last executing test programs:

21m25.970889035s ago: executing program 3 (id=1356):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000180)={[{@fmask={'fmask', 0x3d, 0x7}}, {@umask={'umask', 0x3d, 0x5}}, {@utf8}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'cp862'}}, {@discard}, {@errors_remount}, {@errors_continue}, {@namecase}, {@fmask={'fmask', 0x3d, 0x80}}]}, 0x1, 0x151a, &(0x7f0000002280)="$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")
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0x4, &(0x7f0000000280)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x7b}]}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
rt_sigsuspend(0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='sched_switch\x00', r5}, 0x18)
ioctl$sock_SIOCGIFBR(r2, 0x8940, &(0x7f0000000380)=@generic={0x3, 0x401, 0x7})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r0}, 0x10)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r6, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r6, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)

21m25.068800982s ago: executing program 3 (id=1360):
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
madvise(&(0x7f00002e5000/0x400000)=nil, 0x400000, 0xf)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800002, 0xe)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = openat$selinux_policy(0xffffff9c, &(0x7f0000001400), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r4, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_mreqn(r5, 0x0, 0x20, 0x0, &(0x7f0000005000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r6 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000940)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES32=r6, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r6}, &(0x7f0000000540), &(0x7f0000000580)=r7}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000007c0)={r6, &(0x7f0000000780)}, 0x20)
r8 = socket(0x2b, 0x80000, 0x0)
getsockopt$sock_cred(r8, 0x1, 0x11, 0x0, &(0x7f0000000200))
sendmsg$nl_route(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="280000002100050125bd70000000000002000000000000000100010090fd1400", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="b7836f1c1b5be19805e133cc73fc5944bcec8171ae276f8474276c3617"], 0x28}}, 0x0)

21m23.379465785s ago: executing program 3 (id=1367):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000180)={[{@fmask={'fmask', 0x3d, 0x7}}, {@umask={'umask', 0x3d, 0x5}}, {@utf8}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'cp862'}}, {@discard}, {@errors_remount}, {@errors_continue}, {@namecase}, {@fmask={'fmask', 0x3d, 0x80}}]}, 0x1, 0x151a, &(0x7f0000002280)="$eJzs3AucT9XaOPDnWWvtMST9muQyrLWezS+5LJIklyS5JEmSJLklJE1yJCEx7pLGJSG5DEkMIblMTBr3+/2SkCRNkuSWW7L+nwl/p1PnPee8p/d4P+88389nf6xn9n7WfvZ+Zs9v7435vvPQGo1qVm1ARPBvwUt/JAJALAAMBIAbACAAgLJxZeMy12eXmPjv7YT9uR5LudYVsGuJ+5+1cf+zNu5/1sb9z9q4/1kb9z9r4/5nbdx/xrKyzdPz38hL1l34/X9Wxp///4dklBz39dqSN3cBiPlnU7j/WRv3//+s4J/ZiPuftXH/s6rYa10A+1+Ar/+sINvfXcP9z9q4/4xlZdf6/fO1XiCStc/Btf7+Y4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDGWNZz1VykAuDK+1nUxxhhjjDHGGGPsz+OzXesKGGOMMcYYY4wx9j8PQYAEBQHEQDaIheyQAwQAXA+54AaIwI0QBzdBbrgZ8kBeyAf5IR4KQEHQYMACQQiFoDBE4RYoArdCUSgGxaEEOCgJpeA2KA23Qxm4A8rCnVAO7oLyUAEqQiW4GyrDPVAF7oWqcB9Ug+pQA2rC/VALHoDa8CDUgYegLjwM9eARqA+PQgN4DBrC49AInoDG8CQ0gabQDJpDi/9W/ivQHV6FHtATEqEX9IY+0Bf6QX8YAAPhNRgEr8NgeAOSYAgMhWEwHN6EEfAWjIRRMBrehjHwDoyFcTAeJkAyTIRJ8C70WXvpbE6FaZAC02EGfAAzYRbMhg9hDnwEc2EezIcFkAofw0JYBGnwCSyGTyEdlsBSWAbLYQWshFWwGtbAWlgH62EDbIRNsBm2wFbYBtthB+yEz2AXfA67YQ/shS9gH3z5L+af+Zv8LggIKFCgQoUxGIOxGIs5MAfmxJyYC3NhBCMYh3GYG3NjHsyD+TAfxmM8FsSCaNAgIWEhLIRRjGIRLIJFsSgWx+Lo0GEpLIWl8XYsg2WwLJbFclgOy2MFrICVsBJWxspYBatgVayK1bAa1sAaeD/ej72wNtbGOlgH62LdK6+nsAE2wIbYEBthI2yMjbEJNsFm2AxbYAtsiS2xFbbCNtgG22JbbIftMAETsD22xw7YATtiR+yEnbAzdsYu2BW7ZrySDfBVfBV7YjXRC3tjb+yLSdn64wAcgK/hIHwdX8c3MAmH4FAchsPwTRyBp3EkjsLROBori3dwLI5DEhMwGZNxEk7CyTgZp+D7+D5OwxScjjNwBs7EWTgLP8Q5+BF+hPNwHi7AVEzFhbgI0zANF+MZTMcluBSX4XJcgctxFa7GVbgW1+Fa3IAbcBNuwi24BbfhNtyBO/AzVAD4Oe7BPZiE+3Af7sf9eAAP4EE8iBmYgYfwEB7Gw3gEj+BRPIrH8DiewON4Ck/haTyDZ/EsnsfzeAFfiv+24WfF1iSByKSEEjEiRsSKWJFD5BA5RU6RS+QSERERcSJO5Ba5RR6RR+QT+US8iBcFRUFhhBEkwhgAEFERFUVEEVFUFBXFRXHhhBOlRClRWpQWZUQZvPzDRpQXFURrV0lUEpVFG1dF3CuqiqqimqguaoiaoqaoJWqJ2qK2qCPqiLqirqgnHhH1RS/sj4+JzM40EkOwsRiKTURTIS9P2lKMwFaitWgjnhGjcCS2Ey1dgnheZBbWQfxFjMMXRScxATuLl0UX0VV0E6+I7qKV6yF6iinYS/QW07Cv6Cf6iwFiJlYXH+Kc7DXEGyJJDBFDxTCxAN8UI8RbYqQYJUaLt8UY8Y4YK8aJ8WKCSBYTxSTxrpgs3hNTxPtiqpgmUsR0MUN8IGaKWWK2+FDMER+JuWKemC8WiFTxsVgoFok08YlYLD4V6WKJWCqWieVihVgpVonVYo1YK9aJ9WKD2Cg2ic1ii9gqtontYofYKT4Tu8TnYrfYI/aKL8Q+8aXYL74SB8TX4qD4RmSIb8Uh8Z04LL4XR8QP4qj4URwTx8UJcVKcEj+J0+KMOCvOifPiZ3FB/CIuCi9AohRSSiUDGSOzyViZXeaQ18mcMrh8dm+UcfImmVveLPPIvDKfzC/jZQFZUGpppJUkQ1lIFpZReYssIm+VRWUxWVyWkHO+u5RdWt4uy8g7ZFl5pywn75KxsoKsKCvJu2VleY+EyKWtqsnqsoasKe+XifCArC0flHXkQ7KufFjWk4/I+vJR2UA+JhvKx2Uj+YRsLJ+UTWRT2Uw2ly3kU7KlfFq2kq1lG/mMbCufle3kczJBPi/bS3/5W+RF2Um+JDvLl2UX2VV2k7/Ii9LLHrKnhF4ge8s+sq/sJ/vLAXKgfE0Okq/LwfINmSSHyKFymBwu35Qj5FtypBwlR8u35Rj5jhwrx8nxcoJMlhPlJPmunCzfk1Pk+3KqnCZT5HTZ//JMs6X8h/nv/kH+4F/3vklullvkVrlNbpc75E75mdwld8ndcrfcK/fKfXKf3C/3ywPygDwoD8oMmSEPyUPysDwsj8gj8qg8Ko/J4/KcPClPyZ/kaXlGnpHn5Hl5Xl64fA5AoRJKKqUCFaOyqViVXeVQ16mc6nqVS92gIupGFaduUrnVzSqPyqvyqfwqXhVQBZVWRllFKlSFVGEVVbdcucZVcVVCOVVSlVK3/Sv5qoi6VRVVxX6Tf6W+xL9TXwvVQrVULVUr1Uq1UW1UW9VWtVPtVIJKUO1Ve9VBdVAdVUfVSXVSnVVn1UV1Ud1UN9VddVc9VA+VqBJVb9VH9VX9VH81QA1Ur6lBapAarAarJJWkhqqhargarkaoEWqkGqlGq9FqjBqjxqqxarwar5JVspqkJqnJarKaoqaoqWqqSlEpaoaaoWaqmWq2mq3mqDlqrpqr5qv5KlWlqoVqoUpTaWqxWqzS1RK1RC1Ty9QKtUKtUqvUGrVGrVPr1Aa1QaWrzWqz2qq2qu1qu9qpdqpdapfarXarvWqv2qf2qf1qvzqgDqiD6qDKUBnqkDqkDqvD6og6oo6qo+qYOqZOqBPqlDqlTqvT6qw6q86r8+qCuqAuqouZt32BCESgAhXEBDFBbBAb5AhyBDmDnEGuIFcQCSJBXBAX5A5uDvIEeYN8Qf4gPigQFAx0YAIbiMtNjwa3BEWCW4OiQbGgeFAicEHJoFRwW1A6uD0oE9wRlA3uDMoFdwXlgwpBxaBScHdQObgnqBLcG1QN7guqBdWDGkHN4P6gVvBAUDt4MKgTPBTUDR4O6gWPBPWDR4MGwWNBw+DxoFHwRNA4eDJoEjQNmgXNgxZ/6vzen877tOuhe+pE3Uv31n10X91P99cD9ED9mh6kX9eD9Rs6SQ/RQ/UwPVy/qUfot/RIPUqP1m/rMfodPVaP0+P1BJ2sJ+pJ+l09Wb+np+j39VQ9Tafo6XqG/kDP1LP0bP2hnqM/0nP1PD1fL9Cp+mO9UC/SafoTvVh/qtP1Er1UL9PL9Qq9Uq/Sq/UavVav0+v1Br1Rb9Kb9Ra9VW/T2/UOvVN/pnfpz/VuvUfv1V/offpLvV9/pQ/or/VB/Y3O0N/qQ/o7fVh/r4/oH/RR/aM+po/rE/qkPqV/0qf1GX1Wn9Pn9c/6gv5FX9Q+8+Y+8+PdKKNMjIkxsSbW5DA5TE6T0+QyuUzEREyciTO5TW6Tx+Qx+Uw+E2/iTUFT0GQiQ6aQKWSiJmqKmCKmqClqipvixhlnSplSprQpbcqYMqasKWvKmXKmvClvKpqK5m5zt7nH3GPuNfea+8x9prqpbmqamqaWqWVqm9qmjqlj6pq6pp6pZ+qb+qaBaWAamoamkWlkGpvGpolpYpqZZqaFaWFampamlWll2pg2pq1pa9qZdibBJJj2pr3pYDqYjqaj6WQ6mc6ms+liuphuppvpbrqbHqaHSTSJprfpbfqavqa/6W8GmoFmkBlkBpvBJskkmaFmqBluhpsRZoQZaUaZ0Zk3quYdM9aMM+PNBJNsks0kM8lMNpPNFDPFTDVTTYpJMTPMDDPTzDSzzWwzx8wxc81cM9/MN6km1Sw0C02aSTOLzWKTbtLNUrPULDfLzUqz0qw2q81as9ash/Vmo9loNpvNZqvZarab7Wan2Wl2mV1mt9lt9pq9Zp/ZZ/ab/eaAOWAOmoMmw2SYQ+aQOWwOmyPmiDlqjppj5pg5YU6YU+aUOW1Om7PmrDlv8l7+vPQm1ma3Oex1Nqe93uayN9i/jfPZ/DbeFrAFrbZ5bN7fxMZaW9QWs8VtCetsSVvK3va7uLytYCvaSvZuW9neY6v8Lq5lH7C17YO2jn3I1rT3/yauax+29ewTtj4igG1qG9rmtpF9wja2T9omtqltZpvbtvZZ284+ZxPs87a9feF38UK7yK62a+xau87utnvsWXvOHrbf2/P2Z9vD9rQD7Wt2kH3dDrZv2CQ75HfxaPu2HWPfsWPtODveTvhdPNVOsyl2up1hP7Az7Sw7bPdv41T7sZ1j0+xcO8/Otwt+jTNrSrOf2MX2U5tuA1hql9nldoVdaVf9/1qX2Q12o91kd9nP7Va7zW63O+zOKzfCdo/da7+w++yX9pD9zh6wX9uD9ojNsN/+Gmce3xH7gz1qf7TH7HF7wp60p+xP6kp25rGftL/Yi9ZbICQgSYoCiqFsFEvZKQddRznpespFN1CEbqQ4uoly082Uh/JSPspP8VSACpImQ5aIQipEhSlKt9CV8opTCXJUkkrRbVSabqcydAeVpTupHN1F5akCVaRKdDdVpnuoCt1LVek+qkbVqQbVpPupFj1AtelBqkMPUV16mOrRI1SfHqUG9Bg1pMepET1BjelJakJNqRk1pxb0FLWkp6kVtaY29Ay1pWepHT1HCfQ8tacXqAP9hTrSi9SJXqLO9DJ1oa7UjV6h7vQq9aCelEi9qDf1ob7Uj/rTABpIr9Egep0G0xuURENoKA2j4fQmjaC3aCSNotH0No2hd2gsjaPxNIGSaSJNondpMr1HU+h9mkrTKIWm0wz6gGbSLJpNH9Ic+ojm0jyaTwsolT6mhbSI0ugTWkyfUjotoaW0jJbTClpJq2g1raG1tI7W0wbaSJtoM22hrbSNttMO2kmf0S76nHbTHtpLX9A++pL201d0gL6mg/QNZdC3dIi+o8P0PR2hH3xP+pGO0XE6QSfpFP1Ep+kMnaVzdJ5+pgv0C10kTxBiKEIZqjAIY8JsYWyYPcwRXhfmDK8Pc4U3hJHwxjAuvCnMHd4c5gnzhvnC/GF8WCAsGOrQhDakMAwLhYXDaHhLWCS8NSwaFguLhyVCF5YMS4W3haXDGCgT3hGWDe8My4V3heXDCuETD1UK7w4rh/eEVcJ7w6rhfWG1sHpYI6wZ3h/WCh8Ia4cPhnXCh8Iy4cNhvfCRsH74aNggfCxsGD4eNgqfCBuHT4ZNwqZhs7B52CJ8KmwZPh22CluHbcJnwrbhs2G78LkwIXw+bB++8Ov6hxf9/fWJYa+wd9gn7BN6/6CcH10QTY1+HF0YXRRNi34SXRz9NJoeXRJdGl0WXR7NvAdaFV0dXRNdG10XXR/dEN0Y3RT1vmY2cOiEk065wMW4bC7WZXc53HUup7ve5XI3uIi70e1pd5PL7W52eVxel8/ld/GugCvotDPOOnKhK+QKu6i7xRVxt/YEV8wVdyWccyVdKdfctXAtXEv3tGvlWrs27hn3jHvWPeuec8+5511794Lr4P7iOroXXSf3knvJvey6uK6um3vFdXcTc126JhNdb9fb9XV9XX/X3w10A90gN8gNdoNdkktyQ91QN9wNdyPcCDfSjXSj3Wg3xo1xY91YN96Nd8ku2U1yk9xkN9lNcVPcVDfVpbgUN8PNcDPdTFd51qW9zHVz3Xw336W6VLfQZZ6vNLfYLXbpLt0tdUvdcrfcrXQr3Wq32q11a916t95tdBvdZrfZbXVb3Xa33e10O90ut8vt9jdcmtTtc/vdfnfAHXAH3Tcuw33rDrnv3GH3vTvifnBH3Y/umDvuTriT7pT7yZ12Z9xZd86ddz+7C+4Xd9F5lxyZGJkUeTcyOfJeZErk/cjUyLRISmR6ZEbkg8jMyKzI7MiHkTmRjyJzI/Mi8yMLIqmRjyMLI4siaZFPIosjn0bSI0siSyPLIssjKyLeF9ga+kK+sI/6W3wRf6sv6ov54r6Ed76kL+Vv86X97b6Mv8OX9Xf6cv4uX95X8BX9k76Jb+qb+ea+hX/Kt/RP+1a+tW/jn/Ft/bO+nX/OJ/jnfXv/gu/g/+I7+hd9J/+S7+xf9l18V9/Nv+K7+1d9D9/TJ/pevrfv4/v6fr6/H+AH+tf8IP+6H+zf8El+iB/qh/nh/k0/wr/lR/pRfnTM237MlUdkmOCT/UQ/yb/rJ/v3/BT/vp/qp/kUP93P8B/4mX6Wn+0/9HP8R36un+fn+wU+1X/sF/pFPs1/4hf7T326X3LlpbJf6Vf51X6NX+vX+fV+g9/oN/nNfovf6rf57X6H3+k/87v853633+P3+i/8Pv+l3++/8gf81/6g/8Zn+G/9If+dP+y/90f8D/6o/9Ef88f9CX/Sn/I/+dP+jD/rz/nz/md/wf/iL/L/WWOMMcYY+6dMvDoUv11z6XV+rz/IEX+1cW8AuH5b/oy/Xp95R7k+z6VxPxHfNgIAz/fs/NiVpVq1xMTEy9umSwgKzwO48jdBmWLgarwE2sCzkACtofQf1t9PdD1P/2D+6J0AOf4qJxauxlfn/woAE/9g/qeeGb2wXHg27r+Yfx5A0cJXc7LD1XgJtPn1/UprKPN36s/b8h/Un/3rZIBWf5WTE67GV+svBU/DC5Dwmy0ZY4wxxhhjjLFL+omKHa88f175F59/9Hwer67mZIOr8T96PmeMMcYYY4wxxti192LXbs89lZDQuuO/Pqjy38r6pweN4X9qZh784cB7gCtfUQDwb04IkDmQ/8mj2PIf2VfS5Uvnb1ctP+cD+N/Ryj9jcI1/MDHGGGOMMcb+dFdv+n/7dXWtCmKMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxrKg/8SvE7vWx8gYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4xda/8vAAD//xtvAG4=")
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0x4, &(0x7f0000000280)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x7b}]}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
rt_sigsuspend(0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='sched_switch\x00', r3}, 0x18)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)

21m22.273584936s ago: executing program 3 (id=1374):
r0 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000200), 0x4)
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0}, 0x50)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x6, 0x0)
socket$netlink(0x10, 0x3, 0x0)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2048c5, &(0x7f0000000400)={[{@utf8no}, {@shortname_winnt}, {@shortname_winnt}, {@fat=@nfs_nostale_ro}, {}, {@utf8no}, {@fat=@nfs}, {@fat=@dmask={'dmask', 0x3d, 0x100}}, {@fat=@discard}, {@shortname_mixed}, {@fat=@quiet}, {@shortname_lower}]}, 0x0, 0x29f, &(0x7f0000000580)="$eJzs3UFrE1sYxvGnSdukKW2yKBfuhct9uW50M7TxEwRpQQwotRF1IUztREPGpGRiJCK2O7d+juLSlYL6Bbpx517cFEFw04UYaZKxaRswra1Tzf8HYU7OOe/MmZyZ8M5AJlvXn94rFwOn6NYVS5pi0rq2pcxOqWuku4y1y+Pqta5zk5/f/Xv1xs1LuXx+ftFsIbd0Pmtm0/+9evDo2f9v6pPXnk+/TGgzc2vrU/b95l+bf299XQrXXpVcW65W6+6y79lKKSg7Zld8zw08K1UCr1a3nvaiX11dbZpbWZlKrda8IDC30rSy17R61eq1prl33FLFHMexqZSGTfzQEYWNxUU3dyKDQRQm+lXWajk33rexsPErBgUAAE6XqPL/u6XASoFVqnvy+4P5f0yHyP+loc7/D4/8fxjs5P+p7vm7F/k/AAAAAAAAAAAAAAAAAAAAAAC/g+1WK91qtdLhMnwlJCUlhe+jHidOBvM/3Hp+uJeU/CeNQqPQWXbac0WV5MvT7Jj0pX08dHXKCxfz87PWltFrf60bv9YoxJUI40OZ/vFznXjrjV/TmFK9288qrZn+8dk+8Y3CuM6eaSW6W/bkKK23t1WVr5X2cb0b/3jO7MLl/L74iXY/AAAAAAD+BI59d+D6vd3uWPjYkH3tncrd+wNK/+D+wL7r61H9MxrdfgMAAAAAMEyC5sOy6/tebQgK4f8fHMsKo//okoN2HpXUrXlxWuZikEJM0lHD4z83yx8l7amZiXy6j6Pw4X7nDBikc5TfSgAAAABOQpj0j0Q9EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAhtigDw8L+x/l2WM9m4tHs5cAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA6fAtAAD//2kbF4o=")
r2 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333404, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11080, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000002c0)='net\x00')
getdents64(r3, &(0x7f0000002f40)=""/4098, 0x1002)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
read$FUSE(r2, &(0x7f0000002c00)={0x2020}, 0x2020)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x1, 0x65, 0x8}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
syz_usb_connect(0x3, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000"], 0x0)

21m18.815601382s ago: executing program 3 (id=1383):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000c80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
mkdir(&(0x7f0000000040)='./file0\x00', 0x80)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x80, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000440)='./bus\x00')
r2 = open(&(0x7f0000000580)='./file1\x00', 0x80242, 0x1df2a23c5997fa5f)
write$FUSE_CREATE_OPEN(r2, &(0x7f00000007c0)={0xa0, 0xffffffffffffffda, 0x0, {{0x1000000000003, 0x3, 0x8000000000007, 0x7, 0x5, 0x1, {0x0, 0x181, 0x3, 0x5, 0x87, 0xd615, 0xffff, 0x7fffffff, 0xfffffffe, 0x8000, 0x0, 0xee00, 0x0, 0xcea, 0x1}}, {0x0, 0x10}}}, 0xa0)
sendfile(r2, r2, &(0x7f0000000080), 0x7f03)

