last executing test programs:

10m58.589957711s ago: executing program 32 (id=2833):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'team0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="640000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="ffc30000000000003c0012800c0001006d6163766c616e002c0002800a000900ffffbfffffff00000a000400aaaaaaaaaabb00000600020001000000440003000000000008000500", @ANYRES32=r1], 0x64}}, 0x0)

8m30.972423881s ago: executing program 33 (id=4032):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
tkill(r0, 0x2f)
ptrace$peeksig(0x4209, r0, &(0x7f0000000140)={0x1, 0x0, 0x7b}, &(0x7f0000000fc0))

8m12.817884802s ago: executing program 34 (id=4172):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x6, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000004c0)={'veth1_virt_wifi\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000600)={r1, r2, 0x25, 0x16, @void}, 0x10)

8m2.090654656s ago: executing program 6 (id=4243):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000006c0)="2e00000010008188e6b62aa73f72cc9f0ba1f848140000005e140602000000000e000a000f00000002800000129487", 0x2f}], 0x1}, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000300)="2e00000011008108090f9becdb4cb92e0a4831371400000069bd6efb2502eaf60d000300020400bf050005001206", 0x2e}], 0x1}, 0x48000)

8m0.582208152s ago: executing program 6 (id=4255):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
unshare(0x2040600)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x6, 0x4, 0x8, 0x6, 0x10}, 0x50)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000080)={r0, 0x0, 0x0}, 0x20)

8m0.36678512s ago: executing program 6 (id=4258):
syz_mount_image$jfs(&(0x7f0000000200), &(0x7f00000002c0)='./file1\x00', 0x200006, &(0x7f0000000340)=ANY=[], 0x8, 0x626f, &(0x7f0000006c40)="$eJzs3ctvHVcdB/Df3JcfpW3URVUqhNwHj1LavEoIFGizgAUbFihblCh1q4gUUBJQWkXElTcs+CNASGyQEGLJij+gC7bs+AOIlCCBuuqgsc9xxtPrXKeu71z7fD6SM/O7Z8b3TL537sMzc08AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPHDH/z4dBURl36VbjgR8bkYRgwiVpp6LSJW1k7k5UcR8UxsNcfTETFeimjW3/rnyYjXIuLDJ9JtERtn9tmP7//ln3/4yWM/+sefxyf/99ebw9f3Wu7Wrd/+9293DrLFAAAAUJ66rusqfcx/Nn2+H/TdKQBgLvLrf53k29VqtVqtVh+/uq2e7k67iIiN9jrNewaH4wHgiNmIj/ruAj2Sf9FGEfFY350AFlrVdwc4FPfu375SpXyr9uvB2nZ7PhdkV/4b1dZ6ef1p01m655jM6/G1GcN4ao/+rMypD4sk5z/o5n9pu32Sljvs/Odlr/wn25c+FSfnP+zm33F88h9Mzb9UOf/RI+U/lD8AAAAAACyw/Pf/Ez0f/106+Kbsy8OO/67NqQ8AAAAAAAAA8Fk76Ph/Ozrj/+XzAIz/BwAAAP1rPqs3fvfEg9u638X2p9btF6uIxzvLA2Wp0sUyq313BAAAAAAAAAAAAABKMto+h/diFTGOiMdXV+u6bn7auvWjOuj6R13p2w8l6/tJHgAAtn34ROda/ipiOSIupu/6G6+urtb18spqvVqvLOX3s5Ol5Xql9bk2T5vblib7eEM8mtTNL1turdc26/PyrPbu72vua1IP99Gx+egxcACIiO1Xo3tekY6Zun4y+n6Xw9Fg/z9+7P/sR9+PUwAAAODw1XVdV2mYv2fTMf9B350CAOYiv/53jwuo1Wq1Wq0+fnVbPd2ddhERG+11mvcMhuMHgCNmIz7quwv0SP5FG0XEM313AlhoVd8d4FDcu3/7SpXyrdqvB2l893wuyK78N6qt9fL606azdM8xmdfjazOG8dQe/Xl6Tn1YJDn/QTf/S9vtk7TcYec/L3vl32zniR7607d79y+MmmyH3fw7jk/+g6n5lyrv/6NHyn8ofwAAAAAAWGD57/8nFur47+TTbs5MDzv+u7aP9X03AgAAAAAAAACL6N7921fyda/5+P8Xpizn+s/jKedfyb9IOf9BJ/+vdpYbtubvXniQ/3/u377yx5v//nye7jf/pTxTpUdWlR4RVbqnapSmB9m6T9ocDyfNPY2rwXCUzvmpx2/H1bgW63Fq17KD9P/xoP30rvamp+Ot9nq43X5mV/topz2vf3ZX+zid6VSv5PZX40r8PK7FW1vtTdvSjO1fntFez2jP+Q/t/0XK+Y9aP03+q6m96kwbdz8YfGK/b0+n3c+bV7/4m1OHvzkzbcZwZ9vamu17vof+bP2fPDaJX95Yv/7qrcs3b14/HWmy69YzkSafsZz/OP3sPP+/sN2en/fb++vdDyaPnP+i2IzRnvm/0JpvtvelOfetDzn/SfrJ+b+V2qfv/0c5/733/5d76A8AAAAAAAAAAAAAAAA8TF3XW5eIvhkR59L1P77jHgDKkF//6yTfPq96OOf7U6uPeF0tWH/mWn9cL1Z/1OqjWLfV073RLiLi7+11mvcMv572ywCARfZxRPyr707QG/kXLH/fXzN9se/OAHN14733f3r52rX16zf67gkAAAAAAAAA8Gnl8T/XWuM/v1jX9Z3OcrvGf70Qawcd/3OUZ3YGGN1joOrho2/Tw2wOJsNBa7jx52Kv8b/HO3MPG/97NOP+xjPaJzPal2a0L89on3qhR0vO/7nWeOcvRsSzneHXSxj/tTvmfQly/s+3Hs9N/l/pLNfOv/79Uc5/sCv/kzff/cXJG++9/8rVdy+/s/7O+s/Onj596uy5c+fPnz/59tVr66e2/+2xx4cr55/HvnYeaFly/jlz+Zcl5/+lVMu/LDn/L6da/mXJ+ef3e/IvS84/f/aRf1ly/i+lWv5lyfl/LdXyL0vO/+VUy78sOf+vp1r+Zcn5v5Jq+Zcl5/9qquVflpz/yVTvM/+Vw+4X85Hzz0e47P9lyfnnMxvkX5ac/5lUy78sOf+zqZZ/WXL+r6Va/mXJ+X8j1fIvS87/XKrlX5ac/zdTLf+y5PzPp1r+Zcn5fyvV8i9Lzv/bqZZ/WXL+r6da/mXJ+X8n1fIvS87/u6mWf1ly/t9LtfzLkvN/I9XyL8uD7/83Y+YozqxExAJ049jN9P3MBAAAAAAAAAAAAAB0zeN04r63EQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/7MDBwIAAAAAQP6vjVBVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWFHTgQAAAAAADyf22EqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqKuzdXYwdZ3kH8NlPrx2SGAipkxqycUwIiZNd24k/aFNM+Gz4KoFQ6Ae2612bBcc2XrsEGslGgRIJo6KKtuGiLSDU5qYiqrigFaBcoFaVKkF7QW8QVSVURVVAAQmJVpCtzsz7vnvO2fOxuz5ez5n5/aT48c6ZOfOeOe/M7rPO/wwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQ7NbXz396JMuyxn/5H1uz7EWNv2+e3pove83VHiEAAABwuX6Z//n89WnBoVVs1LTOP7/iO19bWlpayt439mcTn19aSg9MZ9nEpizLH4ue/q/3jzSvEzyeTY2MNn092mf3Y30eH+/z+ESfxyf7PL6pz+NTfR5fcQBW2Fz8PiZ/sp35X7cWhzS7IZvIH9vZYavHRzaNjsbf5eRG8m2WJo5nC9nJbD6bbVm/WHckX/8btzb29ZYs7mu0aV/bGzPkJ48di2MYCcd4Z8u+lp8z+tHrsumf/uSxY39z7rmbOtW+h6Hl+Ypx3rGjMc5PhiXFWEeyTemYxHGONo1ze4f3ZKxlnCP5do2/t4/z+VWOc2x5mBuq/T2fykbzv383P07jzb/WS8dpe1j289uyLLu4POz2dVbsKxvNtrQsGV1+f6aKGdl4jsZUekk2vqZ5eusq5mmjzu1snaft50R8/28N2413GUPz2/SjT0w2ve+/WFrPPI0ar7rbudI+Bwd9rpRlDsZ58d38RT/RcQ7uDK//sdu7z8GOc6fDHEyvu2kO7ug3B0cnx/IxpzdhJN9meQ7ubll/LN/TSF6fvb33HJw598iZmcWPffzuhUeOnpg/MX9q7+7ds3v37Ttw4MDM8YWT87PFn+s82uW3JRtN58COcOziOfCqtnWbp+rSlyZXXH/Xex5O9TgPt7atO+jzcLz9xY1szAm5ck4X58Z7Ggd96tJo1uUcy9+fOy//PIyve6TpPBxvOg87fk/pcB6Or+I8bKxz5s7V/cwy3vRfpzF0/15weXNwa9McbP95pH0ODvrnkbLMwakwL75/Z/fvBdvDeJ/YtdafR8ZWzMH0csO1p7Ek/bw/dSAvneblzY0HrpnMzi/On73n0aPnzp3dnYWyIV7aNFfa5+uWpteUrZivo2uer4cWXvHEzR2Wbw3Hauruxh9TXd+rxjr33tP7vcq/u3U+ni1L92ShDNhGH89O380bx3Myy77w7U889M3HvvD6rsez0W9+cubyfxZPfWnT9Xeiy/U39v0vFPtLT/X42MR4cf6OpaMz0XI9bn2rxvNr10i+7+dnVnc9ngj/bfT1+IYe1+NtbesO+no80f7i4vV4pN9vOy5P+/s5FebJydne1+PGOtv2rHVOjve8Ht8W6kg4/q8OnULqi5rmTrd5m/Y1Pj4RXtd43EPrPN3bsv5E6M0a+3pqz/rm6R23Fc81ll7dso2ap9Nt6w56nqbffXWbpyP9fvu2Pu3v51SYFzfs7T1PG+s8c+/lXzs3x782XTsn+83BibHJxpgn0iTMr/fZ0uY4B+/JjmWns5PZXP7oZD6fRvJ97bpvdXNwMvy30dfKbT3m4B1t6w56DqbvY93m3sj4yhc/AO3v51SYF0/e13sONtZ5w/7B/ux6R1iS1mn62bX992vdfud1c9thulJzZTyM89v7e/9utrHOyQNr7TN7H6e7wpJrOhyn9vO32zk1l632OI1c9jnVGOdzB7ofp8Z4Gut8/uAq59OhLMsufOSB/Pe94d9X/v78977W8u8unf5N58JHHvjxtcf/aS3jB2D4vVCULcX3uqZ/mVrNv/8DAAAAQyH2/aOhJvp/AAAAqIzY98f/KzzR/wMAAEBlxL5/PNSkJv3/tjc8t/DChSwl85eC+Hg6DA8W68WM62z4enppWWP5A1+Z/9k/XljdvkezLPvFg3/Ucf1tD8ZxFabDOJ9+Y+vyFb5296r2feThC2m/zfn1L4bnj69ntdOgUwR3Nsuyb1z/2Xw/0++/lNdnHjyS14cuPvF4Y53nDxZfx+2ffWmx/l+G8O+h40dbtn82HIcfhjr71s7HI2731Uuv3r7/vcv7i9uN7Lguf9lPfqB43hCR3ZQ9Xqwfj3O38X/zM099tbHBo6/sPP4Lo53H/1R43q+E+r8vL9Zvfg8aX8ftPhXGH/cXt7vny9/qNP7s6U8X6595U7HekVDj/u8IX+9803MLzcfr0ZGjLa8re3OxXtz/7Pf+JH88Pl98/vbxTx2+1HI82ufHM/9ePM9M2/pxedxP9A9t+288T/P8jPt/6o+PtBznfvt/+qFnX9543vb939W23pmP3Jnvf/n5Wj+x6a8+9dmO+4vjOfR3Z1pez6F3hfM47P/JD4T5GB7/v6eL52v/dIUj72q9/sT1v7j1Qsvrid7y02L/T7/2RF43TW3ecs2Lrr3u4i2NY5dl391UPF+v/cfPgGge/5duLI5HHEfM6Lfvv5u4/7Mf3XXq9OL5hbl0VB+7Pv/snLcV44njvT5cW9u/Pnz63Afnz07PTs9m2XR1P0Jv3b4c6o+LcnGt29/5cHg/b/6Lb2y5/d8+E5f/x3uK5ZfeWnzfelVY73Nh+dbw/l3u/p+89cb8/B55pvi6Jcc+ANt3/s+BVa0YXn/7zwVxvp952Qfz49B4LP++Ec/ryxz/D+aK5/l6OK5L4ZOZd9y4vL/m9eNnI1x6d3G+X/bxC5e5+L7+bXi/3/7D4vnjuOLr/UH4OeZb21qvd3F+fP3CaPvz55/icTFcT7KLxeNxrXi8Lz1/Y8fhxc8hyS7elH/9p+l5blrTy+xm8WOLMycXTp1/dObc/OK5mcWPffzwI6fPnzp3OP8sz8Mf6rf98vVpS359mpvfd2+WX61OF+UKu9rjP/Pwsbn9s7fPzR8/ev74uYfPzJ89cWxx8dj83OLtR48fn/9ov+0X5u7fvefg3v17dp1YmLv/wMGDew/uWjh1ujGMYlB97Jv98K5TZw/nmyzef+/B3ffdd+/srkdOz83fv392dtf5ftvn35t2Nbb+w11n508ePbfwyPyuxYWPz9+/++C+fXv6fhrgI2eOL07PnD1/aixbnD87U7yW6XP54sb3vn7bU02L/1n8PNtupPggvuydd+1Ln8/a8JVPdH2qYpW2DxB9LnwWzb+8+MyB1Xwd+/6JUJOa9P8AAABQB7Hvnww10f8DAABAZcS+f1Ooif4fAAAAKiP2/VOhJjXp/yuX/992YVX7l//vmP/PPif/L/9fh/z/u/vn/xtO/PXpn21M/r+4Xsj/D8Zg8v8Phq/k/+X/5f/l/+X/15z/nzkv/09Stvx/7Ps3Z1kt+38AAACog9j3bwk10f8DAABAZcS+/5pQE/0/AAAAVEbs+18UalKT/l/+X/6/HPn//742jl3+f3k7+f+C/L/8/1q4/39vdcz/L3X6Jt2N/P9MVq/8/8VBjl/+X/6flcqW/499/7WhJjXp/wEAAKAOYt9/XaiJ/h8AAAAqI/b914ea6P8BAACgMmLfvzXUpCb9v/y//H858v/L5P+Xt5P/L8j/y/+vhfx/b3XM/69l//L/7v8v/y//z2CVLf8f+/4Xh5rUpP8HAACAOoh9/0tCTfT/AAAAUD7j69ss9v0vDTVZ0f+vcwcAAADAVRf7/huytiB4Tf79X/5f/l/+X/5f/r/z/lef/x/L5P/LQ/6/N/n/PuT/q5b/H8/k/+X/uarKlv/P+/5sKntZqElN+n8AAACog9j33xhqov8HAACAyoh9/6+Emuj/AQAAoDJi378t1KQm/b/8/5XO/2+W/5f/l/+P87Ky+X/3/y+TYcn/T3ZZLv8v/y//P7zjH5L8/2se6rK9/D9XQtny/7HvvynUpCb9PwAAANRB7PtvDjXR/wMAAEBlxL7/V0NN9P8AAABQGbHv3x5qUpP+X/7f/f/l/+X/5f8771/+fzgNS/6/G/l/+X/5/+Ed/5Dk/7uS/+dKKFv+P/b9Lw81qUn/DwAAAHUQ+/5XhJro/wEAAKAyYt9/S6iJ/h8AAAAqI/b906Emtej/p+T/5f/l/+X/5f+77F/+fzjJ//cm/9+H/L/8v/y//D8DVbb8f+z7bw01qUX/DwAAAPUQ+/4doSb6fwAAAKiM2PffFmqi/wcAAIDKiH3/zlCTmvT/8v/Dkf/PQi5e/l/+X/5f/l/+vzf5/97k//uQ/5f/l/+X/2egypb/j33/K0NNatL/AwAAQB3Evv/2UBP9PwAAAFRG7PtfFWqi/wcAAIDKiH3/HaEmNen/5f+HI/9f/fv/35LGLv+/vJ38f0H+X/5/LSqX/8/k/zP5/0T+v9zjl/+X/2elsuX/Y9//6lCTmvT/AAAAUAex778z1ET/DwAAAJUR+/67Qk30/wAAAFAZse/fFWpSk/5f/l/+vxz5/2Xy/8vbXfn8/033NS8vS/6/PfYl/y//vxaVy/+7/39O/r9Qlvx/p597Mvl/+X/5fzooW/4/9v13h5rUpP8HAACAOoh9/z2hJvp/AAAAqIzY98+Emuj/AQAAoDJi3z8balK5/n+641L5f/l/+f865//Xcf//W5af1/3/89GMy/+Xi/x/b/L/fcj/u///Vc//T8j/Uylly//Hvn93qEnl+n8AAACor9j37wk10f8DAABAZcS+f2+oif4fAAAAKiP2/feGmtSk/5f/l/+X/5f/L9v9/4cr/+/+/2Uj/9/b4PP/8SXK/8v/y/+7/7/8PyuVLf8f+/77Qk1q0v8DAABAHcS+f1+oif4fAAAAKiP2/ftDTfT/AAAAUBmx7z8QalKT/l/+X/5f/l/+X/6/8/7l/4eT/H9v7v/fh/y//L/8v/w/A1W2/H/s+w+GmtSk/wcAAIA6iH3/a0JN9P8AAABQGbHv/7VQE/0/AAAAVEbs+3891KQm/b/8v/y//L/8v/x/5/3L/w8n+f/e5P/7kP+X/5f/l/9noMqW/499//2hJjXp/wEAAKAOYt//G6Em+n8AAACojNj3vzbURP8PAAAAlRH7/kOhJjXp/+X/5f/l/+X/5f87739d+f+JrCv5/40h/99bc/5/c68V5f/l/+X/5f/l/xmAsuX/Y9//ulCTmvT/AAAAUAex738g1ET/DwAAAJUR+/7Xh5ro/wEAAKAyYt//hlCTmvT/a8j/j2fy/13J/7eOX/6/8/yQ/69B/r8H+f+NIf/fm/v/9yH/L/8v/y//z0CVLf8f+/43hprUpP8HAACAOoh9/5tCTfT/AAAAUBmx739zqIn+HwAAACoj9v1vCTWpSf/v/v/y/zXM/zdWl/+X/5f/ryj5/97k//uQ/5f/l/+X/2f9plYuKlv+P/b9v9k+4Jr0/wAAAFAHse9/MNRE/w8AAACVEfv+t4aa6P8BAACgMmLf/7ZQk5r0//L/8v81zP+7/7/8v/x/hcn/9zZk+f9fXheWy/8X5P/LPf7hyv8vbWrfXv6fK6Fs+f/Y97891KQm/T8AAADUQez73xFqov8HAACAyoh9/ztDTfT/AAAAUBmx7/+tUJOa9P/y/41xLKeX5f/l//MF8v/y//L/Q0v+v7chy/+7/38b+f9yj3+48v8ryf9zJZQt/x/7/neFmtSk/wcAAIA6iH3/Q6Em+n8AAAAopYl1bBP7/neHmuj/AQAAoDJi3/+eUJOa9P/y/+7/L/8v/y//33n/8v/DSf6/N/n/ztKd0OX/5f/l/+X/Gaiy5f9j3/9wqElN+n8AAACog9j3vzfURP8PAAAAlRH7/t8ONdH/AwAAQGXEvv99oSY16f/l/4cl/z8t/y//L//f9nrk/+X/O5H/703+vw/5f/n/9Y5/k/y//D+dlC3/H/v+94ea1KT/BwAAgDqIff/vhJro/wEAAKAyYt//u6Em+n8AAACojNj3/16oSU36f/n/Ycn/u/9/Jv8v/9/2euT/5f872bj8f7zyyP/L/8v/R7XO/3e7///Pw5sq/y//X1Nly//Hvv/3Q01q0v8DAABAHcS+/wOhJvp/AAAAGAqd/p/sdrHvPxxqov8HAACAyoh9/5FQk5r0//L/8v/y/yXN///5jn/9/nfecWS3/L/8v/z/mmzo/f8bJ/+67/+/ueNS+X/5f/n/4R2/+//L/7NS2fL/se8/GmpSk/4fAAAA6iD2/X8QaqL/BwAAgMqIff+xUBP9PwAAAFRG7PvnQk1q0v/L/8v/y/+XNP8/xPf/j8dD/r/VwPL/8aIr/9/Rhub/37ucE3f//7Xm/yc7LpX/l/8f5vHL/8v/s1LZ8v+x758PNalJ/w8AAAB1EPr+0eNFXX5A/w8AAACVEfv+E6Em+n8AAACojNj3fzDUpCb9v/y//L/8v/y/+/933n9p8//u/9+T/P8Km5u/KE/+vzP5f/n/YR6//L/8PyuVLf8f+/6FUJOa9P8AAABQB7Hv/1Coif4fAAAAKiP2/R8ONdH/AwAAQGXEvv9kqHUj/3818/9LHfP/zbNQ/l/+X/5f/l/+f23k/3uT/+9D/l/+X/5f/p+BKlv+P/b9/8/efTxZWl53HL+Nhxm6+AO88Aav/SewgPLCC3vt8sKushd2lctVBtuAsw04R2zlLJQzCiAhlFBOoISEslCOKKOEkKpaxfQ5p/t2335v3557p9/3eT6fhY+MGN0LngL9PHzr+dO4xa//AwAAQDNy918Tt9j/AAAA0Izc/dfGLfY/AAAANCN3/5/FLZ3sf/2/9/9X7P9vODeV/v8q/f9Rn6//1/+3TP8/TP+/hP5f/6//1/+zVmPr/3P3/3nc0sn+BwAAgB7k7v+LuMX+BwAAgGbk7r8ubrH/AQAAoBm5+6+PWzrZ/wf6/61Zn/1/Zrz6f+//6//1//r/ibu4/f/Nj/6VT/+v/9f/B/2//l//z0Fj6/9z998Qt3Sy/wEAAKAHufv/Mm6x/wEAAKAZufv/Km6x/wEAAKAZufv/Om7pZP97/9/7/0f0/7+94f5/e6b/1//r/+vPqv5/fbz/P6yn/v+6+y+/5qE7f+WuVT5/U/3/mb3/fP3/Bp3299f/6/85bGz9f+7+v4lbOtn/AAAA0IPc/X8bt9j/AAAA0Izc/X8Xt9j/AAAA0Izc/X8ft3Sy//X/+n/v/+v/9f+LP1//P036/2E99f8n+Xzv/+v/9f/6f9ZrbP1/7v5/iFs62f8AAADQg9z9/xi32P8AAADQjNz9N8Yt9j8AAAA0I3f/TXFLJ/tf/6//1//r//X/iz9f/z9N+v9h+v8l9P/6f/2//p+1Glv/n7v/5rilk/0PAAAAPcjd/09xi/0PAAAAzcjd/89xi/0PAAAAzcjd/y9xSyf7X/+v/7+I/f/1+VNF/z//++v/d+n/9f/roP8fpv9fQv9/of38pfp//b/+n/1W7P8fGfjL9lr6/9z9/xq3dLL/AQAAoAe5+/8tbrH/AQAAoBm5+/89brH/AQAAoBm5+/8jbulk/+v/9f/e/9f/6/8Xf77+f5r0/8P29/+XDP2Om+7/t84s/M36/8n3/97/1//r/5kztvf/c/f/Z9zSyf4HAACAHuTu/6+4xf4HAACAZuTu/++4xf4HAACAZuTu/5+4pZP9v8n+/2DDe5D+X/+/18+fq+9+vhs/O9P/T6r/Pzv323vo/+/a9/30/+Oi/x/m/f8l9P/6f/2//p+1Glv/n7v/f+OWTvY/AAAA9CB3/y1xi/0PAAAAzcjd/39xi/0PAAAAzcjd//9xSyf7f3H/v/fve///ePT/89/f+/+Lf36sq//P/8RN9/+PmvD7/1d7/79P+v9h+v8l9P/6/1Ps/3d2Lnb/P//39SX9//ayz9f/s8ia+v+ddfX/ufsfE7d0sv8BAACgB7n7Hxu32P8AAADQjNz9j4tb7H8AAABoRu7+x8ctnez/Tb7/v4z+X/+v/2/l/f95I+n/N/r+/+yi9/9n9P/HpP8fpv9fQv+v//f+v/f/Was19f+zdfX/ufufELd0sv8BAACgB7n7nxi32P8AAAAwDfv/2YGD/0BpyN3/pLjF/gcAAIBm5O5/ctzSyf7X/+v/9f/6f/3/4s8fV//v/f/j0v8P0/8vof/fRD9/prH+/9ajfvwY+v8b9f+MzFz/f/febz+t/j93/1Pilk72PwAAAPQgd/9T4xb7HwAAAJqRu/9pcYv9DwAAAM3I3f/0uKWT/b/x/n/76M/W/+v/9f/6f/2//n/d9P/Duuz/V/m/Qjv9/6+u8EddTvv9/At12t9/DP2/9/8Zm7n+f59j9v/7/yK6lv4/d/8z4pZO9j8AAAD0IHf/M+MW+x8AAACakbv/1rjF/gcAAIBm5O5/VtzSyf73/r/+X/+v/9f/L/58/f80raP/P/8v9P/t9P+raKf/P5HT7uen/v31//p/DrvA/n/uh5z/nxfY/+fuf3bc0sn+BwAAgB7k7n9O3GL/AwAAQDNy9z83brH/AQAAoBm5+58Xt3Sy//X/m+3/87fr//X/M/3/cfr/q/X/+/r/czP9/wl0+/7/1qK/Ex12RP9/7x/f9Fvzv6Wf/n/+T5z+X/+v/9f/s1aj6P939v7bZe7+58ctnex/AAAA6EHu/hfELfY/AAAANCN3/wvjFvsfAAAAmpG7/0VxSyf7X//v/X/9v/5/RP2/9//r+255//+Euu3/j8n7/0vo//X/+n/9P2s1iv5/3/+eu//FcUsn+x8AAAB6kLv/JXGL/Q8AAADNyN3/0rjF/gcAAIBm5O5/WdzSyf7X/y/t/y85zh+L/n/+++v/F//80P/r/1d6/1//fyL6/2H6/yX0//p//b/+n7UaW/+fu/+2uKWT/Q8AAAA9yN3/8rjF/gcAAIBm5O5/Rdxi/wMAAMCk/PqDR/97uftfGbd0sv/1/97/1//r//X/iz9f/z9N+v9h3fT/vzHw+bcPfIFF/f/OOf2//l//r//nhMbW/+fuf1Xc0sn+BwAAgB7k7r89brH/AQAAoBm5+++IW+x/AAAAaEbu/lfHLZ3sf/2//l//r//X/y/+fP3/NOn/h3XT/3v//0ROu5+f+vfX/+v/OWxs/X/u/tfELZ3sfwAAAOhB7v474xb7HwAAAJqRu/+1cYv9DwAAAM3I3X9X3NLJ/tf/6//1//p//f/iz9f/T9Pm+v+Z/l//P5n+f3ulP+g9p93PX6hjfv+rNvX99f/6fw4bW/+fu/91cUsn+x8AAAB6kLv/9XGL/Q8AAADNyN3/hrjF/gcAAIBm5O5/Y9zSyf7X/+v/9f/6f/3/4s/X/0+T9/+H6f+XaKT/P6lO+v+NfX/9v/6fw8bW/+fuf1Pc0sn+BwAAgB7k7r87brH/AQAAoBm5+98ct9j/AAAA0Izc/W+JWzrZ/0v6/70/Ifr/Qfr/+e+v/1/880P/r/8/0P9fNtP/r53+f5j+fwn9f5v9/yWzhvr/7SN/vP6fMRpb/5+7/61xSyf7HwAAAHqQu/9tcYv9DwAAAM3I3f/2uMX+BwAAgGbk7n9H3NLJ/vf+v/5f/6//1/8v/nzv/0+T/n+Y/n+J0+v/H973X6n0/xP9/t7/1/9z2Nj6/9z974xbOtn/AAAA0IPc/e+KW+x/AAAAmIjl/9hd7v53xy32PwAAADQjd/974pZO9r/+X/+v/9f/6/8Xf77+f5r0/8P0/0t4/1//r//X/7NWY+v/c/e/N27pZP8DAABAD3L33xO32P8AAADQjNz998Yt9j8AAAA0I3f/++KWTva//l//r/+fZv9/mf5f/6//X2gs/f+VV/7mffp//b/+X/+v/9f/925j/X/8gFX7/9z9749bOtn/AAAA0IPc/R+IW+x/AAAAaEbu/g/GLfY/AAAANCN3/4filk72/+H+/9LZbqG6a1H/H42a/n8f/f/899f/L/754f1//b/+f/PG0v97//9k31//r/+f8vdfqf+/4vCPP9//b8/0/zRlbO//5+6/L27pZP8DAABAD3L3fzhusf8BAACgGbn7PxK32P8AAADQjNz998ctnex/7//r//X/+n/9/+LP1/9Pk/5/mP5/Cf2//t/7/9f+4S9dlP5/5+Df72nT2Pr/3P0fjVs62f8AAADQg9z9H4tbFu//Rb/MCwAAAIxc7v6Pxy1+/R8AAACakbv/E3FLJ/tf/6//H2v/vz3T/+v/d+n/9f+r0P8P0/8vof/fRD9/di1f7hj0/97/Z3zG1v/n7v9k3NLJ/gcAAIAe5O7/VNxi/wMAAEAzcvd/Om6x/wEAAKAZufs/E7d0sv/1//r/sfb/u+////7q/f8VB/v/P9D/H/h8/b/+v2X6//w7+mL6/yX0/97/1/+vr/8/q/9nfP1/7v4H4pZO9j8AAAD0IHf/Z+MW+x8AAACakbv/c3GL/Q8AAADNyN3/+bilk/2v/++r/9+aTa3/9/6//l//r/9fjf5/mP5/Cf2//l//7/1/1mps/X/u/i/ELZ3sfwAAAJiq3/m1P3nguL9v7v4vxi32PwAAADQjd/+X4hb7HwAAAJqRu//LcUsn+1//31f/P733//X/+n/9v/5/Nfr/YSfo/+cCdv2//n+I/l//v9v/P/ozWv/PrrH1/7n7vxK37Bt+Z1b+owQAAADGJHf/V+OWTn79HwAAAHqQu/9rccuh/b9zzH+qHQAAABib3P1fj1s6+fV//f/I+/+Z/l//r//X/+v/V6H/H3aB7//vbOn/9f8D9P/6f+//c9DY+v/c/d+IWzrZ/wAAANCouf+PQu7+B+MW+x8AAACakbv/m3GL/Q8AAADNyN3/rbilk/2v/x95/3+i9/+361/p/zvv/2+5bOHn6//1/y3T/w+7wP7f+//6/0H6/+X9/+8NPCyu/6dFY+v/c/d/O27pZP8DAABAD3L3fydusf8BAACgGbn7vxu32P8AAADQjNz934tbOtn/+v8W+3/v/+v/hz+/nf7/ly+/6Z7f/aM7btP/s+di9v/5c0H/r//X/+/S/2/s/f+t2dZM/88kja3/z93//bilk/0PAAAAPcjd/1DcYv8DAABAM3L3/yBusf8BAACgGbn7fxi3dLL/9f/6f/3/FPv/bIp77/+9/6//P8z7/8P0/0vo//X/4+z/vf/PZI2t/8/d/6O4pZP9DwAAAD3I3f/juMX+BwAAgGbk7v9J3GL/AwAAwHScGf63c/c/HLd0sv/1//p//f9Y+/8t7/8H/b/+fxX6/2H6/yX0//p//b/+n7UaW/+fu/+ncUsn+x8AAAB6kLv/kbjF/gcAAIBm5O7/Wdxi/wMAAEAzcvf/PG7pZP/r//X/+v+x9v9D7//r/2dH9/9nZvr/run/h+n/l9D/6//1//p/1mps/X/u/l8EAAD//50iZ+A=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x143042, 0x80)
pwritev2(r0, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfe}], 0x1, 0x5405, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000000c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x28184ff, 0x0, 0xf4, 0x0, &(0x7f0000000040))

