last executing test programs:

3.667563984s ago: executing program 3:
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x0, 0xfff, 0x5}, 0x48)
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x3000cd1, &(0x7f0000000440)=ANY=[], 0x1, 0x1506, &(0x7f0000002d40)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000100)={[{@subsystem='cpuset'}, {@subsystem='memory'}, {@subsystem='cpuacct'}]})

2.521334678s ago: executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{}, &(0x7f0000000140), &(0x7f0000000100)}, 0x20)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000004c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x0, 0x7, 0x0, "98d3340600c7aa11897ecaab876eab79576839c5656be8410f2802e944af80373be2666b665770173fbd1883303b6ac4749393ad08f139a68f00"}, 0xd8)
bind$inet(r0, &(0x7f0000000480)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10)
recvmmsg(r0, &(0x7f0000000dc0)=[{{0x0, 0x0, &(0x7f0000000b80)=[{&(0x7f0000004ac0)=""/102389, 0x18ff5}, {0x0}], 0x2}}, {{0x0, 0x0, &(0x7f0000000cc0), 0x0, &(0x7f0000000d00)=""/139, 0x8b}}], 0x2, 0x0, 0x0)
write$binfmt_elf64(r0, &(0x7f00000000c0)=ANY=[@ANYRESHEX], 0xc63b9e35)

2.343949065s ago: executing program 2:
socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f00000005c0))
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={r1, 0x0, 0x0}, 0x10)
r2 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r2, &(0x7f0000000140)="1ba0000016001d0d89fdc5cbdd045798707bed4dca141a780f0f8e", 0xff3b, 0x0, 0x0, 0x0)

2.329969847s ago: executing program 2:
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x18c6)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{0xffffffffffffffff, <r0=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000300)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xd, &(0x7f00000002c0)=ANY=[@ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000000), &(0x7f0000048000), 0x0)

2.308600731s ago: executing program 2:
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mkdir(0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, 0x0)
creat(0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)={0x1c, 0x4, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0)

2.298676982s ago: executing program 2:
syz_mount_image$f2fs(&(0x7f0000000680), &(0x7f0000000080)='./file2\x00', 0x2000000, &(0x7f0000000740)=ANY=[], 0x1, 0x54f9, &(0x7f0000002a80)="$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")
r0 = open(&(0x7f0000000040)='./bus\x00', 0x145142, 0x0)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x1}], 0x1, 0x0, 0x0, 0x0)
pwritev2(r0, &(0x7f0000000000)=[{&(0x7f00000006c0)='_', 0x1}], 0x1, 0x0, 0x0, 0x0)

1.977744811s ago: executing program 4:
futex(&(0x7f0000000700)=0x2, 0x0, 0x2, &(0x7f0000000740)={0x0, 0x3938700}, 0x0, 0x0)
rt_sigreturn()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0)={<r0=>0xffffffffffffffff})
recvmsg(r0, &(0x7f00000004c0)={0x0, 0xfffffffffffffd87, 0x0}, 0x125)

1.911386401s ago: executing program 2:
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, 0x0)
pipe(0x0)
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff})
write$binfmt_script(r0, &(0x7f0000000200)={'#! ', '', [{0x20, '#!2'}, {}], 0xa, "8855d1bef46f70e481dbdabbfc3bcc3f005c1079e7344e4392717247b88b05708cd1663511237737ac00004c03"}, 0x36)
close(r0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
rt_sigreturn()
futex(&(0x7f0000000000)=0x2, 0x0, 0x2, &(0x7f0000000740)={0x0, 0x3938700}, 0x0, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
rt_sigreturn()
mlockall(0x1)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
sched_getaffinity(0x0, 0xffffffffffffffd8, 0x0)

1.905081072s ago: executing program 4:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000208500000001000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xfffffffffffffc21)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x6, 0xbaa}, 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000100), 0xa7c, r0}, 0x38)

1.860877599s ago: executing program 0:
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x18c6)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{0xffffffffffffffff, <r0=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000300)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xd, &(0x7f00000002c0)=ANY=[@ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000000), &(0x7f0000048000), 0x0)

1.85214587s ago: executing program 4:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=@base={0xe, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000100000007b8af8ff00000000bfa200000000000007020000faffffffb703000008400000b70600000000feff850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='ext4_es_remove_extent\x00', r1}, 0x10)
unlink(&(0x7f0000000140)='./cgroup\x00')
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = getpid()
sched_setscheduler(r3, 0x1, &(0x7f0000000100)=0x5)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESDEC=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x11f25000)
syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @none, 0x4}, 0xe)
setsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, &(0x7f0000000140)={0x0, 0x7fff, 0x0, 0xfc}, 0xc)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000780)='./bus\x00', 0x52)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000040)={'lo\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000005c0)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x7}, @TCA_RATE={0x6, 0x5, {0x7f, 0x2}}]}, 0x40}}, 0x0)

1.843325152s ago: executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, 0x0, &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
faccessat2(0xffffffffffffffff, &(0x7f0000000040)='\x00', 0x7, 0x1200)

1.838541862s ago: executing program 1:
r0 = epoll_create(0x6)
ioctl$AUTOFS_IOC_FAIL(r0, 0x5451, 0x0)

1.797807248s ago: executing program 0:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000100)={'ipvlan0\x00', 0x2})
preadv2(r3, 0x0, 0x0, 0x0, 0x0, 0x0)
close(r3)
rt_sigreturn()
poll(0x0, 0x0, 0x64)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
rt_sigreturn()
mlockall(0x1)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = dup2(r1, r0)
accept4$unix(r4, 0x0, 0x0, 0x0)

1.789550699s ago: executing program 1:
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
syz_read_part_table(0x401f, &(0x7f0000000000)="$eJzs0DEOAUEUBuB/NqKgUbuERk2UjrKNTqLRuIrKMSQaB3EBJ9CMZElIVuv7mvlnMjMv741vp1WSMttu2l1eNJ28bJKSZF73Jf/nvedrsjgnGfX5pDvUtPcvNycfzveHGoZ96j4N6ro+Ti+/vAcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAe7MCBAAAAAACQ/2sjVFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWEHDgQAAAAAgPxfG6GqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqoKO3AgAwAAACDM3zqP9gMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwEsBAAD//4IoCls=")
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
rt_sigreturn()
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r0, 0x0, r1)
write$FUSE_NOTIFY_POLL(r2, &(0x7f00000003c0)={0xffffffffffffff93}, 0xfffffc33)

1.484617405s ago: executing program 3:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_serviced\x00', 0x275a, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000002440)='statm\x00')
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
futex(&(0x7f0000000700)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0)
rt_sigreturn()
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
syz_read_part_table(0x401f, &(0x7f0000000000)="$eJzs0DEOAUEUBuB/NqKgUbuERk2UjrKNTqLRuIrKMSQaB3EBJ9CMZElIVuv7mvlnMjMv741vp1WSMttu2l1eNJ28bJKSZF73Jf/nvedrsjgnGfX5pDvUtPcvNycfzveHGoZ96j4N6ro+Ti+/vAcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAe7MCBAAAAAACQ/2sjVFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWEHDgQAAAAAgPxfG6GqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqoKO3AgAwAAACDM3zqP9gMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwEsBAAD//4IoCls=")
bind$unix(0xffffffffffffffff, 0x0, 0x0)
pipe2$9p(&(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RSETATTR(r0, &(0x7f0000000000)={0x7}, 0x69ff9a93bfc25838)
write$P9_RATTACH(r0, 0x0, 0x0)

1.437554883s ago: executing program 1:
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
pipe2(&(0x7f0000000140)={<r1=>0xffffffffffffffff}, 0x0)
read$char_usb(r1, &(0x7f0000000840)=""/171, 0xab)
close(r1)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$FUSE_NOTIFY_STORE(r2, &(0x7f00000020c0)=ANY=[], 0x2b)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{}, {0x0, 0x989680}}, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x0, @broadcast}, 0x10)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x0, @dev}, 0x10)
connect$inet(r3, &(0x7f00000000c0), 0x10)
rt_sigreturn()
mknod(&(0x7f0000000040)='./file0\x00', 0x1000, 0x0)
mknodat$loop(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs2/custom1\x00', 0x0, 0x0)
shutdown(r3, 0x0)

1.39282489s ago: executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f00000000c0)=0x81, 0x4)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @local}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000480)="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", 0xfffffea5, 0xc000, 0x0, 0xfffffcef)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x0, @empty}, 0x10)

1.373591943s ago: executing program 1:
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000000), 0x4)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
connect$pppl2tp(r1, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r2, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r5}, 0x10)
pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x80)
setsockopt$inet6_IPV6_PKTINFO(r6, 0x29, 0x32, &(0x7f00000001c0)={@mcast1}, 0x14)
socket$nl_audit(0x10, 0x3, 0x9)
writev(r1, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)

962.675065ms ago: executing program 4:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bridge0\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000180)="0b040700e0ff030002004788aa96a13bb100000000004305400f", 0x10000, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14)

941.664838ms ago: executing program 4:
ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x5450, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000500)={0xa, 0x4e20, 0x0, @dev}, 0x1c)
listen(r1, 0x0)
connect$inet(r0, &(0x7f00000001c0)={0x2, 0x2, @local}, 0x10)
listen(0xffffffffffffffff, 0x0)
r2 = accept(r1, 0x0, 0x0)
setsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_EDIT(0xffffffffffffffff, 0x0, 0x483, 0x0, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mremap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000, 0x0, &(0x7f0000ff5000/0x3000)=nil)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, 0x0)
mlockall(0x3)

800.919319ms ago: executing program 2:
mlockall(0x3)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000, 0x3, &(0x7f0000ff5000/0x3000)=nil)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_mreqn(r0, 0x0, 0x0, &(0x7f00000000c0)={@multicast2, @empty}, 0xc)

576.861333ms ago: executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, 0x0, &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
faccessat2(0xffffffffffffffff, &(0x7f0000000040)='\x00', 0x7, 0x1200)

550.437007ms ago: executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
r1 = syz_open_dev$MSR(&(0x7f0000000180), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000108500000075000000a50000002300000095"], &(0x7f0000000380)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_GET_TSC(0x43, &(0x7f0000000040))
mremap(&(0x7f0000186000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f00000ad000/0x1000)=nil)

543.287088ms ago: executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
timer_create(0x0, 0x0, &(0x7f0000000040))
timer_delete(0x0)

484.546587ms ago: executing program 3:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x2, 0x0)
mlockall(0x1)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
pipe2$9p(&(0x7f00000002c0)={<r0=>0xffffffffffffffff}, 0x0)
ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r0, 0x5421, 0x0)

265.011531ms ago: executing program 0:
mlockall(0x1)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
signalfd4(r0, &(0x7f0000000000), 0x8, 0x0)

100.682105ms ago: executing program 1:
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote}, 0x1c)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x12, &(0x7f0000000080)=0x1, 0x4)
bind$inet(r2, &(0x7f0000000800)={0x2, 0x4e21, @local}, 0x10)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r2, &(0x7f0000000480)="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", 0xfffffea5, 0xc000, 0x0, 0xfffffcef)
fcntl$dupfd(0xffffffffffffffff, 0x0, r2)
rt_sigreturn()
r3 = memfd_create(&(0x7f0000000200)='\xc0\x87:*\x18\xc1k\xa7\x87[\xa0o8\xaaK\xa5\xd3\v\x86\xca<\x7f\xfd6\x8d}\xd8\xf2G\xb8\xeae)\x90\x86\xe3\x96\b\xe0\xfa\xb1\xd8N\xb2W\xcb\x8d}3lm8\xa57\xc9\x00HOA\xc8\x80kR\xfc\xcb%u3\xec\xde%\x00\xb1\x9aF\xe2\xba[\xc7%\x88 \xeeQR\x9f\x81\x8b\xdc\xc7\xdc\xdem\xbe\x7f2\x11)W\x9c\x82\x91\x17\xd8\xda@4\x9f\xc5\xe3\x8d.\xd1=\xcf\xbf\x81\xb5\x8d%K\x1d\xe7_\xde\x87\xdd\xc1\xf0\x91\x1a!\x9c\xd3\v\xc9\x95d\xe3*\xa9\xfa\x99\x9d\xb8\x89>\xc9\xf2/\x13{\x1a\x7f\x00\x00\x00\x00+$\xedX\xb7KV\x90\xc3D\x82`\xea\x16\xc6\xcef\xab\x05\x19\x96\xb9_6*-\xf3\x8c\x9a\x15\x9c\xf5\xb4O\x17@d\x81+\xf6\xe6+\xed\r\xd2\xb3\xaa\x9b\x7fC\'\xa2\xf6\x12\xa1\x15Punfo\x7f\x92G\x0e.\xce\xd8h\xb9p2\xccC\xbaH\xc4\xdc\xe2\xa1%)\x85\xc7O]\'9\x92\xad\xfbJ\x02\x1d\x91-\xc99\t&\xbdq\x06`T\xc8\x92\xaf\xad#\xd8b\x90\xeb\x05\x9f\t5\x06\xdd\xaf\x84\xf4\"\x13\xcf\xe5\x93D\xad~F\xe5\x19\xaa\xaa\xb2\xb1\x03m\x82+\x06\x1bF^\xd3n\xc4F\xc1\xc08\x94\xe6\xe5\x1f\xa7\xf6\xcaA\x90T\x1b\xe6\xb9\xe7\xff\xc5H\x04\x8d\xca\xad\x17UlY\x9a}\r4\xac\x93\xac\v2\xc6\xf9\xbe\xfeI\x8b\xd4/`\xab\x1e\xcf\x7f\b\x94 2.{\xc1\xbe\x9bth~\xcb\xb9E\x10W\xed\xed51[\xc5\xeb\xb1ux\x94\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xdem\xe3+q:3\xfa*\x98o\'f\xbcY\x8e?\xf9\x84y\x89Y\x1c]\xad$\x7fp\xf1\xa3\x99[\xff\x1f\x94\xc2\xdb\xbaG\xa6UD\x88Y6\x11Y\xd4\xd1\xde\x9a{]\xe2\x98W\xb9\x13\x17<\x8b!?\x8e\xbc\xae\xf9\xcc\b\x90n\x15\x7f\xd5WS\xfbN\xec)B\xe7R\xa5\xd7O\x83\x80}\xcc5\x99\xdb\xd6\xbd\x9c\x05l\xfc.\xf4\xbbeF\xa3\xea}\xf1\x86z\xca\xad\x82\xd9IRV5\xa77\'\x1a\x1c\x89\xef:\xee\x10\xb2\xd6\xc8\xf4\xb5\xdd\xd8c!@JRY\xa3|Pjk\xdc\xa5d\xc2\xecn\xc9X\xfc\xd4D\x13\"\xb2\x06\xbd&\xf86\xddXv\xc9\x1322L\xd6\x99\xf6\t\x9d\xbeZ\x02\xc0\xa41\xf9sNG\x02\x83\xe6Bl\xd2\x02\xfb[\x82\xc0I\xb7\xf6\xe5Z\xa1}\xee}\x8b\x89\x04\x8a\'\xc7J\xca\xdf:\x8ft\xe0\xf8\a', 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x11, r3, 0x0)
fallocate(r3, 0x0, 0x0, 0x800000b)
statx(0xffffffffffffffff, &(0x7f0000000740)='./file0\x00', 0x1000, 0x80, 0x0)

