last executing test programs:

5m58.897324088s ago: executing program 0 (id=4679):
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000800)=@delchain={0x494, 0x65, 0x2, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x8}, {0x0, 0x1}, {0x0, 0x8}}, [@TCA_RATE={0x6, 0x5, {0x5, 0x5}}, @TCA_CHAIN={0x8, 0xb, 0x6}, @filter_kind_options=@f_bpf={{0x8}, {0x458, 0x2, [@TCA_BPF_FD={0x8}, @TCA_BPF_NAME={0xc, 0x7, './file0\x00'}, @TCA_BPF_ACT={0x9c, 0x1, [@m_simple={0x38, 0x1e, 0x0, 0x0, {{0xb}, {0xc, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0x8, 0x3, 'bpf\x00'}]}, {0x4}, {0xc, 0x7, {0x0, 0x79d0f023c2b305dd}}, {0xc, 0x8, {0x3, 0x2}}}}, @m_connmark={0x60, 0x15, 0x0, 0x0, {{0xd}, {0x4}, {0x2d, 0x6, "726786f30e509174574dc37f3b098ea66afe225634df06865f963558e69516e656d1b4d3ec4c23aaed"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}]}, @TCA_BPF_FLAGS_GEN={0x8, 0x9, 0x3}, @TCA_BPF_NAME={0xc, 0x7, './file0\x00'}, @TCA_BPF_FLAGS={0x8, 0x8, 0x1}, @TCA_BPF_ACT={0x388, 0x1, [@m_ctinfo={0x100, 0x4, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_CTINFO_ZONE={0x6, 0x4, 0x53}, @TCA_CTINFO_ACT={0x18, 0x3, {0x2, 0x7f, 0x10000000, 0x82c}}]}, {0xb1, 0x6, "c14309d56e11f3e88ad36b866a06cff47631fe31f29c2d83a2e6f0bf13045227d5cfc3c4f57b9a903cf86c567461f60a0fb69f562613042765a016443f0181bfeba7e917511c20f8585f40c15cc948ecdd08e5acfddde4c4d1eeb8e4156045960e71ed491970a569097578137069861cf0a28baddf976ebf5e96eca138cadcea7bfb921158875a49e4975a5dbb3ab54f13ee0f5254fe6f752f120208ad930afb01c2417b4953f4774567f9bbf1"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x4, 0x2}}}}, @m_skbmod={0x90, 0x4, 0x0, 0x0, {{0xb}, {0x60, 0x2, 0x0, 0x1, [@TCA_SKBMOD_ETYPE={0x6, 0x5, 0x6}, @TCA_SKBMOD_DMAC={0xa, 0x3, @broadcast}, @TCA_SKBMOD_SMAC={0xa, 0x4, @local}, @TCA_SKBMOD_SMAC={0xa, 0x4, @broadcast}, @TCA_SKBMOD_SMAC={0xa}, @TCA_SKBMOD_SMAC={0xa, 0x4, @broadcast}, @TCA_SKBMOD_SMAC={0xa, 0x4, @remote}, @TCA_SKBMOD_SMAC={0xa, 0x4, @random="7d04a5219f97"}]}, {0x5, 0x6, "cc"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_nat={0x178, 0x1b, 0x0, 0x0, {{0x8}, {0xcc, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0xff, 0x1, 0xffffffffffffffff, 0x0, 0xefb}, @loopback, @empty, 0xffffff00, 0x800}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x4, 0x4, 0x6, 0x8, 0x9}, @local, @dev={0xac, 0x14, 0x14, 0x1c}, 0x0, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x357a, 0x9, 0x7, 0x101, 0x5}, @broadcast, @remote}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x5f2, 0x40, 0x5, 0x1, 0x1}, @broadcast, @remote, 0x0, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x5, 0x7, 0x20000000, 0x7, 0x59c3}, @loopback, @loopback, 0xff}}]}, {0x85, 0x6, "eef24a41a52f4314740d880a9749ccbff0e34c74cfcac1e63977a597552daff459d49bffeac63ea994857207934fd2d00f52f25f0f3d8c80b3a218a170d8b1961a361663d049269537cb537e3789e52bb3db1eec99b6cdd8dd022491e57495f8bd3687340df10a1e43f1a2790d3910c094f2c7203385622c8498933c3e883b83b3"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}, @m_sample={0x7c, 0xc, 0x0, 0x0, {{0xb}, {0x4c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_TRUNC_SIZE={0x8, 0x4, 0x7ff}, @TCA_SAMPLE_RATE={0x8, 0x3, 0x9}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x3, 0x5, 0x5, 0x5, 0x8}}, @TCA_SAMPLE_TRUNC_SIZE={0x8, 0x4, 0x9}, @TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0x5}, @TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0x2}, @TCA_SAMPLE_TRUNC_SIZE={0x8, 0x4, 0xc00}]}, {0x8, 0x6, "2ff4fb63"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}]}, 0x494}, 0x1, 0x0, 0x0, 0x81}, 0x20000080)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c01803002e000b12d25a80648c2594f90324fc60180c02400a000000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

5m58.729191442s ago: executing program 0 (id=4681):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000e00)=ANY=[@ANYBLOB="12010000000000402509668000000000000109022400010000100309040000010300020009210000080122070009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000000c0)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="002207000000a09457"], 0x0}, 0x0)

5m55.570352269s ago: executing program 0 (id=4730):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="2c0000002000010027bd7000fbdbdf250a000040000000070600000008000a00ff00000028000d"], 0x2c}, 0x1, 0x0, 0x0, 0x24048860}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='\\\x00\x00\x00!'], 0x5c}}, 0x0)

5m55.336588908s ago: executing program 0 (id=4734):
syz_mount_image$jfs(&(0x7f00000001c0), &(0x7f0000000180)='./file0\x00', 0x2, &(0x7f0000000600)=ANY=[@ANYBLOB="6e6f71756f74612c6e6f696e746567726974792c6e6f646973636172642c67727071756f74612c696f636861727365743d63703933322c6e6f646973636172642c71756f74612c6e6f71756f74612c6e6f696e746567726974792c004d5afe2de1b3a136431fa8ea7b501ecb08f40540fff494c16f9b0781a740588d55fa"], 0x1, 0x614f, &(0x7f000000ccc0)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
llistxattr(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)

5m54.609932008s ago: executing program 0 (id=4746):
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fsetxattr$trusted_overlay_upper(r0, &(0x7f00000012c0), 0x0, 0x0, 0x0)
fremovexattr(r0, &(0x7f0000002480)=@known='trusted.overlay.upper\x00')

5m53.912217746s ago: executing program 0 (id=4754):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={0x3c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_SEQ_ADJ_REPLY={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8c04}, 0x40c0)

5m53.461127603s ago: executing program 32 (id=4754):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={0x3c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_SEQ_ADJ_REPLY={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8c04}, 0x40c0)

5m13.83003037s ago: executing program 4 (id=5262):
r0 = socket(0xa, 0x3, 0x3a)
setuid(0xee01)
setsockopt$MRT6_ADD_MIF(r0, 0x29, 0xca, 0x0, 0x0)

5m13.67836298s ago: executing program 4 (id=5266):
r0 = socket$kcm(0x23, 0x2, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
sendmsg$kcm(r0, &(0x7f0000000140)={&(0x7f0000000000)=@phonet, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000080)="b8", 0x1ff48}], 0x2}, 0x0)

5m13.589256892s ago: executing program 4 (id=5268):
syz_mount_image$squashfs(&(0x7f0000000940), &(0x7f0000000640)='./file0\x00', 0x0, &(0x7f0000000380)=ANY=[], 0x9, 0x1a2, &(0x7f0000000000)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0xe8)
getdents(r0, 0xfffffffffffffffd, 0xbb)

5m13.365151757s ago: executing program 4 (id=5272):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x1400c, &(0x7f0000000580)={[{@nomblk_io_submit}, {@journal_dev={'journal_dev', 0x3d, 0x3f2}}, {@noload}]}, 0x3, 0x482, &(0x7f0000001240)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000080)='./bus\x00', 0x30000d0, 0x0, 0x2, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './bus'}}], [], 0x2c})

5m12.635843086s ago: executing program 4 (id=5282):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
process_madvise(r1, &(0x7f0000000100)=[{&(0x7f0000000000)='b', 0x1}], 0x1, 0x62aa4881d48b5016, 0x0)

5m11.902365258s ago: executing program 4 (id=5293):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r0}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x16, 0x10, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0xc00d100, 0x0, 0x0, 0x0, 0x100}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xb}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0xb6}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

5m11.554994046s ago: executing program 33 (id=5293):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r0}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x16, 0x10, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0xc00d100, 0x0, 0x0, 0x0, 0x100}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xb}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0xb6}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

4m40.833565567s ago: executing program 2 (id=5691):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_clone(0x100000, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, r1)

4m40.660958333s ago: executing program 2 (id=5694):
setrlimit(0x40000000000008, &(0x7f0000000000)={0x204, 0x801})
r0 = shmget$private(0x0, 0x400000, 0x184, &(0x7f0000c00000/0x400000)=nil)
shmctl$SHM_LOCK(r0, 0xb)

4m40.554344343s ago: executing program 2 (id=5695):
r0 = syz_open_dev$media(&(0x7f0000000080), 0x34, 0x0)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r0, 0x80047c05, &(0x7f0000000100)=<r1=>0xffffffffffffffff)
ioctl$MEDIA_REQUEST_IOC_QUEUE(r1, 0x7c80, 0x0)

4m40.493370399s ago: executing program 2 (id=5697):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x1400c, &(0x7f0000000680)={[{@test_dummy_encryption}, {@init_itable}, {@noload}]}, 0x3, 0x470, &(0x7f0000000dc0)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x1860, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000780)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

4m40.237059831s ago: executing program 2 (id=5699):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_DEL(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f00000004c0)={0x34, r1, 0x13, 0x0, 0x0, {0x17}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)

4m39.649802173s ago: executing program 2 (id=5706):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@newtaction={0x50, 0x30, 0x48b, 0x70bd26, 0x40000000, {}, [{0x3c, 0x1, [@m_ctinfo={0x38, 0xd, 0x0, 0x0, {{0xb}, {0xc, 0x2, 0x0, 0x1, [@TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x9}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x4, 0x1}}}}]}]}, 0x50}}, 0x2000e994)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="340000003e0007010000000000000000017c00000400fc800c0001800600060065580000080002"], 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0xc010)

4m39.487770677s ago: executing program 34 (id=5706):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@newtaction={0x50, 0x30, 0x48b, 0x70bd26, 0x40000000, {}, [{0x3c, 0x1, [@m_ctinfo={0x38, 0xd, 0x0, 0x0, {{0xb}, {0xc, 0x2, 0x0, 0x1, [@TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x9}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x4, 0x1}}}}]}]}, 0x50}}, 0x2000e994)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="340000003e0007010000000000000000017c00000400fc800c0001800600060065580000080002"], 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0xc010)

1m14.471394231s ago: executing program 5 (id=8448):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x2, &(0x7f0000000000)=0x6, 0x4)
setsockopt$inet6_int(r0, 0x29, 0x42, &(0x7f0000000080)=0xf2a, 0x4)
getsockopt$inet6_buf(r0, 0x29, 0x6, &(0x7f0000001500)=""/17, &(0x7f00000000c0)=0x11)

1m14.281393849s ago: executing program 5 (id=8451):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000100)=ANY=[@ANYBLOB="1201000018dfde1035121000822953050a0109021200010000000009040001"], 0x0)
capset(0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_connect(0x5, 0x2d, 0x0, 0x0)

1m12.539170531s ago: executing program 5 (id=8460):
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x2, 0x5505, &(0x7f0000002480)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)
ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f00000004c0)="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")
ioctl$FS_IOC_RESVSP(r0, 0x40305828, 0x0)

1m11.011230617s ago: executing program 5 (id=8478):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x402, &(0x7f0000000100)={[{@iocharset={'iocharset', 0x3d, 'koi8-ru'}}, {@errors_continue}, {@time_offset={'time_offset', 0x3d, 0x2}}, {@errors_remount}, {@zero_size_dir}, {@discard}, {@sys_tz}, {@utf8}, {@keep_last_dots}, {}]}, 0x1, 0x151e, &(0x7f0000007640)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x0, &(0x7f0000000400))

1m9.853928936s ago: executing program 5 (id=8492):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='memory.current\x00', 0x26e1, 0x0)
close(r0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$SIOCSIFHWADDR(r0, 0x8b32, &(0x7f0000000000)={'virt_wifi0\x00', @random="03000000ffff"})

1m9.393581286s ago: executing program 5 (id=8497):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r2=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000880)={0x2c, r1, 0x1, 0x4070bd28, 0x1, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}]}, 0x2c}}, 0x18)

1m8.762752798s ago: executing program 35 (id=8497):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r2=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000880)={0x2c, r1, 0x1, 0x4070bd28, 0x1, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}]}, 0x2c}}, 0x18)

4.645881498s ago: executing program 6 (id=9154):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x125d, &(0x7f0000001080))

