last executing test programs:

1m53.585504886s ago: executing program 32 (id=299):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='syz_tun\x00', 0x10)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000300)={{0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, 0x16, {0x2, 0x0, @private}, 'syz_tun\x00'})

1m38.192199023s ago: executing program 0 (id=442):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
getrusage(0x1, &(0x7f0000000080))

1m36.489729134s ago: executing program 0 (id=458):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000740)=@setlink={0x3c, 0x13, 0x1, 0x70bd29, 0x25dfdbfe, {0x0, 0x0, 0x0, r2, 0x49090, 0x2}, [@IFLA_AF_SPEC={0x1c, 0x1a, 0x0, 0x1, [@AF_INET6={0x18, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @empty}]}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8081}, 0x20040000)

1m36.266015248s ago: executing program 0 (id=460):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000080)=ANY=[@ANYRES32=0x0, @ANYRES8=r0], 0x9)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000000380)={0x0, 0x6}, 0x8)

1m36.184975673s ago: executing program 0 (id=461):
syz_mount_image$hfs(&(0x7f0000002c80), &(0x7f00000000c0)='./file1\x00', 0x4490, &(0x7f0000002cc0)=ANY=[], 0xfd, 0x2a2, &(0x7f0000000f40)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000180)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])

1m35.847709532s ago: executing program 0 (id=466):
syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f0000005140)='./file0\x00', 0x0, &(0x7f0000005180), 0x1, 0x50ec, &(0x7f00000051c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101142, 0x0)
ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f00000000c0)={{r0}, 0x0, 0x0, 0x100000})
ioctl$BTRFS_IOC_DEFRAG(r0, 0x50009402, 0x0)

1m35.137705605s ago: executing program 0 (id=478):
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x0, &(0x7f0000000480), 0x1, 0x3d0, &(0x7f00000004c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)=0x20)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)

1m34.717959142s ago: executing program 33 (id=478):
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x0, &(0x7f0000000480), 0x1, 0x3d0, &(0x7f00000004c0)="$eJzs3M1uG0UcAPD/br5I+mEjcUCFgyUQBAFxHQhQhEThyscFeAArSUuF21SNkWjJoSBOnDggbhz6Ahx4gKpCSEi8Ai+AKlUozQFuQWvvOm4cp7Fix2r6+0mjndkdZ/bv3axm1rsTwGOrEhHnI2IiIhYjopSvT/MUN9spq3d/c2N5a3NjOYnt7U/+SSLJ1xV/K8mXJ/LCfBqRfhfxzM3edtev3/ii3misXsvL1eblq9X16zdevXS5fnH14uqV2pvnarWlxbdqrw8t1p+ef+ncxPvnz/z8V+nO0vT0bLa/J/Nt3XEMSyUqne9kt6VhNzZm0+PeAQAADiTN+/6Trf5/KSZaubZSVDfGunMAAADAUGy/my8BAACAYywx9gcAAIBjrngO4P7mxnKRxvg4wpG7915ElHfebd7qxD8ZT+R1pkb4fmslIq6+kJSyFCN6DxkAoNudrP9zdq/+XxpPd9WbiWj1h2aH3H5lV7m3/5PeHXKTD8j6f+9ExFZP/y8tqpQn8tKpVldxKrlwqbF6NiJOR8R8TM1k5do+bXzw7y8f99uWxf97cup0kbL2s+VOjfTu5MyDn1mpN+uHibnbvW8izkzuFX/S6f8mETF3iDYmvr71dr9tD49/tLZvRby45/Hfmbkn2X9+omrrfKgWZ0Wv/7799aN+7Y87/uz4z+0ffznpnq9pffA2bn/+57P9tnWPfwY5/6eTT1v5Ylz2Vb3ZvFaLmE4+7F2/uPPZolzUz+Kff27v///i+pfkc1qdzK8Bg/r+h99eOUj8WcraL8aCRyGLf2Wg4z945o3bf3zWr/2Hx58d//YcYPP5moNc/w66g4f57gAAAOBRkbbuayTpQiefpgsL7fsdT8Vc2lhbb758Ye3LKyvt+x/lmEqLO12lrvuhtfbP6J3y4q7yaxHxZET8WJptlReW1xor4w4eAAAAHhMn+oz/M38f2VMIAAAAwMiVx70DAAAAwMgZ/wMAAMCxdph5/WRkZI5rZtxXJgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgEfb/wEAAP//Wt22ag==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)=0x20)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)

41.416384919s ago: executing program 7 (id=1017):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000080)=[@in={0x2, 0x4e21, @private=0xa010102}], 0x10)
recvmsg(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
setsockopt(r0, 0x84, 0x7f, &(0x7f0000000040)="020000000980ffff", 0x8)

40.435939489s ago: executing program 7 (id=1032):
recvmmsg(0xffffffffffffffff, &(0x7f00000010c0)=[{{0x0, 0x0, 0x0}, 0x9}], 0x1, 0x30002, 0x0)
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xcc0, &(0x7f00000002c0)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6865617274626561743d6e6f6e652c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c636f686572656e63793d62756666657265642c6572726f72733d636f6e74696e75652c757365725f78617474722c626172726965723d30303030303030303030303030303032363131352c6469725f726573765f6c6576656c3d30303030303030303030303030303030303030362c696e74722c6a6f75726e616c5f6173796e635f636f6d6d69742c000c204e036013ec9e6e7ecdee3849b40884b95e94f35cec9600cd19beb0", @ANYRES64], 0x1, 0x442a, &(0x7f0000008940)="$eJzs3c9PHGUfAPBnBvoW+rZ9oW8PfZM3cRObaNQQ6EmliZTSUmixptrGeNkusG3RhW1gMR56wFsTTyYejIdGE2+cGg5e65/gxWM9N9GDFxOTRszuzgIz7IaVsGDr53NgmOc3+5159pnD8MSJyp25pdzcUq6wkCvP3Fo6k/u4XFqeL4Z4nzTt/9D+9U97OnGdHPS190929fzFd2+cCeH72R+frK+vr4eq7tDU0Jbff/v13szWY0OcqVNtt3lre+WDEMLJbeOq6gohvP9dCFEI4VySNpoce0MIx0I978a9z27m9mg0Dx8Xz+afTt1fGz49ufpgrfXfHoXwVel/r92e//nFruGfXtmj7gEAAAAAAAAAAAAAAAAAeMaNX7t6/Z3BofAoCt2r0fb3dceTY6v3Y9f3zAud/2MBAAAAAAAAAAAAAAAAAADgb2rz/f9cdKLJ+/9jyXGkRf31tzo/Rjpn4u2rYxcGh5L936Nt+a8nSb+c6wr9TfZ9z+7/fi5Tv/n+79v72a3G+Br99oUoHkidx/HAQAjfJBu/n4qOxKXyUuXVW+Xlhdk9G8YzKx3/+u79qegkG/q3G//RTPud3///v9uupur5zb27xJ5r6fh3tSz37adRW/E/n6m3H/Fn99Lx766l9W4tMFKfAKrx/7x75/iPZdrvVPyPhxByUXWsudQMUF3DVNNbrVdIS8f/UC0tNXUmH2Sr+//3TPwvZNo/qPl/JftFRFPp+P+rltaTKrF5//fHO9//FzPtH0T8q+Nf8f3flnT8D9cTu1NFap9ku/P/eKb9TsX/epyM83iUugJWo3p6q/9XR1o6/j3b8jef/+K21n+XMvX36/mv0W/j+a8x/b8c1Z//aC4d/96W5dq9/ycy9To9/4/U1n/sVjr+R2pp6bVzX+1nu/GfzLTfqfjXViU9jfhvzid/HK6nf23915Z0/P9dT4y3llip/ayt/6Kd1/+XM+0fxPqvOv6VuLO9Pi/S8T/aslw1/j+08f1/JVOv8/EPYdBaf9fS8T/Wslzt/u/ZOf5TmXqdjv9LnWwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4Bkwmhz7QhQPpM7jeGAghPPJ+alwJJouzOanS+WZj5ZCGEvSc+FEdLtUni6U8nML5dlivlAqlWdCuJDknww90VKpXMnPF+5e3GirN7pTLCxWpouFSghhPEn/fzjWaGt6rjJfuBtCuLSR95+4vHj3TmEhPzu3+Obg4OBgmNgYQ39U/KRSXKjUe6/nhjC5Ubcv2jK4WvbljbEcjT4sLy8uFEq19Ctb6pTKM4XSljpTSd4XoT+qLC4vzBQqxXypfLvR30EaSY5jE9feu3ZlaFv+zah+HN3fYQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwFz0afuPLEEJ3/SwOIYw0fomalX/4uHg2/3Tq/trw6cnVB2tPWpUDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+JMdOBAAAAAAAPJ/bYSqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqoq7NIxSgNBFAbgN2Ohdh7DatntbFcU0cIVwRPoMTyMHsVLeIcUKdKmCIFkFsJmF7ZJqu9rHszPzHswDwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgHme3ruPt7qJSHG1uYz4+/pfHOYvpf7cj9+/OMOMnM7za/fwWDfl39NRfleOlm3epevV92eM1N7vYE+G+7TX97menGtq36bm6/veRMpVRLQlv005V9W8twAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgyw4cCAAAAAAA+b82QlVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVRV24FgAAAAAQJi/dRR9GwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPArAAD///4CHxA=")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='.\x00', 0x0, 0xa0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000600)={0x23e3, 0x0, 0xd, 0x2})

39.191284361s ago: executing program 7 (id=1045):
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
r0 = syz_io_uring_setup(0x230, &(0x7f0000000080)={0x0, 0x20, 0x10100}, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xffffff86})
io_uring_enter(r0, 0x7a98, 0x20, 0x0, 0x0, 0xfffffffffffffc76)

38.573902028s ago: executing program 7 (id=1055):
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f0000000ec0)={[{@iocharset={'iocharset', 0x3d, 'iso8859-6'}}, {@dmode={'dmode', 0x3d, 0xd5ce}}, {@check_relaxed}, {@nojoliet}, {@overriderock}, {@session={'session', 0x3d, 0x52}}, {@showassoc}, {}, {@block={'block', 0x3d, 0x400}}, {@gid}, {@check_relaxed}, {@uid}]}, 0x1, 0xa00, &(0x7f00000003c0)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)

38.104567682s ago: executing program 7 (id=1061):
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x1c0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000280)={'\x00', 0x7f, 0x1000, 0x5c8, 0x80000003, 0x6})
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)

37.612969124s ago: executing program 2 (id=1066):
r0 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet_int(r0, 0x0, 0x13, &(0x7f0000000340)=0xa, 0x4)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='macvtap0\x00', 0x10)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e21, 0xd0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}], 0x1c)

37.298490554s ago: executing program 2 (id=1069):
r0 = syz_open_dev$cec(&(0x7f0000002340), 0x0, 0x0)
ioctl$CEC_S_MODE(r0, 0x40046109, &(0x7f0000000100)=0x21)
r1 = syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x40040)
ioctl$CEC_ADAP_S_LOG_ADDRS(r1, 0xc05c6104, &(0x7f0000000080)={"dd284c92", 0x8, 0x8, 0x7, 0xff, 0x1, "741f2bf942034e141f78bd0bbfc7ba", "926ffeba", "32221fb3", "8f27137a", ["b168994d226cf86d507a7f75", "30236e5e78957ca374cef68f", "ce10a8a9e9cd7e7ae44a090a", "3014c00ee86fe12781c78e65"]})

37.078389235s ago: executing program 7 (id=1074):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f00000000c0)={[{@nojournal_checksum}, {@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@block_validity}, {@dioread_lock}]}, 0x3, 0x439, &(0x7f0000002380)="$eJzs3MtvG0UYAPBv105LXyRU5dEHECiIikfSpKX0wAUEEgeQkOBQjiFJq1K3QU2QaFVBQKgcUSXuiCMSfwEnuCDghMQV7qhShXJp4WS09m5iO3aauE5c8O8nrTuzO9bM592xZ3a6CWBgjWYvScTuiPg9Iobr2eYCo/V/bi1dmf576cp0EtXqW38ltXI3l65MF0WL9+0qMuWI9LMkDrapd/7S5XNTlcrsxTw/vnD+/fH5S5efO3t+6szsmdkLkydPHj828cKJyed7EmcW180DH80d2v/aO9femD517d2fv02K+Fvi6JHRtQ4+Wa32uLr+2tOQTsp9bAgbUqp30xiq9f/hKMXKyRuOVz/ta+OATVWtVqsPdD68WAX+x5LodwuA/ih+6LP5b7Ft0dDjrnDjpfoEKIv7Vr7Vj5QjzcsMtcxve2k0Ik4t/vNVtsXm3IcAAGjyfTb+ebbd+C+NxvtC9+ZrKCMRcV9E7I2IExGxLyLuj6iVfTAiHtpg/a2LJKvHP+n1rgJbp2z892K+ttU8/itGfzFSynN7avEPJafPVmaP5p/JkRjanuUn1qjjh1d++6LTscbxX7Zl9Rdjwbwd18vbm98zM7UwdScxN7rxScSBcrv4k+WVgCQi9kfEgS7rOPv0N4c6Hbt9/GvowTpT9euIp+rnfzFa4i8ka69Pjt8Tldmj48VVsdovv159s1P9dxR/D2Tnf2fb6385/pGkcb12fuN1XP3j845zmm6v/23J2037PpxaWLg4EbEteb3e6JX9pYuTLeUmV8pn8R853L7/742VT+JgRGQX8cMR8UhEPJq3/bGIeDwiDq8R/08vP/Fe9/Fvriz+mQ2d/5XEtmjd0z5ROvfjd02Vjmwk/uz8H6+ljuR71vP9t552dXc1AwAAwH9PGhG7I0nHltNpOjZW/z/8+2JnWpmbX3jm9NwHF2bqzwiMxFBa3OkabrgfOpFP64v8ZEv+WH7f+MvSjlp+bHquMtPv4GHA7erQ/zN/lvrdOmDTdbeOlva8HcDW87wmDC79HwaX/g+Dq03/39GPdgBbr93v/8d9aAew9coNr/nfBAMGhPk/DC79HwaX/g8DaX5H3P4heQmJVYlI74pmSGxSot/fTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAL3xbwAAAP//1Xjmag==")
chdir(&(0x7f0000000140)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000940)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0)
symlink(&(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000380)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

37.078190792s ago: executing program 2 (id=1075):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'gre0\x00', <r1=>0x0})
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000140)=0x8, 0x4)
sendto$packet(r0, &(0x7f0000000340)="05030006e8fe091c6202a0ffffffff006003120000007f141434e3177f43055762cb80948864113b022543424aa608", 0xfef2, 0x0, &(0x7f0000000a80)={0x11, 0x88a8, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)

36.620484563s ago: executing program 34 (id=1074):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f00000000c0)={[{@nojournal_checksum}, {@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@block_validity}, {@dioread_lock}]}, 0x3, 0x439, &(0x7f0000002380)="$eJzs3MtvG0UYAPBv105LXyRU5dEHECiIikfSpKX0wAUEEgeQkOBQjiFJq1K3QU2QaFVBQKgcUSXuiCMSfwEnuCDghMQV7qhShXJp4WS09m5iO3aauE5c8O8nrTuzO9bM592xZ3a6CWBgjWYvScTuiPg9Iobr2eYCo/V/bi1dmf576cp0EtXqW38ltXI3l65MF0WL9+0qMuWI9LMkDrapd/7S5XNTlcrsxTw/vnD+/fH5S5efO3t+6szsmdkLkydPHj828cKJyed7EmcW180DH80d2v/aO9femD517d2fv02K+Fvi6JHRtQ4+Wa32uLr+2tOQTsp9bAgbUqp30xiq9f/hKMXKyRuOVz/ta+OATVWtVqsPdD68WAX+x5LodwuA/ih+6LP5b7Ft0dDjrnDjpfoEKIv7Vr7Vj5QjzcsMtcxve2k0Ik4t/vNVtsXm3IcAAGjyfTb+ebbd+C+NxvtC9+ZrKCMRcV9E7I2IExGxLyLuj6iVfTAiHtpg/a2LJKvHP+n1rgJbp2z892K+ttU8/itGfzFSynN7avEPJafPVmaP5p/JkRjanuUn1qjjh1d++6LTscbxX7Zl9Rdjwbwd18vbm98zM7UwdScxN7rxScSBcrv4k+WVgCQi9kfEgS7rOPv0N4c6Hbt9/GvowTpT9euIp+rnfzFa4i8ka69Pjt8Tldmj48VVsdovv159s1P9dxR/D2Tnf2fb6385/pGkcb12fuN1XP3j845zmm6v/23J2037PpxaWLg4EbEteb3e6JX9pYuTLeUmV8pn8R853L7/742VT+JgRGQX8cMR8UhEPJq3/bGIeDwiDq8R/08vP/Fe9/Fvriz+mQ2d/5XEtmjd0z5ROvfjd02Vjmwk/uz8H6+ljuR71vP9t552dXc1AwAAwH9PGhG7I0nHltNpOjZW/z/8+2JnWpmbX3jm9NwHF2bqzwiMxFBa3OkabrgfOpFP64v8ZEv+WH7f+MvSjlp+bHquMtPv4GHA7erQ/zN/lvrdOmDTdbeOlva8HcDW87wmDC79HwaX/g+Dq03/39GPdgBbr93v/8d9aAew9coNr/nfBAMGhPk/DC79HwaX/g8DaX5H3P4heQmJVYlI74pmSGxSot/fTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAL3xbwAAAP//1Xjmag==")
chdir(&(0x7f0000000140)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000940)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0)
symlink(&(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000380)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

36.613447576s ago: executing program 2 (id=1080):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000100))
ioctl$PPPIOCSACTIVE(r0, 0x40107446, &(0x7f0000000080)={0x2, &(0x7f00000000c0)=[{0x40, 0x8, 0xfe, 0x9}, {0x6, 0x0, 0x0, 0x8eb6}]})
writev(r0, &(0x7f0000000940)=[{&(0x7f0000002480)="6bf0a4", 0x3}], 0x1)

36.006777506s ago: executing program 2 (id=1087):
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x31, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92F\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)
mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x140070, 0x0)

33.028697265s ago: executing program 2 (id=1105):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000f00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@union]}}, 0x0, 0x26}, 0x20)

31.229034146s ago: executing program 4 (id=1116):
r0 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x802)
writev(r0, &(0x7f0000000280)=[{&(0x7f0000000040)="aefdda9d240303005a90f57f07703a68f0f64eb9ee07962c220a2e11b44e65d76641cb010852f426072a", 0x2a}], 0x1)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0xb, 0x6, 0xff}, 0x3a, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x10007f, 0x20000006, 0x4d, 0x6, 0x3, 0x9, 0x2, 0xffff2d34, 0xffffff01, 0x6, 0x3, 0x8, 0x5, 0x4, 0x2, 0x7, 0x3c5b, 0x80000001, 0x24, 0xd, 0x1, 0x0, 0xffffffff, 0xe661, 0x4, 0x7, 0x3, 0x8, 0x4c74, 0x80000000, 0x0, 0x3, 0xe, 0x8, 0x8000806e, 0x7, 0x17, 0x1, 0x7, 0x200, 0x3e, 0x8c, 0x6, 0x6, 0x0, 0x5, 0x4, 0x8, 0x400, 0x80, 0x1, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x8004, 0x5, 0xfffffff3, 0x129432e6, 0xc8, 0xf9, 0xe, 0x7, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x2, 0x4, 0xb, 0x1, 0x9, 0x8, 0x9, 0x6, 0x47, 0x8020, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x1, 0x3, 0x3, 0xbc45, 0x48c93690, 0x43, 0x103], [0x7, 0xa, 0x4, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xf, 0x4, 0x6, 0x5, 0x0, 0x6, 0x5, 0x1, 0x86, 0x3, 0x303c, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x2, 0x6d03, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0xa9, 0x5, 0x6, 0xac8, 0xc2, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0x1000000a, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x25], [0x9, 0xbb33, 0x80000000, 0xb, 0x5, 0x93a, 0x6, 0x1000006, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0x4, 0x3, 0x101, 0x10000, 0x4, 0x7fff, 0x10000, 0x7f, 0x2, 0x5, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x96, 0xffffffff, 0x80000000, 0x0, 0x4, 0xc8, 0x1, 0xfffff000, 0x10080, 0x3, 0x7e, 0x100, 0x1000, 0x7, 0xaf, 0x8, 0x6, 0x226, 0x5, 0x5, 0x1, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1e, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