21m18.707581585s ago: executing program 3 (id=1386):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000180)={[{@fmask={'fmask', 0x3d, 0x7}}, {@umask={'umask', 0x3d, 0x5}}, {@utf8}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'cp862'}}, {@discard}, {@errors_remount}, {@errors_continue}, {@namecase}, {@fmask={'fmask', 0x3d, 0x80}}]}, 0x1, 0x151a, &(0x7f0000002280)="$eJzs3AucT9XaOPDnWWvtMST9muQyrLWezS+5LJIklyS5JEmSJLklJE1yJCEx7pLGJSG5DEkMIblMTBr3+/2SkCRNkuSWW7L+nwl/p1PnPee8p/d4P+88389nf6xn9n7WfvZ+Zs9v7435vvPQGo1qVm1ARPBvwUt/JAJALAAMBIAbACAAgLJxZeMy12eXmPjv7YT9uR5LudYVsGuJ+5+1cf+zNu5/1sb9z9q4/1kb9z9r4/5nbdx/xrKyzdPz38hL1l34/X9Wxp///4dklBz39dqSN3cBiPlnU7j/WRv3//+s4J/ZiPuftXH/s6rYa10A+1+Ar/+sINvfXcP9z9q4/4xlZdf6/fO1XiCStc/Btf7+Y4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDGWNZz1VykAuDK+1nUxxhhjjDHGGGPsz+OzXesKGGOMMcYYY4wx9j8PQYAEBQHEQDaIheyQAwQAXA+54AaIwI0QBzdBbrgZ8kBeyAf5IR4KQEHQYMACQQiFoDBE4RYoArdCUSgGxaEEOCgJpeA2KA23Qxm4A8rCnVAO7oLyUAEqQiW4GyrDPVAF7oWqcB9Ug+pQA2rC/VALHoDa8CDUgYegLjwM9eARqA+PQgN4DBrC49AInoDG8CQ0gabQDJpDi/9W/ivQHV6FHtATEqEX9IY+0Bf6QX8YAAPhNRgEr8NgeAOSYAgMhWEwHN6EEfAWjIRRMBrehjHwDoyFcTAeJkAyTIRJ8C70WXvpbE6FaZAC02EGfAAzYRbMhg9hDnwEc2EezIcFkAofw0JYBGnwCSyGTyEdlsBSWAbLYQWshFWwGtbAWlgH62EDbIRNsBm2wFbYBtthB+yEz2AXfA67YQ/shS9gH3z5L+af+Zv8LggIKFCgQoUxGIOxGIs5MAfmxJyYC3NhBCMYh3GYG3NjHsyD+TAfxmM8FsSCaNAgIWEhLIRRjGIRLIJFsSgWx+Lo0GEpLIWl8XYsg2WwLJbFclgOy2MFrICVsBJWxspYBatgVayK1bAa1sAaeD/ej72wNtbGOlgH62LdK6+nsAE2wIbYEBthI2yMjbEJNsFm2AxbYAtsiS2xFbbCNtgG22JbbIftMAETsD22xw7YATtiR+yEnbAzdsYu2BW7ZrySDfBVfBV7YjXRC3tjb+yLSdn64wAcgK/hIHwdX8c3MAmH4FAchsPwTRyBp3EkjsLROBori3dwLI5DEhMwGZNxEk7CyTgZp+D7+D5OwxScjjNwBs7EWTgLP8Q5+BF+hPNwHi7AVEzFhbgI0zANF+MZTMcluBSX4XJcgctxFa7GVbgW1+Fa3IAbcBNuwi24BbfhNtyBO/AzVAD4Oe7BPZiE+3Af7sf9eAAP4EE8iBmYgYfwEB7Gw3gEj+BRPIrH8DiewON4Ck/haTyDZ/EsnsfzeAFfiv+24WfF1iSByKSEEjEiRsSKWJFD5BA5RU6RS+QSERERcSJO5Ba5RR6RR+QT+US8iBcFRUFhhBEkwhgAEFERFUVEEVFUFBXFRXHhhBOlRClRWpQWZUQZvPzDRpQXFURrV0lUEpVFG1dF3CuqiqqimqguaoiaoqaoJWqJ2qK2qCPqiLqirqgnHhH1RS/sj4+JzM40EkOwsRiKTURTIS9P2lKMwFaitWgjnhGjcCS2Ey1dgnheZBbWQfxFjMMXRScxATuLl0UX0VV0E6+I7qKV6yF6iinYS/QW07Cv6Cf6iwFiJlYXH+Kc7DXEGyJJDBFDxTCxAN8UI8RbYqQYJUaLt8UY8Y4YK8aJ8WKCSBYTxSTxrpgs3hNTxPtiqpgmUsR0MUN8IGaKWWK2+FDMER+JuWKemC8WiFTxsVgoFok08YlYLD4V6WKJWCqWieVihVgpVonVYo1YK9aJ9WKD2Cg2ic1ii9gqtontYofYKT4Tu8TnYrfYI/aKL8Q+8aXYL74SB8TX4qD4RmSIb8Uh8Z04LL4XR8QP4qj4URwTx8UJcVKcEj+J0+KMOCvOifPiZ3FB/CIuCi9AohRSSiUDGSOzyViZXeaQ18mcMrh8dm+UcfImmVveLPPIvDKfzC/jZQFZUGpppJUkQ1lIFpZReYssIm+VRWUxWVyWkHO+u5RdWt4uy8g7ZFl5pywn75KxsoKsKCvJu2VleY+EyKWtqsnqsoasKe+XifCArC0flHXkQ7KufFjWk4/I+vJR2UA+JhvKx2Uj+YRsLJ+UTWRT2Uw2ly3kU7KlfFq2kq1lG/mMbCufle3kczJBPi/bS3/5W+RF2Um+JDvLl2UX2VV2k7/Ii9LLHrKnhF4ge8s+sq/sJ/vLAXKgfE0Okq/LwfINmSSHyKFymBwu35Qj5FtypBwlR8u35Rj5jhwrx8nxcoJMlhPlJPmunCzfk1Pk+3KqnCZT5HTZ//JMs6X8h/nv/kH+4F/3vklullvkVrlNbpc75E75mdwld8ndcrfcK/fKfXKf3C/3ywPygDwoD8oMmSEPyUPysDwsj8gj8qg8Ko/J4/KcPClPyZ/kaXlGnpHn5Hl5Xl64fA5AoRJKKqUCFaOyqViVXeVQ16mc6nqVS92gIupGFaduUrnVzSqPyqvyqfwqXhVQBZVWRllFKlSFVGEVVbdcucZVcVVCOVVSlVK3/Sv5qoi6VRVVxX6Tf6W+xL9TXwvVQrVULVUr1Uq1UW1UW9VWtVPtVIJKUO1Ve9VBdVAdVUfVSXVSnVVn1UV1Ud1UN9VddVc9VA+VqBJVb9VH9VX9VH81QA1Ur6lBapAarAarJJWkhqqhargarkaoEWqkGqlGq9FqjBqjxqqxarwar5JVspqkJqnJarKaoqaoqWqqSlEpaoaaoWaqmWq2mq3mqDlqrpqr5qv5KlWlqoVqoUpTaWqxWqzS1RK1RC1Ty9QKtUKtUqvUGrVGrVPr1Aa1QaWrzWqz2qq2qu1qu9qpdqpdapfarXarvWqv2qf2qf1qvzqgDqiD6qDKUBnqkDqkDqvD6og6oo6qo+qYOqZOqBPqlDqlTqvT6qw6q86r8+qCuqAuqouZt32BCESgAhXEBDFBbBAb5AhyBDmDnEGuIFcQCSJBXBAX5A5uDvIEeYN8Qf4gPigQFAx0YAIbiMtNjwa3BEWCW4OiQbGgeFAicEHJoFRwW1A6uD0oE9wRlA3uDMoFdwXlgwpBxaBScHdQObgnqBLcG1QN7guqBdWDGkHN4P6gVvBAUDt4MKgTPBTUDR4O6gWPBPWDR4MGwWNBw+DxoFHwRNA4eDJoEjQNmgXNgxZ/6vzen877tOuhe+pE3Uv31n10X91P99cD9ED9mh6kX9eD9Rs6SQ/RQ/UwPVy/qUfot/RIPUqP1m/rMfodPVaP0+P1BJ2sJ+pJ+l09Wb+np+j39VQ9Tafo6XqG/kDP1LP0bP2hnqM/0nP1PD1fL9Cp+mO9UC/SafoTvVh/qtP1Er1UL9PL9Qq9Uq/Sq/UavVav0+v1Br1Rb9Kb9Ra9VW/T2/UOvVN/pnfpz/VuvUfv1V/offpLvV9/pQ/or/VB/Y3O0N/qQ/o7fVh/r4/oH/RR/aM+po/rE/qkPqV/0qf1GX1Wn9Pn9c/6gv5FX9Q+8+Y+8+PdKKNMjIkxsSbW5DA5TE6T0+QyuUzEREyciTO5TW6Tx+Qx+Uw+E2/iTUFT0GQiQ6aQKWSiJmqKmCKmqClqipvixhlnSplSprQpbcqYMqasKWvKmXKmvClvKpqK5m5zt7nH3GPuNfea+8x9prqpbmqamqaWqWVqm9qmjqlj6pq6pp6pZ+qb+qaBaWAamoamkWlkGpvGpolpYpqZZqaFaWFampamlWll2pg2pq1pa9qZdibBJJj2pr3pYDqYjqaj6WQ6mc6ms+liuphuppvpbrqbHqaHSTSJprfpbfqavqa/6W8GmoFmkBlkBpvBJskkmaFmqBluhpsRZoQZaUaZ0Zk3quYdM9aMM+PNBJNsks0kM8lMNpPNFDPFTDVTTYpJMTPMDDPTzDSzzWwzx8wxc81cM9/MN6km1Sw0C02aSTOLzWKTbtLNUrPULDfLzUqz0qw2q81as9ash/Vmo9loNpvNZqvZarab7Wan2Wl2mV1mt9lt9pq9Zp/ZZ/ab/eaAOWAOmoMmw2SYQ+aQOWwOmyPmiDlqjppj5pg5YU6YU+aUOW1Om7PmrDlv8l7+vPQm1ma3Oex1Nqe93uayN9i/jfPZ/DbeFrAFrbZ5bN7fxMZaW9QWs8VtCetsSVvK3va7uLytYCvaSvZuW9neY6v8Lq5lH7C17YO2jn3I1rT3/yauax+29ewTtj4igG1qG9rmtpF9wja2T9omtqltZpvbtvZZ284+ZxPs87a9feF38UK7yK62a+xau87utnvsWXvOHrbf2/P2Z9vD9rQD7Wt2kH3dDrZv2CQ75HfxaPu2HWPfsWPtODveTvhdPNVOsyl2up1hP7Az7Sw7bPdv41T7sZ1j0+xcO8/Otwt+jTNrSrOf2MX2U5tuA1hql9nldoVdaVf9/1qX2Q12o91kd9nP7Va7zW63O+zOKzfCdo/da7+w++yX9pD9zh6wX9uD9ojNsN/+Gmce3xH7gz1qf7TH7HF7wp60p+xP6kp25rGftL/Yi9ZbICQgSYoCiqFsFEvZKQddRznpespFN1CEbqQ4uoly082Uh/JSPspP8VSACpImQ5aIQipEhSlKt9CV8opTCXJUkkrRbVSabqcydAeVpTupHN1F5akCVaRKdDdVpnuoCt1LVek+qkbVqQbVpPupFj1AtelBqkMPUV16mOrRI1SfHqUG9Bg1pMepET1BjelJakJNqRk1pxb0FLWkp6kVtaY29Ay1pWepHT1HCfQ8tacXqAP9hTrSi9SJXqLO9DJ1oa7UjV6h7vQq9aCelEi9qDf1ob7Uj/rTABpIr9Egep0G0xuURENoKA2j4fQmjaC3aCSNotH0No2hd2gsjaPxNIGSaSJNondpMr1HU+h9mkrTKIWm0wz6gGbSLJpNH9Ic+ojm0jyaTwsolT6mhbSI0ugTWkyfUjotoaW0jJbTClpJq2g1raG1tI7W0wbaSJtoM22hrbSNttMO2kmf0S76nHbTHtpLX9A++pL201d0gL6mg/QNZdC3dIi+o8P0PR2hH3xP+pGO0XE6QSfpFP1Ep+kMnaVzdJ5+pgv0C10kTxBiKEIZqjAIY8JsYWyYPcwRXhfmDK8Pc4U3hJHwxjAuvCnMHd4c5gnzhvnC/GF8WCAsGOrQhDakMAwLhYXDaHhLWCS8NSwaFguLhyVCF5YMS4W3haXDGCgT3hGWDe8My4V3heXDCuETD1UK7w4rh/eEVcJ7w6rhfWG1sHpYI6wZ3h/WCh8Ia4cPhnXCh8Iy4cNhvfCRsH74aNggfCxsGD4eNgqfCBuHT4ZNwqZhs7B52CJ8KmwZPh22CluHbcJnwrbhs2G78LkwIXw+bB++8Ov6hxf9/fWJYa+wd9gn7BN6/6CcH10QTY1+HF0YXRRNi34SXRz9NJoeXRJdGl0WXR7NvAdaFV0dXRNdG10XXR/dEN0Y3RT1vmY2cOiEk065wMW4bC7WZXc53HUup7ve5XI3uIi70e1pd5PL7W52eVxel8/ld/GugCvotDPOOnKhK+QKu6i7xRVxt/YEV8wVdyWccyVdKdfctXAtXEv3tGvlWrs27hn3jHvWPeuec8+5511794Lr4P7iOroXXSf3knvJvey6uK6um3vFdXcTc126JhNdb9fb9XV9XX/X3w10A90gN8gNdoNdkktyQ91QN9wNdyPcCDfSjXSj3Wg3xo1xY91YN96Nd8ku2U1yk9xkN9lNcVPcVDfVpbgUN8PNcDPdTFd51qW9zHVz3Xw336W6VLfQZZ6vNLfYLXbpLt0tdUvdcrfcrXQr3Wq32q11a916t95tdBvdZrfZbXVb3Xa33e10O90ut8vt9jdcmtTtc/vdfnfAHXAH3Tcuw33rDrnv3GH3vTvifnBH3Y/umDvuTriT7pT7yZ12Z9xZd86ddz+7C+4Xd9F5lxyZGJkUeTcyOfJeZErk/cjUyLRISmR6ZEbkg8jMyKzI7MiHkTmRjyJzI/Mi8yMLIqmRjyMLI4siaZFPIosjn0bSI0siSyPLIssjKyLeF9ga+kK+sI/6W3wRf6sv6ov54r6Ed76kL+Vv86X97b6Mv8OX9Xf6cv4uX95X8BX9k76Jb+qb+ea+hX/Kt/RP+1a+tW/jn/Ft/bO+nX/OJ/jnfXv/gu/g/+I7+hd9J/+S7+xf9l18V9/Nv+K7+1d9D9/TJ/pevrfv4/v6fr6/H+AH+tf8IP+6H+zf8El+iB/qh/nh/k0/wr/lR/pRfnTM237MlUdkmOCT/UQ/yb/rJ/v3/BT/vp/qp/kUP93P8B/4mX6Wn+0/9HP8R36un+fn+wU+1X/sF/pFPs1/4hf7T326X3LlpbJf6Vf51X6NX+vX+fV+g9/oN/nNfovf6rf57X6H3+k/87v853633+P3+i/8Pv+l3++/8gf81/6g/8Zn+G/9If+dP+y/90f8D/6o/9Ef88f9CX/Sn/I/+dP+jD/rz/nz/md/wf/iL/L/WWOMMcYY+6dMvDoUv11z6XV+rz/IEX+1cW8AuH5b/oy/Xp95R7k+z6VxPxHfNgIAz/fs/NiVpVq1xMTEy9umSwgKzwO48jdBmWLgarwE2sCzkACtofQf1t9PdD1P/2D+6J0AOf4qJxauxlfn/woAE/9g/qeeGb2wXHg27r+Yfx5A0cJXc7LD1XgJtPn1/UprKPN36s/b8h/Un/3rZIBWf5WTE67GV+svBU/DC5Dwmy0ZY4wxxhhjjLFL+omKHa88f175F59/9Hwer67mZIOr8T96PmeMMcYYY4wxxti192LXbs89lZDQuuO/Pqjy38r6pweN4X9qZh784cB7gCtfUQDwb04IkDmQ/8mj2PIf2VfS5Uvnb1ctP+cD+N/Ryj9jcI1/MDHGGGOMMcb+dFdv+n/7dXWtCmKMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxrKg/8SvE7vWx8gYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4xda/8vAAD//xtvAG4=")
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0x4, &(0x7f0000000280)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x7b}]}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
rt_sigsuspend(0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='sched_switch\x00', r3}, 0x18)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)

21m18.682904675s ago: executing program 32 (id=1386):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000180)={[{@fmask={'fmask', 0x3d, 0x7}}, {@umask={'umask', 0x3d, 0x5}}, {@utf8}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'cp862'}}, {@discard}, {@errors_remount}, {@errors_continue}, {@namecase}, {@fmask={'fmask', 0x3d, 0x80}}]}, 0x1, 0x151a, &(0x7f0000002280)="$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")
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0x4, &(0x7f0000000280)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x7b}]}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
rt_sigsuspend(0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='sched_switch\x00', r3}, 0x18)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)

14.135597671s ago: executing program 1 (id=7145):
syz_mount_image$exfat(&(0x7f00000005c0), &(0x7f0000000240)='./file0\x00', 0x3000050, &(0x7f0000000600)=ANY=[], 0x2, 0x14fe, &(0x7f0000008900)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f0000000180)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x20780, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r2}, 0x10)
fstatfs(0xffffffffffffffff, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
socketpair(0x18, 0x0, 0x2, &(0x7f0000000000)={<r6=>0xffffffffffffffff})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e8500000007000000"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendmmsg(r6, 0x0, 0x0, 0x10)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
r7 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
ioctl$ASHMEM_SET_SIZE(r7, 0x40087703, 0xfffffffa)
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r7, 0x0)
ioctl$ASHMEM_SET_NAME(r7, 0x40087708, 0x0)
ioctl$ASHMEM_PURGE_ALL_CACHES(r7, 0x770a, 0x0)
r8 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000007c0)=@bpf_lsm={0x1d, 0x12, &(0x7f0000000680)=@raw=[@map_idx={0x18, 0x0, 0x5, 0x0, 0xa}, @map_idx={0x18, 0x5, 0x5, 0x0, 0x2}, @initr0={0x18, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x4}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x62}}, @exit, @map_val={0x18, 0x2, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10001}], &(0x7f0000000040)='GPL\x00', 0x99, 0x5a, &(0x7f00000003c0)=""/90, 0x41100, 0x4b, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000004c0)={0x0, 0x1}, 0x8, 0x10, &(0x7f0000000540)={0x2, 0x3, 0x35, 0x3}, 0x10, 0x0, 0x0, 0x6, &(0x7f0000000580)=[r0], &(0x7f0000000740)=[{0x0, 0x2, 0x0, 0x5}, {0x5, 0x2, 0x10, 0x4}, {0x5, 0x4, 0xb, 0x4}, {0x2, 0x3, 0x2, 0x6}, {0x3, 0x1, 0x9, 0x7}, {0x1, 0x5, 0x3, 0x78242ad4b394504}], 0x10, 0x2}, 0x94)
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r8, &(0x7f0000000600)={0xffffffffffffffff, r7, 0x7ff})

9.925647422s ago: executing program 1 (id=7153):
sched_setscheduler(0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d00)=ANY=[@ANYBLOB], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000080000000000000000000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x600000000000000, &(0x7f0000000580)=ANY=[], 0x50)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x2, 0x5505, &(0x7f0000002480)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)
ioctl$F2FS_IOC_SET_PIN_FILE(r2, 0x4004f50d, &(0x7f0000000180)=0xfffffff9)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2000003})

9.294947733s ago: executing program 1 (id=7158):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="18000000000000000000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r2 = syz_open_dev$evdev(&(0x7f0000000000), 0x2, 0x101000)
ioctl$EVIOCGKEYCODE(r2, 0x80084504, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r1, 0x58, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x4, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r7, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r6}, &(0x7f0000000040), &(0x7f0000000280)}, 0x20)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r8}, 0x18)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000a80)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/net/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd1l,'}, 0x30)
r9 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r9)
r10 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x80, 0x4d)
getdents(r10, &(0x7f0000000080)=""/255, 0xff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r0}, 0x10)
sendto$inet(0xffffffffffffffff, &(0x7f0000000680)="58307c162f30fa8874e370962117e5ca1293af8b2b3de69686f3212cc43d8d01a4d3437e8067baaa8819fa42c91bdf6675e35a5b8d2b6742560b8bae29c62ccd59937a091b48b48e3bb83cca46bab5b165e8105d2e13fed9fc394e2a3bb62f6f66a25d766179b8b6db5042377899ffb4b74f78a31d3d8feb151dd9b7df395be658e858e9fe9c08994961c099eda95e481cb484461886ea117f4cf3ff2d498c080cc87b28ee21be124bbe9aa0fb81aa330f10f7001c5a595b50fd46d55d8ec5d07b0a309cd90cf268", 0xc8, 0x0, &(0x7f0000000180)={0x2, 0x4e22, @private=0xa010101}, 0x10)

8.113463196s ago: executing program 1 (id=7163):
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000140)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0xd61, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x3, 0x4}, 0x50)
io_cancel(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x7, 0x4, 0x8, 0x1}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r4}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x40980, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r6, 0x400455c8, 0x4)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="58000000100001002dbd7000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="1843010000000000140003007866726d30000000000000000000000024001a8020000a8014000700fe80000000000000000000000000002c0500080002"], 0x58}, 0x1, 0x0, 0x0, 0x4000884}, 0x0)

5.862420029s ago: executing program 0 (id=7175):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
mkdir(&(0x7f0000000200)='./file0\x00', 0x50)
pipe2$9p(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x80000)
write$P9_RVERSION(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r4 = dup(r3)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

5.81464284s ago: executing program 0 (id=7176):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x20780, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10)
kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, 0xffffffffffffffff, &(0x7f0000000600)={0xffffffffffffffff, 0xffffffffffffffff, 0x7ff})

5.7759908s ago: executing program 0 (id=7178):
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000140)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0xd61, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x3, 0x4}, 0x50)
io_cancel(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x7, 0x4, 0x8, 0x1}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r4}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x40980, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r6, 0x400455c8, 0x4)
setsockopt$inet_mreqsrc(r0, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="58000000100001002dbd7000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="1843010000000000140003007866726d30000000000000000000000024001a8020000a8014000700fe80000000000000000000000000002c0500080002"], 0x58}, 0x1, 0x0, 0x0, 0x4000884}, 0x0)

5.033848035s ago: executing program 1 (id=7179):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0700000004000000080200000100000000000000", @ANYRES32, @ANYBLOB='\x00'/10, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/19], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000021000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000380)='sched_switch\x00', r3}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00'}, 0x18)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)

5.033055355s ago: executing program 2 (id=7182):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x44, 0x86}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001d00)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x600000000000000, &(0x7f0000000580)=ANY=[@ANYBLOB="0f00000004000000040000000200020000000000", @ANYRES32=0x1, @ANYBLOB="fdffffff00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="020000000400"/28], 0x50)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540))
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x2, 0x5505, &(0x7f0000002480)="$eJzs3M1rI2UYAPAn/djtfrgW8eBtBxahhU1o+rHoreoufmCXsurBk6ZJGrKbZEqTprUnDx7Fg/+JKHjy6N/gwbM38aB4E5TMTHXrBwhNm+3294PJM++bN888b1gWnpmSAC6s+eTXn0txI65ExHREXI/IzkvFkVnPwwsRcTMiph47SsX8nxOXIuJqRNwYJc9zloq3Pr89vLX201u/fPPd5ZlrX3z9/eR2DUzaixHR3cnP97t5TFt5fFjM14btLHZXh0XM3+g+KsZpHvebW1mG/drRuloWV1r5+nRnrz+K251afRRb7e1sfqeXX7A/bB3lyT7wsLabjRvNrSy2+2kWW4d5XQeH+f9th/1BnqdR5PsoSx+DwVHM55sHzXw/O4+yWO8Nivk8b9poHozisIjF5aKedhpZHVsn+aafbG+3e3sHybC522+nvWStUn2pUr1Tru6mjeaguVqudRt3VpOFVme0rDxo1rrrrTRtdZqVetpdTBZa9Xq5Wk0W7ja32rVeUq1WVipL5bXF4ux28vr995JOI1kYxVfbvb1Bu9NPttPdJP/EYrJcWXl5MblVTd7Z2Ew2H9y7t7H57gd337//ysabrxWL/lFWsrC8tLxcri6Vl6uLF2j/nxRFj3H/cCKlSRcAcP7o/4FJOL3+f/dBxOn3/6H/H4tz1f9e9P7/FPYPJ6L/BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4sH6Y/fKN7GQ+H18r5p8ppp4rxqWImIqI3//FdFw6lnO6yDP7H+tn/1bDt6XIMoyucbk4rkbEenH89uxpfwsAAADw9Prq45uf5d16/jI/6YI4S/lNm6nrH44p31xEzM7/OKZsU6OX58eULPv3PRMHY8qW3cCaG1Oy/JbbzLiy/S/Tx8LcY6GUh6kzLQcAADgTxzuBs+1CAAAAOEufTroAJqMUR48yj54FZ395/9cDwSvHRgAAAMA5VJp0AQAAAMCpy/p/v/8HAAAAT7f89/8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgD3bu5zZxIIoD8LPBC/tPi1Z731b2BmVsCXvcY0QBaYICciAtpAFqILeUEEGExyEQcYjksa1E3yc5k7HMjzcIDjMjDQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0KX7ar24vfp93TZnt28nz2gAAACAS7bVelH/M0v9r839782tn02/iIgyIi7N3Ufx6Sxz1ORUL8/fnD5fvarhLqJOOLzHpLm+RMSf5nr80fWnAAAAAB/XZrmap9l6+jMbuiD6lBZtym9/M+UVEVHNHjKllYe8X5nC6u/3OP5nSqsXsKaZwtKS2zhX2pvUP/fjqt30pClSU1582bHIbGMHAAB6NDpr+p2FAAAA0Kd/QxfAMIp43so8bgVOUtNs730+6wEAAADvUDF0AQAAAEDn6vl/T+f/7Z3/BwAAAMNI5/8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQpW21XmyWq3nbnN2+nTyjAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgCf25x0FQiAMwmDv+s5k7n9YadDU1KQKhI+/MRgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHjzu7/8n5gaZ5K518bS80iydmpsnRp758bRH8bXrwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuNiflxQIgSCIgjnjfyd9/8NKgp5BhAhoeFRRiwYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAvuh3v/yfmBpnkrnTxtLxSLJ21di6auw9aBw9GG//BgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuNi5n9c4qjgA4G9mdra2Kq5R9hARBQ96sdttbe1NPCjBg3+CENJtjd36o83BliLm4k1y7kX0KCIo8db/IecEcom3HPYQwbMyszPZyQ9w/TWzST4fePO+Owzzvm8WQr7zXgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEBp9PYkTrJDZxzHxbnNvYdLWb91qM88Xtuez1oWR3UmfTK8WP0QdZtLBAAAgLMjKev7EMJOur6Q9XEnr//T8pqs5v/26XFc1vOH6/6yL2v/rP3y8+7z+wN1xuNkN725PBxcOppK6/+b5Wx75i+vaOVPPn/3kuRfSPze6nOjNH+e0dcbG++08/BcHdkCAP/ExbIvgvL3oazvN5kYAGdGq1J4l/V/0mk2JwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIA6jFbDk2UchRDmW5M4s7X3cOm4/vHa9nzZrj16tBa+nNwzu0UaQri5PBxcqnU2s+3e/Qe3F4fDwd36g5dCCE2N/lYx/dsfTHFxCI08H8F/FMTFlz0r+ZyMoMEfSgAAnEpp0bK6fiddX8jORXMh/PHdwfr/1Uocpqz/dz+8tlkdq1r/92ub4ezrrdz5tHfv/oPXl+8s3hrcGnz8xuX+m/0r169evd7L35X0vDEBAADg32kXrVr/x3NH1/8vVOIwZf3/2Tf9L6pjJer/Y00W/ZrOBAAA4Gx79uXff4uOOR+12+HzxZWVu/3xcf/z5fGxgVT/tnNFq9b/yVzTWQEAAAB1GK1GB9b/b1TiMOX6/1Pfv/Bj9Z5JCOF8sf5/cemT4Y36pjPT6vhz4qbnCAAAQLPOF626/p/m+//j/S0PcQjhtVfGcfFvAKeq/5N3v/qhOlZ1//+V+qY4k+Lu+HnkfTeEVrfpjAAAADjNnihaVuz/mq4vfPTThffb9v8DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA1O3PAAAA//9WwT6Z")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)
ioctl$F2FS_IOC_SET_PIN_FILE(r2, 0x4004f50d, &(0x7f0000000180)=0xfffffff9)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2000003})