24.914486ms ago: executing program 1:
mlockall(0x1)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
unlinkat(0xffffffffffffffff, 0x0, 0x0)

0s ago: executing program 4:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0xa, 0x4, 0x4, 0x4, 0x0, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008230000b7040000000000008500000001000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000060ff850000000400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='ext4_ext_remove_space_done\x00', r1}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.current\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.current\x00', 0x7a05, 0x1700)

kernel console output (not intermixed with test programs):

eature is enabled, so ignore qf_name
[ 1596.377915][T25912] F2FS-fs (loop1): invalid crc value
[ 1596.592506][T25912] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387)
[ 1596.775974][T25912] F2FS-fs (loop1): Mounted with checkpoint version = 753bd00b
[ 1596.916398][ T1470] Bluetooth: hci1: command 0x1009 tx timeout
[ 1597.469832][T25924] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1597.505561][T25924] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1597.516821][T25924] device bridge_slave_0 entered promiscuous mode
[ 1597.579883][T25924] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1597.587150][T25924] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1597.594498][T25924] device bridge_slave_1 entered promiscuous mode
[ 1597.654180][T25924] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1597.661069][T25924] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1597.668201][T25924] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1597.675052][T25924] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1597.701688][ T1470] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1597.709273][ T1470] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1597.716729][ T1470] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1597.727531][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1597.735494][   T20] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1597.742343][   T20] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1597.876480][ T1470] Bluetooth: hci2: command 0x1009 tx timeout
[ 1597.933962][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1597.942384][  T356] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1597.949258][  T356] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1597.965918][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1597.973743][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1597.987683][ T1470] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1598.015733][ T8205] device bridge_slave_1 left promiscuous mode
[ 1598.022067][ T8205] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1598.029678][ T8205] device bridge_slave_0 left promiscuous mode
[ 1598.035698][ T8205] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1598.044690][ T8205] device veth1_macvtap left promiscuous mode
[ 1598.050597][ T8205] device veth0_vlan left promiscuous mode
[ 1598.136108][T25924] device veth0_vlan entered promiscuous mode
[ 1598.143335][T10238] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1598.152000][T10238] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1598.159447][T10238] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1598.174343][T25924] device veth1_macvtap entered promiscuous mode
[ 1598.178613][T25935] loop1: detected capacity change from 0 to 40427
[ 1598.182356][ T1470] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1598.194871][ T1470] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1598.202859][ T1470] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1598.213382][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1598.222315][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1598.224422][T25935] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1598.241042][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1598.249301][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1598.276918][T25935] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1598.301224][T25935] attempt to access beyond end of device
[ 1598.301224][T25935] loop1: rw=2049, want=53384, limit=40427
[ 1598.318503][T25817] attempt to access beyond end of device
[ 1598.318503][T25817] loop1: rw=2049, want=45112, limit=40427
[ 1598.446941][T25943] loop0: detected capacity change from 0 to 512
[ 1598.727202][T25943] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1598.739834][T25943] EXT4-fs (loop0): 1 orphan inode deleted
[ 1598.745438][T25943] EXT4-fs (loop0): 1 truncate cleaned up
[ 1598.751014][T25943] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,nodelalloc,debug_want_extra_isize=0x000000000000002e,inode_readahead_blks=0x0000000000010000,block_validity,quota,. Quota mode: writeback.
[ 1598.864695][T25952] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1598.871641][T25952] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1598.881406][T25952] device bridge_slave_0 entered promiscuous mode
[ 1598.891802][T25952] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1598.899448][T25952] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1598.909061][T25952] device bridge_slave_1 entered promiscuous mode
[ 1598.952964][T25956] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=1 sclass=netlink_tcpdiag_socket pid=25956 comm=syz-executor.1
[ 1599.099284][T25952] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1599.106152][T25952] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1599.113251][T25952] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1599.120032][T25952] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1599.146350][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1599.154190][  T356] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1599.170062][  T356] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1599.191242][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1599.199451][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1599.207425][  T362] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1599.214272][  T362] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1599.221583][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1599.229872][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1599.238230][  T362] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1599.245085][  T362] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1599.259332][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1599.267464][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1599.275924][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1599.283822][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1599.301237][T25952] device veth0_vlan entered promiscuous mode
[ 1599.307525][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1599.315680][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1599.324259][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1599.333236][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1599.342629][ T9585] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1599.350927][ T9585] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1599.529466][ T1470] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1599.537474][ T1470] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1599.546921][T25952] device veth1_macvtap entered promiscuous mode
[ 1599.558282][ T9585] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1599.565762][ T9585] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1599.574065][ T9585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1599.586266][ T9585] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1599.594477][ T9585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1599.603341][ T8205] device bridge_slave_1 left promiscuous mode
[ 1599.609361][ T8205] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1599.616797][ T8205] device bridge_slave_0 left promiscuous mode
[ 1599.622739][ T8205] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1599.630487][ T8205] device veth1_macvtap left promiscuous mode
[ 1599.636361][ T8205] device veth0_vlan left promiscuous mode
[ 1599.731689][T25964] syz-executor.3[25964] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1599.731745][T25964] syz-executor.3[25964] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1599.887368][T25967] loop3: detected capacity change from 0 to 16
[ 1599.947559][T25967] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1601.077472][T25987] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=1 sclass=netlink_tcpdiag_socket pid=25987 comm=syz-executor.3
[ 1601.278361][T25989] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1601.285251][T25989] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1601.292601][T25989] device bridge_slave_0 entered promiscuous mode
[ 1601.302386][T25989] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1601.309388][T25989] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1601.317398][T25989] device bridge_slave_1 entered promiscuous mode
[ 1601.409451][T25998] syz-executor.1[25998] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1601.409541][T25998] syz-executor.1[25998] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1601.433465][T25989] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1601.451889][T25989] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1601.459016][T25989] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1601.465761][T25989] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1601.809806][T26002] loop1: detected capacity change from 0 to 16
[ 1601.840277][T26002] erofs: (device loop1): mounted with root inode @ nid 36.
[ 1602.106223][T26004] syz-executor.3[26004] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1602.106320][T26004] syz-executor.3[26004] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1602.112386][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1602.151126][  T356] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1602.159248][  T356] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1602.192295][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1602.202723][  T356] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1602.209606][  T356] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1602.217115][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1602.225503][  T356] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1602.232426][  T356] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1602.241628][   T30] audit: type=1326 audit(1718758559.229:7483): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26005 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff9314a2f29 code=0x0
[ 1602.317309][ T8205] device bridge_slave_1 left promiscuous mode
[ 1602.324267][ T8205] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1602.334661][ T8205] device bridge_slave_0 left promiscuous mode
[ 1602.341207][ T8205] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1602.352466][ T8205] device veth1_macvtap left promiscuous mode
[ 1602.358694][ T8205] device veth0_vlan left promiscuous mode
[ 1602.705184][T26023] loop1: detected capacity change from 0 to 512
[ 1602.760101][T26023] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1602.809156][T26023] EXT4-fs (loop1): 1 orphan inode deleted
[ 1602.814776][T26023] EXT4-fs (loop1): 1 truncate cleaned up
[ 1602.820240][T26023] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,nodelalloc,debug_want_extra_isize=0x000000000000002e,inode_readahead_blks=0x0000000000010000,block_validity,quota,. Quota mode: writeback.
[ 1602.958794][T26028] loop4: detected capacity change from 0 to 1024
[ 1602.989645][T26028] EXT4-fs (loop4): Quota format mount options ignored when QUOTA feature is enabled
[ 1603.002194][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1603.002722][T26028] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[ 1603.013295][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1603.049044][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1603.049175][T26028] input: syz1 as /devices/virtual/input/input93
[ 1603.057123][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1603.080012][ T9585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1603.088169][ T9585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1603.099135][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1603.106871][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1603.114666][T25989] device veth0_vlan entered promiscuous mode
[ 1603.121792][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1603.129322][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1603.143334][T25989] device veth1_macvtap entered promiscuous mode
[ 1603.150525][ T9585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1603.158875][ T9585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1603.167235][ T9585] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1603.178405][T26028] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[ 1603.179204][ T1469] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1603.194651][ T1469] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1603.203389][ T1469] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1603.212250][ T1469] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1603.253503][T26032] loop0: detected capacity change from 0 to 1024
[ 1603.283701][T26039] syz-executor.1[26039] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1603.283775][T26039] syz-executor.1[26039] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1603.297669][T26032] EXT4-fs (loop0): Quota format mount options ignored when QUOTA feature is enabled
[ 1603.596224][T26032] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[ 1603.626721][T26032] syz-executor.0[26032] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1603.626783][T26032] syz-executor.0[26032] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1603.645740][T26032] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[ 1603.673581][T26043] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1603.680559][T26043] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1603.687899][T26043] device bridge_slave_0 entered promiscuous mode
[ 1603.694951][T26043] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1603.701867][T26043] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1603.709457][T26043] device bridge_slave_1 entered promiscuous mode
[ 1603.756733][T26043] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1603.763597][T26043] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1603.770709][T26043] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1603.777482][T26043] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1603.802943][ T9585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1603.810445][ T9585] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1603.817729][ T9585] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1603.827321][T10238] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1603.835404][T10238] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1603.842254][T10238] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1603.857116][ T9585] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1603.865164][ T9585] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1603.872012][ T9585] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1603.880312][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1603.892225][T10238] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1603.907186][ T1469] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1603.921205][T26043] device veth0_vlan entered promiscuous mode
[ 1603.927408][ T1469] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1603.935095][ T1469] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1603.942714][ T1469] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1603.956301][T10238] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1603.965612][T26043] device veth1_macvtap entered promiscuous mode
[ 1603.977611][T10238] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1603.987522][ T9585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1604.466607][T10238] usb 4-1: new high-speed USB device number 123 using dummy_hcd
[ 1604.489894][ T8205] device bridge_slave_1 left promiscuous mode
[ 1604.497557][   T30] audit: type=1326 audit(1718758561.489:7484): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26058 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5a6a582f29 code=0x0
[ 1604.524307][ T8205] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1604.587337][ T8205] device bridge_slave_0 left promiscuous mode
[ 1604.603106][ T8205] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1604.614698][ T8205] device veth1_macvtap left promiscuous mode
[ 1604.620582][ T8205] device veth0_vlan left promiscuous mode
[ 1604.692264][T26063] device syzkaller0 entered promiscuous mode
[ 1604.736382][T10238] usb 4-1: Using ep0 maxpacket: 8