30.962032807s ago: executing program 4 (id=1117):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000008c0)=[{0x16}]})
socket$packet(0x11, 0x2, 0x300)
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')

30.050150719s ago: executing program 4 (id=1119):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x2c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TX_RATES={0x10, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0xc, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x6, 0x1, [0x6c, 0x1]}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000801}, 0x0)

29.334099208s ago: executing program 4 (id=1121):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x1400c, &(0x7f0000000680)={[{@test_dummy_encryption}, {@init_itable}, {@noload}]}, 0x3, 0x470, &(0x7f0000001240)="$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")
syz_mount_image$exfat(0x0, &(0x7f0000000040)='./bus\x00', 0x1020862, 0x0, 0x1, 0x0, &(0x7f0000000000))
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './bus'}}], [], 0x2c})
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

28.682140478s ago: executing program 4 (id=1124):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', <r1=>0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x44, 0x10, 0x401, 0x70bd28, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8003}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}, 0x1, 0x0, 0x0, 0x240008c4}, 0x4054)

27.923450803s ago: executing program 4 (id=1132):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x3a8bc000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
set_mempolicy(0x3, &(0x7f00000000c0)=0x2, 0x6)

27.49475217s ago: executing program 35 (id=1132):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x3a8bc000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
set_mempolicy(0x3, &(0x7f00000000c0)=0x2, 0x6)

17.939907248s ago: executing program 36 (id=1105):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000f00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@union]}}, 0x0, 0x26}, 0x20)

6.07047898s ago: executing program 9 (id=1311):
r0 = gettid()
timer_create(0x2, &(0x7f000049efa0)={0x0, 0xb, 0x4, @tid=r0}, &(0x7f0000044000))
exit(0x6)
timer_settime(0x0, 0xe54aef35e9c2845d, &(0x7f000006b000)={{}, {0x0, 0x9}}, 0x0)

5.011420909s ago: executing program 9 (id=1326):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv6_newnexthop={0x24, 0x68, 0x309, 0x0, 0x0, {}, [@NHA_FDB={0x4}, @NHA_ID={0x8, 0x1, 0x1}]}, 0x24}}, 0x0)

4.695811893s ago: executing program 9 (id=1328):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x1000, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000040)={0x8, 0x1, 0x1})
r1 = syz_open_dev$vim2m(&(0x7f0000000140), 0x6, 0x2)
ioctl$vim2m_VIDIOC_QBUF(r1, 0xc058560f, &(0x7f00000001c0)=@mmap={0x0, 0x1, 0x4, 0x4000, 0x0, {0x77359400}, {0x4, 0x0, 0x1, 0x1, 0x5, 0x5b, "00000600"}, 0x291d})

4.418339492s ago: executing program 3 (id=1204):
r0 = shmget$private(0x0, 0x2000, 0x800, &(0x7f0000ffd000/0x2000)=nil)
shmat(r0, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffcfff)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='smaps\x00')
read$FUSE(r1, &(0x7f0000002180)={0x2020}, 0x2020)

4.100379776s ago: executing program 3 (id=1335):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000280)={0x0, 0x1}, 0x8)
sendmsg$inet_sctp(r0, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000380)='J', 0x1}], 0x1, 0x0, 0x0, 0x2804c044}, 0x0)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000008fc0)={0x0, 0x4, 0x9}, 0x8)

4.029923961s ago: executing program 9 (id=1339):
ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x400, 0x0, 0x0, 0x1, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aa041000000000000000004faa2ae2c084a0ea0000000000000000000c00002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4, 0x3ff]})
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x42, &(0x7f00000000c0)=ANY=[@ANYBLOB="6673796e635f6d6f64653d706f7369782c6e6f696e6c696e655f646174612c6469736361726400aa19fd46b492dc6cf59d696e6c696e655f64656e7472792c00"], 0x1, 0x54f3, &(0x7f000000ab40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x4004f506, &(0x7f0000000100))

3.989349721s ago: executing program 6 (id=1340):
r0 = syz_io_uring_setup(0x64b7, &(0x7f0000002600)={0x0, 0xffffff7c, 0x13580, 0x3, 0x35c}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000580)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000140)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x6000, @fd_index=0x1, 0xffffffffffffffff, 0xfffffffffffffab2, 0x7, 0x5, 0x1})
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000800)=[{0x0}], 0x1)
io_uring_enter(r0, 0x54, 0x0, 0x0, 0x0, 0x0)

3.756050011s ago: executing program 6 (id=1343):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000300)=0x20, 0x4)
write$binfmt_misc(r0, &(0x7f0000000300), 0x6)

3.566195456s ago: executing program 6 (id=1346):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000086a04270000000000000109022400010000000009040000010300000009210000000122450009058103"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
syz_usb_control_io(r0, &(0x7f0000000040)={0x2c, &(0x7f0000000240)=ANY=[@ANYBLOB="0000450000004500bb65a295e387d7f4f425cdcd26b19e1763da0333ddbb3c8e9187148f258ce1e41708e13e0962e15c69cc465ec4c94d51a60f84a4bfa30c43ce1055c03a0000000000000000d7129a6ccb2addb0dc044586c6954601a4d145a64d29d00073c5b07b9f387e3ec099bbddfad54d59ac301802b3c133f286ca7262d6188d0d23b6170675e6272dc1c62ed4f6511ea7ad7373f0a9e7ca93161dc9ef556e9dbe6f12832df9e0768c28ca92d1064bfaf1161f1a5f"], 0x0, 0x0, 0x0, 0x0}, 0x0)

3.034421913s ago: executing program 3 (id=1352):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x20004040}, 0x44040)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newtaction={0x70, 0x30, 0x871a15abc695f30d, 0x5, 0x25dfdbfc, {}, [{0x5c, 0x1, [@m_sample={0x58, 0x1, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_RATE={0x8, 0x3, 0xff}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x8, 0xd, 0x6, 0x7f, 0x4}}, @TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0x800}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}, 0x70}, 0x1, 0x0, 0x0, 0x4}, 0x80)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

2.84526318s ago: executing program 3 (id=1354):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000180)={{0x80, 0x80}, 'port0\x00', 0x172, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5})
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/asound/seq/clients\x00', 0x0, 0x0)
lseek(r1, 0x9, 0x0)

2.80598393s ago: executing program 8 (id=1355):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x2, &(0x7f0000000280)=0x1b0, 0x4)
setsockopt$inet6_int(r0, 0x29, 0x42, &(0x7f0000000040)=0xf2b, 0x4)
getsockopt$inet6_buf(r0, 0x29, 0x6, 0xfffffffffffffffd, &(0x7f0000000080))

2.578438985s ago: executing program 8 (id=1356):
syz_mount_image$minix(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x200000, &(0x7f00000000c0)=ANY=[], 0xfe, 0x1c0, &(0x7f0000000640)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4800, 0x0, 0x3, 0x0, &(0x7f0000000080))
pwrite64(r0, &(0x7f0000000140)='2', 0xff10, 0x8000c61)

2.567961877s ago: executing program 3 (id=1357):
sched_setscheduler(0x0, 0x2, 0x0)
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000040)='./file1\x00', 0x400000, &(0x7f0000005880)={[{@nodiscard}, {@nocheckpoint_merge}, {@user_xattr}, {@age_extent_cache}, {@user_xattr}, {@fault_injection={'fault_injection', 0x3d, 0x11}}, {@jqfmt_vfsv0}, {@noacl}, {@fsync_mode_posix}, {@data_flush}, {@noextent_cache}, {@two_active_logs}, {@fault_type={'fault_type', 0x3d, 0xfffffe}}]}, 0xfd, 0x5505, &(0x7f0000000340)="$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")
r0 = syz_open_procfs(0x0, &(0x7f0000001180)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000002780)={0x2020}, 0x7d4)

2.27440809s ago: executing program 8 (id=1359):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./bus\x00', 0x2800002, &(0x7f0000000000), 0x1, 0xbcd, &(0x7f0000000740)="$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")
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)
quotactl$Q_SYNC(0xffffffff80000101, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)

2.196957682s ago: executing program 9 (id=1360):
r0 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0)
write$binfmt_script(r0, &(0x7f0000000200)={'#! ', './file0'}, 0xb)
pwrite64(r0, &(0x7f0000000040)='\n', 0x1, 0x2)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

2.14708996s ago: executing program 1 (id=1361):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000000), 0xffffffffffffffff)
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000000)={0x0, 0x8})
sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x14, r1, 0x1, 0x70bd29, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20000800)

1.62231243s ago: executing program 1 (id=1375):
socket$packet(0x11, 0x2, 0x300)
socket$kcm(0x2, 0xa, 0x2)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00')
preadv(r0, &(0x7f0000000100)=[{&(0x7f0000000000)=""/32, 0x20}], 0x1, 0x38, 0x1)

1.454523631s ago: executing program 6 (id=1364):
socket$packet(0x11, 0x2, 0x300)
socket$packet(0x11, 0x2, 0x300)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00')
preadv(r0, &(0x7f0000000000)=[{&(0x7f0000000180)=""/181, 0xb5}], 0x1, 0x3c, 0x4)

1.440105184s ago: executing program 1 (id=1365):
syz_mount_image$minix(&(0x7f0000000300), &(0x7f00000001c0)='./file1\x00', 0x200002, &(0x7f00000003c0)=ANY=[], 0xc2, 0x1e9, &(0x7f0000000f40)="$eJzs2z9v00AcxvHHdpyUUlr+LkxIDDAlUFjYqMTKG2CrWlMhXECYpRUS4qUw8Tb6ThhYWwk2Jlzd2akc13FcO4kT5fuRkvyU85M7R7n4brAArKyb9tmRI99WcRx/eyDpzWtJnZYHB2CmYv2Pf5pZD2AFeX/aHgGAdpzteHYdcOJIv/5+3TtNH37F9cPZjpsUa5Iy+W7V/HfHvt7vSKeZfC/9yInrlx9J/pFG89eu2P96Lr8+LvA7eXEu8sn5P344mr8uaUPSDUmbkrYkmW/6lqTbBf3v5/q/V3H8QBPm19dvsNG3+X79/s3sefsuDJ4UNXqT836af1rcnPkLObHPvdwB3TS/fYUxF+Wf1cz30nx/72O4X9Duyq35ycBkrp3/9TWd/570L87P/5fV853y+Q+gRHR0/H43DIPPkbnY2uLinXGFb4vhlbTsYHN1zLyjki7MZqRS7xRTLOJ0iZVrWis42Ky0olebVX8kDYvufL4E5/K5L3IxnLWz72srbOf/CMD8DL4cfhpER8eeDncPgoPgw/bzF8Ntt92XD8buzgEsudHFOQAAAAAAAAAAAAAAWEZ3JN2tE6x6gx8AAACAhTHdm4d8SZebSrrfmOOpAgAAAAAAAAAAAAAAAAAAAEvvPAAA//8Wxjvi")
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x40942, 0x0)
copy_file_range(r0, 0x0, r1, 0x0, 0xfffffbffa003e45b, 0x700000000000000)

1.386922785s ago: executing program 5 (id=1366):
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280))
creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f0000000140)='./file0\x00', 0x16000629)

1.210314741s ago: executing program 1 (id=1367):
r0 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bond0\x00', <r1=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', r1}, 0x90)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB="0400"/20, @ANYRES32=r1], 0x50)

1.209987542s ago: executing program 6 (id=1368):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000002, 0xe, 0xfffffffffffffda9, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.125507528s ago: executing program 5 (id=1369):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000040000000400000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000208500000003000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x5, 0x106, 0x40, 0x40, 0x41}, 0x50)

1.091810809s ago: executing program 8 (id=1370):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000f80085000000b0000000180100002020782500000000f01f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r0}, 0x18)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000140)={0x28, 0x0, 0x0, @my=0x1}, 0x10)

990.421686ms ago: executing program 1 (id=1371):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x0, &(0x7f00000003c0)={[{@nombcache}, {@errors_remount}, {@noinit_itable}, {@bsdgroups}, {@bsdgroups}, {@dioread_lock}]}, 0x1, 0x783, &(0x7f0000001340)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
write$P9_RREADLINK(r0, &(0x7f0000000000)={0xffffffffffffff23, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab)
fadvise64(r0, 0x7f, 0x1000000, 0x4)

893.552922ms ago: executing program 6 (id=1372):
syz_mount_image$xfs(&(0x7f0000009740), &(0x7f0000009780)='./file1\x00', 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@uqnoenforce}]}, 0x1, 0x9764, &(0x7f00000097c0)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f0000000f80)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x28042, 0x0)
ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f00000000c0)={{r0}, 0x0, 0x0, 0x100000})

878.418776ms ago: executing program 5 (id=1373):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000300)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448d4, &(0x7f00000002c0)={0x4, 0x2, '\x00', 0x0, 0x4})

574.407809ms ago: executing program 5 (id=1374):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x1, 0x6)
fsmount(r0, 0x0, 0x0)

521.777519ms ago: executing program 8 (id=1376):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000300)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c01803001d000b63d25a80648c2594f90124fc60100c030002000000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x4000}, 0x3500000000000000)

384.45343ms ago: executing program 3 (id=1377):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000700000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10)
geteuid()

318.435991ms ago: executing program 5 (id=1378):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f00000000c0), 0xfc, 0x574, &(0x7f0000000e40)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000400)='.\x00', 0x0, 0x0)
r1 = fanotify_init(0x200, 0x0)
fanotify_mark(r1, 0x1, 0x40000020, r0, 0x0)

249.843449ms ago: executing program 9 (id=1379):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x8004, 0x38, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000a, 0x4031, 0xffffffffffffffff, 0x0)
mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x80, 0x0)

225.131451ms ago: executing program 8 (id=1380):
io_setup(0xeb0, &(0x7f0000000140)=<r0=>0x0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
io_submit(r0, 0x1, &(0x7f0000000000)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}])
io_cancel(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2, 0x0, r1, 0x0}, 0x0)

142.389366ms ago: executing program 1 (id=1381):
r0 = timerfd_create(0x0, 0x0)
timerfd_settime(r0, 0x3, &(0x7f00000000c0)={{}, {0x77359400}}, 0x0)
clock_settime(0x0, &(0x7f0000003c80)={0x77359400})
timerfd_settime(r0, 0x3, &(0x7f0000000000)={{}, {0x77359400}}, 0x0)

0s ago: executing program 5 (id=1382):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0xf, 0x204031, 0xffffffffffffffff, 0x2d5c000)
set_mempolicy(0x4005, &(0x7f0000000080)=0x4, 0x8)
madvise(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x15)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x19)

kernel console output (not intermixed with test programs):