4.923555477s ago: executing program 5 (id=7186):
syz_mount_image$exfat(&(0x7f00000005c0), &(0x7f0000000240)='./file0\x00', 0x3000050, &(0x7f0000000600)=ANY=[], 0x2, 0x14fe, &(0x7f0000008900)="$eJzs3Au0ztXWMPA511p/NklPkvuaa/55kssiSXJJSCRJkiS5JSRJkoTEJrckJCH3JPeQ3GIn9/st9yQ5kiQJCUnWN3Q6n/e8nfftnO+c7/V9Z8/fGGvsNff/mfNZa889nv9ljL2/7Ti4av1qlesyM/xT8M9fUgEgBQD6AcA1ABABQKlspbIBDoNMGlP/uTcR/1oPTbvSKxBXkvQ/fZP+p2/S//RN+p++Sf/TN+l/+ib9T9+k/0KkZ1un575WRvod/3PP/0Ge//8/R87//0YOFxvz5fpi13f6B1Kk/+mb9D99k/6nb9L/9E36n75J///NRQCV/pvD0v/0TfovRHp2pZ8/y7iy40r//gkhhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGESB/OhcsMAPxlfqXXJYQQQgghhBBCiH+dkPFKr0AIIYQQQgghhBD/9yEo0GAgggyQEVIgE2SGqyALXA1Z4RpIwLWQDa6D7HA95ICckAtyQx7IC/nAAoEDhhjyQwFIwg1QEG6EQlAYikBR8FAMisNNUAJuhpJwC5SCW6E03AZloCyUg/JwO1SAO6AiVILKcCdUgbugKlSDu6E63AM14F6oCfdBLbgfasMDUAcehLrwENSDh6E+PAIN4FFoCI2gMTSBpv9H+S9CV3gJukF3SIUe0BNehl7QG/pAX+gHr0B/eBUGwGswEAbBYHgdhsAbMBTehGEwHEbAWzASRsFoGANjYRyMh7dhArwDE+FdmASTYQpMhWkwHWbAezATZsFseB/mwAcwF+bBfFgAC+FDWASLIQ0+giXwMSyFZbAcVsBKWAWrYQ2shXWwHjbARtgEm2ELbIVPYBtshx2wE3bBbtgDn8Je+Az2weewH774B/PP/qf8TggIqFChQYMZMAOmYApmxsyYBbNgVsyKCUxgNsyG2TE75sAcmAtzYR7Mg/kwHxISMjLmx/yYxCQWxIJYCAthESyCHj0Wx+JYAm/GklgSS2EpLI2lsQyWxbJYHstjBayAFbEiVsbKWAWrYFWsinfj3XgP1sAaWBNrYi2shbWxNtbBOlgX62I9rIf1sT42wAbYEBtiY2yMTbEpNsNm2BybY0tsia2wFbbG1tgG22BbbIvtsB22x/bYATtgR+yInbAzdsYX8UV8CV/C7lhF9cCe2BN7YS/sg32xL76C/fFVfBVfw4E4CAfj6/g6voFD8QwOw+E4AkdgBTUKR+MYZDUOx+N4nIATcCJOxEk4GSfjVJyG03EGzsCZOAtn4fs4Bz/AD3AezsMFuBAX4iJcjGmYhkvwLC7FZbgcV+BKXIUrcQ2uxTW4HjfgetyEm3ALbsFP8BPcjttxJ+7E3bgbP8VP8TP8DAfiftyPB/AAHsSDeAgP4WE8jEfwCB7Fo3gMj+FxPI4n8CSewpN4Gk/jGTyL5/AcnsfzeAGfz/N1vd2F1w0EdYlRRmVQGVSKSlGZVWaVRWVRWVVWlVAJlU1lU9lVdpVD5VC5VC6VR+VR+VQ+RYoUq1jlV/lVUiVVQVVQFVKFVBFVRHnlVXFVXJVQJVRJVVKVUreq0uo2VUaVVS18eVVeVVAtfUVVSVVWlVUVdZeqqqqpaqq6qq5qqBqqpqqpaqlaqrZ6QNVRPbAPPqQudaa+GoQN1GBsqBqpxqqJegMfU83UUGyuWqiW6gk1HIdha9XMt1FPq7ZqNLZTz6ox+JzqoMZhR/WC6qQ6qy7qRdVVNffdMvz2EaimYi/VW/VRfdVMvEtd6lhV9ZoaqAapwep1tQDfUEPVm2qYGq5GqLfUSDVKjVZj1Fg1To1Xb6sJ6h01Ub2rJqnJaoqaqqap6WqGek/NVLPUbPW+mqM+UHPVPDVfLVAL1YdqkVqs0tRHaon6WC1Vy9RytUKtVKvUarVGrVXr1Hq1QW1Um9RmtUVtVZ+obWq72qF2ql1qt9qjPlV71Wdqn/pc7VdfqAPqT+qg+lIdUl+pw+prdUR9o46qb9Ux9Z06rr5XJ9RJdUr9oE6rH9UZdVadUz+p8+pndUH9oi6qoECjVlproyOdQWfUKTqTzqyv0ln01TqrvkYn9LU6m75OZ9fX6xw6p86lc+s8Oq/Op60m7TTrWOfXBXRS36AL6ht1IV1YF9FFtdfFdHF9ky6hb9Yl9S26lL5Vl9a36TK6rC6ny+vbdQV9h66oK+nK+k5dRd+lq+pq+m5dXd+ja+h7dU19n66l79e19QO6jn5Q19UP6Xr6YV1fP6Ib6Ed1Q91IN9ZNdFP9mG6mH9fNdQvdUj+hW+kndWv9lG6jn9Zt9TO6nX5Wt9fP6Q76ed1Rv6A76c66i/5FX9RBd9PddaruoXvql3Uv3Vv30X11P/2K7q9f1QP0a3qgHqQH69f1EP2GHqrf1MP0cD1Cv6VH6lF6tB6jx+pxerx+W0/Q7+iJ+l09SU/WU/RUPU1P131+qzT778h/52/kD/j13bforfoTvU1v1zv0Tr1L79Z79B69V+/V+/Q+vV/v1wf0AX1QH9SH9CF9WB/WR/QRfVQf1cf0MX1cH9cn9En9k/5Bn9Y/6jP6rD6rf9Ln9Xl94befARg0ymhjTGQymIwmxWQymc1VJou52mQ115iEudZkM9eZ7OZ6k8PkNLlMbpPH5DX5jDVknGETm/ymgEmaG0xBc6MpZAqbIqao8aaYKW5u+qfz/2h9TU1T08w0M81Nc9PStDStTCvT2rQ2bUwb09a0Ne1MO9PetDcdTAfT0XQ0nUwn08V0MV1NV9PNdDOpJtX0NC+bXqa36WP6mn7mFdPf9DcDzAAz0Aw0g81gM8QMMUPNUDPMDDMjzAgz0ow0o81oM9aMNePNeDPBTDATzUQzyUwyU8wUM81MMzPMDDPTzDSzzWwzx8wxc81cM9/MNwvNQrPILDJpJs0sMUvMUrPMLDMrzAqzyqwya8was86sMxvMBrPJbDJLzVaz1Wwz28wOs8PsMrvMHrPH7DV7zT6zz+w3+80Bc8AcNAfNIXPIHDaHzRFzxBw1R80xc8wcN8fNCXPCnDKnzGlz2pwxZ8w5c86cN+fNBXPBXDQXL132RSpSkYlMlCHKEKVEKVHmKHOUJcoSZY2yRokoEWWLskXZo+ujHFHOKFeUO8oT5Y1SwUYUuYijOMofFYiS0Q1RwejGqFBUOCoSFY18VCwqHt0UlYhujkpGt0Sloluj0tFtUZmobFQuKh/dHlWI7ogqRpWiytGdUZXorqhqVC26O6oe3RPViO6Nakb3RbWi+6Pa0QNRnejBqG70UFQvejiqHz0SNYgejRpGjaLGUZOo6b+0fghncj7uu9nuNtX2sD3ty7aX7W372L62n33F9rev2gH2NTvQDrKD7et2iH3DDrVv2mF2uB1h37Ij7Sg72o6xY+04O96+bSfYd+xE+66dZCfbKXaqnWan2xn2PTvTzrKz7ft2jv3AzrXz7Hy7wC60H9pFdrFNsx/ZJfZju9Qus8vtCrvSrrKr7Rq71q6z6+0Gu9FuspvtFrvVfmK32e12h91pd9nddo/91O61n9l99nO7335hD9g/2YP2S3vIfmUP26/tEfuNPWq/tcfsd/a4/d6esCftKfuDPW1/tGfsWXvO/mTP25/tBfuLvWjDpYv7S6d3MmQoA2WgFEqhzJSZslAWykpZKUEJykbZKDtlpxyUg3JRLspDeSgf5aNLmJjyU35KUpIKUkEqRIWoCBUhT56KU3EqQSWoJJWkUlSKSlNpKkNlqByVo9vpdrqD7qBKVInupDvpLrqLqlE1qk7VqQbVoJpUk2pRLapNtakO1aG6VJfqUT2qT/WpATWghtSQGlNjakpNqRk1o+bUnFpSS2pFrag1taY21IbaUltqR+2oPbWnDtSBOlJH6kSdqAt1oa7UlbpRN0qlVOpJPakX9aI+1If6UT/qT/1pAA2ggTSQBtNgGkJDaCgNpWE0nEbQWzSSRtFoGkNjaRyNp/E0gSbQRJpIk2gSTaEpNI2m0QyaQTNpJs2m2TSH5tBcmkvzaT4tpIW0iBZRGqXRElpCS2kpLafltJJW0mpaTWtpLa2n9bSRNtJm2kxbaStto220g3bQLtpFe2gP7aW9tI/20X7aTwfoAB2kg3SIDtFhOkxH6AgdpaN0jI7RcTpOJ+gEnaJTdJpO0xk6Q+foHJ2nn+kC/UIXKVCKU5DZXeWyuKtdVneNS3GZ3KU4AoBLcS6X2+VxeV0+Z10Ol/OvYnLOFXKFXRFX1HlXzBV3N/0uLuPKunKuvLvdVXB3uIq/i6u7e1wNd6+r6e5z1dzdfxXXcve72u4RV8c96uq6Rq6ea+Lqu0dcA/eoa+gaucauiWvlnnSt3VOujXvatXXP/C5e5Ba7tW6dW+82uL3uM3fO/eSOum/defez6+a6u37uFdffveoGuNfcQDfod/EI95Yb6Ua50W6MG+vG/S6e4qa6aW66m+HeczPdrN/FC92Hbo5Lc3PdPDffLfg1vrSmNPeRW+I+dkvdMrfcrXAr3Sq32q3532td4Ta5zW6L2+M+ddvcdrfD7XS73O5f40v72Oc+d/vdF+6I+8YddF+6Q+6YO+y+/jW+tL9j7jt33H3vTriT7pT7wZ12P7oz7uyv+7+09x/cL+6iCw4YWbFmwxFn4Iycwpk4M1/FWfhqzsrXcIKv5Wx8HWfn6zkH5+RcnJvzcF7Ox5aJHTPHnJ8LcJJv4IJ8IxfiwlyEi7LnYlycb+ISfDOX5Fu4FN/Kpfk2LsNluRyX59u5At/BFbkSV+Y7uUoIXJWr8d1cne/hGnwv1+T7uBbfz7X5Aa7DD3Jdfojr8cNcnx/hBvwoN+RG3JibcFN+jJvx49ycW3BLfoJb8ZPcmp/iNvw0t+VnuB0/y+35Oe7Az3NHfoE7cWfuwi9yV36Ju3F3TuUe3JNf5l7cm/twX+7Hr3B/fpUH8Gs8kAfxYH6dh/AbPJTf5GE8nEfwWzySR/FoHsNjeRyP57d5Ar/DE/ldnsSTeQpP5Wk8nWfwezyTZ/Fsfp/n8Ac8l+fxfF7AC/lDXsSLOY0/4iX8MS/lZbycV/BKXsWreQ2v5XW8njfwRt7Em3kLb+VPeBtv5x28k3fxbt7Dn/Je/oz38ee8n7/gA/wnPshf8iH+ig/z13yEv+Gj/C0f4+/4OH/PJ/gkn+If+DT/yGf4LJ/jn/g8/8wX+Be+yIEhxljFOjZxFGeIM8YpcaY4c3xVnCW+Os4aXxMn4mvjbPF1cfb4+jhHnDPOFeeO88R543yxjSl2McdxnD8uECfjG+KC8Y1xobhwXCQuGvu4WFw8vikuEd8cl4xviUvFt8al49viMnHZ+JH7yse3xxXiO+KKcaW4cnxnXCW+K64aV4vvjqvH98Q14nvjmvF9ccn4/rh2/EBcJ34wrhs/FNeLH47rx4/EDeJH44Zxo7hx3CRuGj8WN4sfj5vHLeKW8RNxq/jJuHX8VNwmfjpuGz/zh8dT4x5xz/jl+OU4hHv1/OSC5MLkh8lFycXJtORHySXJj5NLk8uSy5MrkiuTq5Krk2uSa5PrkuuTG5Ibk5uSm5NbkiFUywgevfLaGx/5DD6jT/GZfGZ/lc/ir/ZZ/TU+4a/12fx1Pru/3ufwOX0un9vn8Xl9Pm89eefZxz6/L+CT/gZf0N/oC/nCvogv6r0v5ov7Jr6pb+qb+cd9c9/Ct/RP+Cf8k/5J/5R/yj/t2/pnfDv/rG/vn/Md/PP+ef+C7+Q7+y7+Rd/Vv+S7+e4+1af6nr6n7+V7+T6+j+/n+/n+vr8f4Af4gX6gH+wH+yF+iB/qh/phfpgf4Uf4kX6kH+1H+7F+rB/vx/sJfoKf6Cf6SX6Sn+Kn+Gl+mp/hZ/iZfqaf7Wf7OYXm+Ll+rp/v5/uFfqFf5Bf5NJ/ml/glfqlf6pf75X6lX+lX+9V+rV/r1/v1fqPf6Df7zX6r3+q3+W1+h9/hd/ldfo/f4/f6vX6f3+f3+/3+gD/gD/qD/pD/yh/2X/sj/ht/1H/rj/nv/HH/vT/hT/pT/gd/2v/oz/iz/pz/yZ/3P/sL/hd/0Qc/PvF2YkLincTExLuJSYnJiSmJqYlpiemJGYn3EjMTsxKzE+8n5iQ+SMxNzEvMTyxILEx8mFiUWJxIS3yUWJL4OLE0sSyxPLEisTKxKhFC3m1xyB8KhGS4IRQMN4ZCoXAoEooGH4qF4uGmUCLcHEqGW0KpcGsoHW4LZULZUC48GhqGRqFxaBKahsdCs/B4aB5ahJbhidAqPBlah6dCm/B0aBueCe3Cs6F9eC50CM+HjuGF0Cl0Dl3Ci6FreCl0C91DaugReoaXQ6/QO/QJfUO/8EroH14NA8JrYWAYFAaH18OQ8EYYGt4Mw8LwMCK8FUaGUWF0GBPGhnFhfHg7TAjvhInh3TApTA5TwtQwLUwPM8J7YWaYFWaH98Oc8EGYG+aF+WFBWBg+DIvC4pAWPgpLwsdhaVgWlocVYWVYFVaHNWFtWBfWhw1hY9gUNoctYWv4JGwL28OOsDPsCrvDnvBp2Bs+C/vC52F/+CIcCH8KB8OX4VD4KhwOX4cj4ZtwNHwbjoXvwvHwfTgRToZT4YdwOvwYzoSz4Vz4KZwPP4cL4ZdwUf5mTQghhBDi76L/4HiPv/G9DACgfpv3BICrt+c+/J9rbszx53lvladVAgCe7t7xob+MKlVSU1N/e+1SDVGBeQCQ+Ov6f4mXQUt4EtpACyjxN9fXW3U+z39QP3krQOb/kJMCl+PL9W/+L+o/9sSIRaXjc9n+m/rzAAoVuJyTCS7Hl+uX/C/q52z2B+vP9OV4gOb/IScLXI4v1y8Oj8Mz0OavXimEEEIIIYQQQvxZb1Wu/R/dP1+6P89jLudkhMvxH92fCyGEEEIIIYQQ4sp7rnOXpx5r06ZF+79vgr89F/jHsmQiE5n8fza50p9MQgghhBBCiH+1yxf9V3olQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCFE+vU/8e/ErvQehRBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCiCvtfwUAAP//luw5aQ==")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f0000000180)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x20780, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r2}, 0x10)
fstatfs(0xffffffffffffffff, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r4=>0xffffffffffffffff})
recvmmsg(r4, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
socketpair(0x18, 0x0, 0x2, &(0x7f0000000000)={<r5=>0xffffffffffffffff})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e8500000007000000"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendmmsg(r5, 0x0, 0x0, 0x10)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)

4.651426052s ago: executing program 2 (id=7187):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8c}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4000000}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = io_uring_setup(0x6001, &(0x7f0000000000)={0x0, 0xeec2, 0x800, 0x1, 0x10a})
ioctl$RNDZAPENTCNT(r3, 0x5204, &(0x7f0000000180)=0x7b)
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RAUTH(r4, &(0x7f0000000040)={0x14, 0x67, 0x1, {0x0, 0x3, 0x8}}, 0xffffff2f)
close_range(r3, r3, 0x0)
epoll_wait(0xffffffffffffffff, 0x0, 0xfffffffffffffe79, 0x8)
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x1, &(0x7f0000000040)=0x1, 0x4)
recvmmsg(0xffffffffffffffff, &(0x7f0000005f40)=[{{0x0, 0x0, 0x0}, 0x3}], 0x1, 0x40000040, 0x0)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x200000, &(0x7f0000000200), 0x3, 0x570, &(0x7f0000000680)="$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")
open(0x0, 0x4827e, 0x9)
getpid()

3.729433409s ago: executing program 5 (id=7188):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
mkdir(&(0x7f0000000200)='./file0\x00', 0x50)
pipe2$9p(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x80000)
write$P9_RVERSION(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r4 = dup(r3)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

3.475646634s ago: executing program 4 (id=7189):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000040000"], 0x48)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240))
add_key$fscrypt_v1(&(0x7f0000000200), &(0x7f0000000480)={'fscrypt:', @auto=[0x39, 0x34, 0x37, 0x62, 0x59, 0x0, 0x37, 0x0, 0x34, 0x64, 0x64, 0x0, 0x33, 0x36, 0x37, 0x63]}, &(0x7f00000004c0)={0x0, "3e82554dc8ccfbc2e85ec82d4ee9df60f6ae16b1690d12ab4ce1395f32e4fde178c945bd950b0477e801fc8a1be9b4ebbe9c2289a690aa00", 0x24}, 0x48, 0xfffffffffffffffe)
shutdown(0xffffffffffffffff, 0x1)
recvfrom$inet(r4, &(0x7f0000000c80)=""/223, 0xdf, 0x40010023, &(0x7f00000001c0)={0x2, 0x4e21, @multicast2}, 0x10)

3.473105394s ago: executing program 2 (id=7190):
bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x7, 0x4, 0x8, 0x1}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
userfaultfd(0x1)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$tipc(0x1e, 0x5, 0x0)
r3 = syz_io_uring_setup(0x4f0e, 0x0, &(0x7f0000000080)=<r4=>0x0, &(0x7f0000000040)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x40, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x17, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0xfffffd92, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
io_uring_enter(r3, 0x62dd, 0x0, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, &(0x7f0000000400)={0x0, 0x15, 0x8, 0x3, 0x0, 0xb1, &(0x7f0000000380)})
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0900000001000000650000000800000000000000", @ANYRESOCT=r2, @ANYBLOB="3eb1fd05184ea71efca0dfda3b3ab024a977061078af3f8de31ce66f0f848db432c2a2522ce5f61c68fb02de73ed2c3c7249cc9d8399c6d62d6c840d505d70993137cefba14f2573bb490e23e7c4cb6a9056d536129a4513e4bb7898f5e7f01aa114b7a51a586f55eee233fa78fa9c3e9c893b63fdd3c920d48725b7003ba953fd6590d553460384ecc11597644cf72225d659e7f19a54acb3913ba9ab84910ab62adfbb98cec00cc1d77b0e1c66806f7b0b2773124c5bb439e0966d534b2d1c3965f3b48d022540ce2c12b045a539822b8c136e70", @ANYRES32=r5, @ANYBLOB='\x00'/28], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
syz_usb_connect(0x3, 0x36, 0x0, 0x0)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000003c0)=0x2)

3.415227515s ago: executing program 5 (id=7191):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r0, 0xc004ae02, &(0x7f00000001c0))

3.412647745s ago: executing program 5 (id=7192):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffff05850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r0}, 0x10)
userfaultfd(0x1)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f00000000c0), 0x10)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYRES16=r1], 0x448}}, 0x0)
sendmmsg$inet(r1, &(0x7f0000001b00)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="050000007402b8f4191db62b", 0xc}, {&(0x7f0000000440)="9f336d70bf41f19e47e98b4015e3b0384d86a1ceb4e530554ebc8154bf392bcf9ce0b09f879bd7aaf9d086e3", 0x2c}], 0x2}}, {{0x0, 0x0, &(0x7f0000000100), 0x2}}], 0x40000000000003a, 0x0)

3.357362696s ago: executing program 5 (id=7193):
r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x45e, 0xf9, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x40}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f0000000680)={[{@nodioread_nolock}, {@noload}, {@acl}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x783, &(0x7f0000001000)="$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")
r1 = syz_open_dev$evdev(&(0x7f0000000240), 0x20000, 0x20080)
syz_mount_image$erofs(&(0x7f0000000000), &(0x7f0000000180)='./bus\x00', 0x1, &(0x7f0000000040)=ANY=[], 0xfd, 0x1fe, &(0x7f0000000580)="$eJzsmL2O00AQx/+7/kjuBEg0FDQgcRKHdOfYDqBrKI4XAOmOj3RExKCASZDjIomEIKKh4TF4BYpUKejoaKEAJCQKUiJKo/Vu7CVfioFAcfOTsv57drwzO/JOJIMgiCPL50/fP768une4A+CYtYWSsn81ch+u+X8oK/H+1ZvWiSfD6fWEL5NytGoOo30DsdJJkiT63Ja6HoJn+gY4Lih9CwyO0nfAcTOPj9pxeX0AhpqytTeUCAPnbjts3GuGgSsGTwy+GKp6fBPAeMDQAFBW+TFtvtPrP6yHYRClgucWK5nEiX71KS6W1c4EzPE+xxWtfiKL2y+eD8T9pDauVj8PHJ7SVTAcKL2HEhzHEa+ALIm2/9Nmvr6xcP+ZaPwAiu//mvXnxRLChhQnd5c57/yVWL8pbAD/MKg4lys5J5KnU1OD/1aoNQimWTaEEAc6s5waD9/OPvVlnYmdXe+WoXr2zNS7zdySndcCK9vqmbk+ef8ULfe81p9MmFn/qMSPHlc6vf5uUyR5P2j5fvWye9F1L/mVtDfLcUn/K6f9aVNb31rgazMb3XocR14XiCMvu/flqHXcg9ftb+kzPO1/HNvn5BriVUm3XZofg6mf/B8UattYmDxBEARBEARBEARBEARBEEQhzoBBfcVn8oMonsmZRMe/ntp+BgAA//+K8U+o")
ioctl$EVIOCGLED(r1, 0x80284504, &(0x7f0000000000)=""/56)
unlink(0x0)
socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001040)="$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")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000080)={'#! ', './file0', [], 0xa, "acbd6d7f2d4899b625b9e599152b3fff2e134e484ff2e7213c0d301b40286f033dbdb1920f9ba7c7b946749edde65bf3cb6b45"}, 0x3e)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
epoll_pwait(0xffffffffffffffff, 0x0, 0x0, 0xab7, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000600)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x7, {[@local=@item_012={0x1, 0x2, 0xa, '-'}, @global=@item_4={0x3, 0x1, 0x3, "e6fdf4f8"}]}}, 0x0}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x12, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x36}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x80)
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x45e, 0xf9, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x40}}}}}]}}]}}, 0x0) (async)
syz_usb_control_io(r0, 0x0, 0x0) (async)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f0000000680)={[{@nodioread_nolock}, {@noload}, {@acl}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x783, &(0x7f0000001000)="$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") (async)
syz_open_dev$evdev(&(0x7f0000000240), 0x20000, 0x20080) (async)
syz_mount_image$erofs(&(0x7f0000000000), &(0x7f0000000180)='./bus\x00', 0x1, &(0x7f0000000040)=ANY=[], 0xfd, 0x1fe, &(0x7f0000000580)="$eJzsmL2O00AQx/+7/kjuBEg0FDQgcRKHdOfYDqBrKI4XAOmOj3RExKCASZDjIomEIKKh4TF4BYpUKejoaKEAJCQKUiJKo/Vu7CVfioFAcfOTsv57drwzO/JOJIMgiCPL50/fP768une4A+CYtYWSsn81ch+u+X8oK/H+1ZvWiSfD6fWEL5NytGoOo30DsdJJkiT63Ja6HoJn+gY4Lih9CwyO0nfAcTOPj9pxeX0AhpqytTeUCAPnbjts3GuGgSsGTwy+GKp6fBPAeMDQAFBW+TFtvtPrP6yHYRClgucWK5nEiX71KS6W1c4EzPE+xxWtfiKL2y+eD8T9pDauVj8PHJ7SVTAcKL2HEhzHEa+ALIm2/9Nmvr6xcP+ZaPwAiu//mvXnxRLChhQnd5c57/yVWL8pbAD/MKg4lys5J5KnU1OD/1aoNQimWTaEEAc6s5waD9/OPvVlnYmdXe+WoXr2zNS7zdySndcCK9vqmbk+ef8ULfe81p9MmFn/qMSPHlc6vf5uUyR5P2j5fvWye9F1L/mVtDfLcUn/K6f9aVNb31rgazMb3XocR14XiCMvu/flqHXcg9ftb+kzPO1/HNvn5BriVUm3XZofg6mf/B8UattYmDxBEARBEARBEARBEARBEEQhzoBBfcVn8oMonsmZRMe/ntp+BgAA//+K8U+o") (async)
ioctl$EVIOCGLED(r1, 0x80284504, &(0x7f0000000000)=""/56) (async)
unlink(0x0) (async)
socket$packet(0x11, 0x2, 0x300) (async)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) (async)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001040)="$eJzs3M9rHFUcAPDvTJL+bhNrrba2Gq1i8UfSpFV78KCi4EFB0EM9xiSttdtGmgi2BI0i9SgF7+JR8C/w5kXUgwheFTxKoWgQmnqKzK9mu9mkSZpkbfbzgc2+t/Nm3/vOzNt9My+zAbSt3uxPErEjIn6LiO4ie3OB3uJpZnpy+Pr05HASs7Nv/JXk5a5NTw5XRav1tpeZw2lE+mkSzyfz6x2/cPHMUK02er7M90+cfa9//MLFp06fHTo1emr03ODx48eODjz7zODTqxJnFte1/R+OHdj3yluXXxs+cfntH7/JmrX3YLG8Po5but4koCZ6s63292yucdmjy2j7nWBnXTrpbGFDWJaOiMh2V1fe/7ujI+Z2Xne8/ElLGwesqey7afPCi6dmgQ0siVa3AGiN6os+O/+tHus09PhfuPpCxKYyPTM9OTxzI/7OSMvXu9aw/t6IODH175fZI5Z7HQIAYAXysc2TzcZ/aezNn4u5jl3lHEpPRNwVEbsj4u6I2BMR90TkZe+NiPuKlWe7l1h/b0N+/vgnvdK0zaskG/89Vzf2m6mLv3zq6ShzO/P4u5KTp2ujR8ptcji6Nmf5gUXq+O6lXz9faFn9+C97ZPVXY8GyAVc6Gy7QjQxNDK3WRrj6ccT+zmbxJzdmArIjYF9E7F/eW++qEqcf//rAQoVuHf8iVmGeafariMeK/T8VDfFXksXnJ/u3RG30SH91VMz30y+XXl+o/tuKfxVk+3/bzcd/Q4nuf5JivrYrarXR8+PLr+PS758teE6z0uN/U/JmPmf98zvFax8MTUycH4jYlLya56tzuvz1wbl1q3xVPov/8KHm/X93uU4W//0RkR3EByPigYh4sGz7QxHxcEQcWiT+H1585N1F4k8iiZbu/5Gmn383jv+epH6+fgWJjjPff7vQjPnS9v+xmMo/awv5598tLLWBt7n5AAAA4I6QRsSOSNK+It27I9K0r6/4H/49sS2tjY1PPHFy7P1zI8U9Aj3RlVZXurrrrocOJFPlOxb5wfJacbX8aHnd+IuOrXm+b3isNtLi2KHdbb+5/0fV/zN/drS6dcCac78WtK/G/p+2qB3A+lvK979zAdiYmvT/ra1oB7D+nP9D+2rW/z9qyBv/w8Y0v///0eQn64CNyPgf2pf+D+1L/4e2dDv39a88Ud0ssPL32bLkO/zbJVH94sVa1rU15l6JtOUht1Ei6zHrW+ncb6gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADcyf4LAAD///ss5ts=") (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0) (async)
write$binfmt_script(r2, &(0x7f0000000080)={'#! ', './file0', [], 0xa, "acbd6d7f2d4899b625b9e599152b3fff2e134e484ff2e7213c0d301b40286f033dbdb1920f9ba7c7b946749edde65bf3cb6b45"}, 0x3e) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10) (async)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0) (async)
epoll_pwait(0xffffffffffffffff, 0x0, 0x0, 0xab7, 0x0, 0x0) (async)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, 0x0) (async)
syz_usb_control_io$hid(r0, &(0x7f0000000600)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x7, {[@local=@item_012={0x1, 0x2, 0xa, '-'}, @global=@item_4={0x3, 0x1, 0x3, "e6fdf4f8"}]}}, 0x0}, 0x0) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x12, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x36}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x80) (async)