4.536316518s ago: executing program 6 (id=9156):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000001180)=ANY=[@ANYBLOB="12010000090003206d0414c34000ffff000109022400010400a000090400000103010100093700086ce82201000905815f"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000001fc0)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="200ef4000000f409269383c52c02883e759fa5fb27e3c66b113304682639d7835ff2f6488b0b38d58620085c141f0fff335a55f057f2247238370352eab721743267e5ba952d70c9d84468d9b0d8a5df72322755fcb0fa22d073519b0ff2daf3afd908469973335b59b34b1525dc88ada423702de382e62ee98f9489"], &(0x7f0000000100)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x812}}, 0x0, 0x0}, &(0x7f0000000840)={0x2c, &(0x7f00000005c0)={0x40, 0x15}, 0x0, 0x0, 0x0, 0x0})

4.127645169s ago: executing program 8 (id=9159):
syz_usb_connect(0x0, 0x5f, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000b, 0x8031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0xffffc000)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)

2.495958667s ago: executing program 8 (id=9178):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000459bb2405804035000000000000109021b000111000000090400000195699b000905", @ANYRES32], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$rtl8150(r0, 0x0, 0x0)

1.96737057s ago: executing program 1 (id=9189):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x4, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f00000003c0)="6305008e46dc3f0adf33c9f7b907", 0x0, 0x7ffd, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.821799105s ago: executing program 1 (id=9191):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x68840, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000040)={0x1, 0x0, [{0x40000096, 0x0, 0xb1a}]})

1.686108548s ago: executing program 1 (id=9194):
mknodat(0xffffffffffffff9c, 0x0, 0xc000, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x2)
r0 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x8480)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f0000000680)={{0xc, 0x5, 0xf7, 0x5, 'syz0\x00'}, 0x0, [0x7f, 0xfff, 0x400, 0x2, 0x9, 0x1, 0x3, 0x5, 0xffffffffffffffff, 0x7ffb, 0x0, 0x0, 0x7, 0x0, 0x29, 0x2, 0xc126, 0x3, 0x400, 0xa7e7, 0x0, 0x28, 0x22, 0x8, 0x2b, 0x6, 0x100000000, 0x10, 0x20000000000009, 0x3, 0x2, 0x4, 0xffffffff, 0xe6, 0x90, 0x7ffffffb, 0x3, 0xa, 0x1, 0x6, 0x4, 0xd3d1, 0x2, 0x0, 0x8000000080, 0xf, 0x8000000000000001, 0x0, 0xa, 0x5, 0xb40, 0x2, 0x3, 0x3, 0x5, 0x8, 0x2, 0x0, 0x0, 0x9, 0x7, 0x3, 0x7fe, 0x4, 0x200000000000, 0x8c, 0xffffffffffffffff, 0xfffffffffffffff3, 0x7f, 0x5, 0x6, 0x3, 0x9, 0x1, 0x9, 0x3, 0x800, 0x5, 0x4, 0x200000000b947, 0x2, 0x0, 0x80000001, 0x2, 0x54, 0x3c, 0x5, 0x4, 0x1, 0xff, 0x97c, 0x9, 0x10001, 0x8, 0x400, 0xf, 0xfffffffffffffff6, 0x6, 0x14, 0xffffffffffffffff, 0x6, 0x6, 0xcb26, 0xa, 0x3, 0xffffffffffffffff, 0x7fffffffffffffff, 0x2, 0xfffffffffffffffe, 0x6, 0x5, 0xffff, 0x5, 0x77, 0x8, 0x8, 0x1ff, 0x6, 0xffff, 0xbe6, 0x9, 0x3, 0x3, 0x5, 0x2, 0x402, 0x6, 0x6]})

