last executing test programs:

49.395968768s ago: executing program 3 (id=742):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
truncate(0x0, 0x102000)

49.214582338s ago: executing program 3 (id=745):
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000000500000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10)

48.819626036s ago: executing program 3 (id=751):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="00ce940068fcff3f"], 0x48)

48.547938725s ago: executing program 3 (id=753):
syz_emit_ethernet(0x9a, &(0x7f0000000340)=ANY=[@ANYBLOB="0180c2000000aaaaaaaaaabb86dd6001010000641100fe8000000000000000000000000000bbfe8000000000000000000000000000aa00000e22"], 0x0)

47.623023642s ago: executing program 3 (id=756):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=@framed={{}, [@printk={@llx, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x2d}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$int_in(r4, 0x5421, &(0x7f0000000040)=0x2)
connect$vsock_stream(r4, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
shutdown(r4, 0x1)
write(r4, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x128}, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x4080)
ioctl$sock_inet6_SIOCSIFADDR(r5, 0x8916, 0x0)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000240)='./file0\x00', 0x2020084c, &(0x7f0000000440)=ANY=[], 0x81, 0x1505, &(0x7f0000002180)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x8042, 0x0)

43.408231936s ago: executing program 3 (id=765):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000340)={[{@nogrpid}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@jqfmt_vfsv0}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0100000005000000e27f000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0}, &(0x7f0000000880), &(0x7f00000008c0)=r1}, 0x20)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x183081, 0x0)
close(r3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
write$cgroup_subtree(r2, &(0x7f0000000380)=ANY=[@ANYBLOB="8fedcb5d07081196f37538e486dd63"], 0x280)

28.301386062s ago: executing program 32 (id=765):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000340)={[{@nogrpid}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@jqfmt_vfsv0}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0100000005000000e27f000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0}, &(0x7f0000000880), &(0x7f00000008c0)=r1}, 0x20)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x183081, 0x0)
close(r3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
write$cgroup_subtree(r2, &(0x7f0000000380)=ANY=[@ANYBLOB="8fedcb5d07081196f37538e486dd63"], 0x280)

18.284813926s ago: executing program 1 (id=807):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000500000002"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
execve(0x0, 0x0, 0x0)

14.759932003s ago: executing program 1 (id=814):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0xffffffffffffff22, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
write$FUSE_BMAP(0xffffffffffffffff, 0x0, 0x0)
write$cgroup_subtree(r1, 0x0, 0x66)

12.038488643s ago: executing program 2 (id=821):
r0 = socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_emit_ethernet(0x9c, &(0x7f00000002c0)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x66, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x1}, {0x5, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {}]}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000006c0)=@bpf_ext={0x1c, 0x1b, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000008000000000000000100000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70200000100000000000000000100008500000083000000bf09000800000000550ee09500000000000000186a00001000000000180100002020752500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb701ffffef000000b7030000050000008500000006000000186b0000100000000000000003000000bf91000000000000b7020000000000008500000085000000b700000000000000950000000000000000000000004e2d61372b18bdea10a945091b12122cf80e60b37ae4d8741767c113e76288a461073bd876f8fc62ad4f6aba446a39bf643a3b2a"], &(0x7f0000000040)='GPL\x00', 0x6f1, 0x5, &(0x7f00000000c0)=""/5, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000100)={0x9, 0x2}, 0x8, 0x10, &(0x7f0000000180)={0x1, 0xb, 0x7fffffff, 0x5}, 0x10, 0x3350, r5, 0x3, &(0x7f00000001c0)=[0xffffffffffffffff, r4, r4], &(0x7f0000000280)=[{0x3, 0x5, 0x4, 0x9}, {0x5, 0x4, 0x6, 0x3}, {0x1, 0x1, 0x9, 0x5}], 0x10, 0x6, @void, @value}, 0x94)
ioctl$BTRFS_IOC_FS_INFO(r6, 0x8400941f, &(0x7f0000000b00))
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0xb, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'lo\x00', <r8=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000002c0)=@newqdisc={0x48, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r8, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x4, "000000000000000200"}}}]}, 0x48}}, 0x0)

8.747686821s ago: executing program 2 (id=823):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0x1000e, &(0x7f0000000300), 0x3, 0x445, &(0x7f0000000b00)="$eJzs28+PE1UcAPDvTLeLCLgr4g9+qKto3PhjlwVUDh7UaOIBExM96HGzuxCksIZdEyFEwRg8GWPi3Xj0X/CkF2M8mXjVuyEhhgvgqWbaGbYtbdktLUX6+SQD78282fe+nXnte/PaAEbWVPZPErE1Iv6MiIl6trnAVP2/q5fPLly7fHYhiWr13X+SWrkrl88uFEWL87bkmek0Iv0iid1t6l05feb4fKWydCrPz66e+Gh25fSZF46dmD+6dHTp5P5Dhw4emHv5pf0v9iXOrE1Xdn26vGfnWx988/bhr5rib4mjT6a6HXy6Wu1zdcO1rSGdjA2xIWxIKSKyy1Wu9f+JKMXaxZuINz8fauOAgapWq9UtnQ+fqwJ3sSSa87o8jIrigz6b/xZb6yDg1cENP4bu0mv1CVAW99V8qx8ZizQvU26Z3/bTVES8f+7f77ItBvMcAgCgyU/Z+Of5duO/NB5qKHdfvjY0GRH3R8T2iHggInZExIMRtbIPR8QjG6y/dZHkxvFPerGnwNYpG/+9kq9tNY//itFfTJby3LZa/OXkyLHK0r78NZmO8qYsP9eljp/f+OPrTscax3/ZltVfjAXzdlwc29R8zuL86vytxNzo0vmIXWPt4k+urwQkEbEzInb1WMexZ3/Y0+nYzePvog/rTNXvI56pX/9z0RJ/Iem+Pjl7T1SW9s0Wd8WNfvv9wjud6r+l+Psgu/73tr3/r8c/mTSu165svI4Lf33ZcU7T6/0/nrxXS4/n+z6ZX109NRcxnhyuN7px//61c4t8UT6Lf3pv+/6/PdZeid0Rkd3Ej0bEYxHxeN72JyLiyYjY2yX+X19/6sPe4x+sLP7FDV3/tcR4tO5pnygd/+XHpkonb4j/Wvfrf7CWms73rOf9bz3t6u1uBgAAgP+fNCK2RpLOXE+n6cxM/fvyOyLSyvLK6nNHlj8+uVj/jcBklNPiSddEw/PQuXxaX8+fj4j6VwuK4wfy58bfljbX8jMLy5XFYQcPI25Lh/6f+bs07NYBA+f3WjC69H8YXfo/jC79H0ZXm/6/eRjtAG6/dp//nw2hHcDt19L/LfvBCDH/h9Gl/8Po0v9hJK1sjpv/SL5rovhLPZ5+1yaifEc0Y2CJSO+IZkgMKDHc9yUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIB++S8AAP///fHg0g==")
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x1, 0x5514, &(0x7f0000005d80)="$eJzs3M1rI2UYAPAn7Xa/XYt48LYDi9DCJmy67aK3qrv4gV3KqgdPmiZpyG6SKU2a1p48eBQPnv0nRMGTR/8GD569iQfFm6BkZqpbP8ClSWPb3w8mz7xv3jzzvGFZeGZKAjiz5pNffirFtbgUEbMRcTUiOy8VR2Y1D89FxPWImHnsKBXzf0ycj4jLEXFtlDzPWSre+vTm8MbKj2/8/PW3F85d+fyr76a3a2Dano+I7lZ+vtvNY9rK48NivjZsZ7G7PCxi/kb3UTFO87jb3Mgy7NYO1tWyeLuVr0+3dvqjuNmp1Uex1d7M5rd6+QX7w9ZBnuwDD2vb2bjR3Mhiu59msbWf17W3n//ftt8f5HkaRb4PsvQxGBzEfL6518z3s/Uoi/XeoJjP86aN5t4oDotYXC7qaaeR1bFxlG/6/+3Ndm9nLxk2t/vttJesVKovVKp3ytXttNEcNJfLtW7jznKy0OqMlpUHzVp3tZWmrU6zUk+7i8lCq14vV6vJwt3mRrvWS6rVyu3KrfLKYnF2M3n1/jtJp5EsjOLL7d7OoN3pJ5vpdpJ/YjFZqtx+cTG5UU3eWltP1h/cu7e2/vZ7d9+9/9La668Ui/5WVrKwdGtpqVy9VV6qLp6h/X9UFD3G/cORlJ5s+YVJ1QFwguj/gWmYXP+//SBi8v1/6P/H4kT1vxPr/z87s/uHI3nC/h8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgNPj+7kvXstO5vPxlWL+qWLqmWJcioiZiPjtH8zG+UM5Z4s8c/+yfu4vNXxTiizD6BoXiuNyRKwWx69PT/pbAAAAgNPryw+vf5J36/nL/LQL4jjlN21mrr4/pnyliJib/2FM2WZGL8+OKVn27/tc7I0pW3YD6+KYkuW33M6NK9t/MnsoXHwslPIwc6zlAAAAx+JwJ3C8XQgAAADH6eNpF8B0lOLgUebBs+DsL+//fCB46dAIAAAAOIFK0y4AAAAAmLis//f7fwAAAHC65b//BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAv7NzP7lpA1EcgJ8NLvSfiqru26N0B8foEbrssuIAvQRHoFfIBTgD2eUIEUR4HBSiJIrisa2Q75PMMBb8/IzwYmakAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALp0Wa0X//9+/9c2Z7dv54WX/dG2bgAAAHgLttV6Ub+Zpf7H5vzn5tTXpl9ERBkRD43dR/HuJHPU5FSPfL66V8NFRJ1wuMakOT5ExM/muP7S9a8AAAAA52uzXM3TaD29zIYuiD6lSZvy069MeUVEVLOrTGnlIe9bprD6/z2OP5nS6gmsaaawNOU2zpX2LPXjfpy1m95pitSUT38/270DAAA9Gp00/Y5CAAAA6NPvoQtgGEXcLmUelwInqWmW996f9AAAAIBXqBi6AAAAAKBz9fjf/n8AAABw3tL+fwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHRpW60Xm+Vq3jZnt28nz90AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADADfvzjgIhEAZhsHd9ZzL3P6w0aGpqUgXCx98YDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAvPndX/5PTI0zydxrY+l5JFk7NbZOjb1z4+gP4+vXAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABc7M9tCoAgEIbBrezrX3j/w8YLeoYIZkB42EVBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBH7hnLOLXO2BJPVbVME3vGvaqOrBJnVokrF/p4sPUPfwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwMvO/bzGUcUBAH8zs7NJq+IaZQ8RseBBLzbd1tbexIMSPPgnCCHd1titP9ocbClCLt4k515EjyKCEm/9H3puoZd662EPFTxX5lcy+XFYhZ3ZZD8fePO+Mwzzvm8WQr77XgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADsM/5wL06yQ6+I4/Law2d317P+0YE+c3/78XLWsjhqMunj4Y36SdSvnSw2nwwAAADzIanq+xDCk3RnNevjXl7/p9U9Wc3/00tFXNXzB+v+qq9q/6z9+cfT13YH6hXjZA+9ujEanjucSmd6s5xhz1+e4KZO/ubz716S/AOJP9l6dZzm7zP64cGDj7p5uDD9dAGA/+ds1ZdB9ftQ1g/aTAyAudGpFd5V/Z/02s0JAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoAnjrfBCFUchhOXOXpx59Ozu+lH9/e3Hy1W7dO/edv2Z2SPSEMLVjdHwXFhscDaz7dbtO9fXRqPhzeaDN0MIbY3+QTn9659NcHMIU0rjTEtvfs6CuPywZyWf4xG0+EMJAIATKS1bVtc/SXdWs2vRUgjPf95f/79di8OE9f/Tzy89rI9Vr/8Hjc1w9q1s3vh65dbtO+9u3Fi7Nrw2/PK984P3BxcuX7x4eSX/rqQ4tp0mAAAAx1i3bPX6P146vP5/uhaHCev/b34cfFcfK1H/H2lv0a/tTAAAAObbK2f++Ts64nrU7YZv1zY3bw6K4+75+eLYQqr/2ULZ6vV/stR2VgAAAEATxlvRvvX/K7U4TLj+/+Ivr/9Wf2YSQjhVrv+fXf9qdKW56cy0qfzx8EL5cDsLAAAAKOvxUwfW/9N8/3+8u+UhDiG881YRl/8GcKL6P/n4+1/rY9X3/19oboozKe4X7yPv+yF0+m1nBAAAwEm2mLdeXv//le6sfvH76U+79v8DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANO3fAAAA///FdTwZ")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events.local\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r4, 0x7, &(0x7f0000000040)={0x0, 0x1, 0x4, 0x1107})
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x13, &(0x7f0000000040), 0x0)
truncate(&(0x7f0000000000)='./file1\x00', 0xf0ffff)

8.26791496s ago: executing program 1 (id=826):
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e850000000700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_buf(r4, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18)

7.493081797s ago: executing program 4 (id=827):
r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0)
syz_mount_image$fuse(&(0x7f0000000340), &(0x7f0000000380)='./file0\x00', 0x1000000, &(0x7f00000024c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x3000}}, 0x0, 0x0, 0x0)

7.124009535s ago: executing program 4 (id=829):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x49, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @remote}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0xc2}}}}}}, 0x0)

6.845881975s ago: executing program 4 (id=830):
chdir(0x0)
fchmodat(0xffffffffffffff9c, 0x0, 0xffffff19)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
syz_usb_connect(0x0, 0x41, 0x0, 0x0)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000580)=""/67, 0x0, 0x166676000})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, 0x0, 0x6000})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000d80))
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000002c0)={0x1, r1})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1ff)
unshare(0x2040400)

6.736443164s ago: executing program 2 (id=831):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socket$key(0xf, 0x3, 0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x200041, &(0x7f00000008c0)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@noquota}, {@abort}, {@noload}, {@noload}]}, 0x64, 0x50a, &(0x7f0000000200)="$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")
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x2}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x2, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {0x7, 0x0, 0x0, 0x9}, {0x7, 0x0, 0xc}, {0x18, 0x2, 0x2, 0x0, r3}, {}, {0x46, 0x8, 0xfff1, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

6.536127554s ago: executing program 1 (id=833):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
bind$unix(r2, &(0x7f0000000380)=@file={0x0, './bus\x00'}, 0x6e)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

4.851702847s ago: executing program 4 (id=834):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffc4, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000080), &(0x7f0000000880)=""/166}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'pim6reg1\x00', 0xe511})
close(r0)

4.671956437s ago: executing program 0 (id=835):
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/profiling', 0x20040, 0x899b90253c9d8896)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.swap.events\x00', 0x275a, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x2a, &(0x7f0000000100)=r2, 0x4)
sendmsg$unix(r1, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
gettid()
sendmsg$unix(r1, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x40000)
recvmsg$unix(r0, &(0x7f0000000980)={0x0, 0x0, 0x0}, 0x40000062)