3.054858802s ago: executing program 0 (id=7194):
syz_mount_image$exfat(&(0x7f00000005c0), &(0x7f0000000240)='./file0\x00', 0x3000050, &(0x7f0000000600)=ANY=[], 0x2, 0x14fe, &(0x7f0000008900)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f0000000180)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x20780, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r2}, 0x10)
fstatfs(0xffffffffffffffff, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
socketpair(0x18, 0x0, 0x2, &(0x7f0000000000)={<r6=>0xffffffffffffffff})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e8500000007000000"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendmmsg(r6, 0x0, 0x0, 0x10)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
r7 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
ioctl$ASHMEM_SET_SIZE(r7, 0x40087703, 0xfffffffa)
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r7, 0x0)
ioctl$ASHMEM_SET_NAME(r7, 0x40087708, 0x0)
ioctl$ASHMEM_PURGE_ALL_CACHES(r7, 0x770a, 0x0)
r8 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000007c0)=@bpf_lsm={0x1d, 0x12, &(0x7f0000000680)=@raw=[@map_idx={0x18, 0x0, 0x5, 0x0, 0xa}, @map_idx={0x18, 0x5, 0x5, 0x0, 0x2}, @initr0={0x18, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x4}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x62}}, @exit, @map_val={0x18, 0x2, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10001}], &(0x7f0000000040)='GPL\x00', 0x99, 0x5a, &(0x7f00000003c0)=""/90, 0x41100, 0x4b, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000004c0)={0x0, 0x1}, 0x8, 0x10, &(0x7f0000000540)={0x2, 0x3, 0x35, 0x3}, 0x10, 0x0, 0x0, 0x6, &(0x7f0000000580)=[r0], &(0x7f0000000740)=[{0x0, 0x2, 0x0, 0x5}, {0x5, 0x2, 0x10, 0x4}, {0x5, 0x4, 0xb, 0x4}, {0x2, 0x3, 0x2, 0x6}, {0x3, 0x1, 0x9, 0x7}, {0x1, 0x5, 0x3, 0x78242ad4b394504}], 0x10, 0x2}, 0x94)
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r8, &(0x7f0000000600)={0xffffffffffffffff, r7, 0x7ff})

2.712176009s ago: executing program 2 (id=7195):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
mkdir(&(0x7f0000000200)='./file0\x00', 0x50)
pipe2$9p(&(0x7f0000000240)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x80000)
write$P9_RVERSION(r4, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00"], 0x15)
r5 = dup(r4)
write$FUSE_BMAP(r5, &(0x7f0000000100)={0x18}, 0x18)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])

2.559243032s ago: executing program 4 (id=7196):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f00000000c0), 0x10)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYRES16=r0], 0x448}}, 0x0)
sendmmsg$inet(r0, &(0x7f0000001b00)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="050000007402b8f4191db62b", 0xc}, {&(0x7f0000000440)="9f336d70bf41f19e47e98b4015e3b0384d86a1ceb4e5", 0x16}], 0x2}}, {{0x0, 0x0, &(0x7f0000000100)}}], 0x2, 0x0)

2.552665192s ago: executing program 2 (id=7197):
add_key$fscrypt_v1(&(0x7f0000000200), 0x0, &(0x7f00000004c0)={0x0, "3e82554dc8ccfbc2e85ec82d4ee9df60f6ae16b1690d12ab4ce1395f32e4fde178c945bd950b0477e801fc8a1be9b4ebbe9c2289a690aa00", 0x24}, 0x48, 0xfffffffffffffffe)

2.475405543s ago: executing program 1 (id=7198):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002ac0)={0x1a, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x20c9}, 0x94)
syz_emit_ethernet(0x22, &(0x7f0000001dc0)={@broadcast, @dev, @void, {@ipv4={0x86dd, @generic={{0x5, 0x4, 0x3, 0x4, 0x14, 0x68, 0x0, 0x7, 0x1d, 0x0, @multicast2, @multicast2}}}}}, 0x0)
r2 = syz_usb_connect$printer(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="1201000000030020f003176c400000000001090224725100000000090400001207010300090501020000000000090582020002"], 0x0)
syz_usb_disconnect(r2)
r3 = syz_usb_connect(0x0, 0x4a, &(0x7f0000000080)=ANY=[], 0x0)
syz_usb_control_io(r2, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(r3, 0x82, 0x4, &(0x7f0000000040)=ANY=[])
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
pipe(&(0x7f0000000000))

2.470738933s ago: executing program 2 (id=7199):
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000140)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0xd61, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x3, 0x4}, 0x50)
io_cancel(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x7, 0x4, 0x8, 0x1}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r4}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x40980, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r6, 0x400455c8, 0x4)
socket$netlink(0x10, 0x3, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="58000000100001002dbd7000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="1843010000000000140003007866726d30000000000000000000000024001a8020000a8014000700fe80000000000000000000000000002c0500080002"], 0x58}, 0x1, 0x0, 0x0, 0x4000884}, 0x0)

2.458424443s ago: executing program 4 (id=7200):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
ioctl$sock_inet6_udp_SIOCINQ(r0, 0x541b, &(0x7f0000000180))
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x482, 0x0)
write$binfmt_aout(r1, &(0x7f00000001c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x83, "00000000000000000000ffff00"})
syz_open_pts(r1, 0x0)
pselect6(0x40, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x800010100000}, 0x0, &(0x7f00000000c0)={0x1c, 0x40002, 0x0, 0x0, 0x0, 0x200000000, 0x6a9}, &(0x7f0000000280)={0x0, 0x3938700}, 0x0)

1.58989837s ago: executing program 0 (id=7201):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8c}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4000000}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = io_uring_setup(0x6001, &(0x7f0000000000)={0x0, 0xeec2, 0x800, 0x1, 0x10a})
ioctl$RNDZAPENTCNT(r3, 0x5204, &(0x7f0000000180)=0x7b)
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RAUTH(r4, &(0x7f0000000040)={0x14, 0x67, 0x1, {0x0, 0x3, 0x8}}, 0xffffff2f)
close_range(r3, r3, 0x0)
epoll_wait(0xffffffffffffffff, 0x0, 0xfffffffffffffe79, 0x8)
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x1, &(0x7f0000000040)=0x1, 0x4)
recvmmsg(0xffffffffffffffff, &(0x7f0000005f40)=[{{0x0, 0x0, 0x0}, 0x3}], 0x1, 0x40000040, 0x0)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x200000, &(0x7f0000000200), 0x3, 0x570, &(0x7f0000000680)="$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")
open(0x0, 0x4827e, 0x9)
getpid()

1.290512436s ago: executing program 4 (id=7202):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
mkdir(&(0x7f0000000200)='./file0\x00', 0x50)
pipe2$9p(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x80000)
write$P9_RVERSION(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r4 = dup(r3)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

1.101753499s ago: executing program 4 (id=7203):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffff05850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r0}, 0x10)
userfaultfd(0x1)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f00000000c0), 0x10)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYRES16=r1], 0x448}}, 0x0)
sendmmsg$inet(r1, &(0x7f0000001b00)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="050000007402b8f4191db62b", 0xc}, {&(0x7f0000000440)="9f336d70bf41f19e47e98b4015e3b0384d86a1ceb4e530554ebc8154bf392bcf9ce0b09f879bd7aaf9d086e3", 0x2c}], 0x2}}, {{0x0, 0x0, &(0x7f0000000100), 0x2}}], 0x40000000000003a, 0x0)

923.634722ms ago: executing program 4 (id=7204):
syz_mount_image$exfat(&(0x7f00000005c0), &(0x7f0000000240)='./file0\x00', 0x3000050, &(0x7f0000000600)=ANY=[], 0x2, 0x14fe, &(0x7f0000008900)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f0000000180)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x20780, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r2}, 0x18)
fstatfs(0xffffffffffffffff, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
socketpair(0x18, 0x0, 0x2, &(0x7f0000000000)={<r6=>0xffffffffffffffff})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e8500000007000000"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendmmsg(r6, 0x0, 0x0, 0x10)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)

590.766849ms ago: executing program 0 (id=7205):
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x60242, 0x0)
io_cancel(0x0, 0xfffffffffffffffe, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f00000013c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x18)
syz_emit_ethernet(0x0, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x2121)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0))
sched_setscheduler(r2, 0x6, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000001340)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
setsockopt$sock_int(r3, 0x1, 0x29, 0x0, 0x0)
readv(r3, &(0x7f0000000000)=[{&(0x7f0000000340)=""/4096, 0x1000}], 0x1)
write$binfmt_misc(r3, &(0x7f0000000300), 0x6)
sendmsg$DEVLINK_CMD_TRAP_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0xfffffffffffffe89, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYRES32=r3, @ANYRES16=0x0, @ANYBLOB="040029bd7000fe2586000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x24040810)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_CREATE(0xffffffffffffffff, 0xc02054a5, &(0x7f0000000040)={0x9, <r4=>r0, 'id1\x00'})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000015c0)={0x6, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000002000000000000000000000095", @ANYRESHEX], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x64, '\x00', 0x0, 0x25, r4, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)

0s ago: executing program 5 (id=7206):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x44, 0x86}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001d00)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r1, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r2}, 0x10)
bpf$MAP_CREATE(0x600000000000000, &(0x7f0000000580)=ANY=[@ANYBLOB="0f00000004000000040000000200020000000000", @ANYRES32=0x1, @ANYBLOB="fdffffff00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="020000000400"/28], 0x50)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="6e6f646973636172642c6261636b67726f756e645f67633d73796e632c6261636b67726f756e645f67633d6f6e2c6e6f757365725f78617474722c6e6f71756f74612c64697361626c655f726f6c6c5f666f72776172642c67635f6d657267652c6e6f757365725f78617474722c636865636b706f696e743d64697361626c652c757365725f78617474722c6673796e635f6d6f64653d7374726963742c646973636172645f756e69743d73656374696f6e2c636865636b706f696e743d64697361626c652c6e6f696e6c696e655f64656e7472792c00ec6da92d1c80a6c720380e3c2c55bf27596d2776ce408c4bb19b149757508e1c7e919c6c2047023baa412d14fa75c8cac6e5f103e13ea52708af0a7c5da8af4ecb6612"], 0x2, 0x5505, &(0x7f0000002480)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)
ioctl$F2FS_IOC_SET_PIN_FILE(r3, 0x4004f50d, &(0x7f0000000180)=0xfffffff9)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2000003})

kernel console output (not intermixed with test programs):