1.577410356s ago: executing program 1 (id=9196):
syz_mount_image$jfs(&(0x7f0000000240), &(0x7f0000000040)='./file1\x00', 0x1010006, &(0x7f00000000c0)=ANY=[@ANYBLOB="67727071756f74612c6e6f646973636172642c696f636861727365743d6d6163726f6d616e69616e2c6572726f72733d636f6e74696e75652c696f636861727365743d6b6f69382d72752c6572726f72733d72656d6f756e742d726f2c696e746567726974792c75737271756f74612c646973636172642c6572726f72733d636f6e74696e75652c696f636861727365743d6b6f69382d722c0048ffe5a15f6312b5858ee5"], 0x24, 0x62cd, &(0x7f000000c880)="$eJzs3c1vHGcdB/Df7JtfStuoh6pUCLkvvJTSvJYQKND2AAcuHFCuKJHrVhEpoCSgtIqIK1848EeAkDgixJETf0APXLnxBxDJQQL1gDpo7Oexx9Ndr53EO7uZz0dyZn77zHifyXdnXzwz+wQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAED/8wY/PFRFx5VfphlMRn4t+RC9iparXImJl7VR9nedipzmejYjhUkS1/s4/T0e8HhEfPxWxff/OenXz+SP24/t//scffvLEj/7+p+GZ//7lVv+NScvdvv3b//z17oNvLwAAAHRRWZZlkT7mPx8Rg/TZHgB4/OXX/zLJt6vnrt6cs/6o1Wq1egHrunK8u/UiIjbr61TvGRyOB4AFsxmftN0FWiT/ThtExBNtdwKYa0XbHeBEbN+/s16kfIv668Habns+F+RA/pvF3vUdk6bTNM8xmdXjayv68cyE/qzMqA/zJOffa+Z/Zbd9lJY76fxnZVL+o91Lnzon599v5t/w+OTfG5t/V+X8B8fKvy9/AAAAAACYY/nv/6daPv679PCbciSHHf9dm1EfAAAAAAAAAOBRO+74f4PG+H97jP8HAAAAc6v6rF753VP7t036Lrbq9stFxJON5YGOSRfLrLbdDwAAAAAAAAAAAADoksHuObyXi4hhRDy5ulqWZfVT16yP62HXX3Rd337osraf5AEAYNfHTzWu5S8iliPicvquv+Hq6mpZLq+slqvlylJ+PztaWi5Xap9r87S6bWl0hDfEg1FZ/bLl2np10z4vT2tv/r7qvkZl/wgdm40WAweAiNh9Ndqe9Ir0P69Xi6ksn46W3+SwIA7Z/1lQ9n+Oou3HKQAAAHDyyrIsi/R13s+nY/69tjsFAMxEfv1vHhdQq9VqtVr9+NV15Xh360VEbNbXqd4zGI4fABbMZnzSdhdokfw7bRARz7XdCWCuFW13gBOxff/OepHyLeqvB2l893wuyIH8N4ud9fL646bTNM8xmdXjayv68cyE/jw7oz7Mk5x/r5n/ld32UVru4fMvD/yZsK1zjCblX23nqRb607acf7+Zf8NJ7/+zshW9sfl3Vc5/cKz8+/IHAAAAAIA5lv/+f2qujv+OHnRzpjrs+O/a2DVOri8AAAAAAAAA8Khs37+znq97zcf/vzBmOdd/Pp5y/oX8Oynn32vk/9XGcv3a/L239/P/9/0763+89a/P5+lR81/KM0V6ZBXpEVGkeyoGafowW/dZW8P+qLqnYdHrD9I5P+Xw3bgW12Mjzh5Ytpf+P/bbzx1or3o63Gkv+7vt5w+0D/ba8/oXDrQP09lF5UpuPx3r8fO4Hu/stFdtS1O2f3lKezmlPefft/930naaDvZ/nq7q1XR70ZhW7n3U+8x+X5+Ou5+3rn3xN2dPdEuOZiv6e9tWV23fiy30Z+f/5IlR/PLmxo3Tt6/eunXj3M7zQuzs//u3no80ecTy/j9MP3vP/y/ttufn/fr+eu+j0bHznxdbMZiY/0u1+Wp7X5lx39qQ8x+ln5z/O6l9/P6/yPlP3v9fbaE/AAAAAAAAAAAAAAAAcJiyLHcuEX0rIi6m63/aujYTAJit/PpfJvn2WdX9Gd+fWr3gdTFn/Zlp/Wk5X/1RqxexrivHe7NeRMTf6utU7xl+Pe6XAQDz7NOI+GfbnaA18u+w/H1/1fTltjsDzNTNDz786dXr1zdu3Gy7JwAAAAAAAADAg8rjf67Vxn9+uSzLu43lDoz/+nasPez4n4M8szfA6ISBqvvH36bDbPVG/V5tuPEXYtL438O9ucPG/x5Mub/hlPbRlPalKe3LU9rHXuhRk/N/oTbe+csR8Xxj+PUujP/aHPO+C3L+L9Yez1X+X2ksV8+//P0i5987kP+ZW+//4szNDz587dr7V9/beG/jZxfOnTt74eLFS5cunXn32vWNs7v/ttjjk5Xzz2NfOw+0W3L+OXP5d0vO/0upln+35Py/nGr5d0vOP7/fk3+35PzzZx/5d0vO/5VUy79bcv5fS7X8uyXn/2qqp+c/7S+aLJKc/9dTbf/vlpz/a6mWf7fk/E+nWv7dkvM/k+oj5r9y0v1iNnL++QiX/b9bcv75zAb5d0vO/3yq5d8tOf8LqZZ/t+T8X0+1/Lsl5/+NVMu/W3L+F1Mt/27J+X8z1fLvlpz/pVTLv1ty/t9Ktfy7Jef/7VTLv1ty/m+kWv7dkvP/Tqrl3y05/++mWv7dkvP/Xqrl3y05/zdTLf9u2f/+fzNmzJjJM20/MwEAAAAAAAAAAAAATbM4nbjtbQQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAID/swMHAgAAAABA/q+NUFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYUdOBAAAAAAAPJ/bYSqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqoq7N1djFxneQfwM+vd9dohiYGQOqmBjWNCSJzs2k78QZtiwmfDVwmEQj+wXe/aLDi28dol0Eg2DZRIGBVVtA0XbQGhNjcVueCCVoBygVohtYL2gvYCgVC5iKqAAlIlWgFbzTnv++7M7OzMrne8e+ac30+yH++ZM3PeOfOes/Ps+j8HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABa3fKa2U80sixr/sn/2pZlz2v+e8vktnzZKzd6hAAAAMBa/SL/+7nr04LDK7hTyzr//JJvfXlhYWEhe/emPx/7zMJCumEyy8Y2Z1l+W/TUD97TaF0neCybaIy0fD3SZ/Ob+tw+2uf2sT63j/e5fXOf2yf63L5kByyxpfh5TP5gu/J/bit2aXZDNpbftqvLvR5rbB4ZiT/LyTXy+yyMncjmslPZbDbdtn6xbiNf/6u3NLf1xixua6RlWzuaM+Qnjx6PY2iEfbyrbVuLjxn96NXZ5E9/8ujxvz3/7E3dat/d0PZ4xThv39kc58fCkmKsjWxz2idxnCMt49zR5TXZ1DbORn6/5r87x/ncCse5aXGY66rzNZ/IRvJ/fzvfT6OtP9ZL+2lHWPazW7Msu7Q47M51lmwrG8m2ti0ZWXx9JooZ2XyM5lR6QTa6qnl6ywrmabPO7Gqfp53HRHz9bwn3G11mDK0v048+Ot7yuv984UrmadR81ssdK51zcNDHSlnmYJwX386f9ONd5+Cu8PwfvW35Odh17nSZg+l5t8zBnf3m4Mj4pnzM6UVo5PdZnIN72tbflG+pkddnbus9B6fOP3x2av7DH7lr7uFjJ2dPzp7et2fP9L79+w8ePDh1Yu7U7HTx9xXu7fLbmo2kY2Bn2HfxGHh5x7qtU3Xh8+NLzr9XehxO9DgOt3WsO+jjcLTzyTXW54BcOqeLY+OdzZ0+cXkkW+YYy1+fO9Z+HKbn3XIcjrYch12/p3Q5DkdXcBw21zl7x8res4y2/Ok2huW/F6xtDm5rmYOd70c65+Cg34+UZQ5OhHnx3TuW/16wI4z38d2rfT+yackcTE83nHuaS9L7/YmDeek2L29u3nDNeHZhfvbc3Y8cO3/+3J4slHXxwpa50jlft7Y8p2zJfB1Z9Xw9PPeSx2/usnxb2FcTdzX/mlj2tWquc8/dvV+r/Ltb9/3ZtnRvFsqArff+7PbdvLk/x7Pss9/46INfe/Szr1l2fzb7zY9Nrf29eOpLW86/Y8ucf2Pf/8tie+mhHts0Nlocv5vS3hlrOx+3v1Sj+bmrkW/7uamVnY/Hwp/1Ph/f0ON8vL1j3UGfj8c6n1w8Hzf6/bRjbTpfz4kwT05N9z4fN9fZvne1c3K05/n41lAbYf+/InQKqS9qmTvLzdu0rdHRsfC8RuMW2ufpvrb1x0Jv1tzWk3vDm8I0ypXN09tvLdbf1HK/aL3m6WTHuoOep+lnX8vN00a/n75dmc7XcyLMixv29Z6nzXWevmft584t8Z8t587xfnNwbNN4c8xjaRLm5/tsYUucg3dnx7Mz2alsJr91PJ9PjXxbu+9d2blyPPxZ73Pl9h5z8PaOdQc9B9P3seXmXmN06ZMfgM7XcyLMiyfu7T0Hm+u89sBg37veHpakdVreu3b+fG25n3nd3LGbrtZcGQ3j/MaB3j+bba5z6uBq+8ze++nOsOSaLvup8/hd7piaydZnP20P43z24PL7qTme5jqfObTC+XQ4y7KLH7w//3lv+P3KxQvf+XLb7126/U7n4gfv//G1J/5pNeMHYPj9sihbi+91Lb+ZWsnv/wEAAIChEPv+kVAT/T8AAABURuz74/8KT/T/AAAAUBmx7x8NNalC///H/VfZ/tpn5355MUvJ/IUg3p52wwPFejHjOh2+nlxY1Fx+/xdn/+cfL65seCNZlv38gT/quv72B+K4CpNhnE+9rn35El++a0XbPvrQxbTd1vz658Ljx+ez0mnQLYI7nWXZV6//VL6dyfdczuvTDxzN64OXHn+suc5zh4qv4/2feWGx/l+F8O/hE8fa7v9M2A8/DHX6Td33R7zfly6/YseBdy1uL96vsfO6/Gk/8d7icePn5Hz6sWL9uJ+XG//XPvnkl5rrP/Ky7uO/ONJ9/E+Gx/1iqP/74mL91teg+XW838fD+OP24v3u/sLXu47/qU8U6599fbHe0VDj9m8PX+96/bNzrfvrkcaxtueVvaFYL25/+jt/mt8eHy8+fuf4J45cbtsfnfPj6X8vHmeqY/24PG4n+oeO7Tcfp3V+xu0/+SdH2/Zzv+0/9eAzL24+buf27+xY7+wH78i3v/h47Z/Y9Ncf/1TX7cXxHP77s23P5/Dbw3Ectv/Ee8N8DLf/31PF43V+usLRt7eff+L6n9t2se35RG/8abH9p151Mq+bJ7ZsveZ511536aXNfZdl395cPF6/7Z/8mzNt4//8jcX+iLfHjH7n9pcTt3/uQ7tPn5m/MDeT9uqj1+efnfPmYjxxvNeHc2vn10fOnH/f7LnJ6cnpLJus7kfoXbEvhPrjolzqvfbCkjPoHQ+F1/Pmv/zq1tv+7ZNx+X+8s1h++U3F962Xh/U+HZZvC6/f6ra/1BO33Jgf342nwwgXln5e8Frs2PXfB/t9vm8uPP/O9wVxvp990fvy/dC8Lf++EY/rNY7/ezPF43wl7NeF8MnMO29c3F7r+vGzES6/ozje17z/wmkuvq5/F17vt/ywePw4rvh8vxfex3x9e/v5Ls6Pr1wc6Xz8/FM8LoXzSXapuD2uFff35edu7Dq8+Dkk2aWb8q//LD3OTat6msuZ//D81Km50xcemTo/O39+av7DHzny8JkLp88fyT/L88j7+91/8fy0NT8/zczuvyfLz1ZninKVbfT4zz50fObA9G0zsyeOXThx/qGzs+dOHp+fPz47M3/bsRMnZj/U7/5zM/ft2Xto34G9u0/Ozdx38NChfYd2z50+0xxGMag+9k9/YPfpc0fyu8zfd8+hPffee8/07ofPzMzed2B6eveFfvfPvzftbt77D3efmz117Pzcw7O75+c+MnvfnkP79+/t+2mAD589MT85de7C6akL87PnpornMnk+X9z83tfv/lTT/PeL97OdGsUH8WVvu3N/+nzWpi9+dNmHKlbp+ADRZ8Nn0Xzz+WcPruTr2PePhZpUof8HAAAAcrHvHw810f8DAABAZcS+f3Ooif4fAAAAKiP2/ROhpv8SUJP+v3L5/+0XV7R9+X/5/9b9Jf9fs/z/O8qW/y/OF/L/g7HW/H0d8v8rWlH+X/5f/l/+X/6fAShb/j/2/VuyzO//AQAAoKJi37811ET/DwAAAJUR+/5rQk30/wAAAFAZse9/XqhJTfp/+X/5f/l/+X/5/+7bl/8fTvL/vZUs/z/RuUD+f+Pz/1m98v+XBjn+Dcj/b2n9Qv6fMipb/j/2/deGmtSk/wcAAIA6iH3/daEm+n8AAACojNj3Xx9qov8HAACAyoh9/7ZQk5r0//L/a8r/p8zV8Ob/iy3L/8v/y//L/1eF/H9vJcv/LyH/v/H5f9f/H6r8fxv5f8qobPn/2Pc/P9SkJv0/AAAA1EHs+18QaqL/BwAAgPIZvbK7xb7/haEmS/r/K9wAAAAAsOFi339D1hEEr8nv/+X/Xf+/tNf/H5P/l/8vlD//vymT/y8P+f/e5P/7GET+/5L8v/y//L/8P1HZ8v95359NZC8KNalJ/w8AAAB1EPv+G0NN9P8AAABQGbHv/5VQE/0/AAAAVEbs+7eHmtSk/5f/r0z+/2etL10l8v+u/y//H5Q//+/6/2Ui/9+b/H8frv8v/y//L//PQM137ZQ2Lv8f+/6bQk1q0v8DAABAHcS+/+ZQE/0/AAAAVEbs+3811ET/DwAAAJUR+/4doSY16f/l/0ue/4/J0Tpe/1/+X/4/KHP+f0L+v3Tk/3uT/+9jCPP/jUz+vyzjl/+X/2ep+e8X72c7bVT+P/b9Lw41qUn/DwAAAHUQ+/6XhJro/wEAAKAyYt//0lAT/T8AAABURuz7J0NNatL/ryb/37gk/7+cq3z9//EVXP+/jfz/huT/R+X/C3XK/2fy/6Uj/9+b/H8fQ5j/d/3/8oxf/l/+n6XKlv+Pff8toSY16f8BAACgDmLfvzPURP8PAAAAlRH7/ltDTfT/AAAAUBmx798ValKT/t/1/4ci/5/J/w9F/t/1/wP5/+7k/9eH/H9v8v99yP/L/8v/y/8zUGXL/8e+/2WhJjXp/wEAAKAOYt9/W6iJ/h8AAAAqI/b9Lw810f8DAABAZcS+//ZQk5r0//L/8v/y//L/8v/dt7/u+f9L8v+DIP/fm/x/H/L/8v/y//L/DFTZ8v+x739FqElN+n8AAACog9j33xFqov8HAACAyoh9/52hJvp/AAAAqIzY9+8ONalJ/y//L/9fzfz/f8r/99i+/H9J8/+u/z8Q8v+9yf/3If8v/z+I/P9YWCD/L//Phuf/4/u1+HXs++8KNalJ/w8AAAB1EPv+u0NN9P8AAABQGbHvnwo10f8DAABAZcS+fzrUpCb9v/y//H818/+u/99r+2vK/7908XHl/wvy/+Ui/9+b/H8fg8z/b5b/r23+f03X/x+T/6dSNjr/3/l17Pv3hJrUpP8HAACAOoh9/95QE/0/AAAAVEbs+/eFmuj/AQAAoDJi339PqElN+n/5f/l/+X/5f9f/7759+f/hJP/f2+Dz//Epyv+7/r/8/2Dy/67/T7WULf8f+/57Q01q0v8DAABAHcS+f3+oif4fAAAAKiP2/QdCTfT/AAAAUBmx7z8YalKT/l/+X/5f/l/+X/6/+/bl/4eT/H9vrv/fh/y//P8Q5/+bc0v+n7IpW/4/9v2HQk1q0v8DAABAHcS+/5WhJvp/AAAAqIzY9/9aqIn+HwAAACoj9v2/HmpSk/5f/l/+X/5f/n+D8/9j/fL/4/L/8v+rIP/fm/x/H/L/8v9DnP9f5vr/14ab5f/ZEGXL/8e+/75Qk5r0/wAAAFAHse//jVAT/T8AAABURuz7XxVqov8HAACAyoh9/+FQk5r0//L/65T/jwvl/+X/5f9d/1/+/6qS/+9N/r8P+X/5/+rl/wd9/f/Ob9OJ/D/dlC3/H/v+V4ea1KT/BwAAgDqIff/9oSb6fwAAAKiM2Pe/JtRE/w8AAACVEfv+14aa1KT/l/93/f+Nz/+PtY1d/n/xfvL/Bfl/+f/VkP/vTf6/D/l/+X/5f9f/Z6DKlv+Pff/rQk1q0v8DAABAHcS+//WhJvp/AAAAqIzY978h1ET/DwAAAJUR+/43hprUpP+X/5f/3/j8v+v/y/8X5P/l/wdB/r83+f8+5P/l/+X/5f8ZqLLl/2Pf/5uhJjXp/wEAAKAOYt//QKiJ/h8AAAAqI/b9bwo10f8DAABAZcS+/82hJjXp/+X/5f/l/+X/5f+7b1/+fzjJ//c2ZPn/X1wXlsv/F+T/yz3+1eb/Rzu+vir5/x8sl/9f2Nx5f/l/roay5f9j3/+WUJOa9P8AAABQB7Hvf2uoif4fAAAAKiP2/W8LNdH/AwAAQGXEvv+3Qk1q0v/L/zfHsZhelv+X/88XyP/L/8v/Dy35/96GLP/v+v8d5P/LPX7X/5f/Z6my5f9j3//2UJOa9P8AAABQB7HvfzDURP8PAAAAlRH7/neEmuj/AQAAoDJi3//OUJOa9P/y/67/L/8v/y//33378v/DSf6/N/n/PuT/5f/Llv//L/l/hlvZ8v+x738o1KQm/T8AAADUQez73xVqov8HAACAyoh9/2+Hmuj/AQAAoDJi3//uUJOa9P/y/8OS/5+U/19l/n88LJP/l/+X/68X+f/e5P/7kP+X/y9b/t/1/xlyZcv/x77/PaEmK+//J1a8JgAAAHA1df46KYl9/++EmtTk9/8AAABQB7Hv/91QE/0/AAAAVEbs+38v1KQm/b/8/7Dk/13/P3P9f/n/jucj/y//38365f/jmWdV+f/N/bYv/y//L/8/vOOX/5f/Z6my5f9j3//7oSY16f8BAACgDmLf/95QE/0/AAAADIVu/ye7U+z7j4Sa6P8BAACgMmLffzTUpCb9v/y//L/8f0nz/3+x81+++623Ht0j/y//L/+/Kut6/f/mwe/6//L/8v+J/L/8v/w/ncqW/499/7FQk8XG780u8A8AAADDLfb9fxBqUpPf/wMAAEAdxL7/eKiJ/h8AAAAqI/b9M6EmNen/5f83MP8/mmWZ/L/8fwWv/x/3xzDl/3dvHqL8fzzpyv93ta75/3ct5sTl/1eb/x/vurQz/9+Q/28j/7/q8X8zy7J1G//Ff5X/l/+nU9ny/7Hvnw01qUn/DwAAAHUQ+v6RE0VdvEH/DwAAAJUR+/6ToSb6fwAAAKiM2Pe/L9SkJv2//L/r/8v/y/+7/n/37Zc2/+/6/z3J//dWnvx/d67/L/8/zON3/X/5f5YqW/4/9v1zoSY16f8BAACgDmLf//5QE/0/AAAAVEbs+z8QaqL/B4D/Z+8+viwtqz2On4Lq292Ldde6sztwoHNHjhnIyIH+AQ6YMNBlWAoq5kRjjphzQJeKGDCAIibMCUwoYkTFLGLChKi0i669d6VT76nqOlXnPc/z+QzcUtBU4eU2/Lr58gAANCN3/yPilk72v/5f/99k/39U/z/0+fX/+v+W6f+H6f9n0P/r//X/+n/mamz9f+7+R8Ytnex/AAAA6EHu/vPjFvsfAAAAmpG7/4K4xf4HAACAZuTuf1Tc0sn+1//r/5vs/+9328Puuq/+f6fPr//X/7dM/z9M/z+D/l//r//X/zNXY+v/c/c/Om7pZP8DAABAD3L3PyZusf8BAACgGbn7L4xb7H8AAABoRu7+x8Ytnez/Lf3/yqTP/j8zXv1/S/2/9/93/Pz6f/1/yw63/7/47u/59P/6f/1/0P/r//X/bDW2/j93/+Pilk72PwAAAPQgd//j4xb7HwAAAJqRu/8JcYv9DwAAAM3I3f/EuKWT/e/9f+//6//1//r/6Z9f/7+cvP8/rKf+/8Ibzzr/9qvvcc1ePr/+X/+v/9f/M19j6/9z9z8pbulk/wMAAEAPcvc/OW6x/wEAAKAZufufErfY/wAAALCEjk/9aO7+p8Ytnex//b/+X/8f/f8x/b/+X//fAv3/sH31/2csV/9/Op9f/6//1//r/5mvsfX/ufufFrd0sv8BAACgB7n7nx632P8AAAAwXtP+QewBufsvilvsfwAAAGhG7v4TcUsn+1//f/D9/3/0/8vR/3v/X/+v/2+C/n9YT+//n87n1//r//X/+n/ma2z9f+7+i+OWTvY/AAAA9CB3/zPiFvsfAAAAmpG7/5lxi/0PAAAAzcjd/6y4pZP9r//3/r/+X/9/+P3/2ne2+v/1/1X1//Oj/x+m/59B/7/ffv6I/l//r/9noz32/3cOfLc9l/4/d/+z45ZO9j8AAAD0IHf/c+IW+x8AAACakbv/uXGL/Q8AAADNyN3/vLilk/2v/9f/6//1/6fd/2//U+8U7/9Pp/8/HPr/YaPp/1dWp35Y/z+X/n/a35bsyqL7+f1a9Nev/9f/s93Y3v/P3f/8uKWT/Q8AAAA9yN3/grhlYP/v+QfzAQAAgIXK3f/CuMXP/wMAAMDSy+osd/+L4pZO9r/+X/+v/9f/H/77/8vf/1+z4evT/4+L/n/YaPr/Hej/l/79f/2//l//zyZj6/9z9784bulk/wMAAEAPcvdfErfY/wAAANCM3P0viVvsfwAAAGhG7v6Xxi2d7P/p/f/6rx9r/39kxz8g/f9E/998/5+/R/3/YP9/jvf/+6T/H6b/n0H/r//X/+/U/x+f9e31/0wztv4/d//L4pZO9j8AAAD0IHf/y+MW+x8AAACakbv/FXGL/Q8AAADNyN3/yrilk/3v/X/9v/5/+fp/7/+vWeT7/5ND7/9X9f+7tNj+f+Wu/Cuo/v/0vn79v/5/mb/+Jvv/I5PN7/8P/FsA9P9MM7b+P3f/q+KWTvY/AAAA9CB3/6vjFvsfAAAAlsPGf3Zg6z9QGnL3vyZusf8BAACgGbn7Xxu3tLP/B9/q1P/r//X/+n/9//TP/5BLVyfj6f+9/79b3v8fpv+fQf9/EP38amP9/6U7ffsx9P8XHdz7//eZ9e31/0yzqf+/dv3ji+r/c/e/Lm5pZ/8DAABA93L3vz5usf8BAACgGbn73xC32P8AAADQjNz9b4xbOtn/B97/D/zbB/T/+n/9v/5/3P3/mN7/1//vlv5/mP5/Bv2/9/+9/6//Z/82/C3jpv5/g0X1/7n73xS3dLL/AQAAoAe5+98ct9j/AAAA0Izc/ZfGLfY/AAAANCN3/1vilk72v/f/9f/6f/2//n/659f/L6d99fdn6P+L/l//r//X/+v/mYOx9f+bd39/+x8AAAB68NZT/3ksfrze/gcAAIAW5e5/W9xi/wMAAEAzcve/PW7pZP/r/w+2/8+P6//1/xP9v/5f/38oun3/f2XaX4m226H/v/6hJx6w+SP6f/2//l//r/9nl/5v4NeNov8/uf53l7n73xG3dLL/AQAAoAe5+y+LW+x/AAAAaEbu/nfGLfY/AAAANCN3/+Vxyx73/1DzMGb6f+//6//1/yPv//P/vPp//f+udNv/75L3/2eo/n/tewb9v/5f/6//Z39G0f9v+OXc/e+KW/z8PwAAADQjd/+74xb7HwAAAJqRu/89cYv9DwAAAM3I3f/euKWT/a//1//r//X/I+//vf+v/98T/f8w/f8My/T+/+X76P9Xp3940f38fi3669f/6//Zbmz9f+7+K+KWTvY/AAAA9CB3//viFvsfAAAAmpG7//1xi/0PAAAAzcjd/4G4pZP9r//X/+v/9f/6/+mfX/+/nPT/w/T/k8nkyoEvYFr/f/LoOPt/7/+P7uvX/+v/2W5s/X/u/g/GLZ3sfwAAAOhB7v4r4xb7HwAAAJqRu/+quMX+BwAAgGbk7v9Q3NLJ/tf/6//1//p//f/0z6//X076/2H6/xmW6f1//f/ovn79v/6f7cbW/+fu/3Dc0sn+BwAAgB7k7r86brH/AQAAoBm5+z8St9j/AAAA0Izc/dfELZ3sf/2//l//r/+f0v+f+n91/b/+fxkdXP8/0f/r//X/M+j/9f/6f7YaW/+fu/+jcUsn+x8AAAB6kLv/Y3GL/Q8AAADNyN3/8bjF/gcAAIBm5O7/RNzSyf7X/+v/9f/6f+//T//8+v/l5P3/Yfr/GfT/+n/9v/6fuZre/1+0sP4/d/8n45ZO9j8AAAD0IHf/tXGL/Q8AAADNyN3/qbjF/gcAAIBm5O7/dNzSyf7X/8+v/z+y5WPL2f9PJvp//b/+f82U/v+mOy773/rlOfT/xyb6/7nT/w/T/8+g/2+z/z9j0lD/f3zHb6//Z4zG9v5/7v7PxC2d7H8AAADoQe7+z8Yt9j8AAAA0I3f/5+IW+x8AAACakbv/83FLJ/tf/+/9/zm//3/reVO+Dv3/Gv3/0vf/3v9fAvr/Yfr/GfT/bfb/3v/X/7MwY+v/c/d/IW7pZP8DAABAD3L3fzFusf8BAACgGbn7vxS32P8AAADQjNz9X45bOtn/+n/9/5z7/0be//+f+DX6f/3/+u9X/78c9P/D9P8z6P+b6//z7+71//p/FmNs/X/u/q/ELZ3sfwAAAOhB7v7r4hb7HwAAAJqRu//6uMX+BwAAgGbk7v9q3NLJ/tf/6//1/8v5/v+xTf3/mRP9//pvr//v21j6/7PPvv8N+n/9v/5/8f2/9//1/yzW2Pr/3P1fi1s62f8AAADQg9z9X49b7H8AAABoRu7+b8Qt9j8AAAA0I3f/N+OWTvb/9v7/yGStUF0zrf+PRk3/v4H+f/PXr/+f/ueH9//1//r/gzeW/t/7/6f39ev/9f/L/PXvqf+/1/Zvr/+nRWPr/3P33xC3dLL/AQAAoAe5+78Vt9j/AAAA0Izc/d+OW+x/AAAAaEbu/hvjlk72v/f/9f/6f/2//n/659f/Lyf9/zD9/wz6f/2/9/8veNCZ+n/mZ2z9f+7+78Qtnex/AAAA6EHu/pviFvsfAAAAmpG7/7txi/0PAAAAzcjd/724pZP9r//X/+v/9f/6/+mfX/+/nPT/w/T/Zesf2pp++v9j0z646H5+vxb99TfT/3v/nzkaW/+fu//7cUsn+x8AAAB6kLv/B3GL/Q8AAADNyN3/w7jF/gcAAIBm5O7/UdzSyf7X/+v/2+//z9P/b/n8+n/9f8v0//lX9On0/zP00/9Pteh+ftm/fv2//p/txtb/5+6/OW7pZP8DAABAD3L3/zhusf8BAACgGbn7fxK32P8AAADQjNz9P41bOtn/+v+++v+VSY/9v/f/9f/6/57o/4fp/2fQ/+v/9f/6f+ZqbP1/7v5bVla73P8AAACwrB5474ffvNvf9pZT/3ls8rO45ZzJyV3+NDYAAAAwcnfv/pXVyeTnp37Jz/8DAABAi3L3/yJu6WT/6//76v/7fP9f/6//1//3RP8/TP8/g/5f/6//1/8zV4vt/9e/D85fn7v/l3HLhuG3uqc/QgAAAGBscvf/Km7p5Of/AQAAoAe5+38dt2zb//51gAAAALCscvf/Jm7p5Of/9f8j7/8nB9T/x2+n/1+j/9f/T/v8+v/lpP8fts/+/+SK/l//P0D/r//X/7PV2N7/z93/27ilk/0PAAAAjdr0Iwq5+2+NW+x/AAAAaEbu/t/FLfY/AAAANCN3/21xSyf7X/9/6P1/puoH+P7/8fpv3v/vvP+/5NjUz6//1/+3TP8/zPv/M+j/W+n/j+r/9f+Mw9j6/9z9v49bOtn/AAAA0IPc/X+IW+x/AAAAaEbu/j/GLfY/AAAANCN3/5/ilk72v/5/5O//n1b/v4v3//X/ffT/O3z+dvr//z/rxHXnPviqK/T/rDvM/j//XDjk/v/oXn+fG+n/Z9D/t9L/e/9f/89IzL//X930wb32/7n7/xy3dLL/AQAAoAe5+2+PW+x/AAAAaEbu/r/ELfY/AAAANCN3/1/jlk72v/5f/z+W/j//t15A/3/itPv/45PJZCH9fzbFvff/3v/X/2/n/f9h+v8Z9P/6f/2//p+5mn//v/mDe+3/c/f/LW7pZP8DAABAD3L3/z1uyf2/sucfugcAAABGJnf/P+IWP/8PAAAAzcjdf0fc0sn+1//r/8fS/yfv/69/u7be/z+34tQ++/971n/T/x8s/f8w/f8M+n/9v/5f/89cja3/z93/z7ilk/0PAAAAPcjdf2fcYv8DAABAM3L3/ytusf8BAACgGbn7/x23dLL/9f+t9v9ZxOv/9f9j6f+9/+/9/8Oh/x+m/59B/6//1//r/5mrsfX/ufv/GwAA//9Y4U6y")
open(0x0, 0x66842, 0x90)
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080))
chroot(&(0x7f0000000b80)='./file0\x00')