 high-speed USB device number 5 using dummy_hcd
[  200.241931][ T8060] loop2: detected capacity change from 0 to 1024
[  200.286757][ T5910] usb 5-1: Using ep0 maxpacket: 32
[  200.287646][ T1217] ir_usb 6-1:0.126: IR Dongle converter detected
[  200.294544][ T5910] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  200.336094][ T5910] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  200.361036][ T5910] usb 5-1: New USB device found, idVendor=060b, idProduct=0001, bcdDevice= 0.00
[  200.390512][ T5910] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  200.415423][ T5910] usb 5-1: config 0 descriptor??
[  200.433912][ T8064] netlink: 12 bytes leftover after parsing attributes in process `syz.7.764'.
[  200.490002][ T1217] usb 6-1: IR Dongle converter now attached to ttyUSB0
[  200.728237][ T5918] usb 6-1: USB disconnect, device number 6
[  200.756375][ T5918] ir-usb ttyUSB0: IR Dongle converter now disconnected from ttyUSB0
[  200.775901][ T5918] ir_usb 6-1:0.126: device disconnected
[  200.862588][ T5910] macally 0003:060B:0001.0008: unknown main item tag 0x0
[  200.868744][ T8078] loop2: detected capacity change from 0 to 512
[  200.884797][ T5910] macally 0003:060B:0001.0008: unknown main item tag 0x0
[  200.907401][ T5910] macally 0003:060B:0001.0008: unknown main item tag 0x0
[  200.914484][ T5910] macally 0003:060B:0001.0008: unknown main item tag 0x0
[  200.945393][ T8072] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  200.962884][ T5910] macally 0003:060B:0001.0008: unknown main item tag 0x0
[  200.963838][ T8078] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  200.976131][ T5910] macally 0003:060B:0001.0008: hidraw0: USB HID v0.00 Device [HID 060b:0001] on usb-dummy_hcd.4-1/input0
[  201.032780][ T8078] ext4 filesystem being mounted at /126/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  201.048889][ T8076] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  201.110977][ T1217] usb 5-1: USB disconnect, device number 5
[  201.142606][ T8078] EXT4-fs error (device loop2): ext4_get_first_dir_block:3540: inode #12: comm syz.2.758: directory missing '.'
[  201.259419][ T8092] loop6: detected capacity change from 0 to 1024
[  201.269010][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.461660][ T3464] hfsplus: found bad thread record in catalog
[  201.478040][ T3464] hfsplus: found bad thread record in catalog
[  201.564474][ T1217] kernel read not supported for file /dsp (pid: 1217 comm: kworker/0:2)
[  201.617289][ T8105] netlink: 16386 bytes leftover after parsing attributes in process `syz.1.782'.
[  201.915104][   T30] audit: type=1326 audit(1760703191.744:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8114 comm="syz.6.773" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc12e98efc9 code=0x0
[  202.043951][   T10] hid-generic 0003:0004:0000.0009: unknown main item tag 0x0
[  202.060106][   T10] hid-generic 0003:0004:0000.0009: unknown main item tag 0x0
[  202.079490][   T10] hid-generic 0003:0004:0000.0009: unknown main item tag 0x0
[  202.096179][   T10] hid-generic 0003:0004:0000.0009: unknown main item tag 0x0
[  202.114234][   T10] hid-generic 0003:0004:0000.0009: unknown main item tag 0x0
[  202.142278][   T10] hid-generic 0003:0004:0000.0009: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  202.335415][ T8133] netlink: 'syz.4.781': attribute type 2 has an invalid length.
[  202.793531][ T8118] loop1: detected capacity change from 0 to 32768
[  202.875473][ T8118] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  202.935878][ T8118] XFS (loop1): Ending clean mount
[  202.975115][ T2145] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  202.996541][ T8129] loop5: detected capacity change from 0 to 32768
[  203.011616][   T30] audit: type=1800 audit(1760703192.844:35): pid=8118 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.775" name="file1" dev="loop1" ino=6150 res=0 errno=0
[  203.033392][ T8129] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.779 (8129)
[  203.052252][ T8129] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  203.072035][ T8129] BTRFS info (device loop5): using sha256 (sha256-lib) checksum algorithm
[  203.116747][ T8159] binder: 8158:8159 ioctl c0306201 200000000640 returned -22
[  203.145163][ T2145] usb 8-1: Using ep0 maxpacket: 16
[  203.157656][ T2145] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  203.175772][ T2145] usb 8-1: New USB device found, idVendor=0458, idProduct=5016, bcdDevice= 0.00
[  203.189938][ T2145] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  203.224761][ T2145] usb 8-1: config 0 descriptor??
[  203.253748][ T8129] BTRFS info (device loop5): enabling ssd optimizations
[  203.265139][ T8129] BTRFS info (device loop5): turning on async discard
[  203.283246][ T8129] BTRFS info (device loop5): enabling free space tree
[  203.390446][ T8182] loop4: detected capacity change from 0 to 1024
[  203.405804][ T5827] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  203.435254][ T8129] BTRFS error (device loop5): balance: mixed groups data and metadata options must be the same
[  203.458727][ T8182] hfsplus: xattr searching failed
[  203.472077][ T8182] hfsplus: xattr searching failed
[  203.485409][ T8182] hfsplus: bad catalog file entry
[  203.555783][ T5834] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  203.653635][   T12] hfsplus: b-tree write err: -5, ino 3
[  203.676976][   T12] hfsplus: bad catalog file entry
[  203.681922][ T2145] kye 0003:0458:5016.000A: control desc unexpectedly large
[  203.721735][ T2145] input: HID 0458:5016 as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/0003:0458:5016.000A/input/input10
[  203.828554][ T2145] input: HID 0458:5016 as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/0003:0458:5016.000A/input/input11
[  203.873368][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  203.879997][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  203.934027][ T2145] kye 0003:0458:5016.000A: input,hiddev0,hidraw0: USB HID v0.09 Device [HID 0458:5016] on usb-dummy_hcd.7-1/input0
[  203.942934][ T8186] loop6: detected capacity change from 0 to 4096
[  203.969201][ T2145] usb 8-1: USB disconnect, device number 2
[  204.065297][ T8191] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  204.276345][ T6796] NILFS (loop6): nilfs_palloc_commit_free_entry (ino=6): entry number 11 already freed
[  204.374091][ T6796] NILFS (loop6): nilfs_palloc_commit_free_entry (ino=6): entry number 13 already freed
[  204.399317][ T6796] NILFS (loop6): nilfs_palloc_commit_free_entry (ino=6): entry number 14 already freed
[  204.417136][ T6796] NILFS (loop6): nilfs_palloc_commit_free_entry (ino=6): entry number 15 already freed
[  204.437921][ T6796] NILFS (loop6): nilfs_palloc_commit_free_entry (ino=6): entry number 16 already freed
[  204.448709][ T6796] NILFS (loop6): nilfs_palloc_commit_free_entry (ino=6): entry number 17 already freed
[  204.550378][ T1217] NILFS (loop6): nilfs_palloc_commit_free_entry (ino=6): entry number 12 already freed
[  204.725127][ T2145] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  204.885082][ T2145] usb 6-1: Using ep0 maxpacket: 32
[  204.892528][ T2145] usb 6-1: config 0 has an invalid interface number: 209 but max is 0
[  204.908859][ T2145] usb 6-1: config 0 has no interface number 0
[  204.915139][ T2145] usb 6-1: config 0 interface 209 has no altsetting 0
[  204.924880][ T2145] usb 6-1: New USB device found, idVendor=1f71, idProduct=3306, bcdDevice=1b.23
[  204.946125][ T2145] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  204.954170][ T2145] usb 6-1: Product: syz
[  204.967182][ T2145] usb 6-1: Manufacturer: syz
[  204.971802][ T2145] usb 6-1: SerialNumber: syz
[  204.979677][ T2145] usb 6-1: config 0 descriptor??
[  205.319000][ T2145] usb 6-1: USB disconnect, device number 7
[  205.383286][ T8229] bridge0: port 2(bridge_slave_1) entered disabled state
[  205.391102][ T8229] bridge0: port 1(bridge_slave_0) entered disabled state
[  205.400594][ T5910] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  205.458601][ T8231] bpf: Bad value for 'gid'
[  205.567119][ T5910] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  205.585057][ T5910] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  205.597171][ T8233] loop2: detected capacity change from 0 to 2048
[  205.610633][ T8235] loop6: detected capacity change from 0 to 2048
[  205.622272][ T5910] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  205.637552][ T5910] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  205.648367][ T8236] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  205.664155][ T5910] usb 2-1: Product: syz
[  205.668735][ T5910] usb 2-1: Manufacturer: syz
[  205.673687][   T30] audit: type=1800 audit(1760703195.504:36): pid=8233 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.816" name="file2" dev="loop2" ino=16 res=0 errno=0
[  205.692640][ T8233] NILFS (loop2): vblocknr = 15 has abnormal lifetime: start cno (= 4128770) > current cno (= 3)
[  205.695406][ T5910] usb 2-1: SerialNumber: syz
[  205.720596][ T8235] UDF-fs: error (device loop6): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  205.725258][ T8233] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=16)
[  205.742234][ T8235] UDF-fs: warning (device loop6): udf_load_vrs: No anchor found
[  205.762657][ T8235] UDF-fs: Scanning with blocksize 512 failed
[  205.775327][ T8233] Remounting filesystem read-only
[  205.805136][ T8235] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  205.901348][ T8222] loop7: detected capacity change from 0 to 40427
[  205.919119][ T8222] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[  205.934704][ T8238] loop4: detected capacity change from 0 to 4096
[  205.942930][ T8222] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  205.951599][ T8226] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  205.952042][ T8226] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  205.970769][ T5830] NILFS (loop2): disposed unprocessed dirty file(s) when stopping log writer
[  206.000783][ T8238] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  206.022468][ T8222] F2FS-fs (loop7): invalid crc value
[  206.075368][ T5910] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -22
[  206.099238][ T8238] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  206.121542][ T8238] ntfs3(loop4): ino=1a, mi_enum_attr
[  206.139012][ T5910] usb 2-1: USB disconnect, device number 6
[  206.145466][ T8238] ntfs3(loop4): Failed to initialize $Extend/$ObjId.
[  206.201317][ T8238] ntfs3(loop4): ino=5, "/" ntfs_readdir
[  206.334731][ T8222] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  206.357164][ T8222] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  206.364312][ T8222] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  206.405260][   T10] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  206.579287][   T10] usb 3-1: config 17 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  206.601688][   T10] usb 3-1: config 17 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  206.621604][   T10] usb 3-1: config 17 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  206.634403][   T10] usb 3-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  206.643741][   T10] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  206.658924][ T8246] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  206.675898][ T5910] usb 2-1: new full-speed USB device number 7 using dummy_hcd
[  206.712684][ T7280] syz-executor: attempt to access beyond end of device
[  206.712684][ T7280] loop7: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  206.745083][ T5957] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  206.753719][ T7280] CPU: 1 UID: 0 PID: 7280 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  206.753765][ T7280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  206.753787][ T7280] Call Trace:
[  206.753798][ T7280]  <TASK>
[  206.753812][ T7280]  dump_stack_lvl+0x16c/0x1f0
[  206.753875][ T7280]  f2fs_handle_critical_error+0x624/0x9f0
[  206.753927][ T7280]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.753971][ T7280]  ? f2fs_build_fault_attr+0x53/0x1f0
[  206.754026][ T7280]  f2fs_write_end_io+0x958/0xcf0
[  206.754083][ T7280]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  206.754144][ T7280]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.754197][ T7280]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  206.754251][ T7280]  bio_endio+0x713/0x860
[  206.754290][ T7280]  submit_bio_noacct+0x306/0x1f60
[  206.754351][ T7280]  __submit_merged_bio+0x33c/0x770
[  206.754410][ T7280]  __submit_merged_write_cond+0x319/0x3f0
[  206.754491][ T7280]  f2fs_sync_node_pages+0x1394/0x1620
[  206.754545][ T7280]  ? sync_inode_metadata+0xa4/0xe0
[  206.754586][ T7280]  ? __pfx_f2fs_sync_node_pages+0x10/0x10
[  206.754632][ T7280]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.754674][ T7280]  ? __lock_acquire+0xb8a/0x1c90
[  206.754767][ T7280]  ? down_write+0x14d/0x200
[  206.754808][ T7280]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.754853][ T7280]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.754896][ T7280]  ? up_write+0x1b2/0x520
[  206.754952][ T7280]  block_operations+0x952/0xfe0
[  206.755005][ T7280]  ? __pfx_block_operations+0x10/0x10
[  206.755098][ T7280]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.755144][ T7280]  ? ktime_get+0x200/0x310
[  206.755184][ T7280]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.755227][ T7280]  ? lockdep_hardirqs_on+0x7c/0x110
[  206.755283][ T7280]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.755327][ T7280]  ? rcu_is_watching+0x12/0xc0
[  206.755369][ T7280]  f2fs_write_checkpoint+0x32b/0x5300
[  206.755416][ T7280]  ? kfree+0x2b8/0x6d0
[  206.755478][ T7280]  ? f2fs_stop_gc_thread+0x79/0xd0
[  206.755525][ T7280]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.755568][ T7280]  ? rcu_is_watching+0x12/0xc0
[  206.755603][ T7280]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.755646][ T7280]  ? kthread_stop+0x272/0x630
[  206.755699][ T7280]  kill_f2fs_super+0x3d6/0x490
[  206.755738][ T7280]  ? __pfx_kill_f2fs_super+0x10/0x10
[  206.755796][ T7280]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.755856][ T7280]  deactivate_locked_super+0xc1/0x1a0
[  206.755896][ T7280]  deactivate_super+0xde/0x100
[  206.755937][ T7280]  cleanup_mnt+0x225/0x450
[  206.755981][ T7280]  task_work_run+0x150/0x240
[  206.756036][ T7280]  ? __pfx_task_work_run+0x10/0x10
[  206.756088][ T7280]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.756135][ T7280]  ? __pfx___x64_sys_umount+0x10/0x10
[  206.756191][ T7280]  exit_to_user_mode_loop+0xec/0x130
[  206.756247][ T7280]  do_syscall_64+0x426/0xfa0
[  206.756309][ T7280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.756346][ T7280] RIP: 0033:0x7f88b05902f7
[  206.756375][ T7280] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  206.756411][ T7280] RSP: 002b:00007ffd5ac7e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  206.756451][ T7280] RAX: 0000000000000000 RBX: 00007f88b0611d7d RCX: 00007f88b05902f7
[  206.756475][ T7280] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd5ac7e240
[  206.756498][ T7280] RBP: 00007ffd5ac7e240 R08: 0000000000000000 R09: 0000000000000000
[  206.756521][ T7280] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd5ac7f2d0
[  206.756545][ T7280] R13: 00007f88b0611d7d R14: 000000000003270b R15: 00007ffd5ac7f310
[  206.756597][ T7280]  </TASK>
[  206.759945][ T8258] random: crng reseeded on system resumption
[  206.783335][ T7280] F2FS-fs (loop7): Stopped filesystem due to reason: 3
[  206.914668][ T5910] usb 2-1: config index 0 descriptor too short (expected 301, got 72)
[  206.991615][ T5910] usb 2-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  207.151991][ T5957] usb 5-1: Using ep0 maxpacket: 32
[  207.215129][ T5957] usb 5-1: config 0 interface 0 has no altsetting 0
[  207.247264][ T5957] usb 5-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  207.256555][ T5957] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  207.264683][ T5957] usb 5-1: Product: syz
[  207.269499][ T5957] usb 5-1: Manufacturer: syz
[  207.274116][ T5957] usb 5-1: SerialNumber: syz
[  207.282461][ T5957] usb 5-1: config 0 descriptor??
[  207.287952][ T5910] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  207.300201][ T5910] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 1024, setting to 64
[  207.311314][ T5910] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  207.332459][ T5910] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  207.343310][ T5910] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  207.352561][ T5910] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  207.574750][ T5910] usb 2-1: usb_control_msg returned -71
[  207.582922][ T5910] usbtmc 2-1:16.0: can't read capabilities
[  207.589837][ T5910] usbtmc 2-1:16.0: Failed to submit iin_urb
[  207.591827][   T10] aiptek 3-1:17.0: Aiptek using 400 ms programming speed
[  207.595872][ T5910] usbtmc 2-1:16.0: probe with driver usbtmc failed with error -90
[  207.615333][ T5910] usb 2-1: USB disconnect, device number 7
[  207.653573][   T10] input: Aiptek as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:17.0/input/input12
[  207.708838][ T5957] gs_usb 5-1:0.0: Configuring for 1 interfaces
[  207.755942][   T10] usb 3-1: USB disconnect, device number 8
[  207.761887][    C0] aiptek 3-1:17.0: aiptek_irq - usb_submit_urb failed with result -19
[  207.785832][ T8271] loop5: detected capacity change from 0 to 512
[  207.827309][ T8271] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #15: comm syz.5.832: iget: bad i_size value: 38620345925642
[  207.855048][ T8271] EXT4-fs error (device loop5): ext4_orphan_get:1395: comm syz.5.832: couldn't read orphan inode 15 (err -117)
[  207.888975][ T8271] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  207.967438][ T8271] EXT4-fs error (device loop5): ext4_validate_block_bitmap:431: comm syz.5.832: bg 0: block 5: invalid block bitmap
[  208.065143][ T1217] usb 7-1: new full-speed USB device number 4 using dummy_hcd
[  208.094584][ T5834] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.128842][ T5957] gs_usb 5-1:0.0: Disabling termination support for channel 0 (-EPROTO)
[  208.160742][ T5957] usb 5-1: USB disconnect, device number 6
[  208.217081][ T1217] usb 7-1: config 0 has no interfaces?
[  208.229169][ T1217] usb 7-1: New USB device found, idVendor=12d1, idProduct=42f7, bcdDevice=aa.47
[  208.262381][ T1217] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  208.282347][ T1217] usb 7-1: config 0 descriptor??
[  208.483497][ T8285] mkiss: ax0: crc mode is auto.
[  208.584798][ T1217] usb 7-1: USB disconnect, device number 4
[  208.847750][ T8299] netlink: 20 bytes leftover after parsing attributes in process `syz.4.841'.
[  209.295348][ T8306] loop6: detected capacity change from 0 to 8
[  209.413313][ T8288] loop1: detected capacity change from 0 to 32768
[  209.428838][ T8306] SQUASHFS error: Unable to read directory block [631:72]
[  209.470794][ T8306] SQUASHFS error: Unable to read directory block [631:72]
[  209.494458][ T8288] XFS (loop1): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[  209.539766][ T8288] XFS (loop1): Ending clean mount
[  209.572823][ T8288] XFS (loop1): User initiated shutdown received.
[  209.599121][ T8288] XFS (loop1): Log I/O Error (0x6) detected at xfs_fs_goingdown+0x160/0x190 (fs/xfs/xfs_fsops.c:475).  Shutting down filesystem.
[  209.613685][ T8288] XFS (loop1): Please unmount the filesystem and rectify the problem(s)
[  209.735501][ T5827] XFS (loop1): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[  209.890311][ T8326] loop6: detected capacity change from 0 to 512
[  209.982271][ T8326] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  210.025226][ T8326] ext4 filesystem being mounted at /68/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  210.280423][ T6796] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.306140][ T8302] loop4: detected capacity change from 0 to 32768
[  210.414085][ T8302] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  210.535530][ T8302] XFS (loop4): Ending clean mount
[  210.638478][   T30] audit: type=1800 audit(1760703200.474:37): pid=8302 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.843" name="file1" dev="loop4" ino=6150 res=0 errno=0
[  210.776922][ T1217] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  210.916572][ T8372] binder: 8365:8372 ioctl 4018620d 0 returned -22
[  210.945147][ T1217] usb 6-1: Using ep0 maxpacket: 32
[  210.965946][ T1217] usb 6-1: config 0 has an invalid interface number: 12 but max is 0
[  210.994434][ T1217] usb 6-1: config 0 has no interface number 0
[  211.001876][ T1217] usb 6-1: config 0 interface 12 has no altsetting 0
[  211.028337][ T1217] usb 6-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  211.049896][ T1217] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  211.075749][ T1217] usb 6-1: Product: syz
[  211.088425][ T1217] usb 6-1: Manufacturer: syz
[  211.113638][ T1217] usb 6-1: SerialNumber: syz
[  211.129520][ T1217] usb 6-1: config 0 descriptor??
[  211.149998][ T8371] block nbd2: server does not support multiple connections per device.
[  211.169194][ T8371] block nbd2: shutting down sockets
[  211.244469][ T8367] loop2: detected capacity change from 0 to 32768
[  211.281219][ T8367] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  211.290471][ T8367] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  211.326093][ T8367] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms
[  211.342883][   T24] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  211.350995][   T24] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  211.359648][ T5837] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  211.432438][   T24] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 81ms
[  211.471741][   T24] gfs2: fsid=syz:syz.0: jid=0: Done
[  211.504885][ T8367] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  211.598064][ T8354] loop6: detected capacity change from 0 to 32768
