last executing test programs:

2m59.028152229s ago: executing program 4 (id=104):
r0 = syz_open_dev$cec(&(0x7f0000002340), 0x0, 0x0)
ioctl$CEC_S_MODE(r0, 0x40046109, &(0x7f0000000100)=0x21)
ioctl$CEC_S_MODE(r0, 0x40046109, &(0x7f00000002c0))

2m58.680871732s ago: executing program 4 (id=107):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0}, 0x10)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001700)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000100)="b9ff0b078059268cb89e14f088a82de0ffff200000000002000aac14140ce000006a49e832f0", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

2m58.336295667s ago: executing program 4 (id=111):
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x1008014, &(0x7f00000000c0)=ANY=[], 0x4, 0x7d8, &(0x7f0000000a80)="$eJzs3U1oHOf5APBnFMlx5D/G5F/cYBxn7KTggKOsVolSkUOyWY3kSVa7YndVbEpJTSwHYTkJdkNrXxJTSNrSUnrqoYc019x6aym00EObU6E59NJbIKeSQr9IGwoqsx+yJGsl+Tupfz8hvbMzzzvvM6PVPDuSZjYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgEiq06XSeBK1vL5wIh2sOt1szG2xvL++X69r1nl23bgRSfEZu3fHJ3/vzvvClcX7iy9H4mD30cHYXTS749Ke/fue/v/hoX7/LRK6Xod3GJdEvFkkdfbU8vLi+WseJnZfc5db53u/vOYu/1opvs5m9bwV+VxlNkvzViOdmpwsPX58ppXO5LWsdbLVzubSajOrtBvN9Gj10XR8amoizcZONhbqs9OVWtaf+dRj5VJpMn1+bD6rNFuN+uPPR6t6PK/V8vpsJ6Zc+mYUMU8VT8QX8nbazipzaXpmaXlxYrtUi6DxzRbc033+HHxk30evf/i3pcXiCTloJUnviVkeHy+XxyefnHryqVJpuFwqr59R2iBWI2Ioooi4JU9aPkdu7gEcbsBQr/5HLfKox0KciHSTj5GoxnQ0oxFzxeM/jlwV0dOv/196/C+/32rctfW/X+UfuLL4QHTq/6Huo0OD6v+mud7OjwtxMS7F2TgVy7Eci3H+jme0zcfQja4hWfvo3/8XEfXIoxWNyGMuKjEbWaS9OWlMxWRMRilejOMxE61IYybyqEUWrTgZrWhH1nlGVaMZWVSiHY1oRhpHoxqPRhrjMRVTMRFpZDEWJ6MRC1GP2ZiOSmctZ2Kps98nNmS5/774xct/+OidYno1aHyrzSpezBVBf90iaCjK11D/V1aK1wsbI9T/u8CurRbegqM4XJ+Vfv0HAAAA/mclnd++F+f/I/FgZ2omr2VfvdNpAQAAADdR5y//B4tmpJh6MJLi/L+0SeQHtz03AAAA4OZIOtfYJRExGg91p87EUrwZi7HZLwEiYt/tThEAAAC4QZ2//x8qmtGINzoz+rdLGXD+DwAAAHzefGfQPfY/7N9jtzV/b/KrkYgYSS7Pn3gkOVcp4irn7un26zVfWV1je+ZAsre3kk4zOXxpTxIRw9XsYNK/++V/7u22H3e+Hhhe7T7oXv9Js7llArF1Ap1H8f043I05fLrT7Ol1GU66o4zO5LVsrNqoPd25JWLx2X79laVvRRSjf7c+tzeJM0vLi2Mvvbp8upPL5aL75XO9GyhedR/FLXJZ6e2BeHDzLR7pXIjRG3e0O25p7fYPdbsPbT1msnbMt+JIN+bIaLcd7S/pjrm7GHN87OnxqFT2DrWzE+3XV9ZsfS+L8dUtH1m75T/Zs8Mtfyse7sY8fPThbrNJFuV1WbxydRbltft/Z/tix1m8c/iNE//8bSPJJrbLYuIasli5J2JjFgB3ypnOXX+uVKH7OlXo05Wuov53625RrCrdgJ4dHGv/cWWU1VcZ/f5rat1wbKzuQ6sHxp1V95XoHtGPdmOOdl9PDB/YpK6UNjmiv7b02u96R/Qn3vvxT7926P2fdca9rrr+Xjzajek1cf9vBtTYYpt/sKGqvlv0eHfguK1audhfEd8491rsv3Dx0mNL5069vPjy4ivl8sRk6YlS6cnyrl7sSOcVwxaZAnD32v49dgZG9OtM8sSGs+o4vb7u3r/6LwVj8VK8GstxOo51rjaIiIc2H3d0zb8hHNvmrHV0zTu8HNvm3PJKbPnq2CQGxE6s2WNf/FGn+eSWfDsA4LY4sk0dTuLI+73QQa8QkmPbnHevr+Ubzo5jcC3fzJdv5c4AgLtE1vw4GW2/nTSb+fyL41NT45X28SxtNqovpM18ejZL83o7a1aPV+qzWTrfbLQb1f4vjqezVtpamJ9vNNvpTKOZxlArP9F55/e099bvrWyuUm/n1dZ8Lau0srTaqLcr1XY6nbeq6fzCc7W8dTxrdjq35rNqPpNXK+28UU9bjYVmNRtL01aWrQnMp7N6O5/Ji8l6Ot/M5yrNyxFRW5jL0umsVW3m8+1Gd4X9sfL6TKM511nt2NWb/+fbvb8B4LPgwsVLZ08tLy+ev76JP+0k+E5vIwCwnioNAAAAAAAAAAAAAACffRcuXjq7O5YXz+/rXwhQzL2BKwKvbeLeuOVD3LUTxTfyM5DGnZ34+jPPnB0U89wbDxzf2Xp6PynDse2lrm/vjdj18x925zw7OPjbvZ+/m7OlH0TEdXRfSTZZ9OlKd2LdYWLX7T8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDV/hsAAP//MMlb4Q==")
syz_open_procfs(0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x46443, 0x0)

2m57.952897488s ago: executing program 4 (id=116):
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x800000, &(0x7f0000000900)=ANY=[@ANYRES8=0x0, @ANYRESOCT, @ANYRESOCT, @ANYRES32, @ANYBLOB="b7ad7cd65c46a5be7840094fc88ed3944440d445ac89758d3aa4a6c77ea3e1e50196a99f88ba68f3377383de4de11c07aa5d22d9f4f3c58344d6011b6ea5ee82cf40e4ca5976370cb73c872e576f936791a0ffa5639ac237214be5926acea5405e00f1a144cf7a5240bc1e56ed617e19d6a5a268505f0012b4baf36d3a71eb34c8b67281dbba4b20c3d724ef150deff6f7d908bc72575a1f43b608e0d118", @ANYBLOB="a1fffd2e4c38a7b17fef1a78ad194301887b7711a1517cd8b4288a2fbb7d202d8c4a1809add074e6dde0703158125f2f114c49f5ee5f249d63ac0d851c212ccd8d82b7c694ead23c41f021e8bc78d646d07e3513568bb81d2179a012dcdcb845b0a58b6d5e46a177de56e3e77ed573967e4ebe299078019693ca486edbaa44e947802c7f46f1de18cf7f0e1af02964d04cc84d979855e8d3a3fda262f6a7d2b4b4849fd880c9b9af9be818ba05386754a3505e833ca0b95491ed", @ANYRES8=0x0], 0x3, 0x7cd, &(0x7f0000001780)="$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")
r0 = openat$binfmt_register(0xffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$binfmt_register(r0, &(0x7f0000000100)={0x3a, 'syz3', 0x3a, 'E', 0x3a, 0x6, 0x3a, 'E', 0x3a, '@{@$\x9a$^', 0x3a, './file0', 0x3a, [0x50, 0x4f, 0x46, 0x50, 0x43]}, 0x34)

2m57.399258387s ago: executing program 4 (id=121):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x44, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0x18, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8}, @ETHTOOL_A_BITSET_MASK={0x5, 0x5, 'g'}]}]}, 0x44}}, 0x0)

2m56.80329311s ago: executing program 4 (id=125):
syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000400)=ANY=[], 0x1, 0xf04, &(0x7f0000000f40)="$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")
rename(&(0x7f0000000040)='./file1\x00', &(0x7f0000000000)='./file0/file0\x00')
rename(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

2m55.949511166s ago: executing program 32 (id=125):
syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000400)=ANY=[], 0x1, 0xf04, &(0x7f0000000f40)="$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")
rename(&(0x7f0000000040)='./file1\x00', &(0x7f0000000000)='./file0/file0\x00')
rename(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

2m39.796287408s ago: executing program 2 (id=191):
r0 = landlock_create_ruleset(&(0x7f0000000000)={0x25, 0x2, 0x1}, 0x18, 0x0)
landlock_restrict_self(r0, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r1, &(0x7f0000000300)={0x2, 0x4e23, @local}, 0x10)

2m39.481687192s ago: executing program 2 (id=193):
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r0, 0xc0502103, &(0x7f00000001c0))

2m38.324326814s ago: executing program 2 (id=196):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000c80)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x23}}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e21, @multicast2}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x4004084, 0x0, 0x0)

2m38.108993416s ago: executing program 2 (id=197):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000640)='./file2\x00', 0x10050, &(0x7f00000000c0)={[{@errors_remount}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7}}]}, 0x3, 0x51e, &(0x7f0000000680)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
chdir(&(0x7f00000001c0)='./file0\x00')
open(&(0x7f0000001500)='./file2\x00', 0xe080, 0x0)

2m36.787233113s ago: executing program 2 (id=201):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f00000000c0)={0xfffc}, 0x8)
sendto$inet6(r0, &(0x7f00000004c0)='W', 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback, 0x8}, 0x1c)
setsockopt$inet6_int(r0, 0x84, 0x8, 0x0, 0x0)

2m35.836335432s ago: executing program 2 (id=205):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x5}, 0x38)

2m34.943308871s ago: executing program 33 (id=205):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x5}, 0x38)

5.182127337s ago: executing program 5 (id=1113):
r0 = socket(0x10, 0x803, 0x0)
write(r0, &(0x7f0000000900)="2600000022004701050007008980e8ff02006d20002b1f00c0e9f7094a51f10101033500b088", 0x26)
mprotect(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1)
recvfrom$inet6(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @remote}, 0x20000000)

4.942007475s ago: executing program 5 (id=1115):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x1c, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@newnexthop={0x2c, 0x68, 0x1, 0x2, 0x7ffffffc, {}, [@NHA_GROUP={0xc, 0x2, [{0x1, 0x4}]}, @NHA_OIF={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000)

4.626706267s ago: executing program 5 (id=1117):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000800)={0x38, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_TX_RATES={0x10, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0xc, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x5, 0x1, [0x4]}]}]}]}, 0x38}}, 0x0)

4.449130548s ago: executing program 5 (id=1119):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000400)={0x40, r1, 0x101, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_KEYS={0x4}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}]]}, 0x40}}, 0x0)