4.534265666s ago: executing program 0 (id=836):
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="6e6f626172726965722c6e6f657874656e745f63616368652c6673796e635f6d6f64653d7374726963742c696e6c696e655f78617474720000693a653d3078303030303030303030303030303766662c736d61636b6673726f6f080000006673f52b00e58abba2d0cc27be339f6f4fe5ad35a724e1531a622f050000008586eb5ba3614d2c24abf5a2614c0f111e057112dafd66336a5e3b6512b81cda80be6e9a34ccc2b88c0100008000000000e3f5def862b95c20ee847008000b0c22653d2ff39b36732e46b56357afe57094f42ba61c5e8b4e184d7dd50000000000000000c0469264c247cd3c7fcb39043dda97538456bc294ae31e525d3b664cf8e83b52b1885b866b58698b3f132aced62a4fc7c8c400b805173d7488a35708d2523190c0014689f57be6ee3f5d28935a0000000000000000000000000000000000000059c1403d010001008ab61fa90695a8b268c277645c1e357ec9316354f659d4244fe126a8364eaa0de6bf4ba21c767782a04bdbb8c86d0cc7e3f03f8ef15c0ee311768cccb8affb0ae5d7cd0000000097676c046a6c754c98dd5f400ad99a588d983ae6e07b4e0e0907266aca53b30a815a84295fb5eab2f263613d36994dc15562892c33ed149270907e9c2e4d0cac7dd9735621a0c6768d4f70c664699157854bb1b85ce3f6ea44456e4f1ae1575315d77f2b995ce4d6ce21b17ca891c155ddd9916e997c32e78231e8d54675e4edf480980023b9736180ff98cf93f888eb70abb728b7e91a5d75b7e43e54f92b6e679249576f12533bef1c93aa993977f15c0a7b595423444db6e87480c46c408f6d48afa1ba"], 0x1, 0x5514, &(0x7f0000005d80)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events.local\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000040)={0x0, 0x1, 0x4, 0x1107})
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r0, 0x4018f514, &(0x7f0000000100)={0x1, 0xc158, 0x1})

3.771161484s ago: executing program 2 (id=837):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50)
getpeername$packet(0xffffffffffffffff, 0x0, &(0x7f00000001c0))
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x1100, 0x1})
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f00000005c0)=[@acquire], 0x0, 0x0, 0x0})
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x8, 0x8b}, 0x0)
ioctl$PPPIOCNEWUNIT(0xffffffffffffffff, 0xc004743e, 0x0)
socket$pptp(0x18, 0x1, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$PPPIOCSFLAGS1(r1, 0x4004743a, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap$binder(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1, 0x11, r0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f00000004c0)="e0"})

3.708805253s ago: executing program 1 (id=838):
newfstatat(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x0)
setresuid(0x0, r0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000200)={'ip_vti0\x00', &(0x7f0000000140)={'syztnl0\x00', 0x0, 0x8, 0x40, 0x1, 0x0, {{0x5, 0x4, 0x1, 0x20, 0x14, 0x66, 0x0, 0xd, 0x4, 0x0, @private=0xa010101, @local}}}})

3.409452562s ago: executing program 2 (id=839):
socket$netlink(0x10, 0x3, 0x10)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x460, 0x0, 0x268, 0x33a, 0x258, 0x268, 0x390, 0x460, 0x460, 0x390, 0x460, 0xc, 0x0, {[{{@uncond, 0x0, 0x230, 0x258, 0xd8000000, {0x9402}, [@common=@inet=@hashlimit2={{0x150}, {'pimreg\x00', {0x0, 0x8, 0x0, 0x1, 0x10000000, 0x5, 0x9}}}, @common=@unspec=@statistic={{0x38}}]}, @common=@inet=@TCPMSS={0x28}}, {{@uncond, 0x0, 0xd0, 0x138, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00', 0x2}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4c0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000100)=@ethtool_link_settings={0x2, 0x0, 0x8, 0x0, 0x7, 0x0, 0x0, 0x0, 0x20}})

2.379957068s ago: executing program 0 (id=840):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
execve(0x0, 0x0, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141b82, 0x0)
write$cgroup_int(r1, &(0x7f0000000000)=0x700, 0x12)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)

1.993663287s ago: executing program 0 (id=841):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2})
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000040)={0x3, 0x5})

1.790764136s ago: executing program 0 (id=842):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000040)={'vcan0\x00'})
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xb, 0x7, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r4, &(0x7f0000001240)=""/102400, 0x200000, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10)
sendmsg$TIPC_NL_BEARER_ENABLE(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x6c, r2, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x0, 0x0, @loopback}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @remote}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}]}]}, 0x6c}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000c40), 0x5, 0x4a7, &(0x7f0000001140)="$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")
r5 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r5, &(0x7f0000000280)=@abs={0x1}, 0x6e)
sendmsg$key(0xffffffffffffffff, 0x0, 0x4000000)

451.840461ms ago: executing program 2 (id=843):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
pipe2$9p(0x0, 0x0)
write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15)
r4 = dup(0xffffffffffffffff)
write$FUSE_BMAP(r4, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="380000000301010400000000000000000200000024000180"], 0x38}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x20800, 0x0, 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

451.643061ms ago: executing program 1 (id=844):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_clone(0x800c000, &(0x7f0000001480), 0x0, 0x0, 0x0, &(0x7f00000015c0))
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_genetlink_get_family_id$netlbl_mgmt(0x0, r2)
sendmsg$NLBL_MGMT_C_REMOVEDEF(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
r3 = socket(0x15, 0x5, 0x0)
getsockopt(r3, 0x200000000114, 0x2721, 0x0, &(0x7f0000000040))
r4 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000000)={0x27}, 0x6)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)

360.390621ms ago: executing program 4 (id=845):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000c00)=ANY=[@ANYBLOB="18000000000000000000000023ed0000180100002820702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
chmod(&(0x7f0000000280)='./file0\x00', 0xa)

347.354631ms ago: executing program 0 (id=846):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000400850000008200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
socket$netlink(0x10, 0x3, 0x0)
dup(0xffffffffffffffff)
r4 = socket$packet(0x11, 0x2, 0x300)
socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x3, 0x300)
close_range(r4, 0xffffffffffffffff, 0x0)

0s ago: executing program 4 (id=847):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
bind$unix(r2, &(0x7f0000000380)=@file={0x0, './bus\x00'}, 0x6e)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

