6551]  __cleanup_mnt+0x20/0x30
[   56.521513][ T6551]  task_work_run+0x1dc/0x260
[   56.521520][ T6551]  exit_to_user_mode_loop+0xfc/0x168
[   56.521527][ T6551]  el0_svc+0x170/0x254
[   56.521533][ T6551]  el0t_64_sync_handler+0x84/0x12c
[   56.521538][ T6551]  el0t_64_sync+0x198/0x19c
[   56.521572][ T6551] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[   56.521595][ T6551] CPU: 1 UID: 0 PID: 6551 Comm: syz-executor Not tainted syzkaller #0 PREEMPT 
[   56.521602][ T6551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025
[   56.521606][ T6551] Call trace:
[   56.521607][ T6551]  show_stack+0x2c/0x3c (C)
[   56.521614][ T6551]  __dump_stack+0x30/0x40
[   56.521619][ T6551]  dump_stack_lvl+0xd8/0x12c
[   56.521624][ T6551]  dump_stack+0x1c/0x28
[   56.521630][ T6551]  f2fs_handle_critical_error+0x34c/0x4b8
[   56.521636][ T6551]  f2fs_stop_checkpoint+0x5c/0x70
[   56.521642][ T6551]  f2fs_write_end_io+0x768/0xa70
[   56.521646][ T6551]  bio_endio+0x858/0x894
[   56.521651][ T6551]  submit_bio_noacct+0x158/0x177c
[   56.521657][ T6551]  submit_bio+0x3b4/0x550
[   56.521662][ T6551]  f2fs_submit_write_bio+0x13c/0x324
[   56.521669][ T6551]  __submit_merged_bio+0x254/0x704
[   56.521675][ T6551]  __submit_merged_write_cond+0x23c/0x4ac
[   56.521682][ T6551]  f2fs_write_data_pages+0x1d28/0x2634
[   56.521689][ T6551]  do_writepages+0x270/0x468
[   56.521695][ T6551]  filemap_fdatawrite+0x14c/0x1f4
[   56.521702][ T6551]  f2fs_sync_dirty_inodes+0x2b8/0x788
[   56.521708][ T6551]  f2fs_write_checkpoint+0x690/0x16a0
[   56.521714][ T6551]  kill_f2fs_super+0x21c/0x584
[   56.521720][ T6551]  deactivate_locked_super+0xc4/0x12c
[   56.521726][ T6551]  deactivate_super+0xe0/0x100
[   56.521731][ T6551]  cleanup_mnt+0x31c/0x3ac
[   56.521737][ T6551]  __cleanup_mnt+0x20/0x30
[   56.521743][ T6551]  task_work_run+0x1dc/0x260
[   56.521749][ T6551]  exit_to_user_mode_loop+0xfc/0x168
[   56.521755][ T6551]  el0_svc+0x170/0x254
[   56.521760][ T6551]  el0t_64_sync_handler+0x84/0x12c
[   56.521765][ T6551]  el0t_64_sync+0x198/0x19c
[   56.521774][ T6551] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[   56.971303][ T6148] Bluetooth: hci2: command tx timeout
[   57.070063][ T6910] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   57.072580][ T6910] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   57.192968][ T6910] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.252041][ T6545] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.412623][ T7107] loop0: detected capacity change from 0 to 128
[   57.444834][   T31] kauditd_printk_skb: 26 callbacks suppressed
[   57.445885][   T31] audit: type=1326 audit(57.380:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7100 comm="syz.0.107" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb555b3a8 code=0x7ffc0000
[   57.449399][   T31] audit: type=1326 audit(57.380:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7100 comm="syz.0.107" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=279 compat=0 ip=0xffffb555b3a8 code=0x7ffc0000
[   57.453468][   T31] audit: type=1326 audit(57.380:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7100 comm="syz.0.107" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffffb555b3dc code=0x7ffc0000
[   57.457040][   T31] audit: type=1326 audit(57.380:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7100 comm="syz.0.107" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=64 compat=0 ip=0xffffb5559a90 code=0x7ffc0000
[   57.460382][   T31] audit: type=1326 audit(57.380:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7100 comm="syz.0.107" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=215 compat=0 ip=0xffffb555b44c code=0x7ffc0000
[   57.463802][   T31] audit: type=1326 audit(57.380:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7100 comm="syz.0.107" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffb5559794 code=0x7ffc0000
[   57.467348][   T31] audit: type=1326 audit(57.390:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7100 comm="syz.0.107" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffffb555aed0 code=0x7ffc0000
[   57.470925][   T31] audit: type=1326 audit(57.390:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7100 comm="syz.0.107" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=57 compat=0 ip=0xffffb5559ccc code=0x7ffc0000
[   57.474149][   T31] audit: type=1326 audit(57.390:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7100 comm="syz.0.107" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=57 compat=0 ip=0xffffb5559ccc code=0x7ffc0000
[   57.477351][   T31] audit: type=1326 audit(57.390:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7100 comm="syz.0.107" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=34 compat=0 ip=0xffffb5559674 code=0x7ffc0000
[   57.478490][ T7109] loop4: detected capacity change from 0 to 512
[   57.496389][ T7109] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   57.504409][ T7109] EXT4-fs (loop4): invalid journal inode
[   57.504494][ T7109] EXT4-fs (loop4): can't get journal size
[   57.521769][ T7109] EXT4-fs (loop4): 1 truncate cleaned up
[   57.522304][ T7109] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   57.534881][ T6910] veth0_vlan: entered promiscuous mode
[   57.541146][ T6910] veth1_vlan: entered promiscuous mode
[   57.546774][ T6910] veth0_macvtap: entered promiscuous mode
[   57.547750][ T6910] veth1_macvtap: entered promiscuous mode
[   57.551100][ T6910] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.552050][ T6910] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.553721][ T6685] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.554451][ T6685] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.557881][ T6685] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.559458][ T6685] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.930857][ T7129] netlink: 'syz.4.106': attribute type 3 has an invalid length.
[   57.931947][ T7129] netlink: 'syz.4.106': attribute type 3 has an invalid length.