4.236252137s ago: executing program 5 (id=1121):
syz_mount_image$bcachefs(&(0x7f0000000d80), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f00000002c0)={[{@data_checksum={'data_checksum', 0x3d, 'crc64'}}, {@journal_transaction_names}, {@norecovery}, {@inline_data}, {@journal_transaction_names}, {@btree_node_prefetch}, {@background_compression={'background_compression', 0x3d, 'none'}}, {@reconstruct_alloc}, {@inline_data}, {@ratelimit_errors}]}, 0x1, 0x593a, &(0x7f0000005b40)="$eJzs3X+QXFW9IPBzu3synZlMMgnwiCCTIZD3ePA0E34V6qtnnuuvAqRiYSlhozCQCUaTkEqCQEAJLrhQgIWWlqL+gRZSi0aLKlglUiI/NmEVpVhdaguplV30D7eQJSWQpSzXeTXT9/T03Ok7t6enJyTw+VQyt8/p29/zvfeevn3P6Z7pAAAAwJvCvhu3HzjvmPf94vMjr173wZ9svj70lsfrq3GF/nR51euVIQdTd2Xp+DLbL/7hmu/9YfDS9/z83p7vvrZ3/fEbfvveIy598FNn77njm4+80nf/354vihv708kT5eTFJITqT/d/9Qt7nzh6rC4JIZST/l0hLE6WPLI4yYRY/ZcQwvq0sDRz532vnrZhbHn9Ld2T6hdl1tPf39yqaT/beeDKU8Lv/nXtDb9a9sMfdO1+YdfEKkm1oT+FsPDixsd3hRDmp//HxN4W+2PstGtCCD0NjzurIK8TWsx/ZU752HQ5L132FsSJ9y/PlEuZ9bLlqCuz7Clob7by8mh3vSILMuXsyWi28vKM9YvT5Y/T5ckzjF+O/5NQSkKlnv6mZKKPhIbjloRk/FhW6+VS/diGdPsz5SRTLmXK5a7Mdo23m3a0cpJMro/rZerj6biS1h/feK5u4vyc+reky2r6RH0tlkP2Rk3vlBv17RoX89o/TS4HQ6nhHNSsvn7g04PRm9b1JkumPGa0iXjf3rW3riive3Rff04eyb1JGj9pK/7OXy5e8Inv33xF9nW9Hv/iUhq/lImftBT/uXOefOnCm7/zjdz4t8f45bbyP/WhnhfPeezG5bn7Z3/cP5W24g8///hty468ZHdu/nfG+NW24q/e82R334GHHs7Nfyjun/ltxX/2Xe///T1PP/BCbvwQ4/e0FX/dnq1f7B44cFJu/Ifj/ultK/5zL+8+85mBgT8ONj7gpL6J+E/F+H1txb971x3vvGvRLWfnHt81cf/0txX/3BMfvGHBgQeOyzt3Jnd26pUT4M3piPQa66a03O44c7YaxgtfH6zUrpIWpP/7OtlQ5uJzrJ2FnYwPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACGEo075rx/43x/tf7GSlrvTG8+WastYPy+EZH4IYfuO4W07Nm65bPBTl1+xbcvwpsHhHYMjW3Zsu3rw9H8a3DayddPw1WP3Dr3ttNrjloSktkyOm9J29+joaKl/cl1s79+duPt3K876P38KYeio3wxUcvNfecfmu45s8jMjWT367s1XnPebM76dbld/mld/k7xGR0dHQ05e//eCv9715f1/OCmEob+bLq/Hn/2Xn01KaLxiIk6q1B1qCXUnPU3zqGed5hP3V2XDxk0jQ9Pv37HHl3O2499f88JfNlz1pb/W9m81dzta3L/zV49uKn1t7bn//2vX1iqK8nq9jnvR/o5bEfOL+6+a7u+F6XYtzNmuSs523firh5/+6TE3v7IrDFVeXja17aLt6ko7QFfylpbajS30JIsn1VfT9eMRj49buWPz1pXbr975to2bhy8buWxkyztWnb7qzKEzzjxj5fiWr+zw9sf2/77F7T84/WnRZ3b9OP5srT8V5VW0P8byKt4fjRnlPf96zv/CV95xx2Pn1SqK+nlcu34+SZc9Y8d5VWjob1P3VbPtKtoPIYTBZvvhpVfODkf/j403FJ2HGo9M48+MZPXoE8v//O2zvrX0n2sVB+U835hQm+f5etYT+Yzvr2p6PEYP0f3bHcrpdvU2zWvVE4913brvT5+t5zdvXrhqeMeObatqPxekmS5Ijm2aV7Y2btey8Z/lkO6WUO+mTfrrmK5Qyy97/oyrZ/dqb3pfb7Kk6XZlxfv2rr11RXndo/vy9nRyb63F+aGvtkzemrPmpswDy/WEm7V/qD7/ivrHwAe+df9H7//R6VP6x6m1n0XbleRs1w+fvvsr3/3Sf/xR57brA//yZP+f/+cnV9QqDpfzSj3rNJ+k8bxyaghFz79lofl25D7/Ss23p+j5l21nYv3m8QYz5d5Qbuv5eupDPS+e89iNy3Ofr/tbfb5eO6lULni+Hir9J/v8SiqT85i759ekjpKsHv35TUfseuS6NcfUKor6dX3tZv36tBbGHznb9bMLnxm4fPA//PfOnTe+90/3XfTb4dWfq1W0f9xjLp057tV0/1Zz9m896zjubNy/b7/08k3ra/WH7vVvuiwY/8RTyfard356eNOmkW3bW9uuVl9PYzvZvdzu62k8uy0p2K7SlO2auxut7K9Wn28x//Vt76/Jz7fekLT1urDzl4sXfOL7N1/RP+VRaUMXl9L4pbbiP3fOky9dePN3vpEb//YYv9JW/OHnH79t2ZGX7M6Nf2eSxq+2FX/1nie7+w489HBu/KGY//y24j/7rvf//p6nH3ghN36I8Xvb2/8v7z7zmYGBP+bGfypJ2xm7RgrhvldP21ArJ6Erfb7FPLom5RWy5SRTLmXK5cZyqTbXWm+gnCST6+N6af3xDbk087Gc+ngVVl1aW74WyyF7Y/r6Q02p4dzfrL7oOhUA4I0uvv8fr0Hj+/8j6YVS/kwDTJjtOGxpTtw4DpuYz5k36f6lafz4+DgPOPD2MDS2vH6wdqE/0/cR4vMhO88Z2znphMkx2p3nLJp/X54px7xq8+WVhnFoauq4phJamH+f2s708++ZzS+eHx+8aUpagw3zVtnj15XOmDX7vEMm38pYhLz+kZ0Xi5/nGFgY1oy312L/yH6OJh6H7OdoYjvHZE6c7X6OZrb9I6Y9Tf8YT7n4/Y2pxy9Ms38njl/zaNnjN4PjXR1bf67fn+3AvGHTU9rBmzec2/fDzEvmxE+fYHM8bzh2c1bzhrE+bkelxfnEj+bU1561u+rltuYTyxM3Y177p8nlYDCfCLxRxfF/fI0YG/+PXYD/v8x6Rdeh2avGGC/3c0Ll5vkUjTumfk6vp63X8XV7tn6xe+DASbnXOQ+3+rmfrZNKPQWf+ynajysy5cL9mDNBUzTey7ZTtN+zn8voDX1t7fe7d93xzrsW3XJ27n5fU3shLd7vX5lU6ivY74fBeKF5fOOFN8V4Ya7nz163zzGkH3yaq/HIR3LqZ/r5hp4pN+rbNe6wG490Hdy8AIDDRxz/198/S8f//yuukF5HFI1bT86UY7zccWvO9UneuPVD6fKqzPq96W9UzPS6+dwTH7xhwYEHjssdt9zZ6jj0P00q9ReOQ2c3bs4dR6zpzOfFc8cR9XHW7MaJufnXx4mzG6fnxq+P02c3js7dP/Vx9OzmAXLj1+cBDvdxbsF8XaaxWGx1vu4NO45Of312rsbR5+fUz3Qc3TvlRn27xhlHAwC8vuL4P17GxfH/Y5n1Zvs+e+64oEPX7dm/B1KP/9TBGlfO9bhvrsetcz2un+t5icN9XDzX80JzO0/2ph8Xp40aFwMAcCiL4//5aTl//D+78Umz8VvXpPGJ8XnT+Mbnh8j4/HCf/zL+9754MeN/AIA3tjj+j7/2GP/+339Jy9m/W2+cnhPfON04fbr+0/I4vfPzbMHnAF7feYD5E+ubBwAA4PXQNT5Smvp79h9Pl9nfs8/7vfwLc9ZvVSW9PL5kx7aRkYuu2Lp+eMfIRVsuXz+y/aIrt23csWNkS2292Y4bc8ct6bixK1TS/dF8vey4bVH69xAW5fw9hOz6Meyx4zem/j2EbLPzC/6OwMTxay3fvONXmmb9Zv0j73jnxf9YzvpR/fhf+slTL9qw/aKNWzbu2Di8aePOkcnrjY1ae2bwvZlxt8zo+1IzP6Yozfz7OzuTR2lKHl3p/sj7fvYkk8fiNJPFed9/kJP3L/7blz9z4uhf7wlh6KjyW2e1/5LVo//5gpEP7dj3m61j+Zemzb++ZppX0feVZteP21PZdPn2HadsuPyKLdlvlGxPnM8o1ctzNJ+RPv3LLc5PrMupn+nnFMpTbhyaWp6fAABgkvj+f7yeje8ffim9gIr1rY/TZ/f+ce44fai1cXr2e8mKxunZ9eP2tjpOr85ynJ5tv2ic3mz9ZuP0vHF3XvyP5Kw/U633k9l9ziO3n1zcWj/Jfp9BUT/Jrt+8n5Ry+0kyy36Sbb+onzRbv1k/yTvuefE/nLN+ntb7w+w+l5PbH25vrT/8Y6Zc1B+y68/0vFGaZX/Itl/UH5qt36w/5B3fvPjn5azfqsn9Y6xjjPeLkYuuvHzbpxvWm+vvv5h9fnP7/R/taj3/uf3c19znP7efK5v7/Gf3ubLc/J+a3UxY6/nP7fe7tOugzdemHzYr+vxZ0Tzu2pz6mc7jzpty49BkHhdeP3H8H9/uieP/W9Jlp98GOvy/J833mDWN36HvMSu6jvF6ni6bvWgeAryeAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALSmu7J0fLnvxu0Hzjvmfb/4/Mir133wJ5uv/4drvveHwUvf8/N7e7772t71x2/47XuPuPTBT529545vPvJK3/1/e74wcP/4z8rJabEaQvJiEkL1p/u/+oW9Txw9VpeEEMpJ/64QFidLHlmcZCIM/SWEsL6e5+Q773v1tA1jy+tv6Z5UvygTJLtdobcc82nMM4SrCreIw1A17Wc7D1x5Svjdv6694VfLfviDrt0v7JpYJak29KcQFl7c+PiuEML89P+Y2NuWxgenyzUhhJ6Gx51VkNcJLea/Mqd8bLqcly57C+LE+5dnyqXMetly1JVZ9hS0N1t5ebS7XpEFmXL2ZFRTaTt+Xp6xfnG6/HG6PHmG8cvxfxJKSajU09+UTPSR0HDckpCMH8tqvVyqH9uQbn+mnGTKpUy53JXZrvF2045WTpLJ9XG9TH08HVfS+uPHcyznbvf5OfVvSZfV9In6WiyH7I2a3ik36ts1Lua1PzeTg6PUcA5qVl8/8OnB6E3repMlUx4z2kS8b+/aW1eU1z26rz8nj+TeJI2ftBV/5y8XL/jE92++Ymle/ItLafxSW/GfO+fJly68+TvfyI1/e4xfbiv+qQ/1vHjOYzcuz90/++P+qbQVf/j5x29bduQlu3Pzv7MW/+lQbSv+6j1PdvcdeOjh3PyH4v6Z31b8Z9/1/t/f8/QDL+TGDzF+T1vx1+3Z+sXugQMn5cZ/OO7/3vb6z8u7z3xmYOCPg3nxn4rx+9qKf/euO95516Jbzs49vmvi/ulvK/65Jz54w4IDDxxXzYt/Z6deOQHenI5Ir7FuSsvtjjNnq2G88PXBSu2ab0H6v6+TDWWMtbNwDuMDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPDG9OtrT//4Be/+8NpKEkKSs85oE/G+8rzVqwfbaHf4+cdvW3bkJbsb65a2EQcAAAAoFsfhpXpNNSwNVybzw7FN149zBMfGUjK5PjuHEONk5wjajVPqUJxyh+JUOhSnq0Nx5nUoTneH4lQL4lRDa3HmTxOnMtYrWsynZ9p8Wo/T26E4CzoUp6/9OE+sbYizsCBOnP8rymdRh7arf9o4rffDxR2Ks6RDcY7oUJwjOxTnqA7F+bs24sxrEufoDuWTnVOeaT/sS9c8Ji/O+I1yYZxKUq7f0Ww+/ei0neNm2U5vQTt9Ra/HLbYzv8V2Tsg8rjTDdqottvP3s2wnabGdf5xlO6WCdmK/vSqbX2wnlqZvpxLjXD27OPXn0c4OxbmmQ3Gu7VCcz3Yozuc6FOe6WcYBaFUc/0+M9/pDd+WfQ096xsnOAsTx7rLxn1Nf7/JOSDHeWzP184riZQfqmXjLZppfdgIhE295pr5rUrxKfTwyTbxqY7wVmTsLtzc7oZDJ7+RMfXdRvOzEAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADMoV9fe/rHL3j3h9eGJIz9a2q0iXhfed7q1YNttLt37a0ryuse3ddY111pIxAAAABQKI7Du+o11dBdWRW6k3mT1qum8wDVtFzury0HFoY1Y8tksDRe7kkWT/u4Svq4lTs2b125/eqdb9u4efiykctGtrxj1emrzhw648wzVm7YuGlkqPYzhO6CeCGE8emH7Vfv/PTwpk0j27bXKrP5L00ftzQtJ+njBt4ehsaW16f5LylorzSlvbm7UXz0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPg3du0uRM6rjAP4eWdmZ6bbxqz0axqazZCPErVoEreSaum+IFhok5ClILPVtQSbYHHThDaRWMc2YFsTFKElECK5MBKLrcWbftgi9oNApEYDbgzSFu2FXiitVtKSC0kZye6c2ZnZmcw6lqaNv9/FvDPnPOc875mLhf+7AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMD7a6o6MlEZHRsfTEJIutTUOohz2Xyalvvo++Xntv+gMHx6ZfNYIdfHRgAAAEBPMYcPNEaKoZDLhmy4avrT0tA0EWZzPwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8P9nqjoyURkdG784CSHpUlPrIM5l82la7qPv628/8ZlXhof/1jxW6mMfAAAAoLeYwzONkWIohWVhILmqpS4+G1jUtr69Lu6zeJ517c8OutUtm2fdNfOs+1iPug31664AAAAAH34x/+caI0OhkFvQNf/3yvWxbklbXbZ+7ee3AgAAAMD/Jub/QmOkFAq5UiOvzzfvL22ri+t7/d8+rl/RZX2v/+evr1/9nx4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPjymqiMTldGx8WwSQtKlptZBnMvm07TcR981zw/+45YjDy5tHivk+tgIAAAA6Cnm8NnoXQyF3GAYCBdP5/7hmw4+9cWnnhkJIczE/Hw+7Nq0Y8fda2ZeY93qY0cGvn/0zW/PqVs983reDggAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALxnpqojE5XRsfGLkhCSLjW1DuJcNp+m5T76vva5L/zlsZPPvtE8VupjHwAAAKC3mMNns38xlEI+5MMV05+as/5Zmbb13Z4ZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABeOe75579c3TU5uvtsbb7zxpvHmfP9lAgAA3mtLQhJq/6UrN57vuwYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4IpqojE5XRsfFiEkLSpabWQZzL5tO03Eff9LnjhQWnn3+xeazUxz4AAABAbzGHz2b/YiiFgTAQLp/+1OmZwHT+H3ofbxIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4QJmqjkxURsfGFyQhJF1qah3EuWw+Tct99H1094HPHl74vZubxwq5PjYCAAAAeoo5PN8YKYZC7uOhEK6uf55sXZBk69fOzwVm121vWTY473XVlnXZea/b03ayXP00M+uKcb+hmWtjXXnuunLTulJotC+3rAv7WlYt6HGfAQAAAM6jmP8LjZGhUMgVmnLuT1vqh+RcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKCLqerIRGV0bDxJQki61NQ6iHPZfJqW++h7728/eslXfrZ3Z/NYqY99AAAAgN5iDp/N/sVQCovDR8Li6dwfhlrrY90/K2cOP/Kvv64MYdUVJ4Zz7dv+KL759Ws3vtD+EkKmtToTwsJ6v6RLv9/8/pHs8tqZx0JYdXn26jn9wrn7tW6Z1p6ubF6/4+iJ7T2+HAAAALhAxPw/0BgZCoXcXV3zf0zePfJ/w3QAX/iN3b+4rP5aT+RtKzJD9X6ZLv0+v/yJP69Y+/c3z+b/c/X71IGthy9raTgz0iZJa6Nbd244cd2hTDz1TP9sW//4vXzpW2/8e8uuh8/M9C+GYn18US7Xof/c1zYXpbXJzP7xde/ur7b2z3U5/4O/e/Hkrxbtfeds/7eXDDb6X3OO85+7/+CtD+27/sCRDa39QwjlTv3feufmcOUf73yg/fyDbRs3f/PNr22StHZs6alDaw+Wbmjtn7T1j9//z08+uu8nD3/3mdg//lZk5bL59s+09X95z6W7X7p/46LW/pku53/htleGt5W/84f289/Rsmuu613MPf/j1z55+6ub0vvapwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4sU9WRicro2HgmCSHpUlPrIM5l82la7qPv67ccf+u2vT/+YfNYqY99AAAAgN5iDp/N/sVQCvmQD4PTuf/pyub1O46e2B6GZmaT+jU3ue2eHZ/Ysm3nXXecpzsHAAAA5ivm/1xjZCgUcsvDQD3/j27dueHEdYcyMf9nYv7fcufk5lWhUffynkt3v3T/xkWN5wQhTP8soHi27tOzdTfdeHzo1J++tqJj3ZrZumNLTx1ae7B0Q6wLzXWrQ+P5xOPXPnn7q5vS+xr311z3ya9um6w/noj7Dt760L7rDxzZ0DhH/TpY3zfWTWb2j697d3811mXr12L93AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAXFPVkYnK6Nh4yIaQdKmpdRDnsvk0LffRd93yXz5wyelnFzePFXJ9bAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB/2IEDAQAAAAAg/9dGqKqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqsJ+/YTGUcVxAH9vd2O22aRNWsGomKZVUerBoiCiFxUVaUUKnipFqq09iIIgotSDqbRiqYoXweqliApqlIKCjcXSKqn4r3jxoIJC9SCUYkAbigcj2bzZbiYZ106qoP18YHh5b2a+85t5b2ezAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/Kd21wWZ7eMfDk3dccMtnT9534onbPnhw22WPv/nT8KabPt3b89rJ8c0rtnx787JN++9fM7b75UO/9b33x9GOwY/NNKtStx5CPB5DqH848cJT45+fNz0WQwjV2D8SwkBcemgg5hJW/x5C2Nyqc/bOd09cvWW63bare9b4klxI/r5Co5rVM6N/dr38v9TTOts6+egV4fsb12//cvk7b3eNHhs5dUist62nEBZvbD+/K4SwKG3TstU2mJ2c2nUhhJ62867tUNfFf7P+Kwv6F6b2nNQ2OuRk+1fm+pXccfl+pivX9nS43kIV1VH2uE56c/38y2ihiurMxgdS+35qV51mfjXbYqjEUGuV/0A8tUZC27zFEJtzWW/1K625Den+c/2Y61dy/WpX7r6a100LrRrj7PHsuNx49jqupfEV7e/qedxZMH5+auvpg3oy64f8HzMac/5o3VdTVtfEX9Tyb6i0vYPmG29NfJqMRhprxKVzzpmaozaV7Rtf/8yl1Q0fHe4vqCPujSk/nkb+VCt/6xcDvXe/tfORwaL8jZWUXymV/8PaI7/ctfOVlwrzn8/yq6XyrzrQc3ztxztWFj6fiez51Erl33P0k2eXn3vv6Hxz3czfk+XXS+XfMHaku2/ywMHC+ldnz2dRqfzvrr/1xze+3nesMD9k+T2l8jeMPfRc99Dk5YX5B2c+Co3mCi2xfn4dveaboaGfh4vyv8qef988+bFj/usju697dcmuNYXrc132fPpL1X/7Jfu3907uu6jo3Rn3nKlvToCz07L0P9bTqV/2d+ZCtf1eeHG4NvMN1Ju2vjN5oZzp6yz+B/MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4kx04IAEAAAAQ9P91OwIFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4KgAA//+GejGG")
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fchown(r0, 0x0, 0x0)

2.053817334s ago: executing program 5 (id=1146):
r0 = open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$setlease(r0, 0x400, 0x1)

1.750904189s ago: executing program 0 (id=1150):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@base={0xa, 0x4, 0xfff, 0x7, 0x88, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000e41621eb70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r1}, 0xc)

1.621684602s ago: executing program 0 (id=1152):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x18, 0x4, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @masq={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x6c}}, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000600)={@local, @random="6a2ddcf6177a", @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x2, 0x6, 0x10, 0x0, 0x0, 0x0, {[@generic={0x0, 0x2}]}}}}}}}, 0x0)

1.424356318s ago: executing program 0 (id=1156):
r0 = socket$kcm(0x1e, 0x5, 0x0)
sendmsg$kcm(r0, &(0x7f00000014c0)={&(0x7f0000001540)=@tipc=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x80, 0x0}, 0x20000004)
recvmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000001c0)=""/5, 0x5}], 0x1, &(0x7f0000000200)=""/17, 0x11}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000080)="ff", 0x1}], 0x1, &(0x7f0000000240)=ANY=[], 0x11f0}, 0x0)

1.285370897s ago: executing program 3 (id=1157):
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000e00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @multicast1}}}], 0x20}}], 0x1, 0x0)
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x7fffffff}, 0x10)
sendmsg$kcm(r0, &(0x7f00000016c0)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="2e00000022008102e00f80ecdb4cb9020a", 0x4a}, {&(0x7f0000001700)="0c74c75350f4a590e15c61c7942348092734fe1863473bbce6798a60e9", 0x1d}], 0x2, 0x0, 0x0, 0x10}, 0x0)

1.182064513s ago: executing program 6 (id=1158):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth1_macvtap\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000c00)=ANY=[@ANYBLOB="5000000010000305000000000000020000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800b0001006d61637365630000180002800c0001000000000000000000050009000000000008000500", @ANYRES32=r1], 0x50}}, 0x0)

1.13166671s ago: executing program 0 (id=1159):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_DATA_DIR(r1, 0x0, 0x1, &(0x7f0000000500)=0x1, 0x4)

1.130794649s ago: executing program 1 (id=1160):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=@newlink={0xd4, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0xac, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x9c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x3}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x4, 0x2}}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xa54, 0x18}}, @IFLA_VLAN_INGRESS_QOS={0x1c, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x4, 0x800}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x6, 0x6}}]}, @IFLA_VLAN_INGRESS_QOS={0x58, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x10000, 0x10010}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0x68}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0x95ee}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x3, 0x8001}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xb22, 0x1}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xae7f, 0x1}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x80, 0x6}}]}]}}}, @IFLA_LINK={0x8, 0x5, r2}]}, 0xd4}, 0x1, 0xba01}, 0x0)

1.075774034s ago: executing program 3 (id=1161):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x33, &(0x7f0000000000)=0x7, 0x4)
setsockopt$inet6_int(r0, 0x29, 0x42, &(0x7f0000000040)=0xf2b, 0x4)
getsockopt$inet6_buf(r0, 0x29, 0x6, &(0x7f00000000c0), &(0x7f00000000c0))

1.009480609s ago: executing program 0 (id=1162):
r0 = epoll_create1(0x80000)
r1 = openat$random(0xffffffffffffff9c, &(0x7f00000000c0), 0x3, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000300)={0x200f})
pselect6(0x40, &(0x7f0000000100)={0x0, 0x0, 0xffff, 0x0, 0x0, 0x10, 0x8000000000000001, 0x80}, 0x0, &(0x7f0000000240)={0x1d, 0x2}, 0x0, 0x0)

906.901162ms ago: executing program 6 (id=1163):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x0, @any, 0xfffa}, 0xe)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
setsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f00000000c0)={0x4, 0x8}, 0x2)

895.660467ms ago: executing program 3 (id=1164):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'jitterentropy_rng\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000000180)=[{{0x0, 0x0, &(0x7f0000002940)=[{&(0x7f00000003c0)=""/9, 0x9}], 0x1}, 0x2000}], 0x1, 0x0, 0x0)

873.586623ms ago: executing program 1 (id=1165):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f00000000c0)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f00000009c0)={@host})
ioctl$IOCTL_VMCI_DATAGRAM_RECEIVE(r0, 0x7cb, &(0x7f0000000980)={&(0x7f0000000100)={{@hyper}, {}, 0x400, "1710194bd1372be65d5d1be456d243acca17147843aa07e4676b6e5e13d51fe3b442ddd575b7ea5ad5807b65f6ffac80b65547d4a62858f758a3c310e491a45dff1707cfb8288781aa397d3e28b552db90c3fd57f459b4e3da5126b8963a25e860e40c989341b47e8b95063656f91660d61ae86764cd5302c60b77fff946ee5d5b95a65deb8a11af66212c0a3802da8734cf65656145658ef881a33b771b9134fe2e1407a2ffeb9ae90b1cd06a1e2438c7cd1667c0d3dc53f15fd720ed9adc68ca0bf8cb3a5f3e8f2b48ec05a30d52182f3be35dc35ddad91cd4123051996b766cf7f2791773011420d79b507bba3f90ba48eb066b68d56570e96cdac68675271dc756c582705ced77c094ae8f12a4f268fd1c5ed18f1264e27fcc5d2cced8dc50569b03dffbb749caffa1748c5f7c5fc60a7264e04c53bef6c2cba5ed946d420a97a2fa74cb564f80206f75b408bb69c27ab96ae43936e5c497bc56409f13221e4736c3229193f32dfeae901c32027c5941b73beee853b0fcccfb97d02b8675ca92bfe97adcf83d49f8a405dc9be0cfbaa239a73b40b37ee1c03ae15bf08b05d594d3ae80c131b6a0f958a0b5e09653d5d541c29fa4203671c3e8d3898a5618d7d05e7742dad4a6696ae13deef6c402e2afea4acf40d2c14ed5092a438170f1681d4b97eab16fcbfa86d7a361c02f89069d58c2b32c58d5ef7babf62b97c7ac97e413f53bea59cdbf72fc1c14718b1fa6306da64c9700df190c356a9e972d9e63cc9b0383cc8cab28a02a4b3d4f8b96d485dedb3e6a3f4e40d110676dc8de884d3f915b04f220072d4d68697b106faa3577b5011f3144f235439f1aac9f59d37adcc58ba20f209442df7c1328834bdd3933c0796e2975fa5e9b5cc2653b15b7be37172df2d84329307831f2977cac3cca11676512d2d351e00d09889681f9e0e6c172f2d0c3c15eb75ffe6297aecc1cc9d3ebc80735a50b07c7b1eedadbc9f637e26dd4035322abcb77f93fcd9feb2c33bf37c34595dc9bb2e16ada83dc541f98880dd6d4e0ef38e27adf412d1e08a5c1ce83acdc4f40674d9dc14fbff2f42eb71ba5fac19fc742e00c4c15154fcf8f79ad4cd4c8183d4b2d9693eab7f0da562a9ffba7058b272b280611d877f0b05dda462a5e605ea5a8803ad17ce5a9c5f88ec6fef54f407f5f26dc218b21ac5899d03946fdc4d95791f09a272ef0f1388d718c3d38727b1fbbb2c9f22f2d5091c2d0963b971ab47402130e3ca8e201609c34d4379f75257240f9ff0fe921e29bdcc1319bf77a469739ebfc1d1f8605bfb6d46c0cdc31692254715082be9152eabb5a9f2c562c06a985f573b63f02aad0eb63ff970e5a9a28d209b657cd20dc572238ef1d5bbc57041f77c70fca6b5314b6bff2a9b1a03ed2269456e6467664ac0ec2d2304916885fd1f91d5c3b32b924de"}, 0x418})

770.892968ms ago: executing program 6 (id=1166):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000100)={@in={{0x2, 0x0, @local}}, 0x0, 0x0, 0x23, 0x0, "3a3bd6d1586eebc5abc69bff3508bd75462643dcf7439f3f03d934049f68b4be932558e5164611dbdf6fc60fa9af0d8469d28a4dba103bbd8849c71bf635b7ea0bfadad2459eef720e4e63fbe16f01a7"}, 0xd8)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000540)={@in={{0x2, 0x4e20, @remote}}, 0x0, 0x0, 0x4a, 0x0, "2bc98c2ebaef50dbfa5260f773b780148afd86db86031696c8613b1b1ab3014f76e0a997a98b1bc30889102d5757a6421fb8591a638f75db21cc79695f1b7c8a1e7ac2cf62f7704ada1008ab775820b0"}, 0xd8)
connect$inet(r0, &(0x7f0000000800)={0x2, 0xfffd, @loopback}, 0x10)

733.372389ms ago: executing program 1 (id=1167):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000003900000008000300", @ANYRES32=r2, @ANYBLOB="24005a802000018014000300040010000700e70000000900040004000500040017"], 0x40}, 0x1, 0x0, 0x0, 0x8040}, 0x40000)

552.139829ms ago: executing program 3 (id=1168):
syz_emit_ethernet(0x2a, &(0x7f0000000100)={@broadcast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x2, @remote, @remote, @remote, @remote}}}}, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f0000000100)="f257a8ea7bc273dfaeab96850806", 0x2a, 0x0, &(0x7f0000000200)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @link_local}, 0x14)

541.220536ms ago: executing program 6 (id=1169):
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000080)={0x18, 0x0, {0x1, @empty, 'bond0\x00'}}, 0x1e)
sendmmsg$sock(r0, &(0x7f0000001dc0), 0x213, 0x0)
connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0x0, @local, 'dvmrp1\x00'}}, 0x1e)

528.092916ms ago: executing program 1 (id=1170):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
bind$netrom(r0, &(0x7f00000000c0)={{0x6, @rose, 0x7}, [@bcast, @default, @netrom, @bcast, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @default]}, 0x48)
r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r1, &(0x7f0000000380)={{0x6, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x2}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}]}, 0x48)

408.028908ms ago: executing program 1 (id=1171):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)={0x40, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x30}]]}, 0x40}}, 0x40000)

339.035718ms ago: executing program 3 (id=1172):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000007c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000240)={'wg0\x00', <r2=>0x0})
sendmsg$ETHTOOL_MSG_EEE_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)={0x20, r1, 0xab2bf658e72548f3, 0x0, 0x0, {0x12}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}]}, 0x20}}, 0x0)

282.777799ms ago: executing program 6 (id=1173):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000200)={'wg2\x00', <r2=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="3c020000", @ANYRES16=r1, @ANYBLOB="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", @ANYRES32=r2], 0x23c}}, 0x0)

124.857658ms ago: executing program 1 (id=1174):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
getuid()