k+0x15/0x24
[ 1502.954655][T22465]  should_fail_ex+0x3d4/0x520
[ 1502.959321][T22465]  __should_failslab+0xac/0xf0
[ 1502.964081][T22465]  ? tipc_group_create+0xa1/0x650
[ 1502.969176][T22465]  should_failslab+0x9/0x20
[ 1502.973659][T22465]  __kmem_cache_alloc_node+0x3d/0x2c0
[ 1502.979015][T22465]  ? tipc_group_create+0xa1/0x650
[ 1502.984029][T22465]  kmalloc_trace+0x29/0xb0
[ 1502.988443][T22465]  tipc_group_create+0xa1/0x650
[ 1502.993303][T22465]  ? __local_bh_enable_ip+0x58/0x80
[ 1502.998484][T22465]  tipc_sk_join+0x234/0x6a0
[ 1503.003055][T22465]  ? __cfi_lock_sock_nested+0x10/0x10
[ 1503.008413][T22465]  ? __tipc_sendstream+0x11a0/0x11a0
[ 1503.013778][T22465]  ? __kasan_check_write+0x14/0x20
[ 1503.019066][T22465]  tipc_setsockopt+0x684/0x900
[ 1503.023838][T22465]  ? raw_irqentry_exit_cond_resched+0x29/0x30
[ 1503.030088][T22465]  ? __cfi_tipc_setsockopt+0x10/0x10
[ 1503.035481][T22465]  ? __sys_setsockopt+0x2db/0x4e0
[ 1503.040496][T22465]  ? __cfi_tipc_setsockopt+0x10/0x10
[ 1503.046031][T22465]  __sys_setsockopt+0x306/0x4e0
[ 1503.050865][T22465]  ? __cfi___sys_setsockopt+0x10/0x10
[ 1503.056393][T22465]  ? ksys_write+0x1eb/0x240
[ 1503.060887][T22465]  ? __kasan_check_write+0x14/0x20
[ 1503.065993][T22465]  ? fpregs_restore_userregs+0x128/0x260
[ 1503.071698][T22465]  __x64_sys_setsockopt+0xbf/0xd0
[ 1503.076724][T22465]  x64_sys_call+0x124/0x9a0
[ 1503.081255][T22465]  do_syscall_64+0x4c/0xa0
[ 1503.085676][T22465]  ? clear_bhb_loop+0x30/0x80
[ 1503.090511][T22465]  ? clear_bhb_loop+0x30/0x80
[ 1503.095699][T22465]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1503.101575][T22465] RIP: 0033:0x7fa781b8eba9
[ 1503.106147][T22465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1503.125995][T22465] RSP: 002b:00007fa78294a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1503.134392][T22465] RAX: ffffffffffffffda RBX: 00007fa781dd6180 RCX: 00007fa781b8eba9
[ 1503.142355][T22465] RDX: 0000000000000087 RSI: 000000000000010f RDI: 0000000000000008
[ 1503.150395][T22465] RBP: 00007fa78294a090 R08: 0000000000000010 R09: 0000000000000000
[ 1503.158355][T22465] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000001
[ 1503.166483][T22465] R13: 00007fa781dd6218 R14: 00007fa781dd6180 R15: 00007ffcb3d3c308
[ 1503.174441][T22465]  </TASK>
[ 1503.448431][T22469] 9pnet_fd: Insufficient options for proto=fd
[ 1503.538677][T22473] 9pnet_fd: Insufficient options for proto=fd
[ 1503.713760][   T28] audit: type=1400 audit(1757608229.578:539): avc:  denied  { map } for  pid=22476 comm="syz.4.6462" path="/dev/uinput" dev="devtmpfs" ino=262 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[ 1504.878924][T22497] loop5: detected capacity change from 0 to 256
[ 1504.923732][T22497] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1504.968350][T22497] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[ 1506.202004][T22497] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1506.454562][T22500] loop2: detected capacity change from 0 to 40427
[ 1506.464563][T22500] F2FS-fs (loop2): invalid crc value
[ 1506.484839][T22500] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1506.601307][T22500] F2FS-fs (loop2): Start checkpoint disabled!
[ 1506.623796][T22500] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1506.971067][T22500] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1507.019335][ T2457] kworker/u4:10: attempt to access beyond end of device
[ 1507.019335][ T2457] loop2: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 1507.490995][T22525] 9pnet_fd: Insufficient options for proto=fd
[ 1507.541392][T22531] 9pnet_fd: Insufficient options for proto=fd
[ 1507.551102][T22535] FAULT_INJECTION: forcing a failure.
[ 1507.551102][T22535] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1507.564421][T22535] CPU: 1 PID: 22535 Comm: syz.1.6478 Tainted: G        W          syzkaller #0
[ 1507.573532][T22535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1507.583681][T22535] Call Trace:
[ 1507.586993][T22535]  <TASK>
[ 1507.590000][T22535]  __dump_stack+0x21/0x24
[ 1507.594404][T22535]  dump_stack_lvl+0xee/0x150
[ 1507.598981][T22535]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1507.604011][T22535]  dump_stack+0x15/0x24
[ 1507.608242][T22535]  should_fail_ex+0x3d4/0x520
[ 1507.612913][T22535]  should_fail+0xb/0x10
[ 1507.617049][T22535]  should_fail_usercopy+0x1a/0x20
[ 1507.622075][T22535]  _copy_to_user+0x1e/0x90
[ 1507.626473][T22535]  simple_read_from_buffer+0xe9/0x160
[ 1507.631830][T22535]  proc_fail_nth_read+0x19a/0x210
[ 1507.636837][T22535]  ? __cfi_proc_fail_nth_read+0x10/0x10
[ 1507.642398][T22535]  ? security_file_permission+0x94/0xb0
[ 1507.647935][T22535]  ? __cfi_proc_fail_nth_read+0x10/0x10
[ 1507.653476][T22535]  vfs_read+0x26e/0x8c0
[ 1507.657621][T22535]  ? __cfi_vfs_read+0x10/0x10
[ 1507.662288][T22535]  ? __kasan_check_write+0x14/0x20
[ 1507.667394][T22535]  ? mutex_lock+0x8d/0x1a0
[ 1507.671820][T22535]  ? __cfi_mutex_lock+0x10/0x10
[ 1507.676655][T22535]  ? __fdget_pos+0x2cd/0x380
[ 1507.681247][T22535]  ? ksys_read+0x71/0x240
[ 1507.685647][T22535]  ksys_read+0x140/0x240
[ 1507.689962][T22535]  ? __cfi_ksys_read+0x10/0x10
[ 1507.694726][T22535]  ? __bpf_trace_sys_enter+0x62/0x70
[ 1507.700081][T22535]  __x64_sys_read+0x7b/0x90
[ 1507.704581][T22535]  x64_sys_call+0x2f/0x9a0
[ 1507.708984][T22535]  do_syscall_64+0x4c/0xa0
[ 1507.713390][T22535]  ? clear_bhb_loop+0x30/0x80
[ 1507.718052][T22535]  ? clear_bhb_loop+0x30/0x80
[ 1507.722807][T22535]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1507.728713][T22535] RIP: 0033:0x7fa781b8d5bc
[ 1507.733113][T22535] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1507.753047][T22535] RSP: 002b:00007fa78298c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1507.761454][T22535] RAX: ffffffffffffffda RBX: 00007fa781dd5fa0 RCX: 00007fa781b8d5bc
[ 1507.769418][T22535] RDX: 000000000000000f RSI: 00007fa78298c0a0 RDI: 0000000000000006
[ 1507.777399][T22535] RBP: 00007fa78298c090 R08: 0000000000000000 R09: 0000000000000000
[ 1507.785355][T22535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1507.793483][T22535] R13: 00007fa781dd6038 R14: 00007fa781dd5fa0 R15: 00007ffcb3d3c308
[ 1507.801448][T22535]  </TASK>
[ 1507.834152][T22533] fuse: Unknown parameter 'group^id'
[ 1507.910522][   T28] audit: type=1400 audit(1757608233.788:540): avc:  denied  { listen } for  pid=22532 comm="syz.4.6479" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1507.951662][   T28] audit: type=1400 audit(1757608233.788:541): avc:  denied  { accept } for  pid=22532 comm="syz.4.6479" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1508.079106][T22540] loop5: detected capacity change from 0 to 512
[ 1508.224064][T22540] EXT4-fs error (device loop5): ext4_ext_check_inode:520: inode #3: comm syz.5.6481: pblk 24 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[ 1508.282953][T22537] loop2: detected capacity change from 0 to 40427
[ 1508.301486][T22537] F2FS-fs (loop2): invalid crc value
[ 1508.312521][T22540] EXT4-fs error (device loop5): ext4_quota_enable:7012: comm syz.5.6481: Bad quota inode: 3, type: 0
[ 1508.323880][T22540] EXT4-fs warning (device loop5): ext4_enable_quotas:7053: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[ 1508.339628][T22537] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1508.373335][T22537] F2FS-fs (loop2): Start checkpoint disabled!
[ 1508.381241][T22540] EXT4-fs (loop5): mount failed
[ 1508.406588][T22537] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1508.432815][   T28] audit: type=1400 audit(1757608234.308:542): avc:  denied  { ioctl } for  pid=22551 comm="syz.0.6483" path="socket:[87680]" dev="sockfs" ino=87680 ioctlcmd=0xf50d scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[ 1508.493970][T22537] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1508.631624][ T2457] kworker/u4:10: attempt to access beyond end of device
[ 1508.631624][ T2457] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1508.647103][T22568] 9pnet_fd: Insufficient options for proto=fd
[ 1509.021414][T22577] 9pnet_fd: Insufficient options for proto=fd
[ 1509.148587][T22570] loop5: detected capacity change from 0 to 40427
[ 1509.177132][T22570] F2FS-fs (loop5): invalid crc value
[ 1509.188732][T22570] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1509.378696][T22570] F2FS-fs (loop5): Start checkpoint disabled!
[ 1509.386245][T22570] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[ 1509.446891][   T28] audit: type=1400 audit(1757608235.328:543): avc:  denied  { lock } for  pid=22584 comm="syz.4.6496" path="socket:[88111]" dev="sockfs" ino=88111 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1509.510193][T22570] F2FS-fs (loop5): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1509.557715][T13555] kworker/u4:18: attempt to access beyond end of device
[ 1509.557715][T13555] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1510.110383][T22600] 9pnet_fd: Insufficient options for proto=fd
[ 1510.263201][T22603] syz.1.6504[22603] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1510.263276][T22603] syz.1.6504[22603] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1510.344911][T22598] loop2: detected capacity change from 0 to 40427
[ 1510.382775][   T28] audit: type=1400 audit(1757608236.258:544): avc:  denied  { create } for  pid=22609 comm="syz.1.6506" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 1510.418934][T22598] F2FS-fs (loop2): invalid crc value
[ 1510.435565][T22598] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1510.511841][T22617] netlink: 'syz.1.6506': attribute type 3 has an invalid length.
[ 1510.520115][T22617] netlink: 'syz.1.6506': attribute type 3 has an invalid length.
[ 1510.527957][T22617] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6506'.
[ 1511.014910][   T28] audit: type=1400 audit(1757608236.428:545): avc:  denied  { bind } for  pid=22609 comm="syz.1.6506" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 1511.109602][T22598] F2FS-fs (loop2): Start checkpoint disabled!
[ 1511.131095][T22598] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1511.134229][T22626] fuse: Unknown parameter 'group^id'
[ 1511.165348][T22598] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1511.219351][ T2457] kworker/u4:10: attempt to access beyond end of device
[ 1511.219351][ T2457] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1511.248793][T22637] 9pnet_fd: Insufficient options for proto=fd
[ 1512.504704][T22656] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6520'.
[ 1512.545092][T22658] xt_bpf: check failed: parse error
[ 1512.808164][T22676] 9pnet_fd: Insufficient options for proto=fd
[ 1512.814939][T22674] loop5: detected capacity change from 0 to 256
[ 1513.054865][T22682] xt_TCPMSS: Only works on TCP SYN packets
[ 1513.263674][T22679] loop2: detected capacity change from 0 to 40427
[ 1513.325265][T22679] F2FS-fs (loop2): invalid crc value
[ 1513.407590][T22679] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1513.553701][T22679] F2FS-fs (loop2): Start checkpoint disabled!
[ 1513.589169][T22679] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1513.947154][T22679] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1514.154017][T22674] FAT-fs (loop5): Directory bread(block 64) failed
[ 1514.173746][T22674] FAT-fs (loop5): Directory bread(block 65) failed
[ 1514.222556][T22674] FAT-fs (loop5): Directory bread(block 66) failed
[ 1514.229224][T22674] FAT-fs (loop5): Directory bread(block 67) failed
[ 1514.235832][T22674] FAT-fs (loop5): Directory bread(block 68) failed
[ 1514.242421][T22674] FAT-fs (loop5): Directory bread(block 69) failed
[ 1514.249022][T22674] FAT-fs (loop5): Directory bread(block 70) failed
[ 1514.256432][T22674] FAT-fs (loop5): Directory bread(block 71) failed
[ 1514.262995][T22674] FAT-fs (loop5): Directory bread(block 72) failed
[ 1514.269864][T22674] FAT-fs (loop5): Directory bread(block 73) failed
[ 1514.463780][   T28] audit: type=1400 audit(1757608240.198:546): avc:  denied  { mount } for  pid=22673 comm="syz.5.6524" name="/" dev="loop5" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[ 1514.510131][T22674] FAULT_INJECTION: forcing a failure.
[ 1514.510131][T22674] name failslab, interval 1, probability 0, space 0, times 0
[ 1514.523705][T22674] CPU: 0 PID: 22674 Comm: syz.5.6524 Tainted: G        W          syzkaller #0
[ 1514.532794][T22674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1514.542862][T22674] Call Trace:
[ 1514.546153][T22674]  <TASK>
[ 1514.549094][T22674]  __dump_stack+0x21/0x24
[ 1514.553514][T22674]  dump_stack_lvl+0xee/0x150
[ 1514.558110][T22674]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1514.563151][T22674]  ? avc_has_perm_noaudit+0x2f4/0x460
[ 1514.568545][T22674]  ? slab_post_alloc_hook+0x4f/0x2d0
[ 1514.573837][T22674]  dump_stack+0x15/0x24
[ 1514.577990][T22674]  should_fail_ex+0x3d4/0x520
[ 1514.582673][T22674]  __should_failslab+0xac/0xf0
[ 1514.587446][T22674]  should_failslab+0x9/0x20
[ 1514.591949][T22674]  slab_pre_alloc_hook+0x30/0x1e0
[ 1514.597153][T22674]  kmem_cache_alloc_lru+0x49/0x280
[ 1514.602269][T22674]  ? __d_alloc+0x34/0x6c0
[ 1514.606609][T22674]  __d_alloc+0x34/0x6c0
[ 1514.610781][T22674]  d_alloc_parallel+0xd6/0x1240
[ 1514.615645][T22674]  ? __kasan_check_write+0x14/0x20
[ 1514.620756][T22674]  ? lockref_get_not_dead+0x150/0x250
[ 1514.626131][T22674]  ? __cfi_d_alloc_parallel+0x10/0x10
[ 1514.631509][T22674]  ? clear_nonspinnable+0x60/0x60
[ 1514.636540][T22674]  ? __mnt_want_write+0x1e6/0x260
[ 1514.641568][T22674]  path_openat+0x954/0x2f50
[ 1514.646072][T22674]  ? getname_flags+0xb9/0x500
[ 1514.650850][T22674]  ? do_filp_open+0x3c0/0x3c0
[ 1514.655536][T22674]  do_filp_open+0x1c1/0x3c0
[ 1514.660036][T22674]  ? __cfi_do_filp_open+0x10/0x10
[ 1514.665066][T22674]  ? alloc_fd+0x4e6/0x590
[ 1514.669404][T22674]  do_sys_openat2+0x185/0x7e0
[ 1514.674098][T22674]  ? __kasan_check_write+0x14/0x20
[ 1514.679217][T22674]  ? do_sys_open+0xe0/0xe0
[ 1514.683638][T22674]  ? ksys_write+0x1eb/0x240
[ 1514.688144][T22674]  ? __cfi_ksys_write+0x10/0x10
[ 1514.693001][T22674]  __x64_sys_openat+0x136/0x160
[ 1514.697854][T22674]  x64_sys_call+0x783/0x9a0
[ 1514.702359][T22674]  do_syscall_64+0x4c/0xa0
[ 1514.706775][T22674]  ? clear_bhb_loop+0x30/0x80
[ 1514.711472][T22674]  ? clear_bhb_loop+0x30/0x80
[ 1514.716154][T22674]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1514.722046][T22674] RIP: 0033:0x7f583a78eba9
[ 1514.726458][T22674] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1514.746069][T22674] RSP: 002b:00007f583b540038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1514.754488][T22674] RAX: ffffffffffffffda RBX: 00007f583a9d5fa0 RCX: 00007f583a78eba9
[ 1514.762469][T22674] RDX: 0000000000141042 RSI: 0000200000000040 RDI: ffffffffffffff9c
[ 1514.770621][T22674] RBP: 00007f583b540090 R08: 0000000000000000 R09: 0000000000000000
[ 1514.778638][T22674] R10: 000000000000017c R11: 0000000000000246 R12: 0000000000000001
[ 1514.786704][T22674] R13: 00007f583a9d6038 R14: 00007f583a9d5fa0 R15: 00007ffc9a604798
[ 1514.794789][T22674]  </TASK>
[ 1514.823757][   T28] audit: type=1400 audit(1757608240.678:547): avc:  denied  { unmount } for  pid=15601 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[ 1514.855961][T13555] kworker/u4:18: attempt to access beyond end of device
[ 1514.855961][T13555] loop2: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 1515.270487][T22705] loop2: detected capacity change from 0 to 256
[ 1517.729318][T22705] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1517.832046][T22705] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[ 1517.844927][T22705] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1520.027096][T22737] loop2: detected capacity change from 0 to 40427
[ 1520.181701][T22737] F2FS-fs (loop2): invalid crc value
[ 1520.511318][T22737] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1520.717599][T22737] F2FS-fs (loop2): Start checkpoint disabled!
[ 1521.083873][T22737] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1521.099720][   T28] audit: type=1400 audit(1757608246.978:548): avc:  denied  { create } for  pid=22755 comm="syz.1.6546" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[ 1521.173720][T22737] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1521.190383][   T28] audit: type=1400 audit(1757608247.078:549): avc:  denied  { map } for  pid=22755 comm="syz.1.6546" path="socket:[89106]" dev="sockfs" ino=89106 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[ 1521.217588][T13555] kworker/u4:18: attempt to access beyond end of device
[ 1521.217588][T13555] loop2: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 1521.312781][T22760] 9pnet_fd: Insufficient options for proto=fd
[ 1522.457262][T22771] loop2: detected capacity change from 0 to 1024
[ 1523.106903][T22771] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1524.204225][T21560] EXT4-fs (loop2): unmounting filesystem.
[ 1524.258504][T22787] loop2: detected capacity change from 0 to 256
[ 1524.304523][T22787] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1524.339441][T22787] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[ 1524.352185][T22794] 9pnet_fd: Insufficient options for proto=fd
[ 1524.452225][T22796] loop5: detected capacity change from 0 to 512
[ 1524.455184][T22787] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1524.459179][T22796] EXT4-fs: Invalid want_extra_isize 7
[ 1527.378538][T22813] loop5: detected capacity change from 0 to 512
[ 1527.417127][T22813] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[ 1527.469235][T22813] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802e01c, mo2=0102]
[ 1527.519790][T22813] EXT4-fs (loop5): orphan cleanup on readonly fs
[ 1527.528913][T22813] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.6557: bg 0: block 361: padding at end of block bitmap is not set
[ 1527.550678][T22813] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 1527.626604][T22813] EXT4-fs error (device loop5): ext4_clear_blocks:883: inode #11: comm syz.5.6557: attempt to clear invalid blocks 33619980 len 1
[ 1527.704562][T22813] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #11: comm syz.5.6557: invalid indirect mapped block 1811939328 (level 0)
[ 1528.010499][T22813] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #11: comm syz.5.6557: invalid indirect mapped block 2185560079 (level 1)
[ 1528.034457][T22813] EXT4-fs (loop5): 1 truncate cleaned up
[ 1528.180708][T22828] loop2: detected capacity change from 0 to 1024
[ 1528.307689][T22828] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1528.678157][T22835] 9pnet: Could not find request transport: fd0x0000000000000008
[ 1528.686205][T22813] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[ 1529.064673][T21560] EXT4-fs (loop2): unmounting filesystem.
[ 1529.105899][T15601] EXT4-fs (loop5): unmounting filesystem.
[ 1529.709896][T22850] loop5: detected capacity change from 0 to 256
[ 1529.727008][T22850] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1529.784512][T22850] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[ 1529.805004][   T28] audit: type=1400 audit(1757608255.688:550): avc:  denied  { setcurrent } for  pid=22846 comm="syz.1.6571" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 1529.843685][   T28] audit: type=1401 audit(1757608255.708:551): op=security_bounded_transition seresult=denied oldcontext=root:sysadm_r:sysadm_t newcontext=system_u:object_r:hugetlbfs_t
[ 1529.872901][T22856] syz.4.6573[22856] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1529.872972][T22856] syz.4.6573[22856] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1529.891465][T22856] FAULT_INJECTION: forcing a failure.
[ 1529.891465][T22856] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1529.927733][T22850] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1529.955424][T22856] CPU: 1 PID: 22856 Comm: syz.4.6573 Tainted: G        W          syzkaller #0
[ 1529.964434][T22856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1529.974509][T22856] Call Trace:
[ 1529.977805][T22856]  <TASK>
[ 1529.980745][T22856]  __dump_stack+0x21/0x24
[ 1529.985103][T22856]  dump_stack_lvl+0xee/0x150
[ 1529.989700][T22856]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1529.994922][T22856]  ? save_stack+0x117/0x1e0
[ 1529.999470][T22856]  ? __reset_page_owner+0x190/0x190
[ 1530.004693][T22856]  dump_stack+0x15/0x24
[ 1530.008936][T22856]  should_fail_ex+0x3d4/0x520
[ 1530.013623][T22856]  should_fail_alloc_page+0x61/0x90
[ 1530.018918][T22856]  prepare_alloc_pages+0x148/0x5f0
[ 1530.024136][T22856]  ? __alloc_pages_bulk+0x9c0/0x9c0
[ 1530.029346][T22856]  ? _raw_spin_trylock+0xb1/0x140
[ 1530.034535][T22856]  __alloc_pages+0x124/0x450
[ 1530.039217][T22856]  ? __cfi___alloc_pages+0x10/0x10
[ 1530.044332][T22856]  ? __cfi_console_unlock+0x10/0x10
[ 1530.049535][T22856]  ? vcs_scr_updated+0x89/0xc0
[ 1530.054739][T22856]  ? __cfi_vcs_scr_updated+0x10/0x10
[ 1530.060044][T22856]  ? __free_pages+0x67/0x100
[ 1530.064667][T22856]  __get_free_pages+0xe/0x30
[ 1530.069263][T22856]  vcs_write+0xf0/0x1220
[ 1530.073594][T22856]  ? __stack_depot_save+0x36/0x480
[ 1530.078889][T22856]  ? iov_iter_iovec_advance+0x185/0x230
[ 1530.084445][T22856]  ? __cfi_vcs_write+0x10/0x10
[ 1530.089300][T22856]  ? iov_iter_advance+0x121/0x1b0
[ 1530.094336][T22856]  do_iter_write+0x4a8/0xb10
[ 1530.099010][T22856]  ? _copy_from_user+0x8f/0xc0
[ 1530.103782][T22856]  ? vfs_iter_write+0xa0/0xa0
[ 1530.108463][T22856]  ? import_iovec+0x7c/0xb0
[ 1530.113076][T22856]  vfs_writev+0x30b/0x590
[ 1530.117416][T22856]  ? do_writev+0x2b0/0x2b0
[ 1530.121841][T22856]  ? vfs_write+0x9d6/0xca0
[ 1530.126360][T22856]  ? __fdget_pos+0x1f2/0x380
[ 1530.130950][T22856]  ? do_writev+0x76/0x2b0
[ 1530.135364][T22856]  do_writev+0x14a/0x2b0
[ 1530.139608][T22856]  ? do_readv+0x3e0/0x3e0
[ 1530.144029][T22856]  ? debug_smp_processor_id+0x17/0x20
[ 1530.149492][T22856]  __x64_sys_writev+0x7d/0x90
[ 1530.154180][T22856]  x64_sys_call+0xad/0x9a0
[ 1530.158610][T22856]  do_syscall_64+0x4c/0xa0
[ 1530.163116][T22856]  ? clear_bhb_loop+0x30/0x80
[ 1530.167800][T22856]  ? clear_bhb_loop+0x30/0x80
[ 1530.172664][T22856]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1530.178589][T22856] RIP: 0033:0x7f9fc8d8eba9
[ 1530.183091][T22856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1530.202714][T22856] RSP: 002b:00007f9fc9b31038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 1530.211226][T22856] RAX: ffffffffffffffda RBX: 00007f9fc8fd6090 RCX: 00007f9fc8d8eba9
[ 1530.219208][T22856] RDX: 0000000000000002 RSI: 0000200000000580 RDI: 0000000000000007
[ 1530.227249][T22856] RBP: 00007f9fc9b31090 R08: 0000000000000000 R09: 0000000000000000
[ 1530.235236][T22856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1530.243399][T22856] R13: 00007f9fc8fd6128 R14: 00007f9fc8fd6090 R15: 00007ffde16ff238
[ 1530.251530][T22856]  </TASK>
[ 1530.315657][T22860] 9pnet_fd: Insufficient options for proto=fd
[ 1531.198378][T22867] loop2: detected capacity change from 0 to 40427
[ 1531.260795][T22867] F2FS-fs (loop2): invalid crc value
[ 1531.461583][T22867] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1531.643332][T22867] F2FS-fs (loop2): Start checkpoint disabled!
[ 1531.780745][T22867] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1532.116031][T22867] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1532.153791][T22880] 9pnet: Could not find request transport: fd0x0000000000000007
[ 1532.249093][ T2373] kworker/u4:9: attempt to access beyond end of device
[ 1532.249093][ T2373] loop2: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 1532.505849][T22896] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1533.466750][T22921] loop5: detected capacity change from 0 to 256
[ 1533.498089][T22921] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1533.534006][T22921] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[ 1533.644597][T22921] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1533.663381][T22930] 9pnet_fd: Insufficient options for proto=fd
[ 1534.749066][T22953] xt_TCPMSS: Only works on TCP SYN packets
[ 1535.963681][T22717] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[ 1536.136193][T22956] loop5: detected capacity change from 0 to 40427
[ 1536.183899][T22956] F2FS-fs (loop5): invalid crc value
[ 1536.303664][T22717] usb 3-1: Using ep0 maxpacket: 8
[ 1536.372457][T22956] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1536.406779][T22717] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 249, changing to 7
[ 1536.410967][T22956] F2FS-fs (loop5): Start checkpoint disabled!
[ 1536.768346][T22956] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[ 1537.796501][T22717] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1537.820091][T22717] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1538.377640][T22717] usb 3-1: Product: syz
[ 1540.076939][T23006] loop2: detected capacity change from 0 to 40427
[ 1540.089005][T23006] F2FS-fs (loop2): invalid crc value
[ 1540.114425][T23006] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1540.147732][T23006] F2FS-fs (loop2): Start checkpoint disabled!
[ 1540.159906][T22717] usb 3-1: Manufacturer: syz
[ 1540.164660][T23006] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1540.165995][T22717] usb 3-1: SerialNumber: syz
[ 1540.181066][T22717] usb 3-1: can't set config #1, error -71
[ 1540.190037][T22717] usb 3-1: USB disconnect, device number 26
[ 1540.274338][T23006] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1540.305134][ T2457] kworker/u4:10: attempt to access beyond end of device
[ 1540.305134][ T2457] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1540.740208][T23017] loop5: detected capacity change from 0 to 512
[ 1540.761385][T23017] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1540.880731][T23019] loop2: detected capacity change from 0 to 40427
[ 1540.893751][T23019] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1540.901523][T23019] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1540.935192][T23017] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1540.968828][T23019] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1541.041400][T23019] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1541.056015][T23017] ext4 filesystem being mounted at /281/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1541.063688][T23019] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1541.146692][T23019] syz.2.6617: attempt to access beyond end of device
[ 1541.146692][T23019] loop2: rw=2049, sector=45096, nr_sectors = 96 limit=40427
[ 1541.193891][T23019] syz.2.6617: attempt to access beyond end of device
[ 1541.193891][T23019] loop2: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[ 1541.235405][T23017] EXT4-fs (loop5): re-mounted. Quota mode: writeback.
[ 1541.414034][T15601] EXT4-fs (loop5): unmounting filesystem.
[ 1543.961715][T23056] xt_hashlimit: max too large, truncated to 1048576
[ 1544.587475][T23056] xt_bpf: check failed: parse error
[ 1544.596147][T23065] loop5: detected capacity change from 0 to 256
[ 1544.610315][T23065] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1544.621373][T23065] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[ 1544.761907][T23065] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1547.404541][T23100] loop2: detected capacity change from 0 to 256
[ 1547.434791][T23100] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1547.466244][T23100] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[ 1547.484037][T23100] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1548.398390][T23113] 9pnet_fd: Insufficient options for proto=fd
[ 1550.376479][T23146] 9pnet_fd: Insufficient options for proto=fd
[ 1550.608911][T23152] syz.2.6657[23152] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1550.610205][T23152] syz.2.6657[23152] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1552.526254][T23165] loop2: detected capacity change from 0 to 40427
[ 1552.576639][T23165] F2FS-fs (loop2): invalid crc value
[ 1553.482694][T23165] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1553.520087][T23182] loop5: detected capacity change from 0 to 256
[ 1553.525965][T23165] F2FS-fs (loop2): Start checkpoint disabled!
[ 1553.636617][T23182] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1553.648029][T23182] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[ 1553.663896][T23165] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1553.701920][T23165] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1553.705860][T23182] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1553.877552][T13555] kworker/u4:18: attempt to access beyond end of device
[ 1553.877552][T13555] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1556.348561][T23212] loop5: detected capacity change from 0 to 256
[ 1556.367154][T23212] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1556.393895][T23212] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[ 1556.584141][T23212] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1557.744166][T23235] FAULT_INJECTION: forcing a failure.
[ 1557.744166][T23235] name failslab, interval 1, probability 0, space 0, times 0
[ 1557.757471][T23235] CPU: 0 PID: 23235 Comm: syz.2.6682 Tainted: G        W          syzkaller #0
[ 1557.766416][T23235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1557.768760][T23237] loop5: detected capacity change from 0 to 256
[ 1557.776828][T23235] Call Trace:
[ 1557.776842][T23235]  <TASK>
[ 1557.776849][T23235]  __dump_stack+0x21/0x24
[ 1557.776871][T23235]  dump_stack_lvl+0xee/0x150
[ 1557.776886][T23235]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1557.776900][T23235]  ? __cfi_avc_has_perm+0x10/0x10
[ 1557.776919][T23235]  dump_stack+0x15/0x24
[ 1557.776932][T23235]  should_fail_ex+0x3d4/0x520
[ 1557.784401][T23237] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1557.786461][T23235]  __should_failslab+0xac/0xf0
[ 1557.789399][T23237] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[ 1557.793703][T23235]  ? proc_thread_self_get_link+0x100/0x1a0
[ 1557.793728][T23235]  should_failslab+0x9/0x20
[ 1557.793741][T23235]  __kmem_cache_alloc_node+0x3d/0x2c0
[ 1557.793760][T23235]  ? proc_thread_self_get_link+0x100/0x1a0
[ 1557.793774][T23235]  kmalloc_trace+0x29/0xb0
[ 1557.800679][T23237] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1557.803356][T23235]  proc_thread_self_get_link+0x100/0x1a0
[ 1557.884615][T23235]  ? __cfi_proc_thread_self_get_link+0x10/0x10
[ 1557.890759][T23235]  pick_link+0x72e/0xe30
[ 1557.894990][T23235]  step_into+0xc4c/0xf30
[ 1557.899305][T23235]  ? __d_lookup_rcu+0x37b/0x400
[ 1557.904153][T23235]  ? set_root+0x400/0x400
[ 1557.908467][T23235]  ? inode_permission+0xef/0x4b0
[ 1557.913402][T23235]  link_path_walk+0x6be/0xe50
[ 1557.918238][T23235]  ? handle_lookup_down+0x130/0x130
[ 1557.923421][T23235]  path_openat+0x285/0x2f50
[ 1557.927905][T23235]  ? kasan_set_track+0x4b/0x70
[ 1557.932672][T23235]  ? getname_flags+0xb9/0x500