2
[  138.920895][ T5016] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  138.985868][ T4259] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  139.112715][ T5001] F2FS-fs (loop1): Found nat_bits in checkpoint
[  139.192128][ T4411] cdc_eem: probe of 5-1:4.51 failed with error -71
[  139.234517][ T4411] usb 5-1: USB disconnect, device number 8
[  139.274368][ T5005] XFS (loop2): Mounting V5 Filesystem
[  139.288054][ T5001] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  139.316372][ T5001] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  139.433829][ T5005] XFS (loop2): Ending clean mount
[  139.501941][   T27] audit: type=1800 audit(1735634734.871:99): pid=5005 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.140" name="file1" dev="loop2" ino=70 res=0 errno=0
[  139.800898][ T5043] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  139.915272][ T5058] netlink: 'syz.4.144': attribute type 33 has an invalid length.
[  139.974601][ T4979] EXT4-fs error (device loop0): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 2: invalid block bitmap
[  139.997299][ T5010] EXT4-fs error (device loop0): ext4_find_inline_data_nolock:164: inode #15: comm syz.0.141: inline data xattr refers to an external xattr inode
[  140.014718][ T5043] usb 3-1: Using ep0 maxpacket: 16
[  140.029206][ T5043] usb 3-1: New USB device found, idVendor=0403, idProduct=b8d8, bcdDevice=30.bb
[  140.059560][ T5043] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  140.115168][ T5043] usb 3-1: Product: syz
[  140.119385][ T5043] usb 3-1: Manufacturer: syz
[  140.124001][ T5043] usb 3-1: SerialNumber: syz
[  140.243430][ T5060] loop4: detected capacity change from 0 to 4096
[  140.296617][ T5060] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512)
[  140.626250][ T4250] ntfs3: loop4: ntfs_sync_fs r=1a failed, -22.
[  140.660027][ T4250] ntfs3: loop4: ntfs_evict_inode r=1a failed, -22.
[  140.680138][ T4250] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  140.851088][ T5043] snd-usb-audio: probe of 3-1:222.0 failed with error -71
[  140.863366][ T5067] loop4: detected capacity change from 0 to 2048
[  140.893492][ T5067] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  140.897396][ T5043] usb 3-1: USB disconnect, device number 8
[  140.962773][ T4332] udevd[4332]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:222.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  141.140839][ T5056] loop3: detected capacity change from 0 to 65536
[  141.214007][ T5074] loop4: detected capacity change from 0 to 512
[  141.267971][ T5074] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  141.305362][ T5056] XFS (loop3): Mounting V5 Filesystem
[  141.329330][ T5074] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  141.349416][ T5074] EXT4-fs (loop4): 1 truncate cleaned up
[  141.355476][ T5074] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  141.460419][ T5087] netlink: 'syz.0.150': attribute type 33 has an invalid length.
[  141.527463][ T5056] XFS (loop3): Ending clean mount
[  141.716507][ T4260] XFS (loop2): Unmounting Filesystem
[  142.249718][ T5088] tun0: tun_chr_ioctl cmd 1074025677
[  142.289729][ T5088] tun0: linktype set to 512
[  142.489724][ T5092] capability: warning: `syz.0.153' uses 32-bit capabilities (legacy support in use)
[  142.544842][ T4259] XFS (loop3): Unmounting Filesystem
[  142.747635][ T5095] netlink: 'syz.0.155': attribute type 33 has an invalid length.
[  142.846344][ T4250] EXT4-fs (loop4): unmounting filesystem.
[  143.889560][ T5103] loop2: detected capacity change from 0 to 64
[  144.195810][ T5105] loop4: detected capacity change from 0 to 128
[  144.339987][ T5105] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  144.422590][ T5105] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 127: 0x95 != 0x9d
[  144.485317][ T5105] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512
[  144.525847][ T5112] netlink: 4 bytes leftover after parsing attributes in process `syz.0.159'.
[  144.561705][ T5105] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  144.636916][ T5105] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512
[  144.732124][ T5105] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  144.826216][ T5105] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512
[  144.855139][ T5105] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  144.922198][ T5116] netlink: 4 bytes leftover after parsing attributes in process `syz.2.160'.
[  144.940412][ T5105] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512
[  144.964322][ T5105] UDF-fs: warning (device loop4): udf_fill_super: No partition found (1)
[  146.359323][   T93] block nbd2: Attempted send on invalid socket
[  146.365889][   T93] I/O error, dev nbd2, sector 128 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 1
[  146.375710][   T93] gfs2: error 10 reading superblock
[  146.514545][ T5118] loop3: detected capacity change from 0 to 32768
[  146.737293][ T5134] netlink: 'syz.0.164': attribute type 33 has an invalid length.
[  147.542671][ T5118] XFS (loop3): Mounting V5 Filesystem
[  147.580580][ T5138] loop4: detected capacity change from 0 to 1764
[  147.685380][ T5118] XFS (loop3): Ending clean mount
[  147.746668][ T5152] netlink: 'syz.0.167': attribute type 33 has an invalid length.
[  147.806127][ T5118] XFS (loop3): Quotacheck needed: Please wait.
[  148.445004][ T5154] loop1: detected capacity change from 0 to 32768
[  148.456262][ T4261] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  148.643598][ T4261] Bluetooth: hci1: Injecting HCI hardware error event
[  148.655778][ T4261] Bluetooth: hci1: hardware error 0x00
[  149.389190][ T5118] XFS (loop3): Quotacheck: Done.
[  149.678676][ T4259] XFS (loop3): Unmounting Filesystem
[  150.164146][ T5167] loop1: detected capacity change from 0 to 1024
[  150.185695][ T5167] EXT4-fs: Ignoring removed bh option
[  150.191140][ T5167] EXT4-fs: Ignoring removed mblk_io_submit option
[  150.280308][ T5167] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  150.630226][ T5165] loop2: detected capacity change from 0 to 32768
[  150.752811][ T4251] EXT4-fs error (device loop1): ext4_map_blocks:634: inode #18: block 115: comm syz-executor: lblock 3 mapped to illegal pblock 115 (length 1)
[  150.800403][ T5177] netlink: 4 bytes leftover after parsing attributes in process `syz.3.172'.
[  150.813660][ T4251] EXT4-fs (loop1): Remounting filesystem read-only
[  150.833681][ T4251] EXT4-fs error (device loop1): ext4_ext_remove_space:2929: inode #18: comm syz-executor: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  150.873676][ T5165] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  150.890512][ T5165] XFS (loop2): Mounting V5 Filesystem
[  150.891740][ T4251] EXT4-fs (loop1): Remounting filesystem read-only
[  150.924772][ T4251] EXT4-fs error (device loop1): ext4_evict_inode:290: comm syz-executor: couldn't truncate inode 18 (err -117)
[  150.938820][ T4261] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  150.951163][ T4251] EXT4-fs (loop1): Remounting filesystem read-only
[  151.021211][ T5165] XFS (loop2): Ending clean mount
[  151.047861][ T4251] EXT4-fs (loop1): unmounting filesystem.
[  151.059860][ T5165] XFS (loop2): Quotacheck needed: Please wait.
[  151.145412][ T5165] XFS (loop2): Quotacheck: Done.
[  151.192336][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  151.192442][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  151.215306][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  151.774578][ T5194] loop1: detected capacity change from 0 to 512
[  151.838896][ T5194] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  151.862232][ T5194] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  151.873496][ T5194] EXT4-fs error (device loop1): ext4_acquire_dquot:6794: comm syz.1.174: Failed to acquire dquot type 0
[  151.902396][ T5194] EXT4-fs (loop1): Remounting filesystem read-only
[  151.962198][ T5194] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  151.972761][ T5194] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  151.984267][ T5194] EXT4-fs error (device loop1): ext4_acquire_dquot:6794: comm syz.1.174: Failed to acquire dquot type 0
[  152.000770][ T5194] EXT4-fs (loop1): Remounting filesystem read-only
[  152.038108][ T4411] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  152.047433][ T5194] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  152.095517][ T5194] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  152.124366][ T5194] EXT4-fs error (device loop1): ext4_acquire_dquot:6794: comm syz.1.174: Failed to acquire dquot type 0
[  152.148869][ T5194] EXT4-fs (loop1): Remounting filesystem read-only
[  152.189848][ T5194] EXT4-fs (loop1): 1 orphan inode deleted
[  152.243329][ T5202] netlink: 'syz.4.177': attribute type 33 has an invalid length.
[  152.279031][ T5194] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  152.352020][ T5194] ext4 filesystem being mounted at /32/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.974992][ T5203] loop3: detected capacity change from 0 to 64
[  153.134873][ T4411] usb 3-1: device descriptor read/all, error -71
[  153.237991][ T5207] EXT4-fs (loop1): shut down requested (2)
[  153.238997][ T4260] XFS (loop2): Unmounting Filesystem
[  153.254053][ T5207] netlink: 8 bytes leftover after parsing attributes in process `syz.1.174'.
[  153.263181][ T5207] netlink: 24 bytes leftover after parsing attributes in process `syz.1.174'.
[  153.754676][ T4251] EXT4-fs (loop1): unmounting filesystem.
[  153.932396][ T5213] loop4: detected capacity change from 0 to 4096
[  154.419536][ T5227] netlink: 'syz.3.186': attribute type 33 has an invalid length.
[  154.584333][ T4408] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  154.786898][ T4408] usb 3-1: no configurations
[  154.791549][ T4408] usb 3-1: can't read configurations, error -22
[  154.964365][ T4408] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  155.092614][ T5216] loop1: detected capacity change from 0 to 32768
[  155.165057][ T4408] usb 3-1: no configurations
[  155.169799][ T4408] usb 3-1: can't read configurations, error -22
[  155.173905][ T5216] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  155.193562][ T5216] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  155.210492][ T4408] usb usb3-port1: attempt power cycle
[  155.236868][ T5216] gfs2: fsid=syz:syz.0: journal 0 mapped with 22 extents in 0ms
[  155.261843][ T4293] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  155.275113][ T4293] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  155.310004][ T4293] kworker/0:4: attempt to access beyond end of device
[  155.310004][ T4293] loop1: rw=0, sector=15762598695799400, nr_sectors = 8 limit=32768
[  155.362762][ T4293] gfs2: fsid=syz:syz.0: jid=0: Failed
[  155.385311][ T5216] gfs2: fsid=syz:syz.0: error recovering journal 0: -5
[  155.805599][ T4408] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  155.864693][ T5239] netlink: 4 bytes leftover after parsing attributes in process `syz.0.189'.
[  155.895551][ T4408] usb 3-1: no configurations
[  155.900462][ T4408] usb 3-1: can't read configurations, error -22
[  156.075882][ T4408] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  156.119772][ T5243] netlink: 'syz.4.190': attribute type 33 has an invalid length.
[  156.490823][ T4408] usb 3-1: no configurations
[  156.553145][ T4408] usb 3-1: can't read configurations, error -22
[  156.673052][ T4408] usb usb3-port1: unable to enumerate USB device
[  157.010504][ T5246] loop1: detected capacity change from 0 to 128
[  157.464435][   T27] audit: type=1326 audit(1735634752.821:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5244 comm="syz.1.191" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x0
[  157.663678][ T5254] loop4: detected capacity change from 0 to 2048
[  157.759455][ T5262] netlink: 4 bytes leftover after parsing attributes in process `syz.3.193'.
[  157.817211][ T5254] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  158.232798][ T5264] loop1: detected capacity change from 0 to 32768
[  158.240040][ T5264] gfs2: Unknown parameter 'datC'
[  158.394326][ T4408] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  158.459690][ T4332] I/O error, dev loop1, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  158.624316][ T4408] usb 5-1: Using ep0 maxpacket: 16
[  158.646457][ T5264] loop1: detected capacity change from 0 to 2048
[  158.660483][ T5268] mmap: syz.0.197 (5268) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  158.675706][ T4408] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  158.704378][ T4408] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  158.734272][ T4408] usb 5-1: config 0 interface 0 altsetting 0 has a duplicate endpoint with address 0x2, skipping
[  158.751090][ T4408] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  158.799266][ T5264] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  158.812235][ T5264] EXT4-fs (loop1): re-mounted. Quota mode: none.
[  159.074696][ T4408] usb 5-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  159.088900][ T4408] usb 5-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  159.104417][ T4408] usb 5-1: Manufacturer: syz
[  159.115234][ T4408] usb 5-1: config 0 descriptor??
[  159.254954][ T5264] EXT4-fs error (device loop1): ext4_find_dest_de:2115: inode #2: block 16: comm syz.1.198: bad entry in directory: inode out of bounds - offset=44, inode=185, rec_len=16, size=2048 fake=0
[  159.324887][ T5043] usb 5-1: USB disconnect, device number 9
[  159.363571][ T5276] loop3: detected capacity change from 0 to 8192
[  159.412528][ T5276] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  159.425685][ T5276] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal
[  159.435009][ T5276] REISERFS (device loop3): using ordered data mode
[  159.441548][ T5276] reiserfs: using flush barriers
[  159.447832][ T5276] REISERFS warning (device loop3): sh-459 journal_init: unable to read journal header
[  159.458356][ T5276] REISERFS warning (device loop3): sh-2022 reiserfs_fill_super: unable to initialize journal space
[  159.655451][ T4251] EXT4-fs (loop1): unmounting filesystem.
[  160.027618][ T5287] netlink: 'syz.1.202': attribute type 33 has an invalid length.
[  160.832614][ T5290] netlink: 'syz.3.203': attribute type 33 has an invalid length.
[  161.031167][ T5297] loop1: detected capacity change from 0 to 8
[  161.333434][ T5301] loop4: detected capacity change from 0 to 128
[  161.535127][   T27] audit: type=1800 audit(1735634756.861:101): pid=5297 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.205" name="file1" dev="loop1" ino=5 res=0 errno=0
[  161.794708][   T27] audit: type=1326 audit(1735634757.171:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5298 comm="syz.4.207" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6f11585d29 code=0x0
[  162.341353][ T5307] netlink: 4 bytes leftover after parsing attributes in process `syz.1.208'.
[  162.511004][ T5295] bridge0: port 2(bridge_slave_1) entered disabled state
[  162.518820][ T5295] bridge0: port 1(bridge_slave_0) entered disabled state
[  164.970542][ T5391] device syzkaller0 entered promiscuous mode
[  168.901953][ T5413] tun0: tun_chr_ioctl cmd 1074025675
[  168.908497][ T5413] tun0: persist enabled
[  168.912761][ T5416] tun0: tun_chr_ioctl cmd 1074025675
[  168.920067][ T5416] tun0: persist enabled
[  169.535569][ T5470] Driver unsupported XDP return value 0 on prog  (id 150) dev N/A, expect packet loss!
[  172.756600][ T5588] sock: sock_timestamping_bind_phc: sock not bind to device
[  173.733258][ T5619] loop2: detected capacity change from 0 to 512
[  173.756550][ T5619] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  173.803291][ T5619] EXT4-fs (loop2): 1 truncate cleaned up
[  173.811629][ T5619] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  174.042264][ T5624] loop4: detected capacity change from 0 to 1024
[  174.256187][ T5624] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  174.977546][ T5624] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2739: inode #12: comm syz.4.358: corrupted in-inode xattr
[  175.203499][   T27] audit: type=1326 audit(1735634770.571:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5635 comm="syz.1.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  175.277226][   T27] audit: type=1326 audit(1735634770.601:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5635 comm="syz.1.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  175.443799][   T27] audit: type=1326 audit(1735634770.601:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5635 comm="syz.1.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=17 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  175.497201][ T4250] EXT4-fs (loop4): unmounting filesystem.
[  175.579207][   T27] audit: type=1326 audit(1735634770.601:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5635 comm="syz.1.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  175.774334][   T27] audit: type=1326 audit(1735634770.601:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5635 comm="syz.1.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  176.123695][ T5644] loop1: detected capacity change from 0 to 512
[  176.270197][ T5644] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  176.384381][ T5644] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  176.393874][ T5644] EXT4-fs error (device loop1): ext4_acquire_dquot:6794: comm syz.1.361: Failed to acquire dquot type 0
[  176.437283][ T5654] loop4: detected capacity change from 0 to 256
[  176.441672][ T5644] EXT4-fs (loop1): Remounting filesystem read-only
[  176.464985][ T5654] exfat: Unknown parameter '²áSÌh_‚&†aÐúÊ^©Ë@RY»ÊécayrÍïFzQ>Pß�†º*Ù¹àV£µ8‡‰d|ëCüŸpÅIýÑ7°7ò"€T©U®ûT¹ªCH{W¶Ž.H K; ^­j¡_—]Ñ7ò5³q•Yçb¯Yþ•ÉF'
[  176.483724][ T5644] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  176.519076][ T5644] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  176.534340][ T5644] EXT4-fs error (device loop1): ext4_acquire_dquot:6794: comm syz.1.361: Failed to acquire dquot type 0
[  176.592916][ T5644] EXT4-fs (loop1): Remounting filesystem read-only
[  176.610920][ T5644] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  176.627711][ T5644] EXT4-fs error (device loop1): ext4_acquire_dquot:6794: comm syz.1.361: Failed to acquire dquot type 0
[  176.641621][ T5644] EXT4-fs (loop1): Remounting filesystem read-only
[  176.653442][ T5644] EXT4-fs (loop1): 1 orphan inode deleted
[  176.673765][ T5644] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  176.706898][ T5644] ext4 filesystem being mounted at /60/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  177.642294][ T5663] loop4: detected capacity change from 0 to 128
[  177.642315][ T4251] EXT4-fs (loop1): unmounting filesystem.
[  177.709665][ T5661] loop3: detected capacity change from 0 to 16
[  177.722813][ T5663] netlink: 260 bytes leftover after parsing attributes in process `syz.4.366'.
[  177.895570][ T5661] erofs: (device loop3): mounted with root inode @ nid 36.
[  177.938461][ T5663] netlink: 4 bytes leftover after parsing attributes in process `syz.4.366'.
[  179.574122][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  181.108586][ T5682] loop2: detected capacity change from 0 to 128
[  181.535490][ T5682] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  181.638672][ T5693] loop1: detected capacity change from 0 to 512
[  181.743026][ T5694] xt_hashlimit: max too large, truncated to 1048576
[  181.755886][ T5694] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  182.536705][ T5693] __quota_error: 1 callbacks suppressed
[  182.536746][ T5693] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  182.553045][ T5693] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  182.562529][ T5693] EXT4-fs error (device loop1): ext4_acquire_dquot:6794: comm syz.1.374: Failed to acquire dquot type 0