7m59.020419952s ago: executing program 6 (id=4273):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f00000004c0)={[{@resuid}, {@init_itable}, {@stripe}, {@noblock_validity}]}, 0x3, 0x451, &(0x7f0000000f80)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000740)='./bus\x00', 0x283016, 0x0, 0x11, 0x0, 0x0)
setxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=@known='trusted.overlay.impure\x00', 0x0, 0x0, 0x1)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000a80)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

7m57.750531847s ago: executing program 6 (id=4281):
unshare(0x64000600)
mmap(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x0, 0x2172, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000500)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000002000000000000000000000604"], 0x0, 0x26}, 0x20)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000340)={r0, 0x58, &(0x7f0000003fc0)}, 0xe)

7m56.685678104s ago: executing program 6 (id=4293):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000880)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@bridge_delneigh={0x28, 0x1e, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x4}, [@NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}]}, 0x28}}, 0x0)

7m56.380365343s ago: executing program 35 (id=4293):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000880)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@bridge_delneigh={0x28, 0x1e, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x4}, [@NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}]}, 0x28}}, 0x0)

7m53.129929951s ago: executing program 0 (id=4320):
r0 = landlock_create_ruleset(&(0x7f00000001c0)={0xa019, 0x1, 0x3}, 0x18, 0x0)
landlock_restrict_self(r0, 0x1)
r1 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, 0x0)

7m52.09092954s ago: executing program 0 (id=4326):
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}, 0x20000}}, {{0xa, 0x0, 0x40000, @dev={0xfe, 0x80, '\x00', 0x26}}}}, 0x108)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
close(r0)

7m51.699508066s ago: executing program 0 (id=4329):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee6, 0x8031, 0xffffffffffffffff, 0xf6d0e000)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)
mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1, 0x0, 0x0, 0x2)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x0, 0x0, 0x0, 0x2)

7m50.387205287s ago: executing program 0 (id=4339):
syz_mount_image$squashfs(&(0x7f0000000000), &(0x7f0000000300)='./file0\x00', 0x800, &(0x7f0000000040)=ANY=[], 0xff, 0x17f, &(0x7f0000000340)="$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")
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000004200)={0x2020}, 0x2020)

7m50.086261092s ago: executing program 0 (id=4341):
setfsuid(0xee00)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = getpid()
kcmp$KCMP_EPOLL_TFD(r1, r0, 0x7, 0xffffffffffffffff, 0x0)

7m48.445908483s ago: executing program 0 (id=4347):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000d5e9bd40eb030200c0ba050000010902115c01000000000904000001b504b100090581"], 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x802)
ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000040)=""/185)

7m47.932625223s ago: executing program 36 (id=4347):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000d5e9bd40eb030200c0ba050000010902115c01000000000904000001b504b100090581"], 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x802)
ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000040)=""/185)

4m30.742611346s ago: executing program 8 (id=6059):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = memfd_create(&(0x7f0000000480)='\xff\x00l\x1e\xa0</\x00\x8eO4._\x14zC\x8a\xe8\xe0u\xe0\xff\xf1\xb2\xfd\xf6nz\x05-]\xc2Vk\xaeky\xd3\x83\xe2\xc7\xd3\xe6M^\x98ox\x14\t\xe9Q1\x1dK\x9a\x045\xd37\xb22\xfdD(\xd2\xdd\xa0\xff\x0f\x00\x00\x00\x00\x00\x00v\n\xd8?]k\x14N\x18\xf4\xc2j\xed6g\xfd\xd2\xd4\xe3\x1f\xa6 \xa0\x8d\xb5\x9aE<2`]<\x8cR\xd69\x0fO\xbf\xc3\xbd\xb0\x96\x90\x91k\x86\x1a\x10\xd2\xf5\x8b\xfc\xf4\xd0[\x12\xf5+\x1aS\x02/Yx\xf2jJb\x97\x9c/\x1f5i\xc6\x861\x9a\xff\xc3\xe7\xbfU\xd5\xac\xccB=\x8f\xfd\x84\xeepQ\x93nn\x0f\xc6\xa9?\xad\x8b~\x96@i=G\x9ft\x1d\xcc\xc6Ys7\x7f\x8ehv\xd3$\x13s\xa0\xbfi\xfaFS\xa9=Xe\xf8tI\x15\x882\x8b\x8e-X\xb8\xf2\x9du\x15S^\xec\xce\xfaf$S\x9f\xe7Ed\n\x84\\ u\xd2\x16\xc1\xa5\xa0\xaa\xe8.i\xc8\x0e\vt\xe2\xf1lA\x93\xdd\xce\x8f$\x06v\xbe\xe7\x95nN\xc5\xaa\x1ev\xc6P\x9c\\G&y\x8bYA\xc3}\xd9\x86[\xb2\xf3\x0f\x90%\xcb\x81\xe8\xea\xbcs\x95\xe9\x8eXH\x19m\xdfOY\xf1E9-\xc8\xe7\x13^+(\x034\x82\xafiOO\x14\x8f^\x8c', 0x7)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xa, 0x4d091, r0, 0x0)
fcntl$addseals(r0, 0x409, 0xe)

4m30.554103385s ago: executing program 8 (id=6060):
syz_mount_image$cramfs(&(0x7f0000000240), &(0x7f00000006c0)='./file1\x00', 0x8080, &(0x7f0000000c40)=ANY=[@ANYRES32=0x0, @ANYBLOB="961335493e171b87c5049661bc7a9dea85b0b96318f3a46c58525ebc3d0eb9ce96ac44b1d9a749f3ab7e759eff20dc0185dafc139ec785c31ae931023ad12b85c435475f8f724c4ee1329bd7bb7bb9e041f690b5cc745f75f91812f706841d08affa58f76342d7042588429261122e77ffb7828fa3d7ff668389ecdf6b9325ad15bc18a8f91df650262caa1ba865c2c41df8ea0ebfa761195cac8427b2bb312c0fa051cda8c0dd0328b36624744332fe1c7211f5565e2068fd28b30a36962cb2dec9ae6c9bed13a01ed3d029661f9550fabf581952c0b5c28f26c0fa94ac0bb7eed7642f514ce5c6b7c71813fd", @ANYBLOB="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", @ANYRESDEC, @ANYRES16], 0xfe, 0x152, &(0x7f0000000280)="$eJzszr9LOnEcx/HXfe++aj9MggILMqEhUS7twpqiNBIOsoPCpaXALhIUI6Gcwoi2hqDVwQqaxH/BshZLIeyfaHF2LD7eLUFT8+ux3H2e9/m877O+3A7AD5x50LeWzx0dm4WCue/fMpKJ7c96PSa6A0Dvx3dr/2MMOBRPBeieAyI/u4GDTNacS+ezYt2NAQEA8SGsih4RbRQYFG3M2jsP63xgBmiMW037pS3YbVIB4h6riXlft8CsmOcEkMmaTut6KJb/2W9q8GFKxqUemv5vl+rrZqupq0GfeaUlJu6HvTJS5ssd4pI49xFuqu/hWrXTbiU3jBUAmrYoAaVItGO8tfRo6RrKrvME2JEACaFadQCArgYd8PqUlAsXEnDTn9V9ktwAGpWekRtZqtj/d53KfkAqltN7cn8NIiIiIiIiIiIiIiIiIiKiv/kOAAD//9AiV78=")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x0)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

4m30.300500416s ago: executing program 8 (id=6061):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000380)=[@in6={0xa, 0x0, 0x0, @remote, 0x9}], 0x1c)
sendto$inet6(r0, &(0x7f0000000040)='5', 0x1, 0x4001, &(0x7f0000000080)={0xa, 0x4e21, 0xdd0b, @private2={0xfc, 0x2, '\x00', 0x1}, 0xff}, 0x1c)
setsockopt(r0, 0x84, 0x7f, &(0x7f0000000140)="0200000009800089", 0x8)

4m29.116701457s ago: executing program 8 (id=6070):
socket$inet_udplite(0x2, 0x2, 0x88)
syz_mount_image$exfat(&(0x7f00000009c0), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000002f80)={[{@utf8}, {}, {@uid={'uid', 0x3d, 0xee01}}, {@iocharset={'iocharset', 0x3d, 'cp866'}}, {@errors_remount}, {@utf8}, {@errors_remount}, {@dmask={'dmask', 0x3d, 0x4}}, {@time_offset={'time_offset', 0x3d, 0x6}}, {@errors_remount}]}, 0x4, 0x153c, &(0x7f0000003080)="$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")
open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)

4m28.473080503s ago: executing program 8 (id=6075):
syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
r0 = openat$dsp1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000040)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])

4m27.68546596s ago: executing program 8 (id=6086):
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0)
unshare(0x400)
r0 = socket$inet6(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r0, 0x29, 0x24, &(0x7f0000000000)=0x400, 0x4)

4m27.405969523s ago: executing program 37 (id=6086):
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0)
unshare(0x400)
r0 = socket$inet6(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r0, 0x29, 0x24, &(0x7f0000000000)=0x400, 0x4)

3m57.609586667s ago: executing program 7 (id=6354):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x1fffa2}], 0x1)

3m57.37574918s ago: executing program 7 (id=6357):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x42501, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_GET_MSRS_cpu(r2, 0xc008ae88, &(0x7f0000000100)={0x1, 0x0, [{0x40000073}]})

3m57.092261934s ago: executing program 7 (id=6360):
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x1f, 0x0, 0x0, 0x1000, 0x0, 0x1}, 0x50)
r0 = syz_io_uring_setup(0x22f, &(0x7f0000000080)={0x0, 0x5325, 0x10000, 0x0, 0x100002cf}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xffffffffffffff31})
io_uring_enter(r0, 0x7a98, 0x0, 0x0, 0x0, 0x0)

3m56.915133237s ago: executing program 7 (id=6363):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1)
mount$9p_unix(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x12d7498, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

3m56.721924319s ago: executing program 7 (id=6365):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="03000000040000000400000009"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[], 0x48)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x18, 0x7, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000218100000", @ANYRES32=r0, @ANYBLOB="000000000000000018100000", @ANYRES32=r1, @ANYBLOB="000000000000000095"], &(0x7f0000000a00)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000005c0)={r2, 0xe0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000000034d, &(0x7f0000001d00), ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)

3m56.044145404s ago: executing program 7 (id=6370):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
socket$inet6_tcp(0xa, 0x1, 0x0)
copy_file_range(r0, 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0)

3m55.836594983s ago: executing program 38 (id=6370):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
socket$inet6_tcp(0xa, 0x1, 0x0)
copy_file_range(r0, 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0)

54.887535144s ago: executing program 5 (id=8002):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000280)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000007000000080001006e00000008000300", @ANYRES32=r3, @ANYBLOB="0c0099000000000000000000050053000100000014000400776c616e310000000000000000000000140006"], 0x60}}, 0x0)

54.604722824s ago: executing program 5 (id=8005):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000002c40)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x4, 0x1}, 0xe)
listen(r0, 0x90004)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="043e130100c90001"], 0x16)
accept(r0, 0x0, 0x0)

53.573592582s ago: executing program 5 (id=8013):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x93)
syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000002c0)='./file0\x00', 0x2000010, &(0x7f00000000c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}}, 0x0, 0x0, 0x0)
dup2(r1, r0)
truncate(&(0x7f0000000140)='./file0\x00', 0x80000000000000e)

53.395026815s ago: executing program 5 (id=8014):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x23e9c9e, 0x0)
mount$bind(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x84000, 0x0)

53.211232336s ago: executing program 5 (id=8017):
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
close_range(r0, 0xffffffffffffffff, 0x0)

52.209788709s ago: executing program 5 (id=8023):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1}, 0x18)
connect$can_j1939(r0, &(0x7f0000000140)={0x1d, r1, 0x0, {0x0, 0x0, 0x3}}, 0x18)
sendmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000040)="ce2096e8a17fa11b7d102f00557e65d824306f8c20a8cf0bc487ad33373c9f3c87d66e251d32ead6ca4844eb6f0894c8f0e312d7f90eff35402a6e507ff59d1315f0d8c279418ce8957f6b", 0x4b}, {&(0x7f0000000280)="f371eba51e6c1e6a4c779f23577f459aea8416fe9b073027a6045a43eb2c03e6116a822047eb9ed0cad1699f97e22d8128ed3b434b043efd15a506ccc52601f8227070958781902220afc25d87f6d2b5faed3bc2d76070939e069dd2bf5d6717570f92cc8e910cbb1c457d9469d13d7551fa86a96e77989db5ce50ac2fd4877dd3219ac275cd91d3c6f565b05db07b1523784882b894ce5fe427ec84acd43ecd83d750c6d1c8f982c2e605bdff1c740cdd30429af9ff32378c8d262a660557bf5572abf1", 0xc4}, {&(0x7f00000003c0)="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", 0xce4}], 0x3}}], 0x1, 0x811)