1.52965834s ago: executing program 3 (id=9197):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000140), 0x8, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f00000002c0)='./bus\x00', 0x322020, &(0x7f0000000380)=ANY=[], 0x1, 0x0, 0x0)

1.39417208s ago: executing program 6 (id=9198):
r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000600)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002dbd7000ffdbdf25150000002c002b800800010000000000200003800c0004000202aaaaaaaaaaaa06000100017ffffffe0002000300000008000300", @ANYRES32=r2], 0x50}, 0x1, 0x0, 0x0, 0x4c011}, 0x800)

1.308204078s ago: executing program 3 (id=9199):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00')
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r0 = socket(0x15, 0x5, 0x0)
getsockopt(r0, 0x200000000114, 0x2711, 0x0, &(0x7f0000000000))

1.307655587s ago: executing program 6 (id=9200):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f0000000440)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x1, 0x0, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x153)

1.090687194s ago: executing program 3 (id=9203):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/ldiscs\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f00000054c0)={0x2020}, 0x2020)
pread64(r0, &(0x7f00000022c0)=""/4120, 0xc3, 0xfa60)
read$FUSE(r0, &(0x7f0000003300)={0x2020}, 0x2020)

916.313264ms ago: executing program 3 (id=9205):
openat$random(0xffffffffffffff9c, &(0x7f00000007c0), 0x202, 0x0)
r0 = syz_io_uring_setup(0x234, &(0x7f0000000580)={0x0, 0x95f5, 0x10100, 0x1001, 0x89}, &(0x7f0000000280)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xffffffffffffff31})
io_uring_enter(r0, 0x207a98, 0x363, 0x4, 0x0, 0x0)

733.788251ms ago: executing program 7 (id=9207):
r0 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f0000000040)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f0000000140)={0x0, 0xffd5, r1, <r2=>0x0})
ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f0000000200)={0x0, 0x0, r1, r2, 0x0, 0x0, 0x0, 0x7, {0xfffffffc, 0xfbff, 0x9, 0x4, 0x0, 0xffff, 0x0, 0x20, 0x0, 0x0, 0xffff, 0x0, 0x1, 0xfffffffe, "d20bddda7d1db9342d97752251560ed1000000001c00"}})

733.50307ms ago: executing program 1 (id=9208):
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
write$dsp(r0, &(0x7f0000000140)='u', 0x1)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)
ioctl$SNDCTL_DSP_GETOPTR(r0, 0x800c5012, &(0x7f0000000080))

693.137348ms ago: executing program 3 (id=9209):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000000)=0x3)
ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000080)={0x1, &(0x7f0000000100)=[{0x6, 0x60, 0x0, 0x8}]})
ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000280)={0x0, 0x0})

653.488832ms ago: executing program 7 (id=9210):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x80102, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_SUPPORTED_HV_CPUID_cpu(r2, 0xc008aec1, &(0x7f00000001c0)={0xa, 0x0, [{0xa, 0x9, 0x7, 0x6, 0x3, 0x1588dfd2, 0x1}, {0x1, 0x0, 0x4, 0x5, 0x200, 0x4, 0x5}, {0x2, 0xc671, 0x3, 0x6, 0x8001, 0x7, 0x9}, {0x6, 0x10, 0x2, 0x8, 0x6, 0x3751, 0x5}, {0xc0000000, 0x2, 0x1, 0x6, 0x7fffffff, 0x4, 0xa}, {0x4, 0x8b, 0x1, 0x5, 0x3000, 0xffff, 0x8}, {0xa, 0x7ff, 0x2, 0x2, 0x9, 0x673e, 0xff}, {0xc0000000, 0xc00000, 0x2, 0x0, 0x9, 0x2, 0x5}, {0x80000019, 0x40, 0x5, 0x2, 0x100, 0x400, 0x2}, {0x6, 0x0, 0x2, 0xfffffff9, 0xf1f, 0x9, 0x5}]})

535.990083ms ago: executing program 7 (id=9211):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000800)=ANY=[@ANYBLOB="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"/1810], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x35}, 0x48)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000200)=r2, 0x4)
sendmsg$inet(r1, &(0x7f0000002640)={0x0, 0x0, &(0x7f0000002140)=[{&(0x7f0000000240)='\x00\x00\x00\x00\x00', 0x5}], 0x1}, 0x404c010)