[  182.579750][ T5693] EXT4-fs (loop1): Remounting filesystem read-only
[  182.586926][ T5693] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  182.598789][ T5693] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  182.608385][ T5693] EXT4-fs error (device loop1): ext4_acquire_dquot:6794: comm syz.1.374: Failed to acquire dquot type 0
[  182.636325][ T5693] EXT4-fs (loop1): Remounting filesystem read-only
[  182.656250][ T5693] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  182.666969][ T5693] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  182.676490][ T5693] EXT4-fs error (device loop1): ext4_acquire_dquot:6794: comm syz.1.374: Failed to acquire dquot type 0
[  182.694427][ T5693] EXT4-fs (loop1): Remounting filesystem read-only
[  182.702576][ T5693] EXT4-fs (loop1): 1 orphan inode deleted
[  182.708584][ T5693] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  182.718001][ T5693] ext4 filesystem being mounted at /62/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.790861][ T5693] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  182.801916][ T5693] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  182.811496][ T5693] EXT4-fs error (device loop1): ext4_acquire_dquot:6794: comm syz.1.374: Failed to acquire dquot type 0
[  182.827465][ T5693] EXT4-fs (loop1): Remounting filesystem read-only
[  182.869000][ T5682] ext4 filesystem being mounted at /86/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  183.103661][ T5682] fscrypt (loop2, inode 12): Unsupported encryption modes (contents 0, filenames 0)
[  184.420712][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  185.544959][ T4251] EXT4-fs (loop1): unmounting filesystem.
[  185.704001][ T5708] loop2: detected capacity change from 0 to 256
[  185.746208][   T27] audit: type=1326 audit(1735634781.121:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5709 comm="syz.0.381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  185.837377][   T27] audit: type=1326 audit(1735634781.121:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5709 comm="syz.0.381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  185.863315][ T5713] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  185.888976][ T5713] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  188.303343][ T5740] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  188.332949][ T5740] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  188.589248][ T5726] loop3: detected capacity change from 0 to 40427
[  188.655407][ T5726] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  188.710141][   T27] kauditd_printk_skb: 23 callbacks suppressed
[  188.710157][   T27] audit: type=1326 audit(1735634784.081:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5728 comm="syz.1.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  188.745293][ T5726] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  188.827144][ T5726] F2FS-fs (loop3): Found nat_bits in checkpoint
[  188.847224][   T27] audit: type=1326 audit(1735634784.081:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5728 comm="syz.1.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  188.968031][   T27] audit: type=1326 audit(1735634784.111:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5728 comm="syz.1.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  189.013115][ T5726] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  189.024292][ T5726] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  189.042045][   T27] audit: type=1326 audit(1735634784.111:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5728 comm="syz.1.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  189.104464][   T27] audit: type=1326 audit(1735634784.111:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5728 comm="syz.1.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  189.176756][   T27] audit: type=1326 audit(1735634784.111:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5728 comm="syz.1.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  189.260977][   T27] audit: type=1326 audit(1735634784.111:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5728 comm="syz.1.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  189.337339][   T27] audit: type=1326 audit(1735634784.111:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5728 comm="syz.1.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  189.367536][   T27] audit: type=1326 audit(1735634784.111:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5728 comm="syz.1.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  189.441494][   T27] audit: type=1326 audit(1735634784.111:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5728 comm="syz.1.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  190.589821][ T5744] loop2: detected capacity change from 0 to 40427
[  190.700984][ T5744] F2FS-fs (loop2): build fault injection attr: rate: 771, type: 0x3ffff
[  190.783739][ T5744] F2FS-fs (loop2): invalid crc value
[  191.028879][ T5744] F2FS-fs (loop2): Found nat_bits in checkpoint
[  192.678646][ T5770] loop4: detected capacity change from 0 to 4096
[  192.706536][ T5770] EXT4-fs: Ignoring removed nobh option
[  192.769760][ T5770] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  192.982660][ T5776] loop3: detected capacity change from 0 to 256
[  193.177467][ T5778] EXT4-fs (loop4): resizing filesystem from 512 to 0 blocks
[  193.185379][ T5778] EXT4-fs warning (device loop4): ext4_resize_fs:2051: can't shrink FS - resize aborted
[  193.646277][ T5776] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x93fd065d, utbl_chksum : 0xe619d30d)
[  193.821181][ T4250] EXT4-fs (loop4): unmounting filesystem.
[  193.912423][   T27] kauditd_printk_skb: 26 callbacks suppressed
[  193.912440][   T27] audit: type=1326 audit(1735634789.281:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5782 comm="syz.2.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  193.983604][ T5786] loop2: detected capacity change from 0 to 2048
[  193.990201][   T27] audit: type=1326 audit(1735634789.321:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5782 comm="syz.2.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  194.016608][   T27] audit: type=1326 audit(1735634789.321:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5782 comm="syz.2.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  194.064292][   T27] audit: type=1326 audit(1735634789.321:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5782 comm="syz.2.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fad92d85d63 code=0x7ffc0000
[  194.123395][   T27] audit: type=1326 audit(1735634789.331:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5782 comm="syz.2.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fad92d847df code=0x7ffc0000
[  194.141663][ T5786] Alternate GPT is invalid, using primary GPT.
[  194.146725][   T27] audit: type=1326 audit(1735634789.351:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5782 comm="syz.2.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fad92d85db7 code=0x7ffc0000
[  194.164381][ T5786]  loop2: p2 p3 p7
[  194.227024][ T1274] ieee802154 phy0 wpan0: encryption failed: -22
[  194.234720][ T1274] ieee802154 phy1 wpan1: encryption failed: -22
[  194.717442][ T4408] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  194.824609][   T27] audit: type=1326 audit(1735634789.351:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5782 comm="syz.2.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fad92d84690 code=0x7ffc0000
[  194.960902][ T4408] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  194.992250][   T27] audit: type=1326 audit(1735634789.351:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5782 comm="syz.2.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fad92d8592b code=0x7ffc0000
[  195.043093][ T4408] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  195.088101][ T4408] usb 5-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[  195.107592][ T4408] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  195.119748][   T27] audit: type=1326 audit(1735634789.391:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5782 comm="syz.2.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fad92d8498a code=0x7ffc0000
[  195.159646][ T4408] usb 5-1: config 0 descriptor??
[  195.190840][   T27] audit: type=1326 audit(1735634789.391:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5782 comm="syz.2.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fad92d8592b code=0x7ffc0000
[  195.518349][ T5803] device syzkaller0 entered promiscuous mode
[  195.617596][ T4408] hid-steam 0003:28DE:1142.0003: unknown main item tag 0x0
[  195.642362][ T4408] hid-steam 0003:28DE:1142.0003: unknown main item tag 0x0
[  195.670691][ T4408] hid-steam 0003:28DE:1142.0003: unknown main item tag 0x0
[  195.690740][ T4408] hid-steam 0003:28DE:1142.0003: item fetching failed at offset 3/5
[  195.717165][ T4408] hid-steam 0003:28DE:1142.0003: steam_probe:parse of hid interface failed
[  195.736698][ T4408] hid-steam: probe of 0003:28DE:1142.0003 failed with error -22
[  195.839913][ T4408] usb 5-1: USB disconnect, device number 10
[  196.299939][ T4266] Bluetooth: hci0: command 0x0406 tx timeout
[  196.306075][ T4266] Bluetooth: hci2: command 0x0406 tx timeout
[  196.312115][ T4266] Bluetooth: hci4: command 0x0406 tx timeout
[  196.324396][ T4261] Bluetooth: hci3: command 0x0406 tx timeout
[  196.388864][ T5795] loop3: detected capacity change from 0 to 40427
[  196.410996][ T5795] F2FS-fs (loop3): build fault injection attr: rate: 771, type: 0x3ffff
[  196.435865][ T5795] F2FS-fs (loop3): invalid crc value
[  196.512900][ T5795] F2FS-fs (loop3): Found nat_bits in checkpoint
[  196.527612][ T5815] loop2: detected capacity change from 0 to 512
[  196.603619][ T5815] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  196.613742][ T5815] ext4 filesystem being mounted at /92/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  196.740459][ T5795] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  197.736330][ T5798] syz.3.402: attempt to access beyond end of device
[  197.736330][ T5798] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  197.759207][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  198.779204][ T5833] loop2: detected capacity change from 0 to 256
[  198.833803][ T5833] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x93fd065d, utbl_chksum : 0xe619d30d)
[  199.114415][   T27] kauditd_printk_skb: 63 callbacks suppressed
[  199.114438][   T27] audit: type=1326 audit(1735634794.471:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5837 comm="syz.0.415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  199.277789][   T27] audit: type=1326 audit(1735634794.471:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5837 comm="syz.0.415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  200.117615][   T27] audit: type=1326 audit(1735634794.471:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5837 comm="syz.0.415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  200.143758][   T27] audit: type=1326 audit(1735634794.471:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5837 comm="syz.0.415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  200.191704][   T27] audit: type=1326 audit(1735634794.471:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5837 comm="syz.0.415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  200.288293][   T27] audit: type=1326 audit(1735634794.471:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5837 comm="syz.0.415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  203.733795][ T5863] loop1: detected capacity change from 0 to 16
[  203.972640][ T5863] erofs: (device loop1): mounted with root inode @ nid 36.
[  204.576683][ T5871] loop1: detected capacity change from 0 to 1024
[  204.583888][ T5871] EXT4-fs: Ignoring removed i_version option
[  204.613539][ T5874] loop4: detected capacity change from 0 to 256
[  204.653589][ T5874] FAT-fs (loop4): Unrecognized mount option "18446744073709551615" or missing value
[  204.723649][ T5871] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  206.147305][ T5891] loop4: detected capacity change from 0 to 256
[  206.215149][ T5891] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x93fd065d, utbl_chksum : 0xe619d30d)
[  206.237423][ T5888] loop2: detected capacity change from 0 to 4096
[  206.294783][ T5888] EXT4-fs: Ignoring removed nobh option
[  206.485147][ T5895] process 'syz.1.424' launched './file0' with NULL argv: empty string added
[  208.264075][ T5888] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  208.700386][ T5900] loop3: detected capacity change from 0 to 512
[  208.739971][ T5888] EXT4-fs (loop2): resizing filesystem from 512 to 0 blocks
[  208.825150][ T5888] EXT4-fs warning (device loop2): ext4_resize_fs:2051: can't shrink FS - resize aborted
[  208.848387][ T5900] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  208.921010][ T5900] ext4 filesystem being mounted at /66/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  210.514096][ T4251] EXT4-fs (loop1): unmounting filesystem.
[  210.526051][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  212.938284][ T5936] input: syz0 as /devices/virtual/input/input6
[  213.774144][ T4259] EXT4-fs (loop3): unmounting filesystem.
[  214.114569][ T5948] loop2: detected capacity change from 0 to 512
[  214.151556][ T5948] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  214.337773][ T5948] EXT4-fs (loop2): orphan cleanup on readonly fs
[  214.369560][ T5948] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.447: bg 0: block 248: padding at end of block bitmap is not set
[  214.402140][ T5948] Quota error (device loop2): write_blk: dquota write failed
[  214.410466][ T5948] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  214.420573][ T5948] EXT4-fs error (device loop2): ext4_acquire_dquot:6794: comm syz.2.447: Failed to acquire dquot type 1
[  214.452612][ T5948] EXT4-fs (loop2): 1 truncate cleaned up
[  214.465327][ T5948] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  214.889787][ T5945] loop3: detected capacity change from 0 to 4096
[  214.956048][ T5945] EXT4-fs: Ignoring removed nobh option
[  215.051415][ T5952] loop4: detected capacity change from 0 to 1024
[  215.080133][ T5952] EXT4-fs: Ignoring removed i_version option
[  215.106043][ T5945] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  215.141874][ T5945] EXT4-fs (loop3): resizing filesystem from 512 to 0 blocks
[  215.198290][ T5945] EXT4-fs warning (device loop3): ext4_resize_fs:2051: can't shrink FS - resize aborted
[  215.216096][ T5952] Quota error (device loop4): do_check_range: Getting block 64 out of range 1-5
[  215.284658][ T5952] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  215.345729][ T5952] EXT4-fs error (device loop4): ext4_acquire_dquot:6794: comm syz.4.448: Failed to acquire dquot type 0
[  215.468043][ T5952] EXT4-fs error (device loop4): mb_free_blocks:1815: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  215.498218][ T4259] EXT4-fs (loop3): unmounting filesystem.
[  215.567781][ T5952] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #13: comm syz.4.448: corrupted inode contents
[  215.702883][ T5952] EXT4-fs error (device loop4): ext4_dirty_inode:6089: inode #13: comm syz.4.448: mark_inode_dirty error
[  215.767572][ T5952] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #13: comm syz.4.448: corrupted inode contents
[  216.021046][ T5952] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #13: comm syz.4.448: mark_inode_dirty error
[  216.064671][ T5952] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #13: comm syz.4.448: corrupted inode contents
[  216.186699][ T5952] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  216.277653][ T5952] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #13: comm syz.4.448: corrupted inode contents
[  216.333314][ T5952] EXT4-fs error (device loop4): ext4_truncate:4311: inode #13: comm syz.4.448: mark_inode_dirty error
[  216.391370][ T5952] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  216.425255][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  216.472678][ T5952] EXT4-fs (loop4): 1 truncate cleaned up
[  216.511472][ T5952] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  216.618012][ T5952] Quota error (device loop4): do_check_range: Getting block 64 out of range 1-5
[  216.660305][ T5972] loop2: detected capacity change from 0 to 256
[  216.667906][ T5972] exfat: Deprecated parameter 'utf8'
[  216.671721][ T5952] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  216.673239][ T5972] exfat: Unknown parameter 'eraors'
[  216.741934][ T4332] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  216.750260][ T5952] EXT4-fs error (device loop4): ext4_acquire_dquot:6794: comm syz.4.448: Failed to acquire dquot type 0
[  217.103794][ T5977] netlink: 8 bytes leftover after parsing attributes in process `syz.2.455'.
[  217.870491][ T4250] EXT4-fs (loop4): unmounting filesystem.
[  218.067665][ T5986] input: syz0 as /devices/virtual/input/input7
[  218.900819][ T5998] loop2: detected capacity change from 0 to 512
[  219.023353][ T5999] loop1: detected capacity change from 0 to 4096
[  219.036787][ T5999] EXT4-fs: Ignoring removed nobh option
[  219.045860][ T5998] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  219.055374][ T5998] ext4 filesystem being mounted at /106/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  219.105605][ T5999] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  219.206593][ T6006] loop4: detected capacity change from 0 to 512
[  219.247773][ T6006] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  219.258890][ T5999] EXT4-fs (loop1): resizing filesystem from 512 to 0 blocks
[  219.308949][ T5999] EXT4-fs warning (device loop1): ext4_resize_fs:2051: can't shrink FS - resize aborted
[  219.335941][ T6006] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c019, mo2=0002]
[  219.363544][ T6006] System zones: 1-12
[  219.375630][ T6006] EXT4-fs (loop4): 1 truncate cleaned up
[  219.381327][ T6006] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  219.955502][ T4251] EXT4-fs (loop1): unmounting filesystem.
[  220.171652][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  220.210393][ T4250] EXT4-fs (loop4): unmounting filesystem.
[  221.421703][ T6023] loop1: detected capacity change from 0 to 512
[  221.490998][ T6023] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  221.534470][ T6023] ext4 filesystem being mounted at /82/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  221.607379][ T6031] loop4: detected capacity change from 0 to 256
[  221.660253][ T6031] FAT-fs (loop4): Directory bread(block 64) failed
[  221.684701][ T6031] FAT-fs (loop4): Directory bread(block 65) failed
[  221.687466][ T6033] netlink: 'syz.1.468': attribute type 13 has an invalid length.
[  221.691401][ T6031] FAT-fs (loop4): Directory bread(block 66) failed
[  221.732121][ T6031] FAT-fs (loop4): Directory bread(block 67) failed
[  221.764542][ T6031] FAT-fs (loop4): Directory bread(block 68) failed
[  221.779148][ T6031] FAT-fs (loop4): Directory bread(block 69) failed
[  221.800775][ T6031] FAT-fs (loop4): Directory bread(block 70) failed
[  221.824859][ T6033] gretap0: refused to change device tx_queue_len
[  221.831704][ T6033] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  221.834669][ T6031] FAT-fs (loop4): Directory bread(block 71) failed
[  221.872039][ T6037] loop2: detected capacity change from 0 to 256
[  221.879300][ T6037] exfat: Unknown parameter './file0'
[  221.885224][ T6031] FAT-fs (loop4): Directory bread(block 72) failed
[  221.901011][ T6031] FAT-fs (loop4): Directory bread(block 73) failed
[  223.321338][ T6031] syz.4.470: attempt to access beyond end of device