[   57.963077][ T2136] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.964599][ T2136] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.973420][ T7131] loop1: detected capacity change from 0 to 512
[   57.993663][  T231] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.993695][  T231] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.001253][ T7131] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.113: bg 0: block 393: padding at end of block bitmap is not set
[   58.006951][ T7131] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   58.009027][ T7131] EXT4-fs (loop1): 2 truncates cleaned up
[   58.009526][ T7131] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.024408][ T7131] EXT4-fs error (device loop1): ext4_inlinedir_to_tree:1314: inode #12: block 7: comm syz.1.113: path /19/file0/file0: bad entry in directory: rec_len % 4 != 0 - offset=259, inode=4278190093, rec_len=255, size=60 fake=0
[   58.095972][ T6545] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.151214][ T7138] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   58.151389][ T7138] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   58.303476][ T7147] loop0: detected capacity change from 0 to 512
[   58.306077][ T7147] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   58.314694][ T7147] EXT4-fs (loop0): orphan cleanup on readonly fs
[   58.317225][ T6544] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.320129][ T7147] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.115: bg 0: block 248: padding at end of block bitmap is not set
[   58.327205][ T7147] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.115: Failed to acquire dquot type 1
[   58.335582][ T7147] EXT4-fs (loop0): 1 truncate cleaned up
[   58.348819][ T7147] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   58.393632][ T6550] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.522990][ T7163] loop2: detected capacity change from 0 to 2048
[   58.542255][ T7163] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   58.558011][ T7171] loop0: detected capacity change from 0 to 256
[   58.558482][ T7171] exfat: Deprecated parameter 'namecase'
[   58.579555][ T7171] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x8d1bf2bd, utbl_chksum : 0xe619d30d)
[   58.588867][ T6551] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.050418][ T6148] Bluetooth: hci2: command tx timeout
[   59.737409][ T7212] loop4: detected capacity change from 0 to 512
[   59.766052][ T7212] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   60.488953][ T6544] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.528266][ T1833] cfg80211: failed to load regulatory.db
[   60.561916][ T7229] loop4: detected capacity change from 0 to 256
[   60.562419][ T7229] exfat: Deprecated parameter 'utf8'
[   60.562452][ T7229] exfat: Deprecated parameter 'namecase'
[   60.562483][ T7229] exfat: Deprecated parameter 'namecase'
[   60.562495][ T7229] exfat: Deprecated parameter 'utf8'
[   60.570110][ T7228] loop1: detected capacity change from 0 to 16
[   60.588992][ T7228] erofs (device loop1): mounted with root inode @ nid 36.
[   60.597650][ T7229] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffad0, utbl_chksum : 0xe619d30d)
[   60.856849][   T42] Bluetooth: hci5: Frame reassembly failed (-84)
[   61.046223][ T7251] netlink: 8 bytes leftover after parsing attributes in process `syz.5.145'.
[   61.054018][ T7251] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2
[   61.054082][ T7251] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[   63.033660][ T6547] Bluetooth: hci5: command 0x1003 tx timeout
[   63.040413][ T6148] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   63.064015][ T7275] loop5: detected capacity change from 0 to 512
[   63.064862][ T7275] EXT4-fs: Ignoring removed oldalloc option
[   63.148428][ T7275] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   63.200976][ T7275] EXT4-fs (loop5): 1 truncate cleaned up
[   63.213716][ T7275] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   63.234720][ T7285] loop4: detected capacity change from 0 to 256
[   63.248281][ T7285] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011d5f, chksum : 0x09863542, utbl_chksum : 0x000cd30d)
[   63.325483][ T7290] loop1: detected capacity change from 0 to 256
[   63.342065][ T7290] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011d5f, chksum : 0x09863542, utbl_chksum : 0x000cd30d)
[   63.851388][ T7291] ./file0: Can't open blockdev
[   63.873563][ T6910] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.239721][ T7300] loop0: detected capacity change from 0 to 256
[   64.242649][ T7300] exfat: Deprecated parameter 'utf8'
[   64.242673][ T7300] exfat: Deprecated parameter 'namecase'
[   64.242703][ T7300] exfat: Deprecated parameter 'namecase'
[   64.242716][ T7300] exfat: Deprecated parameter 'utf8'
[   64.246472][ T7300] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012153, chksum : 0x5270ca8d, utbl_chksum : 0xe619d30d)
[   64.250225][ T7286] loop2: detected capacity change from 0 to 40427
[   64.259046][ T7286] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[   64.259075][ T7286] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   64.330746][ T7286] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   64.337780][ T7286] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   64.337816][ T7286] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   64.876465][ T2426] ieee802154 phy0 wpan0: encryption failed: -22
[   64.876799][ T2426] ieee802154 phy1 wpan1: encryption failed: -22
[   65.871915][ T6551] syz-executor: attempt to access beyond end of device
[   65.871915][ T6551] loop2: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[   65.872235][ T6551] CPU: 1 UID: 0 PID: 6551 Comm: syz-executor Not tainted syzkaller #0 PREEMPT 
[   65.872246][ T6551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025
[   65.872250][ T6551] Call trace:
[   65.872253][ T6551]  show_stack+0x2c/0x3c (C)
[   65.872269][ T6551]  __dump_stack+0x30/0x40
[   65.872275][ T6551]  dump_stack_lvl+0xd8/0x12c
[   65.872281][ T6551]  dump_stack+0x1c/0x28
[   65.872286][ T6551]  f2fs_handle_critical_error+0x34c/0x4b8
[   65.872294][ T6551]  f2fs_stop_checkpoint+0x5c/0x70
[   65.872300][ T6551]  f2fs_write_end_io+0x768/0xa70
[   65.872305][ T6551]  bio_endio+0x858/0x894
[   65.872311][ T6551]  submit_bio_noacct+0x158/0x177c
[   65.872317][ T6551]  submit_bio+0x3b4/0x550
[   65.872322][ T6551]  f2fs_submit_write_bio+0x13c/0x324
[   65.872329][ T6551]  __submit_merged_bio+0x254/0x704
[   65.872335][ T6551]  __submit_merged_write_cond+0x380/0x4ac
[   65.872341][ T6551]  f2fs_submit_merged_write+0x38/0x48
[   65.872348][ T6551]  f2fs_sync_node_pages+0x1148/0x128c
[   65.872353][ T6551]  f2fs_write_checkpoint+0xad4/0x16a0
[   65.872359][ T6551]  kill_f2fs_super+0x21c/0x584
[   65.872366][ T6551]  deactivate_locked_super+0xc4/0x12c
[   65.872373][ T6551]  deactivate_super+0xe0/0x100
[   65.872378][ T6551]  cleanup_mnt+0x31c/0x3ac
[   65.872384][ T6551]  __cleanup_mnt+0x20/0x30
[   65.872389][ T6551]  task_work_run+0x1dc/0x260
[   65.872397][ T6551]  exit_to_user_mode_loop+0xfc/0x168
[   65.872404][ T6551]  el0_svc+0x170/0x254
[   65.872410][ T6551]  el0t_64_sync_handler+0x84/0x12c
[   65.872415][ T6551]  el0t_64_sync+0x198/0x19c
[   65.872422][ T6551] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[   65.881022][ T6551] CPU: 1 UID: 0 PID: 6551 Comm: syz-executor Not tainted syzkaller #0 PREEMPT 
[   65.881039][ T6551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025
[   65.881044][ T6551] Call trace:
[   65.881047][ T6551]  show_stack+0x2c/0x3c (C)
[   65.881062][ T6551]  __dump_stack+0x30/0x40
[   65.881068][ T6551]  dump_stack_lvl+0xd8/0x12c
[   65.881074][ T6551]  dump_stack+0x1c/0x28
[   65.881079][ T6551]  f2fs_handle_critical_error+0x34c/0x4b8
[   65.881087][ T6551]  f2fs_stop_checkpoint+0x5c/0x70
[   65.881093][ T6551]  f2fs_write_end_io+0x768/0xa70
[   65.881098][ T6551]  bio_endio+0x858/0x894
[   65.881103][ T6551]  submit_bio_noacct+0x158/0x177c
[   65.881109][ T6551]  submit_bio+0x3b4/0x550
[   65.881114][ T6551]  f2fs_submit_write_bio+0x13c/0x324
[   65.881121][ T6551]  __submit_merged_bio+0x254/0x704
[   65.881127][ T6551]  __submit_merged_write_cond+0x380/0x4ac
[   65.881133][ T6551]  f2fs_submit_merged_write+0x38/0x48