51.548809027s ago: executing program 39 (id=8023):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1}, 0x18)
connect$can_j1939(r0, &(0x7f0000000140)={0x1d, r1, 0x0, {0x0, 0x0, 0x3}}, 0x18)
sendmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000040)="ce2096e8a17fa11b7d102f00557e65d824306f8c20a8cf0bc487ad33373c9f3c87d66e251d32ead6ca4844eb6f0894c8f0e312d7f90eff35402a6e507ff59d1315f0d8c279418ce8957f6b", 0x4b}, {&(0x7f0000000280)="f371eba51e6c1e6a4c779f23577f459aea8416fe9b073027a6045a43eb2c03e6116a822047eb9ed0cad1699f97e22d8128ed3b434b043efd15a506ccc52601f8227070958781902220afc25d87f6d2b5faed3bc2d76070939e069dd2bf5d6717570f92cc8e910cbb1c457d9469d13d7551fa86a96e77989db5ce50ac2fd4877dd3219ac275cd91d3c6f565b05db07b1523784882b894ce5fe427ec84acd43ecd83d750c6d1c8f982c2e605bdff1c740cdd30429af9ff32378c8d262a660557bf5572abf1", 0xc4}, {&(0x7f00000003c0)="bd19b193cdabbb5e23b35dd26d034323ab2e7a1202b955342001bc7d3c14ffc9aa31b61fce43d009a140774d94e168f042bd60b8330c447ed8ccbc7e23afb6cd0ca4dc44b5911892a8d8f8cac4ef3a3171cab9d79717cc4968d9b4ba2a09ae0b12841b5e1667b9855f1af290912625a050422d45baf37320b655c86c3031e2aabe68fe3700062df79e3e62c11363605ab1660a7831b75f40687ac07f30bb3bd2b1039a5ce31710caba78fc5385daf98f0dd3b603e4917a312927cc5e73602d7fa59a4f3b87c6da00fb4210541b72bf7caf5c9c7a046d707c8e10379b5ce3c12eaafb9ae456a7de6912ac7f039051798ddee265990ae4655df1573738e71d9718432c56ef04602814fd431f8010618ba80ca0324a4187858831d46b53721a01dc76f7b3653ec099a351cef6dc4a2ecadff9a38e5336433ada5b06dc7b010dc30b08e5a37852994ea7ba239bdd150c51366e2722ec74b6e697f781fd29395010e3007c8f4184cb4e08e9a5608a284f27e0f5e94e63a202d7c119280ad5a3681f33a0858257b40b7269bdc96ab844f2aa2437a7fe7ea2fdeff1ea102908e08081cba729062ed0b1fdfa2bec90bf1a38ec6378b55ede470f1bf6dc24fb1c9a7178c95ade3c569ac6befc59166310aa779f2b944aa11b01aec8d2236cb3a6dc9d03e19d5f1efa02fb4025767b4cfa73bd5454cdb1996ca3b30ff5c0223f4c92215e35aa2360fa02dc22daafecdde1a75eb535cd117d031fd8e8a6e71fdde1f5def35f6f0206e3a7f1029aaba91ced0b06e960c19ee3381112ff6627291ebcae12284da1dfa94b5352b746b88c487675003ffa98960ccdde57f00efd2cce8dd45a200e4f20bbef973014094a55546b2c7c74bc117a8f91fbd9ff6e0aa5229d9f2718d112ac091da7720b780291759fb70b5861f1003eb664f8894a3579488e68fbbfb7c913ecb40fbb8f98cae3daedf81bb1f39560009d459cfb65d3dfa6bac9c943ffe79313744600957a10ceb58c42bf12c90c8723f7490ee67451218293418c225e939381a1222ea56710862ec60a3df8b548a8d750b2623ca89f37fb7db6ae8f0558680d7c84b37ec96dbc75c4278bb16b096126458b7d0d4b027b4a5142d4de5acf1d4d04c9f9d8e4e8f873f954b45aa2bb0b7d0a50176e91abe24579d0cd35945c5b823ae0f07c1212a72daf0e28a0062f0779b330b8b0a99ef0c430940c188226ee86102e076bed511cacdfee60032daf816afc771db846ddb6a8c6862d59ebb3c5dfcd51947d513c00816dcc6a071175a0003f60e14d667fde0c76ac7a1660479479904fb2a0446ed1565d9bb9312edfebff606af6528719c80c143e08feb16f24a2846994a5e40b346ace09f0aa39e836f7b6771dc1aea31ba458f461f3b24e8fdfd802bb77a43ebcdac786ecb15a059111249f12209077398e0e478b089fde4ed7a801af5c67942ff615b5a21108bbb746548c9fa95aee68d91035a0550c4a45b7c00b4a796662668bf5c9e10073a470384eb392cbfc519b9e50965796f801da067f06903de40df8dcb83725220245f5c825edefe53d3451f3bfd16c5d4b2990017b8f53935f957cd16c8e4941e694a4f1a5e916ad530d2efda1bde1bf722fb56412ee79b863f0faa3b4cc708e1b8997fef1e051faa47a5bbd3080f4b7a8f11eec5392182805f2c7558177eb74aef6546258e73fc19d703d5e2bb8bbc8814f9adb97907fff9ddd6d343991b3c4102cfeb59d5e6803af8a2ed109f621c2bde5f2549e288295c33f18ba5b634dc3e5b38c4543d08c06ad1d874b42c346a47a6df14621df2fabeb7452278629f87e9e00deec1c45fc152f473beabfdff9a1f99ccf2c8d54221aba29a3f51bd0476962936e3d00cff2bfcb88e5f9cd81eb3f930626125b7d58fadc827f62a88d8f0cdea1d92bb8e24238dd1c08759267c62a7a6a52724cd96bb953faaa161a4b83d866ac50d58df99d9f96dbe0cd14416da41103e1a8bb9fc2fb964b8127515618837b7eadc0b52a5c0b6346357474820105ea770bd1dee25c630d4ca70bcb5820fae7af6ad11d0c42c1c6f5b7f8e98e906e9b9d7c64905f532d12ba1c1c4c8cbce87803ba9752b549c5dd538634ba66ea9e78d60ccc0731dbb940af0c9b9d74fd33375de632b48075e814a24c8f66d579ad0b792c1c94f671d0747e74e4e6fcf47483666d51b01732b6c4b48167658f28aaeec3a26355b1eae12063b10af3b089328a309385a3ab16d0bdd5cdfbe97dc4fab7f2724640bc4696fe8762ac80b933454425184ab26e9ee97215108da934962eeb2d78812c673eaacd0d131e2a3578cfe532b1a7ffeb83c6a7bcd3ba4cbaa18f22ac6311e1d8720301fc66d596f541e048823c2f5c4e6bbe4c32e9d1bea9ec108556852cc6456841185b23eeab99a4034ae03f31bfcdc89a985e3f67dd38b66b2478b1e66171a0a25743c7238633d076023f8f224ea70da63a41b7bed92e4b2e182d67cc86cc6dacb6d8f73a002bf4052710d4feac592c80349c6c3c1b922ba625554a39c4cda97bdbdcf7ce07524a28a45fdb8404d4b70f41b1dca09da2c575c41e4204e22f17d09332e8baf8185438d6ed7940c1beb4996b4e35bb00157247177c8432ae2541da10d690285f3641a9ad4437b617cdc2f3b485d3a56fc65daeb3356b392ae1198a5dc53c97b7a2b3342fc91994c6297d6df109f7d3fd23d7726bb55e3efc21053def4bb2ef8a9423032391ea63e0d3973d8be6f633578235d5e76f9597adb4484741cb95925f4db6cbb15e813d0e097e455e21d1b65572c41f6e9d538b0a2a871b9442755ab260101c17754d3edffe10377d3710db65f4d7e27ae4e84bc110a2a4f1bb690914f2b2c7adc5ee1df6e2d8d0f3ec4c6cbc0230df7c33e1b2e009bc39ccdca738953b8d13568f276846078f707193d5e15d97c0e5c621c46ce45701cac95dce292c598b3d797eb595ba2bf5f5241a66a320e3b7cc0ee2b980729d78f54877ead32ffe48a9a5feaf39b3240e567c5d66f6fed8e44c23da61ccac899e3671296abaa1643be11420871c505c98dd3edf2ca126e04ca2f7d22c6f46b10b9dd1a213eb83875661a2fe3a01ea12f2c213bd479b6c4e8edbf595d82a20266a96c5ee9376ed8ac87afaffb947064b9eba5c51593fc6f57ca1f829e0aea54db34c53713ffbecce41aa511f4452768ef12ed868fcc11553ef33c97b862e1651021234e40da6d1a6d41f64b71344992ccfeed7db8d27b20102371e32f2b4625e24f02c17daf80660067bbfbc65a080a8a355980c4384714ba7b18b087688d9e6a9e6b339b65c142d0ec32455431213f2fd3b0b811ca8577888a46ae14a3b6127d8abcd1c5467cf15e9dfdce3e166da9e1dac91b5b405655ba56efeef3773065c9fe933742b6d49480188abff5f65a06498dfe84ec9075c66daffff57256a4c682d2c10279924ba7a18238f7013ee2dfb4a76ec065d1400f6ce6ede2631e8262bec0299a3e6a6d2aef73b202d4ceff8e21a1e1b9893033d4b387bb06638e3281fd5fc8098e811e17a2aac6b12bea7d822bba4554a443d1fc341ac5faf5e41737ccce17a8a578755385712c5b3df6702ae8f8ef92a176429077bbb8efa4fc1f9e27310b96c6dec7568ccb496a07001bde1a48311fdcd306acb807418124770cb07c438970d66f6e58267bf26d8465687ea1e271ec3151c50eb0f89a70da00523b597eff7748a309a093f356959fe411e39f7cc971a881169fff56612be95c16f97d8ea8939ee4941f26efcfd25577d7b95cc117c085588050a2ec7aa6f6b44bda22e623db678f661e8a3537db5ecdf96415d514677cbba087147270648f1858ca6f093eed6da8d13499f736c8e60e40d3481695fff9ae47fb6fa1b1682f9f87896198c4785523567782c4d9b37838940c0fd14dbac3a0ef12e1c227e98820558e3c08c476836c8c57625e3ab9ab04853653fdf9ec126c4d6e3144da89ddeff8e6c44547c8ca105eef18176ba4841550d979dd06113ac34e2f209c4de764e154e712df7f451f9baffab75d1945d65befebd369da094cf7b4ad4b6313aad075da88afc520b2b6ae7c2240b7440bb513a31f2a36eca849c3c319d415e685c0d61a0432a24e372128f71707ab522785f166913ec71f6cdbd6094e9a4fa0474ae3164257c7f4a336469b613cd521ded827e36bade3ae3595ecf6eea8c0e34c7f14e066fed2a6d9ade9ad0f150230ae7afcc24a9538149a2dc3fe8b8b79e63a3026640ad1eb4dd8b6ce42d803fa61a75e89a5d117602db118daf9b41772ca4c1a2cff16dec0d3b74d1f5890a51ab939186b000a35aac93a57d36be94e4040adc83d7734068d8838567f872ce1f357af48dd7e2a88b60ed108fde51276c31dcf32c6a74e2941d684a248daf0c9e74d79d1d273809158342398f197d4058d581f29ed83aca9eb027f71c25b4a2e77be519140a0c3718f57c238f93ee3de09a6f8f7c4a1ca5025ddb387112a5fe51d7fed85dcb4244c63c22b1a37c5af2e593c869e82b1d2e4c837f5cc4a2e2fca8cbd34bca361b834c9a43604fb454c69c7560bdf2a534cdaad5af6e8af9d9ae20f66732080f88fe3b8544f6ab4899c55763e2a0a81e63fc94dcba38eb1e3257b5b5c4bb217dfc0cbe9abc321471ee5b48ea1685b9a53c", 0xce4}], 0x3}}], 0x1, 0x811)

4.658193096s ago: executing program 2 (id=8419):
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
syz_mount_image$jfs(&(0x7f0000000400), &(0x7f00000001c0)='./file2\x00', 0x800c08, &(0x7f0000000280)=ANY=[@ANYBLOB="2c756d61736b3d300004000000000000000000", @ANYRES8=0x0, @ANYRES16=0x0, @ANYRESDEC=0x0, @ANYRES8=0x0, @ANYRESHEX=0x0, @ANYRESDEC, @ANYRESDEC, @ANYRES8, @ANYRES8=0x0, @ANYBLOB="c49ecfdd8711048bea9eb55574810b5cbc454ccd5a63c7941ba393a86e5b7a8fdcf7b75e9bd7459f7e129fadabeef1e9b084a7568c9ce90014069121b0700a4f948941c59d1e8e3f80ffa601a20f979dd6e1fe150ba283f14999be8b6fe530f67dbac2443da65608409abd01602980fb5227c272180171dfa09978bf40bd650d5c4a54e6cecfcfd2e41e9ec85c6a274e668e7443cdd2c3cba6972ccffb41487a8202816ac3ba65bb5cb3d1323194c102f39aae52e46500849660e484f39210872d958d69f61e1311c51a34b64f81cb8a5cc30bf568185b0bb1f0d438777c833a9b362a10cace728b508eb7642244"], 0x21, 0x62b3, &(0x7f000000b800)="$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")
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

4.166061425s ago: executing program 1 (id=8425):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000003c0)={'batadv_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="280000001400090a0000000000000000021f4800", @ANYRES32=r2, @ANYBLOB="08000200e4d4c21e080008004c06"], 0x28}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x1000000, 0x0, {0x0, 0x0, 0x74, r2}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)

3.603208529s ago: executing program 2 (id=8428):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
io_setup(0x2, &(0x7f0000000000)=<r0=>0x0)
r1 = eventfd(0x0)
io_submit(r0, 0x2, &(0x7f0000000880)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x8, r1, &(0x7f0000000280)="b970cb2b79989428", 0x8, 0x1000, 0x0, 0xbd4c3b8bc89fc43d, r1}, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r1, &(0x7f0000000340), 0x0, 0x5, 0x0, 0x3, r1}])
syz_clone(0xe200, 0x0, 0x0, 0x0, 0x0, 0x0)

2.702164318s ago: executing program 1 (id=8431):
r0 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000580)='cgroup.max.descendants\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x80000000, 0x12)

2.600372538s ago: executing program 4 (id=8433):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x22003, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f0000000140)="0f30c402fd3eecae660f38800a66b80c010f00d0662e3646d87213460f09b98c0900000f32b8010000000f01c12e644c0fc72f", 0x33}], 0x1, 0x60, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

2.552569606s ago: executing program 1 (id=8434):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0xd, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a800000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000040000850000008200000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
close(r2)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

2.408206663s ago: executing program 1 (id=8436):
r0 = memfd_secret(0x80000)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x13, r0, 0x0)
ftruncate(r0, 0x3)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0x10, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r1, @ANYBLOB="0000000002000000b70500000800000085000000a900000095"], &(0x7f0000000300)='GPL\x00', 0x4, 0x1002, &(0x7f00000014c0)=""/4098}, 0x94)

2.210083777s ago: executing program 1 (id=8438):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000180)='./bus\x00', 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB='errors=continue,discard_unit=section,alloc_mode=default,active_logs=6,acl,fault_injection=00000000000000001262,acl,noacl,compress_cache,background_gc=off,nobarrier,compress_cache,mode=lfs,errors=remount-ro,nocheckpoint_merge,mode=fragment:segment,inline_dmntry,\x00'], 0x1, 0x5505, &(0x7f0000002480)="$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")
setfsgid(0xee00)
r0 = syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')
read$FUSE(r0, &(0x7f0000002780)={0x2020}, 0x5ecfb203)

2.118687909s ago: executing program 4 (id=8439):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000100)=0xffffffffffffffff, 0x4)
sendmmsg(r0, &(0x7f0000008a00)=[{{0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000200)='V', 0xfe75}], 0x1, &(0x7f0000001b80)=[{0xc, 0x1}], 0xc}}], 0x1, 0x4044044)

2.117396541s ago: executing program 2 (id=8440):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)

2.058693099s ago: executing program 4 (id=8441):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000280)=0xff)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETS(r1, 0x5402, &(0x7f0000000000)={0x140, 0x8000009, 0x5, 0x845f, 0x10, "737b27e90e2947801cf3a25bada40a9fd86040"})
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000240)=0xd)

2.00786869s ago: executing program 3 (id=8442):
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r0, 0xffffffffffffffff, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x0, &(0x7f0000000400))

1.930855718s ago: executing program 4 (id=8443):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'hash\x00', 0x0, 0x0, 'cmac(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmsg$IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000a40)={0x34, 0x0, 0x10, 0x70bd2c, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x4e8}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7f}, @IPVS_CMD_ATTR_DEST={0x4}, @IPVS_CMD_ATTR_SERVICE={0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x40005}, 0x24000081)

1.836831447s ago: executing program 3 (id=8444):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000180)={@multicast2, @loopback}, 0xc)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000040)={'lo\x00'})
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000080)=ANY=[@ANYBLOB="e00000027f0007000000000002"], 0x18)

1.822476211s ago: executing program 4 (id=8445):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0xd40, 0xd2)
close(r0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
mount$9p_fd(0x0, &(0x7f0000000080)='./file1\x00', &(0x7f00000000c0), 0x200000, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

1.704015733s ago: executing program 9 (id=8446):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001300)=ANY=[@ANYBLOB="05000000060000003e00000040"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001ac0)=ANY=[@ANYBLOB="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"], 0x0}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000500), &(0x7f0000000740), 0x1003, r0}, 0x38)
bpf$MAP_LOOKUP_ELEM(0x4, &(0x7f0000000b80)={r0, &(0x7f00000014c0), &(0x7f0000000b40)=""/31}, 0x20)

1.659474352s ago: executing program 3 (id=8447):
r0 = syz_open_dev$dri(&(0x7f00000002c0), 0x1, 0x2100)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000300)={&(0x7f00000001c0)=[<r1=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f00000003c0)={r1, <r2=>0x0, <r3=>0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_SETPLANE(r0, 0xc03064b7, &(0x7f0000000200)={r1, r2, r3, 0x0, 0x80000003, 0x80000003, 0x0, 0x0, 0x5, 0xe, 0xc, 0x31e})

1.581725397s ago: executing program 4 (id=8448):
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0xa, 0xbf7ffffb)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000000)={'filter\x00', 0x0, 0x0, 0x0, [0xd1d, 0x5, 0x3, 0xfffffffffffffffb, 0x7ff, 0x9]}, &(0x7f0000000080)=0x78)

1.40128128s ago: executing program 9 (id=8449):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1000, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
r1 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x882)
ioctl$EVIOCSABS20(r1, 0x40044591, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f00000005c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

1.369964651s ago: executing program 3 (id=8450):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x22, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_int(r0, 0x6, 0x1e, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000300)={0x2, 0x0, @remote}, 0x10)
shutdown(r0, 0x0)

1.249055847s ago: executing program 9 (id=8451):
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
setuid(0xee01)
mount(0x0, &(0x7f0000000040)='.\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x2200cd0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')
read$FUSE(r0, &(0x7f0000002780)={0x2020}, 0x5ecfb203)

1.153671802s ago: executing program 3 (id=8452):
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
syz_mount_image$xfs(&(0x7f0000000800), &(0x7f0000000080)='./file0\x00', 0x2200000, &(0x7f0000000600)={[{@dax}]}, 0x1, 0xba4c, &(0x7f0000020c00)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000005c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x181d011, 0x0, 0x40, 0x0, &(0x7f0000000140))

1.023127219s ago: executing program 9 (id=8453):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x8082, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, 0x0}], 0x1, 0x5b, 0x0, 0x0)
ioctl$KVM_GET_MSRS_cpu(r2, 0xc008ae88, &(0x7f0000000600)={0x1, 0x0, [{0x490, 0x0, 0x3}]})

830.825473ms ago: executing program 2 (id=8454):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x41000, 0x47, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f00000004c0)=[{0x4, 0x2, 0x3, 0x8}], 0x10, 0x7b788d86}, 0x94)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01080000000000000000070000000900010073797a300000000054000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000000c080003"], 0xd8}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r0)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000580)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000040200f2c8dc1b000000180001801400020073797a5f74756e0000000000000000000c000280"], 0x38}, 0x1, 0x0, 0x0, 0x20000844}, 0x0)

549.19486ms ago: executing program 2 (id=8455):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000280)={0x2, 0x3, 0x0, 0x8, 0xe, 0x0, 0x4070bd2c, 0x25dfdbfc, [@sadb_key={0x2, 0x9, 0x8, 0x0, "1c"}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x4e22, @remote}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x7, 0xc, 0x80000000}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0xa}}}, @sadb_x_sa2={0x2, 0x13, 0x1, 0x0, 0x0, 0x70bd29, 0x3506}]}, 0x70}, 0x1, 0x7}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="0201"], 0x70}}, 0x0)
sendmmsg(r0, &(0x7f0000000180), 0x3ef, 0x0)

530.756345ms ago: executing program 9 (id=8456):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x81, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0xc})
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f00000000c0)={0x62})

319.549189ms ago: executing program 2 (id=8457):
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000080)='./bus\x00', 0x3018018, &(0x7f0000000040)=ANY=[], 0xd0, 0x599, &(0x7f0000000b80)="$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")
r0 = open(&(0x7f0000000080)='./file1\x00', 0x66842, 0x90)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x40)
pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x140000}], 0x14, 0x7800, 0x0, 0x3)

161.005026ms ago: executing program 1 (id=8458):
syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f00000004c0)='./file1\x00', 0x1804810, &(0x7f0000000140)=ANY=[], 0xfb, 0x6b4, &(0x7f0000000500)="$eJzs3c1vHHf9B/D3rDd2Nm3zS9KkzQ9VqtVIgIhInFhpMRfCg1AOVVWVA2crcRorTlocF7kVIg6P1x76B5RDLogTEicukQoHLvTWG/IRCYlLOTRcWDSzs+vd9dpZt4kfxOsVzX6fZr7zmc/M7JMVbYD/WVfOpvkgRa6cfXW1bK/fn11avz97q1N/rZlkKslaUlYbSYrP2u32R8nlpOhNUwyVm3ywOPfGJ5+u/73TatZLtX5ju+2G1OutDXWvdfumk0zU5RcwMN/VLzxf0Yv8cpIzdQl77lCS9oAf/eXp3kif1qitD+9KjMCTVXReNzc5lhypb/TyfUD3lbexu9GNb2rM9YbfQQAAAMBBU30Gbm7qHuj5v4d5mNXi6C6GBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAfa2sbv/xf10ujWp1N0f/9/su5LXd9fXtzZ6g+eVBwAAAAAAAAA8GTdfqav8eLDPMxqjnbb7aL6m/9LVeNk9fhU3smdLGQ557Ka+axkJcu5kORY30STq/MrK1Pd1snPvlvXNm95cdSWyxcfEXV36tZQGwAAAAAAAAAo/SxXNv7+DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+0GRTHSKFPf6uo+l0UxyOMlk2bGWfNytH2QP9joAAAAA2AVTycOs5mi33S5yMslz1XcAh/NObmcli1nJUhZyrfpeoPOpv7F+f3Zp/f7srXLZPO+3/7mjMKoZ0/nuYfSeT1drtHI9i1XPuVzNW1nKtTSqLUun63i6sw7Fda+MqfhW7ZXxIrtWl+WRv1+Xm9zd0cFuZYdfphyrMnKok5GJiczUsZXZON49M6PP0A7PzsCespALafSCPTm0p8nBgxnM+caUje32d6Quy+P51VY53xOdTPyn3bGQi31X33Pb5zz5yh9+98OZur5/Dmk8E3XZrh5bm6+J2b5MPD9OJm4s3b554/qdswctE5vMVJk41Wtfyffzg5zNdF7Pchbz48xnJQuZzveq2nx98ou+W36LTF0eaL3+qEgm6yu0c7J2FtNL1bZHs5jX8lauZSEvV/8u5kJeyaVcylzfGT61/Rmu7vrG5ru+0n5mZPBnvlpXWkl+XZf7Q5nX4928rvVf9TNVvo8P9Gxk6cQYWRrx3JikuVUozS/VlXIfP3/UE+muGs7Ehb5MPLt9Jn5TPa3cWbp9c/nG/Nvj7e7E+3WlvI9+mUzvnyeS8no50TuLUwNXRzn2bG9sMF/l2MneWKN3EXTHTuWPafZ6F7O25Z06Wb+Hq2fq28vFauz5kWOz1djpeuxQbz+D77cA2PeOfO3IZOsfrb+2Pmz9onWj9erh70x9Y+qFyRz606FvNmcmvtx4ofh9PsxPNz7/AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAn9+dd9+7Ob+0tLA8VGm323c/Hj00ZqX7ezWfc/PhSvdXocZYOdN/e6pcdcTQRNp3txh6UpX/fzrZrX3t38q/2+123VNssc5v/zycqKnsLHXF47rY6t/5a++L1O1RZc+ekoBdcn7l1tvn77z73tcXb82/ufDmwu25S5fmZuYuvTx7/vri0sJM53GvowSehI0X/b2OBAAAAAAAAAAAABjXY/4/A2ujhvb6GAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICD7crZNB+kyIWZczNle/3+7FK5dOsbazaTNJIUP0mKj5LL6Sw51jddsdV+Plice+OTT9f/1e6o56vWb2y33XjW6iXTSSY65b3HNd/VutxWsd0hFL0jLBN2pps42Gv/DQAA//9Qqg9m")
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000005c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x181d011, 0x0, 0x40, 0x0, &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x183042, 0x18)
rename(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000200)='./file0\x00')
rename(&(0x7f0000000140)='./file0\x00', &(0x7f0000000240)='.\x02\x00')

71.024467ms ago: executing program 9 (id=8459):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}}, 0xc080)
sendmsg$NL80211_CMD_ASSOCIATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={0x3c, r1, 0x1, 0x70bd2a, 0x25dfd9fd, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_USE_RRM={0x4}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, {0xe000, {0x0, 0xa, 0x7, 0xeb}}}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x3c}}, 0x48414)

0s ago: executing program 3 (id=8460):
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
bind$inet6(r0, &(0x7f0000fa0fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x24000088, &(0x7f00000001c0)={0xa, 0x4e20, 0x8, @loopback, 0xfffffffe}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000200)=0x3fd0, 0x4)
sendmmsg$inet6(r0, &(0x7f0000005400)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000040)="b8", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000240)="83", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f00000015c0)=[{&(0x7f0000000400)='8', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000002f80)=[{&(0x7f0000001b00)="b4", 0x1}], 0x1}}], 0x4, 0x84)

kernel console output (not intermixed with test programs):