[  223.321338][ T6031] loop4: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  223.492572][ T6031] syz.4.470: attempt to access beyond end of device
[  223.492572][ T6031] loop4: rw=0, sector=1736, nr_sectors = 8 limit=256
[  224.615064][ T6050] loop4: detected capacity change from 0 to 4096
[  224.651624][ T6050] EXT4-fs: Ignoring removed nobh option
[  224.728131][ T6050] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  225.776022][ T4250] EXT4-fs (loop4): unmounting filesystem.
[  226.040152][ T6069] loop4: detected capacity change from 0 to 512
[  226.100981][ T6069] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  226.140393][ T6069] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002]
[  226.189530][ T6069] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2186: inode #15: comm syz.4.479: corrupted in-inode xattr
[  226.223511][ T6069] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.479: couldn't read orphan inode 15 (err -117)
[  226.238844][ T6069] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  227.196494][ T4251] EXT4-fs (loop1): unmounting filesystem.
[  227.276282][ T4250] EXT4-fs (loop4): unmounting filesystem.
[  229.181199][ T6092] device veth1_macvtap left promiscuous mode
[  229.208448][ T6092] device macsec0 entered promiscuous mode
[  230.775003][ T6096] loop3: detected capacity change from 0 to 4096
[  230.808451][ T6096] EXT4-fs: Ignoring removed nobh option
[  230.900391][ T6096] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  231.305361][ T6110] EXT4-fs (loop3): resizing filesystem from 512 to 0 blocks
[  231.312883][ T6110] EXT4-fs warning (device loop3): ext4_resize_fs:2051: can't shrink FS - resize aborted
[  231.906611][ T4259] EXT4-fs (loop3): unmounting filesystem.
[  231.930149][ T6117] loop4: detected capacity change from 0 to 256
[  233.620473][ T6135] loop3: detected capacity change from 0 to 256
[  233.627736][ T6135] exfat: Deprecated parameter 'namecase'
[  233.721324][ T6135] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  237.820652][ T6158] loop1: detected capacity change from 0 to 256
[  237.849858][ T6156] syz.3.508 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  237.889407][ T6158] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d)
[  239.304497][ T5042] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  239.434583][ T6180] binder_alloc: 6179: binder_alloc_buf, no vma
[  239.538997][ T5042] usb 4-1: config index 0 descriptor too short (expected 45, got 36)
[  239.554326][ T5042] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  239.576330][ T5042] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  239.749115][ T6183] loop1: detected capacity change from 0 to 2048
[  239.763916][ T6183] FAT-fs (loop1): Unrecognized mount option "ÿ18446744073709551615ÿÿÿÿ" or missing value
[  240.347846][ T6186] netlink: 44 bytes leftover after parsing attributes in process `syz.0.516'.
[  240.861260][ T5042] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  240.932958][ T5042] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  240.942289][ T5042] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  241.872438][ T5042] usb 4-1: config 0 descriptor??
[  241.904839][ T6169] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  241.985815][   T27] audit: type=1326 audit(1735634837.361:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6199 comm="syz.0.518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  242.041414][ T6184] loop2: detected capacity change from 0 to 2048
[  242.128707][   T27] audit: type=1326 audit(1735634837.411:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6199 comm="syz.0.518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  242.169495][   T27] audit: type=1326 audit(1735634837.501:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6199 comm="syz.0.518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  242.192817][ T5042] usbhid 4-1:0.0: can't add hid device: -71
[  242.214356][ T5042] usbhid: probe of 4-1:0.0 failed with error -71
[  242.266795][   T27] audit: type=1326 audit(1735634837.501:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6199 comm="syz.0.518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  242.289860][   T27] audit: type=1326 audit(1735634837.501:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6199 comm="syz.0.518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  242.291242][ T5042] usb 4-1: USB disconnect, device number 5
[  242.498372][ T6184] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  244.418828][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  245.088460][ T6233] loop2: detected capacity change from 0 to 40427
[  245.130764][ T6233] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  245.138865][ T6233] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  245.151322][ T6233] F2FS-fs (loop2): Invalid Fs Meta Ino: node(6) meta(2) root(3)
[  245.159150][ T6233] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock
[  245.987087][ T6234] loop3: detected capacity change from 0 to 1024
[  246.012739][ T6235] loop1: detected capacity change from 0 to 512
[  246.066268][ T6234] EXT4-fs: Ignoring removed nobh option
[  246.144968][ T6234] EXT4-fs (loop3): blocks per group (1280) and clusters per group (8192) inconsistent
[  246.317196][ T6235] Quota error (device loop1): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  246.347160][ T6235] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  246.439628][ T6235] EXT4-fs error (device loop1): ext4_acquire_dquot:6794: comm syz.1.528: Failed to acquire dquot type 1
[  246.502870][ T6235] EXT4-fs (loop1): 1 truncate cleaned up
[  246.533046][ T6235] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  246.560137][ T6235] ext4 filesystem being mounted at /92/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  248.357051][ T6246] loop4: detected capacity change from 0 to 40427
[  248.412788][ T6246] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  248.420704][ T6246] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  248.451941][ T6246] F2FS-fs (loop4): invalid crc value
[  248.660320][ T6246] F2FS-fs (loop4): Found nat_bits in checkpoint
[  248.843253][ T6246] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  248.850548][ T6246] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  249.124593][ T6234] binder: 6232:6234 ioctl 400c620e 0 returned -14
[  249.266270][ T4251] EXT4-fs (loop1): unmounting filesystem.
[  249.514547][ T4293] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  249.706181][ T4293] usb 3-1: New USB device found, idVendor=057e, idProduct=2009, bcdDevice= 0.00
[  249.732598][ T4293] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  249.780319][ T4293] usb 3-1: config 0 descriptor??
[  250.267989][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  250.301613][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  250.349072][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  250.387227][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  250.425147][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  250.450086][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  250.639524][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  250.648994][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  250.658384][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  250.670875][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  250.678228][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  250.685540][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  250.692677][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  250.699989][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  250.707179][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  250.714408][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  250.721657][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  251.571876][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  251.579168][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  251.586386][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  251.593563][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  251.616173][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  251.623373][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  251.630882][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  251.638199][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  251.645508][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  251.653610][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  251.660880][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  251.669688][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  251.681967][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  251.689379][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  251.697639][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  251.705134][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  251.712550][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  251.720203][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  251.727896][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  251.735456][ T4293] nintendo 0003:057E:2009.0004: unknown main item tag 0x0
[  251.746914][ T4293] nintendo 0003:057E:2009.0004: hidraw0: USB HID v80.00 Device [HID 057e:2009] on usb-dummy_hcd.2-1/input0
[  252.003900][ T6276] loop2: detected capacity change from 0 to 16
[  252.128862][ T6276] erofs: (device loop2): mounted with root inode @ nid 36.
[  252.175291][ T6276] syz.2.538: attempt to access beyond end of device
[  252.175291][ T6276] loop2: rw=0, sector=8, nr_sectors = 16 limit=16
[  252.441051][ T4293] nintendo 0003:057E:2009.0004: failed reading SPI flash; ret=-38
[  252.450734][ T4293] nintendo 0003:057E:2009.0004: using factory cal for left stick
[  252.458898][ T4293] nintendo 0003:057E:2009.0004: failed reading SPI flash; ret=-38
[  252.469787][ T4293] nintendo 0003:057E:2009.0004: using factory cal for right stick
[  252.477788][ T4293] nintendo 0003:057E:2009.0004: failed reading SPI flash; ret=-38
[  252.599787][ T4293] nintendo 0003:057E:2009.0004: Failed to read left stick cal, using defaults; e=-38
[  252.620992][ T4293] nintendo 0003:057E:2009.0004: failed reading SPI flash; ret=-38
[  252.630358][ T4293] nintendo 0003:057E:2009.0004: Failed to read right stick cal, using defaults; e=-38
[  252.672003][ T4293] nintendo 0003:057E:2009.0004: failed reading SPI flash; ret=-38
[  252.714835][ T4293] nintendo 0003:057E:2009.0004: using factory cal for IMU
[  252.758536][ T4293] nintendo 0003:057E:2009.0004: failed reading SPI flash; ret=-38
[  252.805245][ T4293] nintendo 0003:057E:2009.0004: Failed to read IMU cal, using defaults; ret=-38
[  252.834430][ T4293] nintendo 0003:057E:2009.0004: Unable to read IMU calibration data
[  252.844320][ T4293] nintendo 0003:057E:2009.0004: Failed to set report mode; ret=-38
[  252.852261][ T4293] nintendo 0003:057E:2009.0004: Failed to initialize controller; ret=-38
[  252.953433][ T4293] nintendo 0003:057E:2009.0004: probe - fail = -38
[  252.984894][ T4293] nintendo: probe of 0003:057E:2009.0004 failed with error -38
[  253.018720][ T4293] usb 3-1: USB disconnect, device number 15
[  253.244567][   T27] audit: type=1326 audit(1735634848.611:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6288 comm="syz.1.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  253.271048][   T27] audit: type=1326 audit(1735634848.611:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6288 comm="syz.1.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  253.439105][   T27] audit: type=1326 audit(1735634848.611:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6288 comm="syz.1.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  253.775994][   T27] audit: type=1326 audit(1735634848.611:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6288 comm="syz.1.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  254.014685][ T5042] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  254.073043][   T27] audit: type=1326 audit(1735634848.611:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6288 comm="syz.1.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  254.112130][   T27] audit: type=1326 audit(1735634848.611:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6288 comm="syz.1.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  254.148528][   T27] audit: type=1326 audit(1735634848.611:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6288 comm="syz.1.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  254.176856][   T27] audit: type=1326 audit(1735634848.611:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6288 comm="syz.1.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  254.205769][   T27] audit: type=1326 audit(1735634848.611:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6288 comm="syz.1.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  254.235498][   T27] audit: type=1326 audit(1735634848.611:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6288 comm="syz.1.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  254.267448][ T5042] usb 1-1: Using ep0 maxpacket: 16
[  254.276505][ T5042] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8
[  254.292652][ T5042] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  254.314401][ T5042] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  254.323736][ T5042] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  254.338530][ T5042] usb 1-1: SerialNumber: syz
[  254.359811][ T6293] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  254.591671][ T5042] cdc_ether: probe of 1-1:1.0 failed with error -71
[  254.636526][ T5042] usb 1-1: USB disconnect, device number 5
[  256.011873][ T6307] loop1: detected capacity change from 0 to 40427
[  256.297502][ T6309] loop4: detected capacity change from 0 to 16
[  257.146187][ T1274] ieee802154 phy0 wpan0: encryption failed: -22
[  257.152529][ T1274] ieee802154 phy1 wpan1: encryption failed: -22
[  258.244396][ T6307] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  258.252278][ T6307] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  258.261559][ T6309] erofs: (device loop4): mounted with root inode @ nid 36.
[  259.499147][ T6307] F2FS-fs (loop1): invalid crc value
[  259.575165][ T6307] F2FS-fs (loop1): Failed to start F2FS issue_checkpoint_thread (-12)
[  261.896526][ T6321] syz.4.552[6321] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  261.896637][ T6321] syz.4.552[6321] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  262.214608][ T4896] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  262.594396][ T4896] usb 1-1: Using ep0 maxpacket: 16
[  262.625961][ T4896] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  262.646847][ T4896] usb 1-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  262.687788][ T4896] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  263.335804][ T4896] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  263.374220][ T4896] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  263.402860][ T4896] usb 1-1: Product: syz
[  263.434352][ T4896] usb 1-1: Manufacturer: syz
[  263.439018][ T4896] usb 1-1: SerialNumber: syz
[  263.930767][ T6349] loop1: detected capacity change from 0 to 1024
[  264.663483][ T6350] loop2: detected capacity change from 0 to 2048
[  264.857218][ T6350] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  264.936790][   T27] kauditd_printk_skb: 4 callbacks suppressed
[  264.936807][   T27] audit: type=1800 audit(1735634860.311:267): pid=6350 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.562" name="bus" dev="loop2" ino=18 res=0 errno=0
[  264.957844][ T6349] EXT4-fs: Ignoring removed i_version option
[  264.993597][ T6349] EXT4-fs (loop1): Test dummy encryption mode enabled
[  265.021163][   T27] audit: type=1800 audit(1735634860.331:268): pid=6350 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.562" name="bus" dev="loop2" ino=18 res=0 errno=0
[  265.110256][ T6366] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  265.231948][ T6349] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  265.263409][ T6370] loop3: detected capacity change from 0 to 128
[  266.826875][ T6366] batman_adv: batadv0: Removing interface: batadv_slave_0
[  266.908931][ T6349] fscrypt: AES-256-XTS using implementation "xts-aes-aesni"
[  267.018711][ T6379] loop4: detected capacity change from 0 to 4096
[  267.071789][ T6379] EXT4-fs: Ignoring removed nobh option
[  267.101747][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  267.226895][ T6379] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  267.568750][ T6379] EXT4-fs (loop4): resizing filesystem from 512 to 0 blocks
[  267.576185][ T6379] EXT4-fs warning (device loop4): ext4_resize_fs:2051: can't shrink FS - resize aborted
[  267.933615][ T6395] loop3: detected capacity change from 0 to 512
[  268.095796][ T4896] usb 1-1: 0:2 : does not exist
[  268.111635][ T6395] EXT4-fs (loop3): orphan cleanup on readonly fs
[  268.115508][ T4251] EXT4-fs (loop1): unmounting filesystem.
[  268.164423][ T4896] usb 1-1: USB disconnect, device number 6
[  268.189054][ T4250] EXT4-fs (loop4): unmounting filesystem.
[  268.200380][ T6395] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #4: comm syz.3.569: pblk 0 bad header/extent: too large eh_depth - magic f30a, entries 1, max 4(4), depth 2048(2048)
[  268.247818][ T6395] EXT4-fs error (device loop3): ext4_quota_enable:6988: comm syz.3.569: Bad quota inode: 4, type: 1
[  268.602563][ T6395] EXT4-fs warning (device loop3): ext4_enable_quotas:7029: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  268.935140][ T6395] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  269.182769][ T6395] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  269.512956][ T4259] EXT4-fs (loop3): unmounting filesystem.
[  269.614247][   T27] audit: type=1326 audit(1735634864.951:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.1.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  269.712483][   T27] audit: type=1326 audit(1735634864.951:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.1.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  269.830120][   T27] audit: type=1326 audit(1735634864.951:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.1.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  269.913759][   T27] audit: type=1326 audit(1735634864.951:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.1.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  269.946395][ T6393] loop2: detected capacity change from 0 to 2048
[  270.013800][   T27] audit: type=1326 audit(1735634864.971:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.1.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  270.194215][   T27] audit: type=1326 audit(1735634864.971:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.1.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  270.228534][ T3622]  loop2: p3 < > p4 < >
[  270.232758][ T3622] loop2: partition table partially beyond EOD, truncated
[  270.311700][ T3622] loop2: p3 start 4284289 is beyond EOD, truncated
[  270.423148][   T27] audit: type=1326 audit(1735634864.971:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.1.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  270.517303][ T4332] udevd[4332]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  270.658935][ T6415] loop3: detected capacity change from 0 to 256
[  270.709434][ T6415] exfat: Deprecated parameter 'utf8'
[  270.765155][ T6415] exfat: Deprecated parameter 'namecase'
[  270.894644][ T6415] exfat: Deprecated parameter 'utf8'