534.235112ms ago: executing program 3 (id=9212):
syz_mount_image$jfs(&(0x7f0000000240), &(0x7f0000000040)='./file1\x00', 0x1010006, &(0x7f00000000c0)=ANY=[@ANYBLOB="67727071756f74612c6e6f646973636172642c696f636861727365743d6d6163726f6d616e69616e2c6572726f72733d636f6e74696e75652c696f636861727365743d6b6f69382d72752c6572726f72733d72656d6f756e742d726f2c696e746567726974792c75737271756f74612c646973636172642c6572726f72733d636f6e74696e75652c696f636861727365743d6b6f69382d722c0048ffe5a15f6312b5858ee5"], 0x24, 0x62cd, &(0x7f000000c880)="$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")
utime(&(0x7f0000000000)='./file0/file0\x00', 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x80, 0x0)
open_by_handle_at(r0, &(0x7f0000000080)=@shmem={0xc, 0x1, {0x20, 0xfe}}, 0x0)

472.456948ms ago: executing program 7 (id=9213):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @private0, 0x4}, {0xa, 0x0, 0x7, @mcast1}, r1, 0x800}}, 0x48)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000480)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @private2}, {0xa, 0x0, 0x0, @local}, r1}}, 0x48)

404.650495ms ago: executing program 8 (id=9214):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
pread64(r1, &(0x7f00000001c0)=""/100, 0x64, 0x6)

388.363547ms ago: executing program 7 (id=9215):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x121c02, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000100))
ioctl$PPPIOCSACTIVE(r0, 0x40107446, &(0x7f00000003c0)={0x1, &(0x7f0000010080)=[{0x6, 0x0, 0x3, 0xc5f}]})
write$ppp(r0, &(0x7f0000000400)='k\'', 0x2)

313.419099ms ago: executing program 6 (id=9216):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x101e01, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000140)=0x15)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000002c0)=0x7e)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x7e)

250.367997ms ago: executing program 8 (id=9217):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'bond0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=@newlink={0x4c, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}]}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_MASTER={0x8, 0x3}]}, 0x4c}}, 0x0)

184.689102ms ago: executing program 8 (id=9218):
r0 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)={0xd})
epoll_wait(r1, &(0x7f0000000180)=[{}], 0x1, 0x7b1678d4)

124.765113ms ago: executing program 7 (id=9219):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x41, &(0x7f0000000040)=0x7f, 0x4)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
recvmmsg(r0, &(0x7f0000000bc0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000023c0)=""/4096, 0x1000}], 0x1}, 0x6ca}], 0x1, 0x40014102, 0x0)

107.484885ms ago: executing program 6 (id=9220):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000180)=@bpf_lsm={0x6, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800"], 0x0, 0x4, 0x0, 0x0, 0x40f00}, 0x94)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000000)={0x0, 0x57ff}, &(0x7f0000000040)=0x8)

1.17244ms ago: executing program 8 (id=9221):
r0 = socket$qrtr(0x2a, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'vlan0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRESOCT], 0xb4}}, 0x0)

0s ago: executing program 1 (id=9222):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r1 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f00000000c0)={0x7000000c})

kernel console output (not intermixed with test programs):