116.264567ms ago: executing program 3 (id=1175):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000380)=[@text64={0x40, 0x0}], 0x1, 0x40, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x22000, 0x1000, &(0x7f0000000000/0x1000)=nil})

45.572283ms ago: executing program 0 (id=1176):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x5, &(0x7f0000000080)={&(0x7f0000000880)=@bridge_setlink={0x270, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x8, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x3, 0x0, 0x1, {0xc, 0x5, 0x0, 0x1, [{0x8}]}}]}, @IFLA_VF_PORTS={0x10, 0x3, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, [@IFLA_PORT_REQUEST={0x5, 0xc}, @IFLA_PORT_HOST_UUID={0x14, 0x5, "714abbd2547de97cbbf6efb226f19bf9"}, @IFLA_PORT_PROFILE={0xd, 0x2, ':(\x8e^[[Z@\x00'}]}, {0x60, 0x7, 0x0, 0x1, [@IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "293a02149f3b75a67093c28fd6f55a23"}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "e48f01e49713f0c2d839f940d9f088d8"}, @IFLA_PORT_REQUEST={0x5}, @IFLA_PORT_PROFILE={0x13, 0x2, 'bridge_ilave_0\x00'}, @IFLA_PORT_PROFILE={0x7, 0x2, '):\x00'}, @IFLA_PORT_REQUEST={0x5}, @IFLA_PORT_VF={0x8}]}, {0x18, 0x1, 0x0, 0x1, [@IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "4d2906d0880fc8acc30fe2020f984967"}]}, {0x50, 0x1, 0x0, 0x1, [@IFLA_PORT_HOST_UUID={0x14, 0x5, "a1085e7df341b9dc3d8008a2fe5bdaad"}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "9c7e472c916020fe41bcc5aa8f56c947"}, @IFLA_PORT_HOST_UUID={0x14, 0x5, "80ab8be51421cfa3c9e5cbfe8217e0af"}, @IFLA_PORT_VF={0x8}, @IFLA_PORT_VF={0x8}]}, {0x60, 0x1, 0x0, 0x1, [@IFLA_PORT_REQUEST={0x5}, @IFLA_PORT_REQUEST={0x5}, @IFLA_PORT_VF={0x8}, @IFLA_PORT_REQUEST={0x5}, @IFLA_PORT_PROFILE={0xc, 0x2, 'syztnl0\x00'}, @IFLA_PORT_VF={0x8}, @IFLA_PORT_PROFILE={0x13, 0x2, 'bridge_slave_0\x00'}, @IFLA_PORT_HOST_UUID={0x14, 0x5, "e078d277f38ed3a40a448f3f6b6763e8"}]}, {0xe0, 0xc, 0x0, 0x1, [@IFLA_PORT_VF={0x8, 0x25}, @IFLA_PORT_REQUEST={0x5}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x19, "03dd96197aca85b64424a37dbda7b694"}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x7, "eb052fcd3dd4d3e8bbcbf1de857c0e1c"}]}, {0xa4, 0x18, 0x0, 0x1, [@IFLA_PORT_VF={0x4}, @IFLA_PORT_VF={0x8}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "b2112a97bf9704ee57915340334b8271"}, @IFLA_PORT_HOST_UUID={0x14, 0x5, "e8635392a70f36f95f4b9b352920ebec"}]}]}, @IFLA_GSO_MAX_SEGS={0x8}, @IFLA_AF_SPEC={0x60, 0x1a, 0x0, 0x1, [@AF_INET6={0x20, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5}, @IFLA_INET6_TOKEN={0x14, 0x7, @local}]}, @AF_INET6={0x34, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x0, 0x7, @local}, @IFLA_INET6_TOKEN={0x14, 0x7, @ipv4={'\x00', '\xff\xff', @broadcast}}, @IFLA_INET6_TOKEN={0x14, 0x7, @mcast1}]}, @AF_BRIDGE={0x4}, @AF_INET6={0x0, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE, @IFLA_INET6_TOKEN={0x0, 0x7, @remote}, @IFLA_INET6_TOKEN={0x0, 0x7, @loopback}, @IFLA_INET6_ADDR_GEN_MODE, @IFLA_INET6_ADDR_GEN_MODE, @IFLA_INET6_TOKEN={0x0, 0x7, @private2}, @IFLA_INET6_TOKEN={0x0, 0x7, @private1}]}]}]}, 0x270}}, 0x0)

0s ago: executing program 6 (id=1177):
r0 = timerfd_create(0x0, 0x0)
timerfd_settime(r0, 0x3, &(0x7f00000000c0)={{0x0, 0x989680}, {0x77359400}}, 0x0)
clock_settime(0x0, &(0x7f0000003c80)={0x77359400})
timerfd_settime(r0, 0x3, &(0x7f0000000000)={{}, {0x77359400}}, 0x0)

kernel console output (not intermixed with test programs):