[  270.907656][   T27] audit: type=1326 audit(1735634864.981:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.1.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  271.599944][ T6415] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  271.671988][   T27] audit: type=1326 audit(1735634864.981:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.1.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  271.704251][   T27] audit: type=1326 audit(1735634864.981:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.1.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  271.755099][ T6415] syz.3.574: attempt to access beyond end of device
[  271.755099][ T6415] loop3: rw=524288, sector=34359738488, nr_sectors = 8 limit=256
[  271.791726][ T6415] syz.3.574: attempt to access beyond end of device
[  271.791726][ T6415] loop3: rw=0, sector=34359738488, nr_sectors = 8 limit=256
[  271.806127][   T27] audit: type=1326 audit(1735634864.981:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.1.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  271.925786][   T27] audit: type=1326 audit(1735634864.981:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.1.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  272.089531][   T27] audit: type=1326 audit(1735634864.981:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.1.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  272.127995][   T27] audit: type=1326 audit(1735634864.981:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.1.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  273.075125][ T6437] loop1: detected capacity change from 0 to 512
[  273.131725][ T6436] loop3: detected capacity change from 0 to 4096
[  273.139179][ T6436] EXT4-fs: Ignoring removed nobh option
[  273.154569][ T6437] EXT4-fs warning (device loop1): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  273.180633][ T6437] EXT4-fs warning (device loop1): dx_probe:881: Enable large directory feature to access it
[  273.203991][ T6436] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  273.315360][ T6437] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.582: Corrupt directory, running e2fsck is recommended
[  273.336531][ T6437] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[  273.347907][ T6437] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2186: inode #15: comm syz.1.582: corrupted in-inode xattr
[  273.482498][ T6437] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.582: couldn't read orphan inode 15 (err -117)
[  273.532078][ T6437] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  273.810734][ T6448] EXT4-fs (loop3): resizing filesystem from 512 to 0 blocks
[  273.818384][ T6448] EXT4-fs warning (device loop3): ext4_resize_fs:2051: can't shrink FS - resize aborted
[  274.447931][ T4259] EXT4-fs (loop3): unmounting filesystem.
[  275.161334][ T4251] EXT4-fs (loop1): unmounting filesystem.
[  275.320000][ T6459] loop3: detected capacity change from 0 to 512
[  275.352237][ T6453] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  275.456180][ T6459] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  275.473194][ T6453] kvm: pic: level sensitive irq not supported
[  275.473602][ T6453] kvm: pic: non byte read
[  275.547217][ T6453] kvm: pic: level sensitive irq not supported
[  275.547315][ T6453] kvm: pic: non byte read
[  275.559258][ T6453] kvm: pic: level sensitive irq not supported
[  275.559354][ T6453] kvm: pic: non byte read
[  275.571623][ T6459] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2002c018, mo2=0002]
[  275.580386][ T6453] kvm: pic: level sensitive irq not supported
[  275.580461][ T6453] kvm: pic: non byte read
[  275.588022][ T6459] System zones: 1-12
[  276.402304][ T6459] EXT4-fs (loop3): 1 orphan inode deleted
[  276.411225][ T6459] EXT4-fs (loop3): 1 truncate cleaned up
[  276.426056][ T6459] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  276.570015][ T6459] EXT4-fs error (device loop3): ext4_search_dir:1549: inode #12: block 7: comm syz.3.586: bad entry in directory: directory entry overrun - offset=0, inode=13, rec_len=784, size=56 fake=0
[  276.814973][ T6470] device bridge1 entered promiscuous mode
[  277.195859][ T6472] netlink: 24 bytes leftover after parsing attributes in process `syz.1.590'.
[  277.285258][ T4259] EXT4-fs (loop3): unmounting filesystem.
[  277.379485][ T6472] loop1: detected capacity change from 0 to 512
[  277.419185][ T6472] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 not in group (block 18)!
[  277.477563][ T6472] EXT4-fs (loop1): group descriptors corrupted!
[  280.350984][ T6491] loop4: detected capacity change from 0 to 4096
[  280.451183][ T6498] hub 6-0:1.0: USB hub found
[  280.464376][ T6498] hub 6-0:1.0: 1 port detected
[  280.535424][ T6491] EXT4-fs: Ignoring removed nobh option
[  280.689904][ T6491] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  280.986045][ T6491] EXT4-fs (loop4): resizing filesystem from 512 to 0 blocks
[  280.993486][ T6491] EXT4-fs warning (device loop4): ext4_resize_fs:2051: can't shrink FS - resize aborted
[  281.024366][ T5043] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  282.184312][ T5043] usb 4-1: Using ep0 maxpacket: 16
[  282.191447][ T5043] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  282.264624][ T5043] usb 4-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  282.304611][ T5043] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  282.338701][ T5043] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  282.363690][ T5043] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  282.381445][ T5043] usb 4-1: Product: syz
[  282.410645][ T5043] usb 4-1: Manufacturer: syz
[  282.439816][ T5043] usb 4-1: SerialNumber: syz
[  282.514967][ T4250] EXT4-fs (loop4): unmounting filesystem.
[  282.686737][ T6514] capability: warning: `syz.1.603' uses deprecated v2 capabilities in a way that may be insecure
[  284.112345][ T6545] loop2: detected capacity change from 0 to 512
[  284.219411][ T6545] EXT4-fs (loop2): Test dummy encryption mode enabled
[  284.263544][ T6545] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  284.308264][ T6545] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00cc018, mo2=0002]
[  284.327366][ T6545] System zones: 1-12
[  284.342304][ T6545] EXT4-fs (loop2): 1 truncate cleaned up
[  284.362149][ T6545] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  284.404280][ T6545] EXT4-fs warning (device loop2): ext4_group_add:1743: No reserved GDT blocks, can't resize
[  284.572269][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  285.988676][ T5043] usb 4-1: 0:2 : does not exist
[  286.004455][ T5043] usb 4-1: USB disconnect, device number 6
[  286.098640][ T6564] loop2: detected capacity change from 0 to 4096
[  286.131942][ T6564] EXT4-fs: Ignoring removed nobh option
[  286.222953][ T6564] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  286.245950][ T4332] udevd[4332]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  286.524095][ T6576] EXT4-fs (loop2): resizing filesystem from 512 to 0 blocks
[  286.531772][ T6576] EXT4-fs warning (device loop2): ext4_resize_fs:2051: can't shrink FS - resize aborted
[  286.790890][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  286.822465][   T27] kauditd_printk_skb: 73 callbacks suppressed
[  286.822481][   T27] audit: type=1326 audit(1735634882.201:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6579 comm="syz.3.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e8a385d29 code=0x7ffc0000
[  286.915395][   T27] audit: type=1326 audit(1735634882.201:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6579 comm="syz.3.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e8a385d29 code=0x7ffc0000
[  286.925221][ T6550] loop4: detected capacity change from 0 to 40427
[  286.994456][   T27] audit: type=1326 audit(1735634882.231:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6579 comm="syz.3.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4e8a385d29 code=0x7ffc0000
[  287.041083][ T6550] F2FS-fs (loop4): Found nat_bits in checkpoint
[  287.091799][   T27] audit: type=1326 audit(1735634882.331:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6579 comm="syz.3.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e8a385d29 code=0x7ffc0000
[  287.128720][   T27] audit: type=1326 audit(1735634882.331:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6579 comm="syz.3.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e8a385d29 code=0x7ffc0000
[  287.157773][ T6550] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  287.487333][ T6595] loop2: detected capacity change from 0 to 128
[  294.789954][ T6609] loop3: detected capacity change from 0 to 256
[  294.805392][ T6608] loop4: detected capacity change from 0 to 512
[  295.314800][ T6608] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.4.623: corrupted xattr block 95
[  295.488321][ T6608] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm syz.4.623: bg 0: block 7: invalid block bitmap
[  295.558694][ T6608] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  295.598767][ T6608] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2925: inode #11: comm syz.4.623: corrupted xattr block 95
[  295.660467][ T6608] EXT4-fs warning (device loop4): ext4_evict_inode:299: xattr delete (err -117)
[  295.700489][ T6608] EXT4-fs (loop4): 1 orphan inode deleted
[  295.726570][ T6608] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  295.970543][   T27] audit: type=1326 audit(1735634891.341:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6622 comm="syz.3.631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e8a385d29 code=0x7ffc0000
[  296.043716][   T27] audit: type=1326 audit(1735634891.341:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6622 comm="syz.3.631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e8a385d29 code=0x7ffc0000
[  296.099060][   T27] audit: type=1326 audit(1735634891.351:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6622 comm="syz.3.631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f4e8a385d29 code=0x7ffc0000
[  296.124061][ T6604] loop2: detected capacity change from 0 to 40427
[  296.134347][ T6604] F2FS-fs (loop2): invalid crc value
[  296.140087][   T27] audit: type=1326 audit(1735634891.351:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6622 comm="syz.3.631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e8a385d29 code=0x7ffc0000
[  296.176166][ T6604] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109)
[  296.213343][ T4250] EXT4-fs (loop4): unmounting filesystem.
[  296.264872][   T27] audit: type=1326 audit(1735634891.351:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6622 comm="syz.3.631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e8a385d29 code=0x7ffc0000
[  296.268942][ T6625] loop1: detected capacity change from 0 to 4096
[  296.368453][ T6604] F2FS-fs (loop2): Start checkpoint disabled!
[  296.377370][ T6625] EXT4-fs: Ignoring removed nobh option
[  296.433146][ T6625] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  296.596121][ T6604] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  296.792755][ T6635] EXT4-fs (loop1): resizing filesystem from 512 to 0 blocks
[  296.800248][ T6635] EXT4-fs warning (device loop1): ext4_resize_fs:2051: can't shrink FS - resize aborted
[  296.826459][ T4700] kworker/u4:12: attempt to access beyond end of device
[  296.826459][ T4700] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  297.163814][ T4251] EXT4-fs (loop1): unmounting filesystem.
[  299.843338][ T6646] loop3: detected capacity change from 0 to 512
[  300.022535][ T6646] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  300.041974][ T6646] ext4 filesystem being mounted at /101/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  301.259486][ T6655] loop2: detected capacity change from 0 to 256
[  301.324038][ T4259] EXT4-fs (loop3): unmounting filesystem.
[  301.351188][ T6655] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[  301.742960][ T6664] loop3: detected capacity change from 0 to 1024
[  301.793817][ T6644] loop4: detected capacity change from 0 to 40427
[  301.821196][ T6664] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  301.839199][ T6664] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  301.853034][ T6664] JBD2: no valid journal superblock found
[  301.863402][ T6664] EXT4-fs (loop3): error loading journal
[  302.494835][ T6674] loop2: detected capacity change from 0 to 256
[  303.126685][ T6674] exFAT-fs (loop2): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[  303.169110][ T6644] F2FS-fs (loop4): build fault injection attr: rate: 0, type: 0x16481
[  303.212247][ T6644] F2FS-fs (loop4): invalid crc value
[  303.417611][ T6644] F2FS-fs (loop4): Failed to initialize F2FS segment manager (-4)
[  304.009062][   T27] audit: type=1326 audit(1735634899.381:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6680 comm="syz.2.648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  304.057541][ T6686] loop3: detected capacity change from 0 to 256
[  304.105362][   T27] audit: type=1326 audit(1735634899.391:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6680 comm="syz.2.648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  304.281564][   T27] audit: type=1326 audit(1735634899.391:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6680 comm="syz.2.648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  305.335409][   T27] audit: type=1326 audit(1735634899.391:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6680 comm="syz.2.648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  305.489478][   T27] audit: type=1326 audit(1735634899.411:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6680 comm="syz.2.648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  305.580109][   T27] audit: type=1326 audit(1735634899.421:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6680 comm="syz.2.648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=221 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  305.655342][   T27] audit: type=1326 audit(1735634899.421:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6680 comm="syz.2.648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  306.633595][ T6698] loop1: detected capacity change from 0 to 4096
[  306.752463][ T6698] EXT4-fs: Ignoring removed nobh option
[  306.860470][ T6698] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  307.064768][ T6705] loop2: detected capacity change from 0 to 1024
[  307.140242][ T6705] EXT4-fs: Ignoring removed i_version option
[  307.183043][ T6705] EXT4-fs: inline encryption not supported
[  307.198462][   T27] audit: type=1107 audit(1735634902.571:373): pid=6693 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  307.211897][ T6707] EXT4-fs (loop1): resizing filesystem from 512 to 0 blocks
[  307.219348][ T6707] EXT4-fs warning (device loop1): ext4_resize_fs:2051: can't shrink FS - resize aborted
[  307.230802][ T6705] EXT4-fs (loop2): Test dummy encryption mode enabled
[  307.262375][ T6705] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  307.581871][ T4251] EXT4-fs (loop1): unmounting filesystem.
[  308.350846][ T6692] loop4: detected capacity change from 0 to 40427
[  308.359135][ T6692] F2FS-fs (loop4): Invalid Fs Meta Ino: node(0) meta(2) root(0)
[  308.367274][ T6692] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  308.379004][ T6692] F2FS-fs (loop4): invalid crc value
[  308.456223][ T6692] F2FS-fs (loop4): Failed to start F2FS issue_checkpoint_thread (-12)
[  308.491360][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  309.357045][ T6724] loop2: detected capacity change from 0 to 512
[  309.538390][ T6724] EXT4-fs (loop2): corrupt root inode, run e2fsck
[  309.656201][ T6724] EXT4-fs (loop2): mount failed
[  311.314233][ T4357] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  311.455676][   T27] audit: type=1326 audit(1735634906.751:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6746 comm="syz.4.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f11585d29 code=0x7ffc0000
[  311.754618][ T4357] usb 4-1: Using ep0 maxpacket: 32
[  311.812833][ T4357] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  312.004251][   T27] audit: type=1326 audit(1735634906.751:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6746 comm="syz.4.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f11585d29 code=0x7ffc0000
[  312.054231][ T4357] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  312.105437][ T4357] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  312.159316][   T27] audit: type=1326 audit(1735634906.751:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6746 comm="syz.4.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f6f11585d29 code=0x7ffc0000
[  312.182837][ T4357] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  312.269991][ T4357] usb 4-1: config 0 descriptor??
[  312.274222][   T27] audit: type=1326 audit(1735634906.751:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6746 comm="syz.4.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f11585d29 code=0x7ffc0000
[  312.298974][ T4357] hub 4-1:0.0: USB hub found
[  312.344241][   T27] audit: type=1326 audit(1735634906.751:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6746 comm="syz.4.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f11585d29 code=0x7ffc0000
[  312.404246][   T27] audit: type=1326 audit(1735634906.751:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6746 comm="syz.4.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6f11585d29 code=0x7ffc0000
[  312.493618][ T4357] hub 4-1:0.0: 1 port detected
[  312.499100][   T27] audit: type=1326 audit(1735634906.761:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6746 comm="syz.4.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f11585d29 code=0x7ffc0000
[  312.573265][   T27] audit: type=1326 audit(1735634906.761:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6746 comm="syz.4.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f11585d29 code=0x7ffc0000
[  312.637586][   T27] audit: type=1326 audit(1735634906.761:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6746 comm="syz.4.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6f11585d29 code=0x7ffc0000
[  312.684001][   T27] audit: type=1326 audit(1735634906.761:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6746 comm="syz.4.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f11585d29 code=0x7ffc0000
[  312.738458][ T4357] hub 4-1:0.0: hub_hub_status failed (err = -71)
[  314.134291][ T4357] hub 4-1:0.0: config failed, can't get hub status (err -71)
[  315.150220][ T4357] usbhid 4-1:0.0: can't add hid device: -71
[  315.250256][ T6761] loop2: detected capacity change from 0 to 40427
[  315.776810][ T6761] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  315.784736][ T6761] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  315.797130][ T6761] F2FS-fs (loop2): invalid crc value
[  315.802565][ T6761] F2FS-fs (loop2): Failed to start F2FS issue_checkpoint_thread (-12)
[  316.036182][ T6769] loop4: detected capacity change from 0 to 1024
[  316.043311][ T6769] EXT4-fs: Ignoring removed i_version option
[  316.203423][ T6769] EXT4-fs error (device loop4): ext4_acquire_dquot:6794: comm syz.4.670: Failed to acquire dquot type 0
[  316.366459][ T6769] EXT4-fs error (device loop4): mb_free_blocks:1815: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  316.451681][ T6769] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #13: comm syz.4.670: corrupted inode contents
[  316.544518][ T6769] EXT4-fs error (device loop4): ext4_dirty_inode:6089: inode #13: comm syz.4.670: mark_inode_dirty error
[  316.621760][ T6769] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #13: comm syz.4.670: corrupted inode contents
[  316.625169][ T4357] usbhid: probe of 4-1:0.0 failed with error -71
[  316.685001][ T4357] usb 4-1: USB disconnect, device number 7
[  316.694860][ T6769] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #13: comm syz.4.670: mark_inode_dirty error
[  316.716729][ T6769] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #13: comm syz.4.670: corrupted inode contents