blk_io_submit option
[  699.017560][T26747] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  699.068247][   T30] audit: type=1800 audit(2000000057.770:372): pid=26747 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.8264" name="file1" dev="loop6" ino=15 res=0 errno=0
[  699.072673][T26752] loop7: detected capacity change from 0 to 2048
[  699.209822][T26752] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  699.299420][   T30] audit: type=1800 audit(2000000058.000:373): pid=26752 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.8267" name="bus" dev="loop7" ino=18 res=0 errno=0
[  699.409344][T20496] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  699.562065][T19339] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  699.705748][T26774] loop7: detected capacity change from 0 to 4096
[  699.746015][T26780] netlink: 808 bytes leftover after parsing attributes in process `syz.3.8277'.
[  700.275501][T26802] program syz.1.8287 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  700.389278][T26804] loop3: detected capacity change from 0 to 256
[  700.492939][T26804] FAT-fs (loop3): Directory bread(block 64) failed
[  700.515909][T26804] FAT-fs (loop3): Directory bread(block 65) failed
[  700.542961][T26804] FAT-fs (loop3): Directory bread(block 66) failed
[  700.556016][T26804] FAT-fs (loop3): Directory bread(block 67) failed
[  700.562688][T26804] FAT-fs (loop3): Directory bread(block 68) failed
[  700.581053][T26791] loop5: detected capacity change from 0 to 32768
[  700.588001][T26804] FAT-fs (loop3): Directory bread(block 69) failed
[  700.597368][T26804] FAT-fs (loop3): Directory bread(block 70) failed
[  700.608869][T26804] FAT-fs (loop3): Directory bread(block 71) failed
[  700.631600][T26804] FAT-fs (loop3): Directory bread(block 72) failed
[  700.645246][T26791] JBD2: Ignoring recovery information on journal
[  700.685395][T26804] FAT-fs (loop3): Directory bread(block 73) failed
[  700.787376][T26791] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  701.138087][T17872] ocfs2: Unmounting device (7,5) on (node local)
[  701.407322][T26838] tipc: New replicast peer: 255.255.255.255
[  701.423560][T26838] tipc: Enabled bearer <udp:syz2>, priority 10
[  701.611758][T26847] gtp0: entered promiscuous mode
[  701.640060][T26847] gtp0: entered allmulticast mode
[  702.143059][T26868] netlink: 'syz.1.8316': attribute type 4 has an invalid length.
[  702.166029][T26868] netlink: 'syz.1.8316': attribute type 8 has an invalid length.
[  702.173797][T26868] netlink: 212 bytes leftover after parsing attributes in process `syz.1.8316'.
[  702.302802][T26854] loop5: detected capacity change from 0 to 32768
[  702.316669][T26854] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.8309 (26854)
[  702.373502][T26856] loop6: detected capacity change from 0 to 32768
[  702.391220][T26854] BTRFS info (device loop5): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  702.440282][T26854] BTRFS info (device loop5): using blake2b checksum algorithm
[  702.466546][T26856] ERROR: (device loop6): dbAllocNext: Corrupt dmap page
[  702.466546][T26856] 
[  702.468928][T26854] workqueue: max_active 2097158 requested for btrfs-worker is out of range, clamping between 1 and 2048
[  702.513193][T26854] workqueue: max_active 2097158 requested for btrfs-delalloc is out of range, clamping between 1 and 2048
[  702.557030][ T5893] tipc: Node number set to 11521
[  702.562851][T26854] workqueue: max_active 2097158 requested for btrfs-endio is out of range, clamping between 1 and 2048
[  702.636265][T26854] workqueue: max_active 2097158 requested for btrfs-endio-meta is out of range, clamping between 1 and 2048
[  702.669526][T26854] workqueue: max_active 2097158 requested for btrfs-rmw is out of range, clamping between 1 and 2048
[  702.706401][T26854] workqueue: max_active 2097158 requested for btrfs-endio-write is out of range, clamping between 1 and 2048
[  702.735904][T19623] usb 4-1: new high-speed USB device number 57 using dummy_hcd
[  702.755521][T26854] BTRFS info (device loop5): enabling ssd optimizations
[  702.755751][T26887] loop6: detected capacity change from 0 to 4096
[  702.762780][T26854] BTRFS info (device loop5): using spread ssd allocation scheme
[  702.762807][T26854] BTRFS info (device loop5): turning off barriers
[  702.784820][T26854] BTRFS info (device loop5): enabling free space tree
[  702.813322][T26887] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  702.836290][T26854] BTRFS info (device loop5): enabling auto defrag
[  702.846326][T26854] BTRFS info (device loop5): force zlib compression, level 3
[  702.859681][T26887] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  702.896663][T19623] usb 4-1: Using ep0 maxpacket: 32
[  702.905766][T19623] usb 4-1: config 0 has an invalid interface number: 51 but max is 0
[  702.915240][T19623] usb 4-1: config 0 has no interface number 0
[  702.938941][T19623] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  702.949339][T19623] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  702.958206][T19623] usb 4-1: Product: syz
[  702.960863][T19339] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  702.962581][T19623] usb 4-1: Manufacturer: syz
[  702.977007][T19623] usb 4-1: SerialNumber: syz
[  702.983794][T26854] BTRFS warning (device loop5): can't clear the free_space_tree feature bit while mounted
[  702.995608][T19623] usb 4-1: config 0 descriptor??
[  703.003716][T19623] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  703.093450][T17872] BTRFS info (device loop5): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  703.240460][T19623] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  703.291645][T19623] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  703.393926][T26904] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  703.584718][T26907] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  703.647115][    C0] usb 4-1: qt2_read_bulk_callback - non-zero urb status: -71
[  703.648417][   T24] usb 4-1: USB disconnect, device number 57
[  703.716257][   T24] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  703.790821][   T24] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  703.846498][   T24] quatech2 4-1:0.51: device disconnected
[  704.024553][T26917] loop5: detected capacity change from 0 to 2048
[  704.051825][T26917] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  704.594868][T26913] loop7: detected capacity change from 0 to 32768
[  704.600368][T26934] loop5: detected capacity change from 0 to 2048
[  704.699199][T26934] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  704.721022][T26935] block nbd3: shutting down sockets
[  704.858777][T26934] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  704.935339][T26934] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 34 with error 28
[  705.008041][T26934] EXT4-fs (loop5): This should not happen!! Data will be lost
[  705.008041][T26934] 
[  705.045987][T26934] EXT4-fs (loop5): Total free blocks count 0
[  705.058803][T26934] EXT4-fs (loop5): Free/Dirty block details
[  705.085770][T26934] EXT4-fs (loop5): free_blocks=2415919504
[  705.102773][T26934] EXT4-fs (loop5): dirty_blocks=48
[  705.109036][T26934] EXT4-fs (loop5): Block reservation details
[  705.122919][T26934] EXT4-fs (loop5): i_reserved_data_blocks=3
[  705.134413][T26947] vivid-002: disconnect
[  705.166324][T26947] vivid-002: reconnect
[  705.207159][T17872] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  705.354392][T26932] loop6: detected capacity change from 0 to 32768
[  705.427116][T26932] XFS (loop6): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  705.436999][T26950] mkiss: ax0: crc mode is auto.
[  705.548871][T26932] XFS (loop6): Ending clean mount
[  705.565457][T26932] XFS (loop6): Quotacheck needed: Please wait.
[  705.648501][T26964] netlink: 4 bytes leftover after parsing attributes in process `syz.7.8348'.
[  705.754731][T26932] XFS (loop6): Quotacheck: Done.
[  705.780349][   T30] audit: type=1800 audit(2000000064.480:374): pid=26932 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.8338" name="file1" dev="loop6" ino=6150 res=0 errno=0
[  705.965675][T19339] XFS (loop6): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  705.995319][T26976] sctp: [Deprecated]: syz.3.8354 (pid 26976) Use of int in maxseg socket option.
[  705.995319][T26976] Use struct sctp_assoc_value instead
[  706.560546][T27001] loop3: detected capacity change from 0 to 512
[  706.573733][T27002] loop7: detected capacity change from 0 to 1024
[  706.604056][T27001] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.8366: invalid indirect mapped block 4294967295 (level 1)
[  706.621249][T27001] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  706.625845][    C1] EXT4-fs (loop3): error count since last fsck: 1
[  706.641521][    C1] EXT4-fs (loop3): initial error at time 2000000065: ext4_free_branches:1023: inode 11
[  706.646050][T27001] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.8366: invalid indirect mapped block 4294967295 (level 1)
[  706.651227][    C1] EXT4-fs (loop3): last error at time 2000000065: ext4_free_branches:1023: inode 11
[  706.709095][T27001] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  706.779178][T24443] hfsplus: b-tree write err: -5, ino 25
[  706.799281][T27001] EXT4-fs (loop3): 2 truncates cleaned up
[  706.816764][T24443] hfsplus: b-tree write err: -5, ino 4
[  706.839411][T27001] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  706.876410][T24443] hfsplus: b-tree write err: -5, ino 2
[  707.056715][ T5823] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  707.129314][T27022] netlink: 44 bytes leftover after parsing attributes in process `syz.1.8376'.
[  707.225009][T27022] netlink: 40 bytes leftover after parsing attributes in process `syz.1.8376'.
[  707.293293][T27022] bridge0: port 2(bridge_slave_1) entered disabled state
[  707.314120][T27034] loop7: detected capacity change from 0 to 64
[  707.352018][T27035] CUSE: info not properly terminated
[  707.354423][T27034] hfs: request for non-existent node 65538 in B*Tree
[  707.374711][T27034] hfs: request for non-existent node 65538 in B*Tree
[  707.396246][T27034] hfs: fail to find leaf node: node ID 65538
[  707.908955][T27050] netlink: 'syz.1.8386': attribute type 8 has an invalid length.
[  708.099831][T27054] kvm: user requested TSC rate below hardware speed
[  708.367433][ T5893] usb 4-1: new high-speed USB device number 58 using dummy_hcd
[  708.489235][T27068] loop5: detected capacity change from 0 to 128
[  708.529551][T27068] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  708.544014][ T5893] usb 4-1: config index 0 descriptor too short (expected 23569, got 27)
[  708.553314][ T5893] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  708.560005][T27068] ext4 filesystem being mounted at /704/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  708.564416][ T5893] usb 4-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  708.582682][ T5893] usb 4-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  708.591463][ T5893] usb 4-1: Manufacturer: syz
[  708.601092][ T5893] usb 4-1: config 0 descriptor??
[  708.667597][T27068] fscrypt (loop5, inode 12): Unsupported encryption flags (0x08)
[  708.685970][ T5893] rc_core: IR keymap rc-hauppauge not found
[  708.691906][ T5893] Registered IR keymap rc-empty
[  708.721155][ T5893] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  708.733965][ T5893] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input37
[  708.764079][T17872] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  709.021620][T27082] loop5: detected capacity change from 0 to 8192
[  709.054583][T27088] team0: Caught tx_queue_len zero misconfig
[  709.065499][T27082] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  709.119072][T27076] rc rc0: two consecutive events of type space
[  709.328517][ T5940] usb 4-1: USB disconnect, device number 58
[  710.058396][T27090] loop5: detected capacity change from 0 to 131072
[  710.137250][T27090] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  710.152475][T27090] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  710.234504][T27119] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  710.266882][ T5940] usb 4-1: new high-speed USB device number 59 using dummy_hcd
[  710.446165][ T5940] usb 4-1: Using ep0 maxpacket: 16
[  710.462160][ T5940] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  710.494370][ T5940] usb 4-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  710.509870][ T5940] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  710.550899][ T5940] usb 4-1: config 0 descriptor??
[  710.615449][T27131] overlayfs: upper fs does not support file handles, falling back to index=off.
[  710.651346][T27131] overlayfs: fs on '.' does not support file handles, falling back to xino=off.
[  710.999551][ T5940] mcp2221 0003:04D8:00DD.006A: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.3-1/input0
[  711.429386][    T9] usb 4-1: USB disconnect, device number 59
[  711.493294][T27139] loop7: detected capacity change from 0 to 40427
[  711.531665][T27139] F2FS-fs (loop7): Small segment_count (9 < 1 * 24)
[  711.551465][T27139] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  711.694166][T27165] loop5: detected capacity change from 0 to 2048
[  711.737933][T27166] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  711.767440][T27139] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  711.799279][T27139] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  711.816863][T27139] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  711.876892][   T30] audit: type=1800 audit(2000000070.570:375): pid=27139 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.8425" name="file1" dev="loop7" ino=10 res=0 errno=0
[  711.933404][T27139] bio_check_eod: 116 callbacks suppressed
[  711.933436][T27139] syz.7.8425: attempt to access beyond end of device
[  711.933436][T27139] loop7: rw=34817, sector=53248, nr_sectors = 16 limit=40427
[  712.049270][T20496] syz-executor: attempt to access beyond end of device
[  712.049270][T20496] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  712.081005][T20496] CPU: 1 UID: 0 PID: 20496 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  712.081037][T20496] Tainted: [L]=SOFTLOCKUP
[  712.081044][T20496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  712.081055][T20496] Call Trace:
[  712.081062][T20496]  <TASK>
[  712.081071][T20496]  dump_stack_lvl+0xe8/0x150
[  712.081102][T20496]  f2fs_handle_critical_error+0x37c/0x540
[  712.081136][T20496]  f2fs_write_end_io+0xcdb/0xff0
[  712.081171][T20496]  __submit_merged_bio+0x256/0x700
[  712.081203][T20496]  __submit_merged_write_cond+0x3c9/0x4e0
[  712.081235][T20496]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  712.081277][T20496]  f2fs_write_data_pages+0x2975/0x35e0
[  712.081334][T20496]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  712.081372][T20496]  ? do_raw_spin_lock+0x12b/0x2f0
[  712.081416][T20496]  ? do_raw_spin_unlock+0xf5/0x210
[  712.081438][T20496]  ? free_unref_folios+0x15ad/0x16d0
[  712.081478][T20496]  ? __lock_acquire+0x6b5/0x2cf0
[  712.081527][T20496]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  712.081547][T20496]  do_writepages+0x32e/0x550
[  712.081585][T20496]  ? do_raw_spin_unlock+0xf5/0x210
[  712.081610][T20496]  filemap_fdatawrite+0x1e9/0x2f0
[  712.081638][T20496]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  712.081714][T20496]  ? do_raw_spin_unlock+0xf5/0x210
[  712.081739][T20496]  f2fs_sync_dirty_inodes+0x30e/0x860
[  712.081776][T20496]  f2fs_write_checkpoint+0x9df/0x26a0
[  712.081832][T20496]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  712.081912][T20496]  kill_f2fs_super+0x314/0x720
[  712.081938][T20496]  ? __pfx_kill_f2fs_super+0x10/0x10
[  712.081975][T20496]  ? lockdep_hardirqs_on+0x7a/0x110
[  712.082014][T20496]  deactivate_locked_super+0xbc/0x130
[  712.082043][T20496]  cleanup_mnt+0x437/0x4d0
[  712.082062][T20496]  ? _raw_spin_unlock_irq+0x23/0x50
[  712.082087][T20496]  task_work_run+0x1d9/0x270
[  712.082112][T20496]  ? __pfx_task_work_run+0x10/0x10
[  712.082142][T20496]  exit_to_user_mode_loop+0xed/0x480