[   65.881139][ T6551]  f2fs_sync_node_pages+0x1148/0x128c
[   65.881145][ T6551]  f2fs_write_checkpoint+0xad4/0x16a0
[   65.881150][ T6551]  kill_f2fs_super+0x21c/0x584
[   65.881157][ T6551]  deactivate_locked_super+0xc4/0x12c
[   65.881163][ T6551]  deactivate_super+0xe0/0x100
[   65.881168][ T6551]  cleanup_mnt+0x31c/0x3ac
[   65.881174][ T6551]  __cleanup_mnt+0x20/0x30
[   65.881180][ T6551]  task_work_run+0x1dc/0x260
[   65.881187][ T6551]  exit_to_user_mode_loop+0xfc/0x168
[   65.881194][ T6551]  el0_svc+0x170/0x254
[   65.881200][ T6551]  el0t_64_sync_handler+0x84/0x12c
[   65.881205][ T6551]  el0t_64_sync+0x198/0x19c
[   65.881212][ T6551] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[   65.914838][ T7310] loop4: detected capacity change from 0 to 512
[   65.928096][ T7310] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[   65.928146][ T7310] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2
[   65.931724][ T7310] EXT4-fs (loop4): 1 truncate cleaned up
[   65.932184][ T7310] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.034482][   T31] kauditd_printk_skb: 14 callbacks suppressed
[   66.034515][   T31] audit: type=1326 audit(66.010:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7320 comm="syz.1.166" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb195b3a8 code=0x7ffc0000
[   66.037239][   T31] audit: type=1326 audit(66.010:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7320 comm="syz.1.166" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb195b3a8 code=0x7ffc0000
[   66.037348][   T31] audit: type=1326 audit(66.010:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7320 comm="syz.1.166" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb195b3a8 code=0x7ffc0000
[   66.044681][   T31] audit: type=1326 audit(66.020:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7320 comm="syz.1.166" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffb1959794 code=0x7ffc0000
[   66.044722][   T31] audit: type=1326 audit(66.020:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7320 comm="syz.1.166" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb195b3a8 code=0x7ffc0000
[   66.047621][   T31] audit: type=1326 audit(66.020:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7320 comm="syz.1.166" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=23 compat=0 ip=0xffffb195b3a8 code=0x7ffc0000
[   66.047644][   T31] audit: type=1326 audit(66.020:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7320 comm="syz.1.166" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb195b3a8 code=0x7ffc0000
[   66.047658][   T31] audit: type=1326 audit(66.020:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7320 comm="syz.1.166" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffffb195b3a8 code=0x7ffc0000
[   66.047672][   T31] audit: type=1326 audit(66.020:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7320 comm="syz.1.166" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb195b3a8 code=0x7ffc0000
[   66.072822][   T31] audit: type=1326 audit(66.040:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7320 comm="syz.1.166" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb195b3a8 code=0x7ffc0000
[   66.080509][ T6544] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.166175][ T7330] loop5: detected capacity change from 0 to 4096
[   66.174998][ T7330] EXT4-fs (loop5): Test dummy encryption mode enabled
[   66.175759][ T7330] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[   66.175790][ T7330] System zones: 0-5
[   66.176574][ T7330] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.241867][ T7335] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[   66.531761][ T7341] loop2: detected capacity change from 0 to 512
[   66.652219][ T7341] EXT4-fs (loop2): blocks per group (95) and clusters per group (32768) inconsistent
[   67.331103][ T7329] loop1: detected capacity change from 0 to 40427
[   67.333186][ T7329] f2fs: Unknown parameter 'whint_mode'
[   67.843382][ T7339] loop4: detected capacity change from 0 to 40427
[   67.850385][ T7339] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[   67.850425][ T7339] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[   67.882327][ T7339] F2FS-fs (loop4): invalid crc value
[   67.920119][ T7339] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   67.928711][ T7339] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[   67.930110][ T7339] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   68.459109][ T6544] syz-executor: attempt to access beyond end of device
[   68.459109][ T6544] loop4: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[   68.464227][ T6544] CPU: 1 UID: 0 PID: 6544 Comm: syz-executor Not tainted syzkaller #0 PREEMPT 
[   68.464255][ T6544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025
[   68.464264][ T6544] Call trace:
[   68.464269][ T6544]  show_stack+0x2c/0x3c (C)
[   68.464286][ T6544]  __dump_stack+0x30/0x40
[   68.464293][ T6544]  dump_stack_lvl+0xd8/0x12c
[   68.464299][ T6544]  dump_stack+0x1c/0x28
[   68.464305][ T6544]  f2fs_handle_critical_error+0x34c/0x4b8
[   68.464313][ T6544]  f2fs_stop_checkpoint+0x5c/0x70
[   68.464320][ T6544]  f2fs_write_end_io+0x768/0xa70
[   68.464325][ T6544]  bio_endio+0x858/0x894
[   68.464331][ T6544]  submit_bio_noacct+0x158/0x177c
[   68.464338][ T6544]  submit_bio+0x3b4/0x550
[   68.464344][ T6544]  f2fs_submit_write_bio+0x13c/0x324
[   68.464350][ T6544]  __submit_merged_bio+0x254/0x704
[   68.464357][ T6544]  __submit_merged_write_cond+0x380/0x4ac
[   68.464364][ T6544]  f2fs_submit_merged_write+0x38/0x48
[   68.464370][ T6544]  f2fs_sync_node_pages+0x1148/0x128c
[   68.464376][ T6544]  f2fs_write_checkpoint+0xad4/0x16a0
[   68.464381][ T6544]  kill_f2fs_super+0x21c/0x584
[   68.464388][ T6544]  deactivate_locked_super+0xc4/0x12c
[   68.464395][ T6544]  deactivate_super+0xe0/0x100
[   68.464400][ T6544]  cleanup_mnt+0x31c/0x3ac
[   68.464406][ T6544]  __cleanup_mnt+0x20/0x30
[   68.464412][ T6544]  task_work_run+0x1dc/0x260
[   68.464419][ T6544]  exit_to_user_mode_loop+0xfc/0x168
[   68.464426][ T6544]  el0_svc+0x170/0x254
[   68.464432][ T6544]  el0t_64_sync_handler+0x84/0x12c
[   68.464437][ T6544]  el0t_64_sync+0x198/0x19c
[   68.489452][ T6544] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[   68.570519][   T26] usb 1-1: new full-speed USB device number 4 using dummy_hcd
[   68.584878][ T6910] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.668591][ T7372] loop5: detected capacity change from 0 to 4096
[   68.668981][ T7372] EXT4-fs: quotafile must be on filesystem root
[   68.675022][ T7377] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2
[   68.677336][ T7377] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[   68.771616][   T26] usb 1-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[   68.771659][   T26] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   68.771685][   T26] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   68.781545][   T26] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[   68.791703][   T26] snd-usb-audio 1-1:27.0: probe with driver snd-usb-audio failed with error -2
[   68.812908][ T7382] loop1: detected capacity change from 0 to 128
[   68.928701][ T7384] loop5: detected capacity change from 0 to 512
[   69.565837][ T6803] udevd[6803]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   69.566995][ T2336] usb 1-1: USB disconnect, device number 4
[   69.599227][ T7382] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   69.697806][ T7382] EXT4-fs (loop1): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   69.756582][ T6545] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   71.089465][ T7433] loop2: detected capacity change from 0 to 1024
[   71.340425][ T7433] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.398393][ T7443] loop4: detected capacity change from 0 to 512
[   71.414752][ T7443] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.199: casefold flag without casefold feature
[   71.417107][ T7443] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.199: couldn't read orphan inode 15 (err -117)
[   71.418082][ T7443] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.423017][ T7433] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   71.501354][ T7448] netlink: 96 bytes leftover after parsing attributes in process `syz.1.200'.