[  318.121269][ T1274] ieee802154 phy0 wpan0: encryption failed: -22
[  318.127655][ T1274] ieee802154 phy1 wpan1: encryption failed: -22
[  318.154279][ T6769] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  318.229357][ T6781] loop3: detected capacity change from 0 to 40427
[  318.253464][ T6781] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  318.261379][ T6781] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  318.296296][ T6781] F2FS-fs (loop3): invalid crc value
[  318.405397][ T6781] F2FS-fs (loop3): Found nat_bits in checkpoint
[  318.559428][ T6781] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  318.566753][ T6781] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  318.764356][ T6769] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #13: comm syz.4.670: corrupted inode contents
[  318.960958][ T6769] EXT4-fs error (device loop4): ext4_truncate:4311: inode #13: comm syz.4.670: mark_inode_dirty error
[  319.041829][ T6769] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  319.095093][ T6769] EXT4-fs (loop4): 1 truncate cleaned up
[  319.124833][ T6769] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  319.182308][ T4250] EXT4-fs (loop4): unmounting filesystem.
[  319.713269][ T4299] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  320.025607][ T4299] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  320.404408][   T27] kauditd_printk_skb: 25 callbacks suppressed
[  320.404430][   T27] audit: type=1326 audit(1735634915.741:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6791 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  320.506233][   T27] audit: type=1326 audit(1735634915.741:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6791 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  320.534218][   T27] audit: type=1326 audit(1735634915.741:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6791 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  320.579684][ T6795] loop4: detected capacity change from 0 to 1024
[  320.593708][ T6795] EXT4-fs: Ignoring removed i_version option
[  320.610550][ T6795] EXT4-fs (loop4): Test dummy encryption mode enabled
[  320.647814][ T6795] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  321.434315][ T4865] Bluetooth: hci5: Frame reassembly failed (-84)
[  321.650297][ T4250] EXT4-fs (loop4): unmounting filesystem.
[  322.846910][ T6824] loop4: detected capacity change from 0 to 128
[  323.063419][ T6826] loop3: detected capacity change from 0 to 256
[  323.531720][ T4258] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  323.542395][ T4266] Bluetooth: hci5: command 0x1003 tx timeout
[  324.191071][ T6826] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  325.025890][ T6837] loop2: detected capacity change from 0 to 512
[  325.033921][ T6837] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  325.075969][ T6837] EXT4-fs (loop2): orphan cleanup on readonly fs
[  325.087594][ T6837] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.690: bg 0: block 248: padding at end of block bitmap is not set
[  325.102550][ T6837] Quota error (device loop2): write_blk: dquota write failed
[  325.110338][ T6837] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  325.120444][ T6837] EXT4-fs error (device loop2): ext4_acquire_dquot:6794: comm syz.2.690: Failed to acquire dquot type 1
[  325.136022][ T6837] EXT4-fs (loop2): 1 truncate cleaned up
[  325.143586][ T6837] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  325.742534][ T6849] loop1: detected capacity change from 0 to 2048
[  325.787221][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  325.860765][ T6849] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  327.666471][   T27] audit: type=1800 audit(1735634923.041:410): pid=6847 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.694" name="file2" dev="loop1" ino=16 res=0 errno=0
[  327.997417][ T4251] EXT4-fs (loop1): unmounting filesystem.
[  329.945197][ T6875] loop4: detected capacity change from 0 to 16
[  330.018131][ T6875] erofs: (device loop4): mounted with root inode @ nid 36.
[  330.551806][ T6879] loop3: detected capacity change from 0 to 1024
[  330.854241][ T5048] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  330.963982][ T6866] loop2: detected capacity change from 0 to 40427
[  331.410040][ T6866] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  331.884464][ T6866] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  331.897026][ T5048] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  331.913137][ T5048] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  331.915444][ T6866] F2FS-fs (loop2): Failed to start F2FS issue_checkpoint_thread (-12)
[  331.934237][ T5048] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  331.947364][ T5048] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  331.956668][ T5048] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  331.976183][ T5048] usb 5-1: config 0 descriptor??
[  332.394368][ T5048] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  332.414291][ T5048] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  332.438147][ T5048] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  332.575521][ T5048] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  332.582998][ T5048] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  332.603638][ T5048] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  332.612598][ T5048] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  332.620428][ T5048] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  332.628577][ T5048] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  332.640547][ T5048] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  332.654208][ T5048] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  332.662911][ T5048] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  332.674818][ T5048] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  332.682278][ T5048] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  332.702587][ T5048] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  332.711172][ T5048] plantronics 0003:047F:FFFF.0005: No inputs registered, leaving
[  332.748885][ T5048] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  333.252165][ T5048] usb 5-1: USB disconnect, device number 11
[  333.571317][ T6902] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  333.668477][ T6904] loop4: detected capacity change from 0 to 512
[  333.693486][ T6904] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  334.976900][ T6904] EXT4-fs (loop4): orphan cleanup on readonly fs
[  334.995788][ T6904] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.711: bg 0: block 248: padding at end of block bitmap is not set
[  335.020523][ T6904] Quota error (device loop4): write_blk: dquota write failed
[  335.028420][ T6904] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  335.038617][ T6904] EXT4-fs error (device loop4): ext4_acquire_dquot:6794: comm syz.4.711: Failed to acquire dquot type 1
[  335.059109][ T6904] EXT4-fs (loop4): 1 truncate cleaned up
[  335.127283][ T6904] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  336.131593][ T6906] loop1: detected capacity change from 0 to 2048
[  336.711875][ T4250] EXT4-fs (loop4): unmounting filesystem.
[  336.953605][ T6912] loop1: detected capacity change from 0 to 512
[  337.002366][ T6912] EXT4-fs: Ignoring removed i_version option
[  337.018832][ T6912] EXT4-fs: Ignoring removed mblk_io_submit option
[  337.039625][ T6912] ext4: Unknown parameter 'seclabel'
[  337.123853][ T6911] loop4: detected capacity change from 0 to 4096
[  337.147350][ T6911] EXT4-fs: Ignoring removed nobh option
[  337.228452][ T6911] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  337.527736][ T6919] EXT4-fs (loop4): resizing filesystem from 512 to 0 blocks
[  337.535445][ T6919] EXT4-fs warning (device loop4): ext4_resize_fs:2051: can't shrink FS - resize aborted
[  337.957178][ T4250] EXT4-fs (loop4): unmounting filesystem.
[  340.236523][   T27] audit: type=1326 audit(1735634935.611:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6934 comm="syz.2.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  340.237245][ T6935] syz.2.721[6935] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  340.260372][ T6935] syz.2.721[6935] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  340.286843][   T27] audit: type=1326 audit(1735634935.611:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6934 comm="syz.2.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  340.396149][ T6938] loop2: detected capacity change from 0 to 512
[  340.454312][   T27] audit: type=1326 audit(1735634935.651:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6934 comm="syz.2.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  340.489432][   T27] audit: type=1326 audit(1735634935.661:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6934 comm="syz.2.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  340.514181][   T27] audit: type=1326 audit(1735634935.661:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6934 comm="syz.2.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  340.525969][ T6938] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.2.721: corrupted xattr block 95
[  340.537417][   T27] audit: type=1326 audit(1735634935.661:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6934 comm="syz.2.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  340.577239][   T27] audit: type=1326 audit(1735634935.661:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6934 comm="syz.2.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  340.579600][ T6938] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm syz.2.721: bg 0: block 7: invalid block bitmap
[  340.626853][   T27] audit: type=1326 audit(1735634935.661:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6934 comm="syz.2.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  340.650122][   T27] audit: type=1326 audit(1735634935.661:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6934 comm="syz.2.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  340.676114][   T27] audit: type=1326 audit(1735634935.661:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6934 comm="syz.2.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  340.700234][ T6938] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  340.736775][ T6938] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2925: inode #11: comm syz.2.721: corrupted xattr block 95
[  340.771855][ T6938] EXT4-fs warning (device loop2): ext4_evict_inode:299: xattr delete (err -117)
[  340.790303][ T6938] EXT4-fs (loop2): 1 orphan inode deleted
[  340.801516][ T6938] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  340.830960][ T6944] loop4: detected capacity change from 0 to 1024
[  340.915182][ T6944] EXT4-fs: Ignoring removed i_version option
[  340.925571][ T6944] EXT4-fs: inline encryption not supported
[  340.962267][ T6944] EXT4-fs (loop4): Test dummy encryption mode enabled
[  341.030715][ T6944] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  341.155375][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  341.338528][ T6951] loop1: detected capacity change from 0 to 512
[  341.371865][ T6951] EXT4-fs: inline encryption not supported
[  341.382816][ T6951] ext4: Unknown parameter 'nouser_xattr'
[  341.434780][ T4332] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  341.476200][ T6951] loop1: detected capacity change from 0 to 512
[  341.544745][ T6951] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.728: bg 0: block 248: padding at end of block bitmap is not set
[  341.579436][ T6951] EXT4-fs error (device loop1): ext4_acquire_dquot:6794: comm syz.1.728: Failed to acquire dquot type 1
[  341.609294][ T6951] EXT4-fs (loop1): 1 truncate cleaned up
[  341.625623][ T6951] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  341.647291][ T6951] ext4 filesystem being mounted at /135/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  341.680218][ T5042] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  341.798568][ T6960] loop3: detected capacity change from 0 to 256
[  341.819940][ T6960] exfat: Deprecated parameter 'utf8'
[  341.829377][ T6960] exfat: Unknown parameter 'eraors'
[  341.884355][ T5042] usb 1-1: Using ep0 maxpacket: 16
[  341.894083][ T5042] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  341.930378][ T5042] usb 1-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  341.966421][ T5042] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  341.988068][ T4332] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  342.652938][ T5042] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  342.653569][ T4251] EXT4-fs (loop1): unmounting filesystem.
[  342.662513][ T5042] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  342.676010][ T5042] usb 1-1: Product: syz
[  342.680822][ T5042] usb 1-1: Manufacturer: syz
[  342.685549][ T5042] usb 1-1: SerialNumber: syz
[  342.817044][ T6967] syz.1.732[6967] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  342.817209][ T6967] syz.1.732[6967] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  343.197243][ T6971] netlink: 16 bytes leftover after parsing attributes in process `syz.3.730'.
[  343.887344][ T4250] EXT4-fs (loop4): unmounting filesystem.
[  344.288752][ T5042] usb 1-1: 0:2 : does not exist
[  344.347468][ T5042] usb 1-1: USB disconnect, device number 7
[  344.514036][ T6975] loop1: detected capacity change from 0 to 40427
[  344.551649][ T6975] F2FS-fs (loop1): build fault injection attr: rate: 0, type: 0x16481
[  344.574860][ T6975] F2FS-fs (loop1): invalid crc value
[  344.592842][ T6975] F2FS-fs (loop1): Found nat_bits in checkpoint
[  344.642085][ T4332] udevd[4332]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  344.833662][ T6975] F2FS-fs (loop1): Start checkpoint disabled!
[  344.974312][ T6975] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  345.260147][ T6995] syz.0.739[6995] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  345.260278][ T6995] syz.0.739[6995] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  345.274862][ T6995] input: syz0 as /devices/virtual/input/input8
[  346.615846][ T7004] syz.3.742[7004] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  346.615958][ T7004] syz.3.742[7004] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  346.891275][   T27] kauditd_printk_skb: 40 callbacks suppressed
[  346.891293][   T27] audit: type=1326 audit(1735634942.261:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7008 comm="syz.0.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  347.036692][   T27] audit: type=1326 audit(1735634942.311:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7008 comm="syz.0.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  347.128411][   T27] audit: type=1326 audit(1735634942.311:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7008 comm="syz.0.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=288 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  347.232590][   T27] audit: type=1326 audit(1735634942.311:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7008 comm="syz.0.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  347.256275][ T7020] netlink: 8 bytes leftover after parsing attributes in process `syz.1.741'.
[  347.281357][   T27] audit: type=1326 audit(1735634942.311:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7008 comm="syz.0.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  347.659724][ T7030] serio: Serial port ptm0
[  348.193003][ T7027] loop2: detected capacity change from 0 to 1024
[  348.360362][ T7027] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  348.406208][ T7027] EXT4-fs (loop2): unmounting filesystem.
[  348.477356][   T27] audit: type=1326 audit(1735634943.851:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7042 comm="syz.0.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  348.532028][   T27] audit: type=1326 audit(1735634943.871:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7042 comm="syz.0.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  348.774643][ T7047] loop3: detected capacity change from 0 to 256
[  349.824297][   T27] audit: type=1326 audit(1735634943.881:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7042 comm="syz.0.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  350.554047][ T7047] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  350.637848][ T7047] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe622a5da, utbl_chksum : 0xe619d30d)
[  351.034295][   T27] audit: type=1326 audit(1735634943.881:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7042 comm="syz.0.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  351.199660][   T27] audit: type=1326 audit(1735634943.881:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7042 comm="syz.0.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  351.501966][ T7054] loop1: detected capacity change from 0 to 4096
[  351.629235][ T7054] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  351.710517][ T7054] fs-verity (loop1, inode 16): Unknown hash algorithm number: 3
[  352.017100][ T4251] EXT4-fs (loop1): unmounting filesystem.
[  352.495314][ T7063] loop3: detected capacity change from 0 to 512
[  352.519352][ T7063] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  352.691193][ T7069] loop2: detected capacity change from 0 to 512
[  352.901880][ T7063] EXT4-fs (loop3): 1 truncate cleaned up
[  352.936110][ T7069] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  352.947896][ T7069] ext4 filesystem being mounted at /167/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  353.249448][ T7063] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  353.651490][ T7078] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  353.711787][ T7078] FAT-fs (loop9): unable to read boot sector
[  355.686769][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  355.799816][ T7089] loop4: detected capacity change from 0 to 256
[  355.832307][ T7089] exfat: Unknown parameter './file0'
[  356.327331][   T27] kauditd_printk_skb: 3 callbacks suppressed
[  356.340286][   T27] audit: type=1326 audit(1735634951.601:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7090 comm="syz.2.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  357.219964][ T4332] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  357.501403][   T27] audit: type=1326 audit(1735634951.601:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7090 comm="syz.2.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  357.806659][   T27] audit: type=1326 audit(1735634951.611:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7090 comm="syz.2.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  357.830309][   T27] audit: type=1326 audit(1735634951.611:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7090 comm="syz.2.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  358.907257][   T27] audit: type=1326 audit(1735634951.611:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7090 comm="syz.2.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  359.232773][   T27] audit: type=1326 audit(1735634951.611:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7090 comm="syz.2.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  359.310375][   T27] audit: type=1326 audit(1735634951.611:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7090 comm="syz.2.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  359.446688][   T27] audit: type=1326 audit(1735634951.621:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7090 comm="syz.2.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  359.501751][ T7105] loop4: detected capacity change from 0 to 512