[  712.082161][T20496]  ? rcu_is_watching+0x15/0xb0
[  712.082186][T20496]  do_syscall_64+0x32d/0xf80
[  712.082205][T20496]  ? trace_irq_disable+0x3b/0x150
[  712.082219][T20496]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  712.082237][T20496]  ? clear_bhb_loop+0x40/0x90
[  712.082258][T20496]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  712.082291][T20496] RIP: 0033:0x7f95f919d897
[  712.082309][T20496] Code: a2 c7 05 5c ee 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  712.082322][T20496] RSP: 002b:00007ffc32168958 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  712.082340][T20496] RAX: 0000000000000000 RBX: 00007f95f9231ef0 RCX: 00007f95f919d897
[  712.082352][T20496] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc32168a10
[  712.082362][T20496] RBP: 00007ffc32168a10 R08: 00007ffc32169a10 R09: 00000000ffffffff
[  712.082378][T20496] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc32169aa0
[  712.082389][T20496] R13: 00007f95f9231ef0 R14: 00000000000add70 R15: 00007ffc32169ae0
[  712.082417][T20496]  </TASK>
[  712.083343][T20496] F2FS-fs (loop7): Stopped filesystem due to reason: 3
[  712.083836][T27157] loop6: detected capacity change from 0 to 32768
[  712.261873][T27175] program syz.5.8442 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  712.357919][T27157] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.8434 (27157)
[  712.473683][T27157] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  712.502203][T27178] loop3: detected capacity change from 0 to 64
[  712.503999][T27157] BTRFS info (device loop6): using sha256 checksum algorithm
[  712.685426][   T30] audit: type=1800 audit(2000000071.380:376): pid=27178 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.8444" name="file1" dev="loop3" ino=5 res=0 errno=0
[  712.727115][T27157] BTRFS info (device loop6): rebuilding free space tree
[  712.744715][T27157] BTRFS info (device loop6): enabling ssd optimizations
[  712.753659][T27157] BTRFS info (device loop6): turning on async discard
[  712.764362][T27157] BTRFS info (device loop6): enabling free space tree
[  712.772117][T27157] BTRFS info (device loop6): force clearing of disk cache
[  712.779723][T27157] BTRFS info (device loop6): enabling auto defrag
[  712.786588][T27157] BTRFS info (device loop6): force lzo compression, level 1
[  712.793999][T27157] BTRFS info (device loop6): max_inline set to 0
[  712.982968][T19339] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  713.290200][ T5893] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  713.488090][ T5893] usb 6-1: Using ep0 maxpacket: 16
[  713.506539][ T5893] usb 6-1: config 0 interface 0 has no altsetting 0
[  713.516644][ T5893] usb 6-1: New USB device found, idVendor=1235, idProduct=0010, bcdDevice=29.82
[  713.529661][ T5893] usb 6-1: New USB device strings: Mfr=83, Product=5, SerialNumber=10
[  713.566147][ T5893] usb 6-1: Product: syz
[  713.573739][ T5893] usb 6-1: Manufacturer: syz
[  713.584297][ T5893] usb 6-1: SerialNumber: syz
[  713.601444][ T5893] usb 6-1: config 0 descriptor??
[  713.746613][T27203] loop3: detected capacity change from 0 to 32768
[  713.773239][T27203] xfs: Deprecated parameter 'noattr2'
[  713.788810][T27203] XFS: noattr2 mount option is deprecated.
[  713.830962][T27203] XFS (loop3): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  713.911809][ T5893] snd-usb-audio 6-1:0.0: probe with driver snd-usb-audio failed with error -22
[  713.942703][T27203] XFS (loop3): Ending clean mount
[  713.970647][T27203] XFS (loop3): Quotacheck needed: Please wait.
[  713.983546][ T5842] udevd[5842]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  714.083388][ T5893] usb 6-1: USB disconnect, device number 20
[  714.165226][T27203] XFS (loop3): Quotacheck: Done.
[  714.213398][T27223] input: syz1 as /devices/virtual/input/input38
[  714.300504][ T5823] XFS (loop3): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  714.662029][T27211] loop6: detected capacity change from 0 to 40427
[  714.694575][T27211] F2FS-fs (loop6): Insane cp_payload (553648128 >= 504)
[  714.707141][T27211] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  714.735664][T27211] F2FS-fs (loop6): build fault injection rate: 17008
[  714.767349][T27211] F2FS-fs (loop6): invalid crc value
[  714.972753][T27211] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  714.987219][T27211] F2FS-fs (loop6): Start checkpoint disabled!
[  715.023419][T27211] F2FS-fs (loop6): f2fs_disable_checkpoint() finish, err:0
[  715.047082][T27211] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  715.049118][ T2273] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 2
[  715.064618][T27211] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  715.203166][T27251] loop3: detected capacity change from 0 to 64
[  715.281004][   T30] audit: type=1800 audit(2000000073.980:377): pid=27251 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.8466" name=EF1FB45B17F71FB69B815EEA5A22356CC3DD37E353B7AB24DBAD82643394D79E67C9D530676BD8CDC97F7D943DBE3D7E2A3DE68BF96A6E9B50EFD4ECADFFEA91B187C91DA9D01DA9B01710E77F297F465765188FCAA972D5EDE46CB2077DFA50A1CA467647A2EE19B5AAC13708C26E9E6FE60BA2D686A2E2EA76F2AB7351EB9951BB25511BC351FDB3393F727439650F31AFCD4DB3A55FFAA8BDD4FA3FB07FED6D557966DA316E64726614D6537723C30A890595D2475573855B5FE99EAE68E5F1B3E70FEEB6DBAD4753F1A07632D298F883BA26B1AFEE0973224A9EED07FAEB796A5AD058532D7AF158FC97AF53F0A87FD0B579CB7732F0C1AEBB4CDCFFA5FA95EB6E9BED9342B74E9F53D63A3D2A9B3C35E34E4E6FB0E6EE4F1DAB835BCAEFE0AAF65CE72E48E70BF6F87970DA30C97346983D7DD31DDEFF07 dev="loop3" ino=22 res=0 errno=0
[  715.399232][ T6909] kworker/u8:13: attempt to access beyond end of device
[  715.399232][ T6909] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  715.426329][ T6909] CPU: 1 UID: 0 PID: 6909 Comm: kworker/u8:13 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  715.426358][ T6909] Tainted: [L]=SOFTLOCKUP
[  715.426365][ T6909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  715.426376][ T6909] Workqueue: writeback wb_workfn (flush-7:6)
[  715.426405][ T6909] Call Trace:
[  715.426413][ T6909]  <TASK>
[  715.426422][ T6909]  dump_stack_lvl+0xe8/0x150
[  715.426450][ T6909]  f2fs_handle_critical_error+0x37c/0x540
[  715.426483][ T6909]  f2fs_write_end_io+0xcdb/0xff0
[  715.426520][ T6909]  __submit_merged_bio+0x256/0x700
[  715.426551][ T6909]  __submit_merged_write_cond+0x3c9/0x4e0
[  715.426583][ T6909]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  715.426628][ T6909]  f2fs_write_data_pages+0x2975/0x35e0
[  715.426680][ T6909]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  715.426734][ T6909]  ? __lock_acquire+0x6b5/0x2cf0
[  715.426762][ T6909]  ? __lock_acquire+0x6b5/0x2cf0
[  715.426791][ T6909]  ? __lock_acquire+0x6b5/0x2cf0
[  715.426833][ T6909]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  715.426851][ T6909]  do_writepages+0x32e/0x550
[  715.426878][ T6909]  ? reacquire_held_locks+0x104/0x190
[  715.426899][ T6909]  ? writeback_sb_inodes+0x477/0x1a20
[  715.426925][ T6909]  __writeback_single_inode+0x133/0x11a0
[  715.426948][ T6909]  ? do_raw_spin_unlock+0xf5/0x210
[  715.426969][ T6909]  writeback_sb_inodes+0x992/0x1a20
[  715.427022][ T6909]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  715.427040][ T6909]  ? do_raw_spin_lock+0x12b/0x2f0
[  715.427092][ T6909]  ? rcu_is_watching+0x15/0xb0
[  715.427123][ T6909]  wb_writeback+0x456/0xb70
[  715.427150][ T6909]  ? queue_io+0x1e1/0x4a0
[  715.427180][ T6909]  ? __pfx_wb_writeback+0x10/0x10
[  715.427200][ T6909]  ? do_raw_spin_lock+0x12b/0x2f0
[  715.427237][ T6909]  wb_workfn+0x414/0xf50
[  715.427258][ T6909]  ? look_up_lock_class+0x57/0x110
[  715.427291][ T6909]  ? __pfx_wb_workfn+0x10/0x10
[  715.427314][ T6909]  ? do_raw_spin_lock+0x12b/0x2f0
[  715.427337][ T6909]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  715.427378][ T6909]  ? process_one_work+0x87c/0x1650
[  715.427400][ T6909]  process_one_work+0x949/0x1650
[  715.427443][ T6909]  ? __pfx_process_one_work+0x10/0x10
[  715.427464][ T6909]  ? do_raw_spin_lock+0x12b/0x2f0
[  715.427500][ T6909]  worker_thread+0xb46/0x1140
[  715.427547][ T6909]  kthread+0x388/0x470
[  715.427565][ T6909]  ? __pfx_worker_thread+0x10/0x10
[  715.427586][ T6909]  ? __pfx_kthread+0x10/0x10
[  715.427606][ T6909]  ret_from_fork+0x51e/0xb90
[  715.427632][ T6909]  ? __pfx_ret_from_fork+0x10/0x10
[  715.427654][ T6909]  ? __switch_to+0xc7d/0x1450
[  715.427680][ T6909]  ? __pfx_kthread+0x10/0x10
[  715.427698][ T6909]  ret_from_fork_asm+0x1a/0x30
[  715.427733][ T6909]  </TASK>
[  715.427741][ T6909] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  715.563514][T27240] loop5: detected capacity change from 0 to 40427
[  715.656009][T27257] loop7: detected capacity change from 0 to 256
[  715.746110][T27240] F2FS-fs (loop5): invalid crc value
[  715.790257][T27257] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x28b7239b, utbl_chksum : 0xe619d30d)
[  715.857223][T27262] Failed to get privilege flags for destination (handle=0x2:0x0)
[  716.000462][T27240] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  716.046599][T27240] F2FS-fs (loop5): Start checkpoint disabled!
[  716.053963][T27240] F2FS-fs (loop5): f2fs_disable_checkpoint() finish, err:0
[  716.077477][T27240] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  716.134103][    T9] kernel read not supported for file /sg0 (pid: 9 comm: kworker/0:0)
[  716.224446][ T6906] kworker/u8:12: attempt to access beyond end of device
[  716.224446][ T6906] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  716.258397][ T6906] CPU: 1 UID: 0 PID: 6906 Comm: kworker/u8:12 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  716.258430][ T6906] Tainted: [L]=SOFTLOCKUP
[  716.258437][ T6906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  716.258449][ T6906] Workqueue: writeback wb_workfn (flush-7:5)
[  716.258479][ T6906] Call Trace:
[  716.258487][ T6906]  <TASK>
[  716.258496][ T6906]  dump_stack_lvl+0xe8/0x150
[  716.258534][ T6906]  f2fs_handle_critical_error+0x37c/0x540
[  716.258568][ T6906]  f2fs_write_end_io+0xcdb/0xff0
[  716.258608][ T6906]  __submit_merged_bio+0x256/0x700
[  716.258641][ T6906]  __submit_merged_write_cond+0x3c9/0x4e0
[  716.258676][ T6906]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  716.258727][ T6906]  f2fs_write_data_pages+0x2975/0x35e0
[  716.258785][ T6906]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  716.258819][ T6906]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  716.258877][ T6906]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  716.258927][ T6906]  ? __lock_acquire+0x6b5/0x2cf0
[  716.258977][ T6906]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  716.258997][ T6906]  do_writepages+0x32e/0x550
[  716.259031][ T6906]  ? reacquire_held_locks+0x104/0x190
[  716.259056][ T6906]  ? writeback_sb_inodes+0x477/0x1a20
[  716.259086][ T6906]  __writeback_single_inode+0x133/0x11a0
[  716.259112][ T6906]  ? do_raw_spin_unlock+0xf5/0x210
[  716.259137][ T6906]  writeback_sb_inodes+0x992/0x1a20
[  716.259183][ T6906]  ? __lock_acquire+0x6b5/0x2cf0
[  716.259212][ T6906]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  716.259234][ T6906]  ? do_raw_spin_lock+0x12b/0x2f0
[  716.259297][ T6906]  ? rcu_is_watching+0x15/0xb0
[  716.259332][ T6906]  wb_writeback+0x456/0xb70
[  716.259359][ T6906]  ? queue_io+0x1e1/0x4a0
[  716.259391][ T6906]  ? __pfx_wb_writeback+0x10/0x10
[  716.259413][ T6906]  ? do_raw_spin_lock+0x12b/0x2f0
[  716.259451][ T6906]  wb_workfn+0x414/0xf50
[  716.259474][ T6906]  ? look_up_lock_class+0x57/0x110
[  716.259513][ T6906]  ? __pfx_wb_workfn+0x10/0x10
[  716.259537][ T6906]  ? do_raw_spin_lock+0x12b/0x2f0
[  716.259560][ T6906]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  716.259606][ T6906]  ? process_one_work+0x87c/0x1650
[  716.259629][ T6906]  process_one_work+0x949/0x1650
[  716.259677][ T6906]  ? __pfx_process_one_work+0x10/0x10
[  716.259698][ T6906]  ? do_raw_spin_lock+0x12b/0x2f0
[  716.259737][ T6906]  worker_thread+0xb46/0x1140
[  716.259791][ T6906]  kthread+0x388/0x470
[  716.259812][ T6906]  ? __pfx_worker_thread+0x10/0x10
[  716.259834][ T6906]  ? __pfx_kthread+0x10/0x10
[  716.259855][ T6906]  ret_from_fork+0x51e/0xb90
[  716.259883][ T6906]  ? __pfx_ret_from_fork+0x10/0x10
[  716.259906][ T6906]  ? __switch_to+0xc7d/0x1450
[  716.259932][ T6906]  ? __pfx_kthread+0x10/0x10
[  716.259959][ T6906]  ret_from_fork_asm+0x1a/0x30
[  716.259996][ T6906]  </TASK>
[  716.260004][ T6906] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  717.127594][T27298] loop5: detected capacity change from 0 to 256
[  717.144346][T27298] exfat: Deprecated parameter 'utf8'
[  717.177482][T27298] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d)
[  717.600569][T27287] loop3: detected capacity change from 0 to 32768
[  717.676095][T27287] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  717.693675][T27310] ªªªªªª: renamed from vlan0 (while UP)
[  717.735433][T27287] XFS (loop3): Ending clean mount
[  718.031744][T27330] loop6: detected capacity change from 0 to 256
[  718.045670][ T5823] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  718.084010][T27330] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xd22393c8, utbl_chksum : 0xe619d30d)
[  718.512707][T27334] loop3: detected capacity change from 0 to 512
[  718.520155][ T6903] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  718.537188][T27334] EXT4-fs: Ignoring removed mblk_io_submit option
[  718.586428][T27334] EXT4-fs: inline encryption not supported
[  718.592358][T27334] EXT4-fs: Ignoring removed mblk_io_submit option
[  718.652110][T27334] EXT4-fs (loop3): Test dummy encryption mode enabled
[  718.667045][T27334] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  718.713216][T27334] EXT4-fs (loop3): 1 truncate cleaned up
[  718.745619][T27334] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  718.797192][ T5833] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  718.812134][ T5833] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  718.821642][ T5833] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  718.830469][ T5833] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  718.832504][ T6903] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  718.838254][ T5833] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  719.012980][ T5823] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  719.030648][ T6903] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  719.144787][T27346] hsr0 speed is unknown, defaulting to 1000
[  719.279582][ T6903] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  719.522303][T27377] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8519'.
[  719.553792][T27377] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8519'.
[  719.610917][T27382] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8519'.
[  719.696017][T27382] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8519'.
[  719.851228][T27384] netlink: 100 bytes leftover after parsing attributes in process `syz.1.8523'.
[  719.980911][ T6903] bridge_slave_1: left allmulticast mode
[  720.001920][ T6903] bridge0: port 2(bridge_slave_1) entered disabled state
[  720.048551][ T6903] bridge_slave_0: left allmulticast mode
[  720.057711][ T6903] bridge_slave_0: left promiscuous mode
[  720.074510][ T6903] bridge0: port 1(bridge_slave_0) entered disabled state
[  720.174550][T27405] loop3: detected capacity change from 0 to 16
[  720.260577][T27405] erofs (device loop3): mounted with root inode @ nid 36.
[  720.557158][   T30] audit: type=1800 audit(2000000079.260:378): pid=27405 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.8529" name="file1" dev="loop3" ino=86 res=0 errno=0
[  720.705349][T27427] loop7: detected capacity change from 0 to 256
[  720.805128][T27427] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  720.987797][T22854] Bluetooth: hci3: command tx timeout
[  720.996837][T27434] loop7: detected capacity change from 0 to 512
[  721.011926][T27434] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  721.078507][T27434] EXT4-fs (loop7): 1 orphan inode deleted
[  721.084282][T27434] EXT4-fs (loop7): 1 truncate cleaned up