[   72.248608][ T6551] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.355130][ T7421] loop0: detected capacity change from 0 to 40427
[   72.357373][ T7421] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[   72.360377][ T7421] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[   72.376081][ T7421] F2FS-fs (loop0): invalid crc value
[   72.378336][ T7467] loop5: detected capacity change from 0 to 512
[   72.486582][ T7467] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   72.508000][ T7421] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   72.592783][ T7421] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[   72.592824][ T7421] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   72.640978][ T6544] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.931951][ T7489] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   72.932159][ T7489] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   74.397539][ T7536] loop1: detected capacity change from 0 to 256
[   74.424465][ T7540] loop0: detected capacity change from 0 to 128
[   74.429761][ T7536] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011d5f, chksum : 0x09863542, utbl_chksum : 0x000cd30d)
[   74.551251][ T7547] netlink: 8 bytes leftover after parsing attributes in process `syz.0.219'.
[   74.557235][ T7547] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.558210][ T7547] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.682553][ T7549] loop0: detected capacity change from 0 to 40427
[   74.688040][ T7549] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[   74.688096][ T7549] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[   74.692950][ T7549] F2FS-fs (loop0): invalid crc value
[   74.704843][ T7549] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   74.707815][ T7549] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[   74.709117][ T7549] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   75.235968][   T31] kauditd_printk_skb: 8 callbacks suppressed
[   75.237790][   T31] audit: type=1326 audit(75.190:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7559 comm="syz.2.222" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   75.237827][   T31] audit: type=1326 audit(75.190:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7559 comm="syz.2.222" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   75.237856][   T31] audit: type=1326 audit(75.190:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7559 comm="syz.2.222" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=73 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   75.439733][ T7567] vhci_hcd: invalid port number 96
[   75.439796][ T7567] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   75.609617][ T7569] loop4: detected capacity change from 0 to 512
[   75.624953][ T7569] EXT4-fs warning (device loop4): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   75.627788][ T7569] EXT4-fs (loop4): mount failed
[   77.848947][ T7630] loop5: detected capacity change from 0 to 256
[   77.858392][ T7630] vfat: Unknown parameter 'ÿÿÿÿÿÿÿÿ'
[   78.077029][ T7630] loop5: detected capacity change from 0 to 2048
[   78.952419][ T7628] loop0: detected capacity change from 0 to 1024
[   79.006115][ T7628] EXT4-fs: Ignoring removed nobh option
[   80.119183][ T7628] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   80.119305][ T7628] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR
[   80.119349][ T7628] EXT4-fs: failed to create workqueue
[   80.119357][ T7628] EXT4-fs (loop0): mount failed
[   80.202371][ T7630] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.341494][ T6910] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.408748][ T7648] syz.2.249 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   80.446951][   T31] audit: type=1326 audit(80.420:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7649 comm="syz.0.251" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb555b3a8 code=0x7ffc0000
[   80.446994][   T31] audit: type=1326 audit(80.420:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7649 comm="syz.0.251" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb555b3a8 code=0x7ffc0000
[   80.451225][   T31] audit: type=1326 audit(80.420:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7649 comm="syz.0.251" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffb555b3a8 code=0x7ffc0000
[   80.451246][   T31] audit: type=1326 audit(80.420:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7649 comm="syz.0.251" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb555b3a8 code=0x7ffc0000
[   80.451259][   T31] audit: type=1326 audit(80.420:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7649 comm="syz.0.251" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb555b3a8 code=0x7ffc0000
[   80.451273][   T31] audit: type=1326 audit(80.420:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7649 comm="syz.0.251" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffffb555b3a8 code=0x7ffc0000
[   80.451286][   T31] audit: type=1326 audit(80.430:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7649 comm="syz.0.251" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb555b3a8 code=0x7ffc0000
[   80.451298][   T31] audit: type=1326 audit(80.430:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7649 comm="syz.0.251" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb555b3a8 code=0x7ffc0000
[   80.454576][   T31] audit: type=1326 audit(80.430:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7649 comm="syz.0.251" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=201 compat=0 ip=0xffffb555b3a8 code=0x7ffc0000
[   80.454590][   T31] audit: type=1326 audit(80.430:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7649 comm="syz.0.251" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb555b3a8 code=0x7ffc0000
[   80.821710][ T7662] loop4: detected capacity change from 0 to 4096
[   80.822123][ T7662] EXT4-fs: Ignoring removed mblk_io_submit option
[   80.825975][ T7662] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   80.826020][ T7662] EXT4-fs (loop4): Test dummy encryption mode enabled
[   80.829705][ T7662] EXT4-fs (loop4): can't mount with data_err=abort, fs mounted w/o journal
[   81.212117][ T7664] syzkaller0: entered promiscuous mode
[   81.212152][ T7664] syzkaller0: entered allmulticast mode
[   81.856229][ T7682] loop0: detected capacity change from 0 to 8192
[   82.643816][ T7693] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   82.644037][ T7693] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   84.975286][ T7744] netlink: 16 bytes leftover after parsing attributes in process `syz.4.281'.
[   85.634899][ T7764] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[   85.681233][ T7768] netlink: 12 bytes leftover after parsing attributes in process `syz.4.292'.