[  211.647914][ T8354] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.858 (8354)
[  211.663350][ T8367] gfs2: fsid=syz:syz.0: found 1 quota changes
[  211.690312][ T8354] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  211.751625][ T8354] BTRFS info (device loop6): using sha256 (sha256-lib) checksum algorithm
[  211.849564][ T1217] f81534 6-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  211.858249][ T1217] f81534 6-1:0.12: f81534_find_config_idx: read failed: -71
[  211.873478][ T1217] f81534 6-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  211.882199][ T1217] f81534 6-1:0.12: probe with driver f81534 failed with error -71
[  211.924807][ T1217] usb 6-1: USB disconnect, device number 8
[  211.949970][ T8354] BTRFS info (device loop6): rebuilding free space tree
[  212.003928][ T8354] BTRFS info (device loop6): setting nodatasum
[  212.028353][ T8354] BTRFS info (device loop6): enabling ssd optimizations
[  212.055241][ T5830] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 404
[  212.077413][ T5830] gfs2: fsid=syz:syz.0: G:  s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[  212.087191][ T8354] BTRFS info (device loop6): enabling free space tree
[  212.099101][ T5830] gfs2: fsid=syz:syz.0:  H: s:EX f:H e:0 p:5830 [syz-executor] gfs2_quota_sync+0x322/0x570
[  212.112234][ T5830] gfs2: fsid=syz:syz.0:  I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[  212.120754][ T8354] BTRFS info (device loop6): force clearing of disk cache
[  212.121374][ T5830] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  212.130868][ T8354] BTRFS info (device loop6): enabling auto defrag
[  212.154491][ T5830] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  212.165071][ T8354] BTRFS info (device loop6): force zlib compression, level 3
[  212.198477][ T5830] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  212.207143][ T5830] gfs2: fsid=syz:syz.0: File system withdrawn
[  212.213239][ T5830] CPU: 0 UID: 0 PID: 5830 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  212.213285][ T5830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  212.213307][ T5830] Call Trace:
[  212.213319][ T5830]  <TASK>
[  212.213331][ T5830]  dump_stack_lvl+0x16c/0x1f0
[  212.213393][ T5830]  gfs2_withdraw+0xa8b/0x1130
[  212.213463][ T5830]  ? __pfx_gfs2_withdraw+0x10/0x10
[  212.213521][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[  212.213565][ T5830]  ? gfs2_meta_buffer+0x194/0x3d0
[  212.213625][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[  212.213677][ T5830]  inode_go_instantiate+0xe68/0x1290
[  212.213732][ T5830]  ? __pfx_bit_wait+0x10/0x10
[  212.213795][ T5830]  ? __pfx_inode_go_instantiate+0x10/0x10
[  212.213851][ T5830]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  212.213908][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[  212.213964][ T5830]  gfs2_instantiate+0x16c/0x250
[  212.214010][ T5830]  gfs2_glock_wait+0x214/0x330
[  212.214055][ T5830]  ? __pfx_gfs2_glock_wait+0x10/0x10
[  212.214103][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[  212.214153][ T5830]  gfs2_glock_nq+0xd24/0x17a0
[  212.214220][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[  212.214272][ T5830]  do_sync+0x70d/0xd60
[  212.214315][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[  212.214358][ T5830]  ? do_raw_spin_unlock+0x172/0x230
[  212.214428][ T5830]  ? __pfx_do_sync+0x10/0x10
[  212.214471][ T5830]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  212.214540][ T5830]  ? gfs2_quota_sync+0x322/0x570
[  212.214589][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[  212.214645][ T5830]  gfs2_quota_sync+0x322/0x570
[  212.214708][ T5830]  gfs2_sync_fs+0x44/0xb0
[  212.214742][ T5830]  ? __pfx_gfs2_sync_fs+0x10/0x10
[  212.214777][ T5830]  sync_filesystem+0x111/0x290
[  212.214825][ T5830]  generic_shutdown_super+0x74/0x390
[  212.214887][ T5830]  kill_block_super+0x3b/0x90
[  212.214944][ T5830]  gfs2_kill_sb+0x371/0x420
[  212.215016][ T5830]  deactivate_locked_super+0xc1/0x1a0
[  212.215054][ T5830]  deactivate_super+0xde/0x100
[  212.215092][ T5830]  cleanup_mnt+0x225/0x450
[  212.215134][ T5830]  task_work_run+0x150/0x240
[  212.215188][ T5830]  ? __pfx_task_work_run+0x10/0x10
[  212.215244][ T5830]  ? srso_alias_return_thunk+0x5/0xfbef5
[  212.215290][ T5830]  ? __pfx___x64_sys_umount+0x10/0x10
[  212.215344][ T5830]  exit_to_user_mode_loop+0xec/0x130
[  212.215398][ T5830]  do_syscall_64+0x426/0xfa0
[  212.215459][ T5830]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.215495][ T5830] RIP: 0033:0x7fc586f902f7
[  212.215522][ T5830] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  212.215558][ T5830] RSP: 002b:00007fff6f1874f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  212.215591][ T5830] RAX: 0000000000000000 RBX: 00007fc587011d7d RCX: 00007fc586f902f7
[  212.215614][ T5830] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff6f1875b0
[  212.215637][ T5830] RBP: 00007fff6f1875b0 R08: 0000000000000000 R09: 0000000000000000
[  212.215659][ T5830] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff6f188640
[  212.215682][ T5830] R13: 00007fc587011d7d R14: 0000000000033b54 R15: 00007fff6f188680
[  212.215733][ T5830]  </TASK>
[  213.284432][ T8400] loop1: detected capacity change from 0 to 40427
[  213.317878][ T6796] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  213.337655][ T8400] F2FS-fs (loop1): invalid crc value
[  213.631940][ T8400] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  213.662296][ T8400] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  213.833631][ T8431] loop7: detected capacity change from 0 to 256
[  213.898449][ T8431] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d)
[  213.960272][ T5827] syz-executor: attempt to access beyond end of device
[  213.960272][ T5827] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  214.007933][ T8437] netlink: 12 bytes leftover after parsing attributes in process `syz.6.880'.
[  214.015086][ T5827] CPU: 1 UID: 0 PID: 5827 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  214.015129][ T5827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  214.015151][ T5827] Call Trace:
[  214.015162][ T5827]  <TASK>
[  214.015175][ T5827]  dump_stack_lvl+0x16c/0x1f0
[  214.015241][ T5827]  f2fs_handle_critical_error+0x624/0x9f0
[  214.015293][ T5827]  ? srso_alias_return_thunk+0x5/0xfbef5
[  214.015336][ T5827]  ? f2fs_build_fault_attr+0x53/0x1f0
[  214.015387][ T5827]  f2fs_write_end_io+0x958/0xcf0
[  214.015442][ T5827]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  214.015499][ T5827]  ? srso_alias_return_thunk+0x5/0xfbef5
[  214.015551][ T5827]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  214.015601][ T5827]  bio_endio+0x713/0x860
[  214.015638][ T5827]  submit_bio_noacct+0x306/0x1f60
[  214.015696][ T5827]  __submit_merged_bio+0x33c/0x770
[  214.015754][ T5827]  __submit_merged_write_cond+0x319/0x3f0
[  214.015818][ T5827]  f2fs_write_cache_pages+0x2067/0x2570
[  214.015905][ T5827]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  214.015960][ T5827]  ? srso_alias_return_thunk+0x5/0xfbef5
[  214.016014][ T5827]  ? __lock_acquire+0xb8a/0x1c90
[  214.016083][ T5827]  ? srso_alias_return_thunk+0x5/0xfbef5
[  214.016191][ T5827]  ? srso_alias_return_thunk+0x5/0xfbef5
[  214.016237][ T5827]  ? free_unref_folios+0x109a/0x1610
[  214.016303][ T5827]  ? srso_alias_return_thunk+0x5/0xfbef5
[  214.016353][ T5827]  f2fs_write_data_pages+0x4ad/0xd90
[  214.016420][ T5827]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  214.016475][ T5827]  ? srso_alias_return_thunk+0x5/0xfbef5
[  214.016528][ T5827]  ? srso_alias_return_thunk+0x5/0xfbef5
[  214.016575][ T5827]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  214.016637][ T5827]  do_writepages+0x27a/0x600
[  214.016691][ T5827]  ? __pfx_do_writepages+0x10/0x10
[  214.016736][ T5827]  ? do_raw_spin_unlock+0x172/0x230
[  214.016789][ T5827]  ? srso_alias_return_thunk+0x5/0xfbef5
[  214.016829][ T5827]  ? _raw_spin_unlock+0x28/0x50
[  214.016884][ T5827]  filemap_fdatawrite_wbc+0x104/0x160
[  214.016940][ T5827]  __filemap_fdatawrite_range+0xb9/0x100
[  214.016977][ T5827]  ? __pfx___filemap_fdatawrite_range+0x10/0x10
[  214.017070][ T5827]  ? find_held_lock+0x2b/0x80
[  214.017104][ T5827]  ? srso_alias_return_thunk+0x5/0xfbef5
[  214.017146][ T5827]  ? do_raw_spin_unlock+0x172/0x230
[  214.017199][ T5827]  ? srso_alias_return_thunk+0x5/0xfbef5
[  214.017256][ T5827]  f2fs_sync_dirty_inodes+0x2a2/0x980
[  214.017311][ T5827]  block_operations+0x2b0/0xfe0
[  214.017345][ T5827]  ? srso_alias_return_thunk+0x5/0xfbef5
[  214.017399][ T5827]  ? __pfx_block_operations+0x10/0x10
[  214.017489][ T5827]  ? srso_alias_return_thunk+0x5/0xfbef5
[  214.017534][ T5827]  ? ktime_get+0x200/0x310
[  214.017573][ T5827]  ? srso_alias_return_thunk+0x5/0xfbef5
[  214.017616][ T5827]  ? lockdep_hardirqs_on+0x7c/0x110
[  214.017672][ T5827]  ? srso_alias_return_thunk+0x5/0xfbef5
[  214.017713][ T5827]  ? rcu_is_watching+0x12/0xc0
[  214.017753][ T5827]  f2fs_write_checkpoint+0x32b/0x5300
[  214.017793][ T5827]  ? __pfx_try_to_wake_up+0x10/0x10
[  214.017852][ T5827]  ? kfree+0x2b8/0x6d0
[  214.017902][ T5827]  ? f2fs_stop_gc_thread+0x79/0xd0
[  214.017945][ T5827]  ? srso_alias_return_thunk+0x5/0xfbef5
[  214.017986][ T5827]  ? rcu_is_watching+0x12/0xc0
[  214.018019][ T5827]  ? srso_alias_return_thunk+0x5/0xfbef5
[  214.018060][ T5827]  ? kthread_stop+0x272/0x630
[  214.018109][ T5827]  kill_f2fs_super+0x3d6/0x490
[  214.018147][ T5827]  ? __pfx_kill_f2fs_super+0x10/0x10
[  214.018201][ T5827]  ? srso_alias_return_thunk+0x5/0xfbef5
[  214.018263][ T5827]  deactivate_locked_super+0xc1/0x1a0
[  214.018302][ T5827]  deactivate_super+0xde/0x100
[  214.018340][ T5827]  cleanup_mnt+0x225/0x450
[  214.018382][ T5827]  task_work_run+0x150/0x240
[  214.018435][ T5827]  ? __pfx_task_work_run+0x10/0x10
[  214.018482][ T5827]  ? srso_alias_return_thunk+0x5/0xfbef5
[  214.018527][ T5827]  ? __pfx___x64_sys_umount+0x10/0x10
[  214.018580][ T5827]  exit_to_user_mode_loop+0xec/0x130
[  214.018633][ T5827]  do_syscall_64+0x426/0xfa0
[  214.018692][ T5827]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.018727][ T5827] RIP: 0033:0x7fd498d902f7
[  214.018755][ T5827] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  214.018789][ T5827] RSP: 002b:00007ffd586f90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  214.018821][ T5827] RAX: 0000000000000000 RBX: 00007fd498e11d7d RCX: 00007fd498d902f7
[  214.018844][ T5827] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd586f91a0
[  214.018865][ T5827] RBP: 00007ffd586f91a0 R08: 0000000000000000 R09: 0000000000000000
[  214.018887][ T5827] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd586fa230
[  214.018910][ T5827] R13: 00007fd498e11d7d R14: 0000000000034359 R15: 00007ffd586fa270
[  214.018960][ T5827]  </TASK>
[  214.020610][ T5827] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  214.579420][ T8422] loop2: detected capacity change from 0 to 32768
[  214.616879][ T8422] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.874 (8422)
[  214.693741][ T8422] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  214.709976][ T8422] BTRFS info (device loop2): using crc32c (crc32c-lib) checksum algorithm
[  214.881500][ T8422] BTRFS info (device loop2): allowing degraded mounts
[  214.908382][ T8422] BTRFS info (device loop2): enabling ssd optimizations
[  214.935162][ T8422] BTRFS info (device loop2): enabling free space tree
[  214.992610][ T8422] BTRFS info (device loop2): force zlib compression, level 3
[  215.148069][   T30] audit: type=1800 audit(1760703204.924:38): pid=8422 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.874" name="file1" dev="loop2" ino=260 res=0 errno=0
[  215.168524][    C0] vkms_vblank_simulate: vblank timer overrun
[  215.195141][ T8473] loop5: detected capacity change from 0 to 32768
[  215.203804][ T8473] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.896 (8473)
[  215.224292][ T8473] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  215.234568][ T8473] BTRFS info (device loop5): using sha256 (sha256-lib) checksum algorithm
[  215.298235][ T8480] loop7: detected capacity change from 0 to 2048
[  215.363820][ T8492] loop4: detected capacity change from 0 to 128
[  215.380118][ T8480] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.394301][ T8480] ext4 filesystem being mounted at /63/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  215.431128][ T8473] BTRFS info (device loop5): enabling ssd optimizations
[  215.438846][ T8473] BTRFS info (device loop5): turning on async discard
[  215.445884][ T8473] BTRFS info (device loop5): enabling free space tree
[  215.474038][ T5830] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  215.532566][ T8473] BTRFS info (device loop5): setting incompat feature flag for DEFAULT_SUBVOL (0x2)
[  215.699616][ T5834] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  215.849749][ T7280] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.234355][ T8512] loop7: detected capacity change from 0 to 4096
[  216.321229][ T8512] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  216.461196][ T8512] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  216.605325][   T24] usb 5-1: new full-speed USB device number 7 using dummy_hcd
[  216.626251][ T8533] netlink: 4 bytes leftover after parsing attributes in process `syz.1.913'.
[  216.689567][ T7280] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.730108][ T8533] macvtap1: entered allmulticast mode
[  216.737301][ T8533] vlan0: entered allmulticast mode
[  216.749129][ T8533] veth0_vlan: entered allmulticast mode
[  216.767225][   T24] usb 5-1: config 0 has no interfaces?
[  216.772969][   T24] usb 5-1: New USB device found, idVendor=12d1, idProduct=42f7, bcdDevice=aa.47
[  216.783707][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  216.792332][ T8533] vlan0: left allmulticast mode
[  216.799517][ T8533] veth0_vlan: left allmulticast mode
[  216.806036][   T24] usb 5-1: config 0 descriptor??
[  217.170757][ T5918] usb 5-1: USB disconnect, device number 7
[  217.290185][ T8542] loop1: detected capacity change from 0 to 47
[  217.572200][ T8530] loop6: detected capacity change from 0 to 32768
[  217.591659][ T8530] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.914 (8530)
[  217.631145][ T8536] loop7: detected capacity change from 0 to 32768
[  217.641211][ T8530] BTRFS info (device loop6): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  217.651524][ T8530] BTRFS info (device loop6): using blake2b (blake2b-256-generic) checksum algorithm
[  217.663554][ T8536] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.915 (8536)
[  217.686368][ T8536] BTRFS info (device loop7): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  217.712070][ T8536] BTRFS info (device loop7): using sha256 (sha256-lib) checksum algorithm
[  217.804268][ T8530] BTRFS info (device loop6): enabling ssd optimizations
[  217.823841][ T8578] loop1: detected capacity change from 0 to 128
[  217.830385][ T8530] BTRFS info (device loop6): turning on async discard
[  217.855134][ T8530] BTRFS info (device loop6): enabling free space tree
[  217.862285][ T8530] BTRFS info (device loop6): use zstd compression, level 3
[  217.893413][ T8536] BTRFS info (device loop7): enabling ssd optimizations
[  217.915000][ T8536] BTRFS info (device loop7): turning on async discard
[  217.941961][ T8536] BTRFS info (device loop7): enabling free space tree
[  218.060305][ T6796] BTRFS info (device loop6): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  218.093378][ T8536] BTRFS error (device loop7): balance: mixed groups data and metadata options must be the same
[  218.335107][ T7280] BTRFS info (device loop7): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  218.575536][ T8594] netlink: 72 bytes leftover after parsing attributes in process `syz.5.931'.
[  218.779040][ T8602] loop6: detected capacity change from 0 to 512
[  218.814092][ T8602] EXT4-fs: Ignoring removed mblk_io_submit option
[  218.850635][ T8602] EXT4-fs: inline encryption not supported
[  218.865154][ T8602] EXT4-fs: Ignoring removed mblk_io_submit option
[  218.886948][ T8602] EXT4-fs (loop6): Test dummy encryption mode enabled
[  218.914442][ T8602] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  219.005634][ T8602] EXT4-fs (loop6): 1 truncate cleaned up
[  219.017468][ T8602] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  219.129221][ T6796] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.329440][ T8616] loop7: detected capacity change from 0 to 128
[  219.405640][ T8616] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  219.444134][ T8616] hpfs: filesystem error: improperly stopped
[  219.454068][ T8616] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  219.482155][ T1217] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  219.489798][ T8616] hpfs: You really don't want any checks? You are crazy...
[  219.508773][ T8616] hpfs: hpfs_map_sector(): read error
[  219.527713][ T8616] hpfs: code page support is disabled
[  219.543490][ T8616] hpfs: hpfs_map_4sectors(): unaligned read
[  219.564108][ T8616] hpfs: hpfs_map_4sectors(): unaligned read
[  219.580309][ T8616] hpfs: filesystem error: unable to find root dir
[  219.643914][ T1217] usb 5-1: Using ep0 maxpacket: 8
[  219.678558][ T1217] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  219.717013][ T1217] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[  219.757743][ T1217] usb 5-1: config 0 interface 0 has no altsetting 0
[  219.793869][ T1217] usb 5-1: New USB device found, idVendor=28bd, idProduct=0905, bcdDevice= 0.00
[  219.818109][ T1217] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  219.830568][ T8598] loop2: detected capacity change from 0 to 32768
[  219.850143][ T1217] usb 5-1: config 0 descriptor??
[  219.866728][ T5841] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  219.875937][ T5841] Bluetooth: hci3: Injecting HCI hardware error event
[  219.884694][ T5140] Bluetooth: hci3: hardware error 0x00
[  219.936348][ T8598] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  220.124592][ T8598] XFS (loop2): Ending clean mount
[  220.164141][ T8598] XFS (loop2): Quotacheck needed: Please wait.
[  220.276816][ T8598] XFS (loop2): Quotacheck: Done.
[  220.323214][ T1217] input: HID 28bd:0905 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:28BD:0905.000B/input/input13
[  220.345775][ T8601] loop1: detected capacity change from 0 to 40427
[  220.382059][ T8601] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  220.410813][ T8601] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  220.458422][ T1217] uclogic 0003:28BD:0905.000B: input,hidraw0: USB HID v10.00 Mouse [HID 28bd:0905] on usb-dummy_hcd.4-1/input0
[  220.470730][ T8601] F2FS-fs (loop1): invalid crc value
[  220.511139][ T5830] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  220.565753][ T1217] usb 5-1: USB disconnect, device number 8
[  220.708931][ T8601] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  220.747526][ T8601] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  220.766323][ T8601] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  221.255413][   T30] audit: type=1326 audit(1760703468.101:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8638 comm="syz.6.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc12e98efc9 code=0x7fc00000
[  221.532033][ T8653] loop7: detected capacity change from 0 to 32768
[  221.818046][ T8656] loop2: detected capacity change from 0 to 32768
[  221.911370][ T8656] ERROR: (device loop2): dbAlloc: the hint is outside the map
[  221.911370][ T8656] 
[  221.965519][ T8656] ERROR: (device loop2): remounting filesystem as read-only
[  221.973346][ T8675] syz.2.949: attempt to access beyond end of device
[  221.973346][ T8675] loop2: rw=2049, sector=2621800, nr_sectors = 8 limit=32768
[  222.053016][  T110] blkno = 5002c, nblocks = 1
[  222.062895][  T110] ERROR: (device loop2): dbUpdatePMap: blocks are outside the map
[  222.062895][  T110] 
[  222.065158][ T8679] netlink: 12 bytes leftover after parsing attributes in process `syz.6.964'.
[  222.095057][  T110] blkno = 5002c, nblocks = 1
[  222.102763][ T5140] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  222.112689][  T110] ERROR: (device loop2): dbFree: block to be freed is outside the map
[  222.112689][  T110] 
[  222.130392][  T110] blkno = 5002d, nblocks = 1
[  222.135114][  T110] ERROR: (device loop2): dbUpdatePMap: blocks are outside the map
[  222.135114][  T110] 
[  222.342602][ T8685] loop1: detected capacity change from 0 to 4096
[  222.584059][ T8695] input: syz1 as /devices/virtual/input/input14
[  222.986931][ T8706] loop7: detected capacity change from 0 to 256
[  223.014301][ T8709] ALSA: mixer_oss: invalid OSS volume 'DIG¨TAL1'
[  223.143263][ T8716] netlink: 8 bytes leftover after parsing attributes in process `syz.1.978'.
[  223.513704][ T8731] Invalid ELF header magic: != ELF
[  223.589562][ T8733] loop6: detected capacity change from 0 to 524288000
[  223.712925][ T8733] loop6: detected capacity change from 524288000 to 1
[  223.983621][ T8748] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  224.241665][ T5957] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  224.318250][ T8763] loop2: detected capacity change from 0 to 256
[  224.350886][ T8763] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011ded, chksum : 0x9858084d, utbl_chksum : 0xe619d30d)
[  224.390250][ T8727] loop7: detected capacity change from 0 to 32768
[  224.430307][ T8765] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1001'.
[  224.456896][ T5957] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  224.456931][ T8727] XFS (loop7): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  224.482923][ T5957] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  224.530412][ T5957] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  224.570608][ T5957] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  224.616147][ T8751] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  224.654865][ T5957] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  224.666603][ T8727] XFS (loop7): Ending clean mount