[ 1605.056672][T10238] usb 4-1: New USB device found, idVendor=07c4, idProduct=a109, bcdDevice= f.59
[ 1605.066097][T10238] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1605.074087][T10238] usb 4-1: Product: syz
[ 1605.078993][T10238] usb 4-1: Manufacturer: syz
[ 1605.083524][T10238] usb 4-1: SerialNumber: syz
[ 1605.091659][T10238] usb 4-1: config 0 descriptor??
[ 1605.138290][T10238] ums-datafab 4-1:0.0: USB Mass Storage device detected
[ 1605.168530][T10238] ums-sddr55 4-1:0.0: USB Mass Storage device detected
[ 1605.248972][T10238] Bluetooth: hci0: command 0x1003 tx timeout
[ 1605.258833][T18467] Bluetooth: hci0: sending frame failed (-49)
[ 1605.460488][T26076] loop2: detected capacity change from 0 to 512
[ 1605.499976][T26076] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1605.517551][T26076] EXT4-fs (loop2): 1 orphan inode deleted
[ 1605.523169][T26076] EXT4-fs (loop2): 1 truncate cleaned up
[ 1605.528644][T26076] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nodelalloc,debug_want_extra_isize=0x000000000000002e,inode_readahead_blks=0x0000000000010000,block_validity,quota,. Quota mode: writeback.
[ 1605.716618][  T313] Bluetooth: hci1: command 0x1003 tx timeout
[ 1605.722792][T18467] Bluetooth: hci1: sending frame failed (-49)
[ 1605.993325][T26079] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1606.000622][T26079] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1606.007922][T26079] device bridge_slave_0 entered promiscuous mode
[ 1606.016747][T26079] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1606.023619][T26079] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1606.030847][T26079] device bridge_slave_1 entered promiscuous mode
[ 1606.079883][T26079] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1606.086764][T26079] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1606.093820][T26079] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1606.100622][T26079] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1606.127980][  T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1606.135772][  T330] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1606.144553][  T330] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1606.162910][  T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1606.171319][  T330] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1606.178197][  T330] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1606.185425][  T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1606.193576][  T330] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1606.200441][  T330] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1606.207694][  T330] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1606.224954][  T330] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1606.240100][  T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1606.252516][T26079] device veth0_vlan entered promiscuous mode
[ 1606.261271][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1606.269344][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1606.276666][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1606.291446][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1606.300825][T26079] device veth1_macvtap entered promiscuous mode
[ 1606.313191][  T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1606.327938][ T9585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1606.403081][    T8] device bridge_slave_1 left promiscuous mode
[ 1606.409557][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1606.417154][    T8] device bridge_slave_0 left promiscuous mode
[ 1606.423119][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1606.431067][    T8] device veth1_macvtap left promiscuous mode
[ 1606.437126][    T8] device veth0_vlan left promiscuous mode
[ 1607.046468][ T9585] usb 4-1: USB disconnect, device number 123
[ 1607.130776][T26099] 9pnet: Insufficient options for proto=fd
[ 1607.212236][T26103] syz-executor.1[26103] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1607.212326][T26103] syz-executor.1[26103] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1607.296589][T26105] syz-executor.3[26105] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1607.308322][T26105] syz-executor.3[26105] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1607.326340][  T313] Bluetooth: hci0: command 0x1001 tx timeout
[ 1607.326577][ T1469] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[ 1607.342471][T18467] Bluetooth: hci0: sending frame failed (-49)
[ 1607.384742][T26107] loop1: detected capacity change from 0 to 16
[ 1607.448665][T26107] erofs: (device loop1): mounted with root inode @ nid 36.
[ 1607.796728][T10238] Bluetooth: hci1: command 0x1001 tx timeout
[ 1607.803092][T18467] Bluetooth: hci1: sending frame failed (-49)
[ 1608.186488][ T1469] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1608.197524][ T1469] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1608.207111][ T1469] usb 3-1: New USB device found, idVendor=05ac, idProduct=029c, bcdDevice= 0.00
[ 1608.216201][ T1469] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1608.648613][ T1469] usb 3-1: config 0 descriptor??
[ 1609.287324][ T1469] apple 0003:05AC:029C.0036: unbalanced delimiter at end of report description
[ 1609.291734][ T1470] usb 4-1: new high-speed USB device number 124 using dummy_hcd
[ 1609.299028][ T1469] apple 0003:05AC:029C.0036: parse failed
[ 1609.309275][ T1469] apple: probe of 0003:05AC:029C.0036 failed with error -22
[ 1609.396569][T10238] Bluetooth: hci0: command 0x1009 tx timeout
[ 1609.438877][T26121] loop1: detected capacity change from 0 to 512
[ 1609.480486][T26121] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1609.500375][T26121] EXT4-fs (loop1): 1 orphan inode deleted
[ 1609.505980][T26121] EXT4-fs (loop1): 1 truncate cleaned up
[ 1609.511427][T26121] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,nodelalloc,debug_want_extra_isize=0x000000000000002e,inode_readahead_blks=0x0000000000010000,block_validity,quota,. Quota mode: writeback.
[ 1609.596428][ T1470] usb 4-1: Using ep0 maxpacket: 8
[ 1609.637808][T10238] usb 3-1: USB disconnect, device number 5
[ 1609.886470][T10238] Bluetooth: hci1: command 0x1009 tx timeout
[ 1609.966641][ T1470] usb 4-1: New USB device found, idVendor=07c4, idProduct=a109, bcdDevice= f.59
[ 1609.975533][ T1470] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1609.983331][ T1470] usb 4-1: Product: syz
[ 1609.987331][ T1470] usb 4-1: Manufacturer: syz
[ 1609.991727][ T1470] usb 4-1: SerialNumber: syz
[ 1609.996686][ T1470] usb 4-1: config 0 descriptor??
[ 1610.046802][ T1470] ums-datafab 4-1:0.0: USB Mass Storage device detected
[ 1610.086746][ T1470] ums-sddr55 4-1:0.0: USB Mass Storage device detected
[ 1612.106315][T10238] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[ 1612.346326][T10238] usb 3-1: Using ep0 maxpacket: 8
[ 1612.755660][T10238] usb 3-1: New USB device found, idVendor=07c4, idProduct=a109, bcdDevice= f.59
[ 1612.765177][T10238] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1612.773064][T10238] usb 3-1: Product: syz
[ 1612.777013][T10238] usb 3-1: Manufacturer: syz
[ 1612.781404][T10238] usb 3-1: SerialNumber: syz
[ 1612.787427][T10238] usb 3-1: config 0 descriptor??
[ 1612.792631][ T1470] usb 4-1: USB disconnect, device number 124
[ 1612.793395][T26143] 9pnet: Insufficient options for proto=fd
[ 1612.875396][T26147] loop1: detected capacity change from 0 to 16
[ 1612.884048][T10238] ums-datafab 3-1:0.0: USB Mass Storage device detected
[ 1613.059427][T26147] erofs: (device loop1): mounted with root inode @ nid 36.
[ 1613.083834][T10238] ums-sddr55 3-1:0.0: USB Mass Storage device detected
[ 1613.603411][T26158] syz-executor.1[26158] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1613.603521][T26158] syz-executor.1[26158] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1613.850944][T26164] overlayfs: missing 'lowerdir'
[ 1614.607029][T26166] loop1: detected capacity change from 0 to 16
[ 1614.658317][T26166] erofs: (device loop1): mounted with root inode @ nid 36.
[ 1614.938462][   T60] usb 3-1: USB disconnect, device number 6
[ 1615.893920][T26186] 9pnet: Insufficient options for proto=fd
[ 1615.915984][T26188] loop2: detected capacity change from 0 to 1024
[ 1616.772737][T26196] loop0: detected capacity change from 0 to 512
[ 1616.857834][T26196] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1616.910015][T26188] EXT4-fs (loop2): Quota format mount options ignored when QUOTA feature is enabled
[ 1617.000842][T26196] EXT4-fs (loop0): 1 orphan inode deleted
[ 1617.006485][T26196] EXT4-fs (loop0): 1 truncate cleaned up
[ 1617.011892][T26196] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,nodelalloc,debug_want_extra_isize=0x000000000000002e,inode_readahead_blks=0x0000000000010000,block_validity,quota,. Quota mode: writeback.
[ 1617.035241][T26200] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1617.103708][T26188] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[ 1617.131417][T26200] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1617.138468][T26200] IPv6: NLM_F_CREATE should be set when creating new route
[ 1617.157911][T26188] input: syz1 as /devices/virtual/input/input95
[ 1617.170179][T26200] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1617.240407][T26188] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[ 1617.621197][T26218] overlayfs: missing 'lowerdir'
[ 1618.072504][T26222] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=1 sclass=netlink_tcpdiag_socket pid=26222 comm=syz-executor.3
[ 1618.208523][T26224] syz-executor.4[26224] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1618.208615][T26224] syz-executor.4[26224] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1618.367935][T26228] loop4: detected capacity change from 0 to 16
[ 1618.400746][T26228] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1618.536792][T26232] 9pnet: Insufficient options for proto=fd
[ 1619.317128][T26167] Bluetooth: hci0: command 0x1003 tx timeout
[ 1619.328482][T25869] Bluetooth: hci0: sending frame failed (-49)
[ 1619.599822][T26246] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1619.606981][T26246] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1619.614125][T26246] device bridge_slave_0 entered promiscuous mode
[ 1619.622611][T26246] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1619.629519][T26246] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1619.636643][T26246] device bridge_slave_1 entered promiscuous mode
[ 1619.680718][T26246] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1619.687576][T26246] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1619.694660][T26246] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1619.701461][T26246] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1619.723849][ T1470] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1619.731529][ T1470] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1619.738839][ T1470] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1619.750418][ T1470] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1619.758447][ T1470] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1619.765292][ T1470] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1619.774017][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1619.782244][T26167] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1619.789094][T26167] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1619.807518][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1619.827369][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1619.841923][ T1470] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1619.887713][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1619.895521][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1619.902793][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1619.913363][T26246] device veth0_vlan entered promiscuous mode
[ 1620.031404][ T1470] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1620.097039][T26246] device veth1_macvtap entered promiscuous mode
[ 1620.167341][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1620.179971][ T1470] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1620.226892][ T1980] device bridge_slave_1 left promiscuous mode
[ 1620.233455][ T1980] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1620.243226][ T1980] device bridge_slave_0 left promiscuous mode
[ 1620.249509][ T1980] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1620.257455][ T1980] device veth1_macvtap left promiscuous mode
[ 1620.263346][ T1980] device veth0_vlan left promiscuous mode
[ 1621.064477][T26268] loop4: detected capacity change from 0 to 131072
[ 1621.108492][T26268] F2FS-fs (loop4): QUOTA feature is enabled, so ignore qf_name
[ 1621.117011][T26268] F2FS-fs (loop4): invalid crc value
[ 1621.123512][T26268] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387)
[ 1621.146013][T26268] F2FS-fs (loop4): Mounted with checkpoint version = 753bd00b
[ 1621.396704][   T60] Bluetooth: hci0: command 0x1001 tx timeout
[ 1621.402568][T25869] Bluetooth: hci0: sending frame failed (-49)
[ 1623.441911][T26316] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1623.449373][T26316] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1623.459001][T26316] device bridge_slave_0 entered promiscuous mode
[ 1623.470464][T26316] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1623.478111][T26316] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1623.488582][T26316] device bridge_slave_1 entered promiscuous mode
[ 1623.546761][   T60] Bluetooth: hci0: command 0x1009 tx timeout
[ 1623.747520][T26316] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1623.754432][T26316] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1623.762028][T26316] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1623.769000][T26316] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1623.971211][ T1470] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1623.988624][ T1470] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1623.996198][ T1470] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1624.028833][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1624.041194][ T4524] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1624.048110][ T4524] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1624.080099][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1624.090519][ T4524] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1624.097389][ T4524] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1624.116160][T26335] 9pnet: Insufficient options for proto=fd
[ 1624.127135][ T1470] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1624.135141][ T1470] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1624.183187][ T1470] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1624.221379][ T1470] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1624.230309][ T8205] device bridge_slave_1 left promiscuous mode
[ 1624.236339][ T8205] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1624.245366][ T8205] device bridge_slave_0 left promiscuous mode
[ 1624.251890][ T8205] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1624.264370][ T8205] device veth1_macvtap left promiscuous mode
[ 1624.270531][ T8205] device veth0_vlan left promiscuous mode
[ 1624.923320][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1624.931891][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1624.944968][T26316] device veth0_vlan entered promiscuous mode
[ 1624.951241][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1624.958995][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1624.966947][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1624.976100][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1624.993376][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1625.025527][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1625.042341][T26316] device veth1_macvtap entered promiscuous mode
[ 1625.053265][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1625.061451][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1625.072970][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1625.106334][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1625.114516][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1625.931691][T26363] loop3: detected capacity change from 0 to 128
[ 1626.827901][T26372] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1626.834835][T26372] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1626.842617][T26372] device bridge_slave_0 entered promiscuous mode
[ 1626.849858][T26372] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1626.857272][T26372] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1626.864598][T26372] device bridge_slave_1 entered promiscuous mode