[   85.774433][ T7774] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2
[   85.774468][ T7774] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[   86.056421][ T7780] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   86.059485][ T7780] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   86.540471][   T31] kauditd_printk_skb: 9 callbacks suppressed
[   86.540511][   T31] audit: type=1326 audit(86.500:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7799 comm="syz.2.303" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   86.540548][   T31] audit: type=1326 audit(86.500:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7799 comm="syz.2.303" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   86.540568][   T31] audit: type=1326 audit(86.500:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7799 comm="syz.2.303" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   86.540587][   T31] audit: type=1326 audit(86.500:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7799 comm="syz.2.303" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   86.540604][   T31] audit: type=1326 audit(86.500:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7799 comm="syz.2.303" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   86.540620][   T31] audit: type=1326 audit(86.510:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7799 comm="syz.2.303" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   86.540635][   T31] audit: type=1326 audit(86.510:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7799 comm="syz.2.303" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   86.540652][   T31] audit: type=1326 audit(86.510:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7799 comm="syz.2.303" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   86.540666][   T31] audit: type=1326 audit(86.510:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7799 comm="syz.2.303" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   86.540681][   T31] audit: type=1326 audit(86.510:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7799 comm="syz.2.303" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   86.564114][ T7802] loop2: detected capacity change from 0 to 256
[   86.567047][ T7802] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   86.567065][ T7802] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[   86.591806][ T7802] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[   87.439603][ T7809] loop1: detected capacity change from 0 to 40427
[   87.441317][ T7809] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[   87.441334][ T7809] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[   87.486989][ T7809] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   87.489756][ T7809] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[   87.489798][ T7809] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   87.582522][ T7806] loop4: detected capacity change from 0 to 40427
[   87.588647][ T7806] f2fs: Unknown parameter 'whint_mode'
[   87.830178][ T7843] pim6reg1: entered promiscuous mode
[   87.831358][ T7843] pim6reg1: entered allmulticast mode
[   87.942516][ T7845] loop4: detected capacity change from 0 to 512
[   88.884871][ T7851] vhci_hcd: invalid port number 96
[   88.884931][ T7851] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   88.987565][ T7845] EXT4-fs (loop4): orphan cleanup on readonly fs
[   89.011682][ T7845] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.317: Failed to acquire dquot type 1
[   89.307745][ T7845] EXT4-fs (loop4): 1 truncate cleaned up
[   89.310763][ T7845] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   89.316342][ T7839] EXT4-fs error (device loop4): ext4_lookup:1791: inode #2: comm syz.4.317: deleted inode referenced: 12
[   89.437929][ T7861] loop2: detected capacity change from 0 to 512
[   89.445806][ T7861] EXT4-fs: Ignoring removed mblk_io_submit option
[   89.448196][ T7861] EXT4-fs: inline encryption not supported
[   89.449619][ T7861] EXT4-fs: Ignoring removed mblk_io_submit option
[   89.462134][ T6544] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.698244][ T7861] EXT4-fs (loop2): Test dummy encryption mode enabled
[   89.699740][ T7861] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   89.703952][ T7854] loop1: detected capacity change from 0 to 40427
[   89.713753][ T7854] F2FS-fs (loop1): invalid crc value
[   89.727806][ T7861] EXT4-fs (loop2): 1 truncate cleaned up
[   89.729413][ T7861] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.756187][ T7854] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[   89.761530][ T7854] F2FS-fs (loop1): Start checkpoint disabled!
[   89.779842][ T7870] 8021q: VLANs not supported on lo
[   89.791602][ T7854] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[   89.839405][ T6683] kworker/u8:10: attempt to access beyond end of device
[   89.839405][ T6683] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   89.901943][ T7876] loop4: detected capacity change from 0 to 512
[   89.906725][ T7876] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   90.011853][ T7876] EXT4-fs (loop4): orphan cleanup on readonly fs
[   90.023758][ T7876] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.326: bg 0: block 248: padding at end of block bitmap is not set
[   90.029639][ T7876] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.326: Failed to acquire dquot type 1
[   90.030918][ T6683] CPU: 0 UID: 0 PID: 6683 Comm: kworker/u8:10 Not tainted syzkaller #0 PREEMPT 
[   90.030938][ T6683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025
[   90.030945][ T6683] Workqueue: writeback wb_workfn (flush-7:1)
[   90.030968][ T6683] Call trace:
[   90.030971][ T6683]  show_stack+0x2c/0x3c (C)
[   90.030984][ T6683]  __dump_stack+0x30/0x40
[   90.030990][ T6683]  dump_stack_lvl+0xd8/0x12c
[   90.030996][ T6683]  dump_stack+0x1c/0x28
[   90.031001][ T6683]  f2fs_handle_critical_error+0x34c/0x4b8
[   90.031010][ T6683]  f2fs_stop_checkpoint+0x5c/0x70
[   90.031015][ T6683]  f2fs_write_end_io+0x768/0xa70
[   90.031020][ T6683]  bio_endio+0x858/0x894
[   90.031026][ T6683]  submit_bio_noacct+0x158/0x177c
[   90.031032][ T6683]  submit_bio+0x3b4/0x550
[   90.031037][ T6683]  f2fs_submit_write_bio+0x13c/0x324
[   90.031044][ T6683]  __submit_merged_bio+0x254/0x704
[   90.031050][ T6683]  __submit_merged_write_cond+0x23c/0x4ac
[   90.031056][ T6683]  f2fs_write_data_pages+0x1d28/0x2634
[   90.031063][ T6683]  do_writepages+0x270/0x468
[   90.031071][ T6683]  __writeback_single_inode+0x15c/0x13e8
[   90.031076][ T6683]  writeback_sb_inodes+0x55c/0xe40
[   90.031081][ T6683]  wb_writeback+0x3cc/0xd70
[   90.031085][ T6683]  wb_workfn+0x338/0xdc0
[   90.031092][ T6683]  process_one_work+0x7e8/0x155c
[   90.031098][ T6683]  worker_thread+0x958/0xed8
[   90.031104][ T6683]  kthread+0x5fc/0x75c
[   90.031109][ T6683]  ret_from_fork+0x10/0x20
[   90.031117][ T6683] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   90.078335][ T7876] EXT4-fs (loop4): 1 truncate cleaned up
[   90.107090][ T7876] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   90.698878][ T7880] syzkaller0: entered promiscuous mode
[   90.705516][ T7880] syzkaller0: entered allmulticast mode
[   90.801526][ T6544] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.807535][ T6551] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.553912][ T7905] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   91.554101][ T7905] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   91.558880][ T7905] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   91.563336][ T7905] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   91.565761][ T7905] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   91.570569][ T7905] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   91.951592][ T7905] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   91.951856][ T7905] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   92.003400][   T31] kauditd_printk_skb: 28 callbacks suppressed
[   92.003439][   T31] audit: type=1326 audit(91.980:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7912 comm="syz.2.342" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   92.008102][   T31] audit: type=1326 audit(91.980:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7912 comm="syz.2.342" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   92.008144][   T31] audit: type=1326 audit(91.980:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7912 comm="syz.2.342" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   92.008166][   T31] audit: type=1326 audit(91.980:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7912 comm="syz.2.342" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   92.008183][   T31] audit: type=1326 audit(91.980:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7912 comm="syz.2.342" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   92.008199][   T31] audit: type=1326 audit(91.980:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7912 comm="syz.2.342" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   92.008215][   T31] audit: type=1326 audit(91.980:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7912 comm="syz.2.342" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   92.008230][   T31] audit: type=1326 audit(91.980:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7912 comm="syz.2.342" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   92.008244][   T31] audit: type=1326 audit(91.980:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7912 comm="syz.2.342" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   92.008259][   T31] audit: type=1326 audit(91.980:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7912 comm="syz.2.342" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7ffc0000
[   92.622820][ T7925] vhci_hcd: invalid port number 96
[   92.622879][ T7925] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   92.872941][ T7910] netlink: 'syz.4.340': attribute type 12 has an invalid length.