expected cc 0x0c23 length: 249 > 4
[  148.461283][ T5835] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  148.482833][ T5835] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  148.680382][ T6637] loop5: detected capacity change from 0 to 64
[  149.277009][ T6634] loop0: detected capacity change from 0 to 32768
[  149.357831][ T6634] MetaData crosses page boundary!!
[  149.383350][ T6634] lblock = 622900, size  = 28672
[  149.389912][ T6634] CPU: 0 UID: 0 PID: 6634 Comm: syz.0.215 Not tainted 6.14.0-rc1-next-20250205-syzkaller #0
[  149.389941][ T6634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  149.389954][ T6634] Call Trace:
[  149.389974][ T6634]  <TASK>
[  149.389982][ T6634]  dump_stack_lvl+0x241/0x360
[  149.390015][ T6634]  ? __pfx_dump_stack_lvl+0x10/0x10
[  149.390039][ T6634]  ? __pfx__printk+0x10/0x10
[  149.390092][ T6634]  __get_metapage+0x9cf/0xdc0
[  149.390139][ T6634]  dtReadFirst+0xe0/0xc50
[  149.390190][ T6634]  jfs_readdir+0x7ef/0x3c50
[  149.390270][ T6634]  ? __pfx_jfs_readdir+0x10/0x10
[  149.390301][ T6634]  ? __pfx_lock_acquire+0x10/0x10
[  149.390367][ T6634]  ? down_write+0x18c/0x220
[  149.390388][ T6634]  ? __pfx_down_write+0x10/0x10
[  149.390425][ T6634]  ? __pfx_jfs_readdir+0x10/0x10
[  149.390453][ T6634]  wrap_directory_iterator+0x91/0xd0
[  149.390487][ T6634]  iterate_dir+0x5a9/0x760
[  149.390525][ T6634]  __se_sys_getdents64+0x1e2/0x4b0
[  149.390569][ T6634]  ? __pfx___se_sys_getdents64+0x10/0x10
[  149.390594][ T6634]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  149.390627][ T6634]  ? __pfx_filldir64+0x10/0x10
[  149.390658][ T6634]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  149.390690][ T6634]  ? do_syscall_64+0x100/0x230
[  149.390715][ T6634]  ? do_syscall_64+0xb6/0x230
[  149.390739][ T6634]  do_syscall_64+0xf3/0x230
[  149.390759][ T6634]  ? clear_bhb_loop+0x35/0x90
[  149.390793][ T6634]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.390829][ T6634] RIP: 0033:0x7f38ff98cde9
[  149.390852][ T6634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.390869][ T6634] RSP: 002b:00007f390070a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  149.390888][ T6634] RAX: ffffffffffffffda RBX: 00007f38ffba5fa0 RCX: 00007f38ff98cde9
[  149.390902][ T6634] RDX: 000000000000009a RSI: 00002000000000c0 RDI: 0000000000000005
[  149.390915][ T6634] RBP: 00007f38ffa0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  149.390927][ T6634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  149.390938][ T6634] R13: 0000000000000000 R14: 00007f38ffba5fa0 R15: 00007ffc7193f148
[  149.390979][ T6634]  </TASK>
[  149.390987][ T6634] bread failed!
[  150.206075][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  150.230164][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  150.254319][   T11] bond0 (unregistering): Released all slaves
[  150.581938][ T5141] Bluetooth: hci4: command tx timeout
[  150.880115][ T6661] loop1: detected capacity change from 0 to 512
[  150.921314][ T6661] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  150.999520][ T6661] EXT4-fs error (device loop1): ext4_orphan_get:1415: comm syz.1.225: bad orphan inode 131083
[  151.075162][ T6661] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.278403][   T29] audit: type=1326 audit(1738739759.743:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6672 comm="syz.3.227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe08b8cde9 code=0x7ffc0000
[  151.366509][   T29] audit: type=1326 audit(1738739759.773:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6672 comm="syz.3.227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe08b8cde9 code=0x7ffc0000
[  151.409582][   T29] audit: type=1326 audit(1738739759.793:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6672 comm="syz.3.227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbe08b8cde9 code=0x7ffc0000
[  151.458277][   T29] audit: type=1326 audit(1738739759.793:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6672 comm="syz.3.227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe08b8cde9 code=0x7ffc0000
[  151.521809][   T29] audit: type=1326 audit(1738739759.793:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6672 comm="syz.3.227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe08b8cde9 code=0x7ffc0000
[  151.522912][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.649372][   T29] audit: type=1326 audit(1738739759.793:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6672 comm="syz.3.227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7fbe08b8cde9 code=0x7ffc0000
[  151.684519][   T29] audit: type=1326 audit(1738739759.793:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6672 comm="syz.3.227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe08b8cde9 code=0x7ffc0000
[  151.726879][   T11] hsr_slave_0: left promiscuous mode
[  151.769656][   T29] audit: type=1326 audit(1738739759.793:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6672 comm="syz.3.227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe08b8cde9 code=0x7ffc0000
[  151.808608][   T11] hsr_slave_1: left promiscuous mode
[  151.836085][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  151.874918][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  151.877831][   T29] audit: type=1326 audit(1738739759.793:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6672 comm="syz.3.227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=440 compat=0 ip=0x7fbe08b8cde9 code=0x7ffc0000
[  151.936649][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  151.971560][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  151.995815][   T29] audit: type=1326 audit(1738739759.793:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6672 comm="syz.3.227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe08b8cde9 code=0x7ffc0000
[  152.031100][ T6687] loop1: detected capacity change from 0 to 128
[  152.087028][   T11] veth1_macvtap: left promiscuous mode
[  152.114774][ T6687] VFS: Found a Xenix FS (block size = 512) on device loop1
[  152.141967][   T11] veth0_macvtap: left promiscuous mode
[  152.162992][   T11] veth1_vlan: left promiscuous mode
[  152.176436][   T11] veth0_vlan: left promiscuous mode
[  152.302495][ T5834] sysv_free_block: trying to free block not in datazone
[  152.365631][ T5834] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  152.558738][ T6657] loop5: detected capacity change from 0 to 32768
[  152.659628][ T6657] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  152.661999][ T5141] Bluetooth: hci4: command tx timeout
[  152.704203][ T6657] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  152.815263][ T6657] gfs2: fsid=syz:syz.s: journal 0 mapped with 16 extents in 1ms
[  152.845419][ T6695] loop1: detected capacity change from 0 to 256
[  153.299290][ T6657] gfs2: fsid=syz:syz.s: first mount done, others may mount
[  153.364104][ T6683] loop0: detected capacity change from 0 to 32768
[  153.454588][ T6683] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  153.814621][ T5837] ocfs2: Unmounting device (7,0) on (node local)
[  154.505311][ T6706] loop0: detected capacity change from 0 to 1024
[  154.547483][ T6706] EXT4-fs: Ignoring removed orlov option
[  154.606455][ T6706] EXT4-fs (loop0): Test dummy encryption mode enabled
[  154.622095][ T6706] EXT4-fs (loop0): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  154.700644][ T6706] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.741870][ T5141] Bluetooth: hci4: command tx timeout
[  154.971368][   T11] team0 (unregistering): Port device team_slave_1 removed
[  155.013702][ T6706] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  155.036875][   T11] team0 (unregistering): Port device team_slave_0 removed
[  155.102925][ T5837] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.037751][ T6698] hsr0: entered promiscuous mode
[  156.389217][ T6728] loop3: detected capacity change from 0 to 2048
[  156.409944][ T6633] chnl_net:caif_netlink_parms(): no params data found
[  156.594711][ T6732] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  156.767588][ T6732] NILFS (loop3): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  156.795954][ T6732] NILFS error (device loop3): nilfs_bmap_propagate: broken bmap (inode number=4)
[  156.822446][ T5141] Bluetooth: hci4: command tx timeout
[  156.881980][ T6732] Remounting filesystem read-only
[  157.033628][ T6737] loop3: detected capacity change from 0 to 512
[  157.130606][ T6737] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  157.148122][ T6737] ext4 filesystem being mounted at /52/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.214482][ T6746] lo: entered promiscuous mode
[  157.219519][ T6746] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  157.265475][ T6737] __quota_error: 1 callbacks suppressed
[  157.265493][ T6737] Quota error (device loop3): write_blk: dquota write failed
[  157.279869][ T6737] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota
[  157.299932][ T6737] EXT4-fs error (device loop3): ext4_acquire_dquot:6927: comm syz.3.247: Failed to acquire dquot type 1
[  157.364936][ T6725] loop0: detected capacity change from 0 to 32768
[  157.395913][ T6725] (syz.0.243,6725,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  157.448019][ T6725] (syz.0.243,6725,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  157.537443][ T6633] bridge0: port 1(bridge_slave_0) entered blocking state
[  157.544942][ T6725] JBD2: Ignoring recovery information on journal
[  157.546414][ T5831] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  157.571866][ T6633] bridge0: port 1(bridge_slave_0) entered disabled state
[  157.579149][ T6633] bridge_slave_0: entered allmulticast mode
[  157.589741][ T6633] bridge_slave_0: entered promiscuous mode
[  157.604744][ T6633] bridge0: port 2(bridge_slave_1) entered blocking state
[  157.612193][ T6633] bridge0: port 2(bridge_slave_1) entered disabled state
[  157.619489][ T6633] bridge_slave_1: entered allmulticast mode
[  157.627479][ T6633] bridge_slave_1: entered promiscuous mode
[  157.718232][ T6725] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  157.886531][ T6633] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  157.956745][ T6760] 9pnet_fd: p9_fd_create_unix (6760): problem connecting socket: ./file0: -111
[  157.957915][ T6633] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  158.437468][ T5837] ocfs2: Unmounting device (7,0) on (node local)
[  158.458659][ T6633] team0: Port device team_slave_0 added
[  158.553862][ T6633] team0: Port device team_slave_1 added
[  158.812691][ T6633] batman_adv: batadv0: Adding interface: batadv_slave_0
[  158.819705][ T6633] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  158.981893][ T6633] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  159.040282][ T6633] batman_adv: batadv0: Adding interface: batadv_slave_1
[  159.072642][ T6633] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  159.146072][ T6633] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  159.580219][ T6633] hsr_slave_0: entered promiscuous mode
[  159.619750][ T6633] hsr_slave_1: entered promiscuous mode
[  159.649876][ T6633] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  159.651905][ T6769] loop5: detected capacity change from 0 to 40427
[  159.686380][ T6633] Cannot create hsr debugfs directory
[  159.695037][ T6769] F2FS-fs (loop5): build fault injection attr: rate: 690, type: 0x1fffff
[  159.721526][ T6769] F2FS-fs (loop5): Image doesn't support compression
[  159.751557][ T6769] F2FS-fs (loop5): heap/no_heap options were deprecated
[  159.758557][ T6769] F2FS-fs (loop5): Image doesn't support compression
[  159.824937][ T6769] F2FS-fs (loop5): invalid crc value
[  159.859909][ T6769] F2FS-fs (loop5): Found nat_bits in checkpoint
[  160.113953][ T6769] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  160.292843][   T29] audit: type=1800 audit(1738739768.753:19): pid=6769 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.253" name="bus" dev="loop5" ino=10 res=0 errno=0
[  160.647338][ T6267] syz-executor: attempt to access beyond end of device
[  160.647338][ T6267] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  160.679053][ T6267] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  160.706751][ T6633] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  160.722872][ T6808] netlink: 4 bytes leftover after parsing attributes in process `syz.3.264'.
[  160.773894][ T6633] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  160.839270][ T6808] bond_slave_0: entered promiscuous mode
[  160.845294][ T6808] bond_slave_1: entered promiscuous mode
[  160.892439][ T6808] bond_slave_0: left promiscuous mode
[  160.898042][ T6808] bond_slave_1: left promiscuous mode
[  160.949093][ T6633] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  160.985872][ T6633] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  161.352608][ T6816] netlink: 12 bytes leftover after parsing attributes in process `syz.3.266'.
[  161.450650][ T6633] 8021q: adding VLAN 0 to HW filter on device bond0
[  161.551319][ T6633] 8021q: adding VLAN 0 to HW filter on device team0
[  161.664758][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[  161.673451][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[  161.708822][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[  161.716095][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[  162.129840][ T6827] loop3: detected capacity change from 0 to 512
[  162.202565][ T6827] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  162.335845][ T6827] EXT4-fs (loop3): 1 truncate cleaned up
[  162.393243][ T6827] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  162.689654][ T6842] loop5: detected capacity change from 0 to 128
[  162.835133][ T5831] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.864372][ T6633] 8021q: adding VLAN 0 to HW filter on device batadv0
[  163.484064][ T6856] loop5: detected capacity change from 0 to 2048
[  163.516266][ T6856] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[  163.607044][ T6623] udevd[6623]: incorrect nilfs2 checksum on /dev/loop5
[  163.624049][ T5141] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  163.634987][ T5141] Bluetooth: hci2: Injecting HCI hardware error event
[  163.647181][ T5835] Bluetooth: hci2: hardware error 0x00
[  163.664813][ T6862] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  163.727407][ T6824] loop1: detected capacity change from 0 to 32768
[  163.733188][ T6856] NILFS (loop5): failed to count free inodes: err=-34
[  163.790804][ T6856] NILFS (loop5): failed to count free inodes: err=-34
[  163.808564][ T6824] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  163.879571][ T6873] loop3: detected capacity change from 0 to 16
[  163.998284][ T6873] erofs (device loop3): blkszbits 0 isn't supported
[  164.017570][ T6837] loop0: detected capacity change from 0 to 32768
[  164.095669][ T6837] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[  164.156310][ T6633] veth0_vlan: entered promiscuous mode
[  164.214689][ T6633] veth1_vlan: entered promiscuous mode
[  164.357463][ T6824] XFS (loop1): Ending clean mount
[  164.470998][ T5837] ocfs2: Unmounting device (7,0) on (node local)
[  164.488184][ T6633] veth0_macvtap: entered promiscuous mode
[  164.554252][ T6633] veth1_macvtap: entered promiscuous mode
[  164.650364][ T6633] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  164.699028][ T5834] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  164.746984][ T6633] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  164.814331][ T6633] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  164.849706][ T6633] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  164.891551][ T6633] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  164.927601][ T6633] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  164.970597][ T6633] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  165.004390][ T6633] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.046227][ T6633] batman_adv: batadv0: Interface activated: batadv_slave_0
[  165.097630][ T6889] netlink: 8 bytes leftover after parsing attributes in process `syz.3.281'.
[  165.147868][ T6633] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  165.196002][ T6633] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.238506][ T6633] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  165.291520][ T6633] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.310771][ T6633] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  165.321472][ T6633] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.331601][ T6633] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  165.348754][ T6633] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.393600][ T6633] batman_adv: batadv0: Interface activated: batadv_slave_1
[  165.441104][ T6633] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  165.478997][ T6633] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  165.497215][ T6633] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  165.517384][ T6633] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  165.861644][ T5835] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  165.983330][ T6266] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  166.035769][ T6266] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  166.123505][ T6648] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  166.192033][ T6648] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  166.322989][ T6917] bridge_slave_0: invalid flags given to default FDB implementation
[  166.793528][ T6927] loop5: detected capacity change from 0 to 764
[  166.855503][ T6927] rock: directory entry would overflow storage
[  166.888908][ T6927] rock: sig=0x4654, size=5, remaining=4
[  167.327374][ T6941] loop1: detected capacity change from 0 to 1024
[  167.422290][   T29] audit: type=1800 audit(1738739775.883:20): pid=6941 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.293" name="file1" dev="loop1" ino=20 res=0 errno=0
[  167.484683][ T6941] syz.1.293: attempt to access beyond end of device
[  167.484683][ T6941] loop1: rw=34817, sector=58, nr_sectors = 2048 limit=1024
[  167.566161][ T6941] syz.1.293: attempt to access beyond end of device
[  167.566161][ T6941] loop1: rw=34817, sector=2106, nr_sectors = 454 limit=1024
[  167.604290][ T6948] syz.1.293: attempt to access beyond end of device
[  167.604290][ T6948] loop1: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  167.676614][ T6952] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  167.721296][ T6954] loop3: detected capacity change from 0 to 64
[  168.523667][ T6934] loop0: detected capacity change from 0 to 32768
[  168.658293][ T6934] XFS (loop0): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  168.692853][ T6979] netlink: 8 bytes leftover after parsing attributes in process `syz.5.304'.
[  168.802520][ T6979] vlan2: entered allmulticast mode
[  168.816902][ T6979] macvtap0: entered allmulticast mode
[  168.831449][ T6979] veth0_macvtap: entered allmulticast mode
[  168.888445][ T6934] XFS (loop0): Ending clean mount
[  169.098234][ T6990] loop6: detected capacity change from 0 to 16
[  169.142651][ T6990] MTD: Attempt to mount non-MTD device "/dev/loop6"
[  169.270716][ T5837] XFS (loop0): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  169.855847][ T6970] loop3: detected capacity change from 0 to 32768
[  169.917944][ T6970] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.300 (6970)
[  170.077805][ T6970] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  170.147327][ T6970] BTRFS info (device loop3): using crc32c (crc32c-x86_64) checksum algorithm
[  170.207120][ T6970] BTRFS info (device loop3): using free-space-tree
[  170.874504][ T6991] loop1: detected capacity change from 0 to 40427
[  170.924206][ T6991] F2FS-fs (loop1): build fault injection attr: rate: 690, type: 0x1fffff
[  170.951491][ T6991] F2FS-fs (loop1): build fault injection attr: rate: 0, type: 0x2
[  170.984075][ T5835] Bluetooth: hci4: command tx timeout
[  171.024895][ T6991] F2FS-fs (loop1): Image doesn't support compression
[  171.086412][ T6991] F2FS-fs (loop1): Image doesn't support compression
[  171.101034][ T5831] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  171.138695][ T6991] F2FS-fs (loop1): invalid crc value
[  171.168217][ T6991] F2FS-fs (loop1): Found nat_bits in checkpoint
[  171.486199][ T6991] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  171.517333][ T7047] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input9
[  171.639969][   T29] audit: type=1800 audit(1738739780.103:21): pid=6991 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.307" name="bus" dev="loop1" ino=10 res=0 errno=0
[  171.757357][ T6991] syz.1.307: attempt to access beyond end of device
[  171.757357][ T6991] loop1: rw=34817, sector=77824, nr_sectors = 2088 limit=40427
[  172.027081][ T5834] syz-executor: attempt to access beyond end of device
[  172.027081][ T5834] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  172.083712][ T5834] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  172.167524][ T7007] loop0: detected capacity change from 0 to 40427
[  172.233273][ T7007] F2FS-fs (loop0): Wrong SSA boundary, start(3584) end(4096) blocks(1024)
[  172.284816][ T7007] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  172.326340][ T7007] F2FS-fs (loop0): Image doesn't support compression
[  172.372702][ T7007] F2FS-fs (loop0): invalid crc value
[  172.409362][ T7007] F2FS-fs (loop0): Found nat_bits in checkpoint
[  172.640703][ T7043] loop6: detected capacity change from 0 to 32768
[  172.690335][ T7043] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.315 (7043)
[  172.730352][ T7007] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  172.757604][ T7007] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  172.782304][ T7043] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  172.819727][ T7075] netlink: 8 bytes leftover after parsing attributes in process `syz.3.321'.
[  172.823893][ T7043] BTRFS info (device loop6): using sha256 (sha256-avx2) checksum algorithm
[  172.871553][ T7043] BTRFS info (device loop6): using free-space-tree
[  172.921684][ T7075] bond0: option resend_igmp: invalid value (7540)
[  172.931492][ T7075] bond0: option resend_igmp: allowed values 0 - 255
[  173.039009][ T7007] syz.0.309: attempt to access beyond end of device
[  173.039009][ T7007] loop0: rw=2049, sector=53248, nr_sectors = 544 limit=40427
[  173.220591][ T7094] loop3: detected capacity change from 0 to 8
[  173.332984][   T11] BTRFS info (device loop6): qgroup scan completed (inconsistency flag cleared)
[  173.354329][ T7094] netlink: 16 bytes leftover after parsing attributes in process `syz.3.322'.
[  173.377565][ T5837] syz-executor: attempt to access beyond end of device
[  173.377565][ T5837] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  173.439864][ T5837] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  173.777028][ T6633] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  176.083408][ T7138] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  176.403845][ T7109] loop5: detected capacity change from 0 to 32768
[  176.454888][ T7109] XFS: ikeep mount option is deprecated.
[  176.567094][ T7109] XFS (loop5): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  176.646424][ T7109] XFS (loop5): Ending clean mount
[  176.672120][ T7109] XFS (loop5): Quotacheck needed: Please wait.
[  176.724727][ T5242] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  176.777303][ T7109] XFS (loop5): Quotacheck: Done.
[  176.931617][ T5242] usb 2-1: Using ep0 maxpacket: 16
[  176.939427][ T5242] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  176.976124][ T5242] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  177.044353][ T5242] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  177.100803][ T5242] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  177.117044][ T6267] XFS (loop5): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  177.127519][ T5242] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.190514][ T5242] usb 2-1: config 0 descriptor??
[  177.539350][ T7178] loop3: detected capacity change from 0 to 128
[  177.649559][ T5242] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0
[  177.691646][ T5242] microsoft 0003:045E:07DA.0003: ignoring exceeding usage max
[  177.731299][ T5242] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0
[  177.763029][ T5242] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0
[  177.798189][ T5242] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0
[  177.831163][ T5242] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0
[  177.851500][ T5242] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0
[  177.858774][ T5242] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0
[  177.925413][ T5242] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0
[  177.964494][ T5242] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0
[  178.008218][ T5242] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0
[  178.029201][ T5242] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0
[  178.066246][ T5242] microsoft 0003:045E:07DA.0003: unsupported Resolution Multiplier 0
[  178.107849][ T5242] microsoft 0003:045E:07DA.0003: unsupported Resolution Multiplier 0
[  178.137302][ T5242] microsoft 0003:045E:07DA.0003: No inputs registered, leaving
[  178.192310][ T5242] microsoft 0003:045E:07DA.0003: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  178.240687][ T5242] microsoft 0003:045E:07DA.0003: no inputs found
[  178.262148][ T7187] sp0: Synchronizing with TNC
[  178.271646][ T5242] microsoft 0003:045E:07DA.0003: could not initialize ff, continuing anyway
[  178.349767][ T5242] usb 2-1: USB disconnect, device number 3
[  178.596298][ T7148] loop6: detected capacity change from 0 to 40427
[  178.721475][ T7148] F2FS-fs (loop6): Found nat_bits in checkpoint
[  178.772411][ T7169] loop0: detected capacity change from 0 to 32768
[  178.845449][ T7169] (syz.0.340,7169,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  178.914931][ T7169] (syz.0.340,7169,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  179.045629][ T7148] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  179.073514][ T7169] JBD2: Ignoring recovery information on journal
[  179.180455][ T7169] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  180.077732][ T5837] ocfs2: Unmounting device (7,0) on (node local)
[  180.557655][ T7200] loop1: detected capacity change from 0 to 40427