[ 1627.409753][T26372] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1627.416635][T26372] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1627.423837][T26372] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1627.430704][T26372] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1627.453398][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1627.461283][  T362] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1627.468770][  T362] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1627.484464][T10238] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1627.492887][T10238] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1627.499765][T10238] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1627.509978][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1627.518448][  T362] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1627.525290][  T362] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1627.544705][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1627.552746][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1627.569635][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1627.582986][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1627.592098][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1627.601244][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1627.611629][T26372] device veth0_vlan entered promiscuous mode
[ 1627.622161][T10238] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1627.631562][T26372] device veth1_macvtap entered promiscuous mode
[ 1627.643730][T10238] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1627.654528][T10238] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1628.237769][ T8205] device bridge_slave_1 left promiscuous mode
[ 1628.246887][ T8205] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1628.254502][ T8205] device bridge_slave_0 left promiscuous mode
[ 1628.260646][ T8205] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1628.268659][ T8205] device veth1_macvtap left promiscuous mode
[ 1628.275898][ T8205] device veth0_vlan left promiscuous mode
[ 1628.967889][T26401] overlayfs: missing 'lowerdir'
[ 1629.159544][   T20] usb 5-1: new high-speed USB device number 115 using dummy_hcd
[ 1629.406362][   T20] usb 5-1: Using ep0 maxpacket: 8
[ 1629.672116][T26418] loop2: detected capacity change from 0 to 128
[ 1630.046470][   T20] usb 5-1: New USB device found, idVendor=07c4, idProduct=a109, bcdDevice= f.59
[ 1630.059072][   T20] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1630.067286][   T20] usb 5-1: Product: syz
[ 1630.070416][T26424] loop3: detected capacity change from 0 to 1024
[ 1630.071348][   T20] usb 5-1: Manufacturer: syz
[ 1630.081931][   T20] usb 5-1: SerialNumber: syz
[ 1630.087122][   T20] usb 5-1: config 0 descriptor??
[ 1630.087376][T26424] EXT4-fs (loop3): Quota format mount options ignored when QUOTA feature is enabled
[ 1630.103145][T26424] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[ 1630.310909][   T20] ums-datafab 5-1:0.0: USB Mass Storage device detected
[ 1630.348769][T26424] input: syz1 as /devices/virtual/input/input96
[ 1630.409400][T26424] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[ 1630.417077][   T20] ums-sddr55 5-1:0.0: USB Mass Storage device detected
[ 1630.471964][T26435] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1630.478956][T26435] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1630.486723][T26435] device bridge_slave_0 entered promiscuous mode
[ 1630.493576][T26435] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1630.500563][T26435] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1630.507978][T26435] device bridge_slave_1 entered promiscuous mode
[ 1630.564225][T26435] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1630.571093][T26435] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1630.578200][T26435] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1630.584960][T26435] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1630.609973][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1630.618044][   T20] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1630.625238][   T20] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1630.636450][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1630.644420][   T20] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1630.651284][   T20] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1630.660858][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1630.668975][ T4524] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1630.675814][ T4524] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1630.690517][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1630.701898][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1630.717412][ T1469] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1630.727877][ T1469] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1630.736668][T26435] device veth0_vlan entered promiscuous mode
[ 1630.742982][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1630.750294][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1630.764411][T26435] device veth1_macvtap entered promiscuous mode
[ 1630.771319][ T1469] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1630.783182][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1630.793714][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1631.550801][T26449] syz-executor.1[26449] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1631.550970][T26449] syz-executor.1[26449] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1631.955778][ T1469] usb 5-1: USB disconnect, device number 115
[ 1631.979891][ T8205] device bridge_slave_1 left promiscuous mode
[ 1631.985851][ T8205] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1631.994389][ T8205] device bridge_slave_0 left promiscuous mode
[ 1632.000482][ T8205] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1632.008660][ T8205] device veth1_macvtap left promiscuous mode
[ 1632.014492][ T8205] device veth0_vlan left promiscuous mode
[ 1632.238020][T26457] loop1: detected capacity change from 0 to 1024
[ 1632.400957][T26457] EXT4-fs (loop1): Quota format mount options ignored when QUOTA feature is enabled
[ 1632.498511][   T60] Bluetooth: hci0: command 0x1003 tx timeout
[ 1632.513225][T25869] Bluetooth: hci0: sending frame failed (-49)
[ 1632.520475][T26457] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[ 1632.549793][T26457] input: syz1 as /devices/virtual/input/input97
[ 1632.573486][T26462] syz-executor.4[26462] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1632.573538][T26462] syz-executor.4[26462] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1632.611589][T26457] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[ 1632.741260][T26467] loop4: detected capacity change from 0 to 16
[ 1632.788429][T26467] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1633.159135][T26473] loop0: detected capacity change from 0 to 512
[ 1633.258361][T26473] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1633.270269][T26473] EXT4-fs (loop0): 1 orphan inode deleted
[ 1633.275811][T26473] EXT4-fs (loop0): 1 truncate cleaned up
[ 1633.281354][T26473] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,nodelalloc,debug_want_extra_isize=0x000000000000002e,inode_readahead_blks=0x0000000000010000,block_validity,quota,. Quota mode: writeback.
[ 1633.485680][   T30] audit: type=1400 audit(1718758590.469:7485): avc:  denied  { create } for  pid=26475 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1633.655113][T26482] loop2: detected capacity change from 0 to 128
[ 1634.606373][T26167] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[ 1634.613867][  T486] Bluetooth: hci0: command 0x1001 tx timeout
[ 1634.619796][T25869] Bluetooth: hci0: sending frame failed (-49)
[ 1635.517322][T26510] syz-executor.1[26510] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1635.517398][T26510] syz-executor.1[26510] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1635.606344][T26167] usb 3-1: Using ep0 maxpacket: 8
[ 1635.646646][T26518] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1635.653672][T26518] IPv6: NLM_F_CREATE should be set when creating new route
[ 1635.664442][T26518] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=26518 comm=syz-executor.0
[ 1635.678275][   T30] audit: type=1400 audit(1718758592.669:7486): avc:  denied  { read } for  pid=26517 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[ 1635.702253][T26518] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1635.714821][T26518] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1635.715076][T26519] loop1: detected capacity change from 0 to 16
[ 1635.730309][T26518] device bridge_slave_0 left promiscuous mode
[ 1635.736207][T26518] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1635.780398][T26519] erofs: (device loop1): mounted with root inode @ nid 36.
[ 1635.896425][T26167] usb 3-1: New USB device found, idVendor=07c4, idProduct=a109, bcdDevice= f.59
[ 1635.905321][T26167] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1635.913130][T26167] usb 3-1: Product: syz
[ 1635.917087][T26167] usb 3-1: Manufacturer: syz
[ 1635.921490][T26167] usb 3-1: SerialNumber: syz
[ 1635.926491][T26167] usb 3-1: config 0 descriptor??
[ 1636.025930][T26523] loop0: detected capacity change from 0 to 512
[ 1636.091184][T26523] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1636.112392][T26523] EXT4-fs (loop0): 1 orphan inode deleted
[ 1636.113719][T26167] ums-datafab 3-1:0.0: USB Mass Storage device detected
[ 1636.124889][T26523] EXT4-fs (loop0): 1 truncate cleaned up
[ 1636.130446][T26523] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,nodelalloc,debug_want_extra_isize=0x000000000000002e,inode_readahead_blks=0x0000000000010000,block_validity,quota,. Quota mode: writeback.
[ 1636.186746][T26167] ums-sddr55 3-1:0.0: USB Mass Storage device detected
[ 1636.217550][T26167] usb 3-1: USB disconnect, device number 7
[ 1636.525949][T26533] syz-executor.1[26533] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1636.526352][T26533] syz-executor.1[26533] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1636.679002][  T548] Bluetooth: hci0: command 0x1009 tx timeout
[ 1637.353910][T26536] loop2: detected capacity change from 0 to 131072
[ 1637.521868][T26536] F2FS-fs (loop2): QUOTA feature is enabled, so ignore qf_name
[ 1637.535255][T26536] F2FS-fs (loop2): invalid crc value
[ 1637.560325][T26536] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387)
[ 1637.582473][T26536] F2FS-fs (loop2): Mounted with checkpoint version = 753bd00b
[ 1638.786646][T26570] syz-executor.2[26570] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1638.786882][T26570] syz-executor.2[26570] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1639.564553][T26583] loop2: detected capacity change from 0 to 16
[ 1639.637094][T26583] erofs: (device loop2): mounted with root inode @ nid 36.
[ 1639.746411][  T313] usb 2-1: new high-speed USB device number 116 using dummy_hcd
[ 1639.993774][T26590] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1640.000691][T26590] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1640.007852][T26590] device bridge_slave_0 entered promiscuous mode
[ 1640.014637][T26590] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1640.021500][T26590] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1640.028663][T26590] device bridge_slave_1 entered promiscuous mode
[ 1640.072817][T26590] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1640.079706][T26590] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1640.086805][T26590] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1640.093563][T26590] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1640.115267][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1640.123148][  T362] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1640.130580][  T362] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1640.141451][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1640.149395][  T313] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1640.162194][ T4524] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1640.169037][ T4524] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1640.176175][  T313] usb 2-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00
[ 1640.185390][  T313] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1640.193881][  T313] usb 2-1: config 0 descriptor??
[ 1640.207407][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1640.215427][  T362] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1640.222276][  T362] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1640.229727][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1640.237506][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1640.247703][  T313] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[ 1640.253906][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1640.267064][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1640.274840][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1640.282394][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1640.293077][T26590] device veth0_vlan entered promiscuous mode
[ 1640.303446][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1640.313143][T26590] device veth1_macvtap entered promiscuous mode
[ 1640.323043][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1640.335963][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1641.109269][    T8] device bridge_slave_1 left promiscuous mode
[ 1641.135109][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1641.274421][    T8] device bridge_slave_0 left promiscuous mode
[ 1641.280469][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1641.293919][    T8] device veth1_macvtap left promiscuous mode
[ 1641.300072][    T8] device veth0_vlan left promiscuous mode
[ 1642.559965][ T4524] usb 2-1: USB disconnect, device number 116
[ 1642.918051][T26640] loop0: detected capacity change from 0 to 1024
[ 1642.957304][T26640] EXT4-fs (loop0): Quota format mount options ignored when QUOTA feature is enabled
[ 1642.968704][T26640] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[ 1643.020875][T26640] input: syz1 as /devices/virtual/input/input98
[ 1643.292768][T26640] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[ 1643.385050][T26651] loop3: detected capacity change from 0 to 16
[ 1643.559675][T26651] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1644.996402][  T486] usb 5-1: new high-speed USB device number 116 using dummy_hcd
[ 1645.326387][  T313] Bluetooth: hci0: command 0x1003 tx timeout
[ 1645.332414][T25869] Bluetooth: hci0: sending frame failed (-49)
[ 1645.426437][  T486] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1645.439174][  T486] usb 5-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00
[ 1645.447964][  T486] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1645.456231][  T486] usb 5-1: config 0 descriptor??
[ 1645.506701][  T486] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[ 1646.064860][T26695] loop1: detected capacity change from 0 to 512
[ 1646.131381][T26695] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1646.148772][T26695] EXT4-fs (loop1): 1 orphan inode deleted
[ 1646.154362][T26695] EXT4-fs (loop1): 1 truncate cleaned up
[ 1646.159835][T26695] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,nodelalloc,debug_want_extra_isize=0x000000000000002e,inode_readahead_blks=0x0000000000010000,block_validity,quota,. Quota mode: writeback.
[ 1646.450227][T26697] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[ 1646.464749][T26697] EXT4-fs (loop1): Remounting filesystem read-only
[ 1646.909198][T26703] overlayfs: missing 'lowerdir'
[ 1647.689672][  T362] Bluetooth: hci0: command 0x1001 tx timeout
[ 1647.695577][T25869] Bluetooth: hci0: sending frame failed (-49)
[ 1647.714172][T26708] loop3: detected capacity change from 0 to 1024
[ 1647.757358][T26708] EXT4-fs (loop3): Quota format mount options ignored when QUOTA feature is enabled
[ 1647.781288][T26708] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[ 1647.811823][T26708] syz-executor.3[26708] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1647.811897][T26708] syz-executor.3[26708] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1647.905264][T26708] input: syz1 as /devices/virtual/input/input99
[ 1647.984501][ T4524] usb 5-1: USB disconnect, device number 116
[ 1648.477823][T26708] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[ 1649.656331][T26736] device syzkaller0 entered promiscuous mode
[ 1649.716343][ T1469] Bluetooth: hci0: command 0x1009 tx timeout
[ 1650.088962][T26749] loop2: detected capacity change from 0 to 512
[ 1650.207193][T26749] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1650.287285][T26749] EXT4-fs (loop2): 1 orphan inode deleted
[ 1650.292906][T26749] EXT4-fs (loop2): 1 truncate cleaned up
[ 1650.298365][T26749] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nodelalloc,debug_want_extra_isize=0x000000000000002e,inode_readahead_blks=0x0000000000010000,block_validity,quota,. Quota mode: writeback.
[ 1650.516344][  T313] Bluetooth: hci1: command 0x1003 tx timeout
[ 1650.522481][T18467] Bluetooth: hci1: sending frame failed (-49)
[ 1651.401851][T26746] loop1: detected capacity change from 0 to 131072