[  224.713493][ T8727] XFS (loop7): Quotacheck needed: Please wait.
[  224.777411][ T8727] XFS (loop7): Quotacheck: Done.
[  224.859594][ T5957] usb 7-1: USB disconnect, device number 5
[  224.888792][ T8753] loop4: detected capacity change from 0 to 32768
[  224.923336][ T8784] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1006'.
[  224.926178][ T8753] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.996 (8753)
[  224.987332][ T8753] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  225.003651][ T8753] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[  225.016181][ T7280] XFS (loop7): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  225.042536][ T8787] loop5: detected capacity change from 0 to 256
[  225.058706][ T8787] exfat: Deprecated parameter 'namecase'
[  225.066061][ T8787] exfat: Deprecated parameter 'namecase'
[  225.077311][ T8787] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  225.111216][ T5918] usb 3-1: new full-speed USB device number 9 using dummy_hcd
[  225.126350][ T8787] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d)
[  225.197480][ T8753] BTRFS info (device loop4): enabling ssd optimizations
[  225.215849][ T8753] BTRFS info (device loop4): turning on async discard
[  225.240423][ T8753] BTRFS info (device loop4): enabling free space tree
[  225.265789][ T5918] usb 3-1: config 0 has no interfaces?
[  225.281301][ T5918] usb 3-1: New USB device found, idVendor=12d1, idProduct=42f7, bcdDevice=aa.47
[  225.290373][ T5918] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  225.322278][ T5918] usb 3-1: config 0 descriptor??
[  225.362007][ T5957] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  225.435563][ T5949] BTRFS info (device loop4): qgroup scan completed (inconsistency flag cleared)
[  225.526471][ T5837] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  225.560667][ T5957] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  225.592432][ T5957] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  225.623950][ T5957] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  225.643638][ T5957] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  225.669157][ T5957] usb 2-1: SerialNumber: syz
[  225.685603][ T1217] usb 3-1: USB disconnect, device number 9
[  225.907056][ T5957] usb 2-1: 0:2 : does not exist
[  225.963817][ T5957] usb 2-1: USB disconnect, device number 8
[  226.012186][ T8824] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1018'.
[  226.022084][ T8824] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1018'.
[  226.110938][ T5910] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  226.304046][ T5910] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  226.319273][ T5910] usb 6-1: config 0 has no interface number 0
[  226.329978][ T5910] usb 6-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  226.343683][ T5910] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  226.355814][ T5910] usb 6-1: Product: syz
[  226.360158][ T5910] usb 6-1: Manufacturer: syz
[  226.366006][ T5910] usb 6-1: SerialNumber: syz
[  226.389425][ T5910] usb 6-1: config 0 descriptor??
[  226.606673][ T8845] bridge_slave_0: invalid flags given to default FDB implementation
[  226.611327][ T5910] dvb_usb_ec168 6-1:0.1: probe with driver dvb_usb_ec168 failed with error -32
[  226.640674][ T5910] usb 6-1: USB disconnect, device number 9
[  226.680512][   T24] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  226.839575][   T24] usb 7-1: Using ep0 maxpacket: 8
[  226.847836][   T24] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  226.873868][   T24] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 16
[  226.904117][   T24] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  226.914254][   T24] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  226.930629][   T24] usb 7-1: Product: syz
[  226.936974][   T24] usb 7-1: Manufacturer: syz
[  226.948269][   T24] usb 7-1: SerialNumber: syz
[  226.980598][ T1217] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  227.140577][ T1217] usb 5-1: Using ep0 maxpacket: 8
[  227.148481][ T1217] usb 5-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  227.157861][ T1217] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  227.181411][ T1217] pvrusb2: Hardware description: Terratec Grabster AV400
[  227.185929][   T24] cdc_ncm 7-1:1.0: bind() failure
[  227.208870][ T1217] pvrusb2: **********
[  227.229143][ T1217] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  227.229577][   T24] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[  227.241523][ T8861] lo: Caught tx_queue_len zero misconfig
[  227.260150][ T1217] pvrusb2: Important functionality might not be entirely working.
[  227.278666][ T1217] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  227.326450][   T24] cdc_ncm 7-1:1.1: bind() failure
[  227.343210][   T24] usb 7-1: USB disconnect, device number 6
[  227.363275][ T1217] pvrusb2: **********
[  227.402370][ T2337] pvrusb2: Invalid write control endpoint
[  227.455774][ T8865] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1036'.
[  227.500040][ T8865] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1036'.
[  227.587954][ T2337] pvrusb2: Invalid write control endpoint
[  227.605046][ T2337] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  227.636881][ T2337] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  227.670136][ T2337] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  227.685333][ T2337] pvrusb2: Device being rendered inoperable
[  227.697022][ T8851] pvrusb2: Attempted to execute control transfer when device not ok
[  227.723713][ T2337] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  227.730314][ T5918] usb 5-1: USB disconnect, device number 9
[  227.750541][ T2337] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  227.768555][ T2337] pvrusb2: Attached sub-driver cx25840
[  227.785353][ T2337] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  227.814266][ T2337] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  227.845609][ T8858] loop7: detected capacity change from 0 to 32768
[  227.930417][ T8881] loop6: detected capacity change from 0 to 256
[  227.937877][ T8881] exfat: Deprecated parameter 'namecase'
[  227.956866][ T8858] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[  227.990795][ T8881] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  228.127700][ T7280] ocfs2: Unmounting device (7,7) on (node local)
[  228.530266][ T8897] loop4: detected capacity change from 0 to 2048
[  228.596591][ T8897] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  228.752215][ T8897] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1286: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  228.799607][ T8897] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  228.886131][ T8897] EXT4-fs (loop4): This should not happen!! Data will be lost
[  228.886131][ T8897] 
[  228.925219][ T8897] EXT4-fs (loop4): Total free blocks count 0
[  228.956624][ T8897] EXT4-fs (loop4): Free/Dirty block details
[  228.983240][ T8920] loop7: detected capacity change from 0 to 1764
[  228.985295][ T8897] EXT4-fs (loop4): free_blocks=2415919504
[  229.025032][ T8897] EXT4-fs (loop4): dirty_blocks=32
[  229.048147][ T8897] EXT4-fs (loop4): Block reservation details
[  229.072710][ T8897] EXT4-fs (loop4): i_reserved_data_blocks=2
[  229.257283][ T8929] loop6: detected capacity change from 0 to 512
[  229.276003][ T8929] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  229.296137][ T8931] netlink: 'syz.1.1063': attribute type 5 has an invalid length.
[  229.315314][ T8929] EXT4-fs warning (device loop6): ext4_update_dynamic_rev:1134: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  229.335728][ T8929] EXT4-fs error (device loop6): ext4_validate_block_bitmap:440: comm syz.6.1060: bg 0: block 248: padding at end of block bitmap is not set
[  229.354955][ T8929] Quota error (device loop6): write_blk: dquota write failed
[  229.363482][ T8929] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  229.373797][ T8929] EXT4-fs error (device loop6): ext4_acquire_dquot:6943: comm syz.6.1060: Failed to acquire dquot type 1
[  229.397873][ T8929] EXT4-fs (loop6): 1 truncate cleaned up
[  229.407532][ T8929] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback.
[  229.443763][   T30] audit: type=1800 audit(1760703476.285:40): pid=8929 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1060" name="file1" dev="loop6" ino=15 res=0 errno=0
[  229.555185][   T62] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 1 with error 28
[  229.602050][ T6796] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0008-000000000000.
[  229.645119][   T36] Quota error (device loop6): do_check_range: Getting block 0 out of range 1-5
[  229.680221][   T36] EXT4-fs error (device loop6): ext4_release_dquot:6979: comm kworker/u8:2: Failed to release dquot type 1
[  229.996998][ T8946] veth1_to_bond: entered allmulticast mode
[  230.014198][ T8946] veth1_to_bond: left allmulticast mode
[  230.131275][ T8954] loop5: detected capacity change from 0 to 8
[  230.532481][   T36] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.681093][   T36] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.857559][   T36] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.926248][ T8975] netem: incorrect ge model size
[  230.932531][ T8975] netem: change failed
[  231.005472][   T36] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  231.038334][ T5918] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  231.209416][ T5918] usb 7-1: Using ep0 maxpacket: 8
[  231.230324][ T5918] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  231.260731][ T5918] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  231.290330][ T5918] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  231.310653][ T5918] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  231.360749][ T5918] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  231.368525][   T36] bridge_slave_1: left allmulticast mode
[  231.376574][   T36] bridge_slave_1: left promiscuous mode
[  231.384641][ T5918] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  231.407789][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  231.454906][   T36] bridge_slave_0: left allmulticast mode
[  231.469309][   T36] bridge_slave_0: left promiscuous mode
[  231.488444][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  231.548190][ T5831] Bluetooth: hci2: command 0x0406 tx timeout
[  231.549173][ T5828] Bluetooth: hci4: command 0x0406 tx timeout
[  231.555301][ T5840] Bluetooth: hci1: command 0x0406 tx timeout
[  231.614049][ T5840] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  231.629537][ T5918] usb 7-1: GET_CAPABILITIES returned 0
[  231.637086][ T5840] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  231.654881][ T5840] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  231.665816][ T5918] usbtmc 7-1:16.0: can't read capabilities
[  231.673533][ T5840] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  231.688791][ T5140] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  231.851360][ T2145] usb 7-1: USB disconnect, device number 7
[  232.384824][ T8983] loop4: detected capacity change from 0 to 32768
[  232.406607][ T8983] BTRFS: device fsid c6b85f58-0c7e-41ca-a553-c8d9f94f6663 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1086 (8983)
[  232.458873][ T8983] BTRFS info (device loop4): first mount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663
[  232.491537][ T8983] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[  232.716396][ T8983] BTRFS info (device loop4): enabling ssd optimizations
[  232.734426][ T8983] BTRFS info (device loop4): turning on async discard
[  232.757362][ T8983] BTRFS info (device loop4): enabling free space tree
[  232.785233][ T8983] BTRFS info (device loop4): use lzo compression, level 1
[  232.889732][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  232.983191][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  233.051768][   T36] bond0 (unregistering): Released all slaves
[  233.096816][ T5837] BTRFS info (device loop4): last unmount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663
[  233.109757][ T9025] loop6: detected capacity change from 0 to 512
[  233.133262][ T9025] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  233.189255][ T9025] EXT4-fs (loop6): 1 truncate cleaned up
[  233.254101][ T9025] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  233.555532][ T6796] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.797865][ T5833] Bluetooth: hci5: command tx timeout
[  233.930205][ T9033] support for cryptoloop has been removed.  Use dm-crypt instead.
[  234.821641][ T8988] chnl_net:caif_netlink_parms(): no params data found
[  234.965807][   T36] hsr_slave_0: left promiscuous mode
[  234.986674][   T36] hsr_slave_1: left promiscuous mode
[  234.994008][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  235.025780][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  235.045400][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  235.057408][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  235.112228][   T36] veth1_macvtap: left promiscuous mode
[  235.138791][   T36] veth0_macvtap: left promiscuous mode
[  235.144511][   T36] veth1_vlan: left promiscuous mode
[  235.156541][   T36] veth0_vlan: left promiscuous mode
[  235.856936][ T5833] Bluetooth: hci5: command tx timeout
[  235.929040][ T9060] loop1: detected capacity change from 0 to 32768
[  235.941106][ T9060] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1112 (9060)
[  235.986031][ T9060] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  236.011572][ T9060] BTRFS info (device loop1): using crc32c (crc32c-lib) checksum algorithm
[  236.147154][ T9060] BTRFS info (device loop1): setting nodatasum
[  236.153369][ T9060] BTRFS info (device loop1): setting nodatacow
[  236.174688][ T9060] BTRFS info (device loop1): turning on async discard
[  236.189741][ T9060] BTRFS info (device loop1): enabling free space tree
[  236.209566][ T9060] BTRFS info (device loop1): enabling auto defrag
[  236.226337][ T9060] BTRFS info (device loop1): max_inline set to 0
[  236.370178][   T30] audit: type=1326 audit(1760703483.208:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9085 comm="syz.4.1117" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f75c918efc9 code=0x0
[  236.428610][   T36] team0 (unregistering): Port device team_slave_1 removed
[  236.462851][ T9087] BTRFS info (device loop1 state M): max_inline set to 0
[  236.550535][   T36] team0 (unregistering): Port device team_slave_0 removed
[  237.571930][ T5827] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  237.937195][ T5833] Bluetooth: hci5: command tx timeout
[  238.140657][ T9100] loop4: detected capacity change from 0 to 512
[  238.156665][ T8988] bridge0: port 1(bridge_slave_0) entered blocking state
[  238.165610][ T9100] EXT4-fs (loop4): Test dummy encryption mode enabled
[  238.172386][ T9100] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  238.182871][ T8988] bridge0: port 1(bridge_slave_0) entered disabled state
[  238.191054][ T8988] bridge_slave_0: entered allmulticast mode
[  238.198217][ T9104] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1118'.
[  238.199687][ T8988] bridge_slave_0: entered promiscuous mode
[  238.216345][ T9100] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.1121: bad orphan inode 131083
[  238.216728][ T8988] bridge0: port 2(bridge_slave_1) entered blocking state
[  238.233892][ T8988] bridge0: port 2(bridge_slave_1) entered disabled state
[  238.241185][ T8988] bridge_slave_1: entered allmulticast mode
[  238.262064][ T8988] bridge_slave_1: entered promiscuous mode
[  238.276447][ T9100] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  238.303138][ T9100] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  238.369835][ T9100] overlayfs: upper fs needs to support d_type.
[  238.386179][ T9100] fscrypt: AES-256-XTS using implementation "xts-aes-vaes-avx2"
[  238.426951][ T9106] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  238.459459][ T8988] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  238.558049][ T8988] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  238.588543][ T5837] EXT4-fs error (device loop4): ext4_readdir:262: inode #2: block 13: comm syz-executor: path /201/bus: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  238.783598][ T8988] team0: Port device team_slave_0 added
[  238.817678][ T8988] team0: Port device team_slave_1 added
[  238.953962][ T9112] loop1: detected capacity change from 0 to 1024
[  238.988211][ T8988] batman_adv: batadv0: Adding interface: batadv_slave_0
[  239.015228][ T8988] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  239.067803][ T9112] hfsplus: bad catalog entry type
[  239.077635][ T8988] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  239.143164][ T5949] hfsplus: b-tree write err: -5, ino 4
[  239.203154][ T8988] batman_adv: batadv0: Adding interface: batadv_slave_1
[  239.226549][ T8988] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  239.283396][ T8988] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  239.316393][ T6857] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.370505][ T9120] team0: Device ipvlan1 failed to register rx_handler
[  239.601979][ T8988] hsr_slave_0: entered promiscuous mode
[  239.622337][ T8988] hsr_slave_1: entered promiscuous mode
[  239.636760][ T8988] debugfs: 'hsr0' already exists in 'hsr'
[  239.652745][ T8988] Cannot create hsr debugfs directory
[  240.018250][ T5833] Bluetooth: hci5: command tx timeout
[  240.349767][ T8988] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  240.408317][ T8988] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  240.452754][ T8988] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  240.501857][ T8988] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  240.620036][ T5828] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  240.632153][ T5828] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  240.640295][ T5828] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  240.648616][ T5828] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  240.664898][ T5828] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  240.753563][ T9142] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 4, id = 0
[  241.030841][ T9129] loop6: detected capacity change from 0 to 32768
[  241.157218][ T8988] 8021q: adding VLAN 0 to HW filter on device bond0
[  241.183533][ T9129] ocfs2: Mounting device (7,6) on (node local, slot 0) with writeback data mode.
[  241.280167][ T8988] 8021q: adding VLAN 0 to HW filter on device team0
[  241.397513][ T6796] ocfs2: Unmounting device (7,6) on (node local)
[  241.431194][ T9160] Set syz0 is full, maxelem 0 reached
[  241.470548][ T5949] bridge0: port 1(bridge_slave_0) entered blocking state
[  241.477941][ T5949] bridge0: port 1(bridge_slave_0) entered forwarding state
[  241.538411][ T5949] bridge0: port 2(bridge_slave_1) entered blocking state
[  241.545618][ T5949] bridge0: port 2(bridge_slave_1) entered forwarding state
[  241.643427][ T9162] loop1: detected capacity change from 0 to 4096
[  241.660813][ T9162] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  241.744784][ T9162] ntfs3(loop1): ino=19, mi_enum_attr
[  241.760464][ T9162] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  241.888146][ T9138] chnl_net:caif_netlink_parms(): no params data found
[  242.421455][ T9183] loop6: detected capacity change from 0 to 2048
[  242.522695][ T9183] NILFS (loop6): invalid segment: Inconsistency found
[  242.529619][ T9183] NILFS (loop6): trying rollback from an earlier position
[  242.575556][ T9138] bridge0: port 1(bridge_slave_0) entered blocking state
[  242.594098][ T9138] bridge0: port 1(bridge_slave_0) entered disabled state
[  242.601508][ T9138] bridge_slave_0: entered allmulticast mode
[  242.617411][ T9138] bridge_slave_0: entered promiscuous mode
[  242.638509][ T9138] bridge0: port 2(bridge_slave_1) entered blocking state
[  242.646413][ T9183] NILFS (loop6): recovery complete
[  242.653006][ T9138] bridge0: port 2(bridge_slave_1) entered disabled state
[  242.655973][ T9189] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  242.670440][ T9138] bridge_slave_1: entered allmulticast mode
[  242.683572][ T9138] bridge_slave_1: entered promiscuous mode
[  242.733406][ T5833] Bluetooth: hci4: command tx timeout
[  242.898773][ T9138] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  242.947387][ T9138] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  243.187101][ T9138] team0: Port device team_slave_0 added
[  243.270739][ T8988] 8021q: adding VLAN 0 to HW filter on device batadv0
[  243.304136][ T9138] team0: Port device team_slave_1 added
[  243.526585][ T9207] netlink: 'syz.1.1161': attribute type 6 has an invalid length.
[  243.554697][ T9138] batman_adv: batadv0: Adding interface: batadv_slave_0
[  243.561667][ T9138] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  243.607669][ T9138] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  243.631304][ T9138] batman_adv: batadv0: Adding interface: batadv_slave_1
[  243.641952][ T9138] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  243.714319][ T9138] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  244.090932][ T9138] hsr_slave_0: entered promiscuous mode
[  244.121865][ T9138] hsr_slave_1: entered promiscuous mode
[  244.140704][ T9138] debugfs: 'hsr0' already exists in 'hsr'
[  244.148030][ T9138] Cannot create hsr debugfs directory
[  244.452179][ T8988] veth0_vlan: entered promiscuous mode
[  244.496258][ T8988] veth1_vlan: entered promiscuous mode
[  244.693238][ T8988] veth0_macvtap: entered promiscuous mode
[  244.756696][ T8988] veth1_macvtap: entered promiscuous mode
[  244.822175][ T5833] Bluetooth: hci4: command tx timeout
[  244.857822][ T8988] batman_adv: batadv0: Interface activated: batadv_slave_0
[  244.931120][ T8988] batman_adv: batadv0: Interface activated: batadv_slave_1