[   92.929227][ T7930] loop4: detected capacity change from 0 to 4096
[   92.949833][ T7930] EXT4-fs (loop4): Test dummy encryption mode enabled
[   92.952309][ T7930] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[   92.952383][ T7930] System zones: 0-5
[   93.857469][ T7935] loop5: detected capacity change from 0 to 128
[   93.948687][ T7936] loop0: detected capacity change from 0 to 256
[   93.952993][ T7930] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   93.987058][ T7930] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-ce"
[   94.121540][ T7938] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   94.460046][ T6544] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.495361][ T7942] loop0: detected capacity change from 0 to 40427
[   94.577746][ T7953] loop1: detected capacity change from 0 to 512
[   94.665945][ T7953] EXT4-fs (loop1): 1 orphan inode deleted
[   94.666402][ T7953] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.683201][ T2136] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:7: Failed to release dquot type 1
[   94.692339][ T7942] loop0: detected capacity change from 0 to 40427
[   94.697429][ T7942] F2FS-fs (loop0): invalid crc value
[   94.974294][ T7942] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[   94.976786][ T7942] F2FS-fs (loop0): Start checkpoint disabled!
[   94.980071][ T7942] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[   95.262476][ T7971] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   95.265908][ T7971] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   95.472911][ T7974] input: syz0 as /devices/virtual/input/input5
[   95.738739][ T6545] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.802730][ T7984] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   95.804688][ T7984] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   96.045040][ T7990] hub 8-0:1.0: USB hub found
[   96.046979][ T7990] hub 8-0:1.0: 8 ports detected
[   97.842365][ T8004] loop1: detected capacity change from 0 to 2048
[   97.844891][ T8006] loop0: detected capacity change from 0 to 1024
[   97.849267][ T8006] EXT4-fs: Ignoring removed oldalloc option
[   97.854183][ T8006] EXT4-fs: Ignoring removed bh option
[   97.887668][ T8004] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.887668][ T8006] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.295712][ T8021] loop4: detected capacity change from 0 to 512
[   98.345147][ T8021] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.402239][ T8026] loop5: detected capacity change from 0 to 256
[   98.445351][ T8026] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011d5f, chksum : 0x09863542, utbl_chksum : 0x000cd30d)
[   99.516024][ T6545] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.551978][ T6550] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.867310][ T8034] pim6reg1: entered promiscuous mode
[   99.867346][ T8034] pim6reg1: entered allmulticast mode
[  100.467423][ T8039] vhci_hcd: invalid port number 96
[  100.467454][ T8039] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  100.523754][ T8040] loop5: detected capacity change from 0 to 2048
[  100.582616][ T8040] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.618345][ T8046] loop1: detected capacity change from 0 to 256
[  100.958710][ T8046] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  100.960670][ T8046] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  100.964870][ T8046] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  100.983713][ T6910] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.055282][ T6544] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.117544][   T31] kauditd_printk_skb: 17 callbacks suppressed
[  101.117609][   T31] audit: type=1326 audit(101.090:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8057 comm="syz.4.386" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88b5b3a8 code=0x7ffc0000
[  101.117647][   T31] audit: type=1326 audit(101.090:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8057 comm="syz.4.386" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88b5b3a8 code=0x7ffc0000
[  101.117671][   T31] audit: type=1326 audit(101.090:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8057 comm="syz.4.386" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff88b5b3a8 code=0x7ffc0000
[  101.117689][   T31] audit: type=1326 audit(101.090:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8057 comm="syz.4.386" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88b5b3a8 code=0x7ffc0000
[  101.117705][   T31] audit: type=1326 audit(101.090:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8057 comm="syz.4.386" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88b5b3a8 code=0x7ffc0000
[  101.117740][   T31] audit: type=1326 audit(101.090:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8057 comm="syz.4.386" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff88b5b3a8 code=0x7ffc0000
[  101.117759][   T31] audit: type=1326 audit(101.090:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8057 comm="syz.4.386" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88b5b3a8 code=0x7ffc0000
[  101.117774][   T31] audit: type=1326 audit(101.090:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8057 comm="syz.4.386" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88b5b3a8 code=0x7ffc0000
[  101.117789][   T31] audit: type=1326 audit(101.090:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8057 comm="syz.4.386" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff88b5b3a8 code=0x7ffc0000
[  101.117805][   T31] audit: type=1326 audit(101.090:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8057 comm="syz.4.386" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88b5b3a8 code=0x7ffc0000
[  101.151342][ T8064] loop4: detected capacity change from 0 to 512
[  101.223317][ T8064] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.242433][ T6544] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.265669][ T8075] tipc: Started in network mode
[  101.266712][ T8075] tipc: Node identity ac14140f, cluster identity 4711
[  101.269532][ T8075] tipc: New replicast peer: 255.255.255.255
[  101.270879][ T8075] tipc: Enabled bearer <udp:syz2>, priority 10
[  101.307230][ T8079] loop5: detected capacity change from 0 to 512
[  101.312267][ T8079] EXT4-fs warning (device loop5): dx_probe:861: inode #2: comm syz.5.395: dx entry: limit 0 != root limit 125
[  101.312310][ T8079] EXT4-fs warning (device loop5): dx_probe:934: inode #2: comm syz.5.395: Corrupt directory, running e2fsck is recommended
[  101.312672][ T8079] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117
[  101.318570][ T8079] EXT4-fs error (device loop5): ext4_iget_extra_inode:5104: inode #15: comm syz.5.395: corrupted in-inode xattr: invalid ea_ino
[  101.325234][ T8079] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.395: couldn't read orphan inode 15 (err -117)
[  101.328007][ T8079] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.350681][ T6910] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.116277][ T8100] loop2: detected capacity change from 0 to 4096
[  102.122244][ T8100] EXT4-fs: Ignoring removed mblk_io_submit option
[  102.138310][ T8100] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  102.138359][ T8100] EXT4-fs (loop2): Test dummy encryption mode enabled
[  102.140704][ T8100] EXT4-fs (loop2): can't mount with data_err=abort, fs mounted w/o journal
[  102.542041][ T8105] vhci_hcd: invalid port number 96
[  102.542075][ T8105] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  102.553544][ T6793] tipc: Node number set to 2886997007
[  103.033703][ T8114] loop2: detected capacity change from 0 to 256
[  103.467070][ T8123] loop4: detected capacity change from 0 to 256
[  103.467435][ T8123] exfat: Unknown parameter 'fsmagic'
[  104.215665][ T8114] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011d5f, chksum : 0x09863542, utbl_chksum : 0x000cd30d)
[  104.756070][ T8139] netlink: 4 bytes leftover after parsing attributes in process `syz.4.413'.
[  104.884006][ T8148] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  104.885830][ T8148] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  104.983311][ T8154] loop0: detected capacity change from 0 to 512
[  105.205296][ T8154] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.998587][ T8166] loop4: detected capacity change from 0 to 256
[  106.206433][ T6550] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.261879][ T8161] loop5: detected capacity change from 0 to 8192
[  106.265068][ T8169] loop2: detected capacity change from 0 to 16
[  106.273027][ T8169] erofs (device loop2): mounted with root inode @ nid 36.
[  106.322518][ T6803]  loop5: p1 p2
[  106.322548][ T6803] loop5: partition table partially beyond EOD, truncated
[  106.322671][ T6803] loop5: p1 start 16777216 is beyond EOD, truncated
[  106.322688][ T6803] loop5: p2 size 515840 extends beyond EOD, truncated
[  106.333484][ T8161]  loop5: p1 p2
[  106.334781][ T8161] loop5: partition table partially beyond EOD, truncated
[  106.336374][ T8161] loop5: p1 start 16777216 is beyond EOD, truncated
[  106.337442][ T8161] loop5: p2 size 515840 extends beyond EOD, truncated
[  106.471851][ T8179] netlink: 'syz.2.425': attribute type 29 has an invalid length.