[  359.621829][   T27] audit: type=1326 audit(1735634951.621:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7090 comm="syz.2.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  359.680029][   T27] audit: type=1326 audit(1735634951.621:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7090 comm="syz.2.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad92d85d29 code=0x7ffc0000
[  359.732819][ T7105] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #13: comm syz.4.775: attempt to clear invalid blocks 1 len 1
[  359.801142][ T7105] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.775: bg 0: block 343: padding at end of block bitmap is not set
[  359.875490][ T7105] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  359.931283][ T7105] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.775: invalid indirect mapped block 1819239214 (level 0)
[  359.995779][ T7105] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.775: invalid indirect mapped block 1819239214 (level 1)
[  360.083265][ T7105] EXT4-fs (loop4): 1 truncate cleaned up
[  360.114197][ T7105] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  361.111138][ T4250] EXT4-fs (loop4): unmounting filesystem.
[  364.258022][ T7133] loop4: detected capacity change from 0 to 2048
[  364.524034][ T7133] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  364.956306][   T27] kauditd_printk_skb: 21 callbacks suppressed
[  364.956322][   T27] audit: type=1800 audit(1735634960.331:503): pid=7133 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.785" name="bus" dev="loop4" ino=18 res=0 errno=0
[  365.037221][   T27] audit: type=1800 audit(1735634960.371:504): pid=7133 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.785" name="bus" dev="loop4" ino=18 res=0 errno=0
[  365.232301][   T27] audit: type=1326 audit(1735634960.601:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7139 comm="syz.0.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  365.272940][   T27] audit: type=1326 audit(1735634960.621:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7139 comm="syz.0.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  365.320792][   T27] audit: type=1326 audit(1735634960.631:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7139 comm="syz.0.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  365.343697][   T27] audit: type=1326 audit(1735634960.631:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7139 comm="syz.0.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  365.366490][   T27] audit: type=1326 audit(1735634960.631:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7139 comm="syz.0.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  365.402298][   T27] audit: type=1326 audit(1735634960.631:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7139 comm="syz.0.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  365.448721][   T27] audit: type=1326 audit(1735634960.631:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7139 comm="syz.0.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  365.494213][   T27] audit: type=1326 audit(1735634960.631:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7139 comm="syz.0.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4592785d29 code=0x7ffc0000
[  365.577940][ T4250] EXT4-fs (loop4): unmounting filesystem.
[  365.946988][ T7151] loop4: detected capacity change from 0 to 1024
[  365.991281][ T7151] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  366.018026][ T7151] EXT4-fs (loop4): unmounting filesystem.
[  367.987119][ T7169] tipc: Started in network mode
[  367.992534][ T7169] tipc: Node identity 7f000001, cluster identity 4711
[  368.007561][ T7169] tipc: Enabled bearer <udp:syz2>, priority 10
[  368.965899][ T7062] EXT4-fs (loop3): unmounting filesystem.
[  369.164793][ T4357] tipc: Node number set to 2130706433
[  369.440542][ T7177] loop4: detected capacity change from 0 to 512
[  369.529322][ T7177] EXT4-fs: Ignoring removed i_version option
[  369.589870][ T7177] EXT4-fs: Ignoring removed mblk_io_submit option
[  369.614292][ T4293] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  370.391758][ T7177] ext4: Unknown parameter 'seclabel'
[  372.174183][ T4293] usb 3-1: Using ep0 maxpacket: 16
[  372.181384][ T4293] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  373.804194][ T4293] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  373.815400][ T4293] usb 3-1: New USB device found, idVendor=046d, idProduct=c51b, bcdDevice= 0.00
[  373.825628][ T4293] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  373.836582][ T4293] usb 3-1: config 0 descriptor??
[  373.882499][ T7192] loop4: detected capacity change from 0 to 1024
[  373.923271][ T7192] EXT4-fs: Ignoring removed nobh option
[  373.977851][ T7192] EXT4-fs (loop4): blocks per group (1280) and clusters per group (8192) inconsistent
[  374.384356][ T4293] usb 3-1: can't set config #0, error -71
[  374.392131][ T4293] usb 3-1: USB disconnect, device number 16
[  375.487872][ T7199] loop1: detected capacity change from 0 to 40427
[  375.650980][ T7199] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  375.659511][ T7199] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  375.697305][ T7199] F2FS-fs (loop1): invalid crc value
[  375.824169][ T4746] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  375.885828][ T7199] F2FS-fs (loop1): Found nat_bits in checkpoint
[  376.048112][ T4266] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  376.101202][ T4266] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  376.111834][ T4266] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  376.130042][ T4266] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  376.141850][ T4266] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  376.154369][ T4266] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  376.276853][ T7199] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  376.284000][ T7199] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  376.613225][ T7192] binder: 7191:7192 ioctl 400c620e 0 returned -14
[  377.602403][ T4446] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  377.868084][ T4305] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  377.904931][ T4305] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  378.246069][ T4266] Bluetooth: hci4: command 0x0409 tx timeout
[  378.567252][ T1274] ieee802154 phy0 wpan0: encryption failed: -22
[  378.573638][ T1274] ieee802154 phy1 wpan1: encryption failed: -22
[  378.671813][ T4446] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  378.906501][ T4446] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  379.078031][ T4446] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  379.420249][ T7232] overlayfs: failed to resolve './file0': -2
[  380.294660][ T4258] Bluetooth: hci4: command 0x041b tx timeout
[  380.537470][ T7200] chnl_net:caif_netlink_parms(): no params data found
[  380.907890][   T27] kauditd_printk_skb: 36 callbacks suppressed
[  380.907909][   T27] audit: type=1326 audit(1735634976.281:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7250 comm="syz.1.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  381.079305][   T27] audit: type=1326 audit(1735634976.281:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7250 comm="syz.1.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  381.168243][   T27] audit: type=1326 audit(1735634976.281:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7250 comm="syz.1.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  381.292442][   T27] audit: type=1326 audit(1735634976.281:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7250 comm="syz.1.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  381.349011][   T27] audit: type=1326 audit(1735634976.281:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7250 comm="syz.1.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20f1985d29 code=0x7ffc0000
[  381.424465][ T7200] bridge0: port 1(bridge_slave_0) entered blocking state
[  381.431714][ T7200] bridge0: port 1(bridge_slave_0) entered disabled state
[  381.464349][ T7200] device bridge_slave_0 entered promiscuous mode
[  381.482991][ T7200] bridge0: port 2(bridge_slave_1) entered blocking state
[  381.502413][ T7200] bridge0: port 2(bridge_slave_1) entered disabled state
[  381.525486][ T7200] device bridge_slave_1 entered promiscuous mode
[  381.700076][ T7200] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  381.827983][ T7200] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  382.069095][ T7200] team0: Port device team_slave_0 added
[  382.257903][ T7272] device syzkaller0 entered promiscuous mode
[  382.297529][ T7200] team0: Port device team_slave_1 added
[  382.374963][ T4258] Bluetooth: hci4: command 0x040f tx timeout
[  384.454978][ T4258] Bluetooth: hci4: command 0x0419 tx timeout
[  387.054814][ T7200] batman_adv: batadv0: Adding interface: batadv_slave_0
[  387.061813][ T7200] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  387.152847][ T7200] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  387.271887][ T7200] batman_adv: batadv0: Adding interface: batadv_slave_1
[  387.288281][ T7292] loop2: detected capacity change from 0 to 512
[  387.294961][ T7200] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  387.316483][ T7292] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  387.387560][ T7292] EXT4-fs (loop2): 1 truncate cleaned up
[  387.403577][ T7292] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  387.494525][ T7200] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  388.147473][ T7200] device hsr_slave_0 entered promiscuous mode
[  388.163924][ T7200] device hsr_slave_1 entered promiscuous mode
[  388.198110][ T7200] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  388.217490][ T7200] Cannot create hsr debugfs directory
[  388.645642][ T7317] fuse: Invalid rootmode
[  389.232046][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  389.270746][ T4446] device hsr_slave_0 left promiscuous mode
[  389.384405][ T4446] device hsr_slave_1 left promiscuous mode
[  389.445059][ T4446] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  389.452598][ T4446] batman_adv: batadv0: Removing interface: batadv_slave_0
[  389.505562][ T4446] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  389.513026][ T4446] batman_adv: batadv0: Removing interface: batadv_slave_1
[  389.613658][ T7334] loop2: detected capacity change from 0 to 512
[  389.635377][ T7334] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  389.727066][ T7334] EXT4-fs (loop2): orphan cleanup on readonly fs
[  389.747846][ T7334] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.831: bg 0: block 248: padding at end of block bitmap is not set
[  389.770296][ T7334] Quota error (device loop2): write_blk: dquota write failed
[  389.778295][ T7334] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  389.788916][ T7334] EXT4-fs error (device loop2): ext4_acquire_dquot:6794: comm syz.2.831: Failed to acquire dquot type 1
[  389.810243][ T7334] EXT4-fs (loop2): 1 truncate cleaned up
[  389.818734][ T7334] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  390.929381][ T4446] device bridge_slave_1 left promiscuous mode
[  391.008342][ T4446] bridge0: port 2(bridge_slave_1) entered disabled state
[  391.939715][ T4446] device bridge_slave_0 left promiscuous mode
[  391.963808][ T4446] bridge0: port 1(bridge_slave_0) entered disabled state
[  392.175544][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  392.408590][ T4446] device veth1_macvtap left promiscuous mode
[  392.419448][ T4446] device veth0_macvtap left promiscuous mode
[  392.439333][ T4446] device veth1_vlan left promiscuous mode
[  392.454701][ T4446] device veth0_vlan left promiscuous mode
[  393.486071][ T7359] xt_hashlimit: max too large, truncated to 1048576
[  393.493755][ T7359] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  394.431258][ T4446] team0 (unregistering): Port device team_slave_1 removed
[  394.486798][ T4446] team0 (unregistering): Port device team_slave_0 removed
[  394.539177][ T4446] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  394.599248][ T4446] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  395.203001][ T4446] bond0 (unregistering): Released all slaves
[  395.332453][ T7366] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  395.353875][ T7366] tipc: Enabled bearer <udp:syz1>, priority 10
[  395.833459][   T27] audit: type=1326 audit(1735634991.121:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7374 comm="syz.4.845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f11585d29 code=0x7ffc0000
[  395.892448][ T7200] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  395.932915][ T7200] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  395.985189][ T5011] ------------[ cut here ]------------
[  395.990751][ T5011] kernel BUG at fs/buffer.c:2666!
[  396.037342][ T7200] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  397.762120][ T5011] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[  397.768262][ T5011] CPU: 1 PID: 5011 Comm: kmmpd-loop0 Tainted: G        W          6.1.122-syzkaller #0
[  397.777911][ T5011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  397.787980][ T5011] RIP: 0010:submit_bh_wbc+0x4c0/0x4e0
[  397.793379][ T5011] Code: 02 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c be fe ff ff 48 89 ef e8 b1 48 e0 ff e9 b1 fe ff ff e8 77 b5 88 ff 0f 0b e8 70 b5 88 ff <0f> 0b e8 69 b5 88 ff 0f 0b e8 62 b5 88 ff 0f 0b e8 5b b5 88 ff 0f
[  397.813005][ T5011] RSP: 0018:ffffc9000e1b7c40 EFLAGS: 00010293
[  397.819095][ T5011] RAX: ffffffff8201e700 RBX: 0000000000000000 RCX: ffff8880264cbb80
[  397.827082][ T5011] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  397.835063][ T5011] RBP: ffffc9000e1b7d50 R08: ffffffff8201e2dd R09: ffffed100e585ee9
[  397.843051][ T5011] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff1100e585ee8
[  397.851038][ T5011] R13: ffff888072c2f740 R14: 0000000000000000 R15: 0000000000003801
[  397.859034][ T5011] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  397.867983][ T5011] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  397.874583][ T5011] CR2: 000000002002f000 CR3: 000000007a3f5000 CR4: 00000000003526e0
[  397.882574][ T5011] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  397.890557][ T5011] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  397.898540][ T5011] Call Trace:
[  397.901833][ T5011]  <TASK>
[  397.904779][ T5011]  ? __die_body+0x5e/0xa0
[  397.909143][ T5011]  ? die+0x83/0xb0
[  397.912894][ T5011]  ? do_trap+0x11e/0x350
[  397.917158][ T5011]  ? submit_bh_wbc+0x4c0/0x4e0
[  397.922119][ T5011]  ? submit_bh_wbc+0x4c0/0x4e0
[  397.926900][ T5011]  ? do_error_trap+0x13d/0x1e0
[  397.931685][ T5011]  ? submit_bh_wbc+0x4c0/0x4e0
[  397.936465][ T5011]  ? do_int3+0x30/0x30
[  397.940555][ T5011]  ? report_bug+0x3e0/0x500
[  397.945079][ T5011]  ? rcu_is_watching+0x11/0xb0
[  397.949860][ T5011]  ? handle_invalid_op+0x2c/0x40
[  397.954818][ T5011]  ? submit_bh_wbc+0x4c0/0x4e0
[  397.959610][ T5011]  ? exc_invalid_op+0x2f/0x40
[  397.964316][ T5011]  ? asm_exc_invalid_op+0x16/0x20
[  397.969372][ T5011]  ? submit_bh_wbc+0x9d/0x4e0
[  397.974061][ T5011]  ? submit_bh_wbc+0x4c0/0x4e0
[  397.978843][ T5011]  ? submit_bh_wbc+0x4c0/0x4e0
[  397.983631][ T5011]  write_mmp_block_thawed+0x3b6/0x5a0
[  397.989022][ T5011]  ? read_mmp_block+0x7e0/0x7e0
[  397.993889][ T5011]  ? update_process_times+0x1b0/0x1b0
[  397.999282][ T5011]  ? kmmpd+0x40c/0xa70
[  398.003364][ T5011]  write_mmp_block+0x13f/0x390
[  398.008239][ T5011]  kmmpd+0x40c/0xa70
[  398.012158][ T5011]  ? write_mmp_block_thawed+0x5a0/0x5a0
[  398.017737][ T5011]  ? __kthread_parkme+0x168/0x1c0
[  398.022789][ T5011]  kthread+0x28d/0x320
[  398.026867][ T5011]  ? write_mmp_block_thawed+0x5a0/0x5a0
[  398.032426][ T5011]  ? kthread_blkcg+0xd0/0xd0
[  398.037044][ T5011]  ret_from_fork+0x1f/0x30
[  398.041512][ T5011]  </TASK>
[  398.044544][ T5011] Modules linked in:
[  398.111940][ T7200] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  398.146964][   T27] audit: type=1326 audit(1735634991.121:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7374 comm="syz.4.845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f11585d29 code=0x7ffc0000
[  398.338648][   T27] audit: type=1326 audit(1735634991.121:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7374 comm="syz.4.845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6f11585d29 code=0x7ffc0000
[  398.473283][   T27] audit: type=1326 audit(1735634991.121:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7374 comm="syz.4.845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f11585d29 code=0x7ffc0000
[  398.495235][ T5011] ---[ end trace 0000000000000000 ]---
[  398.501010][ T5011] RIP: 0010:submit_bh_wbc+0x4c0/0x4e0
[  398.506902][ T5011] Code: 02 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c be fe ff ff 48 89 ef e8 b1 48 e0 ff e9 b1 fe ff ff e8 77 b5 88 ff 0f 0b e8 70 b5 88 ff <0f> 0b e8 69 b5 88 ff 0f 0b e8 62 b5 88 ff 0f 0b e8 5b b5 88 ff 0f
[  398.574644][ T7394] netlink: 32 bytes leftover after parsing attributes in process `syz.2.843'.
[  398.612209][   T27] audit: type=1326 audit(1735634991.121:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7374 comm="syz.4.845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f11585d29 code=0x7ffc0000
[  398.677241][ T5011] RSP: 0018:ffffc9000e1b7c40 EFLAGS: 00010293
[  398.684076][ T7200] 8021q: adding VLAN 0 to HW filter on device bond0
[  398.693316][ T5011] RAX: ffffffff8201e700 RBX: 0000000000000000 RCX: ffff8880264cbb80
[  398.714271][ T5011] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  398.722308][ T5011] RBP: ffffc9000e1b7d50 R08: ffffffff8201e2dd R09: ffffed100e585ee9
[  398.734960][ T6217] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  398.742871][   T27] audit: type=1326 audit(1735634991.121:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7374 comm="syz.4.845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=90 compat=0 ip=0x7f6f11585d29 code=0x7ffc0000
[  398.770528][ T6217] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  398.778487][ T5011] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff1100e585ee8
[  398.781034][ T7200] 8021q: adding VLAN 0 to HW filter on device team0
[  398.797490][ T5011] R13: ffff888072c2f740 R14: 0000000000000000 R15: 0000000000003801
[  398.806187][ T5011] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  398.815733][   T27] audit: type=1326 audit(1735634991.121:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7374 comm="syz.4.845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f11585d29 code=0x7ffc0000
[  398.841316][ T6217] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  398.850638][ T6217] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  398.859089][ T5011] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  398.866216][ T5011] CR2: 00007f6f11747ab8 CR3: 0000000031ffd000 CR4: 00000000003506f0
[  398.877460][ T6217] bridge0: port 1(bridge_slave_0) entered blocking state
[  398.884619][ T6217] bridge0: port 1(bridge_slave_0) entered forwarding state
[  398.887893][   T27] audit: type=1326 audit(1735634991.121:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7374 comm="syz.4.845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f11585d29 code=0x7ffc0000
[  398.894471][ T5011] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  398.935313][ T6217] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  398.943496][ T6217] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  398.954039][ T6217] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  398.962730][ T5011] DR3: 000000000000000e DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  398.975514][ T6217] bridge0: port 2(bridge_slave_1) entered blocking state
[  398.982639][ T6217] bridge0: port 2(bridge_slave_1) entered forwarding state
[  398.995567][ T5011] Kernel panic - not syncing: Fatal exception
[  399.001978][ T5011] Kernel Offset: disabled
[  399.006399][ T5011] Rebooting in 86400 seconds..