[  245.009146][ T9138] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  245.065608][ T5949] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  245.081436][ T5949] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  245.106135][ T9138] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  245.149107][ T5949] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  245.168708][ T5949] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  245.194962][ T9138] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  245.245572][ T9138] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  245.403408][ T9228] loop5: detected capacity change from 0 to 32768
[  245.421578][ T9228] ocfs2: Slot 0 on device (7,5) was already allocated to this node!
[  245.455577][ T9228] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  245.474540][ T2145] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  245.611309][ T5834] ocfs2: Unmounting device (7,5) on (node local)
[  245.661503][ T2145] usb 7-1: Using ep0 maxpacket: 16
[  245.673190][ T2145] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  245.694450][ T2145] usb 7-1: New USB device found, idVendor=0e8f, idProduct=0012, bcdDevice= 0.00
[  245.711764][ T2145] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  245.743427][ T2145] usb 7-1: config 0 descriptor??
[  245.804890][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  245.821735][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  245.969072][ T5950] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  246.007459][ T5950] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  246.157980][ T9138] 8021q: adding VLAN 0 to HW filter on device bond0
[  246.162237][ T2145] greenasia 0003:0E8F:0012.000C: reserved main item tag 0xd
[  246.181538][ T2145] greenasia 0003:0E8F:0012.000C: item fetching failed at offset 3/5
[  246.190320][ T2145] greenasia 0003:0E8F:0012.000C: parse failed
[  246.211339][ T2145] greenasia 0003:0E8F:0012.000C: probe with driver greenasia failed with error -22
[  246.297629][ T9138] 8021q: adding VLAN 0 to HW filter on device team0
[  246.369698][   T62] bridge0: port 1(bridge_slave_0) entered blocking state
[  246.376911][   T62] bridge0: port 1(bridge_slave_0) entered forwarding state
[  246.407719][    T9] usb 7-1: USB disconnect, device number 8
[  246.429736][   T62] bridge0: port 2(bridge_slave_1) entered blocking state
[  246.437112][   T62] bridge0: port 2(bridge_slave_1) entered forwarding state
[  246.614136][ T9138] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  246.891756][ T5833] Bluetooth: hci4: command tx timeout
[  246.896915][ T9264] loop8: detected capacity change from 0 to 512
[  246.955339][ T9249] loop1: detected capacity change from 0 to 32768
[  247.028774][ T9249] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  247.051879][ T9264] EXT4-fs error (device loop8): ext4_orphan_get:1418: comm syz.8.1179: bad orphan inode 11862016
[  247.135097][ T9264] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  247.154044][ T9249] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  247.170902][ T9264] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  247.189465][   T36] (kworker/u8:2,36,1):ocfs2_check_dir_entry:321 ERROR: bad entry in directory #72: rec_len % 4 != 0 - offset=312, inode=13845347915746889, rec_len=25793, name_len=214
[  247.234991][   T30] audit: type=1800 audit(1760703494.054:42): pid=9249 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1175" name="file1" dev="loop1" ino=17058 res=0 errno=0
[  247.320166][   T30] audit: type=1800 audit(1760703494.064:43): pid=9249 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1175" name="file1" dev="loop1" ino=17058 res=0 errno=0
[  247.378460][ T9138] 8021q: adding VLAN 0 to HW filter on device batadv0
[  247.391559][ T5827] ocfs2: Unmounting device (7,1) on (node local)
[  247.472628][ T8988] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  248.161248][ T9295] loop1: detected capacity change from 0 to 4096
[  248.226803][ T9295] ntfs3(loop1): ino=3, ntfs_set_state failed, -22.
[  248.259670][ T9295] ntfs3(loop1): Failed to initialize $Extend/$ObjId.
[  248.307108][ T9295] ntfs3(loop1): ino=1e, "file1" attr_set_size
[  248.348130][ T9293] ntfs3(loop1): ino=1e, "file1" attr_set_size
[  248.428232][ T9309] loop5: detected capacity change from 0 to 64
[  248.452206][ T9138] veth0_vlan: entered promiscuous mode
[  248.463829][ T9309] hfs: Bad value for 'part'
[  248.500458][   T50] ntfs3(loop1): ino=3, ntfs3_write_inode failed, -22.
[  248.513754][ T9138] veth1_vlan: entered promiscuous mode
[  248.523238][ T9309] gfs2: gfs2 mount does not exist
[  248.540674][ T5827] ntfs3(loop1): ino=3, ntfs_set_state failed, -22.
[  248.559647][ T5827] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  248.576812][ T5827] ntfs3(loop1): ino=3, ntfs_set_state failed, -22.
[  248.590697][ T5950] ntfs3(loop1): ino=3, ntfs3_write_inode failed, -22.
[  248.599697][ T9302] "syz.8.1192" (9302) uses obsolete ecb(arc4) skcipher
[  248.667559][ T9138] veth0_macvtap: entered promiscuous mode
[  248.679291][ T9138] veth1_macvtap: entered promiscuous mode
[  248.713813][ T9138] batman_adv: batadv0: Interface activated: batadv_slave_0
[  248.746027][ T9138] batman_adv: batadv0: Interface activated: batadv_slave_1
[  248.801518][ T5950] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  248.820707][   T10] kernel write not supported for file /comedi4 (pid: 10 comm: kworker/0:1)
[  248.839805][ T5950] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  248.848545][ T5950] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  248.929045][ T5950] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  248.969388][ T5833] Bluetooth: hci4: command tx timeout
[  249.086271][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  249.112865][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  249.160375][   T10] usb 9-1: new full-speed USB device number 2 using dummy_hcd
[  249.204137][ T5950] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  249.218399][ T5950] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  249.338592][   T10] usb 9-1: unable to get BOS descriptor or descriptor too short
[  249.378792][   T10] usb 9-1: not running at top speed; connect to a high speed hub
[  249.389277][   T24] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  249.411477][   T10] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  249.441322][   T10] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3
[  249.474838][   T10] usb 9-1: string descriptor 0 read error: -22
[  249.482755][   T10] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  249.496828][   T10] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  249.545230][   T10] usb 9-1: 0:2 : does not exist
[  249.579133][   T24] usb 7-1: Using ep0 maxpacket: 16
[  249.591230][   T24] usb 7-1: unable to get BOS descriptor or descriptor too short
[  249.643350][   T24] usb 7-1: unable to read config index 0 descriptor/start: -71
[  249.661763][   T24] usb 7-1: can't read configurations, error -71
[  250.393301][   T10] usb 9-1: 5:0: cannot get min/max values for control 3 (id 5)
[  250.443853][   T10] usb 9-1: 5:0: failed to get current value for ch 1 (-22)
[  250.525480][   T10] usb 9-1: 5:0: cannot get min/max values for control 3 (id 5)
[  250.564986][ T5828] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  250.565013][   T10] usb 9-1: USB disconnect, device number 2
[  250.593904][ T5828] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  250.603357][ T5828] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  250.617925][ T5828] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  250.626448][ T5828] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  250.678225][ T5949] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.717266][ T9345] lo: Caught tx_queue_len zero misconfig
[  250.875458][ T5949] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.981665][ T9340] loop1: detected capacity change from 0 to 32768
[  250.997836][ T9340] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1208 (9340)
[  251.054931][ T9340] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  251.088609][ T9340] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  251.145209][ T9338] loop5: detected capacity change from 0 to 32768
[  251.160172][ T5949] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  251.284413][ T9340] BTRFS info (device loop1): enabling ssd optimizations
[  251.307741][ T9340] BTRFS info (device loop1): turning on async discard
[  251.316641][ T9340] BTRFS info (device loop1): enabling free space tree
[  251.410101][ T5949] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  251.492275][ T5827] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  252.153831][ T5949] bridge_slave_1: left allmulticast mode
[  252.195096][ T5949] bridge_slave_1: left promiscuous mode
[  252.204751][ T5949] bridge0: port 2(bridge_slave_1) entered disabled state
[  252.293620][ T5949] bridge_slave_0: left allmulticast mode
[  252.324989][ T5949] bridge_slave_0: left promiscuous mode
[  252.362739][ T9396] loop8: detected capacity change from 0 to 8192
[  252.366674][ T5949] bridge0: port 1(bridge_slave_0) entered disabled state
[  252.390210][ T9402] input: syz0 as /devices/virtual/input/input15
[  252.589026][ T9407] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1229'.
[  252.728700][ T5828] Bluetooth: hci1: command tx timeout
[  252.911004][ T9416] loop5: detected capacity change from 0 to 512
[  252.985084][ T9416] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  253.017477][ T9416] EXT4-fs (loop5): shut down requested (0)
[  253.045486][ T9426] netlink: 'syz.6.1238': attribute type 1 has an invalid length.
[  253.083613][ T9426] netlink: 'syz.6.1238': attribute type 2 has an invalid length.
[  253.187391][ T5918] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  253.303164][ T5834] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  253.355435][ T9433] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1241'.
[  253.366305][ T5918] usb 2-1: Using ep0 maxpacket: 16
[  253.379639][ T5918] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  253.401849][ T5918] usb 2-1: config 0 has no interface number 0
[  253.413847][ T9435] netlink: 56 bytes leftover after parsing attributes in process `syz.8.1243'.
[  253.426116][ T5918] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  253.467131][ T5918] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  253.495537][ T5918] usb 2-1: New USB device found, idVendor=28bd, idProduct=0071, bcdDevice= 0.00
[  253.525428][ T5918] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  253.562862][ T5918] usb 2-1: config 0 descriptor??
[  254.047323][ T5949] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  254.074377][ T5949] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  254.108134][ T5949] bond0 (unregistering): Released all slaves
[  254.166198][ T9346] chnl_net:caif_netlink_parms(): no params data found
[  254.216069][ T5918] uclogic 0003:28BD:0071.000D: pen parameters not found
[  254.257022][ T5918] uclogic 0003:28BD:0071.000D: interface is invalid, ignoring
[  254.286924][ T5918] usb 2-1: USB disconnect, device number 9
[  254.644080][ T9444] loop6: detected capacity change from 0 to 32768
[  254.655049][ T9444] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.1246 (9444)
[  254.686468][ T9444] BTRFS info (device loop6): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  254.696929][ T9444] BTRFS info (device loop6): using crc32c (crc32c-lib) checksum algorithm
[  254.816396][ T5828] Bluetooth: hci1: command 0x041b tx timeout
[  255.012223][ T5949] hsr_slave_0: left promiscuous mode
[  255.095858][ T9444] BTRFS info (device loop6): enabling ssd optimizations
[  255.114458][ T5949] hsr_slave_1: left promiscuous mode
[  255.125379][ T5949] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  255.134388][ T9444] BTRFS info (device loop6): turning on async discard
[  255.154676][ T9444] BTRFS info (device loop6): enabling free space tree
[  255.163960][ T5949] batman_adv: batadv0: Removing interface: batadv_slave_0
[  255.182913][ T5949] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  255.218048][ T5949] batman_adv: batadv0: Removing interface: batadv_slave_1
[  255.233629][ T9474] loop5: detected capacity change from 0 to 4096
[  255.356096][ T9481] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  255.373194][ T5949] veth1_macvtap: left promiscuous mode
[  255.414539][ T5949] veth0_macvtap: left promiscuous mode
[  255.445501][ T5949] veth1_vlan: left promiscuous mode
[  255.475802][ T5949] veth0_vlan: left promiscuous mode
[  255.577945][ T6796] BTRFS info (device loop6): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  255.614541][ T9484] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1255'.
[  255.669149][ T9484] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1255'.
[  256.022438][ T9459] loop9: detected capacity change from 0 to 131072
[  256.068651][ T9459] F2FS-fs (loop9): Test dummy encryption mode enabled
[  256.088537][ T9459] F2FS-fs (loop9): invalid crc value
[  256.195420][ T9459] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  256.212321][ T9459] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  256.348568][ T9495] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  256.886718][ T5833] Bluetooth: hci1: command 0x041b tx timeout
[  256.959967][ T9506] loop5: detected capacity change from 0 to 512
[  256.982485][ T9506] EXT4-fs: Ignoring removed bh option
[  256.999702][ T9506] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  257.041021][ T9506] EXT4-fs (loop5): 1 truncate cleaned up
[  257.059505][ T9506] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  257.253290][ T5949] team0 (unregistering): Port device team_slave_1 removed
[  257.301054][ T5834] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.347229][ T5949] team0 (unregistering): Port device team_slave_0 removed
[  257.460345][ T9512] loop9: detected capacity change from 0 to 256
[  257.473014][ T9512] exfat: Deprecated parameter 'utf8'
[  257.500178][ T9512] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d)
[  257.991621][ T9526] loop5: detected capacity change from 0 to 128
[  258.003451][ T9526] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  258.015991][ T9526] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  258.085246][ T9346] bridge0: port 1(bridge_slave_0) entered blocking state
[  258.093031][ T9346] bridge0: port 1(bridge_slave_0) entered disabled state
[  258.102881][ T9346] bridge_slave_0: entered allmulticast mode
[  258.114186][ T9346] bridge_slave_0: entered promiscuous mode
[  258.147197][ T9346] bridge0: port 2(bridge_slave_1) entered blocking state
[  258.154500][ T9346] bridge0: port 2(bridge_slave_1) entered disabled state
[  258.167028][ T9346] bridge_slave_1: entered allmulticast mode
[  258.216580][ T9346] bridge_slave_1: entered promiscuous mode
[  258.349844][ T9346] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  258.390206][ T9346] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  258.470297][ T9532] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1274'.
[  258.555967][ T9536] loop6: detected capacity change from 0 to 512
[  258.585204][ T9346] team0: Port device team_slave_0 added
[  258.586114][ T9536] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  258.594262][ T9346] team0: Port device team_slave_1 added
[  258.688897][ T9536] EXT4-fs (loop6): 1 truncate cleaned up
[  258.703864][ T9536] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  258.848912][ T6796] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.946493][ T9346] batman_adv: batadv0: Adding interface: batadv_slave_0
[  258.967089][ T5833] Bluetooth: hci1: command 0x041b tx timeout
[  258.978684][ T9346] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  259.007455][ T9346] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  259.048559][ T9346] batman_adv: batadv0: Adding interface: batadv_slave_1
[  259.071261][ T9346] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  259.124562][ T9346] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  259.376882][ T9346] hsr_slave_0: entered promiscuous mode
[  259.400702][ T9346] hsr_slave_1: entered promiscuous mode
[  259.441403][ T9569] ip6gretap0: entered promiscuous mode
[  259.447494][   T10] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  259.608708][   T10] usb 10-1: config 220 has an invalid interface number: 76 but max is 2
[  259.637207][ T1217] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  259.644974][   T10] usb 10-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  259.667050][   T10] usb 10-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  259.710115][   T10] usb 10-1: config 220 has no interface number 2
[  259.720279][   T10] usb 10-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  259.750332][   T10] usb 10-1: config 220 interface 0 has no altsetting 0
[  259.757781][   T10] usb 10-1: config 220 interface 76 has no altsetting 0
[  259.769514][   T10] usb 10-1: config 220 interface 1 has no altsetting 0
[  259.780026][   T10] usb 10-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  259.795991][   T10] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  259.814160][   T10] usb 10-1: Product: syz
[  259.818640][   T10] usb 10-1: Manufacturer: syz
[  259.823337][   T10] usb 10-1: SerialNumber: syz
[  259.828123][ T1217] usb 2-1: Using ep0 maxpacket: 16
[  259.843485][ T1217] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  259.862195][ T1217] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  259.881036][ T9584] loop6: detected capacity change from 0 to 512
[  259.886917][ T1217] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  259.900513][ T9584] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  259.917222][ T1217] usb 2-1: New USB device found, idVendor=0457, idProduct=07da, bcdDevice= 0.00
[  259.936817][ T1217] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  259.936862][ T9585] netlink: 'syz.8.1298': attribute type 1 has an invalid length.
[  259.936890][ T9585] netlink: 172 bytes leftover after parsing attributes in process `syz.8.1298'.
[  259.970428][ T9584] EXT4-fs (loop6): 1 truncate cleaned up
[  259.973979][ T1217] usb 2-1: config 0 descriptor??
[  259.979417][ T9584] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  260.014608][   T30] audit: type=1800 audit(1760703506.870:44): pid=9584 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1297" name="file1" dev="loop6" ino=15 res=0 errno=0
[  260.074794][   T30] audit: type=1800 audit(1760703506.900:45): pid=9584 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1297" name="file2" dev="loop6" ino=16 res=0 errno=0
[  260.101239][   T10] uvcvideo 10-1:220.0: Found UVC 7.01 device syz (8086:0b07)
[  260.119989][ T6796] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  260.154478][   T10] uvcvideo 10-1:220.0: No valid video chain found.
[  260.173652][   T10] usb 10-1: selecting invalid altsetting 0
[  260.261082][   T10] usb 10-1: selecting invalid altsetting 0
[  260.278385][   T10] usbtest 10-1:220.1: probe with driver usbtest failed with error -22
[  260.304023][   T10] usb 10-1: USB disconnect, device number 2
[  260.481256][ T9595] loop6: detected capacity change from 0 to 512
[  260.498802][ T1217] hid-multitouch 0003:0457:07DA.000E: hidraw0: USB HID v0.00 Device [HID 0457:07da] on usb-dummy_hcd.1-1/input0
[  260.535167][ T9595] EXT4-fs: Ignoring removed oldalloc option
[  260.605788][ T9595] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  260.622360][ T9595] ext4 filesystem being mounted at /158/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  260.646354][ T9346] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  260.659407][ T9346] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  260.680469][ T9346] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  260.698421][ T9346] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  260.745115][ T6796] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  260.746729][ T5918] usb 2-1: USB disconnect, device number 10
[  260.989558][ T9346] 8021q: adding VLAN 0 to HW filter on device bond0
[  261.043609][ T5833] Bluetooth: hci1: command 0x041b tx timeout
[  261.054899][ T9346] 8021q: adding VLAN 0 to HW filter on device team0
[  261.064741][ T9616] loop5: detected capacity change from 0 to 2048
[  261.071520][ T9614] loop6: detected capacity change from 0 to 4096
[  261.072320][ T9616] EXT4-fs: Ignoring removed mblk_io_submit option
[  261.090177][ T5950] bridge0: port 1(bridge_slave_0) entered blocking state
[  261.097361][ T5950] bridge0: port 1(bridge_slave_0) entered forwarding state
[  261.120120][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  261.127339][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  261.154620][ T9616] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  261.238926][ T9346] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  261.290801][ T9616] EXT4-fs error (device loop5): ext4_validate_block_bitmap:440: comm syz.5.1308: bg 0: block 234: padding at end of block bitmap is not set
[  261.318558][ T9614] overlayfs: upper fs does not support tmpfile.
[  261.339307][ T9616] EXT4-fs (loop5): Remounting filesystem read-only
[  261.380313][ T9614] overlayfs: workdir/#8 already exists
[  261.525114][ T5834] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  261.823806][ T9346] 8021q: adding VLAN 0 to HW filter on device batadv0
[  261.934502][ T9346] veth0_vlan: entered promiscuous mode
[  261.962800][ T5918] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  261.976590][ T9346] veth1_vlan: entered promiscuous mode
[  261.997334][ T9650] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1321'.
[  262.021177][ T9650] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1321'.
[  262.106815][ T9346] veth0_macvtap: entered promiscuous mode
[  262.132508][ T9346] veth1_macvtap: entered promiscuous mode
[  262.166091][ T9346] batman_adv: batadv0: Interface activated: batadv_slave_0
[  262.192470][ T9346] batman_adv: batadv0: Interface activated: batadv_slave_1
[  262.219021][ T9656] loop8: detected capacity change from 0 to 128