[  106.471925][ T8179] netlink: 'syz.2.425': attribute type 3 has an invalid length.
[  106.471983][ T8179] netlink: 76 bytes leftover after parsing attributes in process `syz.2.425'.
[  106.738888][ T6803] udevd[6803]: inotify_add_watch(7, /dev/loop5p2, 10) failed: No such file or directory
[  106.773798][ T6803] udevd[6803]: inotify_add_watch(7, /dev/loop5p2, 10) failed: No such file or directory
[  106.774823][   T31] kauditd_printk_skb: 13 callbacks suppressed
[  106.774848][   T31] audit: type=1326 audit(106.750:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8184 comm="syz.1.432" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb195b3a8 code=0x7ffc0000
[  106.778437][   T31] audit: type=1326 audit(106.750:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8184 comm="syz.1.432" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb195b3a8 code=0x7ffc0000
[  106.786426][   T31] audit: type=1326 audit(106.760:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8184 comm="syz.1.432" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb195b3a8 code=0x7ffc0000
[  106.786570][   T31] audit: type=1326 audit(106.760:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8184 comm="syz.1.432" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb195b3a8 code=0x7ffc0000
[  106.787024][   T31] audit: type=1326 audit(106.760:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8184 comm="syz.1.432" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb195b3a8 code=0x7ffc0000
[  106.789440][   T31] audit: type=1326 audit(106.760:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8184 comm="syz.1.432" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb195b3a8 code=0x7ffc0000
[  106.793758][   T31] audit: type=1326 audit(106.770:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8184 comm="syz.1.432" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb195b3a8 code=0x7ffc0000
[  106.794949][   T31] audit: type=1326 audit(106.770:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8184 comm="syz.1.432" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb195b3a8 code=0x7ffc0000
[  106.796855][   T31] audit: type=1326 audit(106.770:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8184 comm="syz.1.432" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb195b3a8 code=0x7ffc0000
[  106.797626][   T31] audit: type=1326 audit(106.770:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8184 comm="syz.1.432" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb195b3a8 code=0x7ffc0000
[  106.863309][ T8192] loop1: detected capacity change from 0 to 512
[  106.867634][ T8192] ext4: Unknown parameter 'noacl'
[  107.457707][ T8197] loop2: detected capacity change from 0 to 512
[  107.481817][ T8198] loop1: detected capacity change from 0 to 8192
[  107.499722][ T8197] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.434: Failed to acquire dquot type 1
[  107.506145][ T8197] EXT4-fs (loop2): 1 truncate cleaned up
[  107.506745][ T8197] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.586443][ T6551] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.709352][ T8205] loop2: detected capacity change from 0 to 128
[  107.739686][ T8207] loop1: detected capacity change from 0 to 256
[  107.788049][ T8207] FAT-fs (loop1): bogus number of FAT sectors
[  107.788101][ T8207] FAT-fs (loop1): Can't find a valid FAT filesystem
[  107.926708][ T8213] loop0: detected capacity change from 0 to 256
[  107.931606][ T8213] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  107.931625][ T8213] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  107.945961][ T8213] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  108.535756][ T8227] loop1: detected capacity change from 0 to 256
[  108.545740][ T8227] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  109.877120][ T8237] pim6reg1: entered promiscuous mode
[  109.878261][ T8237] pim6reg1: entered allmulticast mode
[  109.894119][ T8233] loop5: detected capacity change from 0 to 40427
[  109.899581][ T8233] F2FS-fs (loop5): Small segment_count (9 < 1 * 24)
[  109.901027][ T8233] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  109.918299][ T8233] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  109.922181][ T8233] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  109.923543][ T8233] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  109.986377][ T8242] loop0: detected capacity change from 0 to 512
[  110.044612][ T8242] EXT4-fs (loop0): failed to initialize system zone (-117)
[  110.044896][ T8242] EXT4-fs (loop0): mount failed
[  110.723422][ T8245] loop4: detected capacity change from 0 to 128
[  112.208601][ T8264] loop5: detected capacity change from 0 to 256
[  112.226321][ T8264] FAT-fs (loop5): Directory bread(block 64) failed
[  112.228781][ T8264] FAT-fs (loop5): Directory bread(block 65) failed
[  112.232772][ T8264] FAT-fs (loop5): Directory bread(block 66) failed
[  112.233959][ T8264] FAT-fs (loop5): Directory bread(block 67) failed
[  112.235256][ T8264] FAT-fs (loop5): Directory bread(block 68) failed
[  112.236594][ T8264] FAT-fs (loop5): Directory bread(block 69) failed
[  112.238078][ T8264] FAT-fs (loop5): Directory bread(block 70) failed
[  112.240421][ T8264] FAT-fs (loop5): Directory bread(block 71) failed
[  112.241852][ T8264] FAT-fs (loop5): Directory bread(block 72) failed
[  112.243270][ T8264] FAT-fs (loop5): Directory bread(block 73) failed
[  112.639372][ T8268] loop0: detected capacity change from 0 to 256
[  112.897108][ T8268] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  112.926954][ T8268] exFAT-fs (loop0): error, data size is invalid(9000)
[  112.926978][ T8268] exFAT-fs (loop0): Filesystem has been set read-only
[  112.934262][ T8268] exFAT-fs (loop0): error, data size is invalid(9000)
[  113.067421][   T31] kauditd_printk_skb: 11 callbacks suppressed
[  113.067458][   T31] audit: type=1326 audit(113.040:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8254 comm="syz.2.455" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7fc00000
[  113.072287][   T31] audit: type=1326 audit(113.050:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8254 comm="syz.2.455" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff81d5b3a8 code=0x7fc00000
[  113.075634][   T31] audit: type=1326 audit(113.050:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8254 comm="syz.2.455" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7fc00000
[  113.079156][   T31] audit: type=1326 audit(113.050:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8254 comm="syz.2.455" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81d5b3a8 code=0x7fc00000
[  113.166246][ T8272] loop2: detected capacity change from 0 to 256
[  113.166631][ T8272] exfat: Invalid uid '0x00000000ffffffff'
[  113.341217][ T8278] loop4: detected capacity change from 0 to 40427
[  113.351186][ T8278] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  113.351212][ T8278] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  113.356000][ T8278] F2FS-fs (loop4): invalid crc value
[  113.369780][ T8278] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  113.378457][ T8278] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  113.380042][ T8278] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  113.491814][ T8278] syz.4.465: attempt to access beyond end of device
[  113.491814][ T8278] loop4: rw=2049, sector=77824, nr_sectors = 2048 limit=40427
[  113.496906][ T8278] syz.4.465: attempt to access beyond end of device
[  113.496906][ T8278] loop4: rw=2049, sector=79872, nr_sectors = 1968 limit=40427
[  113.652016][ T8295] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  113.654236][ T8295] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  114.522436][ T8313] netlink: 16 bytes leftover after parsing attributes in process `syz.0.473'.