loop5): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  933.620005][T28521] netlink: 67 bytes leftover after parsing attributes in process `syz.4.7677'.
[  933.639812][T28499] BTRFS info (device loop5): rebuilding free space tree
[  933.685916][T28506] loop9: detected capacity change from 0 to 32768
[  933.771872][T28540] dummy0: Caught tx_queue_len zero misconfig
[  933.815276][T28506] JBD2: Ignoring recovery information on journal
[  933.871930][T28499] BTRFS info (device loop5): disabling free space tree
[  933.927085][T28499] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  933.999620][T28506] ocfs2: Mounting device (7,9) on (node local, slot 0) with ordered data mode.
[  934.009340][T28499] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  934.097836][T28499] BTRFS info (device loop5): allowing degraded mounts
[  934.125217][T28499] BTRFS info (device loop5): enabling ssd optimizations
[  934.154758][T28499] BTRFS info (device loop5): turning on async discard
[  934.203541][T28499] BTRFS info (device loop5): enabling disk space caching
[  934.243740][T28499] BTRFS info (device loop5): force clearing of disk cache
[  934.276375][T28499] BTRFS info (device loop5): use zlib compression, level 3
[  934.604721][T28564] loop2: detected capacity change from 0 to 128
[  934.699992][T28564] netlink: 'syz.2.7689': attribute type 3 has an invalid length.
[  934.747518][T28564] netlink: 72 bytes leftover after parsing attributes in process `syz.2.7689'.
[  934.910598][   T29] audit: type=1800 audit(2000001134.076:908): pid=28506 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.7672" name="file1" dev="loop9" ino=17059 res=0 errno=0
[  934.951181][    C0] workqueue function usb_giveback_urb_bh changed kcov_mode from 1073741824 to 0
[  935.046988][T28573] loop2: detected capacity change from 0 to 1024
[  935.089851][T28573] EXT4-fs: Ignoring removed orlov option
[  935.097347][T18100] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  935.159215][T28573] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  935.279055][T18100] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  935.297570][T28573] EXT4-fs (loop2): shut down requested (0)
[  935.322333][T18100] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  935.386343][T24784] BTRFS info (device loop5): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  935.396927][T18100] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  935.447622][T18100] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[  935.467500][T18100] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[  935.480881][T18100] usb 5-1: Product: syz
[  935.486431][T18100] usb 5-1: Manufacturer: syz
[  935.493518][T18100] usb 5-1: SerialNumber: syz
[  935.517227][T18488] ocfs2: Unmounting device (7,9) on (node local)
[  935.734759][T18100] usblp 5-1:1.0: usblp0: USB Unidirectional printer dev 36 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  935.999215][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  936.069457][T18100] usb 5-1: USB disconnect, device number 36
[  936.426977][T28569] usblp0: removed
[  937.295088][T28600] loop4: detected capacity change from 0 to 64
[  938.449944][T28642] loop4: detected capacity change from 0 to 1024
[  938.504525][T28648] loop5: detected capacity change from 0 to 8
[  938.517887][T28642] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  938.565559][T28648] SQUASHFS error: Failed to read block 0xe000000000001ea: -5
[  938.573028][T28648] unable to read xattr id index table
[  938.589497][T28642] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4222: comm syz.4.7719: Allocating blocks 385-513 which overlap fs metadata
[  938.608539][T28642] EXT4-fs (loop4): pa ffff88805d72b740: logic 16, phys. 129, len 24
[  938.618163][T28642] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5465: group 0, free 0, pa_free 8
[  938.786821][T23558] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  938.790029][T28655] team_slave_1: Caught tx_queue_len zero misconfig
[  939.897885][T28695] loop2: detected capacity change from 0 to 256
[  939.919294][T28695] exfat: Deprecated parameter 'utf8'
[  939.985605][T28695] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  940.108329][T28681] loop5: detected capacity change from 0 to 32768
[  940.145492][T28681] XFS (loop5): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  940.238990][T28681] XFS (loop5): Ending clean mount
[  940.462595][T24784] XFS (loop5): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  941.277939][T28703] loop9: detected capacity change from 0 to 40427
[  941.482298][T28725] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  941.615943][T28703] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  941.657759][T28703] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  941.701255][   T29] audit: type=1800 audit(2000001140.866:909): pid=28703 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.7742" name="file1" dev="loop9" ino=10 res=0 errno=0
[  941.792317][   T29] audit: type=1800 audit(2000001140.896:910): pid=28703 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.7742" name="file1" dev="loop9" ino=10 res=0 errno=0
[  941.818247][T28718] loop4: detected capacity change from 0 to 32768
[  941.874589][T28718] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.7749 (28718)
[  941.902659][T18488] syz-executor: attempt to access beyond end of device
[  941.902659][T18488] loop9: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  941.930085][T28718] BTRFS info (device loop4): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  941.942450][T28718] BTRFS info (device loop4): using blake2b checksum algorithm
[  941.967391][T18488] CPU: 0 UID: 0 PID: 18488 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  941.967421][T18488] Tainted: [L]=SOFTLOCKUP
[  941.967428][T18488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  941.967440][T18488] Call Trace:
[  941.967448][T18488]  <TASK>
[  941.967455][T18488]  dump_stack_lvl+0xe8/0x150
[  941.967486][T18488]  f2fs_handle_critical_error+0x37c/0x540
[  941.967514][T18488]  f2fs_write_end_io+0xcdb/0xff0
[  941.967555][T18488]  __submit_merged_bio+0x256/0x700
[  941.967582][T18488]  __submit_merged_write_cond+0x3c9/0x4e0
[  941.967611][T18488]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  941.967654][T18488]  f2fs_write_data_pages+0x2975/0x35e0
[  941.967716][T18488]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  941.967787][T18488]  ? kernel_text_address+0xa5/0xe0
[  941.967812][T18488]  ? __lock_acquire+0x6b5/0x2cf0
[  941.967852][T18488]  ? __lock_acquire+0x6b5/0x2cf0
[  941.967881][T18488]  ? do_raw_spin_lock+0x12b/0x2f0
[  941.967912][T18488]  ? do_raw_spin_unlock+0xf5/0x210
[  941.967932][T18488]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  941.967954][T18488]  do_writepages+0x32e/0x550
[  941.967986][T18488]  ? do_raw_spin_unlock+0xf5/0x210
[  941.968013][T18488]  filemap_fdatawrite+0x1e9/0x2f0
[  941.968039][T18488]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  941.968108][T18488]  ? do_raw_spin_unlock+0xf5/0x210
[  941.968139][T18488]  f2fs_sync_dirty_inodes+0x30e/0x860
[  941.968177][T18488]  f2fs_write_checkpoint+0x9df/0x26a0
[  941.968235][T18488]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  941.968317][T18488]  kill_f2fs_super+0x314/0x720
[  941.968345][T18488]  ? __pfx_kill_f2fs_super+0x10/0x10
[  941.968380][T18488]  ? lockdep_hardirqs_on+0x7a/0x110
[  941.968420][T18488]  deactivate_locked_super+0xbc/0x130
[  941.968445][T18488]  cleanup_mnt+0x437/0x4d0
[  941.968468][T18488]  ? _raw_spin_unlock_irq+0x23/0x50
[  941.968493][T18488]  task_work_run+0x1d9/0x270
[  941.968517][T18488]  ? __pfx_task_work_run+0x10/0x10
[  941.968548][T18488]  exit_to_user_mode_loop+0xed/0x480
[  941.968568][T18488]  ? rcu_is_watching+0x15/0xb0
[  941.968588][T18488]  do_syscall_64+0x32d/0xf80
[  941.968610][T18488]  ? trace_irq_disable+0x3b/0x150
[  941.968627][T18488]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  941.968644][T18488]  ? clear_bhb_loop+0x40/0x90
[  941.968665][T18488]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  941.968680][T18488] RIP: 0033:0x7f281199d9d7
[  941.968698][T18488] Code: a2 c7 05 1c ed 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  941.968712][T18488] RSP: 002b:00007ffd63dbf438 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  941.968732][T18488] RAX: 0000000000000000 RBX: 00007f2811a31f90 RCX: 00007f281199d9d7
[  941.968745][T18488] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd63dbf4f0
[  941.968756][T18488] RBP: 00007ffd63dbf4f0 R08: 00007ffd63dc04f0 R09: 00000000ffffffff
[  941.968768][T18488] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd63dc0580
[  941.968780][T18488] R13: 00007f2811a31f90 R14: 00000000000e5ec7 R15: 00007ffd63dc05c0
[  941.968814][T18488]  </TASK>
[  941.972951][T18488] F2FS-fs (loop9): Stopped filesystem due to reason: 3
[  942.470899][T28718] BTRFS info (device loop4): enabling ssd optimizations
[  942.525846][T28718] BTRFS info (device loop4): turning on async discard
[  942.597892][T28718] BTRFS info (device loop4): enabling free space tree
[  943.953743][T23558] BTRFS info (device loop4): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  944.452790][T28752] loop5: detected capacity change from 0 to 40427
[  944.506320][T28746] loop2: detected capacity change from 0 to 32768
[  944.507361][T28752] F2FS-fs (loop5): Image doesn't support compression
[  944.550817][T28752] F2FS-fs (loop5): build fault injection rate: 690
[  944.564104][T28752] F2FS-fs (loop5): build fault injection type: 0x4
[  944.578902][T28752] F2FS-fs (loop5): invalid crc value
[  944.623160][T28746] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  944.790997][T28746] XFS (loop2): Ending clean mount
[  944.852431][T28746] XFS (loop2): Quotacheck needed: Please wait.
[  945.010228][T28752] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  945.090180][T28752] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  945.369774][T28746] XFS (loop2): Quotacheck: Done.
[  945.371251][   T29] audit: type=1800 audit(2000001144.526:911): pid=28752 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.7756" name="file2" dev="loop5" ino=14 res=0 errno=0
[  945.617167][T24784] syz-executor: attempt to access beyond end of device
[  945.617167][T24784] loop5: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  945.645051][T28786] loop9: detected capacity change from 0 to 32768
[  945.670371][T24784] CPU: 0 UID: 0 PID: 24784 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  945.670400][T24784] Tainted: [L]=SOFTLOCKUP
[  945.670406][T24784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  945.670416][T24784] Call Trace:
[  945.670424][T24784]  <TASK>
[  945.670432][T24784]  dump_stack_lvl+0xe8/0x150
[  945.670463][T24784]  f2fs_handle_critical_error+0x37c/0x540
[  945.670491][T24784]  f2fs_write_end_io+0xcdb/0xff0
[  945.670531][T24784]  __submit_merged_bio+0x256/0x700
[  945.670558][T24784]  __submit_merged_write_cond+0x3c9/0x4e0
[  945.670586][T24784]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  945.670631][T24784]  f2fs_write_data_pages+0x2975/0x35e0
[  945.670651][T24784]  ? is_bpf_text_address+0x26/0x2b0
[  945.670707][T24784]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  945.670744][T24784]  ? do_raw_spin_lock+0x12b/0x2f0
[  945.670793][T24784]  ? do_raw_spin_unlock+0xf5/0x210
[  945.670816][T24784]  ? __lock_acquire+0x6b5/0x2cf0
[  945.670880][T24784]  ? __lock_acquire+0x6b5/0x2cf0
[  945.670906][T24784]  ? do_raw_spin_lock+0x12b/0x2f0
[  945.670939][T24784]  ? do_raw_spin_unlock+0xf5/0x210
[  945.670958][T24784]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  945.670978][T24784]  do_writepages+0x32e/0x550
[  945.671007][T24784]  ? do_raw_spin_unlock+0xf5/0x210
[  945.671031][T24784]  filemap_fdatawrite+0x1e9/0x2f0
[  945.671067][T24784]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  945.671135][T24784]  ? do_raw_spin_unlock+0xf5/0x210
[  945.671160][T24784]  f2fs_sync_dirty_inodes+0x30e/0x860
[  945.671198][T24784]  f2fs_write_checkpoint+0x9df/0x26a0
[  945.671253][T24784]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  945.671318][T24784]  ? kfree+0x1c1/0x630
[  945.671337][T24784]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  945.671370][T24784]  kill_f2fs_super+0x314/0x720
[  945.671398][T24784]  ? __pfx_kill_f2fs_super+0x10/0x10
[  945.671432][T24784]  ? lockdep_hardirqs_on+0x7a/0x110
[  945.671470][T24784]  deactivate_locked_super+0xbc/0x130
[  945.671493][T24784]  cleanup_mnt+0x437/0x4d0
[  945.671516][T24784]  ? _raw_spin_unlock_irq+0x23/0x50
[  945.671542][T24784]  task_work_run+0x1d9/0x270
[  945.671567][T24784]  ? __pfx_task_work_run+0x10/0x10
[  945.671600][T24784]  exit_to_user_mode_loop+0xed/0x480
[  945.671620][T24784]  ? rcu_is_watching+0x15/0xb0
[  945.671642][T24784]  do_syscall_64+0x32d/0xf80
[  945.671663][T24784]  ? trace_irq_disable+0x3b/0x150
[  945.671681][T24784]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  945.671699][T24784]  ? clear_bhb_loop+0x40/0x90
[  945.671719][T24784]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  945.671735][T24784] RIP: 0033:0x7f37e199d9d7
[  945.671752][T24784] Code: a2 c7 05 1c ed 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  945.671766][T24784] RSP: 002b:00007ffcf6af1538 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  945.671785][T24784] RAX: 0000000000000000 RBX: 00007f37e1a31f90 RCX: 00007f37e199d9d7
[  945.671795][T24784] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcf6af15f0
[  945.671806][T24784] RBP: 00007ffcf6af15f0 R08: 00007ffcf6af25f0 R09: 00000000ffffffff
[  945.671817][T24784] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcf6af2680
[  945.671828][T24784] R13: 00007f37e1a31f90 R14: 00000000000e6d11 R15: 00007ffcf6af26c0
[  945.671868][T24784]  </TASK>
[  945.673212][T28786] XFS (loop9): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  945.685726][T24784] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  946.037869][ T5826] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  946.038045][T24784] CPU: 0 UID: 0 PID: 24784 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  946.038068][T24784] Tainted: [L]=SOFTLOCKUP
[  946.038075][T24784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  946.038085][T24784] Call Trace:
[  946.038093][T24784]  <TASK>
[  946.038100][T24784]  dump_stack_lvl+0xe8/0x150
[  946.038129][T24784]  f2fs_handle_critical_error+0x37c/0x540
[  946.038157][T24784]  f2fs_write_end_io+0xcdb/0xff0
[  946.038198][T24784]  __submit_merged_bio+0x256/0x700
[  946.038223][T24784]  __submit_merged_write_cond+0x3c9/0x4e0
[  946.038253][T24784]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  946.038296][T24784]  f2fs_write_data_pages+0x2975/0x35e0
[  946.038315][T24784]  ? is_bpf_text_address+0x26/0x2b0
[  946.038373][T24784]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  946.038408][T24784]  ? do_raw_spin_lock+0x12b/0x2f0
[  946.038465][T24784]  ? do_raw_spin_unlock+0xf5/0x210
[  946.038492][T24784]  ? __lock_acquire+0x6b5/0x2cf0
[  946.038530][T24784]  ? __lock_acquire+0x6b5/0x2cf0
[  946.038558][T24784]  ? do_raw_spin_lock+0x12b/0x2f0
[  946.038589][T24784]  ? do_raw_spin_unlock+0xf5/0x210
[  946.038608][T24784]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  946.038630][T24784]  do_writepages+0x32e/0x550
[  946.038660][T24784]  ? do_raw_spin_unlock+0xf5/0x210
[  946.038685][T24784]  filemap_fdatawrite+0x1e9/0x2f0
[  946.038708][T24784]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  946.038775][T24784]  ? do_raw_spin_unlock+0xf5/0x210
[  946.038799][T24784]  f2fs_sync_dirty_inodes+0x30e/0x860
[  946.038836][T24784]  f2fs_write_checkpoint+0x9df/0x26a0
[  946.038893][T24784]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  946.038955][T24784]  ? kfree+0x1c1/0x630
[  946.038974][T24784]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  946.039005][T24784]  kill_f2fs_super+0x314/0x720
[  946.039032][T24784]  ? __pfx_kill_f2fs_super+0x10/0x10
[  946.039067][T24784]  ? lockdep_hardirqs_on+0x7a/0x110
[  946.039105][T24784]  deactivate_locked_super+0xbc/0x130
[  946.039129][T24784]  cleanup_mnt+0x437/0x4d0
[  946.039150][T24784]  ? _raw_spin_unlock_irq+0x23/0x50
[  946.039176][T24784]  task_work_run+0x1d9/0x270
[  946.039199][T24784]  ? __pfx_task_work_run+0x10/0x10
[  946.039230][T24784]  exit_to_user_mode_loop+0xed/0x480
[  946.039251][T24784]  ? rcu_is_watching+0x15/0xb0
[  946.039277][T24784]  do_syscall_64+0x32d/0xf80
[  946.039299][T24784]  ? trace_irq_disable+0x3b/0x150
[  946.039315][T24784]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  946.039332][T24784]  ? clear_bhb_loop+0x40/0x90
[  946.039354][T24784]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  946.039370][T24784] RIP: 0033:0x7f37e199d9d7
[  946.039388][T24784] Code: a2 c7 05 1c ed 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  946.039402][T24784] RSP: 002b:00007ffcf6af1538 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  946.039426][T24784] RAX: 0000000000000000 RBX: 00007f37e1a31f90 RCX: 00007f37e199d9d7
[  946.039438][T24784] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcf6af15f0
[  946.039449][T24784] RBP: 00007ffcf6af15f0 R08: 00007ffcf6af25f0 R09: 00000000ffffffff
[  946.039461][T24784] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcf6af2680
[  946.039472][T24784] R13: 00007f37e1a31f90 R14: 00000000000e6d11 R15: 00007ffcf6af26c0
[  946.039503][T24784]  </TASK>
[  946.040401][T24784] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  946.167803][T28786] XFS (loop9): Ending clean mount
[  946.274477][T28812] netlink: 'syz.1.7773': attribute type 1 has an invalid length.
[  946.418122][T28786] XFS (loop9): Quotacheck needed: Please wait.
[  946.424554][T28812] netlink: 'syz.1.7773': attribute type 2 has an invalid length.
[  946.993293][T28810] loop4: detected capacity change from 0 to 40427
[  947.026363][T28810] F2FS-fs: heap/no_heap options were deprecated
[  947.126154][T28810] F2FS-fs (loop4): build fault injection rate: 690
[  947.140738][T28810] F2FS-fs (loop4): invalid crc value
[  947.173128][T28786] XFS (loop9): Quotacheck: Done.
[  947.393743][T28810] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  947.437593][T28810] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  947.859367][T23558] syz-executor: attempt to access beyond end of device
[  947.859367][T23558] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  947.916277][T23558] CPU: 1 UID: 0 PID: 23558 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  947.916302][T23558] Tainted: [L]=SOFTLOCKUP
[  947.916307][T23558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  947.916315][T23558] Call Trace:
[  947.916321][T23558]  <TASK>
[  947.916328][T23558]  dump_stack_lvl+0xe8/0x150
[  947.916354][T23558]  f2fs_handle_critical_error+0x37c/0x540
[  947.916375][T23558]  f2fs_write_end_io+0xcdb/0xff0
[  947.916406][T23558]  __submit_merged_bio+0x256/0x700
[  947.916426][T23558]  __submit_merged_write_cond+0x3c9/0x4e0
[  947.916448][T23558]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  947.916480][T23558]  f2fs_write_data_pages+0x2975/0x35e0
[  947.916525][T23558]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  947.916552][T23558]  ? css_rstat_updated+0x23a/0x530
[  947.916592][T23558]  ? mod_memcg_lruvec_state+0x20c/0x440
[  947.916611][T23558]  ? __lock_acquire+0x6b5/0x2cf0
[  947.916640][T23558]  ? __lock_acquire+0x6b5/0x2cf0
[  947.916661][T23558]  ? do_raw_spin_lock+0x12b/0x2f0
[  947.916685][T23558]  ? do_raw_spin_unlock+0xf5/0x210
[  947.916701][T23558]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  947.916718][T23558]  do_writepages+0x32e/0x550
[  947.916742][T23558]  ? do_raw_spin_unlock+0xf5/0x210
[  947.916762][T23558]  filemap_fdatawrite+0x1e9/0x2f0
[  947.916783][T23558]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  947.916835][T23558]  ? do_raw_spin_unlock+0xf5/0x210
[  947.916853][T23558]  f2fs_sync_dirty_inodes+0x30e/0x860
[  947.916884][T23558]  f2fs_write_checkpoint+0x9df/0x26a0
[  947.916933][T23558]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  947.916995][T23558]  kill_f2fs_super+0x314/0x720
[  947.917018][T23558]  ? __pfx_kill_f2fs_super+0x10/0x10
[  947.917045][T23558]  ? lockdep_hardirqs_on+0x7a/0x110
[  947.917074][T23558]  deactivate_locked_super+0xbc/0x130
[  947.917093][T23558]  cleanup_mnt+0x437/0x4d0
[  947.917112][T23558]  ? _raw_spin_unlock_irq+0x23/0x50
[  947.917133][T23558]  task_work_run+0x1d9/0x270
[  947.917152][T23558]  ? __pfx_task_work_run+0x10/0x10
[  947.917182][T23558]  exit_to_user_mode_loop+0xed/0x480
[  947.917201][T23558]  ? rcu_is_watching+0x15/0xb0
[  947.917218][T23558]  do_syscall_64+0x32d/0xf80
[  947.917236][T23558]  ? trace_irq_disable+0x3b/0x150
[  947.917259][T23558]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  947.917281][T23558]  ? clear_bhb_loop+0x40/0x90
[  947.917332][T23558]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  947.917362][T23558] RIP: 0033:0x7f0f9439d9d7
[  947.917379][T23558] Code: a2 c7 05 1c ed 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  947.917391][T23558] RSP: 002b:00007ffc8f3fdf48 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  947.917409][T23558] RAX: 0000000000000000 RBX: 00007f0f94431f90 RCX: 00007f0f9439d9d7
[  947.917418][T23558] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc8f3fe000
[  947.917426][T23558] RBP: 00007ffc8f3fe000 R08: 00007ffc8f3ff000 R09: 00000000ffffffff
[  947.917435][T23558] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc8f3ff090
[  947.917443][T23558] R13: 00007f0f94431f90 R14: 00000000000e7611 R15: 00007ffc8f3ff0d0
[  947.917465][T23558]  </TASK>
[  947.917498][T23558] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  948.252094][T18488] XFS (loop9): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  948.982321][T17420] Bluetooth: hci3: command 0x0405 tx timeout
[  949.469207][    C0] workqueue function usb_giveback_urb_bh changed kcov_mode from 1073741824 to 0
[  949.543938][    C0] workqueue function usb_giveback_urb_bh changed kcov_mode from 1073741824 to 0
[  949.613695][  T805] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  949.626061][T28848] loop5: detected capacity change from 0 to 131072
[  949.636262][T28848] F2FS-fs (loop5): Test dummy encryption mode enabled
[  949.652587][T28848] F2FS-fs (loop5): invalid crc value
[  949.800300][T28848] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  949.828466][  T805] usb 5-1: Using ep0 maxpacket: 8
[  949.833658][T28848] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  949.860104][  T805] usb 5-1: config 5 has an invalid descriptor of length 0, skipping remainder of the config
[  949.891516][  T805] usb 5-1: config 5 has 0 interfaces, different from the descriptor's value: 1
[  949.930593][  T805] usb 5-1: New USB device found, idVendor=0ac8, idProduct=3410, bcdDevice=86.9e
[  949.984065][  T805] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  950.022723][  T805] usb 5-1: Product: syz
[  950.045343][  T805] usb 5-1: Manufacturer: syz
[  950.067634][  T805] usb 5-1: SerialNumber: syz
[  950.177461][    C0] workqueue function usb_giveback_urb_bh changed kcov_mode from 1073741824 to 0
[  950.235207][T28868] netlink: 28 bytes leftover after parsing attributes in process `syz.9.7786'.
[  950.253732][T18100] usb 3-1: new high-speed USB device number 50 using dummy_hcd
[  950.254473][T28868] netlink: 28 bytes leftover after parsing attributes in process `syz.9.7786'.
[  950.299374][  T805] usb 5-1: USB disconnect, device number 37
[  950.425262][T18100] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  950.453907][T18100] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  950.471967][T18100] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  950.517818][T18100] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[  950.533572][T18100] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[  950.548465][T18100] usb 3-1: Product: syz
[  950.562883][T18100] usb 3-1: Manufacturer: syz
[  950.569739][T18100] usb 3-1: SerialNumber: syz
[  950.875320][T18100] usblp 3-1:1.0: usblp0: USB Unidirectional printer dev 50 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  951.019671][T28876] loop5: detected capacity change from 0 to 40427
[  951.039266][T28876] F2FS-fs (loop5): build fault injection rate: 771
[  951.041966][T18100] usb 3-1: USB disconnect, device number 50
[  951.069545][T28876] F2FS-fs (loop5): invalid crc value
[  951.079664][T18100] usblp0: removed
[  951.227476][T28891] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  951.269989][T28876] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  951.298251][T28876] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  951.427545][T24784] syz-executor: attempt to access beyond end of device
[  951.427545][T24784] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  951.456928][T14233] tipc: Subscription rejected, illegal request
[  951.468932][T24784] CPU: 1 UID: 0 PID: 24784 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  951.468976][T24784] Tainted: [L]=SOFTLOCKUP
[  951.468983][T24784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  951.468992][T24784] Call Trace:
[  951.468999][T24784]  <TASK>
[  951.469018][T24784]  dump_stack_lvl+0xe8/0x150
[  951.469046][T24784]  f2fs_handle_critical_error+0x37c/0x540
[  951.469075][T24784]  f2fs_write_end_io+0xcdb/0xff0
[  951.469115][T24784]  __submit_merged_bio+0x256/0x700