[  262.241756][   T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  262.268069][   T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  262.281620][ T9656] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  262.311628][   T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  262.335361][ T9656] ext4 filesystem being mounted at /35/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  262.377568][   T13] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  262.451164][ T9652] loop1: detected capacity change from 0 to 4096
[  262.502464][ T9652] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  262.580548][ T9652] ntfs3(loop1): ino=1a, mi_enum_attr
[  262.596543][ T9652] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  262.620897][ T9652] ntfs3(loop1): ino=1a, mi_enum_attr
[  262.629075][ T9652] ntfs3(loop1): Failed to initialize $Extend/$Reparse.
[  262.642884][ T5950] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  262.650802][ T5950] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  262.760894][ T5949] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  262.786519][ T5949] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  262.787126][ T8988] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  263.067124][   T30] audit: type=1800 audit(1760703509.922:46): pid=9675 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1204" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  263.075947][ T9676] netlink: 100 bytes leftover after parsing attributes in process `syz.5.1333'.
[  263.698242][ T9703] loop8: detected capacity change from 0 to 16
[  263.761275][ T9703] cramfs: Error -3 while decompressing!
[  263.803741][ T9703] cramfs: ffffffff9ac0e7a8(27)->ffff88804a2dd000(4096)
[  263.810671][ T9703] cramfs: Error -3 while decompressing!
[  263.832432][ T9703] cramfs: ffffffff9ac0e7c3(16)->ffff88804a62c000(4096)
[  263.870051][ T9703] cramfs: Error -3 while decompressing!
[  263.883069][ T9703] cramfs: ffffffff9ac0e7a8(27)->ffff88804a2dd000(4096)
[  263.900647][   T30] audit: type=1800 audit(1760703510.762:47): pid=9703 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.1344" name="file3" dev="loop8" ino=348 res=0 errno=0
[  263.902003][   T10] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  264.101833][   T24] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  264.121969][   T10] usb 6-1: Using ep0 maxpacket: 32
[  264.129220][   T10] usb 6-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  264.151024][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  264.184883][   T10] usb 6-1: config 0 descriptor??
[  264.285994][   T24] usb 7-1: Using ep0 maxpacket: 8
[  264.293453][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  264.311723][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  264.334984][   T24] usb 7-1: New USB device found, idVendor=046a, idProduct=0027, bcdDevice= 0.00
[  264.363076][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  264.411992][   T10] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  264.434537][   T24] usb 7-1: config 0 descriptor??
[  264.436247][   T10] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  264.462695][   T10] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  264.503946][   T10] usb 6-1: media controller created
[  264.535997][ T9721] loop1: detected capacity change from 0 to 4096
[  264.537145][ T9690] loop9: detected capacity change from 0 to 40427
[  264.583773][   T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  264.654875][ T9734] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  264.679065][   T10] az6027: usb out operation failed. (-71)
[  264.708338][   T10] az6027: usb out operation failed. (-71)
[  264.729307][   T10] stb0899_attach: Driver disabled by Kconfig
[  264.741460][   T10] az6027: no front-end attached
[  264.741460][   T10] 
[  264.760240][   T10] az6027: usb out operation failed. (-71)
[  264.777604][   T10] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  264.799493][   T10] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.5/usb6/6-1/input/input16
[  264.826508][ T9737] loop8: detected capacity change from 0 to 64
[  264.843404][   T10] dvb-usb: schedule remote query interval to 400 msecs.
[  264.855156][   T24] cherry 0003:046A:0027.000F: report_id 636810455 is invalid
[  264.862949][   T10] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  264.868319][   T10] usb 6-1: USB disconnect, device number 11
[  264.878265][ T9690] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  264.893660][   T24] cherry 0003:046A:0027.000F: item 0 4 1 8 parsing failed
[  264.904434][   T24] cherry 0003:046A:0027.000F: probe with driver cherry failed with error -22
[  264.914398][ T9690] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  265.026175][   T10] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  265.061281][ T2145] usb 7-1: USB disconnect, device number 11
[  265.139491][ T9138] syz-executor: attempt to access beyond end of device
[  265.139491][ T9138] loop9: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  265.171507][ T9138] CPU: 0 UID: 0 PID: 9138 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  265.171555][ T9138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  265.171577][ T9138] Call Trace:
[  265.171588][ T9138]  <TASK>
[  265.171601][ T9138]  dump_stack_lvl+0x16c/0x1f0
[  265.171665][ T9138]  f2fs_handle_critical_error+0x624/0x9f0
[  265.171719][ T9138]  ? srso_alias_return_thunk+0x5/0xfbef5
[  265.171763][ T9138]  ? f2fs_build_fault_attr+0x53/0x1f0
[  265.171816][ T9138]  f2fs_write_end_io+0x958/0xcf0
[  265.171874][ T9138]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  265.171933][ T9138]  ? srso_alias_return_thunk+0x5/0xfbef5
[  265.171987][ T9138]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  265.172040][ T9138]  bio_endio+0x713/0x860
[  265.172078][ T9138]  submit_bio_noacct+0x306/0x1f60
[  265.172139][ T9138]  __submit_merged_bio+0x33c/0x770
[  265.172199][ T9138]  __submit_merged_write_cond+0x319/0x3f0
[  265.172265][ T9138]  f2fs_write_cache_pages+0x2067/0x2570
[  265.172360][ T9138]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  265.172420][ T9138]  ? srso_alias_return_thunk+0x5/0xfbef5
[  265.172475][ T9138]  ? __lock_acquire+0xb8a/0x1c90
[  265.172546][ T9138]  ? srso_alias_return_thunk+0x5/0xfbef5
[  265.172661][ T9138]  ? srso_alias_return_thunk+0x5/0xfbef5
[  265.172704][ T9138]  ? free_unref_folios+0x109a/0x1610
[  265.172770][ T9138]  ? srso_alias_return_thunk+0x5/0xfbef5
[  265.172822][ T9138]  f2fs_write_data_pages+0x4ad/0xd90
[  265.172892][ T9138]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  265.172951][ T9138]  ? srso_alias_return_thunk+0x5/0xfbef5
[  265.173005][ T9138]  ? srso_alias_return_thunk+0x5/0xfbef5
[  265.173054][ T9138]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  265.173119][ T9138]  do_writepages+0x27a/0x600
[  265.173199][ T9138]  ? __pfx_do_writepages+0x10/0x10
[  265.173246][ T9138]  ? do_raw_spin_unlock+0x172/0x230
[  265.173302][ T9138]  ? srso_alias_return_thunk+0x5/0xfbef5
[  265.173350][ T9138]  ? _raw_spin_unlock+0x28/0x50
[  265.173407][ T9138]  filemap_fdatawrite_wbc+0x104/0x160
[  265.173462][ T9138]  __filemap_fdatawrite_range+0xb9/0x100
[  265.173499][ T9138]  ? __pfx___filemap_fdatawrite_range+0x10/0x10
[  265.173593][ T9138]  ? find_held_lock+0x2b/0x80
[  265.173629][ T9138]  ? srso_alias_return_thunk+0x5/0xfbef5
[  265.173673][ T9138]  ? do_raw_spin_unlock+0x172/0x230
[  265.173729][ T9138]  ? srso_alias_return_thunk+0x5/0xfbef5
[  265.173778][ T9138]  f2fs_sync_dirty_inodes+0x2a2/0x980
[  265.173836][ T9138]  block_operations+0x2b0/0xfe0
[  265.173885][ T9138]  ? __pfx_block_operations+0x10/0x10
[  265.173977][ T9138]  ? srso_alias_return_thunk+0x5/0xfbef5
[  265.174023][ T9138]  ? ktime_get+0x200/0x310
[  265.174062][ T9138]  ? srso_alias_return_thunk+0x5/0xfbef5
[  265.174105][ T9138]  ? lockdep_hardirqs_on+0x7c/0x110
[  265.174164][ T9138]  ? srso_alias_return_thunk+0x5/0xfbef5
[  265.174207][ T9138]  ? rcu_is_watching+0x12/0xc0
[  265.174249][ T9138]  f2fs_write_checkpoint+0x32b/0x5300
[  265.174295][ T9138]  ? kfree+0x2b8/0x6d0
[  265.174353][ T9138]  ? f2fs_stop_gc_thread+0x79/0xd0
[  265.174396][ T9138]  ? srso_alias_return_thunk+0x5/0xfbef5
[  265.174439][ T9138]  ? rcu_is_watching+0x12/0xc0
[  265.174473][ T9138]  ? srso_alias_return_thunk+0x5/0xfbef5
[  265.174515][ T9138]  ? kthread_stop+0x272/0x630
[  265.174568][ T9138]  kill_f2fs_super+0x3d6/0x490
[  265.174606][ T9138]  ? __pfx_kill_f2fs_super+0x10/0x10
[  265.174661][ T9138]  ? srso_alias_return_thunk+0x5/0xfbef5
[  265.174721][ T9138]  deactivate_locked_super+0xc1/0x1a0
[  265.174761][ T9138]  deactivate_super+0xde/0x100
[  265.174801][ T9138]  cleanup_mnt+0x225/0x450
[  265.174842][ T9138]  task_work_run+0x150/0x240
[  265.174897][ T9138]  ? __pfx_task_work_run+0x10/0x10
[  265.174946][ T9138]  ? srso_alias_return_thunk+0x5/0xfbef5
[  265.174993][ T9138]  ? __pfx___x64_sys_umount+0x10/0x10
[  265.175048][ T9138]  exit_to_user_mode_loop+0xec/0x130
[  265.175103][ T9138]  do_syscall_64+0x426/0xfa0
[  265.175165][ T9138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.175201][ T9138] RIP: 0033:0x7f50e17902f7
[  265.175229][ T9138] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  265.175265][ T9138] RSP: 002b:00007ffe9d5fd158 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  265.175300][ T9138] RAX: 0000000000000000 RBX: 00007f50e1811d7d RCX: 00007f50e17902f7
[  265.175323][ T9138] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe9d5fd210
[  265.175354][ T9138] RBP: 00007ffe9d5fd210 R08: 0000000000000000 R09: 0000000000000000
[  265.175376][ T9138] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe9d5fe2a0
[  265.175399][ T9138] R13: 00007f50e1811d7d R14: 0000000000040b32 R15: 00007ffe9d5fe2e0
[  265.175450][ T9138]  </TASK>
[  265.175463][ T9138] F2FS-fs (loop9): Stopped filesystem due to reason: 3
[  265.298533][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  265.298659][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  265.457995][ T9743] loop8: detected capacity change from 0 to 4096
[  265.777187][ T9743] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  265.887348][ T9743] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  265.920046][ T9757] loop1: detected capacity change from 0 to 64
[  265.956191][   T30] audit: type=1800 audit(1760703512.823:48): pid=9757 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1365" name="file1" dev="loop1" ino=5 res=0 errno=0
[  266.247886][ T9738] loop3: detected capacity change from 0 to 40427
[  266.275194][ T9738] F2FS-fs (loop3): build fault injection rate: 15
[  266.290904][ T9738] F2FS-fs (loop3): build fault injection type: 0x3bfe8c
[  266.311212][ T9738] F2FS-fs (loop3): invalid crc value
[  266.328163][ T8988] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  266.372401][    C1] F2FS-fs (loop3): inject read IO error in f2fs_read_end_io of bio_endio+0x713/0x860
[  266.430072][    C1] F2FS-fs (loop3): inject read IO error in f2fs_read_end_io of bio_endio+0x713/0x860
[  266.594966][ T9772] loop1: detected capacity change from 0 to 2048
[  266.642383][ T9738] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  266.665046][ T9772] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  266.700494][ T9738] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  266.768651][ T9772] ext4 filesystem being mounted at /247/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  266.929714][ T9787] EXT4-fs error (device loop1): ext4_validate_block_bitmap:440: comm syz.1.1371: bg 0: block 345: padding at end of block bitmap is not set
[  266.945894][ T9346] F2FS-fs (loop3): inject page alloc in f2fs_grab_cache_folio of write_current_sum_page+0x76/0x340
[  266.960976][ T9788] netlink: 'syz.8.1376': attribute type 3 has an invalid length.
[  266.969204][ T9788] netlink: 199836 bytes leftover after parsing attributes in process `syz.8.1376'.
[  266.984416][ T9787] EXT4-fs (loop1): Remounting filesystem read-only
[  267.139638][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  267.162766][ T9790] loop5: detected capacity change from 0 to 1024
[  267.217099][ T9790] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  372.267554][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  372.274540][    C0] rcu: 	1-...!: (0 ticks this GP) idle=30cc/1/0x4000000000000000 softirq=38358/38358 fqs=0
[  372.286727][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P9793/1:b..l
[  372.294665][    C0] rcu: 	(detected by 0, t=10502 jiffies, g=36541, q=375 ncpus=2)
[  372.302387][    C0] Sending NMI from CPU 0 to CPUs 1:
[  372.302426][    C1] NMI backtrace for cpu 1
[  372.302444][    C1] CPU: 1 UID: 0 PID: 9797 Comm: syz.1.1381 Not tainted syzkaller #0 PREEMPT(full) 
[  372.302483][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  372.302502][    C1] RIP: 0010:advance_sched+0x3df/0xc80
[  372.302548][    C1] Code: c1 e8 03 80 3c 08 00 0f 85 41 07 00 00 49 89 9f c0 00 00 00 41 83 c6 01 44 89 ee 49 83 c7 08 44 89 f7 e8 a4 af 4b f8 45 39 ee <0f> 84 ee 00 00 00 e8 16 b5 4b f8 4d 63 e6 49 83 fc 0f 0f 87 dc 06
[  372.302580][    C1] RSP: 0018:ffffc90000a08d90 EFLAGS: 00000046
[  372.302610][    C1] RAX: 0000000000010002 RBX: 18753fd928000000 RCX: ffffffff8971833c
[  372.302632][    C1] RDX: ffff8880299e1e40 RSI: 0000000000000002 RDI: 0000000000000004
[  372.302652][    C1] RBP: 0000000004000000 R08: 0000000000000004 R09: 0000000000000002
[  372.302672][    C1] R10: 0000000000000002 R11: 0000000000000001 R12: 0000000000000001
[  372.302691][    C1] R13: 0000000000000002 R14: 0000000000000002 R15: ffff88814cd4d010
[  372.302714][    C1] FS:  0000000000000000(0000) GS:ffff888124ad9000(0000) knlGS:0000000000000000
[  372.302742][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  372.302764][    C1] CR2: 0000555586b8f5c8 CR3: 000000003211a000 CR4: 0000000000350ef0
[  372.302785][    C1] Call Trace:
[  372.302796][    C1]  <IRQ>
[  372.302820][    C1]  ? __pfx_advance_sched+0x10/0x10
[  372.302860][    C1]  __hrtimer_run_queues+0x202/0xad0
[  372.302920][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  372.302972][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  372.303019][    C1]  hrtimer_interrupt+0x397/0x8e0
[  372.303082][    C1]  __sysvec_apic_timer_interrupt+0x10b/0x3f0
[  372.303131][    C1]  sysvec_apic_timer_interrupt+0x9f/0xc0
[  372.303183][    C1]  </IRQ>
[  372.303193][    C1]  <TASK>
[  372.303204][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  372.303240][    C1] RIP: 0010:__sanitizer_cov_trace_pc+0x8/0x70
[  372.303296][    C1] Code: e9 dd 22 5c 00 be 03 00 00 00 5b e9 22 37 ed 02 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 34 24 <65> 48 8b 15 a8 37 e7 11 65 8b 05 b9 37 e7 11 a9 00 01 ff 00 74 1d
[  372.303327][    C1] RSP: 0018:ffffc9000b017800 EFLAGS: 00000293
[  372.303352][    C1] RAX: 0000000000000000 RBX: ffffea0001a81300 RCX: ffffffff8211115e
[  372.303373][    C1] RDX: ffff8880299e1e40 RSI: ffffffff8208277a RDI: ffffea0001a81300
[  372.303395][    C1] RBP: ffffc9000b0179a8 R08: 0000000000000007 R09: 0000000000000000
[  372.303415][    C1] R10: 0000000000000000 R11: 0000000000000001 R12: 000000110c278000
[  372.303435][    C1] R13: 0000000000000000 R14: dffffc0000000000 R15: ffffea0001a81300
[  372.303464][    C1]  ? folio_remove_rmap_ptes+0x39e/0xee0
[  372.303515][    C1]  ? const_folio_flags.constprop.0+0xa/0x70
[  372.303553][    C1]  const_folio_flags.constprop.0+0xa/0x70
[  372.303588][    C1]  unmap_page_range+0x1b08/0x41b0
[  372.303659][    C1]  ? __pfx_unmap_page_range+0x10/0x10
[  372.303706][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  372.303745][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  372.303784][    C1]  ? uprobe_munmap+0x20/0x600
[  372.303822][    C1]  unmap_single_vma.constprop.0+0x153/0x240
[  372.303870][    C1]  unmap_vmas+0x218/0x470
[  372.303914][    C1]  ? __pfx_unmap_vmas+0x10/0x10
[  372.303955][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  372.304012][    C1]  exit_mmap+0x1b2/0xb90
[  372.304054][    C1]  ? trace_contention_end+0xdd/0x130
[  372.304101][    C1]  ? __pfx_exit_mmap+0x10/0x10
[  372.304150][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  372.304201][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  372.304240][    C1]  ? arch_uprobe_clear_state+0x16/0x150
[  372.304290][    C1]  __mmput+0x12a/0x410
[  372.304319][    C1]  mmput+0x62/0x70
[  372.304345][    C1]  do_exit+0x7c7/0x2bf0
[  372.304386][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  372.304425][    C1]  ? __pfx_do_exit+0x10/0x10
[  372.304462][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  372.304501][    C1]  ? preempt_schedule_thunk+0x16/0x30
[  372.304548][    C1]  do_group_exit+0xd3/0x2a0
[  372.304588][    C1]  __x64_sys_exit_group+0x3e/0x50
[  372.304632][    C1]  x64_sys_call+0x150b/0x1730
[  372.304666][    C1]  do_syscall_64+0xcd/0xfa0
[  372.304720][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.304752][    C1] RIP: 0033:0x7fd498d8efc9
[  372.304775][    C1] Code: Unable to access opcode bytes at 0x7fd498d8ef9f.
[  372.304789][    C1] RSP: 002b:00007ffd586fa1b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  372.304819][    C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fd498d8efc9
[  372.304840][    C1] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[  372.304860][    C1] RBP: 00007ffd586fa21c R08: 00000004586fa2af R09: 00000000000927c0
[  372.304881][    C1] R10: 0000000000000001 R11: 0000000000000246 R12: 00000000000000f8
[  372.304901][    C1] R13: 00000000000927c0 R14: 0000000000041313 R15: 00007ffd586fa270
[  372.304937][    C1]  </TASK>
[  372.305417][    C0] task:syz.9.1379      state:R  running task     stack:26648 pid:9793  tgid:9791  ppid:9138   task_flags:0x400040 flags:0x00080000
[  372.784630][    C0] Call Trace:
[  372.787908][    C0]  <TASK>
[  372.790848][    C0]  __schedule+0x1190/0x5de0
[  372.795417][    C0]  ? __pfx___schedule+0x10/0x10
[  372.800296][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  372.806311][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  372.811960][    C0]  ? mark_held_locks+0x49/0x80
[  372.816751][    C0]  preempt_schedule_irq+0x51/0x90
[  372.821810][    C0]  irqentry_exit+0x36/0x90
[  372.826261][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  372.832264][    C0] RIP: 0010:unwind_next_frame+0xae/0x20a0
[  372.838016][    C0] Code: 48 89 04 24 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 38 18 00 00 49 8b 45 38 48 89 44 24 10 e8 72 ac 35 00 <31> d2 45 31 c9 45 31 c0 48 8d 05 00 00 00 00 50 b9 02 00 00 00 31
[  372.857638][    C0] RSP: 0018:ffffc9000b156cd8 EFLAGS: 00000293
[  372.863717][    C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffc9000b156c9c
[  372.871693][    C0] RDX: 0000000000000000 RSI: ffffffff81ff18a5 RDI: ffff88806459c104
[  372.879673][    C0] RBP: ffffc9000b156d90 R08: 0000000000000001 R09: 0000000000000000
[  372.887649][    C0] R10: 0000000000000000 R11: 00000000000121d4 R12: ffffffff81a83070
[  372.895626][    C0] R13: ffffc9000b156d48 R14: 0000000000000000 R15: ffff88806459bc80
[  372.903606][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  372.909797][    C0]  ? shmem_alloc_folio+0x135/0x160
[  372.914955][    C0]  ? unwind_next_frame+0xae/0x20a0
[  372.920097][    C0]  ? shmem_alloc_folio+0x135/0x160
[  372.925243][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  372.931423][    C0]  arch_stack_walk+0x94/0x100
[  372.936144][    C0]  ? shmem_alloc_folio+0x135/0x160
[  372.941298][    C0]  stack_trace_save+0x8e/0xc0
[  372.946178][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  372.951580][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  372.957240][    C0]  ? __lock_acquire+0x622/0x1c90
[  372.962210][    C0]  save_stack+0x160/0x1f0
[  372.966555][    C0]  ? __pfx_save_stack+0x10/0x10
[  372.971418][    C0]  ? post_alloc_hook+0x1c0/0x230
[  372.976390][    C0]  ? get_page_from_freelist+0x10a3/0x3a30
[  372.982147][    C0]  ? __alloc_frozen_pages_noprof+0x25f/0x2470
[  372.988232][    C0]  ? alloc_pages_mpol+0x1fb/0x550
[  372.993290][    C0]  ? folio_alloc_mpol_noprof+0x36/0x2f0
[  372.998872][    C0]  ? shmem_alloc_folio+0x135/0x160
[  373.004034][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.009688][    C0]  ? __lock_acquire+0x622/0x1c90
[  373.014658][    C0]  __set_page_owner+0x91/0x550
[  373.019447][    C0]  ? __entry_text_end+0xfdfb5/0x1020b9
[  373.024937][    C0]  ? __pfx___set_page_owner+0x10/0x10
[  373.030331][    C0]  ? bad_range+0x261/0x4c0
[  373.034764][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.040416][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[  373.045646][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.051305][    C0]  post_alloc_hook+0x1c0/0x230
[  373.056104][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.061768][    C0]  get_page_from_freelist+0x10a3/0x3a30
[  373.067461][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.073118][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.078769][    C0]  ? prepare_alloc_pages+0x3c2/0x610
[  373.084074][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.089725][    C0]  ? rcu_is_watching+0x12/0xc0
[  373.094505][    C0]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  373.100413][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.106064][    C0]  ? __lock_acquire+0xb8a/0x1c90
[  373.111099][    C0]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  373.117442][    C0]  ? do_raw_spin_lock+0x12c/0x2b0
[  373.122498][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  373.127903][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.133561][    C0]  ? find_held_lock+0x2b/0x80
[  373.138271][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.143924][    C0]  ? __lock_acquire+0xb8a/0x1c90
[  373.148887][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.154544][    C0]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  373.160485][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.166135][    C0]  ? policy_nodemask+0xea/0x4e0
[  373.171016][    C0]  alloc_pages_mpol+0x1fb/0x550