[ 1651.458895][T26746] F2FS-fs (loop1): QUOTA feature is enabled, so ignore qf_name
[ 1651.468998][T26746] F2FS-fs (loop1): invalid crc value
[ 1651.476153][T26746] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387)
[ 1651.505162][T26746] F2FS-fs (loop1): Mounted with checkpoint version = 753bd00b
[ 1652.352135][T26774] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1652.356727][T26775] loop2: detected capacity change from 0 to 1024
[ 1652.378882][T26777] device syzkaller0 entered promiscuous mode
[ 1652.398747][T26775] EXT4-fs (loop2): Quota format mount options ignored when QUOTA feature is enabled
[ 1652.410726][T26775] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[ 1652.442275][T26775] syz-executor.2[26775] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1652.442341][T26775] syz-executor.2[26775] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1652.464030][T26775] input: syz1 as /devices/virtual/input/input100
[ 1652.490071][T26775] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[ 1652.596354][  T486] Bluetooth: hci1: command 0x1001 tx timeout
[ 1652.602288][   T47] Bluetooth: hci1: sending frame failed (-49)
[ 1653.804025][T26792] loop4: detected capacity change from 0 to 512
[ 1653.879720][T26792] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1653.957410][T26792] EXT4-fs (loop4): 1 orphan inode deleted
[ 1653.963095][T26792] EXT4-fs (loop4): 1 truncate cleaned up
[ 1653.968599][T26792] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nodelalloc,debug_want_extra_isize=0x000000000000002e,inode_readahead_blks=0x0000000000010000,block_validity,quota,. Quota mode: writeback.
[ 1654.516359][  T486] Bluetooth: hci2: command 0x1003 tx timeout
[ 1654.522667][ T6205] Bluetooth: hci2: sending frame failed (-49)
[ 1654.676340][  T486] Bluetooth: hci1: command 0x1009 tx timeout
[ 1655.840479][T26822] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=1 sclass=netlink_tcpdiag_socket pid=26822 comm=syz-executor.4
[ 1656.054176][T26826] 9pnet: Insufficient options for proto=fd
[ 1656.596359][  T486] Bluetooth: hci2: command 0x1001 tx timeout
[ 1656.602277][ T6205] Bluetooth: hci2: sending frame failed (-49)
[ 1656.622864][T26832] loop1: detected capacity change from 0 to 1024
[ 1656.647551][T26832] EXT4-fs (loop1): Quota format mount options ignored when QUOTA feature is enabled
[ 1656.659587][T26832] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[ 1656.689682][T26832] input: syz1 as /devices/virtual/input/input101
[ 1656.760017][   T47] Bluetooth: hci0: sending frame failed (-49)
[ 1656.766967][T26832] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[ 1659.067073][T10238] Bluetooth: hci2: command 0x1009 tx timeout
[ 1659.073019][T10238] Bluetooth: hci0: command 0x1003 tx timeout
[ 1659.078869][   T30] audit: type=1326 audit(1718758616.059:7487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26858 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe97f2cef29 code=0x0
[ 1659.102212][T25869] Bluetooth: hci0: sending frame failed (-49)
[ 1659.255638][T26869] overlayfs: failed to resolve './file2': -2
[ 1661.440020][T26895] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=1 sclass=netlink_tcpdiag_socket pid=26895 comm=syz-executor.4
[ 1662.718575][ T1469] Bluetooth: hci0: command 0x1001 tx timeout
[ 1662.724498][T18467] Bluetooth: hci0: sending frame failed (-49)
[ 1663.079762][T26910] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=1 sclass=netlink_tcpdiag_socket pid=26910 comm=syz-executor.0
[ 1664.757838][ T4524] Bluetooth: hci0: command 0x1009 tx timeout
[ 1665.186831][   T30] audit: type=1326 audit(1718758622.149:7488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26954 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe97f2cef29 code=0x0
[ 1665.486602][T26966] device syzkaller0 entered promiscuous mode
[ 1666.206391][T26978] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1666.231565][T26978] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=26978 comm=syz-executor.2
[ 1666.245012][T26978] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1667.367906][T26995] fuse: Bad value for 'fd'
[ 1667.442231][T26998] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1667.471845][T26998] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=26998 comm=syz-executor.3
[ 1667.495238][T26998] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1668.487218][T27015] device syzkaller0 entered promiscuous mode
[ 1668.662818][T27018] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=1 sclass=netlink_tcpdiag_socket pid=27018 comm=syz-executor.1
[ 1669.256607][T27017] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1669.306836][T27003] loop0: detected capacity change from 0 to 40427
[ 1669.314896][T27017] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=27017 comm=syz-executor.3
[ 1669.328490][T27017] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1669.382936][T27003] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1669.594007][T27003] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1669.622948][T27003] attempt to access beyond end of device
[ 1669.622948][T27003] loop0: rw=2049, want=53384, limit=40427
[ 1669.638544][T26435] attempt to access beyond end of device
[ 1669.638544][T26435] loop0: rw=2049, want=45112, limit=40427
[ 1669.695006][T27037] syz-executor.1[27037] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1669.695140][T27037] syz-executor.1[27037] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1669.840511][T27040] loop0: detected capacity change from 0 to 1024
[ 1669.887850][T27040] EXT4-fs (loop0): Quota format mount options ignored when QUOTA feature is enabled
[ 1669.902873][T27040] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[ 1669.940658][T27040] input: syz1 as /devices/virtual/input/input102
[ 1670.003882][T27040] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[ 1670.179879][T27045] fuse: Bad value for 'fd'
[ 1670.506139][   T30] audit: type=1326 audit(1718758627.489:7489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27051 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa112f40f29 code=0x0
[ 1670.744405][T27059] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1670.751674][T27059] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1670.760391][T27059] device bridge_slave_0 entered promiscuous mode
[ 1670.775965][T27059] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1670.783306][T27059] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1670.795681][T27059] device bridge_slave_1 entered promiscuous mode
[ 1670.838388][    T8] device bridge_slave_1 left promiscuous mode
[ 1670.844727][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1670.853180][    T8] device bridge_slave_0 left promiscuous mode
[ 1670.859751][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1670.874206][    T8] device veth1_macvtap left promiscuous mode
[ 1670.880979][    T8] device veth0_vlan left promiscuous mode
[ 1671.153772][T27065] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1671.172884][T27065] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=27065 comm=syz-executor.2
[ 1671.210343][T27059] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1671.217256][T27059] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1671.224348][T27059] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1671.231117][T27059] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1671.251720][T27069] device syzkaller0 entered promiscuous mode
[ 1671.258503][T27065] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1671.291986][  T548] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1671.299786][  T548] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1671.307593][  T548] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1671.582625][  T548] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1671.590692][  T548] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1671.597537][  T548] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1671.604731][  T548] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1671.612767][  T548] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1671.619605][  T548] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1671.634788][  T548] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1671.643393][  T548] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1671.651334][  T548] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1671.659365][  T548] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1671.686123][  T486] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1671.694650][  T486] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1671.708759][T27059] device veth0_vlan entered promiscuous mode
[ 1671.715503][  T548] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1671.723620][  T548] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1671.746473][  T548] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1671.757916][  T548] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1671.765347][  T548] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1671.773526][  T548] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1671.783726][T27059] device veth1_macvtap entered promiscuous mode
[ 1671.796822][  T548] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1671.804658][  T548] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1671.839547][  T548] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1671.900274][  T548] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1671.926861][  T548] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1672.057457][  T313] Bluetooth: hci0: command 0x1003 tx timeout
[ 1672.063455][T18467] Bluetooth: hci0: sending frame failed (-49)
[ 1672.288211][T27085] fuse: Bad value for 'fd'
[ 1673.037608][T27101] syz-executor.3[27101] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1673.037690][T27101] syz-executor.3[27101] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1674.116705][  T548] Bluetooth: hci0: command 0x1001 tx timeout
[ 1674.176396][T18467] Bluetooth: hci0: sending frame failed (-49)
[ 1674.376320][  T313] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[ 1674.442451][T27124] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=1 sclass=netlink_tcpdiag_socket pid=27124 comm=syz-executor.4
[ 1674.666374][  T313] usb 3-1: Using ep0 maxpacket: 8
[ 1675.026943][  T313] usb 3-1: New USB device found, idVendor=07c4, idProduct=a109, bcdDevice= f.59
[ 1675.046804][  T313] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1675.058215][T27134] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=1 sclass=netlink_tcpdiag_socket pid=27134 comm=syz-executor.1
[ 1675.071369][  T313] usb 3-1: Product: syz
[ 1675.075416][  T313] usb 3-1: Manufacturer: syz
[ 1675.079948][  T313] usb 3-1: SerialNumber: syz
[ 1675.088167][  T313] usb 3-1: config 0 descriptor??
[ 1675.147965][  T313] ums-datafab 3-1:0.0: USB Mass Storage device detected
[ 1675.158015][  T313] ums-sddr55 3-1:0.0: USB Mass Storage device detected
[ 1675.808811][T27146] device syzkaller0 entered promiscuous mode
[ 1676.196336][ T4524] Bluetooth: hci0: command 0x1009 tx timeout
[ 1676.274358][T27155] overlayfs: missing 'lowerdir'
[ 1676.807491][T27159] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1676.814352][T27159] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1676.821510][T27159] device bridge_slave_0 entered promiscuous mode
[ 1676.828318][T27159] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1676.835146][T27159] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1676.842669][T27159] device bridge_slave_1 entered promiscuous mode
[ 1676.909134][T27158] overlayfs: failed to resolve './file2': -2
[ 1676.958941][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1676.968384][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1676.981155][ T9585] usb 3-1: USB disconnect, device number 8
[ 1676.987624][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1677.002042][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1677.017250][ T4524] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1677.024110][ T4524] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1677.041500][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1677.050198][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1677.058368][ T4524] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1677.065205][ T4524] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1677.072494][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1677.086695][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1677.095840][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1677.127352][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1677.140943][T27159] device veth0_vlan entered promiscuous mode
[ 1677.147403][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1677.155272][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1677.166483][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1677.183354][T27159] device veth1_macvtap entered promiscuous mode
[ 1677.190300][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1677.203379][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1677.223040][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1677.267470][    T8] device bridge_slave_1 left promiscuous mode
[ 1677.273464][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1677.280703][    T8] device bridge_slave_0 left promiscuous mode
[ 1677.286727][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1677.294344][    T8] device veth1_macvtap left promiscuous mode
[ 1677.300223][    T8] device veth0_vlan left promiscuous mode
[ 1677.941247][T27183] device syzkaller0 entered promiscuous mode
[ 1679.257466][T27201] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1679.264322][T27201] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1679.271600][T27201] device bridge_slave_0 entered promiscuous mode
[ 1679.280645][T27201] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1679.287508][T27201] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1679.294663][T27201] device bridge_slave_1 entered promiscuous mode
[ 1679.349964][T27201] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1679.356834][T27201] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1679.363933][T27201] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1679.370720][T27201] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1679.393024][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1679.400447][T26167] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1679.408204][T26167] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1679.419130][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1679.427180][  T313] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1679.434007][  T313] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1679.453417][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1679.463480][  T313] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1679.470367][  T313] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1679.584948][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1679.618426][  T486] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1679.660502][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1679.675152][  T486] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1679.683038][  T486] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1679.690592][  T486] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1679.701594][T27201] device veth0_vlan entered promiscuous mode
[ 1679.713597][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1679.723422][T27201] device veth1_macvtap entered promiscuous mode
[ 1679.734784][  T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1679.749570][ T9585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1679.797190][    T8] device bridge_slave_1 left promiscuous mode
[ 1679.803209][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1679.811439][    T8] device bridge_slave_0 left promiscuous mode
[ 1679.817544][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1679.825826][    T8] device veth1_macvtap left promiscuous mode
[ 1679.836379][    T8] device veth0_vlan left promiscuous mode
[ 1679.970953][T27217] loop3: detected capacity change from 0 to 40427
[ 1680.035973][T27217] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1680.059515][T27217] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1680.082829][T27217] attempt to access beyond end of device
[ 1680.082829][T27217] loop3: rw=2049, want=53384, limit=40427
[ 1680.099644][T27201] attempt to access beyond end of device
[ 1680.099644][T27201] loop3: rw=2049, want=45112, limit=40427
[ 1680.476377][ T9585] usb 2-1: new high-speed USB device number 117 using dummy_hcd
[ 1681.006407][ T9585] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1681.017351][ T9585] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1681.034160][ T9585] usb 2-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00