[  951.469148][T24784]  __submit_merged_write_cond+0x3c9/0x4e0
[  951.469176][T24784]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  951.469212][T24784]  f2fs_write_data_pages+0x2975/0x35e0
[  951.469261][T24784]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  951.469291][T24784]  ? css_rstat_updated+0x23a/0x530
[  951.469336][T24784]  ? mod_memcg_lruvec_state+0x20c/0x440
[  951.469358][T24784]  ? __lock_acquire+0x6b5/0x2cf0
[  951.469395][T24784]  ? __lock_acquire+0x6b5/0x2cf0
[  951.469419][T24784]  ? do_raw_spin_lock+0x12b/0x2f0
[  951.469446][T24784]  ? do_raw_spin_unlock+0xf5/0x210
[  951.469466][T24784]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  951.469485][T24784]  do_writepages+0x32e/0x550
[  951.469513][T24784]  ? do_raw_spin_unlock+0xf5/0x210
[  951.469535][T24784]  filemap_fdatawrite+0x1e9/0x2f0
[  951.469556][T24784]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  951.469600][T24784]  ? do_raw_spin_unlock+0xf5/0x210
[  951.469621][T24784]  f2fs_sync_dirty_inodes+0x30e/0x860
[  951.469656][T24784]  f2fs_write_checkpoint+0x9df/0x26a0
[  951.469707][T24784]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  951.469759][T24784]  ? kfree+0x1c1/0x630
[  951.469777][T24784]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  951.469805][T24784]  kill_f2fs_super+0x314/0x720
[  951.469830][T24784]  ? __pfx_kill_f2fs_super+0x10/0x10
[  951.469856][T24784]  ? lockdep_hardirqs_on+0x7a/0x110
[  951.469884][T24784]  deactivate_locked_super+0xbc/0x130
[  951.469903][T24784]  cleanup_mnt+0x437/0x4d0
[  951.469921][T24784]  ? _raw_spin_unlock_irq+0x23/0x50
[  951.469942][T24784]  task_work_run+0x1d9/0x270
[  951.469961][T24784]  ? __pfx_task_work_run+0x10/0x10
[  951.469986][T24784]  exit_to_user_mode_loop+0xed/0x480
[  951.470003][T24784]  ? rcu_is_watching+0x15/0xb0
[  951.470020][T24784]  do_syscall_64+0x32d/0xf80
[  951.470039][T24784]  ? trace_irq_disable+0x3b/0x150
[  951.470052][T24784]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  951.470066][T24784]  ? clear_bhb_loop+0x40/0x90
[  951.470084][T24784]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  951.470097][T24784] RIP: 0033:0x7f37e199d9d7
[  951.470113][T24784] Code: a2 c7 05 1c ed 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  951.470134][T24784] RSP: 002b:00007ffcf6af1538 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  951.470151][T24784] RAX: 0000000000000000 RBX: 00007f37e1a31f90 RCX: 00007f37e199d9d7
[  951.470161][T24784] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcf6af15f0
[  951.470170][T24784] RBP: 00007ffcf6af15f0 R08: 00007ffcf6af25f0 R09: 00000000ffffffff
[  951.470180][T24784] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcf6af2680
[  951.470189][T24784] R13: 00007f37e1a31f90 R14: 00000000000e844f R15: 00007ffcf6af26c0
[  951.470214][T24784]  </TASK>
[  951.470234][T24784] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  951.925300][T28902] loop9: detected capacity change from 0 to 2048
[  951.976974][T28902] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  952.253150][T28915] loop5: detected capacity change from 0 to 1024
[  952.304167][T28915] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  952.388796][T24784] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  953.093936][T28944] loop2: detected capacity change from 0 to 512
[  953.125214][T28944] EXT4-fs: Ignoring removed oldalloc option
[  953.150498][T18733] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  953.165615][T28944] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  953.198124][T18733] hid-generic 0000:0000:0000.0034: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  953.223323][T28944] EXT4-fs (loop2): 1 truncate cleaned up
[  953.259942][T28944] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  953.367248][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  953.383534][T23495] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  953.546037][T23495] usb 6-1: Using ep0 maxpacket: 8
[  953.555217][T23495] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  953.571202][T23495] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  953.592682][T23495] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  953.603942][T28965] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7833'.
[  953.604790][T23495] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  953.624337][T23495] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  953.637646][T23495] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  953.648797][T23495] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  953.739928][T28969] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7835'.
[  953.875512][T23495] usb 6-1: usb_control_msg returned -32
[  953.897205][T23495] usbtmc 6-1:16.0: can't read capabilities
[  953.912549][T28971] loop2: detected capacity change from 0 to 1024
[  953.986015][T28971] hfsplus: invalid file type 0174377 for inode 21
[  954.048552][   T29] audit: type=1800 audit(2000001153.216:912): pid=28971 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.7836" name="file1" dev="loop2" ino=20 res=0 errno=0
[  954.297062][T18733] usb 6-1: USB disconnect, device number 9
[  954.467470][T28988] loop2: detected capacity change from 0 to 512
[  954.520864][T28988] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  954.547280][T28988] ext4 filesystem being mounted at /1629/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  954.771015][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  955.459602][T29024] loop9: detected capacity change from 0 to 256
[  955.664974][T29026] loop4: detected capacity change from 0 to 512
[  955.820962][T29026] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  955.940743][T29035] af_packet: tpacket_rcv: packet too big, clamped from 2916 to 4294967286. macoff=82
[  956.006327][   T29] audit: type=1800 audit(2000001155.176:913): pid=29026 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.7857" name="file1" dev="loop4" ino=15 res=0 errno=0
[  956.300672][T23558] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  956.564981][T29042] loop2: detected capacity change from 0 to 32768
[  956.584869][T29042] (syz.2.7865,29042,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  956.630830][T29042] (syz.2.7865,29042,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  956.694226][T29042] JBD2: Ignoring recovery information on journal
[  956.743489][ T5889] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[  956.762129][T29042] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  956.902288][ T5889] usb 5-1: Using ep0 maxpacket: 32
[  956.927034][ T5889] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  956.966199][ T5889] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  956.988640][ T5889] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  956.998698][ T5889] usb 5-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  957.008841][ T5889] usb 5-1: Product: syz
[  957.013130][ T5889] usb 5-1: Manufacturer: syz
[  957.033850][ T5889] hub 5-1:4.0: USB hub found
[  957.242175][ T5889] hub 5-1:4.0: 2 ports detected
[  957.775403][   T29] audit: type=1800 audit(2000001156.946:914): pid=29042 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.7865" name="file2" dev="loop2" ino=16979 res=0 errno=0
[  958.066792][ T5826] ocfs2: Unmounting device (7,2) on (node local)
[  958.170951][T29075] loop9: detected capacity change from 0 to 164
[  958.328103][ T5889] hub 5-1:4.0: hub_hub_status failed (err = -32)
[  958.375908][ T5889] hub 5-1:4.0: config failed, can't get hub status (err -32)
[  958.404683][ T1036] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  958.444872][ T5889] usb 5-1: USB disconnect, device number 38
[  958.624628][T29083] loop2: detected capacity change from 0 to 256
[  959.205578][T29097] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7889'.
[  959.331670][T29097] team0: Port device team_slave_0 removed
[  959.354332][T29085] loop9: detected capacity change from 0 to 32768
[  959.505894][   T29] audit: type=1800 audit(2000001158.676:915): pid=29085 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.7883" name="file1" dev="loop9" ino=7 res=0 errno=0
[  960.577929][T29137] loop2: detected capacity change from 0 to 8192
[  960.754055][    C0] workqueue function usb_giveback_urb_bh changed kcov_mode from 1073741824 to 0
[  961.003506][T23495] usb 5-1: new high-speed USB device number 39 using dummy_hcd
[  961.066707][    C1] workqueue function usb_giveback_urb_bh changed kcov_mode from 1073741824 to 0
[  961.146082][T29157] loop5: detected capacity change from 0 to 4096
[  961.175962][T23495] usb 5-1: Using ep0 maxpacket: 32
[  961.196253][T23495] usb 5-1: config 0 interface 0 altsetting 128 endpoint 0x2 has an invalid bInterval 0, changing to 7
[  961.231527][T23495] usb 5-1: config 0 interface 0 has no altsetting 0
[  961.253849][    C1] workqueue function usb_giveback_urb_bh changed kcov_mode from 1073741824 to 0
[  961.253879][T23495] usb 5-1: New USB device found, idVendor=1b1c, idProduct=0c10, bcdDevice= 0.00
[  961.311264][T23495] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  961.327802][T18733] usb 3-1: new full-speed USB device number 51 using dummy_hcd
[  961.336005][T23495] usb 5-1: config 0 descriptor??
[  961.515448][T18733] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  961.548000][T18733] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 2
[  961.579317][T18733] usb 3-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  961.604595][T18733] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  961.638545][T18733] usb 3-1: config 0 descriptor??
[  961.659883][T18733] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  961.676674][T18733] dvb-usb: bulk message failed: -22 (3/0)
[  961.709329][T18733] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  961.737684][T18733] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  961.753321][T18733] usb 3-1: media controller created
[  961.771021][T18733] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  961.806685][T18733] dvb-usb: bulk message failed: -22 (6/0)
[  961.844987][T18733] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  961.867391][T29159] dvb-usb: bulk message failed: -22 (2/0)
[  961.881246][T18733] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input47
[  961.886929][T29171] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7921'.
[  961.896413][T29159] dvb-usb: bulk message failed: -22 (3/0)
[  961.938901][T18733] dvb-usb: schedule remote query interval to 150 msecs.
[  961.958754][T29171] bond_slave_0: entered promiscuous mode
[  961.963054][T18733] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  961.969083][T29171] bond_slave_1: entered promiscuous mode
[  962.004942][T29171] macvlan2: entered promiscuous mode
[  962.021114][T29171] bond0: entered promiscuous mode
[  962.043897][T18733] usb 3-1: USB disconnect, device number 51
[  962.056629][T29171] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  962.118128][T18733] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  962.159442][T23495] corsair-cpro 0003:1B1C:0C10.0035: hidraw0: USB HID v4.06 Device [HID 1b1c:0c10] on usb-dummy_hcd.4-1/input0
[  962.343532][T23495] corsair-cpro 0003:1B1C:0C10.0035: probe with driver corsair-cpro failed with error -61
[  962.382755][T29178] loop5: detected capacity change from 0 to 2048
[  962.402992][T29178] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[  962.480074][ T5835] udevd[5835]: incorrect nilfs2 checksum on /dev/loop5
[  962.491035][T29181] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  962.580340][T29184] fuse: Bad value for 'fd'
[  962.617563][  T805] usb 5-1: USB disconnect, device number 39
[  962.808011][T29187] IPVS: persistence engine module ip_vs_pe_ not found
[  963.083560][  T805] usb 10-1: new high-speed USB device number 14 using dummy_hcd
[  963.183572][T23495] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  963.233781][  T805] usb 10-1: Using ep0 maxpacket: 8
[  963.240652][  T805] usb 10-1: config 0 has an invalid interface number: 31 but max is 0
[  963.249749][  T805] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  963.260044][  T805] usb 10-1: config 0 has no interface number 0
[  963.268357][  T805] usb 10-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  963.278578][  T805] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  963.287198][  T805] usb 10-1: Product: syz
[  963.291482][  T805] usb 10-1: Manufacturer: syz
[  963.296290][  T805] usb 10-1: SerialNumber: syz
[  963.302817][  T805] usb 10-1: config 0 descriptor??
[  963.345428][T23495] usb 6-1: too many configurations: 9, using maximum allowed: 8
[  963.354938][T23495] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  963.364068][T23495] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  963.376139][T23495] usb 6-1: config 0 interface 0 has no altsetting 0
[  963.384283][T23495] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  963.393579][T23495] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  963.404644][T23495] usb 6-1: config 0 interface 0 has no altsetting 0
[  963.412288][T23495] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  963.421420][T23495] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  963.432797][T23495] usb 6-1: config 0 interface 0 has no altsetting 0
[  963.441012][T23495] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  963.450232][T23495] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  963.461440][T23495] usb 6-1: config 0 interface 0 has no altsetting 0
[  963.469366][T23495] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  963.479099][T23495] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  963.490122][T23495] usb 6-1: config 0 interface 0 has no altsetting 0
[  963.498115][T23495] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  963.507404][T23495] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  963.525663][  T805] uvcvideo 10-1:0.31: Found UVC 0.04 device syz (046d:08c3)
[  963.535138][T23495] usb 6-1: config 0 interface 0 has no altsetting 0
[  963.542375][  T805] uvcvideo 10-1:0.31: No valid video chain found.
[  963.550258][T23495] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  963.568032][T23495] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  963.589202][T23495] usb 6-1: config 0 interface 0 has no altsetting 0
[  963.597414][T23495] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  963.607000][T23495] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  963.618900][T23495] usb 6-1: config 0 interface 0 has no altsetting 0
[  963.629146][T23495] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  963.638941][T23495] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  963.647886][T23495] usb 6-1: Product: syz
[  963.652200][T23495] usb 6-1: Manufacturer: syz
[  963.657010][T23495] usb 6-1: SerialNumber: syz
[  963.672341][T23495] usb 6-1: config 0 descriptor??
[  963.705205][T23495] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0
[  963.759428][T18733] usb 10-1: USB disconnect, device number 14
[  963.861093][T29214] loop2: detected capacity change from 0 to 256
[  963.918735][T29214] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d)
[  963.944743][T23495] usb 6-1: USB disconnect, device number 10
[  963.962604][T23495] yurex 6-1:0.0: USB YUREX #0 now disconnected
[  964.620665][T29235] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7947'.
[  964.637238][T29235] netlink: 75 bytes leftover after parsing attributes in process `syz.4.7947'.
[  965.485673][T29245] loop9: detected capacity change from 0 to 32768
[  965.506757][T29245] XFS (loop9): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  965.538803][T29245] XFS (loop9): Ending clean mount
[  965.574217][  T805] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  965.740057][  T805] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  965.752965][  T805] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  965.774765][  T805] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  965.827191][  T805] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  965.868250][  T805] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  965.922621][T18488] XFS (loop9): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  965.941321][  T805] usb 6-1: config 0 descriptor??
[  965.997206][T29268] loop4: detected capacity change from 0 to 256
[  966.046251][T29268] exfat: Deprecated parameter 'utf8'
[  966.072690][T29268] exfat: Deprecated parameter 'namecase'
[  966.127941][T29268] exfat: Deprecated parameter 'namecase'
[  966.220259][T29268] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  966.391265][  T805] plantronics 0003:047F:FFFF.0036: reserved main item tag 0xd
[  966.480157][  T805] plantronics 0003:047F:FFFF.0036: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  967.000337][  T805] usb 6-1: USB disconnect, device number 11
[  967.016079][T18733] usb 3-1: new high-speed USB device number 52 using dummy_hcd
[  967.063859][T29293] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  967.078812][T29293] overlayfs: maximum fs stacking depth exceeded
[  967.215244][T18733] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  967.229864][T18733] usb 3-1: New USB device found, idVendor=046d, idProduct=c71f, bcdDevice= 0.00
[  967.274239][T18733] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  967.296618][T18733] usb 3-1: config 0 descriptor??
[  967.316438][T18733] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  967.931156][T29316] netlink: 44 bytes leftover after parsing attributes in process `syz.9.7979'.
[  967.956104][T29316] netlink: 43 bytes leftover after parsing attributes in process `syz.9.7979'.
[  967.979465][T29316] netlink: 'syz.9.7979': attribute type 5 has an invalid length.
[  968.001128][T29316] netlink: 43 bytes leftover after parsing attributes in process `syz.9.7979'.
[  968.138903][T29314] loop5: detected capacity change from 0 to 32768
[  968.155457][T29314] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.7978 (29314)
[  968.199269][T29314] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  968.210970][T29314] BTRFS info (device loop5): using crc32c checksum algorithm
[  968.363782][T29335] loop9: detected capacity change from 0 to 512
[  968.379977][T29335] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized
[  968.479272][T29314] BTRFS info (device loop5): turning off barriers
[  968.501245][T29314] BTRFS info (device loop5): turning on async discard
[  968.523560][T29314] BTRFS info (device loop5): enabling free space tree
[  968.535489][T29314] BTRFS info (device loop5): use zstd compression, level 3
[  969.187259][T24784] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  969.687620][T18733] usb 3-1: USB disconnect, device number 52
[  970.132668][T29375] Invalid argument reading file caps for ./file0
[  970.252802][T29382] netlink: 'syz.5.8002': attribute type 11 has an invalid length.
[  970.500817][ T5830] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  970.511783][ T5830] CPU: 1 UID: 0 PID: 5830 Comm: kworker/u9:3 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  970.511814][ T5830] Tainted: [L]=SOFTLOCKUP
[  970.511822][ T5830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  970.511834][ T5830] Workqueue: hci3 hci_rx_work
[  970.511865][ T5830] Call Trace:
[  970.511872][ T5830]  <TASK>
[  970.511881][ T5830]  dump_stack_lvl+0xe8/0x150
[  970.511911][ T5830]  sysfs_create_dir_ns+0x271/0x2a0
[  970.511937][ T5830]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  970.511961][ T5830]  ? do_raw_spin_unlock+0xf5/0x210
[  970.511987][ T5830]  kobject_add_internal+0x62b/0xd00
[  970.512016][ T5830]  kobject_add+0x163/0x240
[  970.512040][ T5830]  ? __pfx_kobject_add+0x10/0x10
[  970.512060][ T5830]  ? _raw_spin_unlock+0x28/0x50
[  970.512086][ T5830]  ? get_device_parent+0x366/0x3a0
[  970.512115][ T5830]  device_add+0x408/0xb70
[  970.512143][ T5830]  hci_conn_add_sysfs+0xd5/0x210
[  970.512172][ T5830]  le_conn_complete_evt+0xf1d/0x1430
[  970.512202][ T5830]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  970.512220][ T5830]  ? __mutex_unlock_slowpath+0x1bd/0x7d0
[  970.512248][ T5830]  ? __pfx___mutex_lock+0x10/0x10
[  970.512265][ T5830]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  970.512290][ T5830]  ? skb_pull_data+0xfb/0x200
[  970.512315][ T5830]  hci_le_conn_complete_evt+0x187/0x470
[  970.512341][ T5830]  hci_event_packet+0x7af/0x12c0
[  970.512371][ T5830]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  970.512391][ T5830]  ? __pfx_hci_event_packet+0x10/0x10
[  970.512421][ T5830]  ? kcov_remote_start+0x49a/0x7a0
[  970.512445][ T5830]  ? hci_send_to_monitor+0xe2/0x590
[  970.512469][ T5830]  hci_rx_work+0x3ee/0x1040
[  970.512524][ T5830]  ? process_one_work+0x870/0x1720
[  970.512548][ T5830]  process_one_work+0x963/0x1720
[  970.512595][ T5830]  ? __pfx_process_one_work+0x10/0x10
[  970.512617][ T5830]  ? do_raw_spin_lock+0x12b/0x2f0
[  970.512656][ T5830]  worker_thread+0xb46/0x1140
[  970.512691][ T5830]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  970.512738][ T5830]  kthread+0x388/0x470
[  970.512759][ T5830]  ? __pfx_worker_thread+0x10/0x10
[  970.512782][ T5830]  ? __pfx_kthread+0x10/0x10
[  970.512803][ T5830]  ret_from_fork+0x51e/0xb90
[  970.512831][ T5830]  ? __pfx_ret_from_fork+0x10/0x10
[  970.512851][ T5830]  ? __switch_to+0xc7d/0x1450
[  970.512877][ T5830]  ? __pfx_kthread+0x10/0x10
[  970.512899][ T5830]  ret_from_fork_asm+0x1a/0x30
[  970.512930][ T5830]  </TASK>
[  970.512984][ T5830] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  970.778604][ T5830] Bluetooth: hci3: failed to register connection device
[  970.872078][T29395] loop9: detected capacity change from 0 to 256
[  970.881530][T29395] exfat: Deprecated parameter 'utf8'
[  970.887083][T29395] exfat: Deprecated parameter 'namecase'
[  970.893036][T29395] exfat: Deprecated parameter 'namecase'
[  970.900299][T29395] exfat: Deprecated parameter 'utf8'
[  970.955110][T29395] exFAT-fs (loop9): failed to load upcase table (idx : 0x00012153, chksum : 0x6a70c931, utbl_chksum : 0xe619d30d)
[  970.997567][T29395] exFAT-fs (loop9): failed to test first cluster bit of root dir(5)
[  971.102835][T29397] loop4: detected capacity change from 0 to 4096
[  971.737024][T29412] loop4: detected capacity change from 0 to 128
[  971.763190][T29412] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  971.830049][T29412] ext4 filesystem being mounted at /338/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  972.062078][T23558] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  972.129594][T29416] loop9: detected capacity change from 0 to 32768
[  972.230211][T29416] JBD2: Ignoring recovery information on journal
[  972.321116][T29416] ocfs2: Mounting device (7,9) on (node local, slot 0) with ordered data mode.
[  972.445576][   T29] audit: type=1800 audit(2000001171.606:916): pid=29416 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.8016" name="file1" dev="loop9" ino=17058 res=0 errno=0
[  972.718321][T18488] ocfs2: Unmounting device (7,9) on (node local)
[  973.067703][T29427] loop2: detected capacity change from 0 to 8192
[  973.583200][T29438] netlink: 'syz.4.8027': attribute type 11 has an invalid length.
[  973.612934][T29438] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8027'.
[  973.668042][ T1036] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  973.779680][ T5830] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  973.803976][ T5830] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  973.819039][ T5830] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  973.830521][ T5830] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  973.850912][ T5830] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  974.427111][    C1] workqueue function usb_giveback_urb_bh changed kcov_mode from 1073741824 to 0
[  974.481769][ T1036] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  974.564830][   T54] usb 10-1: new high-speed USB device number 15 using dummy_hcd
[  974.731957][ T1036] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  974.745316][   T54] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  974.756262][   T54] usb 10-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  974.791389][   T54] usb 10-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac
[  974.810950][   T54] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  974.828638][   T54] usb 10-1: Product: syz
[  974.833114][   T54] usb 10-1: Manufacturer: syz
[  974.841306][T29465] netlink: 28 bytes leftover after parsing attributes in process `syz.2.8035'.
[  974.856830][   T54] usb 10-1: SerialNumber: syz
[  974.864502][   T54] usb 10-1: config 0 descriptor??
[  974.869702][T29465] netlink: 28 bytes leftover after parsing attributes in process `syz.2.8035'.
[  974.889346][T29467] ªªªªªªÛœ}J¹ÖXÎ: renamed from lo
[  975.094455][  T805] usb 10-1: USB disconnect, device number 15
[  975.129703][ T1036] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  975.142310][T29478] loop4: detected capacity change from 0 to 256
[  975.174877][T29478] exFAT-fs (loop4): failed to load upcase table (idx : 0x0001043e, chksum : 0xdd084882, utbl_chksum : 0xe619d30d)
[  975.207599][T29478] exFAT-fs (loop4): IO charset ˜=Wsö�)=iso8É?ôD³Ú
6�TîÓh¤h­ÛMM{6ŽME ú==ÈÚ"â–š¼tHÛéJC'G¡c» not found
[  975.285732][    C0] workqueue function usb_giveback_urb_bh changed kcov_mode from 1073741824 to 0