[ 1557.937401][T23235]  ? getname+0x19/0x20
[ 1557.941535][T23235]  ? do_sys_openat2+0xcb/0x7e0
[ 1557.946286][T23235]  ? x64_sys_call+0x783/0x9a0
[ 1557.951121][T23235]  ? do_syscall_64+0x4c/0xa0
[ 1557.955709][T23235]  ? do_filp_open+0x3c0/0x3c0
[ 1557.960376][T23235]  do_filp_open+0x1c1/0x3c0
[ 1557.964891][T23235]  ? __cfi_do_filp_open+0x10/0x10
[ 1557.969920][T23235]  ? alloc_fd+0x4e6/0x590
[ 1557.974300][T23235]  do_sys_openat2+0x185/0x7e0
[ 1557.978969][T23235]  ? __kasan_check_write+0x14/0x20
[ 1557.984070][T23235]  ? do_sys_open+0xe0/0xe0
[ 1557.988479][T23235]  ? ksys_write+0x1eb/0x240
[ 1557.992987][T23235]  ? __cfi_ksys_write+0x10/0x10
[ 1557.998115][T23235]  __x64_sys_openat+0x136/0x160
[ 1558.002957][T23235]  x64_sys_call+0x783/0x9a0
[ 1558.007589][T23235]  do_syscall_64+0x4c/0xa0
[ 1558.012089][T23235]  ? clear_bhb_loop+0x30/0x80
[ 1558.016762][T23235]  ? clear_bhb_loop+0x30/0x80
[ 1558.021432][T23235]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1558.027313][T23235] RIP: 0033:0x7f45b8b8eba9
[ 1558.031719][T23235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1558.051326][T23235] RSP: 002b:00007f45b9ae2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1558.059734][T23235] RAX: ffffffffffffffda RBX: 00007f45b8dd6090 RCX: 00007f45b8b8eba9
[ 1558.067794][T23235] RDX: 0000000000000002 RSI: 0000200000000040 RDI: ffffffffffffff9c
[ 1558.076106][T23235] RBP: 00007f45b9ae2090 R08: 0000000000000000 R09: 0000000000000000
[ 1558.084061][T23235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1558.092026][T23235] R13: 00007f45b8dd6128 R14: 00007f45b8dd6090 R15: 00007ffc4c66a298
[ 1558.100107][T23235]  </TASK>
[ 1558.138654][   T28] audit: type=1400 audit(1757608284.018:552): avc:  denied  { execute } for  pid=23234 comm="syz.1.6685" path="/209/cgroup.controllers" dev="tmpfs" ino=1195 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[ 1559.305213][T23247] loop2: detected capacity change from 0 to 256
[ 1559.403098][T23247] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1559.423855][T23247] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[ 1559.444467][T23247] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1559.544940][T20400] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[ 1559.734407][T20400] usb 2-1: Using ep0 maxpacket: 8
[ 1559.741968][T20400] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1559.753145][T20400] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1559.764525][T20400] usb 2-1: config 0 descriptor??
[ 1559.776715][T23258] loop5: detected capacity change from 0 to 256
[ 1559.837133][T23258] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1559.849831][T23258] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[ 1560.336537][T23258] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1560.727692][T23270] loop2: detected capacity change from 0 to 256
[ 1560.797584][T23270] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1560.835579][T23270] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[ 1560.846874][T23270] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1561.842172][T20400] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[ 1562.039307][T20400] asix: probe of 2-1:0.0 failed with error -71
[ 1562.046646][T20400] usb 2-1: USB disconnect, device number 35
[ 1562.079760][T23292] 9pnet: Could not find request transport: fd0x0000000000000008
[ 1562.580100][T23298] overlayfs: conflicting lowerdir path
[ 1563.481463][T23296] loop2: detected capacity change from 0 to 40427
[ 1563.526638][T23296] F2FS-fs (loop2): invalid crc value
[ 1563.567848][T23296] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1563.682682][T23296] F2FS-fs (loop2): Start checkpoint disabled!
[ 1563.711596][T23296] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1563.852837][T23296] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1563.908024][ T2838] kworker/u4:11: attempt to access beyond end of device
[ 1563.908024][ T2838] loop2: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 1564.693957][T23286] overlayfs: failed to resolve './bus': -2
[ 1565.082243][T23327] loop5: detected capacity change from 0 to 256
[ 1565.089532][T23327] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1565.100513][T23327] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[ 1565.112349][T23327] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1565.124696][   T28] audit: type=1326 audit(1757608291.008:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23309 comm="syz.4.6706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc8d8eba9 code=0x7fc00000
[ 1565.219591][T23335] loop2: detected capacity change from 0 to 256
[ 1565.234673][T23335] FAT-fs (loop2): Directory bread(block 64) failed
[ 1565.241312][T23335] FAT-fs (loop2): Directory bread(block 65) failed
[ 1565.248116][T23335] FAT-fs (loop2): Directory bread(block 66) failed
[ 1565.255010][T23335] FAT-fs (loop2): Directory bread(block 67) failed
[ 1565.261944][T23335] FAT-fs (loop2): Directory bread(block 68) failed
[ 1565.269191][T23335] FAT-fs (loop2): Directory bread(block 69) failed
[ 1565.295640][T23335] FAT-fs (loop2): Directory bread(block 70) failed
[ 1565.310074][T23335] FAT-fs (loop2): Directory bread(block 71) failed
[ 1565.506968][T23335] FAT-fs (loop2): Directory bread(block 72) failed
[ 1565.513727][T23335] FAT-fs (loop2): Directory bread(block 73) failed
[ 1565.775576][T23344] netlink: 36 bytes leftover after parsing attributes in process `syz.4.6715'.
[ 1566.518528][T23354] xt_socket: unknown flags 0x58
[ 1568.364878][T21768] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[ 1568.419848][T23363] FAULT_INJECTION: forcing a failure.
[ 1568.419848][T23363] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1568.448881][T23363] CPU: 0 PID: 23363 Comm: syz.0.6720 Tainted: G        W          syzkaller #0
[ 1568.458043][T23363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1568.468093][T23363] Call Trace:
[ 1568.471360][T23363]  <TASK>
[ 1568.474275][T23363]  __dump_stack+0x21/0x24
[ 1568.478593][T23363]  dump_stack_lvl+0xee/0x150
[ 1568.483201][T23363]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1568.488300][T23363]  ? __rcu_read_unlock+0xa0/0xa0
[ 1568.493228][T23363]  ? migrate_enable+0x19c/0x280
[ 1568.498063][T23363]  dump_stack+0x15/0x24
[ 1568.502206][T23363]  should_fail_ex+0x3d4/0x520
[ 1568.506880][T23363]  should_fail+0xb/0x10
[ 1568.511068][T23363]  should_fail_usercopy+0x1a/0x20
[ 1568.516081][T23363]  _copy_to_user+0x1e/0x90
[ 1568.520529][T23363]  bpf_test_finish+0x1a8/0x6b0
[ 1568.525362][T23363]  ? __kasan_slab_alloc+0x72/0x80
[ 1568.530372][T23363]  ? convert_skb_to___skb+0x430/0x430
[ 1568.535746][T23363]  bpf_prog_test_run_skb+0xce1/0x1290
[ 1568.541140][T23363]  ? __cfi_bpf_prog_test_run_skb+0x10/0x10
[ 1568.546933][T23363]  bpf_prog_test_run+0x3e3/0x630
[ 1568.551859][T23363]  ? slab_free_freelist_hook+0xc2/0x190
[ 1568.557393][T23363]  ? bpf_prog_query+0x270/0x270
[ 1568.562235][T23363]  ? selinux_bpf+0xce/0xf0
[ 1568.566642][T23363]  ? security_bpf+0x93/0xb0
[ 1568.571144][T23363]  __sys_bpf+0x56d/0x780
[ 1568.575393][T23363]  ? bpf_link_show_fdinfo+0x320/0x320
[ 1568.580805][T23363]  ? __cfi_ksys_write+0x10/0x10
[ 1568.585652][T23363]  ? debug_smp_processor_id+0x17/0x20
[ 1568.591038][T23363]  __x64_sys_bpf+0x7c/0x90
[ 1568.595444][T23363]  x64_sys_call+0x488/0x9a0
[ 1568.600038][T23363]  do_syscall_64+0x4c/0xa0
[ 1568.604438][T23363]  ? clear_bhb_loop+0x30/0x80
[ 1568.609103][T23363]  ? clear_bhb_loop+0x30/0x80
[ 1568.613854][T23363]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1568.619738][T23363] RIP: 0033:0x7f0b2bd8eba9
[ 1568.624147][T23363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1568.643828][T23363] RSP: 002b:00007f0b2cb5e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1568.652322][T23363] RAX: ffffffffffffffda RBX: 00007f0b2bfd5fa0 RCX: 00007f0b2bd8eba9
[ 1568.660363][T23363] RDX: 0000000000000050 RSI: 0000200000000080 RDI: 000000000000000a
[ 1568.668321][T23363] RBP: 00007f0b2cb5e090 R08: 0000000000000000 R09: 0000000000000000
[ 1568.676455][T23363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1568.684519][T23363] R13: 00007f0b2bfd6038 R14: 00007f0b2bfd5fa0 R15: 00007ffdd6ceacf8
[ 1568.692479][T23363]  </TASK>
[ 1568.717995][ T2457] kworker/u4:10: attempt to access beyond end of device
[ 1568.717995][ T2457] loop2: rw=1, sector=1224, nr_sectors = 608 limit=256
[ 1568.739744][ T2457] kworker/u4:10: attempt to access beyond end of device
[ 1568.739744][ T2457] loop2: rw=1, sector=1864, nr_sectors = 4088 limit=256
[ 1569.050543][   T28] audit: type=1401 audit(1757608294.928:554): op=security_bounded_transition seresult=denied oldcontext=root:sysadm_r:sysadm_t newcontext=system_u:object_r:hugetlbfs_t
[ 1569.176942][ T2457] kworker/u4:10: attempt to access beyond end of device
[ 1569.176942][ T2457] loop2: rw=1, sector=5952, nr_sectors = 2816 limit=256
[ 1569.209737][ T2457] kworker/u4:10: attempt to access beyond end of device
[ 1569.209737][ T2457] loop2: rw=1, sector=8768, nr_sectors = 2840 limit=256
[ 1569.226363][ T2457] kworker/u4:10: attempt to access beyond end of device
[ 1569.226363][ T2457] loop2: rw=1, sector=11608, nr_sectors = 4088 limit=256
[ 1569.247762][ T2457] kworker/u4:10: attempt to access beyond end of device
[ 1569.247762][ T2457] loop2: rw=1, sector=15696, nr_sectors = 3216 limit=256
[ 1570.021883][T23380] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6728'.
[ 1570.060085][ T2457] kworker/u4:10: attempt to access beyond end of device
[ 1570.060085][ T2457] loop2: rw=1, sector=18912, nr_sectors = 2104 limit=256
[ 1570.075038][T23382] netlink: 24 bytes leftover after parsing attributes in process `syz.0.6728'.
[ 1570.102030][ T2457] kworker/u4:10: attempt to access beyond end of device
[ 1570.102030][ T2457] loop2: rw=1, sector=21016, nr_sectors = 5400 limit=256
[ 1570.137036][ T2457] kworker/u4:10: attempt to access beyond end of device
[ 1570.137036][ T2457] loop2: rw=1, sector=26416, nr_sectors = 2064 limit=256
[ 1570.227385][ T2457] kworker/u4:10: attempt to access beyond end of device
[ 1570.227385][ T2457] loop2: rw=1, sector=28480, nr_sectors = 5320 limit=256
[ 1574.738137][T23413] loop5: detected capacity change from 0 to 40427
[ 1574.750467][T23413] F2FS-fs (loop5): invalid crc value
[ 1574.840803][T23413] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1574.874466][T23413] F2FS-fs (loop5): Start checkpoint disabled!
[ 1574.900154][T23413] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[ 1575.543656][T23406] F2FS-fs (loop5): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1575.583644][T22982] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[ 1575.652019][T11375] kworker/u4:14: attempt to access beyond end of device
[ 1575.652019][T11375] loop5: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 1575.764682][T22982] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1575.783638][T22982] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1575.795704][T22982] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00
[ 1575.804974][T22982] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1575.815547][T22982] usb 3-1: config 0 descriptor??
[ 1576.032974][T22982] usbhid 3-1:0.0: can't add hid device: -71
[ 1576.040759][T22982] usbhid: probe of 3-1:0.0 failed with error -71
[ 1576.056595][T22982] usb 3-1: USB disconnect, device number 28
[ 1577.499410][   T28] audit: type=1400 audit(1757608303.378:555): avc:  denied  { load_policy } for  pid=23433 comm="syz.5.6738" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[ 1577.527989][T23444] SELinux:  policydb magic number 0x7 does not match expected magic number 0xf97cff8c
[ 1577.577198][T23444] SELinux: failed to load policy
[ 1578.289179][T23470] tipc: Can't bind to reserved service type 0
[ 1579.656610][  T334] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[ 1579.844692][  T334] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1579.860012][  T334] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1579.878245][  T334] usb 3-1: config 1 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[ 1579.901086][  T334] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1579.927803][  T334] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1579.944152][  T334] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1579.954301][  T334] usb 3-1: SerialNumber: syz
[ 1580.230605][  T334] usb 3-1: 0:2 : does not exist
[ 1580.235785][  T334] usb 3-1: unit 5 not found!
[ 1580.263692][  T334] usb 3-1: USB disconnect, device number 29
[ 1581.031254][T23403] udevd[23403]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[ 1581.138431][T23513] loop2: detected capacity change from 0 to 256
[ 1581.156058][T23513] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1581.156969][T23500] loop5: detected capacity change from 0 to 40427
[ 1581.167001][T23513] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[ 1581.177347][T23500] F2FS-fs (loop5): invalid crc value
[ 1581.650989][T23517] device xfrm0 entered promiscuous mode
[ 1581.802394][ T2838] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1581.811603][ T2838] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1581.822768][T23513] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1581.974854][T23500] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1582.302854][T23500] F2FS-fs (loop5): Start checkpoint disabled!
[ 1582.309980][T23500] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[ 1583.592155][T23540] loop2: detected capacity change from 0 to 40427
[ 1583.604694][T23540] F2FS-fs (loop2): invalid crc value
[ 1583.616423][T23540] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1583.675396][T23540] F2FS-fs (loop2): Start checkpoint disabled!
[ 1583.683746][T23540] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1583.714944][T23540] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1583.757204][ T2838] kworker/u4:11: attempt to access beyond end of device
[ 1583.757204][ T2838] loop2: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 1583.774530][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1583.854731][   T28] audit: type=1400 audit(1757608309.738:556): avc:  denied  { mounton } for  pid=23551 comm="syz.0.6776" path="/proc/437/ns/mnt" dev="proc" ino=91513 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=lnk_file permissive=1
[ 1583.920542][T23556] xt_socket: unknown flags 0x58
[ 1584.159328][T23561] 9pnet: Could not find request transport: fd0x0000000000000008
[ 1584.476899][   T28] audit: type=1400 audit(1757608310.358:557): avc:  denied  { mount } for  pid=23571 comm="syz.2.6781" name="/" dev="configfs" ino=7610 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[ 1584.763732][T21768] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[ 1585.011923][T21768] usb 3-1: device descriptor read/64, error -71
[ 1585.293632][T21768] usb 3-1: device descriptor read/64, error -71
[ 1585.598306][T23584] 9pnet_fd: Insufficient options for proto=fd
[ 1585.613779][T21768] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[ 1585.752882][T23585] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6782'.
[ 1585.756912][   T28] audit: type=1400 audit(1757608311.628:558): avc:  denied  { sys_module } for  pid=23573 comm="syz.5.6782" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[ 1585.783197][T21768] usb 3-1: device descriptor read/64, error -71
[ 1586.040140][T23590] loop5: detected capacity change from 0 to 512
[ 1586.082321][T21768] usb 3-1: device descriptor read/64, error -71
[ 1586.234065][T21768] usb usb3-port1: attempt power cycle
[ 1586.354446][T23590] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1587.142092][T23590] EXT4-fs (loop5): 1 truncate cleaned up
[ 1587.201617][T23590] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[ 1587.273652][T21768] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[ 1587.355723][T21768] usb 3-1: device descriptor read/8, error -71
[ 1587.398172][T15601] EXT4-fs (loop5): unmounting filesystem.
[ 1587.844937][T21768] usb 3-1: device descriptor read/8, error -71
[ 1589.031240][   T28] audit: type=1400 audit(1757608314.908:559): avc:  denied  { bind } for  pid=23625 comm="syz.2.6796" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[ 1589.294999][T23635] loop2: detected capacity change from 0 to 1024
[ 1589.301684][T23635] ext4: Unknown parameter 'nouser_xattr'
[ 1589.426246][T23403] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1590.763692][T23647] loop2: detected capacity change from 0 to 1024
[ 1591.126007][T23647] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1591.663981][T21560] EXT4-fs (loop2): unmounting filesystem.
[ 1592.399819][T23663] loop5: detected capacity change from 0 to 1024
[ 1592.408541][T23663] ext4: Unknown parameter 'nouser_xattr'
[ 1592.426900][T23661] FAULT_INJECTION: forcing a failure.
[ 1592.426900][T23661] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1592.440924][T23661] CPU: 1 PID: 23661 Comm: syz.2.6805 Tainted: G        W          syzkaller #0
[ 1592.449941][T23661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1592.460192][T23661] Call Trace:
[ 1592.463473][T23661]  <TASK>
[ 1592.466658][T23661]  __dump_stack+0x21/0x24
[ 1592.471077][T23661]  dump_stack_lvl+0xee/0x150
[ 1592.475702][T23661]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1592.480734][T23661]  dump_stack+0x15/0x24
[ 1592.484930][T23661]  should_fail_ex+0x3d4/0x520
[ 1592.489614][T23661]  should_fail+0xb/0x10
[ 1592.493783][T23661]  should_fail_usercopy+0x1a/0x20
[ 1592.499032][T23661]  copyin+0x20/0xa0
[ 1592.502837][T23661]  _copy_from_iter+0x3e2/0xfd0
[ 1592.507601][T23661]  ? __cfi__copy_from_iter+0x10/0x10
[ 1592.512923][T23661]  ? __kasan_check_write+0x14/0x20
[ 1592.518136][T23661]  ? __build_skb_around+0x24f/0x470
[ 1592.523426][T23661]  ? check_stack_object+0x81/0x140
[ 1592.528543][T23661]  ? __check_object_size+0x45a/0x600
[ 1592.533835][T23661]  netlink_sendmsg+0x72c/0xbc0
[ 1592.538670][T23661]  ? __cfi_netlink_sendmsg+0x10/0x10
[ 1592.543968][T23661]  ? security_socket_sendmsg+0x93/0xb0
[ 1592.549438][T23661]  ? __cfi_netlink_sendmsg+0x10/0x10
[ 1592.554729][T23661]  ____sys_sendmsg+0x5a9/0x990
[ 1592.559505][T23661]  ? __sys_sendmsg_sock+0x40/0x40
[ 1592.564551][T23661]  ? import_iovec+0x7c/0xb0
[ 1592.569075][T23661]  ___sys_sendmsg+0x21c/0x290
[ 1592.573862][T23661]  ? __sys_sendmsg+0x270/0x270
[ 1592.578681][T23661]  ? __kasan_check_write+0x14/0x20
[ 1592.583796][T23661]  ? proc_fail_nth_write+0x17a/0x1f0
[ 1592.589071][T23661]  ? vfs_write+0x9d6/0xca0
[ 1592.593474][T23661]  ? __fdget+0x19c/0x220
[ 1592.597881][T23661]  __x64_sys_sendmsg+0x1f0/0x2c0
[ 1592.602928][T23661]  ? __cfi___x64_sys_sendmsg+0x10/0x10
[ 1592.608380][T23661]  ? fpregs_assert_state_consistent+0xb1/0xe0
[ 1592.614452][T23661]  x64_sys_call+0x171/0x9a0
[ 1592.618967][T23661]  do_syscall_64+0x4c/0xa0
[ 1592.623735][T23661]  ? clear_bhb_loop+0x30/0x80
[ 1592.628431][T23661]  ? clear_bhb_loop+0x30/0x80
[ 1592.633223][T23661]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1592.639128][T23661] RIP: 0033:0x7f45b8b8eba9
[ 1592.643549][T23661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1592.663162][T23661] RSP: 002b:00007f45b9b03038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1592.671604][T23661] RAX: ffffffffffffffda RBX: 00007f45b8dd5fa0 RCX: 00007f45b8b8eba9
[ 1592.679790][T23661] RDX: 0000000024040084 RSI: 0000200000006040 RDI: 0000000000000003
[ 1592.688019][T23661] RBP: 00007f45b9b03090 R08: 0000000000000000 R09: 0000000000000000
[ 1592.695973][T23661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1592.703936][T23661] R13: 00007f45b8dd6038 R14: 00007f45b8dd5fa0 R15: 00007ffc4c66a298
[ 1592.711981][T23661]  </TASK>
[ 1592.779123][T23673] xt_hashlimit: max too large, truncated to 1048576
[ 1592.787230][T23673] xt_bpf: check failed: parse error
[ 1592.822666][   T28] audit: type=1400 audit(1757608318.698:560): avc:  denied  { append } for  pid=23662 comm="syz.5.6807" name="event2" dev="devtmpfs" ino=276 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[ 1592.920829][T23674] device wg2 entered promiscuous mode
[ 1592.969012][T23679] loop5: detected capacity change from 0 to 512
[ 1592.978356][T23679] FAT-fs (loop5): Unrecognized mount option "
" or missing value
[ 1593.047725][T23676] loop2: detected capacity change from 0 to 40427
[ 1593.058051][T23676] F2FS-fs (loop2): invalid crc value
[ 1593.064332][T23676] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1593.096705][T23676] F2FS-fs (loop2): Start checkpoint disabled!
[ 1593.103487][T23676] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1593.126343][T23676] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1593.145491][T19832] kworker/u4:0: attempt to access beyond end of device
[ 1593.145491][T19832] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1593.515443][T23689] loop2: detected capacity change from 0 to 40427
[ 1593.566882][T23689] F2FS-fs (loop2): invalid crc value
[ 1593.581809][T23689] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1593.629890][T23689] F2FS-fs (loop2): Start checkpoint disabled!
[ 1593.647345][T23689] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1593.691906][T23689] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1593.745120][T11375] kworker/u4:14: attempt to access beyond end of device
[ 1593.745120][T11375] loop2: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 1596.609682][  T832] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[ 1597.443635][  T832] usb 3-1: Using ep0 maxpacket: 16
[ 1597.453129][  T832] usb 3-1: device descriptor read/all, error -71
[ 1597.779236][T23736] loop2: detected capacity change from 0 to 40427
[ 1597.791636][T23736] F2FS-fs (loop2): invalid crc value
[ 1597.800773][T23736] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1597.983144][T23752] FAULT_INJECTION: forcing a failure.
[ 1597.983144][T23752] name failslab, interval 1, probability 0, space 0, times 0
[ 1597.995921][T23752] CPU: 1 PID: 23752 Comm: syz.0.6832 Tainted: G        W          syzkaller #0
[ 1598.004870][T23752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1598.015618][T23752] Call Trace:
[ 1598.018890][T23752]  <TASK>
[ 1598.021813][T23752]  __dump_stack+0x21/0x24
[ 1598.026397][T23752]  dump_stack_lvl+0xee/0x150
[ 1598.030977][T23752]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1598.035988][T23752]  ? __kasan_check_read+0x11/0x20
[ 1598.041009][T23752]  dump_stack+0x15/0x24
[ 1598.045163][T23752]  should_fail_ex+0x3d4/0x520
[ 1598.049835][T23752]  ? vm_area_dup+0x27/0x280
[ 1598.054420][T23752]  __should_failslab+0xac/0xf0
[ 1598.059270][T23752]  should_failslab+0x9/0x20
[ 1598.063852][T23752]  kmem_cache_alloc+0x3b/0x330
[ 1598.068623][T23752]  vm_area_dup+0x27/0x280
[ 1598.073046][T23752]  ? __split_vma+0x1c3/0x930
[ 1598.077630][T23752]  __split_vma+0x1d2/0x930
[ 1598.082041][T23752]  do_mas_align_munmap+0x2e1/0x1230
[ 1598.087298][T23752]  ? mas_state_walk+0x79b/0xa60
[ 1598.092246][T23752]  ? do_mas_munmap+0x2b0/0x2b0
[ 1598.097008][T23752]  ? mas_find+0x307/0x370
[ 1598.101421][T23752]  do_mas_munmap+0x241/0x2b0
[ 1598.106009][T23752]  do_munmap+0xd2/0x120
[ 1598.110163][T23752]  ? __cfi_do_munmap+0x10/0x10
[ 1598.114923][T23752]  mremap_to+0x377/0x600
[ 1598.119188][T23752]  __se_sys_mremap+0x453/0xc80
[ 1598.123968][T23752]  ? __switch_to_asm+0x3a/0x60
[ 1598.128729][T23752]  ? __x64_sys_mremap+0xd0/0xd0
[ 1598.133655][T23752]  ? release_firmware_map_entry+0x194/0x194
[ 1598.139630][T23752]  ? __kasan_check_write+0x14/0x20
[ 1598.144824][T23752]  ? fpregs_restore_userregs+0x128/0x260
[ 1598.150459][T23752]  __x64_sys_mremap+0xbf/0xd0
[ 1598.155146][T23752]  x64_sys_call+0x989/0x9a0
[ 1598.159678][T23752]  do_syscall_64+0x4c/0xa0
[ 1598.164172][T23752]  ? clear_bhb_loop+0x30/0x80
[ 1598.168854][T23752]  ? clear_bhb_loop+0x30/0x80
[ 1598.173527][T23752]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1598.179416][T23752] RIP: 0033:0x7f0b2bd8eba9
[ 1598.183842][T23752] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1598.203530][T23752] RSP: 002b:00007f0b2a7f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[ 1598.212208][T23752] RAX: ffffffffffffffda RBX: 00007f0b2bfd6180 RCX: 00007f0b2bd8eba9
[ 1598.220310][T23752] RDX: 0000000000200000 RSI: 0000000000600a00 RDI: 0000200000000000
[ 1598.228442][T23752] RBP: 00007f0b2a7f7090 R08: 0000200000a00000 R09: 0000000000000000
[ 1598.236416][T23752] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000002
[ 1598.244547][T23752] R13: 00007f0b2bfd6218 R14: 00007f0b2bfd6180 R15: 00007ffdd6ceacf8
[ 1598.252684][T23752]  </TASK>
[ 1598.449186][T23736] F2FS-fs (loop2): Start checkpoint disabled!
[ 1598.480478][   T28] audit: type=1400 audit(1757608324.248:561): avc:  denied  { write } for  pid=23705 comm="syz.5.6822" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 1598.516476][T23736] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1598.723773][   T28] audit: type=1400 audit(1757608324.508:562): avc:  denied  { nlmsg_read } for  pid=23705 comm="syz.5.6822" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 1598.788616][T23742] netlink: 144 bytes leftover after parsing attributes in process `syz.5.6822'.
[ 1598.820807][T23736] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1598.848904][ T2838] kworker/u4:11: attempt to access beyond end of device
[ 1598.848904][ T2838] loop2: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 1599.922516][   T28] audit: type=1400 audit(1757608325.798:563): avc:  denied  { nlmsg_write } for  pid=23764 comm="syz.0.6836" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 1600.570490][T23787] loop2: detected capacity change from 0 to 1024
[ 1600.894136][T23787] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1602.226520][T21560] EXT4-fs (loop2): unmounting filesystem.
[ 1602.502906][   T28] audit: type=1326 audit(1757608328.378:564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23807 comm="syz.4.6850" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9fc8d8eba9 code=0x0
[ 1603.630719][T23832] xt_hashlimit: max too large, truncated to 1048576
[ 1603.639026][T23832] xt_bpf: check failed: parse error
[ 1604.064153][T23829] loop2: detected capacity change from 0 to 40427
[ 1604.076922][T23829] F2FS-fs (loop2): invalid crc value
[ 1604.083443][T23829] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1604.136099][T23829] F2FS-fs (loop2): Start checkpoint disabled!
[ 1604.142992][T23829] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1604.180662][T23829] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1604.393131][T23843] loop5: detected capacity change from 0 to 40427
[ 1604.500860][T23843] F2FS-fs (loop5): invalid crc value
[ 1604.514348][T11375] kworker/u4:14: attempt to access beyond end of device
[ 1604.514348][T11375] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1604.623175][T23843] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1604.685458][T23843] F2FS-fs (loop5): Start checkpoint disabled!
[ 1604.784000][T23843] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[ 1605.040162][T23843] F2FS-fs (loop5): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1607.003686][T18365] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[ 1607.136284][T23867] FAULT_INJECTION: forcing a failure.
[ 1607.136284][T23867] name failslab, interval 1, probability 0, space 0, times 0
[ 1607.153689][T23867] CPU: 1 PID: 23867 Comm: syz.1.6865 Tainted: G        W          syzkaller #0
[ 1607.162673][T23867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1607.172741][T23867] Call Trace:
[ 1607.176031][T23867]  <TASK>
[ 1607.178970][T23867]  __dump_stack+0x21/0x24
[ 1607.183415][T23867]  dump_stack_lvl+0xee/0x150
[ 1607.188013][T23867]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1607.193068][T23867]  dump_stack+0x15/0x24
[ 1607.197233][T23867]  should_fail_ex+0x3d4/0x520
[ 1607.202011][T23867]  __should_failslab+0xac/0xf0
[ 1607.206786][T23867]  ? kvmalloc_node+0x294/0x480
[ 1607.211580][T23867]  should_failslab+0x9/0x20
[ 1607.216177][T23867]  __kmem_cache_alloc_node+0x3d/0x2c0
[ 1607.221559][T23867]  ? kvmalloc_node+0x294/0x480
[ 1607.226330][T23867]  __kmalloc_node+0xa1/0x1e0
[ 1607.230926][T23867]  kvmalloc_node+0x294/0x480
[ 1607.235619][T23867]  ? __cfi_kvmalloc_node+0x10/0x10
[ 1607.240749][T23867]  ? irqentry_exit+0x37/0x40
[ 1607.245376][T23867]  ? exc_page_fault+0x5e/0xb0
[ 1607.250074][T23867]  __kvm_mmu_topup_memory_cache+0x35e/0x500
[ 1607.255996][T23867]  kvm_mmu_topup_memory_cache+0x20/0x30
[ 1607.261654][T23867]  kvm_mmu_load+0x9c/0x25a0
[ 1607.264938][T18365] usb 5-1: Using ep0 maxpacket: 32
[ 1607.266184][T23867]  ? kvm_calc_cpu_role+0xa9/0x2d0
[ 1607.276283][T23867]  ? vmx_set_cr0+0xdf7/0x1c70
[ 1607.280971][T23867]  ? kvm_init_mmu+0x5d6/0x1240
[ 1607.285755][T23867]  ? kvm_apic_has_interrupt+0x78f/0x7a0
[ 1607.285906][T18365] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[ 1607.291311][T23867]  vcpu_enter_guest+0x4958/0x6be0
[ 1607.304731][T23867]  ? __kasan_check_write+0x14/0x20
[ 1607.309865][T23867]  ? pvclock_gtod_update_fn+0x270/0x270
[ 1607.309946][T18365] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[ 1607.315409][T23867]  ? is_bpf_text_address+0x177/0x190
[ 1607.315438][T23867]  ? kernel_text_address+0xa0/0xd0
[ 1607.315456][T23867]  ? __kernel_text_address+0xd/0x30
[ 1607.315472][T23867]  ? unwind_get_return_address+0x4d/0x90
[ 1607.315490][T23867]  ? arch_stack_walk+0xfc/0x150
[ 1607.343619][T18365] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[ 1607.345395][T23867]  ? __local_bh_enable_ip+0x58/0x80
[ 1607.360430][T18365] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1607.364454][T23867]  ? fpu_swap_kvm_fpstate+0x4ef/0x5d0
[ 1607.364480][T23867]  ? fpu_swap_kvm_fpstate+0x81/0x5d0
[ 1607.364496][T23867]  kvm_arch_vcpu_ioctl_run+0xec4/0x1fa0
[ 1607.383620][T18365] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 1607.385146][T23867]  kvm_vcpu_ioctl+0x882/0xb70
[ 1607.385175][T23867]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[ 1607.390780][T18365] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[ 1607.400405][T23867]  ? selinux_file_ioctl+0x377/0x480
[ 1607.400437][T23867]  ? __cfi_selinux_file_ioctl+0x10/0x10
[ 1607.413730][T18365] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[ 1607.423615][T23867]  ? mutex_unlock+0x89/0x220
[ 1607.423644][T23867]  ? __cfi_mutex_unlock+0x10/0x10
[ 1607.423662][T23867]  ? __fget_files+0x2d5/0x330
[ 1607.439052][T18365] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1607.443391][T23867]  ? security_file_ioctl+0x95/0xc0
[ 1607.460242][T18365] usb 5-1: config 0 descriptor??
[ 1607.465929][T23867]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[ 1607.465958][T23867]  __se_sys_ioctl+0x12f/0x1b0
[ 1607.465973][T23867]  __x64_sys_ioctl+0x7b/0x90
[ 1607.490431][T23867]  x64_sys_call+0x58b/0x9a0
[ 1607.494956][T23867]  do_syscall_64+0x4c/0xa0
[ 1607.499466][T23867]  ? clear_bhb_loop+0x30/0x80
[ 1607.504236][T23867]  ? clear_bhb_loop+0x30/0x80