[ 1681.051850][ T9585] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1681.069045][ T9585] usb 2-1: config 0 descriptor??
[ 1681.173465][T27241] loop0: detected capacity change from 0 to 131072
[ 1681.207186][T27241] F2FS-fs (loop0): QUOTA feature is enabled, so ignore qf_name
[ 1681.217237][T27241] F2FS-fs (loop0): invalid crc value
[ 1681.223709][T27247] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1681.226396][T27241] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387)
[ 1681.230722][T27247] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1681.248771][T27247] device bridge_slave_0 entered promiscuous mode
[ 1681.255909][T27247] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1681.262121][T27241] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b
[ 1681.263187][T27247] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1681.277705][T27247] device bridge_slave_1 entered promiscuous mode
[ 1681.350641][T27247] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1681.357518][T27247] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1681.364639][T27247] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1681.371401][T27247] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1681.398171][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1681.429080][  T313] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1681.438293][  T313] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1681.468360][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1681.529762][  T313] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1681.536638][  T313] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1681.543890][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1681.552212][  T313] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1681.559085][  T313] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1681.566352][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1681.574240][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1681.594615][T27247] device veth0_vlan entered promiscuous mode
[ 1681.597532][T27257] loop4: detected capacity change from 0 to 40427
[ 1681.601968][  T486] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1681.616490][  T486] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1681.625673][  T486] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1681.633919][  T486] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1681.791280][    T8] device bridge_slave_1 left promiscuous mode
[ 1681.800087][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1681.808488][    T8] device bridge_slave_0 left promiscuous mode
[ 1681.814622][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1681.822827][    T8] device veth1_macvtap left promiscuous mode
[ 1681.828728][    T8] device veth0_vlan left promiscuous mode
[ 1681.835071][T27257] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1681.857722][T27268] 9pnet: Could not find request transport: fd0x0000000000000003
[ 1681.876132][T27257] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1681.915298][T27257] attempt to access beyond end of device
[ 1681.915298][T27257] loop4: rw=2049, want=53384, limit=40427
[ 1681.952219][T26316] attempt to access beyond end of device
[ 1681.952219][T26316] loop4: rw=2049, want=45112, limit=40427
[ 1682.201518][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1682.227594][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1682.237874][T27247] device veth1_macvtap entered promiscuous mode
[ 1682.249732][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1682.250595][T27275] loop4: detected capacity change from 0 to 1024
[ 1682.257675][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1682.271474][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1682.284360][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1682.289025][T27275] EXT4-fs (loop4): Quota format mount options ignored when QUOTA feature is enabled
[ 1682.292576][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1682.335513][T27275] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[ 1682.366897][T27275] input: syz1 as /devices/virtual/input/input103
[ 1682.413926][T27285] overlayfs: missing 'lowerdir'
[ 1682.428717][T27275] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[ 1683.336385][ T9585] usbhid 2-1:0.0: can't add hid device: -71
[ 1683.342121][ T9585] usbhid: probe of 2-1:0.0 failed with error -71
[ 1683.579146][ T9585] usb 2-1: USB disconnect, device number 117
[ 1683.606657][T27302] 9pnet: Could not find request transport: fd0x0000000000000003
[ 1683.651717][T27303] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1683.658721][T27303] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1683.665850][T27303] device bridge_slave_0 entered promiscuous mode
[ 1683.674632][T27303] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1683.681609][T27303] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1683.688789][T27303] device bridge_slave_1 entered promiscuous mode
[ 1683.736776][T27303] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1683.743625][T27303] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1683.750738][T27303] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1683.757527][T27303] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1683.781504][ T9585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1683.788889][ T9585] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1683.796020][ T9585] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1683.808123][  T486] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1683.816481][  T486] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1683.823322][  T486] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1683.837262][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1683.845294][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1683.852150][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1683.859405][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1683.870914][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1683.886437][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1683.898894][T27303] device veth0_vlan entered promiscuous mode
[ 1683.905770][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1683.913890][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1683.921269][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1683.937733][T27303] device veth1_macvtap entered promiscuous mode
[ 1683.945671][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1683.960221][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1683.974915][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1683.987022][    T8] device bridge_slave_1 left promiscuous mode
[ 1683.993733][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1684.001299][    T8] device bridge_slave_0 left promiscuous mode
[ 1684.007546][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1684.015735][    T8] device veth1_macvtap left promiscuous mode
[ 1684.021801][    T8] device veth0_vlan left promiscuous mode
[ 1684.436490][T10238] Bluetooth: hci0: command 0x1003 tx timeout
[ 1684.443077][T18467] Bluetooth: hci0: sending frame failed (-49)
[ 1684.591826][T27329] overlayfs: missing 'lowerdir'
[ 1685.566592][T10238] usb 2-1: new high-speed USB device number 118 using dummy_hcd
[ 1685.822890][T27345] syz-executor.3[27345] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1685.822974][T27345] syz-executor.3[27345] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1685.836346][T10238] usb 2-1: Using ep0 maxpacket: 8
[ 1686.051862][T27347] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1686.058842][T27347] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1686.066001][T27347] device bridge_slave_0 entered promiscuous mode
[ 1686.072743][T27347] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1686.079673][T27347] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1686.086831][T27347] device bridge_slave_1 entered promiscuous mode
[ 1686.130703][T27347] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1686.137607][T27347] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1686.144680][T27347] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1686.151452][T27347] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1686.173504][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1686.181166][   T60] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1686.188610][   T60] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1686.196536][T10238] usb 2-1: New USB device found, idVendor=07c4, idProduct=a109, bcdDevice= f.59
[ 1686.205501][T10238] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1686.213337][T10238] usb 2-1: Product: syz
[ 1686.217398][T10238] usb 2-1: Manufacturer: syz
[ 1686.221739][T10238] usb 2-1: SerialNumber: syz
[ 1686.226842][T10238] usb 2-1: config 0 descriptor??
[ 1686.230272][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1686.239804][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1686.246682][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1686.283707][T27347] device veth0_vlan entered promiscuous mode
[ 1686.298778][T10238] ums-datafab 2-1:0.0: USB Mass Storage device detected
[ 1686.301792][T27347] device veth1_macvtap entered promiscuous mode
[ 1686.319090][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1686.333252][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1686.341436][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1686.348958][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1686.356787][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1686.365115][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1686.376251][   T20] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1686.383118][   T20] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1686.390706][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1686.397516][T10238] ums-sddr55 2-1:0.0: USB Mass Storage device detected
[ 1686.407344][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1686.421683][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1686.430669][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1686.523941][ T4524] Bluetooth: hci0: command 0x1001 tx timeout
[ 1686.530295][T18467] Bluetooth: hci0: sending frame failed (-49)
[ 1686.680596][T27362] overlayfs: missing 'lowerdir'
[ 1687.119472][    T8] device bridge_slave_1 left promiscuous mode
[ 1687.125873][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1687.210470][    T8] device veth1_macvtap left promiscuous mode
[ 1687.216483][    T8] device veth0_vlan left promiscuous mode
[ 1687.519402][T27374] overlayfs: missing 'lowerdir'
[ 1687.706342][ T4524] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[ 1688.043745][ T4524] usb 3-1: Using ep0 maxpacket: 8
[ 1688.145803][  T313] usb 2-1: USB disconnect, device number 118
[ 1688.186422][ T4524] usb 3-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[ 1688.196794][ T4524] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1688.209685][ T4524] usb 3-1: New USB device found, idVendor=2179, idProduct=0077, bcdDevice= 0.00
[ 1688.219143][ T4524] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1688.227794][ T4524] usb 3-1: config 0 descriptor??
[ 1688.234656][T27383] overlayfs: missing 'lowerdir'
[ 1688.266663][ T4524] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[ 1688.596379][ T4524] Bluetooth: hci0: command 0x1009 tx timeout
[ 1689.599197][T27393] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1689.606153][T27393] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1689.613317][T27393] device bridge_slave_0 entered promiscuous mode
[ 1689.620151][T27393] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1689.627256][T27393] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1689.634509][T27393] device bridge_slave_1 entered promiscuous mode
[ 1689.677253][T27393] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1689.684109][T27393] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1689.691226][T27393] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1689.697995][T27393] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1689.721084][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1689.728632][  T313] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1689.735756][  T313] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1689.752396][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1689.760461][  T313] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1689.767302][  T313] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1689.774472][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1689.782460][  T313] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1689.789303][  T313] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1689.807244][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1689.815402][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1689.823298][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1689.830552][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1689.838282][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1689.846117][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1689.857278][T27393] device veth0_vlan entered promiscuous mode
[ 1689.870844][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1689.880699][T27393] device veth1_macvtap entered promiscuous mode
[ 1689.891948][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1689.905695][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1689.972491][T27400] syz-executor.3[27400] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1689.972566][T27400] syz-executor.3[27400] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1690.572673][ T4524] usb 3-1: USB disconnect, device number 9
[ 1691.304256][   T45] device bridge_slave_1 left promiscuous mode
[ 1691.310952][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1691.376415][   T45] device bridge_slave_0 left promiscuous mode
[ 1691.406550][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1691.419964][   T45] device veth1_macvtap left promiscuous mode
[ 1691.426062][   T45] device veth0_vlan left promiscuous mode
[ 1691.704878][T27427] syz-executor.3[27427] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1691.705186][T27427] syz-executor.3[27427] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1691.729205][T27427] overlayfs: failed to resolve './file0': -2
[ 1691.902990][T27429] overlayfs: missing 'lowerdir'
[ 1692.001758][T27436] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1692.064171][T27439] syz-executor.1[27439] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1692.064227][T27439] syz-executor.1[27439] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1692.486322][ T4524] usb 2-1: new high-speed USB device number 119 using dummy_hcd
[ 1692.796416][ T4524] usb 2-1: Using ep0 maxpacket: 8
[ 1692.990854][ T4524] usb 2-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[ 1693.001047][ T4524] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1693.017580][ T4524] usb 2-1: New USB device found, idVendor=2179, idProduct=0077, bcdDevice= 0.00
[ 1693.026489][ T4524] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1693.035041][ T4524] usb 2-1: config 0 descriptor??
[ 1693.088677][ T4524] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[ 1693.393884][T27467] overlayfs: missing 'lowerdir'
[ 1694.165181][T27482] syz-executor.2[27482] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1694.165258][T27482] syz-executor.2[27482] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1694.178506][T27482] overlayfs: failed to resolve './file1': -2
[ 1694.585378][T27486] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=1 sclass=netlink_tcpdiag_socket pid=27486 comm=syz-executor.3
[ 1694.979336][T27496] loop0: detected capacity change from 0 to 16
[ 1695.022803][T27496] erofs: (device loop0): mounted with root inode @ nid 36.
[ 1695.129132][   T20] usb 2-1: USB disconnect, device number 119
[ 1695.145492][T27498] loop1: detected capacity change from 0 to 1024
[ 1695.167238][T27498] EXT4-fs (loop1): Quota format mount options ignored when QUOTA feature is enabled
[ 1695.178508][T27498] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[ 1695.208110][T27498] input: syz1 as /devices/virtual/input/input104
[ 1695.268620][T27498] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[ 1695.727300][T27507] overlayfs: missing 'lowerdir'
[ 1696.050154][T27515] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[ 1696.058972][T27515] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1696.856843][T27531] syz-executor.0[27531] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1696.857210][T27531] syz-executor.0[27531] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1696.876907][T27531] overlayfs: failed to resolve './file1': -2
[ 1697.173640][T27533] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1697.183112][T27533] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1697.190161][T27533] IPv6: NLM_F_CREATE should be set when creating new route
[ 1697.197858][T27533] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=27533 comm=syz-executor.3