[  975.424332][T29485] loop4: detected capacity change from 0 to 512
[  975.509225][T29485] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c01c, mo2=0002]
[  975.533972][T29440] chnl_net:caif_netlink_parms(): no params data found
[  975.558770][T29485] System zones: 0-2, 18-18, 34-35
[  975.616856][T29485] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  975.698186][T29485] ext4 filesystem being mounted at /345/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  976.012454][T17420] Bluetooth: hci3: command tx timeout
[  976.043964][T23558] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  976.080929][T29440] bridge0: port 1(bridge_slave_0) entered blocking state
[  976.103820][T29440] bridge0: port 1(bridge_slave_0) entered disabled state
[  976.122721][T29440] bridge_slave_0: entered allmulticast mode
[  976.139742][T29440] bridge_slave_0: entered promiscuous mode
[  976.211417][T29507] loop4: detected capacity change from 0 to 256
[  976.251883][T29507] exfat: Deprecated parameter 'utf8'
[  976.277613][T29440] bridge0: port 2(bridge_slave_1) entered blocking state
[  976.303792][T29507] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d)
[  976.308444][T29440] bridge0: port 2(bridge_slave_1) entered disabled state
[  976.359233][T29440] bridge_slave_1: entered allmulticast mode
[  976.398693][T29440] bridge_slave_1: entered promiscuous mode
[  976.405937][   T29] audit: type=1800 audit(2000001175.576:917): pid=29507 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.8051" name="file1" dev="loop4" ino=1048986 res=0 errno=0
[  976.455995][T29502] loop9: detected capacity change from 0 to 32768
[  976.492309][T29502] (syz.9.8050,29502,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  976.540902][T29502] (syz.9.8050,29502,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  976.572379][T29440] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  976.649505][T29502] JBD2: Ignoring recovery information on journal
[  976.700228][T29440] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  976.899126][T29502] ocfs2: Mounting device (7,9) on (node local, slot 0) with ordered data mode.
[  977.009517][T29515] loop4: detected capacity change from 0 to 32768
[  977.050716][T29515] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  977.059354][T29515] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  977.128437][T29515] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[  977.143351][  T804] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  977.150448][  T804] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  977.270156][  T804] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 119ms
[  977.295232][  T804] gfs2: fsid=syz:syz.0: jid=0: Done
[  977.311128][T29515] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  977.408889][T29440] team0: Port device team_slave_0 added
[  977.615250][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  977.621447][T29440] team0: Port device team_slave_1 added
[  977.677222][T29515] gfs2: fsid=syz:syz.0: found 1 quota changes
[  977.858912][ T1036] bridge_slave_1: left allmulticast mode
[  977.865138][ T1036] bridge_slave_1: left promiscuous mode
[  977.871799][ T1036] bridge0: port 2(bridge_slave_1) entered disabled state
[  977.898625][ T1036] bridge_slave_0: left allmulticast mode
[  977.906079][ T1036] bridge_slave_0: left promiscuous mode
[  977.922438][ T1036] bridge0: port 1(bridge_slave_0) entered disabled state
[  978.083912][T17420] Bluetooth: hci3: command tx timeout
[  978.807064][T29556] netlink: 104 bytes leftover after parsing attributes in process `syz.2.8066'.
[  979.012664][T18488] ocfs2: Unmounting device (7,9) on (node local)
[  979.115675][ T1036] bond0 (unregistering): left promiscuous mode
[  979.122084][ T1036] bond_slave_0: left promiscuous mode
[  979.136882][ T1036] bond_slave_1: left promiscuous mode
[  979.242917][ T1036] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  979.301725][T29568] loop4: detected capacity change from 0 to 164
[  979.326402][ T1036] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  979.372712][ T1036] bond0 (unregistering): Released all slaves
[  979.422012][T29440] batman_adv: batadv0: Adding interface: batadv_slave_0
[  979.455219][T29440] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  979.517439][T29440] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  979.565912][T29440] batman_adv: batadv0: Adding interface: batadv_slave_1
[  979.600659][T29440] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  979.687979][T29440] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  980.174159][T17420] Bluetooth: hci3: command tx timeout
[  980.175651][T29440] hsr_slave_0: entered promiscuous mode
[  980.210852][T29592] loop2: detected capacity change from 0 to 128
[  980.225117][T29440] hsr_slave_1: entered promiscuous mode
[  980.278195][T29440] debugfs: 'hsr0' already exists in 'hsr'
[  980.309902][T29440] Cannot create hsr debugfs directory
[  980.362461][T29592] syz.2.8076: attempt to access beyond end of device
[  980.362461][T29592] loop2: rw=2049, sector=138, nr_sectors = 112 limit=128
[  980.460180][T29597] syz.2.8076: attempt to access beyond end of device
[  980.460180][T29597] loop2: rw=8390657, sector=138, nr_sectors = 2 limit=128
[  980.492951][T29596] can0: slcan on ttyS3.
[  980.590797][T29597] buffer_io_error: 25 callbacks suppressed
[  980.590816][T29597] Buffer I/O error on dev loop2, logical block 69, lost async page write
[  980.683184][T29599] syz.2.8076: attempt to access beyond end of device
[  980.683184][T29599] loop2: rw=8390657, sector=138, nr_sectors = 2 limit=128
[  980.709963][ T1036] macvlan1: left promiscuous mode
[  980.717227][ T1036] dummy0: left promiscuous mode
[  980.733614][T29599] Buffer I/O error on dev loop2, logical block 69, lost async page write
[  980.757407][T29595] can0 (unregistered): slcan off ttyS3.
[  980.790252][ T1036] hsr_slave_0: left promiscuous mode
[  980.849366][ T1036] hsr_slave_1: left promiscuous mode
[  980.880751][T29586] loop9: detected capacity change from 0 to 32768
[  980.909784][T29586] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop9 (7:9) scanned by syz.9.8073 (29586)
[  980.978095][ T1036] veth1_macvtap: left promiscuous mode
[  980.989339][ T1036] veth0_macvtap: left promiscuous mode
[  981.003151][T29586] BTRFS info (device loop9): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  981.004858][ T1036] veth1_vlan: left allmulticast mode
[  981.038055][ T1036] veth1_vlan: left promiscuous mode
[  981.045112][T29586] BTRFS info (device loop9): using crc32c checksum algorithm
[  981.067489][ T1036] veth0_vlan: left promiscuous mode
[  981.069406][T29586] BTRFS warning (device loop9): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  981.382924][T29586] BTRFS info (device loop9): rebuilding free space tree
[  981.569899][T29643] loop2: detected capacity change from 0 to 128
[  981.637418][T29586] BTRFS info (device loop9): disabling free space tree
[  981.650967][T29643] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  981.693973][T29586] BTRFS info (device loop9): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  981.717409][T29643] ext4 filesystem being mounted at /1687/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  981.744809][T29586] BTRFS info (device loop9): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  981.787377][T29648] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8087'.
[  981.839608][T29586] BTRFS info (device loop9): enabling ssd optimizations
[  981.858806][T29586] BTRFS info (device loop9): enabling disk space caching
[  981.880183][T29586] BTRFS info (device loop9): force clearing of disk cache
[  981.909286][T29586] BTRFS info (device loop9): force zstd compression, level 3
[  982.066375][   T29] audit: type=1800 audit(2000001181.236:918): pid=29586 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.8073" name="file1" dev="loop9" ino=260 res=0 errno=0
[  982.236056][ T5826] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  982.245297][ T5830] Bluetooth: hci3: command tx timeout
[  982.608416][T18488] BTRFS info (device loop9): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  982.998141][ T1036] team0 (unregistering): Port device team_slave_1 removed
[  983.077796][T29665] loop2: detected capacity change from 0 to 2048
[  983.121285][ T1036] team0 (unregistering): Port device team_slave_0 removed
[  983.154103][T29665] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  983.797480][T29657] ip6gre0: entered promiscuous mode
[  983.832864][T29657] team0: Device ip6gre0 is of different type
[  984.472767][T29692] loop4: detected capacity change from 0 to 128
[  984.546594][T29690] netlink: 168 bytes leftover after parsing attributes in process `syz.2.8106'.
[  984.602341][T29694] veth0_to_bridge: Caught tx_queue_len zero misconfig
[  984.657789][T29692] syz.4.8107: attempt to access beyond end of device
[  984.657789][T29692] loop4: rw=2049, sector=737, nr_sectors = 8 limit=128
[  984.858418][T16346] kworker/u8:7: attempt to access beyond end of device
[  984.858418][T16346] loop4: rw=1, sector=145, nr_sectors = 592 limit=128
[  985.712354][T29702] loop9: detected capacity change from 0 to 32768
[  985.737221][T29702] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop9 (7:9) scanned by syz.9.8109 (29702)
[  985.862033][T29702] BTRFS info (device loop9): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  985.895661][T29702] BTRFS info (device loop9): using crc32c checksum algorithm
[  986.018046][T29702] BTRFS info (device loop9): allowing degraded mounts
[  986.039309][T29702] BTRFS info (device loop9): enabling ssd optimizations
[  986.040045][T29440] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  986.075504][T29702] BTRFS info (device loop9): turning on async discard
[  986.118322][T29702] BTRFS info (device loop9): enabling free space tree
[  986.162754][T29702] BTRFS info (device loop9): enabling auto defrag
[  986.497576][T29748] loop2: detected capacity change from 0 to 512
[  986.544113][T29748] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  986.655352][T29748] EXT4-fs (loop2): 1 truncate cleaned up
[  986.681730][T29748] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  986.763596][   T29] audit: type=1800 audit(2000001185.926:919): pid=29748 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.8118" name="file1" dev="loop2" ino=15 res=0 errno=0
[  986.820371][T29440] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  986.849932][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  986.857433][T18488] BTRFS info (device loop9): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  987.242144][T29760] netlink: 104 bytes leftover after parsing attributes in process `syz.2.8121'.
[  987.276965][T29440] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  987.414985][T29746] loop4: detected capacity change from 0 to 32768
[  987.462655][T29765] loop2: detected capacity change from 0 to 64
[  987.492799][T29746] (syz.4.8117,29746,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  987.517817][T29746] (syz.4.8117,29746,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  987.711942][T29746] JBD2: Ignoring recovery information on journal
[  987.766120][T29746] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  987.927774][T29440] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  989.226202][T23558] ocfs2: Unmounting device (7,4) on (node local)
[  989.616422][T29440] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  989.639659][T29440] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  989.680796][T29440] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  989.726378][T29440] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  989.941114][T29823] netlink: 16 bytes leftover after parsing attributes in process `syz.2.8138'.
[  990.002168][T29798] loop9: detected capacity change from 0 to 40427
[  990.021551][T29798] F2FS-fs: heap/no_heap options were deprecated
[  990.050460][T29798] F2FS-fs (loop9): build fault injection rate: 19
[  990.077583][T29798] F2FS-fs (loop9): build fault injection type: 0x3bfe8c
[  990.097918][T29440] 8021q: adding VLAN 0 to HW filter on device bond0
[  990.119608][T29798] F2FS-fs (loop9): invalid crc value
[  990.157327][T29798] F2FS-fs (loop9): inject page alloc in f2fs_grab_cache_folio of f2fs_build_free_nids+0x9d8/0x1810
[  990.243618][T29440] 8021q: adding VLAN 0 to HW filter on device team0
[  990.301835][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  990.309103][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  990.397089][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  990.404364][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  990.414172][ T1161] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  990.427985][T29798] F2FS-fs (loop9): inject slab alloc in f2fs_kmem_cache_alloc of read_node_folio+0x221/0x410
[  990.466897][T29798] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  990.521116][T29798] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  990.583815][T18100] usb 5-1: new high-speed USB device number 40 using dummy_hcd
[  990.743547][T18100] usb 5-1: Using ep0 maxpacket: 32
[  990.761807][T18100] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  990.797093][T18100] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  990.816068][T18100] usb 5-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  990.842906][T29849] loop2: detected capacity change from 0 to 4096
[  990.846558][T18100] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  990.870742][T18100] usb 5-1: config 0 descriptor??
[  991.166997][T29440] 8021q: adding VLAN 0 to HW filter on device batadv0
[  991.330764][T18100] ft260 0003:0403:6030.0037: unknown main item tag 0x0
[  991.361413][T18100] ft260 0003:0403:6030.0037: unknown main item tag 0x0
[  991.404260][T29440] veth0_vlan: entered promiscuous mode
[  991.419994][T29863] loop2: detected capacity change from 0 to 1024
[  991.438213][T29863] EXT4-fs: Ignoring removed orlov option
[  991.452853][T29440] veth1_vlan: entered promiscuous mode
[  991.491986][T29863] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  991.522795][T18100] ft260 0003:0403:6030.0037: chip code: 0000 0000
[  991.578697][T29440] veth0_macvtap: entered promiscuous mode
[  991.659084][T29440] veth1_macvtap: entered promiscuous mode
[  991.727652][T18100] ft260 0003:0403:6030.0037: USB HID v0.00 Device [HID 0403:6030] on usb-dummy_hcd.4-1/input0
[  991.802771][T29440] batman_adv: batadv0: Interface activated: batadv_slave_0
[  991.821347][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  991.856432][T29440] batman_adv: batadv0: Interface activated: batadv_slave_1
[  991.937087][   T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  991.946111][T18100] ft260 0003:0403:6030.0037: failed to retrieve status: -71, no wakeup
[  991.949997][T18100] ft260 0003:0403:6030.0037: failed to retrieve status: -71
[  991.992451][   T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  992.000995][T18100] ft260 0003:0403:6030.0037: failed to reset I2C controller: -71
[  992.028171][T29871] netlink: 24 bytes leftover after parsing attributes in process `syz.9.8155'.
[  992.043049][   T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  992.073227][T29871] bond0: ARP target 170.170.170.170 is already present
[  992.073951][T18100] usb 5-1: USB disconnect, device number 40
[  992.081683][T29871] bond0: option arp_ip_target: invalid value (2863311530)
[  992.111812][   T12] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  992.285303][T29878] loop5: detected capacity change from 0 to 7
[  992.304580][ T5835] Dev loop5: unable to read RDB block 7
[  992.310463][ T5835]  loop5: AHDI p1 p2
[  992.340022][ T5835] loop5: partition table partially beyond EOD, truncated
[  992.377500][ T5835] loop5: p1 size 150995456 extends beyond EOD, truncated
[  992.405178][ T5830] Bluetooth: hci3: command tx timeout
[  992.483758][    C0] workqueue function usb_giveback_urb_bh changed kcov_mode from 1073741824 to 0
[  992.498520][T29878] Dev loop5: unable to read RDB block 7
[  992.550621][T29878]  loop5: AHDI p1 p2
[  992.575572][T29878] loop5: partition table partially beyond EOD, truncated
[  992.606759][T29878] loop5: p1 size 150995456 extends beyond EOD, truncated
[  992.619578][   T69] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  992.656480][   T69] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  992.744805][ T5835] udevd[5835]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  992.843130][   T69] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  992.880291][   T69] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  992.893832][ T5835] udevd[5835]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  992.980846][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[  992.989751][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[  993.002073][T29895] netlink: 196 bytes leftover after parsing attributes in process `syz.4.8161'.
[  993.052299][T29895] netlink: 196 bytes leftover after parsing attributes in process `syz.4.8161'.
[  993.438720][T29905] loop9: detected capacity change from 0 to 1024
[  993.464544][T29905] EXT4-fs: Ignoring removed oldalloc option
[  993.478000][T29905] EXT4-fs: Ignoring removed bh option
[  993.510582][T29905] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  993.790576][T18488] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  993.800547][T29914] loop2: detected capacity change from 0 to 256
[  993.834163][T29914] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  994.274294][T29925] loop4: detected capacity change from 0 to 2048
[  994.319276][T29925] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  994.430280][   T29] audit: type=1800 audit(2000001193.596:920): pid=29925 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.8173" name="file1" dev="loop4" ino=1367 res=0 errno=0
[  994.974845][T29944] loop3: detected capacity change from 0 to 4096
[  995.004026][T29944] NILFS (loop3): invalid segment: Checksum error in segment payload
[  995.016163][T29944] NILFS (loop3): trying rollback from an earlier position
[  995.076136][T29944] NILFS (loop3): recovery complete
[  995.084242][T29954] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  995.778061][T29973] team_slave_0: entered promiscuous mode
[  995.783919][T29973] team_slave_1: entered promiscuous mode
[  995.832248][T29973] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  995.853075][T29971] loop2: detected capacity change from 0 to 32768
[  995.867891][T29971] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  995.876259][T29971] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  995.919897][T29971] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[  995.935304][T18100] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  995.943179][T18100] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  996.034330][T29976] 8021q: adding VLAN 0 to HW filter on device macvlan3
[  996.077889][ T5835] udevd[5835]: symlink '../../loop2' '/dev/disk/by-diskseq/2540.tmp-b7:2' failed: Read-only file system
[  996.100834][T18100] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 157ms
[  996.109816][T29959] loop4: detected capacity change from 0 to 32768
[  996.128181][T18100] gfs2: fsid=syz:syz.0: jid=0: Done
[  996.162474][T29959] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  996.179244][T29971] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  996.179586][ T5835] udevd[5835]: symlink '../../loop2' '/dev/disk/by-diskseq/2540.tmp-b7:2' failed: Read-only file system
[  996.372509][T29959] XFS (loop4): Ending clean mount
[  996.376429][ T5835] udevd[5835]: symlink '../../loop3' '/dev/disk/by-diskseq/2539.tmp-b7:3' failed: Read-only file system
[  996.451550][ T5845] udevd[5845]: symlink '../../loop4' '/dev/disk/by-diskseq/2541.tmp-b7:4' failed: Read-only file system
[  996.466705][ T5845] udevd[5845]: symlink '../../loop4' '/dev/disk/by-uuid/bfdc47fc-10d8-4eed-a562-11a831b3f791.tmp-b7:4' failed: Read-only file system
[  996.585949][T29971] gfs2: fsid=syz:syz.0: found 1 quota changes
[  996.621212][T23558] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  996.822749][T30000] bridge_slave_1: Caught tx_queue_len zero misconfig
[  996.950014][ T5835] udevd[5835]: symlink '../../loop4' '/dev/disk/by-diskseq/2541.tmp-b7:4' failed: Read-only file system
[  997.015918][ T5835] udevd[5835]: symlink '../../loop4' '/dev/disk/by-diskseq/2541.tmp-b7:4' failed: Read-only file system
[  997.080928][ T5835] udevd[5835]: symlink '../../loop4' '/dev/disk/by-diskseq/2542.tmp-b7:4' failed: Read-only file system
[  997.753999][ T5835] udevd[5835]: symlink '../../loop2' '/dev/disk/by-diskseq/2540.tmp-b7:2' failed: Read-only file system
[  997.843325][ T5835] udevd[5835]: symlink '../../loop2' '/dev/disk/by-diskseq/2543.tmp-b7:2' failed: Read-only file system
[  998.014888][ T5835] udevd[5835]: symlink '../../loop3' '/dev/disk/by-diskseq/2539.tmp-b7:3' failed: Read-only file system
[  998.045488][ T5845] udevd[5845]: symlink '../../loop4' '/dev/disk/by-diskseq/2542.tmp-b7:4' failed: Read-only file system
[  998.213036][ T5835] udevd[5835]: symlink '../../loop2' '/dev/disk/by-diskseq/2543.tmp-b7:2' failed: Read-only file system
[  998.259100][ T5845] udevd[5845]: symlink '../../loop3' '/dev/disk/by-diskseq/2539.tmp-b7:3' failed: Read-only file system
[  998.337893][T10203] udevd[10203]: symlink '../../loop2' '/dev/disk/by-diskseq/2543.tmp-b7:2' failed: Read-only file system
[  998.385065][T30050] netlink: 'syz.2.8222': attribute type 10 has an invalid length.
[  998.579990][ T5845] udevd[5845]: symlink '../../loop4' '/dev/disk/by-diskseq/2542.tmp-b7:4' failed: Read-only file system
[  998.595603][ T5835] udevd[5835]: symlink '../../loop3' '/dev/disk/by-diskseq/2539.tmp-b7:3' failed: Read-only file system
[  998.740049][ T5835] udevd[5835]: symlink '../../loop3' '/dev/disk/by-diskseq/2539.tmp-b7:3' failed: Read-only file system
[  998.912265][T30057] loop3: detected capacity change from 0 to 4096
[  998.933329][T30057] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  999.545559][T30057] ntfs3(loop3): ino=19, mi_enum_attr
[  999.557767][T30050] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  999.566629][T30057] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  999.771302][T30057] ntfs3(loop3): ino=21, "file1" failed to extend initialized size to 8000c61.
[  999.772088][T30060] loop2: detected capacity change from 0 to 1024
[  999.955696][T30060] hfsplus: b-tree write err: -5, ino 2
[  999.982890][T30066] loop9: detected capacity change from 0 to 1024
[ 1000.085698][T30060] hfsplus: b-tree write err: -5, ino 26
[ 1000.096161][T30066] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1000.193178][   T29] audit: type=1800 audit(2000001199.336:921): pid=30066 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.8228" name="file1" dev="loop9" ino=15 res=0 errno=0
[ 1000.379850][T30066] EXT4-fs error (device loop9): ext4_mb_mark_diskspace_used:4222: comm syz.9.8228: Allocating blocks 497-513 which overlap fs metadata
[ 1000.397294][T30066] EXT4-fs (loop9): Remounting filesystem read-only
[ 1000.474640][T30063] EXT4-fs (loop9): pa ffff888034ecb1d0: logic 32, phys. 161, len 22
[ 1000.595262][T18488] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1000.705437][ T1036] hfsplus: b-tree write err: -5, ino 25
[ 1000.741252][ T1036] hfsplus: b-tree write err: -5, ino 4
[ 1000.761227][ T1036] hfsplus: b-tree write err: -5, ino 2
[ 1000.778472][ T1036] hfsplus: b-tree write err: -5, ino 26
[ 1000.831680][ T1036] hfsplus: b-tree write err: -5, ino 27
[ 1000.960953][T30105] netlink: 277 bytes leftover after parsing attributes in process `syz.4.8242'.
[ 1000.992292][T30100] input: syz0 as /devices/virtual/input/input49
[ 1001.037484][T30108] overlayfs: maximum fs stacking depth exceeded
[ 1001.174545][T30110] loop4: detected capacity change from 0 to 512
[ 1001.181854][T30110] EXT4-fs: Ignoring removed bh option
[ 1001.188720][T30110] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[ 1001.211684][T30110] EXT4-fs (loop4): 1 truncate cleaned up
[ 1001.218388][T30110] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1001.247285][   T29] audit: type=1800 audit(2000001200.416:922): pid=30110 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.8243" name="file1" dev="loop4" ino=15 res=0 errno=0
[ 1001.417241][T23558] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1001.626162][   T54] usb 3-1: new high-speed USB device number 53 using dummy_hcd
[ 1001.787546][   T54] usb 3-1: Using ep0 maxpacket: 8
[ 1001.809460][   T54] usb 3-1: config index 0 descriptor too short (expected 301, got 45)
[ 1001.845679][   T54] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1001.879518][   T54] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1001.913801][   T54] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1001.943926][   T54] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1001.971287][   T54] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1002.001332][   T54] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1002.029450][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[ 1002.084918][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[ 1002.339426][   T54] usb 3-1: usb_control_msg returned -32
[ 1002.364419][   T54] usbtmc 3-1:16.0: can't read capabilities
[ 1002.507017][T30153] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8255'.
[ 1002.595542][T30153] bridge0: entered promiscuous mode