[  180.598546][ T7200] F2FS-fs (loop1): build fault injection attr: rate: 771, type: 0x1fffff
[  180.651995][ T7200] F2FS-fs (loop1): invalid crc value
[  180.685473][ T7200] F2FS-fs (loop1): Found nat_bits in checkpoint
[  180.896253][ T7200] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  181.079662][   T29] audit: type=1800 audit(1738739789.543:22): pid=7200 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.346" name="bus" dev="loop1" ino=10 res=0 errno=0
[  181.263382][ T5834] syz-executor: attempt to access beyond end of device
[  181.263382][ T5834] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  181.285420][ T5834] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  181.579305][ T7262] o2cb: This node has not been configured.
[  181.611520][ T7262] o2cb: Cluster check failed. Fix errors before retrying.
[  181.630472][ T7262] (syz.5.364,7262,0):user_dlm_register:674 ERROR: status = -22
[  181.650453][ T7262] (syz.5.364,7262,0):dlmfs_mkdir:438 ERROR: Error -22 could not register domain "bus"
[  183.851237][ T7285] loop5: detected capacity change from 0 to 32768
[  183.965659][ T7285] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  184.170732][ T7285] XFS (loop5): Ending clean mount
[  184.181626][   T46] usb 1-1: new full-speed USB device number 2 using dummy_hcd
[  184.371910][   T46] usb 1-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  184.406828][   T46] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  184.447044][ T6267] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  184.476287][   T46] usb 1-1: config 0 descriptor??
[  185.199682][   T46] [drm:udl_init] *ERROR* Selecting channel failed
[  185.278304][   T46] [drm] Initialized udl 0.0.1 for 1-1:0.0 on minor 2
[  185.290847][   T46] [drm] Initialized udl on minor 2
[  185.318551][   T46] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  185.352693][   T46] udl 1-1:0.0: [drm] Cannot find any crtc or sizes
[  185.397351][ T5903] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  185.429657][   T46] usb 1-1: USB disconnect, device number 2
[  185.451274][ T5903] udl 1-1:0.0: [drm] Cannot find any crtc or sizes
[  186.812366][ T7350] loop5: detected capacity change from 0 to 32768
[  186.831352][ T7350] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.390 (7350)
[  187.024202][ T7350] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  187.053454][ T7350] BTRFS info (device loop5): using crc32c (crc32c-x86_64) checksum algorithm
[  187.102770][ T7350] BTRFS info (device loop5): using free-space-tree
[  187.588742][ T6267] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  188.810227][ T7421] IPVS: set_ctl: invalid protocol: 255 172.30.1.7:20000
[  189.479753][ T7436] netlink: 'syz.1.411': attribute type 1 has an invalid length.
[  189.527340][ T7436] netlink: 'syz.1.411': attribute type 4 has an invalid length.
[  189.555617][ T7436] netlink: 188 bytes leftover after parsing attributes in process `syz.1.411'.
[  189.574169][ T7436] NCSI netlink: No device for ifindex 0
[  189.903350][ T7453] syz_tun: entered allmulticast mode
[  189.929151][ T7453] lo: entered allmulticast mode
[  189.990440][ T7453] lo: left allmulticast mode
[  190.011647][ T7453] syz_tun: left allmulticast mode
[  190.413260][ T7464] loop1: detected capacity change from 0 to 1024
[  190.478804][ T7464] EXT4-fs: Ignoring removed orlov option
[  190.528421][ T7464] EXT4-fs: Ignoring removed nomblk_io_submit option
[  190.653851][ T7464] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  191.129014][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.217139][ T7448] loop5: detected capacity change from 0 to 32768
[  191.322187][ T7448] ERROR: (device loop5): dtReadFirst: DT_GETPAGE: dtree page corrupt
[  191.322187][ T7448] 
[  191.377050][ T7448] ERROR: (device loop5): remounting filesystem as read-only
[  191.420130][ T7448] jfs_readdir: unexpected rc = -5 from dtReadNext
[  191.555085][ T7468] loop0: detected capacity change from 0 to 32768
[  191.652753][ T7468] 
[  191.652753][ T7468]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  191.652753][ T7468] 
[  191.732610][ T7461] loop6: detected capacity change from 0 to 32768
[  191.777351][ T7468] read_mapping_page failed!
[  191.807412][ T7468] ERROR: (device loop0): txCommit: 
[  191.807412][ T7468] 
[  191.873622][ T7461] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  192.031863][ T5837] 
[  192.031863][ T5837]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  192.031863][ T5837] 
[  192.061791][ T5837] 
[  192.061791][ T5837]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  192.061791][ T5837] 
[  192.240798][ T7461] XFS (loop6): Ending clean mount
[  192.314118][ T7461] XFS (loop6): Quotacheck needed: Please wait.
[  192.458659][ T7461] XFS (loop6): Quotacheck: Done.
[  192.802375][ T6633] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  193.163547][ T7507] loop1: detected capacity change from 0 to 512
[  193.260188][ T7491] loop5: detected capacity change from 0 to 32768
[  193.289146][ T7507] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities
[  193.847635][ T7491] bcachefs (loop5): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=xxhash,compression=lz4,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io
[  193.916703][ T7491] bcachefs (loop5): recovering from clean shutdown, journal seq 10
[  193.972126][ T7491] bcachefs (loop5): Version upgrade required:
[  193.972126][ T7491] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  193.972126][ T7491] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.20: directory_size
[  193.972126][ T7491]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  194.101911][ T7491] bcachefs (loop5): dropping and reconstructing all alloc info
[  194.121482][   T46] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  194.193534][ T7491] bcachefs (loop5): accounting_read... done
[  194.217758][ T7491] bcachefs (loop5): alloc_read... done
[  194.241139][ T7491] bcachefs (loop5): stripes_read... done
[  194.271729][ T7491] bcachefs (loop5): snapshots_read... done
[  194.283724][ T7491] bcachefs (loop5): done starting filesystem
[  194.293307][   T46] usb 7-1: unable to get BOS descriptor or descriptor too short
[  194.328144][   T46] usb 7-1: config 6 has an invalid interface number: 96 but max is 0
[  194.347669][   T46] usb 7-1: config 6 has an invalid descriptor of length 0, skipping remainder of the config
[  194.401578][   T46] usb 7-1: config 6 has no interface number 0
[  194.416075][   T46] usb 7-1: config 6 interface 96 has no altsetting 0
[  194.490736][   T46] usb 7-1: string descriptor 0 read error: -22
[  194.498434][   T46] usb 7-1: New USB device found, idVendor=10b8, idProduct=1e6e, bcdDevice=4f.2b
[  194.518106][   T46] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  194.714624][ T6267] bcachefs (loop5): shutting down
[  194.836473][ T7509] loop3: detected capacity change from 0 to 32768
[  194.913235][ T6267] bcachefs (loop5): shutdown complete
[  194.921976][ T7509] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  194.945597][ T7527] loop0: detected capacity change from 0 to 32768
[  194.975808][ T7527] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.433 (7527)
[  195.122100][   T46] dvb-usb: found a 'DiBcom TFE7790P reference design' in cold state, will try to load a firmware
[  195.181723][ T7527] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  195.219830][ T7527] BTRFS info (device loop0): using crc32c (crc32c-x86_64) checksum algorithm
[  195.233540][ T7527] BTRFS info (device loop0): using free-space-tree
[  195.242862][   T46] dvb-usb: downloading firmware from file 'dvb-usb-dib0700-1.20.fw'
[  195.259187][   T46] dib0700: firmware download failed at 28 with -71
[  195.304699][   T46] usb 7-1: USB disconnect, device number 2
[  195.390829][ T7509] XFS (loop3): Ending clean mount
[  195.641025][ T5831] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  196.120769][ T5837] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  196.145771][ T7581] warning: `syz.6.440' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  197.661293][ T7618] loop0: detected capacity change from 0 to 256
[  197.825820][ T7618] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010125, chksum : 0x1fa5c0f6, utbl_chksum : 0xe619d30d)
[  198.319678][ T7599] loop6: detected capacity change from 0 to 32768
[  198.663520][ T7630] loop3: detected capacity change from 0 to 2048
[  198.771531][ T7630] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  198.911200][ T7641] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  198.941741][ T7630] NILFS error (device loop3): nilfs_bmap_lookup_at_level: broken bmap (inode number=6)
[  199.014941][ T7630] Remounting filesystem read-only
[  199.719610][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  199.726162][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  201.380474][ T7694] loop0: detected capacity change from 0 to 64
[  202.390120][ T7721] ax25_connect(): syz.3.479 uses autobind, please contact jreuter@yaina.de
[  202.748128][ T7729] loop3: detected capacity change from 0 to 512
[  202.797725][   T29] audit: type=1326 audit(1738740067.254:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7709 comm="syz.0.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38ff98cde9 code=0x7fc00000
[  202.797768][ T7729] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  203.013293][ T7729] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.104749][ T7736] loop0: detected capacity change from 0 to 128
[  203.120729][ T7729] ext4 filesystem being mounted at /112/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  203.180182][ T7736] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  203.280114][ T7736] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  203.299472][ T7729] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  203.488466][ T5831] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.682265][ T7707] loop6: detected capacity change from 0 to 32768
[  204.845881][ T7762] loop0: detected capacity change from 0 to 64
[  205.973964][ T7745] loop3: detected capacity change from 0 to 32768
[  206.169285][ T7745] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  206.636278][ T7745] XFS (loop3): Ending clean mount
[  206.674981][ T7745] XFS (loop3): Quotacheck needed: Please wait.
[  206.800760][ T7745] XFS (loop3): Quotacheck: Done.
[  207.002909][ T5831] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  207.353451][ T7771] loop6: detected capacity change from 0 to 32768
[  207.421724][ T7771] 
[  207.421724][ T7771]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  207.421724][ T7771] 
[  207.573953][ T7771] find_entry called with index = 0
[  207.624238][ T7771] read_mapping_page failed!
[  207.647298][ T7771] ERROR: (device loop6): txCommit: 
[  207.647298][ T7771] 
[  207.771516][ T5242] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  207.832320][ T6633] 
[  207.832320][ T6633]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  207.832320][ T6633] 
[  207.909808][ T6633] 
[  207.909808][ T6633]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  207.909808][ T6633] 
[  207.959729][ T5242] usb 6-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  207.969580][ T5242] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  208.000764][ T5242] usb 6-1: Product: syz
[  208.016486][ T5242] usb 6-1: Manufacturer: syz
[  208.035813][ T5242] usb 6-1: SerialNumber: syz
[  208.071749][ T5242] usb 6-1: config 0 descriptor??
[  208.330205][ T5242] usb 6-1: USB disconnect, device number 2
[  208.507250][ T7799] loop0: detected capacity change from 0 to 40427
[  208.542939][ T7799] F2FS-fs (loop0): Invalid SB checksum offset: 0
[  208.571930][ T7799] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock
[  208.615980][ T7799] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  208.982790][ T7799] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0
[  208.989884][ T7799] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  209.131689][   T29] audit: type=1800 audit(1738740073.604:24): pid=7799 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.492" name="file1" dev="loop0" ino=10 res=0 errno=0
[  209.164434][ T7799] syz.0.492: attempt to access beyond end of device
[  209.164434][ T7799] loop0: rw=34817, sector=53248, nr_sectors = 8 limit=40427
[  209.362561][ T5837] syz-executor: attempt to access beyond end of device
[  209.362561][ T5837] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  209.416621][ T5837] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  210.473256][ T7881] netlink: 4 bytes leftover after parsing attributes in process `syz.6.514'.
[  210.968296][ T7892] loop6: detected capacity change from 0 to 1024
[  211.249799][ T7853] loop1: detected capacity change from 0 to 32768
[  211.418496][ T7853] XFS (loop1): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  211.667000][ T7916] bridge0: port 2(bridge_slave_1) entered disabled state
[  211.676710][ T7916] bridge0: port 1(bridge_slave_0) entered disabled state
[  211.805756][   T29] audit: type=1326 audit(1738740076.274:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7919 comm="syz.5.522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff6398cde9 code=0x7ffc0000
[  211.931580][ T7853] XFS (loop1): Ending clean mount
[  212.224145][ T5834] XFS (loop1): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  213.086821][ T7897] loop0: detected capacity change from 0 to 32768
[  213.100905][ T7948] loop5: detected capacity change from 0 to 2048
[  213.186696][ T7897] XFS (loop0): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  213.300889][ T7948] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  213.377224][ T7922] loop6: detected capacity change from 0 to 40427
[  213.388385][ T7922] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  213.397358][ T7922] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  213.424827][ T7922] F2FS-fs (loop6): invalid crc value
[  213.466596][   T29] audit: type=1800 audit(1738740077.934:26): pid=7948 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.531" name="file2" dev="loop5" ino=16 res=0 errno=0
[  213.513749][ T7922] F2FS-fs (loop6): Found nat_bits in checkpoint
[  213.566959][ T7897] XFS (loop0): Ending clean mount
[  213.637939][ T7975] loop1: detected capacity change from 0 to 512
[  213.678353][ T6267] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.683918][ T7897] XFS (loop0): Quotacheck needed: Please wait.
[  213.718167][ T7975] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  213.888564][ T7978] loop3: detected capacity change from 0 to 2048
[  213.901890][ T7975] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #16: comm syz.1.533: invalid indirect mapped block 4294967295 (level 0)
[  213.918691][ T7922] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  213.927377][ T7897] XFS (loop0): Quotacheck: Done.
[  213.961592][ T7922] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  214.059274][ T7978] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  214.077971][ T7975] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #16: comm syz.1.533: invalid indirect mapped block 4294967295 (level 1)
[  214.140621][ T7978] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  214.146331][ T7975] EXT4-fs (loop1): 1 orphan inode deleted
[  214.171700][ T7975] EXT4-fs (loop1): 1 truncate cleaned up
[  214.173851][ T5837] XFS (loop0): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  214.179048][ T7975] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  214.385312][ T5831] UDF-fs: warning (device loop3): udf_evict_inode: Inode 1367 (mode 120777) has inode size 4 different from extent length 512. Filesystem need not be standards compliant.
[  214.599305][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.757629][ T5835] Bluetooth: hci3: command tx timeout
[  214.791053][ T7994] loop3: detected capacity change from 0 to 128
[  214.834190][ T7997] loop5: detected capacity change from 0 to 64
[  214.878942][ T7994] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  214.928475][ T7994] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  215.184431][ T6266] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  215.348317][ T8005] netlink: 'syz.0.536': attribute type 2 has an invalid length.
[  215.640737][ T8008] loop1: detected capacity change from 0 to 4096
[  215.803701][ T8008] NILFS (loop1): invalid segment: Checksum error in segment payload
[  215.862173][ T8008] NILFS (loop1): trying rollback from an earlier position
[  215.945462][ T8008] NILFS (loop1): recovery complete
[  216.001483][ T8022] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  216.568633][ T8031] netlink: 'syz.3.551': attribute type 1 has an invalid length.
[  217.146554][ T8046] loop6: detected capacity change from 0 to 256
[  217.308650][ T8046] FAT-fs (loop6): Directory bread(block 64) failed
[  217.329126][ T8046] FAT-fs (loop6): Directory bread(block 65) failed
[  217.348672][ T8046] FAT-fs (loop6): Directory bread(block 66) failed
[  217.399138][ T8046] FAT-fs (loop6): Directory bread(block 67) failed
[  217.431690][ T8046] FAT-fs (loop6): Directory bread(block 68) failed
[  217.455532][ T8046] FAT-fs (loop6): Directory bread(block 69) failed
[  217.487068][ T8046] FAT-fs (loop6): Directory bread(block 70) failed
[  217.532246][ T8054] loop3: detected capacity change from 0 to 512
[  217.533945][ T8046] FAT-fs (loop6): Directory bread(block 71) failed
[  217.571585][ T8046] FAT-fs (loop6): Directory bread(block 72) failed
[  217.592481][ T8046] FAT-fs (loop6): Directory bread(block 73) failed
[  217.632646][ T8054] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  217.645597][ T8054] ext4 filesystem being mounted at /129/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  217.680955][   T29] audit: type=1800 audit(1738740082.144:27): pid=8054 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.559" name="file1" dev="loop3" ino=15 res=0 errno=0
[  217.741649][   T29] audit: type=1800 audit(1738740082.174:28): pid=8054 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.559" name="file2" dev="loop3" ino=16 res=0 errno=0
[  217.866712][ T5831] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.935779][ T8059] netlink: 8 bytes leftover after parsing attributes in process `syz.5.560'.
[  217.963220][ T8059] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  217.972561][ T8059] batadv_slave_0: entered allmulticast mode
[  217.987795][ T8059] netlink: 'syz.5.560': attribute type 8 has an invalid length.
[  218.058177][ T8061] cifs: Unknown parameter '_¡LI¥‘» !BE�J‚FÓAæi_^ÕwˆkªtÉc»ÊÙ�åE|˜,Þ2­'
[  218.353725][ T8070] ipt_rpfilter: only valid in 'raw' or 'mangle' table, not ''
[  218.683161][ T8074] loop5: detected capacity change from 0 to 4096
[  218.977021][ T8084] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  219.147038][ T8087] loop6: detected capacity change from 0 to 1024
[  219.274180][ T8087] hfsplus: inconsistency in B*Tree (0,1,255,1,0)
[  219.280966][ T8087] hfsplus: xattr search failed
[  219.541680][   T29] audit: type=1326 audit(1738740083.994:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8094 comm="syz.1.577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc27378cde9 code=0x7ffc0000
[  219.659846][   T29] audit: type=1326 audit(1738740084.034:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8094 comm="syz.1.577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=107 compat=0 ip=0x7fc27378cde9 code=0x7ffc0000
[  219.683261][   T29] audit: type=1326 audit(1738740084.034:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8094 comm="syz.1.577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc27378cde9 code=0x7ffc0000
[  219.734429][ T8098] loop5: detected capacity change from 0 to 1024
[  219.762243][ T8098] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  219.813410][ T8064] loop3: detected capacity change from 0 to 40427
[  219.843521][ T8064] F2FS-fs (loop3): build fault injection attr: rate: 690, type: 0x1fffff
[  219.845088][ T8098] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  219.869027][ T8064] F2FS-fs (loop3): Image doesn't support compression
[  219.887654][ T8064] F2FS-fs (loop3): Image doesn't support compression
[  219.909406][ T8064] F2FS-fs (loop3): invalid crc value
[  219.923861][ T8064] F2FS-fs (loop3): Found nat_bits in checkpoint
[  220.050654][ T6267] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.239853][ T8064] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  220.298265][ T8064] syz.3.561: attempt to access beyond end of device
[  220.298265][ T8064] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  220.379792][ T8064] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  220.467794][ T5882] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  220.649125][ T5882] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  220.668206][ T5882] usb 2-1: New USB device found, idVendor=1532, idProduct=010e, bcdDevice= 0.00
[  220.697683][ T5882] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  220.728502][ T5882] usb 2-1: config 0 descriptor??
[  221.265355][ T8126] loop5: detected capacity change from 0 to 2048
[  221.360813][ T8127] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  221.375155][ T5882] razer 0003:1532:010E.0004: hidraw0: USB HID v0.00 Device [HID 1532:010e] on usb-dummy_hcd.1-1/input0
[  221.485115][ T8127] NILFS (loop5): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  221.498410][ T8121] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  221.509790][ T8127] NILFS error (device loop5): nilfs_bmap_propagate: broken bmap (inode number=4)
[  221.520852][ T8121] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  221.543388][ T8127] Remounting filesystem read-only
[  221.601099][   T46] usb 2-1: USB disconnect, device number 4
[  221.632389][ T8121] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  221.638453][ T8121] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[  221.651671][ T8122] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  221.671338][ T6267] NILFS (loop5): disposed unprocessed dirty file(s) when stopping log writer
[  221.675283][ T8122] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  221.816300][ T8122] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  221.857629][ T8121] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  221.864294][ T8121] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[  222.127924][ T5882] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  222.355238][ T5882] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  222.381811][ T5882] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  222.440051][ T5882] usb 4-1: config 0 descriptor??
[  222.490762][ T5882] cp210x 4-1:0.0: cp210x converter detected
[  222.763477][ T8159] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  222.872417][ T5882] cp210x 4-1:0.0: failed to get vendor val 0x000e size 3: -32
[  222.897067][ T5882] usb 4-1: cp210x converter now attached to ttyUSB0
[  222.952224][ T8164] netlink: 'syz.6.607': attribute type 64 has an invalid length.
[  223.040691][ T8166] loop5: detected capacity change from 0 to 512
[  223.106956][ T5882] usb 4-1: USB disconnect, device number 4
[  223.118775][   T29] audit: type=1800 audit(1738740087.574:32): pid=8166 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.608" name="file1" dev="loop5" ino=33 res=0 errno=0
[  223.146834][ T5882] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  223.177776][ T5882] cp210x 4-1:0.0: device disconnected
[  223.193706][   T29] audit: type=1800 audit(1738740087.584:33): pid=8166 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.608" name="file1" dev="loop5" ino=33 res=0 errno=0
[  223.316207][ T8168] loop1: detected capacity change from 0 to 4096
[  223.409667][ T8171] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  223.502049][ T8175] xt_CT: You must specify a L4 protocol and not use inversions on it
[  223.864086][ T8182] loop5: detected capacity change from 0 to 1024
[  224.178856][ T8186] loop0: detected capacity change from 0 to 4096
[  224.490864][   T29] audit: type=1800 audit(1738740088.954:34): pid=8195 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.616" name="file0" dev="loop0" ino=0 res=0 errno=0
[  224.784263][ T8202] loop0: detected capacity change from 0 to 64
[  224.861990][ T8202] Trying to free block not in datazone
[  224.891835][ T8202] minix_free_block (loop0:21): bit already cleared
[  225.053049][ T8205] loop1: detected capacity change from 0 to 1024
[  225.098123][ T8180] loop6: detected capacity change from 0 to 32768
[  225.261020][ T8180] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  225.342634][ T8214] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  225.515837][ T8219] loop1: detected capacity change from 0 to 47
[  225.774221][ T8180] XFS (loop6): Ending clean mount
[  225.851275][ T8180] XFS (loop6): Quotacheck needed: Please wait.
[  225.956759][ T8180] XFS (loop6): Quotacheck: Done.
[  226.022546][ T6633] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  226.428469][ T8225] loop3: detected capacity change from 0 to 32768
[  226.470041][ T8225] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.629 (8225)
[  226.536904][ T8225] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  226.592797][ T8225] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  226.743047][ T8225] BTRFS info (device loop3): rebuilding free space tree
[  226.942708][ T8225] BTRFS info (device loop3): disabling free space tree
[  226.949749][ T8225] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  226.963819][ T8225] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  227.069660][ T8230] loop0: detected capacity change from 0 to 32768
[  227.162169][   T29] audit: type=1800 audit(1738740091.614:35): pid=8225 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.629" name="bus" dev="loop3" ino=263 res=0 errno=0
[  227.484871][ T5831] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  228.649190][ T8256] loop5: detected capacity change from 0 to 32768
[  228.992877][ T8256] bcachefs (loop5): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names
[  229.029982][ T8256] bcachefs (loop5): initializing new filesystem
[  229.042805][ T8258] loop1: detected capacity change from 0 to 40427
[  229.059731][ T8256] bcachefs (loop5): going read-write
[  229.073622][ T8258] F2FS-fs (loop1): build fault injection attr: rate: 690, type: 0x1fffff
[  229.107515][ T8258] F2FS-fs (loop1): Image doesn't support compression