[ 1607.508938][T23867]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1607.514841][T23867] RIP: 0033:0x7fa781b8eba9
[ 1607.519290][T23867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1607.526186][T23863] loop2: detected capacity change from 0 to 40427
[ 1607.538988][T23867] RSP: 002b:00007fa78298c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1607.539016][T23867] RAX: ffffffffffffffda RBX: 00007fa781dd5fa0 RCX: 00007fa781b8eba9
[ 1607.539027][T23867] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[ 1607.539038][T23867] RBP: 00007fa78298c090 R08: 0000000000000000 R09: 0000000000000000
[ 1607.539048][T23867] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1607.539059][T23867] R13: 00007fa781dd6038 R14: 00007fa781dd5fa0 R15: 00007ffcb3d3c308
[ 1607.539078][T23867]  </TASK>
[ 1607.596528][T23863] F2FS-fs (loop2): invalid crc value
[ 1607.624160][T23863] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1607.673827][T23863] F2FS-fs (loop2): Start checkpoint disabled!
[ 1607.687144][T18365] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 32 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[ 1607.699219][T23863] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1607.708293][T18365] usb 5-1: USB disconnect, device number 32
[ 1607.717401][T18365] usblp0: removed
[ 1607.800789][T23863] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1607.885896][T23877] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6866'.
[ 1607.897214][T23877] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6866'.
[ 1608.417040][T11375] kworker/u4:14: attempt to access beyond end of device
[ 1608.417040][T11375] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1611.353509][T23911] loop2: detected capacity change from 0 to 1024
[ 1611.548588][T23911] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1612.084141][T23922] device wg2 entered promiscuous mode
[ 1612.124082][T21560] EXT4-fs (loop2): unmounting filesystem.
[ 1612.181817][T23924] loop2: detected capacity change from 0 to 256
[ 1612.205046][T11561] kworker/u4:15: attempt to access beyond end of device
[ 1612.205046][T11561] loop5: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 1612.224266][T23924] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1612.235349][T23924] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[ 1612.257850][T23924] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1617.518337][T23965] xt_hashlimit: max too large, truncated to 1048576
[ 1617.614370][T23965] xt_bpf: check failed: parse error
[ 1618.697645][T23985] loop2: detected capacity change from 0 to 256
[ 1618.723711][ T1944] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[ 1618.747727][T23985] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1618.894496][T23985] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[ 1618.906082][T23985] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1619.218382][T23994] loop5: detected capacity change from 0 to 1024
[ 1620.383836][ T1944] usb 5-1: Using ep0 maxpacket: 16
[ 1622.932646][T23994] EXT4-fs: error -4 creating inode table initialization thread
[ 1622.940731][T23994] EXT4-fs (loop5): mount failed
[ 1622.958951][ T1944] usb 5-1: unable to read config index 0 descriptor/all
[ 1622.988484][ T1944] usb 5-1: can't read configurations, error -71
[ 1623.753804][T24026] loop5: detected capacity change from 0 to 256
[ 1624.036150][T24027] loop2: detected capacity change from 0 to 40427
[ 1624.044374][T24027] F2FS-fs (loop2): invalid crc value
[ 1624.144777][T24027] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1624.177351][T24027] F2FS-fs (loop2): Start checkpoint disabled!
[ 1624.188628][T24027] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1624.673177][T24026] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1624.684328][T24017] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1624.693087][T24026] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[ 1624.708511][T24026] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1625.888077][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1626.016568][ T2457] kworker/u4:10: attempt to access beyond end of device
[ 1626.016568][ T2457] loop2: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 1626.288733][ T2838] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1627.760291][T11561] Bluetooth: hci1: Frame reassembly failed (-84)
[ 1627.763668][ T2457] Bluetooth: hci2: Frame reassembly failed (-84)
[ 1627.843815][T24073] xt_hashlimit: max too large, truncated to 1048576
[ 1627.850852][T24073] xt_bpf: check failed: parse error
[ 1628.273618][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1628.693967][ T2457] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1628.700708][T24086] loop5: detected capacity change from 0 to 256
[ 1628.708312][T24086] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1628.719733][T24086] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[ 1628.729743][T24086] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1630.008171][T23520] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1630.014123][ T7615] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 1630.020432][T24065] Bluetooth: hci2: command 0x1003 tx timeout
[ 1630.026626][T24065] Bluetooth: hci1: command 0x1003 tx timeout
[ 1630.343154][T24111] xt_hashlimit: max too large, truncated to 1048576
[ 1630.914074][ T7615] Bluetooth: hci0: command 0x1003 tx timeout
[ 1631.177634][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1631.189526][T24111] xt_bpf: check failed: parse error
[ 1631.231047][T24123] loop5: detected capacity change from 0 to 512
[ 1631.238197][T24123] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1631.809508][T24123] EXT4-fs (loop5): 1 truncate cleaned up
[ 1631.882523][T24123] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[ 1632.021903][T24137] loop2: detected capacity change from 0 to 40427
[ 1632.762290][T24137] F2FS-fs (loop2): invalid crc value
[ 1632.779339][T24137] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1633.020026][T24137] F2FS-fs (loop2): Start checkpoint disabled!
[ 1633.067159][T24137] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1633.560998][T15601] EXT4-fs (loop5): unmounting filesystem.
[ 1634.638507][T24135] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1634.966333][ T2838] kworker/u4:11: attempt to access beyond end of device
[ 1634.966333][ T2838] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1635.325997][ T2838] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1636.788029][T24188] loop5: detected capacity change from 0 to 40427
[ 1636.809756][T24188] F2FS-fs (loop5): invalid crc value
[ 1636.834527][T24188] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1636.878840][ T2838] Bluetooth: hci1: Frame reassembly failed (-84)
[ 1637.018753][T24188] F2FS-fs (loop5): Start checkpoint disabled!
[ 1637.025630][T24188] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[ 1637.338575][   T28] audit: type=1400 audit(1757608363.218:565): avc:  denied  { map } for  pid=24202 comm="syz.4.6952" path="/proc/sys/net/ipv4/tcp_wmem" dev="proc" ino=92651 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_net_t tclass=file permissive=1
[ 1637.365797][T24203] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6952'.
[ 1637.403676][T24067] Bluetooth: hci0: command 0x1003 tx timeout
[ 1637.417048][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1637.425736][   T28] audit: type=1400 audit(1757608363.218:566): avc:  denied  { execute } for  pid=24202 comm="syz.4.6952" path="/proc/sys/net/ipv4/tcp_wmem" dev="proc" ino=92651 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_net_t tclass=file permissive=1
[ 1637.687362][T24210] loop2: detected capacity change from 0 to 256
[ 1637.899292][ T2457] kworker/u4:10: attempt to access beyond end of device
[ 1637.899292][ T2457] loop5: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[ 1637.955903][T24210] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[ 1638.075043][T24209] tty tty24: ldisc open failed (-12), clearing slot 23
[ 1638.987786][   T45] Bluetooth: hci1: command 0x1003 tx timeout
[ 1638.993913][ T7615] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1639.075363][T24244] overlayfs: workdir and upperdir must be separate subtrees
[ 1639.090206][T24244] netlink: 128 bytes leftover after parsing attributes in process `syz.1.6964'.
[ 1639.647842][ T2457] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1639.661538][T24251] overlayfs: unrecognized mount option "verity=on" or missing value
[ 1639.676413][T24242] loop5: detected capacity change from 0 to 40427
[ 1639.699278][T24242] F2FS-fs (loop5): invalid crc value
[ 1639.705770][T24242] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1639.729483][T24255] loop2: detected capacity change from 0 to 1024
[ 1639.736764][T24255] EXT4-fs: Ignoring removed i_version option
[ 1639.743653][T24255] EXT4-fs (loop2): Test dummy encryption mode enabled
[ 1639.746149][T24242] F2FS-fs (loop5): Start checkpoint disabled!
[ 1639.752822][T24255] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1639.757721][T24242] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[ 1640.696899][T21560] EXT4-fs (loop2): unmounting filesystem.
[ 1641.713686][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[ 1641.742404][ T7615] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1641.788238][T24278] loop2: detected capacity change from 0 to 256
[ 1641.804488][T24278] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1641.817753][T24278] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[ 1642.631355][T24278] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1642.669808][T24286] x_tables: ip6_tables: NETMAP.0 target: invalid size 40 (kernel) != (user) 0
[ 1644.446488][T24308] loop5: detected capacity change from 0 to 256
[ 1644.853627][T24308] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1644.952347][T24308] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[ 1645.019849][T22982] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[ 1645.031797][T24308] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1645.144444][ T2457] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1645.264847][ T2457] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1645.423658][T22982] usb 1-1: Using ep0 maxpacket: 32
[ 1645.462302][T22982] usb 1-1: config index 0 descriptor too short (expected 29220, got 36)
[ 1645.471188][T22982] usb 1-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[ 1645.479883][T22982] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 81
[ 1645.489327][T22982] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1645.499165][T22982] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 1645.508985][T22982] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[ 1646.205122][T22982] usb 1-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[ 1646.214911][T22982] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1646.225121][T22982] usb 1-1: config 0 descriptor??
[ 1647.375232][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[ 1647.390809][ T7615] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1647.484724][T24334] device syzkaller0 entered promiscuous mode
[ 1647.514079][T22982] usblp 1-1:0.0: usblp0: USB Bidirectional printer dev 27 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[ 1647.543478][T22982] usb 1-1: USB disconnect, device number 27
[ 1647.555931][T22982] usblp0: removed
[ 1647.559116][T24331] loop2: detected capacity change from 0 to 40427
[ 1647.570841][T24331] F2FS-fs (loop2): invalid crc value
[ 1647.581339][T24331] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1647.611898][T24331] F2FS-fs (loop2): Start checkpoint disabled!
[ 1647.619917][T24331] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1647.669696][T24330] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1647.678709][T20400] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[ 1647.710727][T13555] kworker/u4:18: attempt to access beyond end of device
[ 1647.710727][T13555] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1647.865747][T20400] usb 5-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[ 1647.875440][T20400] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1647.930837][T20400] usb 5-1: config 0 descriptor??
[ 1648.105419][  T577] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[ 1648.743680][  T577] usb 2-1: Using ep0 maxpacket: 32
[ 1648.751489][  T577] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1648.762099][  T577] usb 2-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1648.775993][  T577] usb 2-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1648.786157][T22982] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[ 1648.793819][  T577] usb 2-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 1648.806948][  T577] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1648.813903][  T577] usb 2-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[ 1648.823149][  T577] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1648.833991][  T577] usb 2-1: config 0 descriptor??
[ 1649.380594][T20400] usb 5-1: Cannot read MAC address
[ 1649.454342][T20400] MOSCHIP usb-ethernet driver: probe of 5-1:0.0 failed with error -71
[ 1650.073341][  T577] hid-thrustmaster 0003:044F:B65D.0029: unknown global tag 0xe
[ 1650.085189][  T577] hid-thrustmaster 0003:044F:B65D.0029: item 0 1 1 14 parsing failed
[ 1650.094559][  T577] hid-thrustmaster 0003:044F:B65D.0029: parse failed with error -22
[ 1650.103501][  T577] hid-thrustmaster: probe of 0003:044F:B65D.0029 failed with error -22
[ 1650.213288][  T577] usb 2-1: USB disconnect, device number 36
[ 1651.236843][T20400] usb 5-1: USB disconnect, device number 35
[ 1652.124131][T13555] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1652.425521][   T28] audit: type=1400 audit(1757608378.298:567): avc:  denied  { write } for  pid=24390 comm="syz.4.7006" name="igmp" dev="proc" ino=4026532993 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[ 1654.014087][ T2457] Bluetooth: hci1: Frame reassembly failed (-84)
[ 1654.689022][T24067] Bluetooth: hci0: command 0x1003 tx timeout
[ 1654.703731][ T7615] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1655.568453][T24413] loop2: detected capacity change from 0 to 256
[ 1655.603427][T24413] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1655.648687][T24413] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[ 1655.663421][T24413] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1656.514132][ T7615] Bluetooth: hci1: command 0x1003 tx timeout
[ 1656.566677][   T45] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1656.812303][T24429] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7016'.
[ 1656.833243][T24429] device bridge0 entered promiscuous mode
[ 1656.849913][T24429] device macsec1 entered promiscuous mode
[ 1656.863844][   T28] audit: type=1400 audit(1757608382.688:568): avc:  denied  { setattr } for  pid=24428 comm="syz.4.7016" name="/" dev="incremental-fs" ino=2066 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 1657.053633][  T586] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[ 1657.653529][ T2457] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1657.663708][  T586] usb 2-1: Using ep0 maxpacket: 32
[ 1657.689830][  T586] usb 2-1: config 0 interface 0 altsetting 128 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1657.705523][ T2457] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1657.745106][  T586] usb 2-1: config 0 interface 0 altsetting 128 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[ 1657.771549][  T586] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1657.786635][  T586] usb 2-1: New USB device found, idVendor=056a, idProduct=0094, bcdDevice= 0.00
[ 1657.799986][T24417] loop5: detected capacity change from 0 to 40427
[ 1657.805174][  T586] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1657.820231][T24417] F2FS-fs (loop5): invalid crc value
[ 1657.826410][  T586] usb 2-1: config 0 descriptor??
[ 1657.835047][T24417] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1657.878851][T24417] F2FS-fs (loop5): Start checkpoint disabled!
[ 1657.885770][T24417] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[ 1657.956828][T24417] F2FS-fs (loop5): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1658.238868][ T2457] kworker/u4:10: attempt to access beyond end of device
[ 1658.238868][ T2457] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1658.316570][  T586] wacom 0003:056A:0094.002A: Using device in hidraw-only mode
[ 1658.334013][  T586] wacom 0003:056A:0094.002A: hidraw0: USB HID v0.05 Device [HID 056a:0094] on usb-dummy_hcd.1-1/input0
[ 1658.698708][T24451] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1658.708922][T24451] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1660.872713][T24459] loop5: detected capacity change from 0 to 40427
[ 1661.254128][T24067] Bluetooth: hci0: command 0x1003 tx timeout
[ 1661.254172][ T7615] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1661.307149][T24459] F2FS-fs (loop5): invalid crc value
[ 1661.352129][T24459] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1661.387105][T24459] F2FS-fs (loop5): Start checkpoint disabled!
[ 1661.465041][T24459] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[ 1662.555346][  T577] usb 2-1: USB disconnect, device number 37
[ 1662.578375][T13555] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1662.643833][T24483] FAULT_INJECTION: forcing a failure.
[ 1662.643833][T24483] name failslab, interval 1, probability 0, space 0, times 0
[ 1662.671125][T24483] CPU: 0 PID: 24483 Comm: syz.1.7032 Tainted: G        W          syzkaller #0
[ 1662.680426][T24483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1662.690504][T24483] Call Trace:
[ 1662.693789][T24483]  <TASK>
[ 1662.696785][T24483]  __dump_stack+0x21/0x24
[ 1662.701118][T24483]  dump_stack_lvl+0xee/0x150
[ 1662.705721][T24483]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1662.710741][T24483]  ? do_syscall_64+0x4c/0xa0
[ 1662.715414][T24483]  dump_stack+0x15/0x24
[ 1662.719563][T24483]  should_fail_ex+0x3d4/0x520
[ 1662.724236][T24483]  __should_failslab+0xac/0xf0
[ 1662.729017][T24483]  ? sk_prot_alloc+0xed/0x320
[ 1662.733867][T24483]  should_failslab+0x9/0x20
[ 1662.738365][T24483]  __kmem_cache_alloc_node+0x3d/0x2c0
[ 1662.743838][T24483]  ? sk_prot_alloc+0xed/0x320
[ 1662.748527][T24483]  __kmalloc+0xa1/0x1e0
[ 1662.752793][T24483]  sk_prot_alloc+0xed/0x320
[ 1662.757477][T24483]  sk_alloc+0x3b/0x460
[ 1662.761552][T24483]  ? __kasan_check_write+0x14/0x20
[ 1662.766677][T24483]  bpf_prog_test_run_skb+0x37e/0x1290
[ 1662.772278][T24483]  ? __fget_files+0x2d5/0x330
[ 1662.776981][T24483]  ? __cfi_bpf_prog_test_run_skb+0x10/0x10
[ 1662.782833][T24483]  bpf_prog_test_run+0x3e3/0x630
[ 1662.787770][T24483]  ? slab_free_freelist_hook+0xc2/0x190
[ 1662.793322][T24483]  ? bpf_prog_query+0x270/0x270
[ 1662.798177][T24483]  ? selinux_bpf+0xce/0xf0
[ 1662.802596][T24483]  ? security_bpf+0x93/0xb0
[ 1662.807188][T24483]  __sys_bpf+0x56d/0x780
[ 1662.811430][T24483]  ? bpf_link_show_fdinfo+0x320/0x320
[ 1662.816844][T24483]  ? __cfi_ksys_write+0x10/0x10
[ 1662.821708][T24483]  ? __bpf_trace_sys_enter+0x62/0x70
[ 1662.827088][T24483]  __x64_sys_bpf+0x7c/0x90
[ 1662.831601][T24483]  x64_sys_call+0x488/0x9a0
[ 1662.836111][T24483]  do_syscall_64+0x4c/0xa0
[ 1662.840615][T24483]  ? clear_bhb_loop+0x30/0x80
[ 1662.845299][T24483]  ? clear_bhb_loop+0x30/0x80
[ 1662.849978][T24483]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1662.855882][T24483] RIP: 0033:0x7fa781b8eba9
[ 1662.860303][T24483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1662.864962][T24454] F2FS-fs (loop5): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1662.880510][T24483] RSP: 002b:00007fa78298c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1662.880536][T24483] RAX: ffffffffffffffda RBX: 00007fa781dd5fa0 RCX: 00007fa781b8eba9
[ 1662.880548][T24483] RDX: 0000000000000050 RSI: 0000200000000080 RDI: 000000000000000a
[ 1662.880558][T24483] RBP: 00007fa78298c090 R08: 0000000000000000 R09: 0000000000000000
[ 1662.925808][T24483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1662.933878][T24483] R13: 00007fa781dd6038 R14: 00007fa781dd5fa0 R15: 00007ffcb3d3c308
[ 1662.942132][T24483]  </TASK>
[ 1662.946959][ T2838] kworker/u4:11: attempt to access beyond end of device
[ 1662.946959][ T2838] loop5: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 1663.153443][T24481] syz.4.7031 (24481) used greatest stack depth: 19928 bytes left
[ 1663.402423][T24492] loop5: detected capacity change from 0 to 1024
[ 1663.587101][T24492] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[ 1664.252771][T15601] EXT4-fs (loop5): unmounting filesystem.
[ 1664.336092][T24507] xt_hashlimit: max too large, truncated to 1048576
[ 1664.342867][T24507] xt_bpf: check failed: parse error
[ 1664.810860][T24067] Bluetooth: hci0: command 0x1003 tx timeout
[ 1664.817440][ T7615] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1665.210257][T21894] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[ 1665.689299][T24513] loop2: detected capacity change from 0 to 40427
[ 1665.730074][T24513] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1665.765129][T24513] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1665.777612][T21894] usb 2-1: Using ep0 maxpacket: 32
[ 1665.782031][T24513] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1665.849573][T21894] usb 2-1: config index 0 descriptor too short (expected 29220, got 36)
[ 1665.850652][T24513] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1665.866259][T24513] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1665.911404][T21894] usb 2-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[ 1665.926290][T21894] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 81
[ 1665.942684][T21894] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1666.027344][T21894] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 1666.037323][T21894] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[ 1666.050413][T21894] usb 2-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[ 1666.059601][T21894] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1666.079220][T21894] usb 2-1: config 0 descriptor??
[ 1666.104941][T24513] syz.2.7042: attempt to access beyond end of device
[ 1666.104941][T24513] loop2: rw=2049, sector=45096, nr_sectors = 96 limit=40427
[ 1666.127713][T24528] FAULT_INJECTION: forcing a failure.
[ 1666.127713][T24528] name failslab, interval 1, probability 0, space 0, times 0
[ 1666.145433][T24513] syz.2.7042: attempt to access beyond end of device
[ 1666.145433][T24513] loop2: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[ 1666.159474][T24528] CPU: 0 PID: 24528 Comm: syz.0.7045 Tainted: G        W          syzkaller #0
[ 1666.168427][T24528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1666.178581][T24528] Call Trace:
[ 1666.181866][T24528]  <TASK>
[ 1666.184810][T24528]  __dump_stack+0x21/0x24
[ 1666.189184][T24528]  dump_stack_lvl+0xee/0x150
[ 1666.193771][T24528]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1666.199047][T24528]  ? do_syscall_64+0x4c/0xa0
[ 1666.203665][T24528]  dump_stack+0x15/0x24
[ 1666.207898][T24528]  should_fail_ex+0x3d4/0x520
[ 1666.212574][T24528]  __should_failslab+0xac/0xf0
[ 1666.217335][T24528]  ? sk_prot_alloc+0xed/0x320
[ 1666.222008][T24528]  should_failslab+0x9/0x20
[ 1666.226513][T24528]  __kmem_cache_alloc_node+0x3d/0x2c0
[ 1666.231971][T24528]  ? sk_prot_alloc+0xed/0x320
[ 1666.236902][T24528]  __kmalloc+0xa1/0x1e0
[ 1666.241063][T24528]  sk_prot_alloc+0xed/0x320
[ 1666.245951][T24528]  sk_alloc+0x3b/0x460
[ 1666.250024][T24528]  ? __kasan_check_write+0x14/0x20
[ 1666.255135][T24528]  bpf_prog_test_run_skb+0x37e/0x1290
[ 1666.260511][T24528]  ? __fget_files+0x2d5/0x330
[ 1666.265426][T24528]  ? __cfi_bpf_prog_test_run_skb+0x10/0x10
[ 1666.271236][T24528]  bpf_prog_test_run+0x3e3/0x630
[ 1666.276185][T24528]  ? slab_free_freelist_hook+0xc2/0x190
[ 1666.281735][T24528]  ? bpf_prog_query+0x270/0x270
[ 1666.286592][T24528]  ? selinux_bpf+0xce/0xf0
[ 1666.291003][T24528]  ? security_bpf+0x93/0xb0
[ 1666.295523][T24528]  __sys_bpf+0x56d/0x780
[ 1666.299761][T24528]  ? bpf_link_show_fdinfo+0x320/0x320
[ 1666.305217][T24528]  ? __cfi_ksys_write+0x10/0x10
[ 1666.310167][T24528]  ? debug_smp_processor_id+0x17/0x20
[ 1666.315538][T24528]  __x64_sys_bpf+0x7c/0x90
[ 1666.319953][T24528]  x64_sys_call+0x488/0x9a0
[ 1666.324449][T24528]  do_syscall_64+0x4c/0xa0
[ 1666.328858][T24528]  ? clear_bhb_loop+0x30/0x80
[ 1666.333534][T24528]  ? clear_bhb_loop+0x30/0x80
[ 1666.338209][T24528]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1666.344196][T24528] RIP: 0033:0x7f0b2bd8eba9
[ 1666.348631][T24528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1666.368501][T24528] RSP: 002b:00007f0b2cb5e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1666.376953][T24528] RAX: ffffffffffffffda RBX: 00007f0b2bfd5fa0 RCX: 00007f0b2bd8eba9
[ 1666.385030][T24528] RDX: 000000000000004c RSI: 0000200000000240 RDI: 000000000000000a
[ 1666.393229][T24528] RBP: 00007f0b2cb5e090 R08: 0000000000000000 R09: 0000000000000000
[ 1666.401221][T24528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1666.409191][T24528] R13: 00007f0b2bfd6038 R14: 00007f0b2bfd5fa0 R15: 00007ffdd6ceacf8
[ 1666.417176][T24528]  </TASK>
[ 1666.425348][T21894] usblp 2-1:0.0: usblp0: USB Bidirectional printer dev 38 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[ 1666.442258][T21894] usb 2-1: USB disconnect, device number 38
[ 1666.460303][T21894] usblp0: removed
[ 1666.590366][T24531] x_tables: ip6_tables: NETMAP.0 target: invalid size 40 (kernel) != (user) 0
[ 1667.163650][  T586] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[ 1667.363612][  T586] usb 2-1: Using ep0 maxpacket: 32
[ 1667.370086][  T586] usb 2-1: config index 0 descriptor too short (expected 29220, got 36)
[ 1667.379599][  T586] usb 2-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[ 1667.389242][  T586] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 81
[ 1667.463464][  T586] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1667.477519][  T586] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 1667.487445][  T586] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[ 1667.501157][  T586] usb 2-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[ 1667.510431][  T586] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1667.851971][T24560] loop2: detected capacity change from 0 to 256
[ 1667.859053][T24560] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1667.870336][  T586] usb 2-1: config 0 descriptor??
[ 1667.879265][T24560] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[ 1667.893006][T24554] loop5: detected capacity change from 0 to 40427
[ 1667.901987][T24554] F2FS-fs (loop5): invalid crc value
[ 1667.907607][  T586] usb 2-1: can't set config #0, error -71
[ 1667.914220][  T586] usb 2-1: USB disconnect, device number 39
[ 1667.914914][T24560] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1667.933257][T24554] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1667.936385][T24562] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12 sclass=netlink_route_socket pid=24562 comm=syz.1.7056
[ 1667.969195][T24554] F2FS-fs (loop5): Start checkpoint disabled!
[ 1667.979572][T24554] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[ 1668.130876][T24551] F2FS-fs (loop5): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1668.177662][T24573] xt_hashlimit: max too large, truncated to 1048576
[ 1668.193890][T24573] xt_bpf: check failed: parse error
[ 1670.536483][ T2457] kworker/u4:10: attempt to access beyond end of device
[ 1670.536483][ T2457] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1671.299842][T24603] xt_hashlimit: max too large, truncated to 1048576
[ 1671.306721][T24603] xt_bpf: check failed: parse error
[ 1671.669872][T21894] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[ 1671.711215][   T28] audit: type=1400 audit(1757608397.568:569): avc:  denied  { mount } for  pid=24606 comm="syz.0.7068" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[ 1671.733400][   T28] audit: type=1400 audit(1757608397.578:570): avc:  denied  { mounton } for  pid=24606 comm="syz.0.7068" path="/214/file0" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=dir permissive=1
[ 1671.764712][   T28] audit: type=1400 audit(1757608397.648:571): avc:  denied  { unmount } for  pid=21339 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[ 1671.893590][T21894] usb 5-1: Using ep0 maxpacket: 32
[ 1671.899837][T21894] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[ 1672.202209][T21894] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[ 1672.211281][T21894] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[ 1672.226573][T21894] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1672.236271][T21894] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 1672.245952][T21894] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[ 1672.261072][T24614] loop5: detected capacity change from 0 to 40427
[ 1672.268289][T21894] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[ 1672.277687][T21894] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1672.294563][T21894] usb 5-1: config 0 descriptor??
[ 1672.312914][T24614] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[ 1672.328230][T24614] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[ 1672.370105][T24614] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1672.406151][T24614] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[ 1672.411016][T24616] loop2: detected capacity change from 0 to 40427
[ 1672.413224][T24614] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[ 1672.439077][T24616] F2FS-fs (loop2): invalid crc value
[ 1672.451859][T24614] syz.5.7072: attempt to access beyond end of device
[ 1672.451859][T24614] loop5: rw=2049, sector=45096, nr_sectors = 96 limit=40427
[ 1672.468724][T24616] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1672.502435][T21894] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 36 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[ 1672.518562][T24614] syz.5.7072: attempt to access beyond end of device
[ 1672.518562][T24614] loop5: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[ 1672.539915][T21894] usb 5-1: USB disconnect, device number 36
[ 1672.554320][T21894] usblp0: removed
[ 1672.559452][T24616] F2FS-fs (loop2): Start checkpoint disabled!
[ 1672.568175][T24616] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1672.606197][T24616] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1672.717168][ T2457] kworker/u4:10: attempt to access beyond end of device
[ 1672.717168][ T2457] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1674.435076][T24644] xt_hashlimit: max too large, truncated to 1048576
[ 1674.443069][T24644] xt_bpf: check failed: parse error
[ 1676.844885][T24673] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1676.931867][T24673] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1676.945616][T24672] loop5: detected capacity change from 0 to 40427