[ 1002.618958][T30153] macsec1: entered promiscuous mode
[ 1002.625830][T30153] macsec1: entered allmulticast mode
[ 1002.636288][T30153] bridge0: entered allmulticast mode
[ 1002.669222][T30153] bridge0: port 3(macsec1) entered blocking state
[ 1002.687182][T30153] bridge0: port 3(macsec1) entered disabled state
[ 1002.724394][T30153] bridge0: left allmulticast mode
[ 1002.747153][T30153] bridge0: left promiscuous mode
[ 1002.806199][ T5835] udevd[5835]: symlink '../../loop4' '/dev/disk/by-diskseq/2551.tmp-b7:4' failed: Read-only file system
[ 1002.958620][ T5835] udevd[5835]: symlink '../../loop9' '/dev/disk/by-diskseq/2548.tmp-b7:9' failed: Read-only file system
[ 1003.099053][ T5835] udevd[5835]: symlink '../../loop3' '/dev/disk/by-diskseq/2547.tmp-b7:3' failed: Read-only file system
[ 1003.136605][T30171] fuse: Bad value for 'fd'
[ 1003.184515][ T5835] udevd[5835]: symlink '../../loop9' '/dev/disk/by-diskseq/2548.tmp-b7:9' failed: Read-only file system
[ 1003.291237][ T5835] udevd[5835]: symlink '../../loop3' '/dev/disk/by-diskseq/2547.tmp-b7:3' failed: Read-only file system
[ 1003.319168][ T5845] udevd[5845]: symlink '../../loop4' '/dev/disk/by-diskseq/2551.tmp-b7:4' failed: Read-only file system
[ 1003.411128][ T5835] udevd[5835]: symlink '../../loop3' '/dev/disk/by-diskseq/2547.tmp-b7:3' failed: Read-only file system
[ 1003.463624][   T54] usb 10-1: new high-speed USB device number 16 using dummy_hcd
[ 1003.499680][T30190] netlink: 'syz.1.8267': attribute type 3 has an invalid length.
[ 1003.502393][ T5835] udevd[5835]: symlink '../../loop4' '/dev/disk/by-diskseq/2551.tmp-b7:4' failed: Read-only file system
[ 1003.530216][T30190] netlink: 'syz.1.8267': attribute type 1 has an invalid length.
[ 1003.539794][T30190] netlink: 100 bytes leftover after parsing attributes in process `syz.1.8267'.
[ 1003.637052][   T54] usb 10-1: Using ep0 maxpacket: 32
[ 1003.646334][   T54] usb 10-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[ 1003.660491][   T54] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1003.683489][T18733] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[ 1003.708198][   T54] gspca_main: nw80x-2.14.0 probing 055f:d001
[ 1003.845559][T18733] usb 4-1: Using ep0 maxpacket: 16
[ 1003.862111][T18733] usb 4-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1003.894403][T18733] usb 4-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1003.919778][T18733] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1003.935234][T18733] usb 4-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[ 1003.954632][T18733] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1003.979288][T18733] usb 4-1: config 0 descriptor??
[ 1004.124513][T30192] loop4: detected capacity change from 0 to 40427
[ 1004.159221][T30192] F2FS-fs (loop4): build fault injection rate: 174
[ 1004.174760][T30192] F2FS-fs (loop4): build fault injection type: 0x3bfe8c
[ 1004.189311][T30192] F2FS-fs (loop4): invalid crc value
[ 1004.330016][ T5835] udevd[5835]: symlink '../../loop4' '/dev/disk/by-diskseq/2552.tmp-b7:4' failed: Read-only file system
[ 1004.380541][ T5835] udevd[5835]: symlink '../../loop4' '/dev/disk/by-uuid/922c7623-35ee-4af3-bdd7-07040bb1b7db.tmp-b7:4' failed: Read-only file system
[ 1004.417294][T30192] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1004.435545][T29888] usb 3-1: USB disconnect, device number 53
[ 1004.481971][T18733] nzxt-smart2 0003:1E71:2009.0038: unknown main item tag 0x0
[ 1004.493296][T30192] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1004.519440][T18733] nzxt-smart2 0003:1E71:2009.0038: unknown main item tag 0x0
[ 1004.546277][T18733] nzxt-smart2 0003:1E71:2009.0038: unknown main item tag 0x0
[ 1004.570309][T18733] nzxt-smart2 0003:1E71:2009.0038: unknown main item tag 0x0
[ 1004.600429][T18733] nzxt-smart2 0003:1E71:2009.0038: unknown main item tag 0x0
[ 1004.629946][T18733] nzxt-smart2 0003:1E71:2009.0038: hidraw0: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.3-1/input0
[ 1004.696096][    C0] workqueue function usb_giveback_urb_bh changed kcov_mode from 1073741824 to 0
[ 1004.731672][   T54] gspca_nw80x: reg_w err -71
[ 1004.744641][   T54] nw80x 10-1:3.0: probe with driver nw80x failed with error -71
[ 1004.768377][T23558] syz-executor: attempt to access beyond end of device
[ 1004.768377][T23558] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1004.783913][T23558] CPU: 0 UID: 0 PID: 23558 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1004.783942][T23558] Tainted: [L]=SOFTLOCKUP
[ 1004.783949][T23558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1004.783959][T23558] Call Trace:
[ 1004.783967][T23558]  <TASK>
[ 1004.783975][T23558]  dump_stack_lvl+0xe8/0x150
[ 1004.784004][T23558]  f2fs_handle_critical_error+0x37c/0x540
[ 1004.784031][T23558]  f2fs_write_end_io+0xcdb/0xff0
[ 1004.784052][T23558]  ? __submit_merged_bio+0x256/0x700
[ 1004.784086][T23558]  __submit_merged_bio+0x256/0x700
[ 1004.784112][T23558]  __submit_merged_write_cond+0x3c9/0x4e0
[ 1004.784140][T23558]  ? __pfx___submit_merged_write_cond+0x10/0x10
[ 1004.784182][T23558]  f2fs_write_data_pages+0x2975/0x35e0
[ 1004.784201][T23558]  ? is_bpf_text_address+0x26/0x2b0
[ 1004.784256][T23558]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1004.784292][T23558]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1004.784338][T23558]  ? do_raw_spin_unlock+0xf5/0x210
[ 1004.784363][T23558]  ? __lock_acquire+0x6b5/0x2cf0
[ 1004.784401][T23558]  ? __lock_acquire+0x6b5/0x2cf0
[ 1004.784428][T23558]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1004.784458][T23558]  ? do_raw_spin_unlock+0xf5/0x210
[ 1004.784478][T23558]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1004.784500][T23558]  do_writepages+0x32e/0x550
[ 1004.784528][T23558]  ? do_raw_spin_unlock+0xf5/0x210
[ 1004.784551][T23558]  filemap_fdatawrite+0x1e9/0x2f0
[ 1004.784574][T23558]  ? __pfx_filemap_fdatawrite+0x10/0x10
[ 1004.784638][T23558]  ? do_raw_spin_unlock+0xf5/0x210
[ 1004.784662][T23558]  f2fs_sync_dirty_inodes+0x30e/0x860
[ 1004.784699][T23558]  f2fs_write_checkpoint+0x9df/0x26a0
[ 1004.784760][T23558]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 1004.784834][T23558]  kill_f2fs_super+0x314/0x720
[ 1004.784865][T23558]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 1004.784899][T23558]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1004.784936][T23558]  deactivate_locked_super+0xbc/0x130
[ 1004.784958][T23558]  cleanup_mnt+0x437/0x4d0
[ 1004.784980][T23558]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1004.785005][T23558]  task_work_run+0x1d9/0x270
[ 1004.785028][T23558]  ? __pfx_task_work_run+0x10/0x10
[ 1004.785057][T23558]  exit_to_user_mode_loop+0xed/0x480
[ 1004.785077][T23558]  ? rcu_is_watching+0x15/0xb0
[ 1004.785099][T23558]  do_syscall_64+0x32d/0xf80
[ 1004.785120][T23558]  ? trace_irq_disable+0x3b/0x150
[ 1004.785138][T23558]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1004.785155][T23558]  ? clear_bhb_loop+0x40/0x90
[ 1004.785176][T23558]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1004.785193][T23558] RIP: 0033:0x7f0f9439d9d7
[ 1004.785210][T23558] Code: a2 c7 05 1c ed 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 1004.785224][T23558] RSP: 002b:00007ffc8f3fdf48 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1004.785243][T23558] RAX: 0000000000000000 RBX: 00007f0f94431f90 RCX: 00007f0f9439d9d7
[ 1004.785255][T23558] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc8f3fe000
[ 1004.785263][T23558] RBP: 00007ffc8f3fe000 R08: 00007ffc8f3ff000 R09: 00000000ffffffff
[ 1004.785274][T23558] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc8f3ff090
[ 1004.785284][T23558] R13: 00007f0f94431f90 R14: 00000000000f5459 R15: 00007ffc8f3ff0d0
[ 1004.785310][T23558]  </TASK>
[ 1004.791443][T23558] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[ 1004.794512][   T54] usb 10-1: USB disconnect, device number 16
[ 1005.153652][T18733] usb 4-1: USB disconnect, device number 24
[ 1005.356278][    C0] workqueue function usb_giveback_urb_bh changed kcov_mode from 1073741824 to 0
[ 1005.686845][T30251] Bluetooth: hci0: expected 2 bytes, got 7 bytes
[ 1005.761956][T30255] loop7: detected capacity change from 0 to 16384
[ 1006.719049][T30263] loop9: detected capacity change from 0 to 40427
[ 1006.731003][T30263] F2FS-fs (loop9): invalid crc value
[ 1006.825543][T30263] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1006.845959][T30263] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[ 1006.928925][T18488] syz-executor: attempt to access beyond end of device
[ 1006.928925][T18488] loop9: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1006.944920][T18488] CPU: 1 UID: 0 PID: 18488 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1006.944949][T18488] Tainted: [L]=SOFTLOCKUP
[ 1006.944956][T18488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1006.944966][T18488] Call Trace:
[ 1006.944974][T18488]  <TASK>
[ 1006.944982][T18488]  dump_stack_lvl+0xe8/0x150
[ 1006.945012][T18488]  f2fs_handle_critical_error+0x37c/0x540
[ 1006.945040][T18488]  f2fs_write_end_io+0xcdb/0xff0
[ 1006.945094][T18488]  __submit_merged_bio+0x256/0x700
[ 1006.945120][T18488]  __submit_merged_write_cond+0x3c9/0x4e0
[ 1006.945148][T18488]  ? __pfx___submit_merged_write_cond+0x10/0x10
[ 1006.945193][T18488]  f2fs_write_data_pages+0x2975/0x35e0
[ 1006.945213][T18488]  ? is_bpf_text_address+0x26/0x2b0
[ 1006.945273][T18488]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1006.945314][T18488]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1006.945365][T18488]  ? do_raw_spin_unlock+0xf5/0x210
[ 1006.945392][T18488]  ? __lock_acquire+0x6b5/0x2cf0
[ 1006.945429][T18488]  ? __lock_acquire+0x6b5/0x2cf0
[ 1006.945455][T18488]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1006.945485][T18488]  ? do_raw_spin_unlock+0xf5/0x210
[ 1006.945504][T18488]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1006.945526][T18488]  do_writepages+0x32e/0x550
[ 1006.945554][T18488]  ? do_raw_spin_unlock+0xf5/0x210
[ 1006.945578][T18488]  filemap_fdatawrite+0x1e9/0x2f0
[ 1006.945602][T18488]  ? __pfx_filemap_fdatawrite+0x10/0x10
[ 1006.945667][T18488]  ? do_raw_spin_unlock+0xf5/0x210
[ 1006.945692][T18488]  f2fs_sync_dirty_inodes+0x30e/0x860
[ 1006.945727][T18488]  f2fs_write_checkpoint+0x9df/0x26a0
[ 1006.945779][T18488]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 1006.945858][T18488]  kill_f2fs_super+0x314/0x720
[ 1006.945886][T18488]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 1006.945919][T18488]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1006.945967][T18488]  deactivate_locked_super+0xbc/0x130
[ 1006.945996][T18488]  cleanup_mnt+0x437/0x4d0
[ 1006.946029][T18488]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1006.946063][T18488]  task_work_run+0x1d9/0x270
[ 1006.946088][T18488]  ? __pfx_task_work_run+0x10/0x10
[ 1006.946119][T18488]  exit_to_user_mode_loop+0xed/0x480
[ 1006.946140][T18488]  ? rcu_is_watching+0x15/0xb0
[ 1006.946162][T18488]  do_syscall_64+0x32d/0xf80
[ 1006.946184][T18488]  ? trace_irq_disable+0x3b/0x150
[ 1006.946201][T18488]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1006.946216][T18488]  ? clear_bhb_loop+0x40/0x90
[ 1006.946237][T18488]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1006.946252][T18488] RIP: 0033:0x7f281199d9d7
[ 1006.946268][T18488] Code: a2 c7 05 1c ed 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 1006.946281][T18488] RSP: 002b:00007ffd63dbf438 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1006.946299][T18488] RAX: 0000000000000000 RBX: 00007f2811a31f90 RCX: 00007f281199d9d7
[ 1006.946310][T18488] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd63dbf4f0
[ 1006.946319][T18488] RBP: 00007ffd63dbf4f0 R08: 00007ffd63dc04f0 R09: 00000000ffffffff
[ 1006.946329][T18488] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd63dc0580
[ 1006.946339][T18488] R13: 00007f2811a31f90 R14: 00000000000f5d25 R15: 00007ffd63dc05c0
[ 1006.946367][T18488]  </TASK>
[ 1006.947501][T18488] F2FS-fs (loop9): Stopped filesystem due to reason: 3
[ 1007.283167][T18733] usb 3-1: new high-speed USB device number 54 using dummy_hcd
[ 1007.417667][T30295] loop3: detected capacity change from 0 to 128
[ 1007.435315][T18733] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1007.445356][T18733] usb 3-1: config 4 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 1007.473520][T18733] usb 3-1: config 4 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1007.507072][T18733] usb 3-1: New USB device found, idVendor=03f0, idProduct=0004, bcdDevice= 0.40
[ 1007.526675][T18733] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1007.542585][T30295] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1007.543426][T18733] usb 3-1: Product: syz
[ 1007.559458][T18733] usb 3-1: Manufacturer: syz
[ 1007.564188][T18733] usb 3-1: SerialNumber: syz
[ 1007.575477][T18733] usblp0: Disabling reads from problematic bidirectional printer
[ 1007.630537][T30295] ext4 filesystem being mounted at /25/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1007.783254][T30295] EXT4-fs error (device loop3): dx_make_map:1296: inode #2: block 20: comm syz.3.8299: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1
[ 1007.802098][T18733] usblp 3-1:4.0: usblp0: USB Unidirectional printer dev 54 if 0 alt 0 proto 1 vid 0x03F0 pid 0x0004
[ 1007.858100][T30295] EXT4-fs error (device loop3) in do_split:2027: Corrupt filesystem
[ 1007.966889][T29440] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1007.971204][T30306] loop9: detected capacity change from 0 to 64
[ 1007.990809][T18733] usb 3-1: USB disconnect, device number 54
[ 1008.009371][T18733] usblp0: removed
[ 1008.107363][ T5835] udevd[5835]: symlink '../../loop4' '/dev/disk/by-diskseq/2553.tmp-b7:4' failed: Read-only file system
[ 1008.166529][ T5835] udevd[5835]: symlink '../../loop3' '/dev/disk/by-diskseq/2556.tmp-b7:3' failed: Read-only file system
[ 1008.190624][    C1] workqueue function usb_giveback_urb_bh changed kcov_mode from 1073741824 to 0
[ 1008.204695][T10203] udevd[10203]: symlink '../../loop9' '/dev/disk/by-diskseq/2558.tmp-b7:9' failed: Read-only file system
[ 1008.249176][ T5835] udevd[5835]: symlink '../../loop3' '/dev/disk/by-diskseq/2556.tmp-b7:3' failed: Read-only file system
[ 1008.259462][ T5845] udevd[5845]: symlink '../../loop9' '/dev/disk/by-diskseq/2558.tmp-b7:9' failed: Read-only file system
[ 1008.315786][ T5845] udevd[5845]: symlink '../../loop9' '/dev/disk/by-diskseq/2558.tmp-b7:9' failed: Read-only file system
[ 1008.319688][ T5835] udevd[5835]: symlink '../../loop3' '/dev/disk/by-diskseq/2559.tmp-b7:3' failed: Read-only file system
[ 1008.364888][ T5845] udevd[5845]: symlink '../../loop9' '/dev/disk/by-diskseq/2558.tmp-b7:9' failed: Read-only file system
[ 1008.372860][T30314] loop3: detected capacity change from 0 to 64
[ 1008.451946][ T5835] udevd[5835]: symlink '../../loop3' '/dev/disk/by-diskseq/2561.tmp-b7:3' failed: Read-only file system
[ 1008.512723][ T5835] udevd[5835]: symlink '../../loop3' '/dev/disk/by-label/untitled.tmp-b7:3' failed: Read-only file system
[ 1008.891902][T30308] loop4: detected capacity change from 0 to 32768
[ 1008.915526][T30308] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.8305 (30308)
[ 1008.959253][T30308] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1008.995697][T30308] BTRFS info (device loop4): using sha256 checksum algorithm
[ 1009.128366][T30308] BTRFS info (device loop4): enabling ssd optimizations
[ 1009.136737][T30308] BTRFS info (device loop4): turning on async discard
[ 1009.149221][T30308] BTRFS info (device loop4): enabling free space tree
[ 1009.321444][T23558] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1009.834362][T30361] loop3: detected capacity change from 0 to 4096
[ 1010.071280][T30367] loop2: detected capacity change from 0 to 1024
[ 1010.239894][T30367] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1010.543635][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1010.796529][T30385] tipc: Started in network mode
[ 1010.811824][T30385] tipc: Node identity ac14142f, cluster identity 4711
[ 1010.820802][T30385] tipc: New replicast peer: 0.0.0.0
[ 1010.835366][T30385] tipc: Enabled bearer <udp:syz2>, priority 10
[ 1010.920747][T30386] tipc: New replicast peer: 255.255.255.255
[ 1011.150206][T30396] loop3: detected capacity change from 0 to 512
[ 1011.259999][T30396] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1011.261326][T30369] loop9: detected capacity change from 0 to 40427
[ 1011.302597][T30369] F2FS-fs (loop9): invalid crc value
[ 1011.354290][T30396] ext4 filesystem being mounted at /34/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1011.478836][T30404] EXT4-fs (loop3): shut down requested (2)
[ 1011.520043][T30369] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 1011.565515][T30369] F2FS-fs (loop9): Start checkpoint disabled!
[ 1011.579413][T30369] F2FS-fs (loop9): f2fs_disable_checkpoint() finish, err:0
[ 1011.598078][T30369] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e6
[ 1011.614102][T29440] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1011.645610][   T35] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[ 1011.661108][   T35] Quota error (device loop3): write_blk: dquota write failed
[ 1011.669569][   T35] Quota error (device loop3): remove_free_dqentry: Can't write block (5) with free entries
[ 1011.684468][   T35] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[ 1011.702398][   T35] Quota error (device loop3): write_blk: dquota write failed
[ 1011.718460][   T35] Quota error (device loop3): free_dqentry: Can't move quota data block (5) to free list
[ 1011.736077][   T35] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[ 1011.755520][   T35] Quota error (device loop3): v2_write_file_info: Can't write info structure
[ 1011.868336][T29888] tipc: Node number set to 2886997039
[ 1011.891728][   T35] kworker/u8:2: attempt to access beyond end of device
[ 1011.891728][   T35] loop9: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 1011.947300][T30412] loop4: detected capacity change from 0 to 512
[ 1011.955345][   T35] CPU: 1 UID: 0 PID: 35 Comm: kworker/u8:2 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1011.955374][   T35] Tainted: [L]=SOFTLOCKUP
[ 1011.955380][   T35] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1011.955391][   T35] Workqueue: writeback wb_workfn (flush-7:9)
[ 1011.955424][   T35] Call Trace:
[ 1011.955431][   T35]  <TASK>
[ 1011.955439][   T35]  dump_stack_lvl+0xe8/0x150
[ 1011.955465][   T35]  f2fs_handle_critical_error+0x37c/0x540
[ 1011.955492][   T35]  f2fs_write_end_io+0xcdb/0xff0
[ 1011.955527][   T35]  __submit_merged_bio+0x256/0x700
[ 1011.955551][   T35]  __submit_merged_write_cond+0x3c9/0x4e0
[ 1011.955577][   T35]  ? __pfx___submit_merged_write_cond+0x10/0x10
[ 1011.955618][   T35]  f2fs_write_data_pages+0x2975/0x35e0
[ 1011.955673][   T35]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1011.955705][   T35]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[ 1011.955760][   T35]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[ 1011.955801][   T35]  ? __lock_acquire+0x6b5/0x2cf0
[ 1011.955839][   T35]  ? __pfx_f2fs_inode_chksum_set+0x10/0x10
[ 1011.955863][   T35]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1011.955884][   T35]  do_writepages+0x32e/0x550
[ 1011.955911][   T35]  ? reacquire_held_locks+0x104/0x190
[ 1011.955926][   T35]  ? writeback_sb_inodes+0x477/0x1a20
[ 1011.955949][   T35]  __writeback_single_inode+0x133/0x11a0
[ 1011.955968][   T35]  ? do_raw_spin_unlock+0xf5/0x210
[ 1011.955989][   T35]  writeback_sb_inodes+0x992/0x1a20
[ 1011.956025][   T35]  ? do_raw_spin_unlock+0xf5/0x210
[ 1011.956051][   T35]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1011.956068][   T35]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1011.956121][   T35]  ? rcu_is_watching+0x15/0xb0
[ 1011.956146][   T35]  wb_writeback+0x456/0xb70
[ 1011.956168][   T35]  ? queue_io+0x2c1/0x4a0
[ 1011.956194][   T35]  ? __pfx_wb_writeback+0x10/0x10
[ 1011.956220][   T35]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1011.956255][   T35]  wb_workfn+0x414/0xf50
[ 1011.956281][   T35]  ? look_up_lock_class+0x57/0x110
[ 1011.956317][   T35]  ? __pfx_wb_workfn+0x10/0x10
[ 1011.956347][   T35]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1011.956370][   T35]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1011.956412][   T35]  ? process_one_work+0x870/0x1720
[ 1011.956432][   T35]  process_one_work+0x963/0x1720
[ 1011.956477][   T35]  ? __pfx_process_one_work+0x10/0x10
[ 1011.956496][   T35]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1011.956529][   T35]  worker_thread+0xb46/0x1140
[ 1011.956574][   T35]  kthread+0x388/0x470
[ 1011.956592][   T35]  ? __pfx_worker_thread+0x10/0x10
[ 1011.956612][   T35]  ? __pfx_kthread+0x10/0x10
[ 1011.956630][   T35]  ret_from_fork+0x51e/0xb90
[ 1011.956654][   T35]  ? __pfx_ret_from_fork+0x10/0x10
[ 1011.956674][   T35]  ? __switch_to+0xc7d/0x1450
[ 1011.956696][   T35]  ? __pfx_kthread+0x10/0x10
[ 1011.956716][   T35]  ret_from_fork_asm+0x1a/0x30
[ 1011.956750][   T35]  </TASK>
[ 1011.959369][   T35] F2FS-fs (loop9): Stopped filesystem due to reason: 3
[ 1012.055639][T30412] EXT4-fs: Ignoring removed i_version option
[ 1012.122228][   T35] CPU: 1 UID: 0 PID: 35 Comm: kworker/u8:2 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1012.122257][   T35] Tainted: [L]=SOFTLOCKUP
[ 1012.122264][   T35] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1012.122276][   T35] Workqueue: writeback wb_workfn (flush-7:9)
[ 1012.122309][   T35] Call Trace:
[ 1012.122317][   T35]  <TASK>
[ 1012.122326][   T35]  dump_stack_lvl+0xe8/0x150
[ 1012.122352][   T35]  f2fs_handle_critical_error+0x37c/0x540
[ 1012.122380][   T35]  f2fs_write_end_io+0xcdb/0xff0
[ 1012.122422][   T35]  __submit_merged_bio+0x256/0x700
[ 1012.122449][   T35]  __submit_merged_write_cond+0x3c9/0x4e0
[ 1012.122478][   T35]  ? __pfx___submit_merged_write_cond+0x10/0x10
[ 1012.122520][   T35]  f2fs_write_data_pages+0x2975/0x35e0
[ 1012.122581][   T35]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1012.122617][   T35]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[ 1012.122675][   T35]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[ 1012.122720][   T35]  ? __lock_acquire+0x6b5/0x2cf0
[ 1012.122755][   T35]  ? __pfx_f2fs_inode_chksum_set+0x10/0x10
[ 1012.122781][   T35]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1012.122804][   T35]  do_writepages+0x32e/0x550
[ 1012.122831][   T35]  ? reacquire_held_locks+0x104/0x190
[ 1012.122848][   T35]  ? writeback_sb_inodes+0x477/0x1a20
[ 1012.122875][   T35]  __writeback_single_inode+0x133/0x11a0
[ 1012.122896][   T35]  ? do_raw_spin_unlock+0xf5/0x210
[ 1012.122921][   T35]  writeback_sb_inodes+0x992/0x1a20
[ 1012.122962][   T35]  ? do_raw_spin_unlock+0xf5/0x210
[ 1012.122989][   T35]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1012.123006][   T35]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1012.123070][   T35]  ? rcu_is_watching+0x15/0xb0
[ 1012.123098][   T35]  wb_writeback+0x456/0xb70
[ 1012.123121][   T35]  ? queue_io+0x2c1/0x4a0
[ 1012.123150][   T35]  ? __pfx_wb_writeback+0x10/0x10
[ 1012.123166][   T35]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1012.123213][   T35]  wb_workfn+0x414/0xf50
[ 1012.123239][   T35]  ? look_up_lock_class+0x57/0x110
[ 1012.123279][   T35]  ? __pfx_wb_workfn+0x10/0x10
[ 1012.123306][   T35]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1012.123329][   T35]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1012.123369][   T35]  ? process_one_work+0x870/0x1720
[ 1012.123389][   T35]  process_one_work+0x963/0x1720
[ 1012.123435][   T35]  ? __pfx_process_one_work+0x10/0x10
[ 1012.123455][   T35]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1012.123488][   T35]  worker_thread+0xb46/0x1140
[ 1012.123540][   T35]  kthread+0x388/0x470
[ 1012.123561][   T35]  ? __pfx_worker_thread+0x10/0x10
[ 1012.123581][   T35]  ? __pfx_kthread+0x10/0x10
[ 1012.123602][   T35]  ret_from_fork+0x51e/0xb90
[ 1012.123628][   T35]  ? __pfx_ret_from_fork+0x10/0x10
[ 1012.123648][   T35]  ? __switch_to+0xc7d/0x1450
[ 1012.123674][   T35]  ? __pfx_kthread+0x10/0x10
[ 1012.123694][   T35]  ret_from_fork_asm+0x1a/0x30
[ 1012.123731][   T35]  </TASK>
[ 1012.126400][   T35] F2FS-fs (loop9): Stopped filesystem due to reason: 3
[ 1012.396986][T30412] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1012.815289][T23558] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1012.823153][T30425] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8345'.
[ 1012.872421][T30427] netlink: 36 bytes leftover after parsing attributes in process `syz.9.8342'.
[ 1012.880580][T30428] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1013.096938][T30438] loop9: detected capacity change from 0 to 256
[ 1013.158151][ T5845] udevd[5845]: symlink '../../loop2' '/dev/disk/by-diskseq/2568.tmp-b7:2' failed: Read-only file system
[ 1013.171436][T10203] udevd[10203]: symlink '../../loop4' '/dev/disk/by-diskseq/2574.tmp-b7:4' failed: Read-only file system
[ 1013.212497][T30438] exFAT-fs (loop9): failed to test first cluster bit of root dir(5)
[ 1013.231235][ T5835] udevd[5835]: symlink '../../loop9' '/dev/disk/by-diskseq/2573.tmp-b7:9' failed: Read-only file system
[ 1013.267448][T30444] netlink: 212368 bytes leftover after parsing attributes in process `syz.2.8352'.
[ 1013.304814][ T5835] udevd[5835]: symlink '../../loop9' '/dev/disk/by-uuid/1234-1234.tmp-b7:9' failed: Read-only file system