[  373.175899][    C0]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  373.181317][    C0]  folio_alloc_mpol_noprof+0x36/0x2f0
[  373.186725][    C0]  shmem_alloc_folio+0x135/0x160
[  373.191694][    C0]  shmem_alloc_and_add_folio+0x499/0xc20
[  373.197368][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.203026][    C0]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  373.209218][    C0]  ? shmem_allowable_huge_orders+0xd4/0x3f0
[  373.215135][    C0]  shmem_get_folio_gfp+0x67f/0x1610
[  373.220445][    C0]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  373.226089][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.231739][    C0]  ? filemap_map_pages+0xe01/0x1b70
[  373.236954][    C0]  shmem_fault+0x1fe/0xa30
[  373.241383][    C0]  ? __pfx_shmem_fault+0x10/0x10
[  373.246341][    C0]  ? __pfx_filemap_map_pages+0x10/0x10
[  373.251843][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.257501][    C0]  ? __pfx_filemap_map_pages+0x10/0x10
[  373.262992][    C0]  __do_fault+0x10d/0x490
[  373.267337][    C0]  ? __pfx_filemap_map_pages+0x10/0x10
[  373.272828][    C0]  do_pte_missing+0xf4a/0x3ba0
[  373.277628][    C0]  ? find_held_lock+0x2b/0x80
[  373.282318][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.287980][    C0]  __handle_mm_fault+0x1556/0x2aa0
[  373.293131][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.298790][    C0]  ? __pfx___handle_mm_fault+0x10/0x10
[  373.304286][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.309937][    C0]  ? __pte_offset_map_lock+0x174/0x310
[  373.315414][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.321065][    C0]  ? find_held_lock+0x2b/0x80
[  373.325763][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.331428][    C0]  ? follow_page_pte+0x5cf/0x1390
[  373.336506][    C0]  handle_mm_fault+0x589/0xd10
[  373.341320][    C0]  __get_user_pages+0x54e/0x3530
[  373.346316][    C0]  ? __pfx___get_user_pages+0x10/0x10
[  373.351726][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.357389][    C0]  populate_vma_page_range+0x267/0x3f0
[  373.362886][    C0]  ? __pfx_populate_vma_page_range+0x10/0x10
[  373.368896][    C0]  ? __pfx_find_vma_intersection+0x10/0x10
[  373.374730][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.380386][    C0]  ? do_mmap+0x69c/0x1210
[  373.384745][    C0]  __mm_populate+0x1d8/0x380
[  373.389373][    C0]  ? __pfx___mm_populate+0x10/0x10
[  373.394512][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.400167][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.405854][    C0]  ? up_write+0x1b2/0x520
[  373.410217][    C0]  vm_mmap_pgoff+0x37f/0x470
[  373.414835][    C0]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  373.419965][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.425620][    C0]  ? cap_task_prctl+0x2af/0xa80
[  373.430485][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.436144][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.441799][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.447446][    C0]  ? __x64_sys_futex+0x1e9/0x4c0
[  373.452414][    C0]  ksys_mmap_pgoff+0x7d/0x5c0
[  373.457112][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.462761][    C0]  ? syscall_user_dispatch+0x78/0x140
[  373.468167][    C0]  __x64_sys_mmap+0x125/0x190
[  373.472872][    C0]  do_syscall_64+0xcd/0xfa0
[  373.477410][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.483318][    C0] RIP: 0033:0x7f50e178efc9
[  373.487736][    C0] RSP: 002b:00007f50df9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  373.496160][    C0] RAX: ffffffffffffffda RBX: 00007f50e19e5fa0 RCX: 00007f50e178efc9
[  373.504135][    C0] RDX: 0000000000000002 RSI: 0000000000b36000 RDI: 0000200000000000
[  373.512108][    C0] RBP: 00007f50e1811f91 R08: ffffffffffffffff R09: 0000000000000000
[  373.520100][    C0] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[  373.528094][    C0] R13: 00007f50e19e6038 R14: 00007f50e19e5fa0 R15: 00007ffe9d5fdec8
[  373.536106][    C0]  </TASK>
[  373.539125][    C0] rcu: rcu_preempt kthread timer wakeup didn't happen for 10501 jiffies! g36541 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
[  373.551462][    C0] rcu: 	Possible timer handling issue on cpu=1 timer-softirq=15639
[  373.559352][    C0] rcu: rcu_preempt kthread starved for 10502 jiffies! g36541 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1
[  373.570731][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  373.580701][    C0] rcu: RCU grace-period kthread stack dump:
[  373.586580][    C0] task:rcu_preempt     state:I stack:28120 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00080000
[  373.598573][    C0] Call Trace:
[  373.601851][    C0]  <TASK>
[  373.604786][    C0]  __schedule+0x1190/0x5de0
[  373.609326][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.615001][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.620654][    C0]  ? __lock_acquire+0x622/0x1c90
[  373.625626][    C0]  ? __pfx___schedule+0x10/0x10
[  373.630522][    C0]  ? find_held_lock+0x2b/0x80
[  373.635212][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.640878][    C0]  schedule+0xe7/0x3a0
[  373.644984][    C0]  schedule_timeout+0x123/0x290
[  373.649868][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  373.655269][    C0]  ? __pfx_process_timeout+0x10/0x10
[  373.660575][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.666231][    C0]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  373.672071][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.677732][    C0]  ? prepare_to_swait_event+0xf5/0x480
[  373.683224][    C0]  rcu_gp_fqs_loop+0x1ea/0xaf0
[  373.688016][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.693668][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  373.698976][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[  373.704210][    C0]  ? __pfx_rcu_gp_init+0x10/0x10
[  373.709166][    C0]  ? rcu_gp_cleanup+0x7c1/0xd90
[  373.714047][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  373.719889][    C0]  rcu_gp_kthread+0x26d/0x380
[  373.724592][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  373.729809][    C0]  ? rcu_is_watching+0x12/0xc0
[  373.734677][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[  373.739913][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.745566][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.751213][    C0]  ? __kthread_parkme+0x19e/0x250
[  373.756258][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  373.761481][    C0]  kthread+0x3c5/0x780
[  373.765926][    C0]  ? __pfx_kthread+0x10/0x10
[  373.770546][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  373.776195][    C0]  ? rcu_is_watching+0x12/0xc0
[  373.780974][    C0]  ? __pfx_kthread+0x10/0x10
[  373.785595][    C0]  ret_from_fork+0x675/0x7d0
[  373.790203][    C0]  ? __pfx_kthread+0x10/0x10
[  373.794818][    C0]  ret_from_fork_asm+0x1a/0x30
[  373.799633][    C0]  </TASK>
[  507.656529][    C0] watchdog: BUG: soft lockup - CPU#0 stuck for 225s! [syz.6.1372:9775]
[  507.656565][    C0] Modules linked in:
[  507.656582][    C0] irq event stamp: 617092
[  507.656595][    C0] hardirqs last  enabled at (617091): [<ffffffff8b64bd6b>] irqentry_exit+0x3b/0x90
[  507.656665][    C0] hardirqs last disabled at (617092): [<ffffffff8b64a7ce>] sysvec_apic_timer_interrupt+0xe/0xc0
[  507.656728][    C0] softirqs last  enabled at (617090): [<ffffffff817d758e>] handle_softirqs+0x5be/0x8e0
[  507.656793][    C0] softirqs last disabled at (617065): [<ffffffff817d7a49>] __irq_exit_rcu+0x109/0x170
[  507.656863][    C0] CPU: 0 UID: 0 PID: 9775 Comm: syz.6.1372 Not tainted syzkaller #0 PREEMPT(full) 
[  507.656905][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  507.656930][    C0] RIP: 0010:__sanitizer_cov_trace_const_cmp4+0x8/0x20
[  507.656994][    C0] Code: bf 03 00 00 00 e9 58 fe ff ff 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 0c 24 <89> f2 89 fe bf 05 00 00 00 e9 2a fe ff ff 66 2e 0f 1f 84 00 00 00
[  507.657030][    C0] RSP: 0018:ffffc9000b137698 EFLAGS: 00000202
[  507.657056][    C0] RAX: 0000000000000001 RBX: ffff8880b8540460 RCX: ffffffff81b12b11
[  507.657080][    C0] RDX: 0000000000080000 RSI: 0000000000000001 RDI: 0000000000000000
[  507.657103][    C0] RBP: 0000000000000003 R08: 0000000000000005 R09: 0000000000000000
[  507.657124][    C0] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000
[  507.657147][    C0] R13: ffffed10170a808d R14: 0000000000000001 R15: 0000000000000001
[  507.657173][    C0] FS:  00007fc12f8006c0(0000) GS:ffff8881249d9000(0000) knlGS:0000000000000000
[  507.657205][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  507.657229][    C0] CR2: 00007fd498fe7dac CR3: 0000000027a21000 CR4: 0000000000350ef0
[  507.657253][    C0] Call Trace:
[  507.657263][    C0]  <TASK>
[  507.657275][    C0]  smp_call_function_many_cond+0xe21/0x1600
[  507.657323][    C0]  ? __pfx_flush_tlb_func+0x10/0x10
[  507.657379][    C0]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  507.657439][    C0]  ? __pfx_flush_tlb_func+0x10/0x10
[  507.657481][    C0]  on_each_cpu_cond_mask+0x40/0x90
[  507.657523][    C0]  flush_tlb_mm_range+0x4a0/0x17a0
[  507.657574][    C0]  ? __pfx_free_pgtables+0x10/0x10
[  507.657621][    C0]  ? __pfx_flush_tlb_mm_range+0x10/0x10
[  507.657676][    C0]  tlb_finish_mmu+0x3c9/0x7c0
[  507.657737][    C0]  vms_clear_ptes+0x55e/0x770
[  507.657802][    C0]  ? __pfx_vms_clear_ptes+0x10/0x10
[  507.657854][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  507.657925][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  507.657977][    C0]  vms_complete_munmap_vmas+0x1ca/0x970
[  507.658040][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  507.658092][    C0]  do_vmi_align_munmap+0x446/0x7e0
[  507.658157][    C0]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[  507.658230][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  507.658326][    C0]  do_vmi_munmap+0x204/0x3e0
[  507.658390][    C0]  __vm_munmap+0x196/0x380
[  507.658429][    C0]  ? __pfx___vm_munmap+0x10/0x10
[  507.658463][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  507.658522][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  507.658564][    C0]  ? xfd_validate_state+0x61/0x180
[  507.658605][    C0]  ? __pfx_ksys_write+0x10/0x10
[  507.658647][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  507.658697][    C0]  __x64_sys_munmap+0x59/0x80
[  507.658745][    C0]  do_syscall_64+0xcd/0xfa0
[  507.658805][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  507.658841][    C0] RIP: 0033:0x7fc12e98f057
[  507.658869][    C0] Code: 00 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 48 c7 c0 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 0b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  507.658904][    C0] RSP: 002b:00007fc12f7ffe18 EFLAGS: 00000246 ORIG_RAX: 000000000000000b
[  507.658941][    C0] RAX: ffffffffffffffda RBX: 0000000001000000 RCX: 00007fc12e98f057
[  507.658965][    C0] RDX: 0000000000000000 RSI: 0000000008400000 RDI: 00007fc124600000
[  507.658987][    C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000975e
[  507.659009][    C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000003
[  507.659031][    C0] R13: 00007fc12f7ffef0 R14: 00007fc12f7ffeb0 R15: 00007fc124600000
[  507.659081][    C0]  </TASK>
[  507.659093][    C0] Sending NMI from CPU 0 to CPUs 1:
[  508.068073][    C1] NMI backtrace for cpu 1
[  508.068095][    C1] CPU: 1 UID: 0 PID: 9797 Comm: syz.1.1381 Not tainted syzkaller #0 PREEMPT(full) 
[  508.068134][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  508.068154][    C1] RIP: 0010:lock_acquire+0x133/0x350
[  508.068208][    C1] Code: 00 65 8b 05 d7 97 0b 12 85 c0 0f 85 a2 00 00 00 65 48 8b 05 17 56 0b 12 8b 90 2c 0b 00 00 85 d2 0f 85 8c 00 00 00 9c 8f 04 24 <fa> 48 c7 c7 89 4d bf 8d e8 30 b1 cb 09 45 89 e0 89 e9 44 89 ea 65
[  508.068242][    C1] RSP: 0018:ffffc90000a08d08 EFLAGS: 00000046
[  508.068267][    C1] RAX: ffff8880299e1e40 RBX: ffff888079deb300 RCX: 0000000000000001
[  508.068290][    C1] RDX: 0000000000000000 RSI: ffffffff8b67660e RDI: ffffed100f3bd660
[  508.068311][    C1] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  508.068330][    C1] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000001
[  508.068350][    C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  508.068373][    C1] FS:  0000000000000000(0000) GS:ffff888124ad9000(0000) knlGS:0000000000000000
[  508.068402][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  508.068424][    C1] CR2: 0000555586b8f5c8 CR3: 000000003211a000 CR4: 0000000000350ef0
[  508.068446][    C1] Call Trace:
[  508.068457][    C1]  <IRQ>
[  508.068469][    C1]  ? do_raw_spin_unlock+0x172/0x230
[  508.068520][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  508.068560][    C1]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  508.068615][    C1]  ? __pfx_advance_sched+0x10/0x10
[  508.068656][    C1]  _raw_spin_lock+0x2e/0x40
[  508.068699][    C1]  ? advance_sched+0xd9/0xc80
[  508.068737][    C1]  advance_sched+0xd9/0xc80
[  508.068777][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  508.068816][    C1]  ? find_held_lock+0x2b/0x80
[  508.068849][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  508.068888][    C1]  ? do_raw_spin_unlock+0x172/0x230
[  508.068939][    C1]  ? __pfx_advance_sched+0x10/0x10
[  508.068978][    C1]  __hrtimer_run_queues+0x202/0xad0
[  508.069039][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  508.069091][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  508.069142][    C1]  hrtimer_interrupt+0x397/0x8e0
[  508.069213][    C1]  __sysvec_apic_timer_interrupt+0x10b/0x3f0
[  508.069266][    C1]  sysvec_apic_timer_interrupt+0x9f/0xc0
[  508.069317][    C1]  </IRQ>
[  508.069327][    C1]  <TASK>
[  508.069339][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  508.069375][    C1] RIP: 0010:__sanitizer_cov_trace_pc+0x8/0x70
[  508.069431][    C1] Code: e9 dd 22 5c 00 be 03 00 00 00 5b e9 22 37 ed 02 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 34 24 <65> 48 8b 15 a8 37 e7 11 65 8b 05 b9 37 e7 11 a9 00 01 ff 00 74 1d
[  508.069464][    C1] RSP: 0018:ffffc9000b017800 EFLAGS: 00000293
[  508.069488][    C1] RAX: 0000000000000000 RBX: ffffea0001a81300 RCX: ffffffff8211115e
[  508.069510][    C1] RDX: ffff8880299e1e40 RSI: ffffffff8208277a RDI: ffffea0001a81300
[  508.069532][    C1] RBP: ffffc9000b0179a8 R08: 0000000000000007 R09: 0000000000000000
[  508.069552][    C1] R10: 0000000000000000 R11: 0000000000000001 R12: 000000110c278000
[  508.069572][    C1] R13: 0000000000000000 R14: dffffc0000000000 R15: ffffea0001a81300
[  508.069601][    C1]  ? folio_remove_rmap_ptes+0x39e/0xee0
[  508.069652][    C1]  ? const_folio_flags.constprop.0+0xa/0x70
[  508.069691][    C1]  const_folio_flags.constprop.0+0xa/0x70
[  508.069726][    C1]  unmap_page_range+0x1b08/0x41b0
[  508.069795][    C1]  ? __pfx_unmap_page_range+0x10/0x10
[  508.069842][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  508.069882][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  508.069921][    C1]  ? uprobe_munmap+0x20/0x600
[  508.069959][    C1]  unmap_single_vma.constprop.0+0x153/0x240
[  508.070008][    C1]  unmap_vmas+0x218/0x470
[  508.070051][    C1]  ? __pfx_unmap_vmas+0x10/0x10
[  508.070094][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  508.070151][    C1]  exit_mmap+0x1b2/0xb90
[  508.070200][    C1]  ? trace_contention_end+0xdd/0x130
[  508.070246][    C1]  ? __pfx_exit_mmap+0x10/0x10
[  508.070296][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  508.070347][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  508.070386][    C1]  ? arch_uprobe_clear_state+0x16/0x150
[  508.070436][    C1]  __mmput+0x12a/0x410
[  508.070466][    C1]  mmput+0x62/0x70
[  508.070491][    C1]  do_exit+0x7c7/0x2bf0
[  508.070532][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  508.070572][    C1]  ? __pfx_do_exit+0x10/0x10
[  508.070609][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  508.070648][    C1]  ? preempt_schedule_thunk+0x16/0x30
[  508.070695][    C1]  do_group_exit+0xd3/0x2a0
[  508.070736][    C1]  __x64_sys_exit_group+0x3e/0x50
[  508.070775][    C1]  x64_sys_call+0x150b/0x1730
[  508.070809][    C1]  do_syscall_64+0xcd/0xfa0
[  508.070864][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  508.070896][    C1] RIP: 0033:0x7fd498d8efc9
[  508.070919][    C1] Code: Unable to access opcode bytes at 0x7fd498d8ef9f.
[  508.070934][    C1] RSP: 002b:00007ffd586fa1b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  508.070963][    C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fd498d8efc9
[  508.070985][    C1] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[  508.071005][    C1] RBP: 00007ffd586fa21c R08: 00000004586fa2af R09: 00000000000927c0
[  508.071026][    C1] R10: 0000000000000001 R11: 0000000000000246 R12: 00000000000000f8
[  508.071045][    C1] R13: 00000000000927c0 R14: 0000000000041313 R15: 00007ffd586fa270
[  508.071082][    C1]  </TASK>
[  508.072067][    C0] Kernel panic - not syncing: softlockup: hung tasks
[  508.595077][    C0] CPU: 0 UID: 0 PID: 9775 Comm: syz.6.1372 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  508.605954][    C0] Tainted: [L]=SOFTLOCKUP
[  508.610280][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  508.620349][    C0] Call Trace:
[  508.623628][    C0]  <IRQ>
[  508.626481][    C0]  dump_stack_lvl+0x3d/0x1f0
[  508.631110][    C0]  vpanic+0x640/0x6f0
[  508.635113][    C0]  panic+0xca/0xd0
[  508.638857][    C0]  ? __pfx_panic+0x10/0x10
[  508.643385][    C0]  ? nmi_backtrace_stall_check+0x6e/0x540
[  508.649221][    C0]  ? irq_work_queue+0xce/0x100
[  508.653995][    C0]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  508.659992][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  508.665641][    C0]  ? __wake_up_klogd.part.0+0x99/0xf0
[  508.671045][    C0]  ? watchdog_timer_fn+0x5ee/0x780
[  508.676169][    C0]  ? watchdog_timer_fn+0x5e1/0x780
[  508.681293][    C0]  watchdog_timer_fn+0x5ff/0x780
[  508.686248][    C0]  ? __pfx_watchdog_timer_fn+0x10/0x10
[  508.691717][    C0]  __hrtimer_run_queues+0x5ed/0xad0
[  508.696968][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  508.702720][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  508.708392][    C0]  hrtimer_interrupt+0x397/0x8e0
[  508.713472][    C0]  __sysvec_apic_timer_interrupt+0x10b/0x3f0
[  508.719493][    C0]  sysvec_apic_timer_interrupt+0x9f/0xc0
[  508.725162][    C0]  </IRQ>
[  508.728528][    C0]  <TASK>
[  508.731476][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  508.737493][    C0] RIP: 0010:__sanitizer_cov_trace_const_cmp4+0x8/0x20
[  508.744298][    C0] Code: bf 03 00 00 00 e9 58 fe ff ff 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 0c 24 <89> f2 89 fe bf 05 00 00 00 e9 2a fe ff ff 66 2e 0f 1f 84 00 00 00
[  508.764102][    C0] RSP: 0018:ffffc9000b137698 EFLAGS: 00000202
[  508.770183][    C0] RAX: 0000000000000001 RBX: ffff8880b8540460 RCX: ffffffff81b12b11
[  508.778420][    C0] RDX: 0000000000080000 RSI: 0000000000000001 RDI: 0000000000000000
[  508.786392][    C0] RBP: 0000000000000003 R08: 0000000000000005 R09: 0000000000000000
[  508.794366][    C0] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000
[  508.802426][    C0] R13: ffffed10170a808d R14: 0000000000000001 R15: 0000000000000001
[  508.810412][    C0]  ? smp_call_function_many_cond+0xe21/0x1600
[  508.816507][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  508.822163][    C0]  smp_call_function_many_cond+0xe21/0x1600
[  508.828087][    C0]  ? __pfx_flush_tlb_func+0x10/0x10
[  508.833319][    C0]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  508.839681][    C0]  ? __pfx_flush_tlb_func+0x10/0x10
[  508.844898][    C0]  on_each_cpu_cond_mask+0x40/0x90
[  508.850034][    C0]  flush_tlb_mm_range+0x4a0/0x17a0
[  508.855174][    C0]  ? __pfx_free_pgtables+0x10/0x10
[  508.860325][    C0]  ? __pfx_flush_tlb_mm_range+0x10/0x10
[  508.865925][    C0]  tlb_finish_mmu+0x3c9/0x7c0
[  508.870645][    C0]  vms_clear_ptes+0x55e/0x770
[  508.875366][    C0]  ? __pfx_vms_clear_ptes+0x10/0x10
[  508.880598][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  508.886275][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  508.891943][    C0]  vms_complete_munmap_vmas+0x1ca/0x970
[  508.897529][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  508.903193][    C0]  do_vmi_align_munmap+0x446/0x7e0
[  508.908353][    C0]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[  508.914035][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  508.919740][    C0]  do_vmi_munmap+0x204/0x3e0
[  508.924372][    C0]  __vm_munmap+0x196/0x380
[  508.928807][    C0]  ? __pfx___vm_munmap+0x10/0x10
[  508.933759][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  508.939430][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  508.945083][    C0]  ? xfd_validate_state+0x61/0x180
[  508.950211][    C0]  ? __pfx_ksys_write+0x10/0x10
[  508.955078][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  508.960748][    C0]  __x64_sys_munmap+0x59/0x80
[  508.965625][    C0]  do_syscall_64+0xcd/0xfa0
[  508.970165][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  508.976068][    C0] RIP: 0033:0x7fc12e98f057
[  508.980489][    C0] Code: 00 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 48 c7 c0 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 0b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  509.000117][    C0] RSP: 002b:00007fc12f7ffe18 EFLAGS: 00000246 ORIG_RAX: 000000000000000b
[  509.008552][    C0] RAX: ffffffffffffffda RBX: 0000000001000000 RCX: 00007fc12e98f057
[  509.016532][    C0] RDX: 0000000000000000 RSI: 0000000008400000 RDI: 00007fc124600000
[  509.024683][    C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000975e
[  509.032661][    C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000003
[  509.040634][    C0] R13: 00007fc12f7ffef0 R14: 00007fc12f7ffeb0 R15: 00007fc124600000
[  509.048726][    C0]  </TASK>
[  510.222759][    C0] Shutting down cpus with NMI
[  510.227702][    C0] Kernel Offset: disabled
[  510.232026][    C0] Rebooting in 86400 seconds..