[ 1697.211154][T27533] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1697.326328][  T486] Bluetooth: hci0: command 0x1003 tx timeout
[ 1697.332323][T18467] Bluetooth: hci0: sending frame failed (-49)
[ 1697.585949][T27541] device syzkaller0 entered promiscuous mode
[ 1697.665372][  T486] usb 4-1: new high-speed USB device number 125 using dummy_hcd
[ 1697.790558][T27546] loop0: detected capacity change from 0 to 16
[ 1697.891485][T27546] erofs: (device loop0): mounted with root inode @ nid 36.
[ 1697.926486][  T486] usb 4-1: Using ep0 maxpacket: 8
[ 1698.056372][  T486] usb 4-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[ 1698.066520][  T486] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1698.079136][  T486] usb 4-1: New USB device found, idVendor=2179, idProduct=0077, bcdDevice= 0.00
[ 1698.087993][  T486] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1698.096264][  T486] usb 4-1: config 0 descriptor??
[ 1698.156746][  T486] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[ 1698.339631][T27548] loop4: detected capacity change from 0 to 40427
[ 1698.379285][T27548] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1698.444312][T27548] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1698.462454][T27548] attempt to access beyond end of device
[ 1698.462454][T27548] loop4: rw=2049, want=53384, limit=40427
[ 1698.489120][T26316] attempt to access beyond end of device
[ 1698.489120][T26316] loop4: rw=2049, want=45112, limit=40427
[ 1699.439815][  T486] Bluetooth: hci0: command 0x1001 tx timeout
[ 1699.445854][T18467] Bluetooth: hci0: sending frame failed (-49)
[ 1699.451035][T27567] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1699.465548][T27567] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=27567 comm=syz-executor.4
[ 1699.479562][T27567] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1699.602061][   T30] audit: type=1326 audit(1718758656.589:7490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27570 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd423633f29 code=0x0
[ 1699.827527][T27569] loop2: detected capacity change from 0 to 131072
[ 1700.076079][T27581] syz-executor.0[27581] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1700.076161][T27581] syz-executor.0[27581] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1700.088964][T27581] overlayfs: failed to resolve './file1': -2
[ 1700.123365][T27569] F2FS-fs (loop2): QUOTA feature is enabled, so ignore qf_name
[ 1700.136811][T27569] F2FS-fs (loop2): invalid crc value
[ 1700.164150][T27569] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387)
[ 1700.280212][T27569] F2FS-fs (loop2): Mounted with checkpoint version = 753bd00b
[ 1700.292177][   T20] usb 4-1: USB disconnect, device number 125
[ 1700.386430][  T486] usb 5-1: new high-speed USB device number 117 using dummy_hcd
[ 1700.636349][  T486] usb 5-1: Using ep0 maxpacket: 8
[ 1700.643928][T27599] loop0: detected capacity change from 0 to 40427
[ 1700.699269][T27599] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1700.721487][T27599] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1700.739310][T27599] attempt to access beyond end of device
[ 1700.739310][T27599] loop0: rw=2049, want=53384, limit=40427
[ 1700.754726][T27347] attempt to access beyond end of device
[ 1700.754726][T27347] loop0: rw=2049, want=45112, limit=40427
[ 1700.982056][T27607] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=1 sclass=netlink_tcpdiag_socket pid=27607 comm=syz-executor.0
[ 1700.999361][  T486] usb 5-1: New USB device found, idVendor=07c4, idProduct=a109, bcdDevice= f.59
[ 1701.008640][  T486] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1701.016708][  T486] usb 5-1: Product: syz
[ 1701.021012][  T486] usb 5-1: Manufacturer: syz
[ 1701.025521][  T486] usb 5-1: SerialNumber: syz
[ 1701.033949][  T486] usb 5-1: config 0 descriptor??
[ 1701.086790][  T486] ums-datafab 5-1:0.0: USB Mass Storage device detected
[ 1701.136833][  T486] ums-sddr55 5-1:0.0: USB Mass Storage device detected
[ 1701.476340][  T486] Bluetooth: hci0: command 0x1009 tx timeout
[ 1701.491309][T27615] syz-executor.2[27615] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1701.491528][T27615] syz-executor.2[27615] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1702.338185][   T30] audit: type=1326 audit(1718758659.329:7491): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27621 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f81fc354f29 code=0x0
[ 1702.627037][T27626] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1702.637812][T27626] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=27626 comm=syz-executor.0
[ 1702.651024][T27626] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1702.685654][   T20] usb 5-1: USB disconnect, device number 117
[ 1703.056338][T10238] usb 1-1: new high-speed USB device number 119 using dummy_hcd
[ 1703.296364][T10238] usb 1-1: Using ep0 maxpacket: 8
[ 1703.331920][T27638] loop2: detected capacity change from 0 to 131072
[ 1703.377207][T27638] F2FS-fs (loop2): QUOTA feature is enabled, so ignore qf_name
[ 1703.385524][T27638] F2FS-fs (loop2): invalid crc value
[ 1703.392394][T27638] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387)
[ 1703.412858][T27638] F2FS-fs (loop2): Mounted with checkpoint version = 753bd00b
[ 1703.416406][T10238] usb 1-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[ 1703.430472][T10238] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1703.443323][T10238] usb 1-1: New USB device found, idVendor=2179, idProduct=0077, bcdDevice= 0.00
[ 1703.452322][T10238] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1703.460834][T10238] usb 1-1: config 0 descriptor??
[ 1703.541037][T10238] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[ 1703.673938][T27652] overlayfs: failed to resolve './file0': -2
[ 1704.044334][T27656] syz-executor.2[27656] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1704.044714][T27656] syz-executor.2[27656] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1704.488044][T27662] syz-executor.4[27662] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1704.500164][T27662] syz-executor.4[27662] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1705.380152][T27674] overlayfs: missing 'workdir'
[ 1705.702503][ T4524] usb 1-1: USB disconnect, device number 119
[ 1706.059438][T27688] overlayfs: missing 'lowerdir'
[ 1706.700580][T27703] syz-executor.2[27703] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1706.700660][T27703] syz-executor.2[27703] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1706.799945][T27701] syz-executor.0[27701] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1706.811731][T27701] syz-executor.0[27701] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1708.442562][T27740] syz-executor.1[27740] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1708.454961][T27740] syz-executor.1[27740] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1708.631075][T27747] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1709.349120][T27766] loop3: detected capacity change from 0 to 16
[ 1709.388613][T27766] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1710.622978][T27799] syz-executor.2[27799] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1710.623547][T27799] syz-executor.2[27799] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1711.401411][T27804] overlayfs: missing 'lowerdir'
[ 1711.420026][T27806] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=1 sclass=netlink_tcpdiag_socket pid=27806 comm=syz-executor.4
[ 1712.873989][T27837] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=1 sclass=netlink_tcpdiag_socket pid=27837 comm=syz-executor.0
[ 1713.226660][T27845] syz-executor.2[27845] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1713.226983][T27845] syz-executor.2[27845] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1713.744048][T27849] syz-executor.4[27849] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1713.755749][T27849] syz-executor.4[27849] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1713.901365][T27861] overlayfs: missing 'lowerdir'
[ 1714.492324][T27869] overlayfs: missing 'lowerdir'
[ 1714.498497][T27871] overlayfs: missing 'lowerdir'
[ 1716.156628][T27908] syz-executor.2[27908] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1716.156774][T27908] syz-executor.2[27908] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1716.284764][T27909] overlayfs: missing 'lowerdir'
[ 1716.892795][T27920] syz-executor.0[27920] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1716.892875][T27920] syz-executor.0[27920] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1717.173687][T27932] overlayfs: missing 'lowerdir'
[ 1718.210341][T27954] overlayfs: missing 'lowerdir'
[ 1718.383930][T27955] overlayfs: failed to resolve './file2': -2
[ 1719.601885][T27963] loop1: detected capacity change from 0 to 16
[ 1719.668708][T27963] erofs: (device loop1): mounted with root inode @ nid 36.
[ 1719.946323][  T486] usb 1-1: new high-speed USB device number 120 using dummy_hcd
[ 1720.126654][T27975] syz-executor.4[27975] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1720.126735][T27975] syz-executor.4[27975] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1720.364419][T27993] loop4: detected capacity change from 0 to 256
[ 1720.382235][  T486] usb 1-1: Using ep0 maxpacket: 8
[ 1720.398557][T27993] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1720.408593][T27996] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1720.408783][T27993] FAT-fs (loop4): Filesystem has been set read-only
[ 1720.436338][T27993] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1720.450054][T27992] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1720.462368][T27993] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1720.472498][T27992] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1720.484379][T27993] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1720.494470][T27992] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1720.512937][T27993] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1720.530594][T27992] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1720.540671][T27993] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1720.562853][T27993] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[ 1720.584733][T28001] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1720.586873][T28008] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1720.591779][T28001] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1720.600695][T28008] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1720.608095][T28001] device bridge_slave_0 entered promiscuous mode
[ 1720.622790][T28008] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1720.640176][T28001] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1720.648822][T28001] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1720.656694][T28001] device bridge_slave_1 entered promiscuous mode
[ 1720.665374][T28016] loop4: detected capacity change from 0 to 16
[ 1720.671995][  T486] usb 1-1: New USB device found, idVendor=07c4, idProduct=a109, bcdDevice= f.59
[ 1720.735597][  T486] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1720.744041][T28016] erofs: (device loop4): erofs_read_inode: unsupported chunk format ffff of nid 36
[ 1720.753208][  T486] usb 1-1: Product: syz
[ 1720.758719][  T486] usb 1-1: Manufacturer: syz
[ 1720.763157][  T486] usb 1-1: SerialNumber: syz
[ 1720.769968][  T486] usb 1-1: config 0 descriptor??
[ 1720.812085][  T486] ums-datafab 1-1:0.0: USB Mass Storage device detected
[ 1721.082605][T10238] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1721.091031][  T486] ums-sddr55 1-1:0.0: USB Mass Storage device detected
[ 1721.098627][T10238] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1721.116694][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1721.124994][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1721.133088][ T4524] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1721.139965][ T4524] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1721.147339][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1721.155568][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1721.164243][ T4524] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1721.171122][ T4524] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1721.190772][T10238] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1721.198333][T10238] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1721.206230][T10238] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1721.214869][T10238] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1721.222786][T10238] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1721.236428][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1721.244833][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1721.256118][  T486] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1721.263949][  T486] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1721.276040][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1721.283577][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1721.290944][T28001] device veth0_vlan entered promiscuous mode
[ 1721.301463][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1721.309776][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1721.318362][   T45] device bridge_slave_1 left promiscuous mode
[ 1721.324362][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1721.331708][   T45] device bridge_slave_0 left promiscuous mode
[ 1721.337771][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1721.345514][   T45] device veth1_macvtap left promiscuous mode
[ 1721.351410][   T45] device veth0_vlan left promiscuous mode
[ 1721.376351][T10238] usb 5-1: new high-speed USB device number 118 using dummy_hcd
[ 1721.429633][T28001] device veth1_macvtap entered promiscuous mode
[ 1721.438845][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1721.446253][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1721.454284][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1721.463554][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1721.471663][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1721.576349][   T60] usb 2-1: new high-speed USB device number 120 using dummy_hcd
[ 1721.623667][T28037] loop3: detected capacity change from 0 to 40427
[ 1721.636406][T10238] usb 5-1: Using ep0 maxpacket: 32
[ 1721.663917][T28037] F2FS-fs (loop3): Unrecognized mount option "ifline_xattr" or missing value
[ 1721.796765][T10238] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[ 1721.835487][T10238] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[ 1721.844000][T10238] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[ 1721.852900][T10238] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1721.862677][T10238] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 1721.872399][T10238] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1721.882108][T10238] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[ 1721.886404][   T60] usb 2-1: Using ep0 maxpacket: 32
[ 1721.891869][T10238] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[ 1721.940808][T10238] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[ 1721.951124][T10238] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1721.961113][T10238] usb 5-1: config 0 descriptor??
[ 1722.049407][   T60] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[ 1722.130434][   T60] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[ 1722.146888][   T60] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1722.165293][   T60] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1722.268125][T10238] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 118 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[ 1722.310460][T10238] usb 5-1: USB disconnect, device number 118
[ 1722.325487][T26167] usb 1-1: USB disconnect, device number 120
[ 1722.333604][   T60] usb 2-1: config 0 descriptor??
[ 1722.362759][T28033] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[ 1722.370537][T10238] usblp0: removed
[ 1722.396802][   T60] hub 2-1:0.0: USB hub found
[ 1722.609408][T28076] loop2: detected capacity change from 0 to 16
[ 1723.107941][   T30] audit: type=1326 audit(1718758680.099:7492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28115 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd423633f29 code=0x7ffc0000
[ 1723.131882][   T30] audit: type=1326 audit(1718758680.099:7493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28115 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd423633f29 code=0x7ffc0000
[ 1723.166805][   T30] audit: type=1326 audit(1718758680.099:7494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28115 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=120 compat=0 ip=0x7fd423633f29 code=0x7ffc0000
[ 1723.191280][   T30] audit: type=1326 audit(1718758680.099:7495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28115 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd423633f29 code=0x7ffc0000