[ 1676.962629][T24672] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[ 1676.975421][T24672] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[ 1676.979118][T24675] netlink: 'syz.1.7085': attribute type 16 has an invalid length.
[ 1676.985802][T24672] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1677.027436][T24675] netlink: 'syz.1.7085': attribute type 17 has an invalid length.
[ 1677.039355][T24672] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[ 1677.046684][T24672] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[ 1677.057891][T24675] device lo entered promiscuous mode
[ 1677.080193][T24675] device tunl0 entered promiscuous mode
[ 1677.102919][T24675] device gre0 entered promiscuous mode
[ 1677.114902][T24675] device gretap0 entered promiscuous mode
[ 1677.121055][T24675] device erspan0 entered promiscuous mode
[ 1677.139415][T24675] device ip_vti0 entered promiscuous mode
[ 1677.149490][T24675] device ip6_vti0 entered promiscuous mode
[ 1677.156168][T24675] device sit0 entered promiscuous mode
[ 1677.162210][T24675] device ip6tnl0 entered promiscuous mode
[ 1677.168662][T24675] device ip6gre0 entered promiscuous mode
[ 1677.180473][T24675] device syz_tun entered promiscuous mode
[ 1677.187553][T24675] device ip6gretap0 entered promiscuous mode
[ 1677.223707][T24675] device bridge0 entered promiscuous mode
[ 1677.230152][T24675] device vcan0 entered promiscuous mode
[ 1677.238105][T24675] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1677.247437][T24675] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1677.255191][T24675] device dummy0 entered promiscuous mode
[ 1677.262134][T24675] device veth0 entered promiscuous mode
[ 1677.268443][T24675] device veth1 entered promiscuous mode
[ 1677.360504][T24675] device wg0 entered promiscuous mode
[ 1677.366526][T24675] device wg1 entered promiscuous mode
[ 1677.372727][T24675] device veth0_to_bridge entered promiscuous mode
[ 1677.380483][T24675] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1677.387596][T24675] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1677.396057][T24675] device veth1_to_bridge entered promiscuous mode
[ 1677.403409][T24675] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1677.410966][T24675] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1677.812899][T24698] loop2: detected capacity change from 0 to 1024
[ 1678.043218][T24698] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1678.118332][T24675] device veth0_to_bond entered promiscuous mode
[ 1678.534731][T24675] device bond_slave_0 entered promiscuous mode
[ 1678.541309][T24675] device veth1_to_bond entered promiscuous mode
[ 1678.559454][T24675] device bond_slave_1 entered promiscuous mode
[ 1678.566088][T24675] device veth0_to_team entered promiscuous mode
[ 1678.572923][T24675] device team_slave_0 entered promiscuous mode
[ 1678.579589][T24675] device veth1_to_team entered promiscuous mode
[ 1678.586488][T24675] device team_slave_1 entered promiscuous mode
[ 1678.592976][T24675] device veth0_to_batadv entered promiscuous mode
[ 1678.604131][T24675] device batadv_slave_0 entered promiscuous mode
[ 1678.610976][T24675] device veth1_to_batadv entered promiscuous mode
[ 1678.620639][T24704] 9pnet: p9_errstr2errno: server reported unknown error �1 g;-�~	���
[ 1678.643367][T21560] EXT4-fs (loop2): unmounting filesystem.
[ 1678.685897][T24708] loop2: detected capacity change from 0 to 256
[ 1678.693021][T24675] device batadv_slave_1 entered promiscuous mode
[ 1678.703282][T24675] device xfrm0 entered promiscuous mode
[ 1678.725317][T24708] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1678.741586][T24675] device veth0_to_hsr entered promiscuous mode
[ 1678.783630][T24708] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[ 1678.797408][T24675] device hsr_slave_0 entered promiscuous mode
[ 1678.805675][T24675] device veth1_to_hsr entered promiscuous mode
[ 1678.812515][T24675] device hsr_slave_1 entered promiscuous mode
[ 1678.819346][T24675] device veth1_virt_wifi entered promiscuous mode
[ 1678.826620][T24675] device veth0_virt_wifi entered promiscuous mode
[ 1678.828692][T24708] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1678.834200][T24675] device veth1_vlan entered promiscuous mode
[ 1678.852786][T24675] device vlan0 entered promiscuous mode
[ 1678.859112][T24675] device vlan1 entered promiscuous mode
[ 1678.866197][T24675] device veth0_macvtap entered promiscuous mode
[ 1679.392891][ T2457] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1679.402045][ T2457] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1679.435670][T24675] device macsec0 entered promiscuous mode
[ 1679.917869][T13555] Bluetooth: hci1: Frame reassembly failed (-84)
[ 1679.924438][T13555] Bluetooth: hci1: Frame reassembly failed (-84)
[ 1680.029287][T24675] device vlan2 entered promiscuous mode
[ 1680.035575][T24675] IPv6: ADDRCONF(NETDEV_CHANGE): vlan2: link becomes ready
[ 1680.044884][T24675] device bridge1 entered promiscuous mode
[ 1680.066858][T24675] device pimreg0 entered promiscuous mode
[ 1680.103273][T11561] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[ 1680.112015][T11561] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1680.120661][T11561] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[ 1680.129643][T11561] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1680.138443][T11561] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1680.146784][T11561] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1680.155100][T11561] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1680.163244][T11561] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1680.258614][T24729] device syzkaller0 entered promiscuous mode
[ 1680.543782][  T586] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[ 1680.733619][  T586] usb 2-1: Using ep0 maxpacket: 32
[ 1680.740221][  T586] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1680.750564][  T586] usb 2-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1680.761632][  T586] usb 2-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1680.771722][  T586] usb 2-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 1680.784937][  T586] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1680.791605][  T586] usb 2-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[ 1680.800900][  T586] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1680.809869][  T586] usb 2-1: config 0 descriptor??
[ 1681.467948][ T7615] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1681.468569][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[ 1681.483481][  T586] hid-thrustmaster 0003:044F:B65D.002B: unknown global tag 0xe
[ 1681.491183][  T586] hid-thrustmaster 0003:044F:B65D.002B: item 0 1 1 14 parsing failed
[ 1681.501491][  T586] hid-thrustmaster 0003:044F:B65D.002B: parse failed with error -22
[ 1681.511367][  T586] hid-thrustmaster: probe of 0003:044F:B65D.002B failed with error -22
[ 1682.003419][ T7615] Bluetooth: hci1: command 0x1003 tx timeout
[ 1682.013761][T24067] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1682.232341][T24744] loop5: detected capacity change from 0 to 40427
[ 1682.266211][T24744] F2FS-fs (loop5): invalid crc value
[ 1682.274641][T24744] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1682.326017][T24744] F2FS-fs (loop5): Start checkpoint disabled!
[ 1682.333725][T24744] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[ 1682.751840][  T586] usb 2-1: USB disconnect, device number 40
[ 1682.781381][T24744] F2FS-fs (loop5): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1682.975509][T24756] loop2: detected capacity change from 0 to 40427
[ 1682.992443][T24756] F2FS-fs (loop2): invalid crc value
[ 1683.015713][T24756] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1683.048872][T24756] F2FS-fs (loop2): Start checkpoint disabled!
[ 1683.063259][T24756] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1683.103332][T24756] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1683.342339][T11561] kworker/u4:15: attempt to access beyond end of device
[ 1683.342339][T11561] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1683.417234][T11561] kworker/u4:15: attempt to access beyond end of device
[ 1683.417234][T11561] loop2: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 1684.191247][T24771] device xfrm0 entered promiscuous mode
[ 1684.515427][T11561] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1684.533604][T11561] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1686.365131][T24791] bridge0: port 3(gretap0) entered blocking state
[ 1686.371771][T24791] bridge0: port 3(gretap0) entered disabled state
[ 1686.384481][T24791] device gretap0 entered promiscuous mode
[ 1686.390357][T24791] bridge0: port 3(gretap0) entered blocking state
[ 1686.396960][T24791] bridge0: port 3(gretap0) entered forwarding state
[ 1686.453979][T24794] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=274 sclass=netlink_xfrm_socket pid=24794 comm=syz.0.7117
[ 1686.503594][T21894] usb 3-1: new full-speed USB device number 36 using dummy_hcd
[ 1686.513619][T24067] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1686.781782][T21894] usb 3-1: unable to get BOS descriptor or descriptor too short
[ 1686.794191][T21894] usb 3-1: not running at top speed; connect to a high speed hub
[ 1686.825888][T21894] usb 3-1: config 3 has an invalid interface number: 67 but max is 1
[ 1686.843731][T21894] usb 3-1: config 3 has an invalid descriptor of length 0, skipping remainder of the config
[ 1687.233667][T21894] usb 3-1: config 3 has 1 interface, different from the descriptor's value: 2
[ 1687.242580][T21894] usb 3-1: config 3 has no interface number 0
[ 1687.248898][T21894] usb 3-1: config 3 interface 67 altsetting 12 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1687.262209][T21894] usb 3-1: config 3 interface 67 has no altsetting 0
[ 1687.274719][T21894] usb 3-1: New USB device found, idVendor=200f, idProduct=b83e, bcdDevice=b8.82
[ 1687.283825][T21894] usb 3-1: New USB device strings: Mfr=1, Product=33, SerialNumber=3
[ 1687.291902][T21894] usb 3-1: Product: syz
[ 1687.296469][T21894] usb 3-1: Manufacturer: syz
[ 1687.301076][T21894] usb 3-1: SerialNumber: syz
[ 1687.499027][T24796] loop5: detected capacity change from 0 to 40427
[ 1687.529023][T21894] hub 3-1:3.67: bad descriptor, ignoring hub
[ 1687.538638][T21894] hub: probe of 3-1:3.67 failed with error -5
[ 1687.561005][T24796] F2FS-fs (loop5): invalid crc value
[ 1687.571804][T24796] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1687.588744][T21894] usb 3-1: USB disconnect, device number 36
[ 1687.686971][T24817] 9pnet: p9_errstr2errno: server reported unknown error �1 g;-�~	���
[ 1688.018932][T24796] F2FS-fs (loop5): Start checkpoint disabled!
[ 1688.026052][T24796] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[ 1688.114121][T24796] F2FS-fs (loop5): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1688.290589][T24827] loop2: detected capacity change from 0 to 40427
[ 1688.313925][T24827] F2FS-fs (loop2): invalid crc value
[ 1688.325529][T24827] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1688.359301][T24827] F2FS-fs (loop2): Start checkpoint disabled!
[ 1688.366262][T24827] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1688.421410][T24827] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1688.453480][ T2838] kworker/u4:11: attempt to access beyond end of device
[ 1688.453480][ T2838] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1688.554188][ T2838] kworker/u4:11: attempt to access beyond end of device
[ 1688.554188][ T2838] loop5: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 1690.171160][T24836] loop5: detected capacity change from 0 to 128
[ 1690.199772][T24836] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[ 1690.209257][T24836] ext4 filesystem being mounted at /359/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1690.289507][T24839] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7129'.
[ 1690.298869][T24839] device veth1_macvtap left promiscuous mode
[ 1691.017796][T24850] device xfrm0 entered promiscuous mode
[ 1691.027855][T11561] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1691.108465][T15601] EXT4-fs (loop5): unmounting filesystem.
[ 1691.733057][T24857] loop5: detected capacity change from 0 to 40427
[ 1691.742571][T24857] F2FS-fs (loop5): invalid crc value
[ 1691.749334][T24857] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1691.782324][T24857] F2FS-fs (loop5): Start checkpoint disabled!
[ 1691.789199][T24857] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[ 1691.826045][T24857] F2FS-fs (loop5): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1691.848483][ T2838] kworker/u4:11: attempt to access beyond end of device
[ 1691.848483][ T2838] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1691.993081][T24869] xt_hashlimit: max too large, truncated to 1048576
[ 1691.999990][T24869] xt_bpf: check failed: parse error
[ 1692.129403][T24873] loop5: detected capacity change from 0 to 256
[ 1692.137367][T24873] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1692.149834][T24873] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[ 1692.160745][T24873] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1693.073615][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[ 1693.079917][T24067] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1693.157603][T24887] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7144'.
[ 1693.169690][T24887] device veth1_macvtap left promiscuous mode
[ 1693.205856][T24892] 9pnet: p9_errstr2errno: server reported unknown error �@��0x0000000000000007
[ 1694.679387][T24908] FAULT_INJECTION: forcing a failure.
[ 1694.679387][T24908] name failslab, interval 1, probability 0, space 0, times 0
[ 1694.693108][T24908] CPU: 0 PID: 24908 Comm: syz.2.7150 Tainted: G        W          syzkaller #0
[ 1694.702236][T24908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1694.712479][T24908] Call Trace:
[ 1694.715754][T24908]  <TASK>
[ 1694.718768][T24908]  __dump_stack+0x21/0x24
[ 1694.723095][T24908]  dump_stack_lvl+0xee/0x150
[ 1694.727683][T24908]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1694.732703][T24908]  ? mas_alloc_nodes+0x2d8/0x850
[ 1694.737641][T24908]  dump_stack+0x15/0x24
[ 1694.741976][T24908]  should_fail_ex+0x3d4/0x520
[ 1694.746679][T24908]  __should_failslab+0xac/0xf0
[ 1694.751461][T24908]  should_failslab+0x9/0x20
[ 1694.756054][T24908]  kmem_cache_alloc_bulk+0x2d/0x3c0
[ 1694.761348][T24908]  ? mas_alloc_nodes+0x6b/0x850
[ 1694.766206][T24908]  ? mas_alloc_nodes+0x2d8/0x850
[ 1694.771145][T24908]  mas_alloc_nodes+0x423/0x850
[ 1694.775912][T24908]  mas_preallocate+0xdf5/0x1400
[ 1694.780766][T24908]  ? __cfi_mas_preallocate+0x10/0x10
[ 1694.786135][T24908]  ? memset+0x35/0x40
[ 1694.790206][T24908]  mmap_region+0x1099/0x2140
[ 1694.794975][T24908]  ? __cfi_mmap_region+0x10/0x10
[ 1694.799910][T24908]  ? cap_mmap_addr+0x165/0x2e0
[ 1694.804672][T24908]  ? get_unmapped_area+0x313/0x380
[ 1694.809845][T24908]  do_mmap+0x7ae/0xcf0
[ 1694.813910][T24908]  ? __cfi_do_mmap+0x10/0x10
[ 1694.818497][T24908]  vm_mmap_pgoff+0x1f5/0x3f0
[ 1694.823101][T24908]  ? ____kasan_slab_free+0x13d/0x180
[ 1694.828493][T24908]  ? __cfi_vm_mmap_pgoff+0x10/0x10
[ 1694.833726][T24908]  ? sysvec_irq_work+0x61/0xc0
[ 1694.838590][T24908]  ksys_mmap_pgoff+0xf6/0x1d0
[ 1694.843280][T24908]  __x64_sys_mmap+0xfa/0x110
[ 1694.847870][T24908]  x64_sys_call+0x8fd/0x9a0
[ 1694.852457][T24908]  do_syscall_64+0x4c/0xa0
[ 1694.856867][T24908]  ? clear_bhb_loop+0x30/0x80
[ 1694.861540][T24908]  ? clear_bhb_loop+0x30/0x80
[ 1694.866220][T24908]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1694.872129][T24908] RIP: 0033:0x7f45b8b8ebe3
[ 1694.876555][T24908] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[ 1694.896332][T24908] RSP: 002b:00007f45b9ae1e18 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1694.904765][T24908] RAX: ffffffffffffffda RBX: 0000000000000367 RCX: 00007f45b8b8ebe3
[ 1694.912833][T24908] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[ 1694.920973][T24908] RBP: 0000200000000702 R08: 00000000ffffffff R09: 0000000000000000
[ 1694.928938][T24908] R10: 0000000000000022 R11: 0000000000000246 R12: 000000000000000a
[ 1694.936991][T24908] R13: 00007f45b9ae1ef0 R14: 00007f45b9ae1eb0 R15: 0000200000000a80
[ 1694.944995][T24908]  </TASK>
[ 1697.330878][T24917] loop2: detected capacity change from 0 to 256
[ 1697.367600][T24917] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1697.450035][T24917] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[ 1697.461420][T24923] serio: Serial port ptm0
[ 1697.468247][T24917] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1697.704492][ T2457] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1698.556528][T24939] loop2: detected capacity change from 0 to 40427
[ 1699.007385][T24939] F2FS-fs (loop2): invalid crc value
[ 1699.041031][T24939] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1699.194829][T24939] F2FS-fs (loop2): Start checkpoint disabled!
[ 1699.216152][T24939] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1699.253715][T24939] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1699.352260][T13555] kworker/u4:18: attempt to access beyond end of device
[ 1699.352260][T13555] loop2: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 1699.637228][T24957] FAULT_INJECTION: forcing a failure.
[ 1699.637228][T24957] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1699.660568][T24957] CPU: 0 PID: 24957 Comm: syz.2.7165 Tainted: G        W          syzkaller #0
[ 1699.669541][T24957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1699.679596][T24957] Call Trace:
[ 1699.682871][T24957]  <TASK>
[ 1699.685887][T24957]  __dump_stack+0x21/0x24
[ 1699.690303][T24957]  dump_stack_lvl+0xee/0x150
[ 1699.694887][T24957]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1699.700102][T24957]  ? __kasan_check_write+0x14/0x20
[ 1699.705216][T24957]  ? _raw_spin_lock_irq+0x8f/0xe0
[ 1699.710246][T24957]  dump_stack+0x15/0x24
[ 1699.714402][T24957]  should_fail_ex+0x3d4/0x520
[ 1699.719260][T24957]  should_fail+0xb/0x10
[ 1699.723585][T24957]  should_fail_usercopy+0x1a/0x20
[ 1699.728731][T24957]  fpu__restore_sig+0x194/0xf40
[ 1699.733622][T24957]  ? signal_setup_done+0x33b/0x440
[ 1699.738735][T24957]  ? __cfi_fpu__restore_sig+0x10/0x10
[ 1699.744119][T24957]  ? __kasan_check_write+0x14/0x20
[ 1699.749322][T24957]  ? recalc_sigpending+0x168/0x1c0
[ 1699.754868][T24957]  ? __kasan_check_write+0x14/0x20
[ 1699.759985][T24957]  __ia32_sys_rt_sigreturn+0x5d0/0x6c0
[ 1699.765446][T24957]  ? __cfi___x64_sys_rt_sigreturn+0x10/0x10
[ 1699.771343][T24957]  ? __kasan_check_write+0x14/0x20
[ 1699.776481][T24957]  ? fput+0x154/0x1a0
[ 1699.780578][T24957]  ? fpregs_assert_state_consistent+0xb1/0xe0
[ 1699.786645][T24957]  x64_sys_call+0x832/0x9a0
[ 1699.791247][T24957]  do_syscall_64+0x4c/0xa0
[ 1699.795690][T24957]  ? clear_bhb_loop+0x30/0x80
[ 1699.800508][T24957]  ? clear_bhb_loop+0x30/0x80
[ 1699.805280][T24957]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1699.811169][T24957] RIP: 0033:0x7f45b8b8eba9
[ 1699.815577][T24957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1699.835526][T24957] RSP: 002b:00007f45b9b03038 EFLAGS: 00000246
[ 1699.841678][T24957] RAX: fffffffffffffffc RBX: 00007f45b8dd5fa0 RCX: 00007f45b8b8eba9
[ 1699.849646][T24957] RDX: 0000000000000000 RSI: 0000000000005523 RDI: 0000000000000005
[ 1699.857625][T24957] RBP: 00007f45b9b03090 R08: 0000000000000000 R09: 0000000000000000
[ 1699.865864][T24957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1699.873837][T24957] R13: 00007f45b8dd6038 R14: 00007f45b8dd5fa0 R15: 00007ffc4c66a298
[ 1699.881899][T24957]  </TASK>
[ 1699.885173][T24067] Bluetooth: hci0: command 0x1003 tx timeout
[ 1699.892162][ T7615] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1700.004789][T11561] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1700.394124][T24962] loop2: detected capacity change from 0 to 40427
[ 1700.405556][T24962] F2FS-fs (loop2): invalid crc value
[ 1700.414586][T24962] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1700.452633][T24962] F2FS-fs (loop2): Start checkpoint disabled!
[ 1700.476596][T24962] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1700.516484][T24962] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1700.598692][ T2457] kworker/u4:10: attempt to access beyond end of device
[ 1700.598692][ T2457] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1700.625955][T24972] loop5: detected capacity change from 0 to 1024
[ 1700.666694][T24972] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[ 1701.471359][T15601] EXT4-fs (loop5): unmounting filesystem.
[ 1702.092536][T24997] device xfrm0 entered promiscuous mode
[ 1702.100126][ T7615] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1702.106456][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[ 1702.211188][ T2838] Bluetooth: hci1: Frame reassembly failed (-84)
[ 1702.286626][T25013] loop5: detected capacity change from 0 to 256
[ 1702.303264][T25013] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1702.323382][T25013] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[ 1702.336823][T25013] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1702.430060][T25001] loop2: detected capacity change from 0 to 40427
[ 1702.449318][T25001] F2FS-fs (loop2): invalid crc value
[ 1702.468149][T25001] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1702.502450][T25001] F2FS-fs (loop2): Start checkpoint disabled!
[ 1702.511002][T25001] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1702.564946][T25001] F2FS-fs (loop2): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[ 1702.594792][ T2838] kworker/u4:11: attempt to access beyond end of device
[ 1702.594792][ T2838] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1703.037734][T25025] loop2: detected capacity change from 0 to 1024
[ 1703.599654][T25025] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1703.772383][T21560] EXT4-fs (loop2): unmounting filesystem.
[ 1704.113588][T24067] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1704.333713][  T577] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[ 1704.515098][  T577] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1704.550526][  T577] usb 6-1: New USB device found, idVendor=045e, idProduct=00f9, bcdDevice= 0.00
[ 1704.560435][  T577] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1704.581808][  T577] usb 6-1: config 0 descriptor??
[ 1705.474357][ T2457] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1705.575485][T25040] loop5: detected capacity change from 0 to 2048
[ 1705.655456][  T586] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[ 1705.675019][T25040] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[ 1705.820621][T25040] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[ 1705.891517][  T586] usb 2-1: Using ep0 maxpacket: 32
[ 1705.919986][  T586] usb 2-1: config index 0 descriptor too short (expected 29220, got 36)
[ 1705.960074][  T586] usb 2-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[ 1706.000425][  T586] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 81
[ 1706.022474][  T586] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1706.033982][  T586] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 1706.045172][  T586] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[ 1706.059823][  T586] usb 2-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[ 1706.070306][  T586] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1706.178514][  T586] usb 2-1: config 0 descriptor??
[ 1706.518399][  T586] usblp 2-1:0.0: usblp0: USB Bidirectional printer dev 41 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[ 1706.543778][  T586] usb 2-1: USB disconnect, device number 41
[ 1706.551839][  T586] usblp0: removed
[ 1707.252374][ T2838] ------------[ cut here ]------------
[ 1707.257968][ T2838] kernel BUG at fs/ext4/inode.c:2761!
[ 1707.265870][  T577] microsoft 0003:045E:00F9.002C: unbalanced delimiter at end of report description
[ 1707.275605][  T577] microsoft 0003:045E:00F9.002C: parse failed
[ 1707.281687][  T577] microsoft: probe of 0003:045E:00F9.002C failed with error -22
[ 1707.295755][  T577] usb 6-1: USB disconnect, device number 25
[ 1707.305243][ T2838] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[ 1707.311340][ T2838] CPU: 0 PID: 2838 Comm: kworker/u4:11 Tainted: G        W          syzkaller #0
[ 1707.320448][ T2838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1707.330541][ T2838] Workqueue: writeback wb_workfn (flush-7:5)
[ 1707.336710][ T2838] RIP: 0010:ext4_writepages+0x2ff8/0x3020
[ 1707.342438][ T2838] Code: 9d 86 ff 84 db 75 31 e8 f6 9a 86 ff 49 bc 00 00 00 00 00 fc ff df 4c 8b 7c 24 18 4c 8b 6c 24 38 e9 a2 f7 ff ff e8 d8 9a 86 ff <0f> 0b e8 d1 9a 86 ff e8 18 0c 17 ff eb 93 e8 c5 9a 86 ff e8 0c 0c
[ 1707.362046][ T2838] RSP: 0018:ffffc90000977120 EFLAGS: 00010293
[ 1707.368118][ T2838] RAX: ffffffff81e96e88 RBX: 000000c410000000 RCX: ffff888134232880
[ 1707.376130][ T2838] RDX: 0000000000000000 RSI: 0000008000000000 RDI: 0000000000000000
[ 1707.384101][ T2838] RBP: ffffc90000977490 R08: dffffc0000000000 R09: ffffed102698a89f
[ 1707.392072][ T2838] R10: ffffed102698a89f R11: 1ffff1102698a89e R12: dffffc0000000000
[ 1707.400045][ T2838] R13: ffff888134c54608 R14: 0000008000000000 R15: ffff888134c544f0
[ 1707.408119][ T2838] FS:  0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 1707.417065][ T2838] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1707.423683][ T2838] CR2: 00007f9fc77f6f98 CR3: 00000001102e9000 CR4: 00000000003506b0
[ 1707.431669][ T2838] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1707.439823][ T2838] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1707.447807][ T2838] Call Trace:
[ 1707.451172][ T2838]  <TASK>
[ 1707.454102][ T2838]  ? unwind_next_frame+0x3d5/0x700
[ 1707.459225][ T2838]  ? __cfi_ext4_writepages+0x10/0x10
[ 1707.464514][ T2838]  ? bpf_prog_b724608cae728045+0x1e/0x22
[ 1707.470144][ T2838]  ? kernel_text_address+0xa0/0xd0
[ 1707.475252][ T2838]  ? bpf_prog_b724608cae728045+0x1e/0x22
[ 1707.481490][ T2838]  ? __kernel_text_address+0xd/0x30
[ 1707.486687][ T2838]  ? unwind_get_return_address+0x4d/0x90
[ 1707.492317][ T2838]  ? perf_callchain_kernel+0x527/0x5d0
[ 1707.497781][ T2838]  ? debug_smp_processor_id+0x17/0x20
[ 1707.503170][ T2838]  ? __kasan_check_write+0x14/0x20
[ 1707.508358][ T2838]  ? debug_smp_processor_id+0x17/0x20
[ 1707.513729][ T2838]  ? __cfi_ext4_writepages+0x10/0x10
[ 1707.519019][ T2838]  do_writepages+0x3a9/0x5e0
[ 1707.523808][ T2838]  ? __cfi_do_writepages+0x10/0x10
[ 1707.528949][ T2838]  ? __kasan_check_write+0x14/0x20
[ 1707.534071][ T2838]  ? _raw_spin_lock+0x8e/0xe0
[ 1707.538889][ T2838]  __writeback_single_inode+0xc6/0xad0
[ 1707.544353][ T2838]  ? inode_io_list_move_locked+0x366/0x3d0
[ 1707.550285][ T2838]  writeback_sb_inodes+0x9b8/0x1550
[ 1707.555487][ T2838]  ? queue_io+0x4c0/0x4c0
[ 1707.559851][ T2838]  ? __kasan_check_read+0x11/0x20
[ 1707.564874][ T2838]  ? queue_io+0x382/0x4c0
[ 1707.569209][ T2838]  wb_writeback+0x3f1/0x980
[ 1707.573845][ T2838]  ? inode_cgwb_move_to_attached+0x3e0/0x3e0
[ 1707.579811][ T2838]  ? set_worker_desc+0x155/0x1c0
[ 1707.584901][ T2838]  ? __kasan_check_write+0x14/0x20
[ 1707.590018][ T2838]  wb_workfn+0x350/0xda0
[ 1707.594249][ T2838]  ? __cfi_wb_workfn+0x10/0x10
[ 1707.599013][ T2838]  ? __this_cpu_preempt_check+0x13/0x20
[ 1707.604545][ T2838]  ? tracing_record_taskinfo_sched_switch+0x80/0x3a0
[ 1707.611210][ T2838]  ? probe_sched_switch+0x63/0x90
[ 1707.616216][ T2838]  ? _raw_spin_unlock+0x4c/0x70
[ 1707.621051][ T2838]  ? finish_task_switch+0x16b/0x7b0
[ 1707.626239][ T2838]  ? __switch_to_asm+0x3a/0x60
[ 1707.631086][ T2838]  ? __schedule+0xb8f/0x14e0
[ 1707.635682][ T2838]  ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 1707.641226][ T2838]  process_one_work+0x71f/0xc40
[ 1707.646158][ T2838]  worker_thread+0xa29/0x11f0
[ 1707.650839][ T2838]  kthread+0x281/0x320
[ 1707.654892][ T2838]  ? __cfi_worker_thread+0x10/0x10
[ 1707.660017][ T2838]  ? __cfi_kthread+0x10/0x10
[ 1707.664586][ T2838]  ret_from_fork+0x1f/0x30
[ 1707.668987][ T2838]  </TASK>
[ 1707.671992][ T2838] Modules linked in:
[ 1707.676111][  T586] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[ 1707.676224][T24067] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1707.683893][ T2838] ---[ end trace 0000000000000000 ]---
[ 1707.683908][ T2838] RIP: 0010:ext4_writepages+0x2ff8/0x3020
[ 1707.683939][ T2838] Code: 9d 86 ff 84 db 75 31 e8 f6 9a 86 ff 49 bc 00 00 00 00 00 fc ff df 4c 8b 7c 24 18 4c 8b 6c 24 38 e9 a2 f7 ff ff e8 d8 9a 86 ff <0f> 0b e8 d1 9a 86 ff e8 18 0c 17 ff eb 93 e8 c5 9a 86 ff e8 0c 0c
[ 1707.727689][ T2838] RSP: 0018:ffffc90000977120 EFLAGS: 00010293
[ 1707.734067][ T2838] RAX: ffffffff81e96e88 RBX: 000000c410000000 RCX: ffff888134232880
[ 1707.742054][ T2838] RDX: 0000000000000000 RSI: 0000008000000000 RDI: 0000000000000000
[ 1707.751542][ T2838] RBP: ffffc90000977490 R08: dffffc0000000000 R09: ffffed102698a89f
[ 1707.759760][ T2838] R10: ffffed102698a89f R11: 1ffff1102698a89e R12: dffffc0000000000
[ 1707.768495][ T2838] R13: ffff888134c54608 R14: 0000008000000000 R15: ffff888134c544f0
[ 1707.776545][ T2838] FS:  0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 1707.786036][ T2838] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1707.792759][ T2838] CR2: 0000001b31f1bff8 CR3: 000000010febf000 CR4: 00000000003506a0
[ 1707.801265][ T2838] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1707.809511][ T2838] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1707.817706][ T2838] Kernel panic - not syncing: Fatal exception
[ 1707.820750][   T28] audit: type=1400 audit(1757608433.698:572): avc:  denied  { read } for  pid=85 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[ 1707.820785][   T28] audit: type=1400 audit(1757608433.698:573): avc:  denied  { search } for  pid=85 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1707.820806][   T28] audit: type=1400 audit(1757608433.698:574): avc:  denied  { write } for  pid=85 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1707.820825][   T28] audit: type=1400 audit(1757608433.698:575): avc:  denied  { add_name } for  pid=85 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1707.820855][   T28] audit: type=1400 audit(1757608433.698:576): avc:  denied  { create } for  pid=85 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 1707.820875][   T28] audit: type=1400 audit(1757608433.698:577): avc:  denied  { append open } for  pid=85 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 1707.820896][   T28] audit: type=1400 audit(1757608433.698:578): avc:  denied  { getattr } for  pid=85 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 1707.975573][ T2838] Kernel Offset: disabled
[ 1707.980073][ T2838] Rebooting in 86400 seconds..