[  114.936153][ T8320] loop1: detected capacity change from 0 to 8192
[  116.743293][ T8336] loop4: detected capacity change from 0 to 256
[  116.850625][ T8340] netlink: 'syz.1.478': attribute type 13 has an invalid length.
[  116.927598][ T8340] gretap0: refused to change device tx_queue_len
[  116.927629][ T8340] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  117.333859][ T8352] loop1: detected capacity change from 0 to 128
[  117.335106][ T8349] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  117.338544][ T8352] EXT4-fs: Ignoring removed nobh option
[  117.345341][ T8351] loop0: detected capacity change from 0 to 256
[  117.359688][ T8352] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  117.383482][ T8351] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011d5f, chksum : 0x09863542, utbl_chksum : 0x000cd30d)
[  117.450963][ T6604] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  117.485538][ T6604] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  118.551411][ T8367] loop4: detected capacity change from 0 to 16
[  118.646737][ T8367] erofs (device loop4): mounted with root inode @ nid 36.
[  119.253570][ T8372] binder: 8371:8372 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[  119.256177][ T8372] binder: 8372 RLIMIT_NICE not set
[  119.313684][ T8375] binder: 8371:8375 BC_CLEAR_DEATH_NOTIFICATION death notification cookie mismatch 0000000001000000 != 0000000000000000
[  119.376182][ T8378] loop5: detected capacity change from 0 to 256
[  119.467011][ T8380] loop4: detected capacity change from 0 to 4096
[  119.525503][ T8380] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  119.527061][ T8380] EXT4-fs (loop4): Test dummy encryption mode enabled
[  119.537334][ T8380] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.543956][ T8377] loop2: detected capacity change from 0 to 40427
[  119.546052][ T8377] f2fs: Unknown parameter 'whint_mode'
[  119.694889][ T6545] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  119.731025][ T6544] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.789219][   T31] audit: type=1326 audit(119.760:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8397 comm="syz.4.500" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88b5b3a8 code=0x7ffc0000
[  119.795954][   T31] audit: type=1326 audit(119.760:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8397 comm="syz.4.500" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88b5b3a8 code=0x7ffc0000
[  119.800057][   T31] audit: type=1326 audit(119.770:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8397 comm="syz.4.500" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff88b5b3a8 code=0x7ffc0000
[  119.805754][   T31] audit: type=1326 audit(119.770:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8397 comm="syz.4.500" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88b5b3a8 code=0x7ffc0000
[  119.809976][   T31] audit: type=1326 audit(119.770:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8397 comm="syz.4.500" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88b5b3a8 code=0x7ffc0000
[  119.814068][   T31] audit: type=1326 audit(119.770:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8397 comm="syz.4.500" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff88b5b3a8 code=0x7ffc0000
[  119.817847][   T31] audit: type=1326 audit(119.770:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8397 comm="syz.4.500" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88b5b3a8 code=0x7ffc0000
[  119.881169][ T8400] ------------[ cut here ]------------
[  119.881181][ T8400] verifier bug: error during ctx access conversion (0)(1)
[  119.881233][ T8400] WARNING: CPU: 1 PID: 8400 at kernel/bpf/verifier.c:21452 bpf_check+0x1466c/0x15d8c
[  119.884645][ T8400] Modules linked in:
[  119.885241][ T8400] CPU: 1 UID: 0 PID: 8400 Comm: syz.1.498 Not tainted syzkaller #0 PREEMPT 
[  119.886689][ T8400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025
[  119.888254][ T8400] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--)
[  119.889396][ T8400] pc : bpf_check+0x1466c/0x15d8c
[  119.890214][ T8400] lr : bpf_check+0x1466c/0x15d8c
[  119.891189][ T8400] sp : ffff80009dcd7480
[  119.891839][ T8400] x29: ffff80009dcd7980 x28: dfff800000000000 x27: ffff80009d7e7058
[  119.893126][ T8400] x26: ffff0000d5c08000 x25: 0000000000000000 x24: ffff0000d5c08670
[  119.894331][ T8400] x23: 0000000000000061 x22: ffff80009d7e705a x21: 1fffe0001ab81001
[  119.895636][ T8400] x20: 0000000000000000 x19: ffff800092ef2000 x18: 1fffe00033776488
[  119.896982][ T8400] x17: ffff80008f85e000 x16: ffff80008b065bd0 x15: 0000000000000001
[  119.898379][ T8400] x14: 1fffe00033778f08 x13: 0000000000000000 x12: 0000000000000000
[  119.899635][ T8400] x11: 0000000000080000 x10: 0000000000000003 x9 : f6ec99a223470700
[  119.900883][ T8400] x8 : f6ec99a223470700 x7 : ffff800080493890 x6 : 0000000000000000
[  119.902166][ T8400] x5 : 0000000000000001 x4 : 0000000000000001 x3 : 0000000000000010
[  119.903514][ T8400] x2 : ffff80009dcd7040 x1 : ffff80008b6b38c0 x0 : 0000000000000001
[  119.904810][ T8400] Call trace:
[  119.905284][ T8400]  bpf_check+0x1466c/0x15d8c (P)
[  119.906034][ T8400]  bpf_prog_load+0xec8/0x13fc
[  119.906754][ T8400]  __sys_bpf+0x450/0x628
[  119.907359][ T8400]  __arm64_sys_bpf+0x80/0x98
[  119.908078][ T8400]  invoke_syscall+0x98/0x254
[  119.908703][ T8400]  el0_svc_common+0x130/0x23c
[  119.909340][ T8400]  do_el0_svc+0x48/0x58
[  119.909911][ T8400]  el0_svc+0x5c/0x254
[  119.910504][ T8400]  el0t_64_sync_handler+0x84/0x12c
[  119.911253][ T8400]  el0t_64_sync+0x198/0x19c
[  119.911914][ T8400] irq event stamp: 1886
[  119.912500][ T8400] hardirqs last  enabled at (1885): [<ffff800080493924>] finish_lock_switch+0xb0/0x1c0
[  119.914087][ T8400] hardirqs last disabled at (1886): [<ffff80008b05ee64>] el1_brk64+0x20/0x54
[  119.915545][ T8400] softirqs last  enabled at (1434): [<ffff8000803db160>] handle_softirqs+0xaf8/0xc88
[  119.916919][ T8400] softirqs last disabled at (1393): [<ffff800080022028>] __do_softirq+0x14/0x20
[  119.918195][ T8400] ---[ end trace 0000000000000000 ]---
[  119.937361][ T8400] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  119.938607][ T8400] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  120.034481][   T31] audit: type=1326 audit(119.770:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8397 comm="syz.4.500" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff88b5b3a8 code=0x7ffc0000
[  120.037902][   T31] audit: type=1326 audit(119.770:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8397 comm="syz.4.500" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88b5b3a8 code=0x7ffc0000
[  120.041531][   T31] audit: type=1326 audit(119.770:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8397 comm="syz.4.500" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff88b5b3a8 code=0x7ffc0000
[  125.930764][ T2426] ieee802154 phy0 wpan0: encryption failed: -22
[  125.931963][ T2426] ieee802154 phy1 wpan1: encryption failed: -22