[ 1723.232736][   T30] audit: type=1326 audit(1718758680.099:7496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28115 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd423633f29 code=0x7ffc0000
[ 1723.566362][ T9585] usb 4-1: new high-speed USB device number 126 using dummy_hcd
[ 1723.806346][ T9585] usb 4-1: Using ep0 maxpacket: 32
[ 1723.891341][T28131] loop2: detected capacity change from 0 to 2048
[ 1723.926398][ T9585] usb 4-1: config index 0 descriptor too short (expected 29220, got 36)
[ 1723.934616][ T9585] usb 4-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[ 1723.943041][ T9585] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 81
[ 1723.951947][ T9585] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1723.961420][ T9585] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 1723.968471][T28131] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1723.970938][ T9585] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1723.990878][ T9585] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[ 1724.000586][ T9585] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[ 1724.013395][ T9585] usb 4-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[ 1724.022224][ T9585] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1724.033711][ T9585] usb 4-1: config 0 descriptor??
[ 1724.043153][   T30] audit: type=1326 audit(1718758681.029:7497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28135 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd423633f29 code=0x7ffc0000
[ 1724.067307][   T30] audit: type=1326 audit(1718758681.029:7498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28135 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd423633f29 code=0x7ffc0000
[ 1724.091778][   T30] audit: type=1326 audit(1718758681.029:7499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28135 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=120 compat=0 ip=0x7fd423633f29 code=0x7ffc0000
[ 1724.115858][   T30] audit: type=1326 audit(1718758681.029:7500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28135 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd423633f29 code=0x7ffc0000
[ 1724.144345][   T30] audit: type=1326 audit(1718758681.029:7501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28135 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd423633f29 code=0x7ffc0000
[ 1724.172264][T28142] loop2: detected capacity change from 0 to 256
[ 1724.247476][   T60] hub 2-1:0.0: config failed, can't read hub descriptor (err -22)
[ 1724.322341][ T9585] usblp 4-1:0.0: usblp0: USB Bidirectional printer dev 126 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[ 1724.335481][ T9585] usb 4-1: USB disconnect, device number 126
[ 1724.343483][ T9585] usblp0: removed
[ 1724.347125][   T60] usbhid 2-1:0.0: can't add hid device: -71
[ 1724.353053][   T60] usbhid: probe of 2-1:0.0 failed with error -71
[ 1725.596956][   T60] usb 2-1: USB disconnect, device number 120
[ 1725.718895][T28182] syz-executor.0[28182] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1725.718948][T28182] syz-executor.0[28182] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1726.146398][   T60] usb 5-1: new high-speed USB device number 119 using dummy_hcd
[ 1726.623915][   T60] usb 5-1: Using ep0 maxpacket: 32
[ 1726.746992][   T60] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[ 1726.758173][   T60] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[ 1726.769456][   T60] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1726.778583][   T60] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1727.125390][   T60] usb 5-1: config 0 descriptor??
[ 1727.146406][T28184] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[ 1727.166750][   T60] hub 5-1:0.0: USB hub found
[ 1727.590746][T28228] syz-executor.0[28228] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1727.590799][T28228] syz-executor.0[28228] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1728.139509][   T30] kauditd_printk_skb: 37 callbacks suppressed
[ 1728.139525][   T30] audit: type=1400 audit(1718758685.129:7539): avc:  denied  { sys_module } for  pid=28240 comm="syz-executor.3" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[ 1728.179224][   T30] audit: type=1400 audit(1718758685.169:7540): avc:  denied  { module_load } for  pid=28240 comm="syz-executor.3" path="/root/syzkaller-testdir1632254833/syzkaller.rfOGuC/9/bus" dev="sda1" ino=1965 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=system permissive=1
[ 1728.220257][T28243] loop3: detected capacity change from 0 to 256
[ 1728.279666][T28243] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x38db593b, utbl_chksum : 0xe619d30d)
[ 1728.704316][   T30] audit: type=1400 audit(1718758685.689:7541): avc:  denied  { create } for  pid=28255 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[ 1728.736414][   T60] hub 5-1:0.0: config failed, can't read hub descriptor (err -22)
[ 1728.765498][   T30] audit: type=1400 audit(1718758685.719:7542): avc:  denied  { write } for  pid=28255 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[ 1728.826306][   T30] audit: type=1400 audit(1718758685.719:7543): avc:  denied  { setopt } for  pid=28255 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[ 1728.861805][   T60] usbhid 5-1:0.0: can't add hid device: -71
[ 1728.867931][   T60] usbhid: probe of 5-1:0.0 failed with error -71
[ 1728.914486][   T30] audit: type=1400 audit(1718758685.719:7544): avc:  denied  { read } for  pid=28255 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[ 1729.172341][   T60] usb 5-1: USB disconnect, device number 119
[ 1729.560154][T28278] loop0: detected capacity change from 0 to 2048
[ 1729.662613][   T30] audit: type=1400 audit(1718758686.649:7545): avc:  denied  { mount } for  pid=28286 comm="syz-executor.4" name="/" dev="ramfs" ino=112225 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[ 1729.691346][T28287] overlayfs: "xino" feature enabled using 2 upper inode bits.
[ 1729.702359][T28278] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1729.764829][   T30] audit: type=1400 audit(1718758686.749:7546): avc:  denied  { unmount } for  pid=26316 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[ 1729.825247][T28284] loop2: detected capacity change from 0 to 40427
[ 1729.840160][   T30] audit: type=1400 audit(1718758686.829:7547): avc:  denied  { ioctl } for  pid=28277 comm="syz-executor.0" path="/root/syzkaller-testdir4021770459/syzkaller.3WlSGT/64/file0/hugetlb.2MB.usage_in_bytes" dev="loop0" ino=19 ioctlcmd=0xae46 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 1729.916624][T28284] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1729.952525][T28284] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1729.976840][T26590] attempt to access beyond end of device
[ 1729.976840][T26590] loop2: rw=2049, want=45104, limit=40427
[ 1730.749814][T28345] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1730.764358][T28345] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1730.778164][T28345] device bridge_slave_0 entered promiscuous mode
[ 1730.791640][T28345] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1730.807244][T28345] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1730.821085][T28345] device bridge_slave_1 entered promiscuous mode
[ 1730.982551][T28345] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1730.989465][T28345] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1730.996578][T28345] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1731.003441][T28345] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1731.109459][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1731.118920][T26167] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1731.134813][T26167] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1731.166626][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1731.180141][T26167] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1731.187042][T26167] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1731.200878][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1731.216001][T26167] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1731.222911][T26167] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1731.259708][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1731.276682][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1731.284536][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1731.296112][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1731.304409][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1731.313005][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1731.336738][T28345] device veth0_vlan entered promiscuous mode
[ 1731.344920][   T30] audit: type=1326 audit(1718758688.329:7548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28360 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7788e43f29 code=0x7ffc0000
[ 1731.346018][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1731.378303][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1731.387635][    T8] device bridge_slave_1 left promiscuous mode
[ 1731.395280][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1731.404081][    T8] device bridge_slave_0 left promiscuous mode
[ 1731.422935][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1731.439623][    T8] device veth1_macvtap left promiscuous mode
[ 1731.452009][    T8] device veth0_vlan left promiscuous mode
[ 1731.642948][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1731.652597][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1731.669989][T28345] device veth1_macvtap entered promiscuous mode
[ 1731.681611][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1731.690912][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1731.710648][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1731.733306][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1731.743722][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1731.752172][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1731.760380][T26167] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1731.898552][T28378] BUG: unable to handle page fault for address: ffffffffff600000
[ 1731.906100][T28378] #PF: supervisor read access in kernel mode
[ 1731.911914][T28378] #PF: error_code(0x0001) - permissions violation
[ 1731.918168][T28378] PGD 6812067 P4D 6812067 PUD 6814067 PMD 6816067 PTE 8000000006809165
[ 1731.926236][T28378] Oops: 0001 [#1] PREEMPT SMP KASAN
[ 1731.931272][T28378] CPU: 0 PID: 28378 Comm: syz-executor.4 Not tainted 5.15.149-syzkaller-00165-g85445b5a2107 #0
[ 1731.941425][T28378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[ 1731.951330][T28378] RIP: 0010:copy_from_kernel_nofault+0x86/0x2e0
[ 1731.957398][T28378] Code: 48 89 55 d0 0f 85 ea 01 00 00 ff 02 bf 07 00 00 00 4c 89 ee e8 cb 92 d6 ff 49 83 fd 07 76 5c 4d 89 fe 49 83 c5 f8 49 83 c7 08 <49> 8b 1c 24 4c 89 f0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 80
[ 1731.976840][T28378] RSP: 0018:ffffc90000e9f030 EFLAGS: 00010292
[ 1731.982740][T28378] RAX: 0000000000000002 RBX: 00007ffffffff000 RCX: ffff888117f093c0
[ 1731.990550][T28378] RDX: ffff888117f09f50 RSI: 0000000000000008 RDI: 0000000000000007
[ 1731.998361][T28378] RBP: ffffc90000e9f068 R08: ffffffff8199a8d5 R09: ffffed1022fe1279
[ 1732.006170][T28378] R10: 0000000000000000 R11: dffffc0000000001 R12: ffffffffff600000
[ 1732.013985][T28378] R13: 0000000000000000 R14: ffffc90000e9f0c8 R15: ffffc90000e9f0d0
[ 1732.021793][T28378] FS:  00007fd4229ae6c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 1732.030559][T28378] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1732.036980][T28378] CR2: ffffffffff600000 CR3: 000000013f12d000 CR4: 00000000003506b0
[ 1732.044798][T28378] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1732.052606][T28378] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1732.060421][T28378] Call Trace:
[ 1732.063549][T28378]  <TASK>
[ 1732.066332][T28378]  ? __die_body+0x62/0xb0
[ 1732.070485][T28378]  ? __die+0x7e/0x90
[ 1732.074217][T28378]  ? page_fault_oops+0x7f9/0xa90
[ 1732.078990][T28378]  ? kernelmode_fixup_or_oops+0x270/0x270
[ 1732.084546][T28378]  ? 0xffffffffa0028e34
[ 1732.088536][T28378]  ? is_bpf_text_address+0x172/0x190
[ 1732.093659][T28378]  ? __kernel_text_address+0x9b/0x110
[ 1732.098865][T28378]  ? exc_page_fault+0x521/0x830
[ 1732.103560][T28378]  ? asm_exc_page_fault+0x27/0x30
[ 1732.108424][T28378]  ? copy_from_kernel_nofault+0x75/0x2e0
[ 1732.113881][T28378]  ? copy_from_kernel_nofault+0x86/0x2e0
[ 1732.119358][T28378]  bpf_probe_read_compat+0x112/0x180
[ 1732.124469][T28378]  bpf_prog_baa065642a502c00+0x64/0x1cc
[ 1732.129854][T28378]  bpf_trace_run6+0x18d/0x2c0
[ 1732.134364][T28378]  ? bpf_trace_run5+0x290/0x290
[ 1732.139063][T28378]  ? ext4_ext_check_inode+0x80/0x80
[ 1732.144087][T28378]  __bpf_trace_ext4_ext_remove_space_done+0x4a/0x60
[ 1732.150509][T28378]  ext4_ext_remove_space+0x48b4/0x4a60
[ 1732.155809][T28378]  ? __kasan_check_write+0x14/0x20
[ 1732.160752][T28378]  ? ext4_es_insert_extent+0x2ff0/0x2ff0
[ 1732.166236][T28378]  ? _raw_write_lock+0xa4/0x170
[ 1732.170903][T28378]  ? __ext4_mark_inode_dirty+0x53c/0x7a0
[ 1732.176373][T28378]  ? ext4_ext_index_trans_blocks+0x120/0x120
[ 1732.182190][T28378]  ? ext4_es_remove_extent+0x297/0x460
[ 1732.187483][T28378]  ? ext4_es_lookup_extent+0x940/0x940
[ 1732.192779][T28378]  ext4_ext_truncate+0x19a/0x240
[ 1732.197552][T28378]  ext4_truncate+0x96c/0xfa0
[ 1732.201978][T28378]  ? __ext4_mark_inode_dirty+0x7a0/0x7a0
[ 1732.207446][T28378]  ext4_setattr+0xf84/0x1940
[ 1732.211872][T28378]  ? current_time+0x1af/0x2f0
[ 1732.216391][T28378]  ? ext4_write_inode+0x730/0x730
[ 1732.221245][T28378]  notify_change+0xc7a/0xf30
[ 1732.225673][T28378]  ? cap_inode_need_killpriv+0x51/0x60
[ 1732.230964][T28378]  do_truncate+0x21c/0x300
[ 1732.235219][T28378]  ? put_page_bootmem+0x190/0x190
[ 1732.240081][T28378]  path_openat+0x28ed/0x2f40
[ 1732.244509][T28378]  ? __kasan_slab_alloc+0xb1/0xe0
[ 1732.249365][T28378]  ? kmem_cache_alloc+0xf5/0x200
[ 1732.254139][T28378]  ? getname_flags+0xba/0x520
[ 1732.258655][T28378]  ? __x64_sys_openat+0x243/0x290
[ 1732.263519][T28378]  ? do_filp_open+0x460/0x460
[ 1732.268042][T28378]  do_filp_open+0x21c/0x460
[ 1732.272366][T28378]  ? vfs_tmpfile+0x2c0/0x2c0
[ 1732.276798][T28378]  do_sys_openat2+0x13f/0x830
[ 1732.281305][T28378]  ? do_sys_open+0x220/0x220
[ 1732.285734][T28378]  __x64_sys_openat+0x243/0x290
[ 1732.290467][T28378]  ? __ia32_sys_open+0x270/0x270
[ 1732.295200][T28378]  ? __kasan_check_read+0x11/0x20
[ 1732.300053][T28378]  ? exit_to_user_mode_prepare+0x7e/0xa0
[ 1732.305521][T28378]  do_syscall_64+0x3d/0xb0
[ 1732.310206][T28378]  ? sysvec_apic_timer_interrupt+0x55/0xc0
[ 1732.315855][T28378]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1732.321580][T28378] RIP: 0033:0x7fd423633f29
[ 1732.325830][T28378] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1732.345274][T28378] RSP: 002b:00007fd4229ae0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1732.353540][T28378] RAX: ffffffffffffffda RBX: 00007fd42376af80 RCX: 00007fd423633f29
[ 1732.361329][T28378] RDX: 0000000000007a05 RSI: 0000000020000180 RDI: ffffffffffffff9c
[ 1732.369141][T28378] RBP: 00007fd4236a3074 R08: 0000000000000000 R09: 0000000000000000
[ 1732.376952][T28378] R10: 0000000000001700 R11: 0000000000000246 R12: 0000000000000000
[ 1732.384764][T28378] R13: 000000000000000b R14: 00007fd42376af80 R15: 00007fffe7051c68
[ 1732.392579][T28378]  </TASK>
[ 1732.395435][T28378] Modules linked in:
[ 1732.399184][T28378] CR2: ffffffffff600000
[ 1732.403173][T28378] ---[ end trace 3a4c876a55a08af1 ]---
[ 1732.408806][T28378] RIP: 0010:copy_from_kernel_nofault+0x86/0x2e0
[ 1732.414882][T28378] Code: 48 89 55 d0 0f 85 ea 01 00 00 ff 02 bf 07 00 00 00 4c 89 ee e8 cb 92 d6 ff 49 83 fd 07 76 5c 4d 89 fe 49 83 c5 f8 49 83 c7 08 <49> 8b 1c 24 4c 89 f0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 80
[ 1732.434324][T28378] RSP: 0018:ffffc90000e9f030 EFLAGS: 00010292
[ 1732.440227][T28378] RAX: 0000000000000002 RBX: 00007ffffffff000 RCX: ffff888117f093c0
[ 1732.448037][T28378] RDX: ffff888117f09f50 RSI: 0000000000000008 RDI: 0000000000000007
[ 1732.455846][T28378] RBP: ffffc90000e9f068 R08: ffffffff8199a8d5 R09: ffffed1022fe1279
[ 1732.463659][T28378] R10: 0000000000000000 R11: dffffc0000000001 R12: ffffffffff600000
[ 1732.471471][T28378] R13: 0000000000000000 R14: ffffc90000e9f0c8 R15: ffffc90000e9f0d0
[ 1732.479287][T28378] FS:  00007fd4229ae6c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 1732.488066][T28378] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1732.494470][T28378] CR2: ffffffffff600000 CR3: 000000013f12d000 CR4: 00000000003506b0
[ 1732.502299][T28378] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1732.510094][T28378] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1732.517915][T28378] Kernel panic - not syncing: Fatal exception
[ 1732.523990][T28378] Kernel Offset: disabled
[ 1732.528118][T28378] Rebooting in 86400 seconds..