[  229.122396][ T8256] bcachefs (loop5): marking superblocks
[  229.123316][ T8258] F2FS-fs (loop1): heap/no_heap options were deprecated
[  229.161688][ T8258] F2FS-fs (loop1): Image doesn't support compression
[  229.196768][ T8256] bcachefs (loop5): initializing freespace
[  229.225659][ T8258] F2FS-fs (loop1): invalid crc value
[  229.252226][ T8256] bcachefs (loop5): done initializing freespace
[  229.278801][ T8258] F2FS-fs (loop1): Found nat_bits in checkpoint
[  229.285504][ T8260] loop3: detected capacity change from 0 to 32768
[  229.300885][ T8256] bcachefs (loop5): reading snapshots table
[  229.316118][ T8262] loop6: detected capacity change from 0 to 32768
[  229.321644][ T8256] bcachefs (loop5): reading snapshots done
[  229.443933][ T8256] bcachefs (loop5): done starting filesystem
[  229.590713][ T8258] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  229.684598][ T8281] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  229.691641][ T8281] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  229.724508][ T8284] vhci_hcd vhci_hcd.0: pdev(0) rhport(1) sockfd(6)
[  229.731108][ T8284] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  229.754294][ T8281] vhci_hcd vhci_hcd.0: Device attached
[  229.760271][   T29] audit: type=1800 audit(1738740094.224:36): pid=8258 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.639" name="file1" dev="loop1" ino=14 res=0 errno=0
[  229.771406][ T8258] F2FS-fs (loop1): inject too big dir depth in f2fs_add_regular_entry of f2fs_add_dentry+0xf7/0x1e0
[  229.821889][ T8284] vhci_hcd vhci_hcd.0: Device attached
[  229.845458][ T6267] bcachefs (loop5): shutting down
[  229.851202][ T6267] bcachefs (loop5): going read-only
[  229.865962][ T8284] vhci_hcd vhci_hcd.0: pdev(0) rhport(2) sockfd(5)
[  229.872512][ T8284] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  229.897737][ T6267] bcachefs (loop5): finished waiting for writes to stop
[  229.933741][ T5953] vhci_hcd: vhci_device speed not set
[  229.941733][ T6267] bcachefs (loop5): flushing journal and stopping allocators, journal seq 3
[  229.955629][ T8284] vhci_hcd vhci_hcd.0: Device attached
[  229.974638][ T5834] syz-executor: attempt to access beyond end of device
[  229.974638][ T5834] loop1: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  230.001536][ T5953] usb 33-1: new full-speed USB device number 2 using vhci_hcd
[  230.027415][ T8281] vhci_hcd vhci_hcd.0: pdev(0) rhport(3) sockfd(9)
[  230.034002][ T8281] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  230.046638][ T5834] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  230.057436][ T8281] vhci_hcd vhci_hcd.0: Device attached
[  230.072963][ T5834] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  230.113554][ T8287] vhci_hcd: connection closed
[  230.113678][ T8285] vhci_hcd: connection closed
[  230.126732][ T8282] vhci_hcd: connection reset by peer
[  230.127547][ T8289] vhci_hcd: connection closed
[  230.171417][   T52] vhci_hcd: stop threads
[  230.210930][   T52] vhci_hcd: release socket
[  230.224509][ T6267] bcachefs (loop5): flushing journal and stopping allocators complete, journal seq 3
[  230.229103][   T52] vhci_hcd: disconnect device
[  230.243436][   T52] vhci_hcd: stop threads
[  230.247829][   T52] vhci_hcd: release socket
[  230.252651][   T52] vhci_hcd: disconnect device
[  230.257913][   T52] vhci_hcd: stop threads
[  230.262922][   T52] vhci_hcd: release socket
[  230.267512][   T52] vhci_hcd: disconnect device
[  230.272981][   T52] vhci_hcd: stop threads
[  230.277253][   T52] vhci_hcd: release socket
[  230.284839][   T52] vhci_hcd: disconnect device
[  230.292139][ T6267] bcachefs (loop5): clean shutdown complete, journal seq 4
[  230.311135][ T6267] bcachefs (loop5): marking filesystem clean
[  230.448255][ T6267] bcachefs (loop5): shutdown complete
[  230.974981][ T8303] netlink: 8 bytes leftover after parsing attributes in process `syz.6.649'.
[  231.282285][   T46] kernel write not supported for file /182/attr/exec (pid: 46 comm: kworker/1:1)
[  231.947923][ T8317] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  232.308905][ T8321] loop6: detected capacity change from 0 to 512
[  232.351589][ T8321] EXT4-fs: Ignoring removed bh option
[  232.376655][ T8321] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  232.488720][ T8307] loop1: detected capacity change from 0 to 32768
[  232.497059][ T8321] EXT4-fs (loop6): 1 truncate cleaned up
[  232.508689][ T8321] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  232.596436][ T8307] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  232.789654][ T8336] loop0: detected capacity change from 0 to 512
[  232.804610][ T8336] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  232.850729][ T6633] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.880638][ T8336] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.658: invalid indirect mapped block 4294967295 (level 1)
[  232.913215][ T8336] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.658: invalid indirect mapped block 4294967295 (level 1)
[  232.996376][ T8336] EXT4-fs (loop0): 2 truncates cleaned up
[  233.016285][ T8307] XFS (loop1): Ending clean mount
[  233.026495][ T8336] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.050388][ T8307] XFS (loop1): Quotacheck needed: Please wait.
[  233.151513][ T8340] mkiss: ax0: crc mode is auto.
[  233.207658][ T8307] XFS (loop1): Quotacheck: Done.
[  233.221063][ T8336] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.658: bg 0: block 5: invalid block bitmap
[  233.515787][ T5837] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.691554][ T5834] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  235.021742][ T8393] random: crng reseeded on system resumption
[  235.132178][ T5953] vhci_hcd: vhci_device speed not set
[  235.207761][ T8401] loop3: detected capacity change from 0 to 16
[  235.323248][ T8401] erofs (device loop3): mounted with root inode @ nid 36.
[  236.410631][ T8384] loop0: detected capacity change from 0 to 40427
[  236.485630][ T8384] F2FS-fs (loop0): build fault injection attr: rate: 690, type: 0x1fffff
[  236.514015][ T8384] F2FS-fs (loop0): heap/no_heap options were deprecated
[  236.554921][ T8384] F2FS-fs (loop0): invalid crc value
[  236.585143][ T8384] F2FS-fs (loop0): Found nat_bits in checkpoint
[  236.782839][ T8384] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  237.086536][ T5837] syz-executor: attempt to access beyond end of device
[  237.086536][ T5837] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  237.142724][ T5837] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  237.363855][ T8417] loop6: detected capacity change from 0 to 32768
[  237.410954][ T8417] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.684 (8417)
[  237.437466][ T8417] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  237.501495][ T8417] BTRFS info (device loop6): using sha256 (sha256-avx2) checksum algorithm
[  237.510236][ T8417] BTRFS info (device loop6): using free-space-tree
[  237.595080][ T8420] loop5: detected capacity change from 0 to 32768
[  237.728477][ T8420] XFS (loop5): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  238.029574][ T8420] XFS (loop5): Ending clean mount
[  238.207831][ T6267] XFS (loop5): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  238.270218][ T6633] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  240.305340][ T8517] misc userio: No port type given on /dev/userio
[  240.505988][ T8522] loop3: detected capacity change from 0 to 2048
[  240.633081][ T8522] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  240.684268][ T8522] EXT4-fs error (device loop3): ext4_find_extent:938: inode #2: comm syz.3.708: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  240.736346][ T8536] EXT4-fs error (device loop3): ext4_ext_precache:631: inode #2: comm syz.3.708: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[  240.766343][ T8536] EXT4-fs (loop3): Remounting filesystem read-only
[  240.794756][ T8485] loop1: detected capacity change from 0 to 40427
[  240.814890][ T8522] EXT4-fs (loop3): Remounting filesystem read-only
[  240.851261][ T8485] F2FS-fs (loop1): Invalid Fs Meta Ino: node(1) meta(2) root(0)
[  240.890473][ T8485] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  240.920160][ T8485] F2FS-fs (loop1): build fault injection attr: rate: 18446, type: 0x1fffff
[  240.978844][ T5831] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.008796][ T8485] F2FS-fs (loop1): invalid crc value
[  241.056622][ T8485] F2FS-fs (loop1): Found nat_bits in checkpoint
[  241.319907][ T8485] F2FS-fs (loop1): Start checkpoint disabled!
[  241.345724][ T8485] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  241.365318][ T8485] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  241.521168][ T8550] loop3: detected capacity change from 0 to 64
[  241.581076][ T8485] syz.1.697: attempt to access beyond end of device
[  241.581076][ T8485] loop1: rw=2049, sector=77824, nr_sectors = 136 limit=40427
[  242.268754][ T8561] loop3: detected capacity change from 0 to 512
[  242.296232][ T8561] EXT4-fs: Ignoring removed mblk_io_submit option
[  242.307019][ T6648] kworker/u8:9: attempt to access beyond end of device
[  242.307019][ T6648] loop1: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  242.342643][ T8561] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  242.379354][ T6648] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  242.388060][ T8535] loop0: detected capacity change from 0 to 32768
[  242.395263][ T6648] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  242.404034][ T6648] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  242.438263][ T8561] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[  242.469951][ T8561] System zones: 1-12
[  242.530208][ T8561] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.718: corrupted in-inode xattr: e_value size too large
[  242.648836][ T8561] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.718: couldn't read orphan inode 15 (err -117)
[  242.673738][ T8535] XFS (loop0): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  242.690740][ T8528] loop6: detected capacity change from 0 to 40427
[  242.723863][ T8561] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  242.771889][ T8528] F2FS-fs (loop6): build fault injection attr: rate: 690, type: 0x1fffff
[  242.821544][ T8528] F2FS-fs (loop6): Image doesn't support compression
[  242.829056][ T8528] F2FS-fs (loop6): Image doesn't support compression
[  242.845201][ T8528] F2FS-fs (loop6): invalid crc value
[  242.874936][ T8528] F2FS-fs (loop6): Found nat_bits in checkpoint
[  243.011523][ T8535] XFS (loop0): Ending clean mount
[  243.071253][ T8535] XFS (loop0): Quotacheck needed: Please wait.
[  243.209543][ T5831] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  243.229231][ T8535] XFS (loop0): Quotacheck: Done.
[  243.280919][ T8528] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  243.485746][ T8528] F2FS-fs (loop6): inject no more block in inc_valid_node_count of f2fs_new_node_page+0x1f7/0xcf0
[  243.777630][ T5837] XFS (loop0): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  243.830887][ T8597] netlink: 512 bytes leftover after parsing attributes in process `syz.3.724'.
[  243.963477][ T8601] loop1: detected capacity change from 0 to 24
[  244.041198][ T8601] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  244.122077][ T8601] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  244.302620][ T6633] syz-executor: attempt to access beyond end of device
[  244.302620][ T6633] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  244.361887][ T6633] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  244.501877][ T8610] netlink: 8 bytes leftover after parsing attributes in process `syz.5.728'.
[  244.617303][ T8614] loop1: detected capacity change from 0 to 256
[  244.906612][ T8614] syz.1.727: attempt to access beyond end of device
[  244.906612][ T8614] loop1: rw=2049, sector=256, nr_sectors = 8 limit=256
[  244.952175][ T8621] loop5: detected capacity change from 0 to 1024
[  244.981179][ T8614] syz.1.727: attempt to access beyond end of device
[  244.981179][ T8614] loop1: rw=2049, sector=260, nr_sectors = 4 limit=256
[  245.036822][ T8614] Buffer I/O error on dev loop1, logical block 65, lost async page write
[  245.037824][ T8621] hfsplus: failed to load root directory
[  245.608915][ T8631] loop5: detected capacity change from 0 to 1024
[  245.922179][   T35] hfsplus: b-tree write err: -5, ino 4
[  246.154755][ T8640] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  246.203053][ T8618] loop0: detected capacity change from 0 to 32768
[  246.246940][ T8618] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.723 (8618)
[  246.332067][ T8618] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  246.381466][ T8618] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  246.431906][ T8618] BTRFS info (device loop0): using free-space-tree
[  246.902888][ T5837] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  247.445355][ T8676] batadv0: entered promiscuous mode
[  247.466996][ T8676] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  248.056365][ T8655] loop6: detected capacity change from 0 to 32768
[  248.192126][ T8655] XFS (loop6): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  248.240723][ T8669] loop5: detected capacity change from 0 to 32768
[  248.370886][ T8655] XFS (loop6): Ending clean mount
[  248.371057][ T8669] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  248.426992][ T8704] sg_write: process 305 (syz.0.754) changed security contexts after opening file descriptor, this is not allowed.
[  248.440880][ T8704] program syz.0.754 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  248.582497][ T8655] Process accounting resumed
[  248.647264][ T8669] XFS (loop5): Ending clean mount
[  248.659736][ T8669] XFS (loop5): Quotacheck needed: Please wait.
[  248.738885][ T8713] bridge0: port 3(hsr0) entered blocking state
[  248.764931][ T8713] bridge0: port 3(hsr0) entered disabled state
[  248.778114][ T8713] hsr0: entered allmulticast mode
[  248.802677][ T8713] hsr_slave_0: entered allmulticast mode
[  248.803170][ T8669] XFS (loop5): Quotacheck: Done.
[  248.817902][ T8713] hsr_slave_1: entered allmulticast mode
[  248.836144][ T8713] hsr0: entered promiscuous mode
[  248.844324][ T8713] bridge0: port 3(hsr0) entered blocking state
[  248.851065][ T8713] bridge0: port 3(hsr0) entered forwarding state
[  248.861276][ T6633] XFS (loop6): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  248.967658][ T8683] loop1: detected capacity change from 0 to 32768
[  248.982874][ T8683] XFS: noikeep mount option is deprecated.
[  249.028937][ T6267] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  249.131789][ T8683] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  249.537995][ T8683] XFS (loop1): Ending clean mount
[  249.557471][ T8683] XFS (loop1): Quotacheck needed: Please wait.
[  249.725223][ T8683] XFS (loop1): Quotacheck: Done.
[  249.826776][ T8711] loop3: detected capacity change from 0 to 32768
[  249.906483][ T5834] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  249.987265][ T8711] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  250.389543][ T8711] XFS (loop3): Ending clean mount
[  250.431766][ T8711] XFS (loop3): Quotacheck needed: Please wait.
[  250.589623][ T8711] XFS (loop3): Quotacheck: Done.
[  250.799270][ T8746] loop1: detected capacity change from 0 to 512
[  250.827675][ T8723] loop0: detected capacity change from 0 to 40427
[  250.846046][ T8746] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  250.859097][ T5831] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  250.877559][ T8723] F2FS-fs (loop0): build fault injection attr: rate: 690, type: 0x1fffff
[  250.921306][ T8723] F2FS-fs (loop0): Image doesn't support compression
[  250.939151][ T8723] F2FS-fs (loop0): Image doesn't support compression
[  250.984012][ T8746] EXT4-fs (loop1): 1 truncate cleaned up
[  250.999032][ T8746] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  251.005717][ T8723] F2FS-fs (loop0): invalid crc value
[  251.103356][ T8723] F2FS-fs (loop0): Found nat_bits in checkpoint
[  251.258326][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  251.422456][ T8723] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  251.575591][ T8723] F2FS-fs (loop0): inject no more block in inc_valid_node_count of f2fs_new_node_page+0x1f7/0xcf0
[  251.677641][ T5837] syz-executor: attempt to access beyond end of device
[  251.677641][ T5837] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  251.707307][ T5837] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  251.836658][ T8759] loop6: detected capacity change from 0 to 4096
[  251.850167][ T8742] loop5: detected capacity change from 0 to 32768
[  251.867719][ T8759] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512).
[  251.892618][ T8742] XFS: noikeep mount option is deprecated.
[  251.943766][ T8742] XFS (loop5): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  252.027782][ T8759] ntfs3(loop6): ino=1a, mi_enum_attr
[  252.064532][ T8759] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[  252.122466][ T8759] ntfs3(loop6): Failed to initialize $Extend/$ObjId.
[  252.169126][ T8742] XFS (loop5): Ending clean mount
[  252.227826][ T8742] XFS (loop5): Quotacheck needed: Please wait.
[  252.370616][ T8742] XFS (loop5): Quotacheck: Done.
[  252.400534][ T8742] XFS (loop5): User initiated shutdown received.
[  252.412884][ T8742] XFS (loop5): Log I/O Error (0x6) detected at xfs_fs_goingdown+0xe2/0x160 (fs/xfs/xfs_fsops.c:467).  Shutting down filesystem.
[  252.452417][ T8742] XFS (loop5): Please unmount the filesystem and rectify the problem(s)
[  252.659454][ T6267] XFS (loop5): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  253.093880][ T8781] loop3: detected capacity change from 0 to 4096
[  253.479081][ T8781] ntfs3(loop3): ino=5, "/" mi_enum_attr
[  253.532862][ T8796] netlink: 4 bytes leftover after parsing attributes in process `syz.6.780'.
[  253.551291][ T8796] netlink: 4 bytes leftover after parsing attributes in process `syz.6.780'.
[  254.401716][ T5884] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  254.415698][ T8819] loop6: detected capacity change from 0 to 736
[  254.585778][ T8819] Symlink component flag not implemented
[  254.600000][ T5884] usb 6-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  254.609898][ T8819] Symlink component flag not implemented (122)
[  254.633692][ T5884] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  254.671914][ T5884] usb 6-1: Product: syz
[  254.676137][ T5884] usb 6-1: Manufacturer: syz
[  254.680765][ T5884] usb 6-1: SerialNumber: syz
[  254.720031][ T5884] usb 6-1: config 0 descriptor??
[  254.792053][ T8822] ax25_connect(): syz.1.792 uses autobind, please contact jreuter@yaina.de
[  255.020045][ T5882] usb 6-1: USB disconnect, device number 3
[  255.598794][ T8837] syz.6.798: attempt to access beyond end of device
[  255.598794][ T8837] loop6: rw=4096, sector=0, nr_sectors = 1 limit=0
[  255.622308][ T8837] XFS (loop6): SB validate failed with error -5.
[  255.662213][   T59] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 0
[  255.712983][ T8810] loop3: detected capacity change from 0 to 32768
[  255.766719][ T8810] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  255.813964][ T8810] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  256.009623][ T8810] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  256.045575][ T8853] netlink: 'syz.1.801': attribute type 3 has an invalid length.
[  256.048957][   T46] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  256.076557][   T46] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  256.083717][ T8853] netlink: 228 bytes leftover after parsing attributes in process `syz.1.801'.
[  256.301114][   T46] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 224ms
[  256.336226][   T46] gfs2: fsid=syz:syz.0: jid=0: Done
[  256.363744][ T8810] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  257.002926][   T29] audit: type=1326 audit(1738740121.474:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8863 comm="syz.1.808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc27378cde9 code=0x7ffc0000
[  257.060374][   T29] audit: type=1326 audit(1738740121.474:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8863 comm="syz.1.808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc27378cde9 code=0x7ffc0000
[  257.092705][   T29] audit: type=1326 audit(1738740121.494:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8863 comm="syz.1.808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc27378cde9 code=0x7ffc0000
[  257.145923][   T29] audit: type=1326 audit(1738740121.504:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8863 comm="syz.1.808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc27378cde9 code=0x7ffc0000
[  257.199905][   T29] audit: type=1326 audit(1738740121.504:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8863 comm="syz.1.808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc27378cde9 code=0x7ffc0000
[  257.238609][   T29] audit: type=1326 audit(1738740121.584:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8863 comm="syz.1.808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc27378cde9 code=0x7ffc0000
[  257.334065][   T29] audit: type=1326 audit(1738740121.584:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8863 comm="syz.1.808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc27378cde9 code=0x7ffc0000
[  257.356970][   T29] audit: type=1326 audit(1738740121.584:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8863 comm="syz.1.808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc273783da7 code=0x7ffc0000
[  257.379748][   T29] audit: type=1326 audit(1738740121.584:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8863 comm="syz.1.808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc273728fb9 code=0x7ffc0000
[  257.403047][   T29] audit: type=1326 audit(1738740121.584:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8863 comm="syz.1.808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7fc27378cde9 code=0x7ffc0000
[  257.523603][ T8851] loop5: detected capacity change from 0 to 32768
[  257.567527][ T8851] 
[  257.567527][ T8851]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  257.567527][ T8851] 
[  257.718376][ T8851] ERROR: (device loop5): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4
[  257.718376][ T8851] 
[  258.017646][ T6267] 
[  258.017646][ T6267]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  258.017646][ T6267] 
[  258.091931][ T6267] 
[  258.091931][ T6267]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  258.091931][ T6267] 
[  258.728084][ T8896] loop1: detected capacity change from 0 to 4096
[  258.812495][ T8896] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  258.934905][ T8896] ntfs3(loop1): ino=19, mi_enum_attr
[  258.940279][ T8896] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  259.722345][ T8888] loop6: detected capacity change from 0 to 32768
[  259.752480][ T8888] XFS: attr2 mount option is deprecated.
[  259.776660][ T8888] XFS: ikeep mount option is deprecated.
[  259.803969][ T8888] XFS: noikeep mount option is deprecated.
[  259.934371][ T8888] XFS (loop6): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  260.062749][ T8888] XFS (loop6): Ending clean mount
[  260.086454][ T8888] XFS (loop6): Quotacheck needed: Please wait.
[  260.142887][ T8934] netlink: 12 bytes leftover after parsing attributes in process `syz.5.826'.
[  260.293452][ T8888] XFS (loop6): Quotacheck: Done.
[  260.377280][ T8937] loop1: detected capacity change from 0 to 1024
[  260.485297][ T8937] hfsplus: invalid extended attribute record
[  260.632032][ T8937] hfsplus: request for non-existent node 1280 in B*Tree
[  260.679727][ T8937] hfsplus: request for non-existent node 1280 in B*Tree
[  260.726690][ T6633] XFS (loop6): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  260.808027][   T52] hfsplus: b-tree write err: -5, ino 8
[  261.165418][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  261.171888][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  261.198103][ T8961] bond0: entered promiscuous mode
[  261.232599][ T8961] bond_slave_0: entered promiscuous mode
[  261.238648][ T8961] bond_slave_1: entered promiscuous mode
[  261.266356][ T8961] batadv0: entered promiscuous mode
[  261.286468][ T8961] 8021q: adding VLAN 0 to HW filter on device hsr1
[  262.158813][ T8965] loop3: detected capacity change from 0 to 32768
[  262.183999][ T8965] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.840 (8965)
[  262.220721][ T8965] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  262.240874][ T8969] loop5: detected capacity change from 0 to 32768
[  262.257435][ T8965] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  262.467639][ T8965] BTRFS info (device loop3): rebuilding free space tree
[  262.506597][ T8969] bcachefs (loop5): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names
[  262.545627][ T8965] BTRFS info (device loop3): disabling free space tree
[  262.562744][ T8965] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  262.580222][ T8965] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  262.580649][ T8969] bcachefs (loop5): initializing new filesystem
[  262.618552][ T8969] bcachefs (loop5): going read-write
[  262.643656][ T8969] bcachefs (loop5): marking superblocks
[  262.775367][ T8969] bcachefs (loop5): initializing freespace
[  262.810108][ T8969] bcachefs (loop5): done initializing freespace
[  262.862277][ T8969] bcachefs (loop5): reading snapshots table
[  262.892020][ T8969] bcachefs (loop5): reading snapshots done
[  262.990840][ T8969] bcachefs (loop5): done starting filesystem
[  263.259532][ T5831] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  263.339373][ T9010] mmap: syz.6.848 (9010) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  263.510497][ T6267] bcachefs (loop5): shutting down
[  263.570570][ T6267] bcachefs (loop5): going read-only
[  263.610199][ T6267] bcachefs (loop5): finished waiting for writes to stop
[  263.665799][ T6267] bcachefs (loop5): flushing journal and stopping allocators, journal seq 3
[  263.864867][ T6267] bcachefs (loop5): flushing journal and stopping allocators complete, journal seq 3
[  263.931464][ T6267] bcachefs (loop5): clean shutdown complete, journal seq 4
[  264.012343][ T6267] bcachefs (loop5): marking filesystem clean
[  264.233798][ T6267] bcachefs (loop5): shutdown complete