[ 1013.502464][ T5845] udevd[5845]: symlink '../../loop2' '/dev/disk/by-diskseq/2568.tmp-b7:2' failed: Read-only file system
[ 1013.530528][ T5835] udevd[5835]: symlink '../../loop9' '/dev/disk/by-diskseq/2575.tmp-b7:9' failed: Read-only file system
[ 1013.616608][ T5835] udevd[5835]: symlink '../../loop9' '/dev/disk/by-uuid/1234-1234.tmp-b7:9' failed: Read-only file system
[ 1013.813248][ T5835] udevd[5835]: symlink '../../loop9' '/dev/disk/by-diskseq/2575.tmp-b7:9' failed: Read-only file system
[ 1013.850924][ T5845] udevd[5845]: symlink '../../loop2' '/dev/disk/by-diskseq/2568.tmp-b7:2' failed: Read-only file system
[ 1013.884875][T30455] loop9: detected capacity change from 0 to 512
[ 1013.941308][T30455] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[ 1014.058319][ T5835] udevd[5835]: symlink '../../loop9' '/dev/disk/by-diskseq/2575.tmp-b7:9' failed: Read-only file system
[ 1014.070606][T30443] loop4: detected capacity change from 0 to 131072
[ 1014.089644][T30443] F2FS-fs (loop4): Wrong CP boundary, start(512) end(198144) blocks(1024)
[ 1014.098298][T30443] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[ 1014.108649][T30443] F2FS-fs (loop4): invalid crc value
[ 1014.247045][T30443] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1014.258711][T30455] EXT4-fs (loop9): 1 truncate cleaned up
[ 1014.269639][T30443] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[ 1014.277518][T30443] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[ 1014.303672][T30455] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1014.549511][T18488] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1014.651016][T30473] netlink: 'syz.2.8364': attribute type 1 has an invalid length.
[ 1014.698767][T30473] netlink: 88 bytes leftover after parsing attributes in process `syz.2.8364'.
[ 1014.767187][T30473] netlink: 1 bytes leftover after parsing attributes in process `syz.2.8364'.
[ 1014.826442][T30473] netlink: 'syz.2.8364': attribute type 1 has an invalid length.
[ 1014.845458][T30479] loop3: detected capacity change from 0 to 512
[ 1014.872846][T30473] netlink: 634 bytes leftover after parsing attributes in process `syz.2.8364'.
[ 1014.935350][T30479] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.8366: inode has both inline data and extents flags
[ 1015.025880][T30479] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1015.026231][T30479] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.8366: couldn't read orphan inode 15 (err -117)
[ 1015.035467][    C1] EXT4-fs (loop3): error count since last fsck: 1
[ 1015.035491][    C1] EXT4-fs (loop3): initial error at time 2000001214: ext4_orphan_get:1391: inode 15
[ 1015.035519][    C1] EXT4-fs (loop3): last error at time 2000001214: ext4_orphan_get:1391: inode 15
[ 1015.190670][T30479] loop3: lost filesystem error report for type 5 error -117
[ 1015.219289][T30479] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1015.430035][T29440] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1015.718031][T30500] 9pnet: p9_errstr2errno: server reported unknown error 
[ 1016.054267][T30515] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8380'.
[ 1016.069238][T30511] loop2: detected capacity change from 0 to 4096
[ 1016.362845][T30521] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[ 1016.385798][T30521] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[ 1016.757294][T30536] loop9: detected capacity change from 0 to 256
[ 1016.780068][T30536] exfat: Bad value for 'dmask'
[ 1017.077294][T30542] loop9: detected capacity change from 0 to 2048
[ 1017.125493][T30542] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1017.177026][   T29] audit: type=1800 audit(2000001216.346:923): pid=30542 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.8392" name="file1" dev="loop9" ino=1367 res=0 errno=0
[ 1017.214382][T29888] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1017.604104][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1018.206680][ T5835] udevd[5835]: symlink '../../loop4' '/dev/disk/by-diskseq/2580.tmp-b7:4' failed: Read-only file system
[ 1018.248692][T29888] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1018.281821][ T5845] udevd[5845]: symlink '../../loop3' '/dev/disk/by-diskseq/2582.tmp-b7:3' failed: Read-only file system
[ 1018.405279][ T5835] udevd[5835]: symlink '../../loop9' '/dev/disk/by-diskseq/2588.tmp-b7:9' failed: Read-only file system
[ 1018.459976][ T5845] udevd[5845]: symlink '../../loop3' '/dev/disk/by-diskseq/2582.tmp-b7:3' failed: Read-only file system
[ 1018.706039][ T5835] udevd[5835]: symlink '../../loop4' '/dev/disk/by-diskseq/2580.tmp-b7:4' failed: Read-only file system
[ 1018.758928][T30579] loop4: detected capacity change from 0 to 512
[ 1018.794496][T30579] EXT4-fs: Ignoring removed bh option
[ 1018.820441][T30579] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1018.858497][T30579] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[ 1018.865621][ T5835] udevd[5835]: symlink '../../loop4' '/dev/disk/by-diskseq/2589.tmp-b7:4' failed: Read-only file system
[ 1018.904958][T30579] EXT4-fs (loop4): revision level too high, forcing read-only mode
[ 1018.932921][ T5835] udevd[5835]: symlink '../../loop4' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system
[ 1018.973824][T30579] EXT4-fs (loop4): orphan cleanup on readonly fs
[ 1019.021702][T30579] Quota error (device loop4): do_insert_tree: Free block already used in tree: block 4
[ 1019.077827][T30579] Quota error (device loop4): qtree_write_dquot: Error -5 occurred while creating quota
[ 1019.099234][ T5835] udevd[5835]: symlink '../../loop4' '/dev/disk/by-diskseq/2589.tmp-b7:4' failed: Read-only file system
[ 1019.114246][T30579] EXT4-fs error (device loop4): ext4_acquire_dquot:7001: comm syz.4.8406: Failed to acquire dquot type 1
[ 1019.129641][T30572] loop9: detected capacity change from 0 to 40427
[ 1019.136584][T30579] loop4: lost filesystem error report for type 5 error -5
[ 1019.137313][T30579] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.8406: Invalid block bitmap block 0 in block_group 0
[ 1019.144522][    C1] EXT4-fs (loop4): error count since last fsck: 1
[ 1019.144546][    C1] EXT4-fs (loop4): last error at time 2000001218: ext4_acquire_dquot:7001
[ 1019.155826][ T5835] udevd[5835]: symlink '../../loop4' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system
[ 1019.175184][T30572] F2FS-fs (loop9): Invalid log_blocksize (268), supports only 12
[ 1019.208540][T30579] loop4: lost filesystem error report for type 5 error -117
[ 1019.214499][T30572] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[ 1019.231040][T30579] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.8406: Invalid block bitmap block 0 in block_group 0
[ 1019.252149][T30579] loop4: lost filesystem error report for type 5 error -117
[ 1019.260409][T30579] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.8406: Invalid block bitmap block 0 in block_group 0
[ 1019.287826][T29888] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1019.340195][T30579] loop4: lost filesystem error report for type 5 error -117
[ 1019.351663][ T5835] udevd[5835]: symlink '../../loop2' '/dev/disk/by-diskseq/2584.tmp-b7:2' failed: Read-only file system
[ 1019.354162][T30579] Quota error (device loop4): write_blk: dquota write failed
[ 1019.404558][T30579] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota
[ 1019.416975][T30579] EXT4-fs error (device loop4): ext4_acquire_dquot:7001: comm syz.4.8406: Failed to acquire dquot type 1
[ 1019.437784][T30579] loop4: lost filesystem error report for type 5 error -28
[ 1019.483039][T30590] loop2: detected capacity change from 0 to 1024
[ 1019.485878][T30572] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1019.501663][T30579] Quota error (device loop4): write_blk: dquota write failed
[ 1019.519168][T30590] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[ 1019.530261][T30590] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[ 1019.541315][T30579] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota
[ 1019.565900][T30572] F2FS-fs (loop9): Try to recover 1th superblock, ret: -30
[ 1019.575905][T30590] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[ 1019.587008][T30572] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[ 1019.592814][T30579] EXT4-fs error (device loop4): ext4_acquire_dquot:7001: comm syz.4.8406: Failed to acquire dquot type 1
[ 1019.608614][T30579] loop4: lost filesystem error report for type 5 error -28
[ 1019.609528][T30590] EXT4-fs error (device loop2): ext4_get_journal_inode:5863: inode #32: comm syz.2.8410: iget: special inode unallocated
[ 1019.636060][T30579] EXT4-fs (loop4): 1 orphan inode deleted
[ 1019.662294][T30590] loop2: lost file I/O error report for ino 32 type 5 pos 0x0 len 0x0 error -117
[ 1019.662755][T30590] EXT4-fs (loop2): no journal found
[ 1019.671968][    C1] EXT4-fs (loop2): error count since last fsck: 1
[ 1019.671990][    C1] EXT4-fs (loop2): initial error at time 2000001218: ext4_get_journal_inode:5863: inode 32
[ 1019.672015][    C1] EXT4-fs (loop2): last error at time 2000001218: ext4_get_journal_inode:5863: inode 32
[ 1019.721957][T30579] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1019.723661][T30590] EXT4-fs (loop2): can't get journal size
[ 1019.778243][T30590] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1019.805171][T30572] F2FS-fs (loop9): Try to recover all the superblocks, ret: 0
[ 1020.119027][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1020.120322][T23558] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1020.324222][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1020.421529][T30609] input: syz1 as /devices/virtual/input/input50
[ 1020.594385][T30615] hsr0: entered promiscuous mode
[ 1020.609114][T30615] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8420'.
[ 1020.642128][T30615] hsr_slave_0: left promiscuous mode
[ 1020.650077][T18100] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1020.669608][T30615] hsr_slave_1: left promiscuous mode
[ 1020.712977][T30615] hsr0 (unregistering): left promiscuous mode
[ 1020.930801][T30619] loop3: detected capacity change from 0 to 4096
[ 1020.934113][T30623] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8425'.
[ 1021.139301][T30613] loop2: detected capacity change from 0 to 32768
[ 1021.226162][T30629] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[ 1021.241771][T30613] add_index: next_index = 0.  Resetting!
[ 1021.248150][T30613] non-latin1 character 0x3ff found in JFS file name
[ 1021.256365][T30613] mount with iocharset=utf8 to access
[ 1021.287689][T30629] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[ 1021.294670][T30629] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[ 1021.301528][T30629] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[ 1021.528674][   T54] usb 10-1: new low-speed USB device number 17 using dummy_hcd
[ 1021.696018][   T54] usb 10-1: config index 0 descriptor too short (expected 6427, got 27)
[ 1021.705918][   T54] usb 10-1: config 0 has an invalid interface number: 21 but max is 0
[ 1021.721716][   T54] usb 10-1: config 0 has no interface number 0
[ 1021.729486][   T54] usb 10-1: config 0 interface 21 altsetting 0 endpoint 0x82 is Bulk; changing to Interrupt
[ 1021.740411][   T54] usb 10-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4
[ 1021.758424][   T54] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1021.787083][   T54] usb 10-1: config 0 descriptor??
[ 1021.799880][T30631] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[ 1022.405078][   T69] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1022.408071][T18733] net_ratelimit: 3327 callbacks suppressed
[ 1022.408089][T18733] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1022.457766][   T54] input: USB Keyspan Remote 06cd:0202 as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.21/input/input51
[ 1022.693729][    C1] keyspan_remote 10-1:0.21: keyspan_irq_recv - usb_submit_urb failed with result: -19
[ 1022.705973][T18733] usb 10-1: USB disconnect, device number 17
[ 1023.091796][T30667] could not open pipe file descriptor
[ 1023.218948][ T5835] udevd[5835]: symlink '../../loop3' '/dev/disk/by-diskseq/2597.tmp-b7:3' failed: Read-only file system
[ 1023.234157][ T5845] udevd[5845]: symlink '../../loop4' '/dev/disk/by-diskseq/2593.tmp-b7:4' failed: Read-only file system
[ 1023.360594][ T5835] udevd[5835]: symlink '../../loop9' '/dev/disk/by-diskseq/2594.tmp-b7:9' failed: Read-only file system
[ 1023.407973][ T5845] udevd[5845]: symlink '../../loop3' '/dev/disk/by-diskseq/2597.tmp-b7:3' failed: Read-only file system
[ 1023.443729][T18733] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1023.472675][ T5835] udevd[5835]: symlink '../../loop4' '/dev/disk/by-diskseq/2593.tmp-b7:4' failed: Read-only file system
[ 1023.603126][ T5835] udevd[5835]: symlink '../../loop9' '/dev/disk/by-diskseq/2594.tmp-b7:9' failed: Read-only file system
[ 1023.679728][ T5835] udevd[5835]: symlink '../../loop3' '/dev/disk/by-diskseq/2597.tmp-b7:3' failed: Read-only file system
[ 1023.701433][T18100] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1023.841524][ T5835] udevd[5835]: symlink '../../loop9' '/dev/disk/by-diskseq/2594.tmp-b7:9' failed: Read-only file system
[ 1023.885929][ T5845] udevd[5845]: symlink '../../loop3' '/dev/disk/by-diskseq/2597.tmp-b7:3' failed: Read-only file system
[ 1024.075861][ T5835] udevd[5835]: symlink '../../loop9' '/dev/disk/by-diskseq/2594.tmp-b7:9' failed: Read-only file system
[ 1024.392761][T30690] loop3: detected capacity change from 0 to 65536
[ 1024.420832][T30690] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[ 1024.431109][T30690] XFS (loop3): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[ 1024.486591][T18733] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1024.539318][T30690] XFS (loop3): Ending clean mount
[ 1024.591561][T30690] XFS (loop3): Metadata CRC error detected at xfs_agi_read_verify+0x142/0x210, xfs_agi block 0x8002 
[ 1024.603799][T30690] XFS (loop3): Unmount and run xfs_repair
[ 1024.611161][T30690] XFS (loop3): First 128 bytes of corrupted metadata buffer:
[ 1024.618829][T30690] 00000000: 58 41 47 49 00 00 00 01 00 00 00 01 00 00 40 00  XAGI..........@.
[ 1024.628910][T30690] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 00  ................
[ 1024.638110][T30690] 00000020: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[ 1024.647099][T30690] 00000030: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[ 1024.656034][T30690] 00000040: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[ 1024.665386][T30690] 00000050: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[ 1024.674658][T30690] 00000060: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[ 1024.683588][T30690] 00000070: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[ 1024.692458][T30690] XFS (loop3): metadata I/O error in "xfs_read_agi+0x270/0x5f0" at daddr 0x8002 len 1 error 74
[ 1024.710710][T30690] XFS (loop3): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xe0, xfs_cntbt block 0x6 
[ 1024.725236][T30690] XFS (loop3): Unmount and run xfs_repair
[ 1024.730990][T30690] XFS (loop3): First 128 bytes of corrupted metadata buffer:
[ 1024.738772][T30690] 00000000: 41 42 33 43 00 00 00 02 ff ff ff ff ff ff ff ff  AB3C............
[ 1024.747716][T30690] 00000010: 00 00 00 00 00 00 00 06 00 00 00 01 00 00 00 10  ................
[ 1024.756888][T30690] 00000020: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[ 1024.766003][T30690] 00000030: 00 00 00 00 b2 4a d0 a1 00 00 00 0d 00 00 00 03  .....J..........
[ 1024.774950][T30690] 00000040: 00 00 00 39 00 00 3f c7 00 00 00 00 00 00 00 00  ...9..?.........
[ 1024.784622][T30690] 00000050: 00 00 00 00 00 00 00 00 00 00 00 3f 00 00 00 00  ...........?....
[ 1024.793576][T30690] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1024.802442][T30690] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1024.811446][T30690] XFS (loop3): metadata I/O error in "xfs_btree_read_buf_block+0x2b0/0x490" at daddr 0x6 len 2 error 74
[ 1024.882421][T30690] XFS (loop3): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x518/0x950 (fs/xfs/xfs_trans_buf.c:311).  Shutting down filesystem.
[ 1024.897272][T30690] XFS (loop3): Please unmount the filesystem and rectify the problem(s)
[ 1024.922228][T30710] loop2: detected capacity change from 0 to 512
[ 1024.963938][T23495] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1024.982036][T29440] XFS (loop3): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[ 1025.036207][T30710] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[ 1025.095543][T30703] ==================================================================
[ 1025.103652][T30703] BUG: KASAN: slab-use-after-free in xfs_inode_item_push+0x396/0x720
[ 1025.111740][T30703] Read of size 8 at addr ffff88805a326928 by task xfsaild/loop3/30703
[ 1025.119899][T30703] 
[ 1025.122240][T30703] CPU: 1 UID: 0 PID: 30703 Comm: xfsaild/loop3 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1025.122274][T30703] Tainted: [L]=SOFTLOCKUP
[ 1025.122281][T30703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1025.122292][T30703] Call Trace:
[ 1025.122300][T30703]  <TASK>
[ 1025.122308][T30703]  dump_stack_lvl+0xe8/0x150
[ 1025.122336][T30703]  print_report+0xba/0x230
[ 1025.122356][T30703]  ? xfs_inode_item_push+0x396/0x720
[ 1025.122372][T30703]  kasan_report+0x117/0x150
[ 1025.122395][T30703]  ? xfs_inode_item_push+0x396/0x720
[ 1025.122413][T30703]  xfs_inode_item_push+0x396/0x720
[ 1025.122431][T30703]  xfsaild+0x10bd/0x2af0
[ 1025.122460][T30703]  ? xfsaild+0x190/0x2af0
[ 1025.122475][T30703]  ? __pfx_xfsaild+0x10/0x10
[ 1025.122490][T30703]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1025.122513][T30703]  ? __kthread_parkme+0x7a/0x1f0
[ 1025.122534][T30703]  kthread+0x388/0x470
[ 1025.122551][T30703]  ? __pfx_xfsaild+0x10/0x10
[ 1025.122566][T30703]  ? __pfx_kthread+0x10/0x10
[ 1025.122584][T30703]  ret_from_fork+0x51e/0xb90
[ 1025.122606][T30703]  ? __pfx_ret_from_fork+0x10/0x10
[ 1025.122626][T30703]  ? __switch_to+0xc7d/0x1450
[ 1025.122646][T30703]  ? __pfx_kthread+0x10/0x10
[ 1025.122662][T30703]  ret_from_fork_asm+0x1a/0x30
[ 1025.122683][T30703]  </TASK>
[ 1025.122690][T30703] 
[ 1025.228459][   T29] audit: type=1800 audit(2000001224.396:924): pid=30710 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.8457" name="file1" dev="loop2" ino=26 res=0 errno=0
[ 1025.230332][T30703] Allocated by task 30690:
[ 1025.230344][T30703]  kasan_save_track+0x3e/0x80
[ 1025.230369][T30703]  __kasan_slab_alloc+0x6c/0x80
[ 1025.284103][T30703]  kmem_cache_alloc_noprof+0x2bc/0x650
[ 1025.289562][T30703]  xfs_inode_item_init+0x33/0xc0
[ 1025.294497][T30703]  xfs_trans_ijoin+0xe5/0x130
[ 1025.299169][T30703]  xfs_create+0x677/0xb30
[ 1025.303489][T30703]  xfs_generic_create+0x410/0xb30
[ 1025.308533][T30703]  xfs_vn_mkdir+0x37/0x50
[ 1025.312859][T30703]  vfs_mkdir+0x413/0x630
[ 1025.317086][T30703]  filename_mkdirat+0x285/0x510
[ 1025.321926][T30703]  __se_sys_mkdirat+0x35/0x150
[ 1025.326680][T30703]  do_syscall_64+0x14d/0xf80
[ 1025.331277][T30703]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1025.337162][T30703] 
[ 1025.339474][T30703] Freed by task 30713:
[ 1025.343526][T30703]  kasan_save_track+0x3e/0x80
[ 1025.348291][T30703]  kasan_save_free_info+0x46/0x50
[ 1025.353306][T30703]  __kasan_slab_free+0x5c/0x80
[ 1025.358102][T30703]  kmem_cache_free+0x187/0x630
[ 1025.362857][T30703]  xfs_inode_free_callback+0x14f/0x1c0
[ 1025.368306][T30703]  rcu_core+0x7cd/0x1070
[ 1025.372631][T30703]  handle_softirqs+0x22a/0x870
[ 1025.377452][T30703]  __irq_exit_rcu+0xca/0x220
[ 1025.382040][T30703]  irq_exit_rcu+0x9/0x30
[ 1025.386270][T30703]  sysvec_apic_timer_interrupt+0xa6/0xc0
[ 1025.391901][T30703]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1025.397871][T30703] 
[ 1025.400182][T30703] The buggy address belongs to the object at ffff88805a3268f8
[ 1025.400182][T30703]  which belongs to the cache xfs_ili of size 264
[ 1025.413873][T30703] The buggy address is located 48 bytes inside of
[ 1025.413873][T30703]  freed 264-byte region [ffff88805a3268f8, ffff88805a326a00)
[ 1025.427575][T30703] 
[ 1025.429890][T30703] The buggy address belongs to the physical page:
[ 1025.436307][T30703] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88805a326cd0 pfn:0x5a326
[ 1025.446365][T30703] flags: 0xfff00000000200(workingset|node=0|zone=1|lastcpupid=0x7ff)
[ 1025.454439][T30703] page_type: f5(slab)
[ 1025.458410][T30703] raw: 00fff00000000200 ffff888140ae1c80 ffffea000168c4d0 ffffea0000a8c6d0
[ 1025.466984][T30703] raw: ffff88805a326cd0 00000008000c000a 00000000f5000000 0000000000000000
[ 1025.475548][T30703] page dumped because: kasan: bad access detected
[ 1025.481961][T30703] page_owner tracks the page as allocated
[ 1025.487671][T30703] page last allocated via order 0, migratetype Reclaimable, gfp_mask 0xd2c50(GFP_NOFS|__GFP_RECLAIMABLE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 18291, tgid 18291 (syz-executor), ts 599232957993, free_ts 594620982954
[ 1025.510335][T30703]  post_alloc_hook+0x231/0x280
[ 1025.515104][T30703]  get_page_from_freelist+0x23a1/0x2440
[ 1025.520644][T30703]  __alloc_frozen_pages_noprof+0x18d/0x380
[ 1025.526437][T30703]  allocate_slab+0x77/0x660
[ 1025.530928][T30703]  refill_objects+0x331/0x3c0
[ 1025.535683][T30703]  __pcs_replace_empty_main+0x2f9/0x5e0
[ 1025.541218][T30703]  kmem_cache_alloc_noprof+0x37d/0x650
[ 1025.546674][T30703]  xfs_inode_item_init+0x33/0xc0
[ 1025.551601][T30703]  xfs_trans_ijoin+0xe5/0x130
[ 1025.556262][T30703]  xfs_trans_alloc_dir+0x178/0x620
[ 1025.561358][T30703]  xfs_remove+0x489/0x950
[ 1025.565684][T30703]  xfs_vn_unlink+0x103/0x240
[ 1025.570264][T30703]  vfs_unlink+0x272/0x6c0
[ 1025.574579][T30703]  filename_unlinkat+0x3cd/0x610
[ 1025.579501][T30703]  __se_sys_unlink+0x2e/0x140
[ 1025.584165][T30703]  do_syscall_64+0x14d/0xf80
[ 1025.588749][T30703] page last free pid 18488 tgid 18488 stack trace:
[ 1025.595242][T30703]  __free_frozen_pages+0xbe2/0xd60
[ 1025.600345][T30703]  __slab_free+0x263/0x2b0
[ 1025.604755][T30703]  qlist_free_all+0x97/0x100
[ 1025.609337][T30703]  kasan_quarantine_reduce+0x148/0x160
[ 1025.614787][T30703]  __kasan_slab_alloc+0x22/0x80
[ 1025.619634][T30703]  kmem_cache_alloc_noprof+0x2bc/0x650
[ 1025.625099][T30703]  ptlock_alloc+0x20/0x70
[ 1025.629420][T30703]  pte_alloc_one+0x7a/0x370
[ 1025.633913][T30703]  __pte_alloc+0x25/0x1a0
[ 1025.638245][T30703]  copy_pmd_range+0x7a3e/0x82d0
[ 1025.643083][T30703]  copy_page_range+0xbe8/0x11f0
[ 1025.647929][T30703]  dup_mmap+0xf40/0x1d90
[ 1025.652185][T30703]  copy_mm+0x14d/0x6a0
[ 1025.656251][T30703]  copy_process+0x18b6/0x3cf0
[ 1025.660919][T30703]  kernel_clone+0x248/0x8e0
[ 1025.665408][T30703]  __x64_sys_clone+0x1b6/0x230
[ 1025.670161][T30703] 
[ 1025.672466][T30703] Memory state around the buggy address:
[ 1025.678075][T30703]  ffff88805a326800: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1025.686129][T30703]  ffff88805a326880: fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc fa
[ 1025.694178][T30703] >ffff88805a326900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1025.702225][T30703]                                   ^
[ 1025.707583][T30703]  ffff88805a326980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1025.715630][T30703]  ffff88805a326a00: fc fc fc fc fc fc fc fc 00 00 00 00 00 00 00 00
[ 1025.723679][T30703] ==================================================================
[ 1025.749120][T30703] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1025.756363][T30703] CPU: 0 UID: 0 PID: 30703 Comm: xfsaild/loop3 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1025.767564][T30703] Tainted: [L]=SOFTLOCKUP
[ 1025.771895][T30703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1025.781963][T30703] Call Trace:
[ 1025.785252][T30703]  <TASK>
[ 1025.788196][T30703]  vpanic+0x56c/0xa60
[ 1025.792187][T30703]  ? __pfx_vpanic+0x10/0x10
[ 1025.796691][T30703]  panic+0xc5/0xd0
[ 1025.800410][T30703]  ? __pfx_panic+0x10/0x10
[ 1025.804833][T30703]  ? preempt_schedule_thunk+0x16/0x30
[ 1025.810204][T30703]  ? xfs_inode_item_push+0x396/0x720
[ 1025.815478][T30703]  ? preempt_schedule_thunk+0x16/0x30
[ 1025.820848][T30703]  ? xfs_inode_item_push+0x396/0x720
[ 1025.826124][T30703]  check_panic_on_warn+0x89/0xb0
[ 1025.831054][T30703]  ? xfs_inode_item_push+0x396/0x720
[ 1025.836329][T30703]  end_report+0x73/0x180
[ 1025.840566][T30703]  ? xfs_inode_item_push+0x396/0x720
[ 1025.845842][T30703]  kasan_report+0x128/0x150
[ 1025.850348][T30703]  ? xfs_inode_item_push+0x396/0x720
[ 1025.855625][T30703]  xfs_inode_item_push+0x396/0x720
[ 1025.860733][T30703]  xfsaild+0x10bd/0x2af0
[ 1025.864973][T30703]  ? xfsaild+0x190/0x2af0
[ 1025.869291][T30703]  ? __pfx_xfsaild+0x10/0x10
[ 1025.873870][T30703]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1025.879675][T30703]  ? __kthread_parkme+0x7a/0x1f0
[ 1025.884617][T30703]  kthread+0x388/0x470
[ 1025.888674][T30703]  ? __pfx_xfsaild+0x10/0x10
[ 1025.893250][T30703]  ? __pfx_kthread+0x10/0x10
[ 1025.897828][T30703]  ret_from_fork+0x51e/0xb90
[ 1025.902416][T30703]  ? __pfx_ret_from_fork+0x10/0x10
[ 1025.907521][T30703]  ? __switch_to+0xc7d/0x1450
[ 1025.912197][T30703]  ? __pfx_kthread+0x10/0x10
[ 1025.916778][T30703]  ret_from_fork_asm+0x1a/0x30
[ 1025.921538][T30703]  </TASK>
[ 1025.925156][T30703] Kernel Offset: disabled
[ 1025.929467][T30703] Rebooting in 86400 seconds..