[  264.615692][ T9011] loop1: detected capacity change from 0 to 32768
[  264.867177][   T29] kauditd_printk_skb: 4 callbacks suppressed
[  264.867196][   T29] audit: type=1326 audit(1738740129.334:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9037 comm="syz.0.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38ff98cde9 code=0x7ffc0000
[  264.961887][   T29] audit: type=1326 audit(1738740129.364:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9037 comm="syz.0.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38ff98cde9 code=0x7ffc0000
[  265.083033][   T29] audit: type=1326 audit(1738740129.364:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9037 comm="syz.0.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f38ff98b750 code=0x7ffc0000
[  265.202220][   T29] audit: type=1326 audit(1738740129.364:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9037 comm="syz.0.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f38ff98b750 code=0x7ffc0000
[  265.271303][   T29] audit: type=1326 audit(1738740129.374:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9037 comm="syz.0.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38ff98cde9 code=0x7ffc0000
[  265.347036][   T29] audit: type=1326 audit(1738740129.374:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9037 comm="syz.0.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38ff98cde9 code=0x7ffc0000
[  265.411522][   T29] audit: type=1326 audit(1738740129.414:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9037 comm="syz.0.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=217 compat=0 ip=0x7f38ff98cde9 code=0x7ffc0000
[  265.461120][   T29] audit: type=1326 audit(1738740129.414:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9037 comm="syz.0.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38ff98cde9 code=0x7ffc0000
[  265.527888][   T29] audit: type=1326 audit(1738740129.414:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9037 comm="syz.0.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38ff98cde9 code=0x7ffc0000
[  265.647844][   T29] audit: type=1326 audit(1738740129.424:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9037 comm="syz.0.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=78 compat=0 ip=0x7f38ff98cde9 code=0x7ffc0000
[  265.782867][ T9057] loop6: detected capacity change from 0 to 1024
[  266.485777][ T9065] loop6: detected capacity change from 0 to 1024
[  267.093043][ T9055] loop3: detected capacity change from 0 to 32768
[  267.112650][ T9055] XFS: ikeep mount option is deprecated.
[  267.150204][ T9072] loop1: detected capacity change from 0 to 128
[  267.216648][ T9055] XFS (loop3): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  267.458338][ T9055] XFS (loop3): Ending clean mount
[  267.493423][ T9055] XFS (loop3): Quotacheck needed: Please wait.
[  267.627820][ T9055] XFS (loop3): Quotacheck: Done.
[  267.949831][ T5831] XFS (loop3): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  268.172798][ T9067] loop0: detected capacity change from 0 to 32768
[  268.317689][ T9067] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  268.359790][ T9082] syz.5.850 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  268.753433][ T9067] XFS (loop0): Ending clean mount
[  268.762664][ T9067] XFS (loop0): Quotacheck needed: Please wait.
[  268.912825][ T9067] XFS (loop0): Quotacheck: Done.
[  268.986811][ T9086] loop1: detected capacity change from 0 to 32768
[  269.036497][ T5837] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  269.096594][ T9086] XFS (loop1): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[  269.330538][ T9086] XFS (loop1): Ending clean mount
[  269.638935][ T9126] xt_CT: You must specify a L4 protocol and not use inversions on it
[  269.702979][ T5834] XFS (loop1): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[  269.927794][   T29] kauditd_printk_skb: 2 callbacks suppressed
[  269.927816][   T29] audit: type=1326 audit(1738740134.384:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9131 comm="syz.5.893" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7eff6398cde9 code=0x0
[  270.197003][ T9121] loop6: detected capacity change from 0 to 32768
[  270.209796][ T9121] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.886 (9121)
[  270.319628][ T9121] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  270.357167][ T9121] BTRFS info (device loop6): using sha256 (sha256-avx2) checksum algorithm
[  270.376261][ T9121] BTRFS info (device loop6): using free-space-tree
[  270.465746][ T9121] BTRFS info (device loop6): rebuilding free space tree
[  270.797849][ T9159] loop3: detected capacity change from 0 to 2048
[  270.899146][ T9159] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  270.912133][ T6633] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  270.946565][ T9159] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4
[  271.021712][ T9159] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  271.376609][ T9137] loop1: detected capacity change from 0 to 40427
[  271.416178][ T9137] F2FS-fs (loop1): Insane cp_payload (553648128 >= 504)
[  271.464901][ T9137] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  271.496640][ T9137] F2FS-fs (loop1): inline encryption not supported
[  271.509132][ T9137] F2FS-fs (loop1): Image doesn't support compression
[  271.520547][ T9137] F2FS-fs (loop1): invalid crc value
[  271.619641][ T9137] F2FS-fs (loop1): Found nat_bits in checkpoint
[  271.761287][ T9162] sctp: [Deprecated]: syz.5.899 (pid 9162) Use of int in maxseg socket option.
[  271.761287][ T9162] Use struct sctp_assoc_value instead
[  271.880025][ T9137] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  271.890002][ T9137] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  272.609277][ T9186] loop3: detected capacity change from 0 to 512
[  272.671638][ T9186] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.908: Invalid inode bitmap blk 4 in block_group 0
[  272.744108][ T9186] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  272.776475][ T9186] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 7969 vs 220 free clusters
[  272.965814][ T5831] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  273.089669][ T9175] loop6: detected capacity change from 0 to 32768
[  273.176690][ T9175] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.902 (9175)
[  273.523779][ T9198] loop1: detected capacity change from 0 to 32768
[  273.582167][ T9175] BTRFS info (device loop6): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[  273.628348][ T9175] BTRFS info (device loop6): using sha256 (sha256-avx2) checksum algorithm
[  273.675903][ T9175] BTRFS info (device loop6): using free-space-tree
[  273.767968][ T9198] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=gzip,erasure_code,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow
[  273.787876][ T9198] bcachefs (loop1): recovering from clean shutdown, journal seq 10
[  273.796267][ T9198] bcachefs (loop1): Version upgrade required:
[  273.796267][ T9198] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  273.796267][ T9198] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.20: directory_size
[  273.796267][ T9198]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  273.868501][ T9198] bcachefs (loop1): dropping and reconstructing all alloc info
[  273.879178][ T9220] syzkaller0: tun_chr_ioctl cmd 35108
[  273.897215][ T9198] bcachefs (loop1): error validating btree node on loop1 at btree dirents level 0/0
[  273.897254][ T9198]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 281474976710656: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0  
[  273.897272][ T9198]   node offset 0/24: incorrect min_key: got 0:0:7 should be POS_MIN
[  273.931001][ T9198] bcachefs (loop1): running explicit recovery pass check_topology (2), currently at recovery_pass_empty (0)
[  273.944552][ T9198] bcachefs (loop1): flagging btree dirents lost data
[  273.951774][ T9198] bcachefs (loop1): running explicit recovery pass scan_for_btree_nodes (1), currently at recovery_pass_empty (0)
[  273.967679][ T9198] error reading btree root btree=dirents level=0: btree_node_read_error, fixing
[  273.990672][ T9198] bcachefs (loop1): scan_for_btree_nodes...
[  274.167902][ T9198] bcachefs (loop1): btree node scan found 7 nodes after overwrites
[  274.182309][ T9198]  done
[  274.188958][ T9198] bcachefs (loop1): check_topology...
[  274.190940][ T9198] bcachefs (loop1): btree root dirents unreadable, must recover from scan
[  274.205618][ T9198] bcachefs (loop1): bch2_get_scanned_nodes(): recovery btree=dirents level=0 POS_MIN - SPOS_MAX
[  274.216600][ T9198] bcachefs (loop1): bch2_get_scanned_nodes(): recovering u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key 0:0:7 durability: 1 ptr: 0:41:0 gen 0
[  274.218071][ T5830] udevd[5830]: failed to send result of seq 13808 to main daemon: Connection refused
[  274.253517][ T9198] bcachefs (loop1): bch2_get_scanned_nodes(): recovery btree=dirents level=0 POS_MIN - 0:0:6
[  274.265032][ T9198] btree node with incorrect min_key  at btree=dirents level=1:
[  274.265074][ T9198]   parent: u64s 5 type btree_ptr SPOS_MAX len 0 ver 0
[  274.265090][ T9198]   next: u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key 0:0:7 durability: 1 ptr: 0:41:0 gen 0, fixing
[  274.298362][ T9198] bcachefs (loop1): set_node_min(): u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key 0:0:7 durability: 1 ptr: 0:41:0 gen 0 -> POS_MIN
[  274.316421][ T9198]  done
[  274.320251][ T9198] bcachefs (loop1): accounting_read... done
[  274.378394][ T9198] bcachefs (loop1): alloc_read... done
[  274.384424][ T9198] bcachefs (loop1): stripes_read... done
[  274.390164][ T9198] bcachefs (loop1): snapshots_read... done
[  274.396246][ T9198] bcachefs (loop1): Fixed errors, running fsck a second time to verify fs is clean
[  274.410481][ T9198] bcachefs (loop1): done starting filesystem
[  274.547876][ T9198] bcachefs (loop1): btree_path_down(): fatal error node not found at pos 4096:4330382808765833931:U32_MAX within parent node u64s 5 type btree_ptr SPOS_MAX len 0 ver 0
[  274.568175][ T9198] bcachefs (loop1): fatal error - emergency read only
[  274.580641][ T9198] bcachefs (loop1): btree_path_down(): fatal error node not found at pos 4096:4330382808765833931:U32_MAX within parent node u64s 5 type btree_ptr SPOS_MAX len 0 ver 0
[  274.613656][ T6633] BTRFS info (device loop6): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[  274.819812][ T5834] bcachefs (loop1): shutting down
[  275.021389][ T5834] bcachefs (loop1): shutdown complete
[  275.165063][ T9254] loop0: detected capacity change from 0 to 512
[  275.265873][ T9254] EXT4-fs error (device loop0): ext4_orphan_get:1389: inode #15: comm syz.0.929: casefold flag without casefold feature
[  275.337182][ T9254] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.929: couldn't read orphan inode 15 (err -117)
[  275.394346][ T9254] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  275.599984][ T9267] macsec2: entered allmulticast mode
[  275.609208][ T9267] vlan1: entered allmulticast mode
[  275.619357][ T9267] veth0_vlan: entered allmulticast mode
[  275.630721][ T5837] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  275.650499][ T9267] vlan1: left allmulticast mode
[  275.691821][ T9267] veth0_vlan: left allmulticast mode
[  276.215371][ T9252] loop3: detected capacity change from 0 to 40427
[  276.233538][ T9252] F2FS-fs (loop3): build fault injection attr: rate: 771, type: 0x1fffff
[  276.233554][ T9275] tun0: tun_chr_ioctl cmd 1074025681
[  276.266277][ T9252] F2FS-fs (loop3): invalid crc value
[  276.296698][ T9280] loop5: detected capacity change from 0 to 512
[  276.311487][ T9252] F2FS-fs (loop3): Found nat_bits in checkpoint
[  276.362354][ T9280] EXT4-fs: Ignoring removed orlov option
[  276.393992][ T9280] EXT4-fs: Ignoring removed nobh option
[  276.488853][ T9268] loop6: detected capacity change from 0 to 32768
[  276.512384][ T9268] XFS: attr2 mount option is deprecated.
[  276.532335][ T9280] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2
[  276.564796][ T9252] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  276.575245][ T9280] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.936: invalid indirect mapped block 2683928664 (level 1)
[  276.681073][ T9280] EXT4-fs (loop5): 1 truncate cleaned up
[  276.706130][ T9252] syz.3.928: attempt to access beyond end of device
[  276.706130][ T9252] loop3: rw=2049, sector=45096, nr_sectors = 96 limit=40427
[  276.722319][ T9280] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  276.741824][ T9268] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  276.820064][ T9252] F2FS-fs (loop3): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_do_write_data_page+0x87a/0x17c0
[  276.854073][ T9280] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  276.901835][ T9252] syz.3.928: attempt to access beyond end of device
[  276.901835][ T9252] loop3: rw=2049, sector=45192, nr_sectors = 40 limit=40427
[  276.934763][ T9293] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  276.951988][ T9293] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  276.985017][ T9252] syz.3.928: attempt to access beyond end of device
[  276.985017][ T9252] loop3: rw=2049, sector=45096, nr_sectors = 64 limit=40427
[  277.202180][ T6267] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  277.227833][ T9268] XFS (loop6): Ending clean mount
[  277.238084][ T5831] syz-executor: attempt to access beyond end of device
[  277.238084][ T5831] loop3: rw=2049, sector=45232, nr_sectors = 8 limit=40427
[  277.278038][ T9268] XFS (loop6): Quotacheck needed: Please wait.
[  277.281531][ T5831] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  277.463570][ T9296] loop0: detected capacity change from 0 to 4096
[  277.548396][ T9296] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  277.577216][ T9268] XFS (loop6): Quotacheck: Done.
[  277.639142][ T9296] ntfs3(loop0): It is recommened to use chkdsk.
[  277.779304][ T9296] ntfs3(loop0): failed to convert "076c" to iso8859-1
[  277.796563][ T6633] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  278.130135][ T9306] loop0: detected capacity change from 0 to 8
[  278.611918][ T9316] netlink: 8 bytes leftover after parsing attributes in process `syz.0.947'.
[  278.754951][ T9300] loop1: detected capacity change from 0 to 32768
[  278.788142][ T9300] btrfs: Deprecated parameter 'usebackuproot'
[  278.821998][ T9300] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  278.857282][ T9300] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.927 (9300)
[  278.952265][ T9300] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  278.991527][ T9300] BTRFS info (device loop1): using crc32c (crc32c-x86_64) checksum algorithm
[  279.000481][ T9300] BTRFS info (device loop1): using free-space-tree
[  279.085586][ T9336] loop3: detected capacity change from 0 to 256
[  279.146395][   T11] BTRFS warning (device loop1): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0
[  279.161723][ T9300] BTRFS error (device loop1): failed to load root extent
[  279.168837][ T9300] BTRFS warning (device loop1): try to load backup roots slot 1
[  279.178504][   T11] BTRFS warning (device loop1): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0
[  279.193071][ T9300] BTRFS warning (device loop1): couldn't read tree root
[  279.226125][ T9300] BTRFS warning (device loop1): try to load backup roots slot 2
[  279.263624][   T52] BTRFS error (device loop1): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[  279.274950][ T9300] BTRFS warning (device loop1): couldn't read tree root
[  279.282472][ T9300] BTRFS warning (device loop1): try to load backup roots slot 3
[  279.375410][ T9300] BTRFS info (device loop1): rebuilding free space tree
[  279.381867][ T9336] syz.3.951: attempt to access beyond end of device
[  279.381867][ T9336] loop3: rw=2049, sector=256, nr_sectors = 68 limit=256
[  279.503509][ T9300] BTRFS info (device loop1): checking UUID tree
[  279.937506][ T5834] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  280.394113][ T9363] loop5: detected capacity change from 0 to 16
[  280.423038][ T9363] erofs (device loop5): mounted with root inode @ nid 36.
[  280.848752][ T9370] loop5: detected capacity change from 0 to 64
[  281.850474][ T9390] loop3: detected capacity change from 0 to 128
[  281.892001][   T29] audit: type=1800 audit(1738740146.354:64): pid=9390 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.973" name="file1" dev="loop3" ino=116 res=0 errno=0
[  281.926938][ T9390] FAT-fs (loop3): error, invalid FAT chain (i_pos 548, last_block 8)
[  281.950176][ T9390] FAT-fs (loop3): Filesystem has been set read-only
[  281.974561][ T9393] loop0: detected capacity change from 0 to 256
[  281.980885][ T9390] FAT-fs (loop3): error, corrupted file size (i_pos 548, 522)
[  282.054913][ T9393] exFAT-fs (loop0): failed to load upcase table (idx : 0x00017f3e, chksum : 0x1380c30a, utbl_chksum : 0xe619d30d)
[  282.363395][   T29] audit: type=1326 audit(1738740146.834:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9405 comm="syz.6.981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f654858cde9 code=0x7ffc0000
[  282.408479][ T9406] loop0: detected capacity change from 0 to 512
[  282.430205][   T29] audit: type=1326 audit(1738740146.844:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9405 comm="syz.6.981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f654858cde9 code=0x7ffc0000
[  282.464562][   T29] audit: type=1326 audit(1738740146.854:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9405 comm="syz.6.981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f654858cde9 code=0x7ffc0000
[  282.497331][   T29] audit: type=1326 audit(1738740146.854:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9405 comm="syz.6.981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f654858cde9 code=0x7ffc0000
[  282.528478][ T9406] EXT4-fs error (device loop0): ext4_orphan_get:1389: inode #15: comm syz.0.980: casefold flag without casefold feature
[  282.542598][   T29] audit: type=1326 audit(1738740146.854:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9405 comm="syz.6.981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f654858cde9 code=0x7ffc0000
[  282.554862][ T9406] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.980: couldn't read orphan inode 15 (err -117)
[  282.565054][   T29] audit: type=1326 audit(1738740146.864:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9405 comm="syz.6.981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f654858cde9 code=0x7ffc0000
[  282.599950][   T29] audit: type=1326 audit(1738740146.864:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9405 comm="syz.6.981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f654858cde9 code=0x7ffc0000
[  282.627803][   T29] audit: type=1326 audit(1738740146.864:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9405 comm="syz.6.981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6548583da7 code=0x7ffc0000
[  282.683182][ T9406] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  282.686053][   T29] audit: type=1326 audit(1738740146.864:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9405 comm="syz.6.981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6548528fb9 code=0x7ffc0000
[  282.879363][ T5837] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  283.099754][ T9430] loop0: detected capacity change from 0 to 64
[  283.211062][ T9430] hfs: unable to locate alternate MDB
[  283.218335][ T9430] hfs: continuing without an alternate MDB
[  283.927359][ T9428] loop3: detected capacity change from 0 to 32768
[  284.054850][ T9448] loop0: detected capacity change from 0 to 1024
[  284.082566][ T9448] EXT4-fs: Ignoring removed orlov option
[  284.117748][ T9448] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  284.211900][ T9448] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  284.300200][ T9448] EXT4-fs error (device loop0): ext4_check_all_de:656: inode #12: block 7: comm syz.0.996: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=108 fake=0
[  284.399139][ T9448] EXT4-fs (loop0): Remounting filesystem read-only
[  284.473380][ T9457] loop6: detected capacity change from 0 to 64
[  284.533434][ T5837] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  284.586935][ T9461] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1002'.
[  284.883589][ T9444] loop5: detected capacity change from 0 to 32768
[  285.845226][ T9493] loop3: detected capacity change from 0 to 256
[  287.465530][ T9503] loop1: detected capacity change from 0 to 32768
[  287.480349][ T9503] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1020 (9503)
[  287.534172][ T9503] BTRFS info (device loop1): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  287.556617][ T9503] BTRFS info (device loop1): using crc32c (crc32c-x86_64) checksum algorithm
[  287.589432][ T9503] BTRFS info (device loop1): using free-space-tree
[  287.690454][ T9551] ptrace attach of ""[9553] was attempted by "./syz-executor exec"[9551]
[  287.902354][ T9558] delete_channel: no stack
[  288.063377][ T5834] BTRFS info (device loop1): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  288.190107][   T29] kauditd_printk_skb: 12 callbacks suppressed
[  288.190128][   T29] audit: type=1326 audit(1738740152.644:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9566 comm="syz.6.1044" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f654858cde9 code=0x0
[  288.936279][ T9581] loop0: detected capacity change from 0 to 1024
[  289.122816][ T6648] hfsplus: b-tree write err: -5, ino 4
[  289.633485][ T9574] loop5: detected capacity change from 0 to 32768
[  289.732610][ T9579] loop1: detected capacity change from 0 to 32768
[  289.752216][ T9579] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1041 (9579)
[  289.821464][ T9579] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  289.851887][ T9579] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  289.860596][ T9579] BTRFS info (device loop1): using free-space-tree
[  290.038740][ T9579] BTRFS info (device loop1): rebuilding free space tree
[  290.156951][ T9616] loop0: detected capacity change from 0 to 2048
[  290.220280][ T9616] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  290.375798][ T5834] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  290.899246][ T9589] loop3: detected capacity change from 0 to 32768
[  290.925138][ T9623] syz.5.1063: attempt to access beyond end of device
[  290.925138][ T9623] nbd5: rw=0, sector=64, nr_sectors = 1 limit=0
[  290.986756][ T9623] syz.5.1063: attempt to access beyond end of device
[  290.986756][ T9623] nbd5: rw=0, sector=256, nr_sectors = 1 limit=0
[  291.020628][ T9623] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=256, location=256
[  291.038309][ T9623] syz.5.1063: attempt to access beyond end of device
[  291.038309][ T9623] nbd5: rw=0, sector=512, nr_sectors = 1 limit=0
[  291.057292][ T9589] XFS (loop3): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  291.062199][ T9623] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=512, location=512
[  291.077566][ T9623] syz.5.1063: attempt to access beyond end of device
[  291.077566][ T9623] nbd5: rw=0, sector=64, nr_sectors = 2 limit=0
[  291.172033][ T9623] syz.5.1063: attempt to access beyond end of device
[  291.172033][ T9623] nbd5: rw=0, sector=512, nr_sectors = 2 limit=0
[  291.217406][ T9623] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=256, location=256
[  291.262179][ T9623] syz.5.1063: attempt to access beyond end of device
[  291.262179][ T9623] nbd5: rw=0, sector=1024, nr_sectors = 2 limit=0
[  291.275910][ T9623] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=512, location=512
[  291.286886][ T9623] syz.5.1063: attempt to access beyond end of device
[  291.286886][ T9623] nbd5: rw=0, sector=64, nr_sectors = 4 limit=0
[  291.300346][ T9623] syz.5.1063: attempt to access beyond end of device
[  291.300346][ T9623] nbd5: rw=0, sector=1024, nr_sectors = 4 limit=0
[  291.314019][ T9623] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=256, location=256
[  291.324164][ T9623] syz.5.1063: attempt to access beyond end of device
[  291.324164][ T9623] nbd5: rw=0, sector=2048, nr_sectors = 4 limit=0
[  291.340347][ T9623] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=512, location=512
[  291.351224][ T9623] syz.5.1063: attempt to access beyond end of device
[  291.351224][ T9623] nbd5: rw=0, sector=64, nr_sectors = 8 limit=0
[  291.378422][ T9623] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=256, location=256
[  291.398822][ T9623] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=512, location=512
[  291.418919][ T9623] UDF-fs: warning (device nbd5): udf_fill_super: No partition found (1)
[  291.448757][ T9602] loop6: detected capacity change from 0 to 40427
[  291.491745][ T9602] F2FS-fs (loop6): Invalid Fs Meta Ino: node(1) meta(2) root(0)
[  291.527992][ T9602] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  291.551463][ T9589] XFS (loop3): Ending clean mount
[  291.567346][ T9602] F2FS-fs (loop6): build fault injection attr: rate: 18446, type: 0x1fffff
[  291.622329][ T9602] F2FS-fs (loop6): invalid crc value
[  291.643828][ T9602] F2FS-fs (loop6): Found nat_bits in checkpoint
[  291.831791][ T9602] F2FS-fs (loop6): Start checkpoint disabled!
[  291.883672][ T9602] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  291.899835][ T9602] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  292.057801][ T5831] XFS (loop3): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  292.312012][ T9654] loop1: detected capacity change from 0 to 512
[  292.392780][ T9654] EXT4-fs error (device loop1): ext4_orphan_get:1389: inode #15: comm syz.1.1072: casefold flag without casefold feature
[  292.444146][ T6266] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  292.455157][ T6266] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  292.462438][ T9654] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.1072: couldn't read orphan inode 15 (err -117)
[  292.514020][ T9654] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  292.635308][ T9654] EXT4-fs warning (device loop1): ext4_empty_dir:3105: inode #2: comm syz.1.1072: directory missing '.'
[  292.803488][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.059074][ T9664] loop1: detected capacity change from 0 to 512
[  293.181212][ T9664] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  293.202279][ T9664] ext4 filesystem being mounted at /208/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  293.264676][ T9664] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #2: comm syz.1.1076: corrupted inode contents
[  293.379237][ T9664] EXT4-fs error (device loop1): ext4_dirty_inode:6042: inode #2: comm syz.1.1076: mark_inode_dirty error
[  293.443688][ T9664] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #2: comm syz.1.1076: corrupted inode contents
[  293.497396][ T9675] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #2: comm syz.1.1076: corrupted inode contents
[  293.550050][ T9675] EXT4-fs error (device loop1): ext4_dirty_inode:6042: inode #2: comm syz.1.1076: mark_inode_dirty error
[  293.563590][ T9658] loop0: detected capacity change from 0 to 32768
[  293.582340][   T46] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  293.592610][ T9675] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #2: comm syz.1.1076: corrupted inode contents
[  293.663735][ T9683] loop6: detected capacity change from 0 to 256
[  293.683767][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.736541][ T9658] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,degraded,no_splitbrain_check,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow
[  293.790948][ T9658] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[  293.801992][ T9658] bcachefs (loop0): Version upgrade required:
[  293.801992][ T9658] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  293.801992][ T9658] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.20: directory_size
[  293.801992][ T9658]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  293.876514][ T9658] bcachefs (loop0): dropping and reconstructing all alloc info
[  293.892509][   T46] usb 6-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  293.901856][   T46] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  293.916355][   T46] usb 6-1: Product: syz
[  293.920567][   T46] usb 6-1: Manufacturer: syz
[  293.928753][   T46] usb 6-1: SerialNumber: syz
[  293.946994][ T9658] bcachefs (loop0): accounting_read...
[  293.950437][   T46] usb 6-1: config 0 descriptor??
[  293.967558][ T9658]  done
[  293.970371][ T9658] bcachefs (loop0): alloc_read... done
[  293.976821][ T9658] bcachefs (loop0): stripes_read... done
[  293.995923][ T9658] bcachefs (loop0): snapshots_read... done
[  294.004315][ T9658] bcachefs (loop0): done starting filesystem
[  294.238690][ T5837] bcachefs (loop0): shutting down
[  294.300091][ T9697] loop6: detected capacity change from 0 to 1024
[  294.320575][ T5837] bcachefs (loop0): shutdown complete
[  294.385949][ T9697] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  294.420719][   T46] usb 6-1: Firmware: major: 0, minor: 0, hardware type: ATUSB (0)
[  294.439781][ T9679] loop3: detected capacity change from 0 to 32768
[  294.448359][   T46] usb 6-1: Firmware version (0.0) predates our first public release.
[  294.480871][   T46] usb 6-1: Please update to version 0.2 or newer
[  294.500054][  T116] read_mapping_page failed!
[  294.553455][ T6633] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  294.685356][   T46] usb 6-1: USB disconnect, device number 4
[  295.133355][ T9714] loop6: detected capacity change from 0 to 128
[  295.179201][ T9714] FAT-fs (loop6): Directory bread(block 32) failed
[  295.202669][ T9714] FAT-fs (loop6): Directory bread(block 33) failed
[  295.230817][ T9714] FAT-fs (loop6): Directory bread(block 34) failed
[  295.261627][ T9714] FAT-fs (loop6): Directory bread(block 35) failed
[  295.268511][ T9714] FAT-fs (loop6): Directory bread(block 36) failed
[  295.281756][ T9714] FAT-fs (loop6): Directory bread(block 37) failed
[  295.310386][ T9714] FAT-fs (loop6): Directory bread(block 38) failed
[  295.361709][ T9714] FAT-fs (loop6): Directory bread(block 39) failed
[  295.368467][ T9714] FAT-fs (loop6): Directory bread(block 40) failed
[  295.391736][ T9714] FAT-fs (loop6): Directory bread(block 41) failed
[  295.428568][ T9720] sch_tbf: peakrate 7 is lower than or equals to rate 62733 !
[  295.960135][ T9733] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1103'.
[  296.264118][   T46] usb 2-1: new low-speed USB device number 5 using dummy_hcd
[  296.378315][ T9745] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1108'.
[  296.437043][   T46] usb 2-1: config 179 has an invalid interface number: 65 but max is 0
[  296.468295][   T46] usb 2-1: config 179 has no interface number 0
[  296.481510][   T46] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 10
[  296.511641][   T46] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 8
[  296.545032][   T46] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10
[  296.578397][   T46] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 45824, setting to 8
[  296.635374][   T46] usb 2-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  296.669865][   T46] usb 2-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  296.691670][   T46] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  296.716747][ T9735] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  296.731206][ T9735] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  297.132046][ T5882] usb 2-1: USB disconnect, device number 5
[  297.132046][    C1] xpad 2-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  297.619886][ T9774] loop3: detected capacity change from 0 to 128
[  297.945795][ T9779] loop1: detected capacity change from 0 to 128
[  297.975640][ T9779] EXT4-fs (loop1): Test dummy encryption mode enabled
[  298.026078][ T9779] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  298.090568][ T9779] ext4 filesystem being mounted at /215/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  298.143074][ T9786] loop6: detected capacity change from 0 to 2048
[  298.168991][ T9786] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  298.268971][ T5834] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  298.449383][ T9790] loop0: detected capacity change from 0 to 1024
[  298.973034][ T9776] loop5: detected capacity change from 0 to 32768
[  298.999041][ T9804] loop6: detected capacity change from 0 to 4096
[  299.066240][ T9809] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1136'.
[  299.089766][ T9814] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  299.241222][ T9776] bcachefs (loop5): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=crc64,compression=lz4,noinodes_use_key_cache,journal_flush_delay=1001,norecovery,reconstruct_alloc
[  299.277201][ T9776] bcachefs (loop5): recovering from clean shutdown, journal seq 10
[  299.287343][ T9776] bcachefs (loop5): Version upgrade required:
[  299.287343][ T9776] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  299.287343][ T9776] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.20: directory_size
[  299.287343][ T9776]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  299.296401][ T9821] NILFS (loop6): DAT doesn't have a block to manage vblocknr = 524288
[  299.370327][ T9776] bcachefs (loop5): dropping and reconstructing all alloc info
[  299.407775][ T9821] NILFS error (device loop6): nilfs_bmap_truncate: broken bmap (inode number=15)
[  299.419173][ T9820] netlink: zone id is out of range
[  299.448175][ T9824] loop0: detected capacity change from 0 to 1024
[  299.449236][ T9776] bcachefs (loop5): accounting_read...
[  299.476930][ T9821] Remounting filesystem read-only
[  299.488296][ T9821] NILFS (loop6): error -5 truncating bmap (ino=15)
[  299.491971][ T9820] netlink: set zone limit has 8 unknown bytes
[  299.525593][ T9776]  done
[  299.528435][ T9776] bcachefs (loop5): alloc_read... done
[  299.537049][ T9824] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  299.555293][ T9776] bcachefs (loop5): stripes_read... done
[  299.571538][ T9776] bcachefs (loop5): snapshots_read... done
[  299.593509][ T9776] bcachefs (loop5): done starting filesystem
[  299.638556][ T6633] NILFS (loop6): disposed unprocessed dirty file(s) when detaching log writer
[  299.862524][ T6267] bcachefs (loop5): shutting down
[  299.899006][ T9833] netlink: 'syz.6.1142': attribute type 2 has an invalid length.
[  299.953431][ T6267] bcachefs (loop5): shutdown complete
[  300.382606][ T9852] netlink: 136 bytes leftover after parsing attributes in process `syz.3.1153'.
[  300.528668][ T9854] loop3: detected capacity change from 0 to 64
[  301.972083][ T9900] netlink: 'syz.0.1176': attribute type 25 has an invalid length.
[  302.006050][ T9900] netlink: 'syz.0.1176': attribute type 7 has an invalid length.
[  407.071317][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  407.078390][    C0] rcu: 	1-...!: (1 GPs behind) idle=4e9c/1/0x4000000000000000 softirq=34746/34747 fqs=0
[  407.089971][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P9896/1:b..l
[  407.097924][    C0] rcu: 	(detected by 0, t=10505 jiffies, g=38157, q=225 ncpus=2)
[  407.105762][    C0] Sending NMI from CPU 0 to CPUs 1:
[  407.105801][    C1] NMI backtrace for cpu 1
[  407.105822][    C1] CPU: 1 UID: 0 PID: 5190 Comm: klogd Not tainted 6.14.0-rc1-next-20250205-syzkaller #0
[  407.105841][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  407.105859][    C1] RIP: 0010:lock_acquire+0x180/0x550
[  407.105892][    C1] Code: 8d bc 24 80 00 00 00 4c 89 fb 48 c1 eb 03 42 80 3c 2b 00 74 08 4c 89 ff e8 0d 1d 8b 00 48 c7 84 24 80 00 00 00 00 00 00 00 9c <8f> 84 24 80 00 00 00 42 80 3c 2b 00 74 08 4c 89 ff e8 fa 1b 8b 00
[  407.105907][    C1] RSP: 0018:ffffc90000a18a18 EFLAGS: 00000046
[  407.105922][    C1] RAX: 0000000000000000 RBX: 1ffff92000143154 RCX: ffffffff819adf74
[  407.105934][    C1] RDX: 0000000000000000 RSI: ffffffff8c60bde0 RDI: ffffffff8c60bda0
[  407.105946][    C1] RBP: ffffc90000a18b68 R08: ffffffff901b9577 R09: 1ffffffff20372ae
[  407.105959][    C1] R10: dffffc0000000000 R11: fffffbfff20372af R12: 1ffff9200014314c
[  407.105972][    C1] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffc90000a18aa0
[  407.105988][    C1] FS:  00007f80afd8d380(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  407.106003][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  407.106014][    C1] CR2: 0000001b3031eff8 CR3: 0000000033338000 CR4: 00000000003526f0
[  407.106030][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  407.106040][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  407.106050][    C1] Call Trace:
[  407.106057][    C1]  <NMI>
[  407.106065][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  407.106090][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  407.106116][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  407.106138][    C1]  ? nmi_handle+0x2a/0x5a0
[  407.106176][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  407.106197][    C1]  ? nmi_handle+0x14f/0x5a0
[  407.106223][    C1]  ? nmi_handle+0x2a/0x5a0
[  407.106250][    C1]  ? lock_acquire+0x180/0x550
[  407.106273][    C1]  ? default_do_nmi+0x63/0x160
[  407.106294][    C1]  ? exc_nmi+0x123/0x1f0
[  407.106314][    C1]  ? end_repeat_nmi+0xf/0x53
[  407.106344][    C1]  ? lock_acquire+0xd4/0x550
[  407.106368][    C1]  ? lock_acquire+0x180/0x550
[  407.106392][    C1]  ? lock_acquire+0x180/0x550
[  407.106415][    C1]  ? lock_acquire+0x180/0x550
[  407.106439][    C1]  </NMI>
[  407.106444][    C1]  <IRQ>
[  407.106456][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  407.106485][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  407.106516][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  407.106543][    C1]  _raw_spin_lock_irqsave+0xd5/0x120
[  407.106565][    C1]  ? debug_object_deactivate+0x158/0x390
[  407.106587][    C1]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[  407.106618][    C1]  debug_object_deactivate+0x158/0x390
[  407.106640][    C1]  ? advance_sched+0xa02/0xca0
[  407.106661][    C1]  ? __pfx_debug_object_deactivate+0x10/0x10
[  407.106694][    C1]  debug_deactivate+0x1b/0x220
[  407.106713][    C1]  __hrtimer_run_queues+0x305/0xd30
[  407.106754][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  407.106781][    C1]  ? sched_clock+0x4a/0x70
[  407.106802][    C1]  ? read_tsc+0x9/0x20
[  407.106820][    C1]  ? ktime_get_update_offsets_now+0x38e/0x3b0
[  407.106848][    C1]  hrtimer_interrupt+0x403/0xa40
[  407.106893][    C1]  __sysvec_apic_timer_interrupt+0x110/0x420
[  407.106922][    C1]  sysvec_apic_timer_interrupt+0xa1/0xc0
[  407.106947][    C1]  </IRQ>
[  407.106952][    C1]  <TASK>
[  407.106959][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  407.106984][    C1] RIP: 0010:_raw_spin_unlock_irqrestore+0xd8/0x140
[  407.107008][    C1] Code: 9c 8f 44 24 20 42 80 3c 23 00 74 08 4c 89 f7 e8 1e 7d 2a f6 f6 44 24 21 02 75 52 41 f7 c7 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> c3 33 92 f5 65 8b 05 54 55 08 74 85 c0 74 43 48 c7 04 24 0e 36
[  407.107023][    C1] RSP: 0018:ffffc90002f97780 EFLAGS: 00000206
[  407.107037][    C1] RAX: 6eb4a69bf2aee300 RBX: 1ffff920005f2ef4 RCX: ffffffff9a40b903
[  407.107050][    C1] RDX: dffffc0000000000 RSI: ffffffff8c0aa920 RDI: 0000000000000001
[  407.107062][    C1] RBP: ffffc90002f97810 R08: ffffffff901b9577 R09: 1ffffffff20372ae
[  407.107075][    C1] R10: dffffc0000000000 R11: fffffbfff20372af R12: dffffc0000000000
[  407.107088][    C1] R13: 1ffff920005f2ef0 R14: ffffc90002f977a0 R15: 0000000000000246
[  407.107113][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  407.107146][    C1]  rcu_preempt_deferred_qs_irqrestore+0x8c4/0xca0
[  407.107170][    C1]  ? preempt_schedule+0xe1/0xf0
[  407.107204][    C1]  ? __pfx_rcu_preempt_deferred_qs_irqrestore+0x10/0x10
[  407.107235][    C1]  ? rcu_is_watching+0x15/0xb0
[  407.107254][    C1]  rcu_read_unlock_special+0x497/0x570
[  407.107277][    C1]  ? __pfx_lock_release+0x10/0x10
[  407.107301][    C1]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  407.107324][    C1]  ? autoremove_wake_function+0x37/0x110
[  407.107349][    C1]  ? __wake_up_common_lock+0x18c/0x1e0
[  407.107378][    C1]  __rcu_read_unlock+0xa1/0x110
[  407.107403][    C1]  unix_dgram_sendmsg+0xf23/0x1df0
[  407.107453][    C1]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[  407.107483][    C1]  ? aa_sock_msg_perm+0xd9/0x1d0
[  407.107520][    C1]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[  407.107543][    C1]  __sock_sendmsg+0x221/0x270
[  407.107572][    C1]  __sys_sendto+0x363/0x4c0
[  407.107594][    C1]  ? __pfx___sys_sendto+0x10/0x10
[  407.107630][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  407.107656][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  407.107685][    C1]  __x64_sys_sendto+0xde/0x100
[  407.107705][    C1]  do_syscall_64+0xf3/0x230
[  407.107722][    C1]  ? clear_bhb_loop+0x35/0x90
[  407.107749][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  407.107772][    C1] RIP: 0033:0x7f80afeef9b5
[  407.107792][    C1] Code: 8b 44 24 08 48 83 c4 28 48 98 c3 48 98 c3 41 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 26 45 31 c9 45 31 c0 b8 2c 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 7a 48 8b 15 44 c4 0c 00 f7 d8 64 89 02 48 83
[  407.107806][    C1] RSP: 002b:00007ffdd3051ba8 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  407.107823][    C1] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f80afeef9b5
[  407.107834][    C1] RDX: 0000000000000070 RSI: 00005568e4915180 RDI: 0000000000000003
[  407.107845][    C1] RBP: 00005568e490d910 R08: 0000000000000000 R09: 0000000000000000
[  407.107856][    C1] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000013
[  407.107866][    C1] R13: 00007f80b007d212 R14: 00007ffdd3051ca8 R15: 0000000000000000
[  407.107889][    C1]  </TASK>
[  407.108799][    C0] task:syz.1.1174      state:R  running task     stack:23760 pid:9896  tgid:9895  ppid:5834   task_flags:0x400040 flags:0x00004002
[  407.731686][    C0] Call Trace:
[  407.734981][    C0]  <TASK>
[  407.737936][    C0]  __schedule+0x190e/0x4c90
[  407.742513][    C0]  ? __pfx___schedule+0x10/0x10
[  407.747457][    C0]  ? preempt_schedule+0xe1/0xf0
[  407.752335][    C0]  preempt_schedule_common+0x84/0xd0
[  407.757650][    C0]  preempt_schedule+0xe1/0xf0
[  407.762358][    C0]  ? __pfx_preempt_schedule+0x10/0x10
[  407.767761][    C0]  ? set_pte_range+0x3e5/0x750
[  407.772575][    C0]  preempt_schedule_thunk+0x1a/0x30
[  407.777820][    C0]  _raw_spin_unlock+0x3e/0x50
[  407.782525][    C0]  finish_fault+0xa76/0x11d0
[  407.787167][    C0]  ? __pfx_finish_fault+0x10/0x10
[  407.792219][    C0]  ? __pfx_lock_release+0x10/0x10
[  407.797290][    C0]  ? __do_fault+0x24e/0x390
[  407.801824][    C0]  __handle_mm_fault+0x4c6f/0x70f0
[  407.806965][    C0]  ? mark_lock+0x9a/0x360
[  407.811378][    C0]  ? __pfx___handle_mm_fault+0x10/0x10
[  407.816875][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  407.821935][    C0]  ? do_raw_spin_lock+0x14f/0x370
[  407.827046][    C0]  ? follow_page_pte+0x25a/0x1460
[  407.832102][    C0]  ? follow_page_pte+0x86a/0x1460
[  407.837159][    C0]  ? __pfx_lock_release+0x10/0x10
[  407.842223][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[  407.847478][    C0]  ? __pfx___might_resched+0x10/0x10
[  407.852796][    C0]  handle_mm_fault+0x3e5/0x8d0
[  407.857601][    C0]  __get_user_pages+0x1a92/0x4140
[  407.862715][    C0]  ? __pfx___get_user_pages+0x10/0x10
[  407.868138][    C0]  ? __pfx_mt_find+0x10/0x10
[  407.872800][    C0]  populate_vma_page_range+0x264/0x330
[  407.878291][    C0]  ? __pfx_populate_vma_page_range+0x10/0x10
[  407.884294][    C0]  ? userfaultfd_unmap_complete+0x30c/0x360
[  407.890229][    C0]  __mm_populate+0x27a/0x460
[  407.894855][    C0]  ? __pfx___mm_populate+0x10/0x10
[  407.900026][    C0]  vm_mmap_pgoff+0x303/0x430
[  407.904692][    C0]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  407.909838][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  407.916200][    C0]  ? ksys_mmap_pgoff+0xdf/0x720
[  407.921075][    C0]  ? syscall_user_dispatch+0x4e/0x90
[  407.926390][    C0]  ? __x64_sys_mmap+0x7f/0x140
[  407.931192][    C0]  do_syscall_64+0xf3/0x230
[  407.935726][    C0]  ? clear_bhb_loop+0x35/0x90
[  407.940440][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  407.946360][    C0] RIP: 0033:0x7fc27378cde9
[  407.950804][    C0] RSP: 002b:00007fc2715f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  407.959246][    C0] RAX: ffffffffffffffda RBX: 00007fc2739a5fa0 RCX: 00007fc27378cde9
[  407.967239][    C0] RDX: b635773f06ebbeef RSI: 0000000000b36000 RDI: 0000200000000000
[  407.975227][    C0] RBP: 00007fc27380e2a0 R08: ffffffffffffffff R09: 0000000000000000
[  407.983213][    C0] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[  407.991196][    C0] R13: 0000000000000000 R14: 00007fc2739a5fa0 R15: 00007ffd6e44e6a8
[  407.999213][    C0]  </TASK>
[  408.002245][    C0] rcu: rcu_preempt kthread starved for 10505 jiffies! g38157 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  408.013457][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  408.023440][    C0] rcu: RCU grace-period kthread stack dump:
[  408.029342][    C0] task:rcu_preempt     state:R  running task     stack:25400 pid:17    tgid:17    ppid:2      task_flags:0x208040 flags:0x00004000
[  408.042864][    C0] Call Trace:
[  408.046156][    C0]  <TASK>
[  408.049112][    C0]  __schedule+0x190e/0x4c90
[  408.053661][    C0]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  408.059618][    C0]  ? __pfx___schedule+0x10/0x10
[  408.064541][    C0]  ? __pfx_lock_release+0x10/0x10
[  408.069634][    C0]  ? __pfx___mod_timer+0x10/0x10
[  408.074597][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  408.080954][    C0]  ? schedule+0x90/0x320
[  408.085222][    C0]  schedule+0x14b/0x320
[  408.089412][    C0]  schedule_timeout+0x15a/0x290
[  408.094311][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  408.099705][    C0]  ? __pfx_process_timeout+0x10/0x10
[  408.105036][    C0]  ? prepare_to_swait_event+0x330/0x350
[  408.110623][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  408.115866][    C0]  rcu_gp_fqs_loop+0x2df/0x1330
[  408.120764][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  408.126007][    C0]  ? rcu_gp_init+0x1256/0x1630
[  408.130825][    C0]  ? __pfx_rcu_gp_init+0x10/0x10
[  408.135795][    C0]  ? __pfx_rcu_watching_snap_save+0x10/0x10
[  408.141729][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  408.147045][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  408.153004][    C0]  ? finish_swait+0xd4/0x1e0
[  408.157635][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  408.162863][    C0]  rcu_gp_kthread+0xa7/0x3b0
[  408.167487][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  408.172716][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  408.178643][    C0]  ? __kthread_parkme+0x169/0x1d0
[  408.183696][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  408.188949][    C0]  kthread+0x7a9/0x920
[  408.193066][    C0]  ? __pfx_kthread+0x10/0x10
[  408.197743][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  408.202979][    C0]  ? __pfx_kthread+0x10/0x10
[  408.207597][    C0]  ? __pfx_kthread+0x10/0x10
[  408.212222][    C0]  ? __pfx_kthread+0x10/0x10
[  408.216858][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  408.222087][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  408.227317][    C0]  ? __pfx_kthread+0x10/0x10
[  408.231940][    C0]  ret_from_fork+0x4b/0x80
[  408.236385][    C0]  ? __pfx_kthread+0x10/0x10
[  408.241090][    C0]  ret_from_fork_asm+0x1a/0x30
[  408.245913][    C0]  </TASK>
[  408.248953][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  408.255301][    C0] CPU: 0 UID: 0 PID: 6267 Comm: syz-executor Not tainted 6.14.0-rc1-next-20250205-syzkaller #0
[  408.265649][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  408.275723][    C0] RIP: 0010:smp_call_function_many_cond+0x1ba4/0x2d30
[  408.282614][    C0] Code: 03 84 c0 75 7e 45 8b 65 00 44 89 e6 83 e6 01 31 ff e8 30 e5 0b 00 41 83 e4 01 4c 8b 64 24 68 75 07 e8 e0 e0 0b 00 eb 41 f3 90 <48> b8 00 00 00 00 00 fc ff df 0f b6 04 03 84 c0 75 11 41 f7 45 00
[  408.302258][    C0] RSP: 0018:ffffc9000519f500 EFLAGS: 00000293
[  408.308359][    C0] RAX: ffffffff81b39f65 RBX: 1ffff110170e88b9 RCX: ffff88802f84bc00
[  408.316351][    C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  408.324337][    C0] RBP: ffffc9000519f700 R08: ffffffff81b39f30 R09: 1ffffffff286090f
[  408.332326][    C0] R10: dffffc0000000000 R11: fffffbfff2860910 R12: ffff8880b863f948
[  408.340329][    C0] R13: ffff8880b87445c8 R14: ffff8880b863f940 R15: 0000000000000001
[  408.348324][    C0] FS:  00005555879b9500(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  408.357278][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  408.363889][    C0] CR2: 0000001b30617ff8 CR3: 0000000057180000 CR4: 00000000003526f0
[  408.371892][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  408.379889][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  408.387895][    C0] Call Trace:
[  408.391278][    C0]  <IRQ>
[  408.394145][    C0]  ? rcu_check_gp_kthread_starvation+0x278/0x310
[  408.400524][    C0]  ? print_other_cpu_stall+0x1481/0x15c0
[  408.406225][    C0]  ? __pfx_print_other_cpu_stall+0x10/0x10
[  408.412071][    C0]  ? cgroup_rstat_updated+0x13b/0xc30
[  408.417489][    C0]  ? kvm_check_and_clear_guest_paused+0x6a/0xd0
[  408.423754][    C0]  ? rcu_sched_clock_irq+0xa26/0x10e0
[  408.429157][    C0]  ? __pfx_rcu_sched_clock_irq+0x10/0x10
[  408.434827][    C0]  ? update_process_times+0x242/0x2f0
[  408.440226][    C0]  ? tick_nohz_handler+0x37c/0x500
[  408.445363][    C0]  ? __pfx_tick_nohz_handler+0x10/0x10
[  408.450850][    C0]  ? __hrtimer_run_queues+0x551/0xd30
[  408.456283][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  408.462024][    C0]  ? sched_clock+0x4a/0x70
[  408.466468][    C0]  ? read_tsc+0x9/0x20
[  408.470557][    C0]  ? ktime_get_update_offsets_now+0x38e/0x3b0
[  408.476659][    C0]  ? hrtimer_interrupt+0x403/0xa40
[  408.481842][    C0]  ? __sysvec_apic_timer_interrupt+0x110/0x420
[  408.488031][    C0]  ? sysvec_apic_timer_interrupt+0xa1/0xc0
[  408.493863][    C0]  </IRQ>
[  408.496811][    C0]  <TASK>
[  408.499764][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  408.505954][    C0]  ? smp_call_function_many_cond+0x1b90/0x2d30
[  408.512132][    C0]  ? smp_call_function_many_cond+0x1bc5/0x2d30
[  408.518320][    C0]  ? smp_call_function_many_cond+0x1ba4/0x2d30
[  408.524528][    C0]  ? __mutex_unlock_slowpath+0x227/0x800
[  408.530219][    C0]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  408.536573][    C0]  ? __pfx_lock_release+0x10/0x10
[  408.541640][    C0]  ? rcu_is_watching+0x15/0xb0
[  408.546422][    C0]  ? __pfx_flush_tlb_func+0x10/0x10
[  408.551655][    C0]  on_each_cpu_cond_mask+0x3f/0x80
[  408.556807][    C0]  flush_tlb_mm_range+0x42d/0x710
[  408.561866][    C0]  ? __pfx_flush_tlb_mm_range+0x10/0x10
[  408.567456][    C0]  copy_mm+0x18af/0x2160
[  408.571755][    C0]  ? __pfx_copy_mm+0x10/0x10
[  408.576388][    C0]  ? __init_rwsem+0x122/0x160
[  408.581093][    C0]  ? copy_signal+0x51c/0x640
[  408.585723][    C0]  copy_process+0x1845/0x3d50
[  408.590455][    C0]  ? copy_process+0x9fa/0x3d50
[  408.595252][    C0]  ? __pfx_copy_process+0x10/0x10
[  408.600320][    C0]  kernel_clone+0x226/0x8e0
[  408.604860][    C0]  ? __pfx_kernel_clone+0x10/0x10
[  408.609923][    C0]  ? __pfx_reacquire_held_locks+0x10/0x10
[  408.616663][    C0]  __x64_sys_clone+0x267/0x2e0
[  408.621486][    C0]  ? __pfx___x64_sys_clone+0x10/0x10
[  408.626830][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  408.633191][    C0]  ? exc_page_fault+0x590/0x8b0
[  408.638086][    C0]  ? do_syscall_64+0xb6/0x230
[  408.642789][    C0]  do_syscall_64+0xf3/0x230
[  408.647319][    C0]  ? clear_bhb_loop+0x35/0x90
[  408.652037][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  408.657960][    C0] RIP: 0033:0x7eff63983653
[  408.662401][    C0] Code: 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 45 31 c0 31 d2 31 f6 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 89 c2 85 c0 75 2c 64 48 8b 04 25 10 00 00
[  408.682034][    C0] RSP: 002b:00007ffe0c1113f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  408.690475][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007eff63983653
[  408.698475][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  408.706465][    C0] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000001
[  408.714457][    C0] R10: 00005555879b97d0 R11: 0000000000000246 R12: 0000000000000000
[  408.722452][    C0] R13: 00000000000927c0 R14: 00000000000492a9 R15: 00007ffe0c111590
[  408.730474][    C0]  </TASK>