[  721.129756][T27434] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  721.180322][T27434] EXT4-fs error (device loop7): ext4_search_dir:1474: inode #12: block 7: comm syz.7.8538: bad entry in directory: directory entry overrun - offset=0, inode=13, rec_len=784, size=56 fake=0
[  721.229841][T27434] EXT4-fs (loop7): Remounting filesystem read-only
[  721.319176][T20496] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  721.451087][T27444] loop7: detected capacity change from 0 to 1024
[  721.466713][T27444] EXT4-fs: Ignoring removed bh option
[  721.472940][T27444] EXT4-fs: Ignoring removed nobh option
[  721.503953][ T6903] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  721.526471][T27444] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  721.532996][T27450] binder: 27449:27450 ioctl 4018620d 0 returned -22
[  721.552217][ T6903] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  721.565614][ T6903] bond0 (unregistering): (slave bond1): Releasing backup interface
[  721.574597][ T6903] bond0 (unregistering): Released all slaves
[  721.587189][ T6903] bond1 (unregistering): Released all slaves
[  721.588938][T27444] EXT4-fs error (device loop7): mb_free_blocks:2047: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  721.615761][T27346] chnl_net:caif_netlink_parms(): no params data found
[  721.844452][T27460] loop6: detected capacity change from 0 to 1024
[  721.846733][T20496] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  721.941974][T27460] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  722.119885][T27471] loop7: detected capacity change from 0 to 2048
[  722.130427][T19339] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  722.133296][T27346] bridge0: port 1(bridge_slave_0) entered blocking state
[  722.173016][T27471] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  722.197598][T27346] bridge0: port 1(bridge_slave_0) entered disabled state
[  722.224581][T27346] bridge_slave_0: entered allmulticast mode
[  722.233230][T27346] bridge_slave_0: entered promiscuous mode
[  722.275676][T27346] bridge0: port 2(bridge_slave_1) entered blocking state
[  722.283482][T27346] bridge0: port 2(bridge_slave_1) entered disabled state
[  722.295160][T27346] bridge_slave_1: entered allmulticast mode
[  722.324168][T27346] bridge_slave_1: entered promiscuous mode
[  722.592256][T27346] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  722.596034][T27477] serio: Serial port ptm0
[  722.654869][T27346] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  722.989896][T27346] team0: Port device team_slave_0 added
[  723.040015][T27346] team0: Port device team_slave_1 added
[  723.067606][T22854] Bluetooth: hci3: command tx timeout
[  723.137592][ T6903] hsr_slave_0: left promiscuous mode
[  723.194853][ T6903] hsr_slave_1: left promiscuous mode
[  723.206749][ T6903] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  723.214355][ T6903] batman_adv: batadv0: Removing interface: batadv_slave_0
[  723.245621][ T6903] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  723.285951][ T6903] batman_adv: batadv0: Removing interface: batadv_slave_1
[  723.371163][ T6903] veth1_macvtap: left promiscuous mode
[  723.371812][T22854] Bluetooth: hci1: unexpected event for opcode 0x2024
[  723.396894][ T6903] veth0_macvtap: left promiscuous mode
[  723.403027][ T6903] veth1_vlan: left promiscuous mode
[  723.414630][ T6903] veth0_vlan: left promiscuous mode
[  723.883125][ T6903] team0 (unregistering): Port device team_slave_1 removed
[  723.904222][ T6903] team0 (unregistering): Port device team_slave_0 removed
[  724.056257][ T5940] usb 8-1: new full-speed USB device number 17 using dummy_hcd
[  724.074949][T27346] batman_adv: batadv0: Adding interface: batadv_slave_0
[  724.082622][T27346] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  724.115635][T27346] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  724.157469][T27346] batman_adv: batadv0: Adding interface: batadv_slave_1
[  724.174676][T27346] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  724.213075][T27346] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  724.247708][ T5940] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 34, using maximum allowed: 30
[  724.286156][ T5940] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  724.326269][ T5940] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  724.355841][ T5940] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 34
[  724.382048][T27346] hsr_slave_0: entered promiscuous mode
[  724.396407][ T5940] usb 8-1: New USB device found, idVendor=056a, idProduct=0023, bcdDevice= 0.00
[  724.413929][T27346] hsr_slave_1: entered promiscuous mode
[  724.421150][ T5940] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  724.429918][T27346] debugfs: 'hsr0' already exists in 'hsr'
[  724.435677][T27346] Cannot create hsr debugfs directory
[  724.455088][ T5940] usb 8-1: config 0 descriptor??
[  724.990921][ T5940] wacom 0003:056A:0023.006B: Unknown device_type for 'HID 056a:0023'. Assuming pen.
[  725.046848][ T5940] wacom 0003:056A:0023.006B: hidraw0: USB HID v0.00 Device [HID 056a:0023] on usb-dummy_hcd.7-1/input0
[  725.113926][T27543] loop3: detected capacity change from 0 to 65536
[  725.126603][ T5940] input: Wacom Intuos 12x12 Pen as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/0003:056A:0023.006B/input/input39
[  725.145903][T22854] Bluetooth: hci3: command tx timeout
[  725.221013][T27543] XFS (loop3): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  725.264430][T27543] XFS (loop3): Ending clean mount
[  725.276581][T27543] XFS (loop3): Metadata corruption detected at xfs_dinode_verify+0x1a9/0x1590, inode 0x26 dinode
[  725.288664][T27543] XFS (loop3): Unmount and run xfs_repair
[  725.294949][T27543] XFS (loop3): First 128 bytes of corrupted metadata buffer:
[  725.302578][T27543] 00000000: 49 4e 81 ed 03 02 00 00 00 00 00 00 00 00 00 00  IN..............
[  725.312228][T27543] 00000010: 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  725.321183][T27543] 00000020: 34 f7 58 68 7a bb 44 4d 34 f7 58 68 7a bb 44 4d  4.Xhz.DM4.Xhz.DM
[  725.330213][T27543] 00000030: 34 f7 58 68 7a bb 44 4d 00 00 00 00 00 00 00 0a  4.Xhz.DM........
[  725.335172][ T5940] usb 8-1: USB disconnect, device number 17
[  725.339311][T27543] 00000040: 00 00 00 00 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  725.339378][T27543] 00000050: 00 00 25 01 00 00 00 00 00 00 00 00 38 7c 45 d7  ..%.........8|E.
[  725.339393][T27543] 00000060: ff ff ff ff da a2 56 a4 00 00 00 00 00 00 00 08  ......V.........
[  725.339406][T27543] 00000070: 00 00 00 01 00 00 00 10 00 00 00 00 00 00 00 08  ................
[  725.501641][ T5823] XFS (loop3): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  725.645105][T27346] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  725.722503][T27346] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  725.753290][T27346] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  725.795317][T27346] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  726.323199][T27346] 8021q: adding VLAN 0 to HW filter on device bond0
[  726.389221][T27346] 8021q: adding VLAN 0 to HW filter on device team0
[  726.423727][ T6909] bridge0: port 1(bridge_slave_0) entered blocking state
[  726.431058][ T6909] bridge0: port 1(bridge_slave_0) entered forwarding state
[  726.466883][ T6909] bridge0: port 2(bridge_slave_1) entered blocking state
[  726.474117][ T6909] bridge0: port 2(bridge_slave_1) entered forwarding state
[  726.724555][T27567] loop3: detected capacity change from 0 to 40427
[  726.830027][T27567] F2FS-fs (loop3): build fault injection type: 0x7
[  726.851947][T27567] F2FS-fs (loop3): invalid crc value
[  726.945740][T27578] loop7: detected capacity change from 0 to 32768
[  727.021983][T27578] XFS (loop7): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  727.122259][T27567] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  727.180825][T27578] XFS (loop7): Ending clean mount
[  727.223053][T27567] F2FS-fs (loop3): Start checkpoint disabled!
[  727.226406][T22854] Bluetooth: hci3: command tx timeout
[  727.238508][T27578] XFS (loop7): Quotacheck needed: Please wait.
[  727.299821][T27567] F2FS-fs (loop3): f2fs_disable_checkpoint() finish, err:0
[  727.356258][T27567] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  727.447330][T27578] XFS (loop7): Quotacheck: Done.
[  727.544093][T27346] 8021q: adding VLAN 0 to HW filter on device batadv0
[  727.557748][ T1182] kworker/u8:9: attempt to access beyond end of device
[  727.557748][ T1182] loop3: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  727.590115][T20496] XFS (loop7): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  727.608073][ T1182] CPU: 1 UID: 0 PID: 1182 Comm: kworker/u8:9 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  727.608104][ T1182] Tainted: [L]=SOFTLOCKUP
[  727.608110][ T1182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  727.608122][ T1182] Workqueue: writeback wb_workfn (flush-7:3)
[  727.608149][ T1182] Call Trace:
[  727.608157][ T1182]  <TASK>
[  727.608165][ T1182]  dump_stack_lvl+0xe8/0x150
[  727.608193][ T1182]  f2fs_handle_critical_error+0x37c/0x540
[  727.608223][ T1182]  f2fs_write_end_io+0xcdb/0xff0
[  727.608258][ T1182]  __submit_merged_bio+0x256/0x700
[  727.608288][ T1182]  f2fs_submit_merged_write+0x284/0x390
[  727.608317][ T1182]  ? __pfx_f2fs_submit_merged_write+0x10/0x10
[  727.608357][ T1182]  f2fs_sync_node_pages+0x14bf/0x1680
[  727.608400][ T1182]  ? __pfx_f2fs_sync_node_pages+0x10/0x10
[  727.608423][ T1182]  ? __percpu_counter_sum+0x1c2/0x1e0
[  727.608479][ T1182]  ? do_raw_spin_lock+0x12b/0x2f0
[  727.608503][ T1182]  ? blk_start_plug+0x51/0x1b0
[  727.608530][ T1182]  f2fs_write_node_pages+0x312/0x700
[  727.608558][ T1182]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  727.608591][ T1182]  ? __pfx_f2fs_inode_chksum_set+0x10/0x10
[  727.608614][ T1182]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  727.608638][ T1182]  do_writepages+0x32e/0x550
[  727.608671][ T1182]  ? reacquire_held_locks+0x104/0x190
[  727.608694][ T1182]  ? writeback_sb_inodes+0x477/0x1a20
[  727.608722][ T1182]  __writeback_single_inode+0x133/0x11a0
[  727.608747][ T1182]  ? do_raw_spin_unlock+0xf5/0x210
[  727.608771][ T1182]  writeback_sb_inodes+0x992/0x1a20
[  727.608814][ T1182]  ? __lock_acquire+0x6b5/0x2cf0
[  727.608843][ T1182]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  727.608863][ T1182]  ? do_raw_spin_lock+0x12b/0x2f0
[  727.608925][ T1182]  ? rcu_is_watching+0x15/0xb0
[  727.608961][ T1182]  wb_writeback+0x456/0xb70
[  727.608987][ T1182]  ? queue_io+0x1e1/0x4a0
[  727.609018][ T1182]  ? __pfx_wb_writeback+0x10/0x10
[  727.609047][ T1182]  ? do_raw_spin_lock+0x12b/0x2f0
[  727.609085][ T1182]  wb_workfn+0x414/0xf50
[  727.609109][ T1182]  ? look_up_lock_class+0x57/0x110
[  727.609147][ T1182]  ? __pfx_wb_workfn+0x10/0x10
[  727.609172][ T1182]  ? do_raw_spin_lock+0x12b/0x2f0
[  727.609195][ T1182]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  727.609241][ T1182]  ? process_one_work+0x87c/0x1650
[  727.609263][ T1182]  process_one_work+0x949/0x1650
[  727.609309][ T1182]  ? __pfx_process_one_work+0x10/0x10
[  727.609329][ T1182]  ? do_raw_spin_lock+0x12b/0x2f0
[  727.609368][ T1182]  worker_thread+0xb46/0x1140
[  727.609403][ T1182]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  727.609443][ T1182]  kthread+0x388/0x470
[  727.609460][ T1182]  ? __pfx_worker_thread+0x10/0x10
[  727.609483][ T1182]  ? __pfx_kthread+0x10/0x10
[  727.609503][ T1182]  ret_from_fork+0x51e/0xb90
[  727.609530][ T1182]  ? __pfx_ret_from_fork+0x10/0x10
[  727.609552][ T1182]  ? __switch_to+0xc7d/0x1450
[  727.609580][ T1182]  ? __pfx_kthread+0x10/0x10
[  727.609600][ T1182]  ret_from_fork_asm+0x1a/0x30
[  727.609632][ T1182]  </TASK>
[  727.609640][ T1182] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  727.893035][T27624] netlink: 165 bytes leftover after parsing attributes in process `syz.1.8589'.
[  727.948655][ T1182] CPU: 1 UID: 0 PID: 1182 Comm: kworker/u8:9 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  727.948688][ T1182] Tainted: [L]=SOFTLOCKUP
[  727.948695][ T1182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  727.948707][ T1182] Workqueue: writeback wb_workfn (flush-7:3)
[  727.948737][ T1182] Call Trace:
[  727.948745][ T1182]  <TASK>
[  727.948754][ T1182]  dump_stack_lvl+0xe8/0x150
[  727.948785][ T1182]  f2fs_handle_critical_error+0x37c/0x540
[  727.948819][ T1182]  f2fs_write_end_io+0xcdb/0xff0
[  727.948858][ T1182]  __submit_merged_bio+0x256/0x700
[  727.948891][ T1182]  f2fs_submit_merged_write+0x284/0x390
[  727.948922][ T1182]  ? __pfx_f2fs_submit_merged_write+0x10/0x10
[  727.948965][ T1182]  f2fs_sync_node_pages+0x14bf/0x1680
[  727.949022][ T1182]  ? __pfx_f2fs_sync_node_pages+0x10/0x10
[  727.949046][ T1182]  ? __percpu_counter_sum+0x1c2/0x1e0
[  727.949103][ T1182]  ? do_raw_spin_lock+0x12b/0x2f0
[  727.949129][ T1182]  ? blk_start_plug+0x51/0x1b0
[  727.949155][ T1182]  f2fs_write_node_pages+0x312/0x700
[  727.949186][ T1182]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  727.949222][ T1182]  ? __pfx_f2fs_inode_chksum_set+0x10/0x10
[  727.949313][ T1182]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  727.949340][ T1182]  do_writepages+0x32e/0x550
[  727.949374][ T1182]  ? reacquire_held_locks+0x104/0x190
[  727.949399][ T1182]  ? writeback_sb_inodes+0x477/0x1a20
[  727.949429][ T1182]  __writeback_single_inode+0x133/0x11a0
[  727.949454][ T1182]  ? do_raw_spin_unlock+0xf5/0x210
[  727.949480][ T1182]  writeback_sb_inodes+0x992/0x1a20
[  727.949526][ T1182]  ? __lock_acquire+0x6b5/0x2cf0
[  727.949556][ T1182]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  727.949577][ T1182]  ? do_raw_spin_lock+0x12b/0x2f0
[  727.949642][ T1182]  ? rcu_is_watching+0x15/0xb0
[  727.949678][ T1182]  wb_writeback+0x456/0xb70
[  727.949705][ T1182]  ? queue_io+0x1e1/0x4a0
[  727.949737][ T1182]  ? __pfx_wb_writeback+0x10/0x10
[  727.949758][ T1182]  ? do_raw_spin_lock+0x12b/0x2f0
[  727.949798][ T1182]  wb_workfn+0x414/0xf50
[  727.949821][ T1182]  ? look_up_lock_class+0x57/0x110
[  727.949860][ T1182]  ? __pfx_wb_workfn+0x10/0x10
[  727.949886][ T1182]  ? do_raw_spin_lock+0x12b/0x2f0
[  727.949909][ T1182]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  727.949950][ T1182]  ? process_one_work+0x87c/0x1650
[  727.949969][ T1182]  process_one_work+0x949/0x1650
[  727.950014][ T1182]  ? __pfx_process_one_work+0x10/0x10
[  727.950036][ T1182]  ? do_raw_spin_lock+0x12b/0x2f0
[  727.950076][ T1182]  worker_thread+0xb46/0x1140
[  727.950111][ T1182]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  727.950151][ T1182]  kthread+0x388/0x470
[  727.950171][ T1182]  ? __pfx_worker_thread+0x10/0x10
[  727.950203][ T1182]  ? __pfx_kthread+0x10/0x10
[  727.950223][ T1182]  ret_from_fork+0x51e/0xb90
[  727.950251][ T1182]  ? __pfx_ret_from_fork+0x10/0x10
[  727.950274][ T1182]  ? __switch_to+0xc7d/0x1450
[  727.950301][ T1182]  ? __pfx_kthread+0x10/0x10
[  727.950322][ T1182]  ret_from_fork_asm+0x1a/0x30
[  727.950360][ T1182]  </TASK>
[  727.950370][ T1182] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  728.767606][T27346] veth0_vlan: entered promiscuous mode
[  728.803617][T27346] veth1_vlan: entered promiscuous mode
[  728.899129][T27346] veth0_macvtap: entered promiscuous mode
[  728.934851][T27346] veth1_macvtap: entered promiscuous mode
[  728.956296][T27651] nbd1: detected capacity change from 0 to 127
[  728.993228][T22854] block nbd1: Receive control failed (result -32)
[  728.999704][ T6931] block nbd1: Send control failed (result -32)
[  729.054620][T27346] batman_adv: batadv0: Interface activated: batadv_slave_0
[  729.073207][ T6931] block nbd1: Request send failed, requeueing
[  729.141860][T27346] batman_adv: batadv0: Interface activated: batadv_slave_1
[  729.153377][ T6931] block nbd1: Dead connection, failed to find a fallback
[  729.190326][ T2273] block nbd1: Dead connection, failed to find a fallback
[  729.199190][ T2273] block nbd1: shutting down sockets
[  729.205293][ T2273] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  729.218075][ T2273] buffer_io_error: 121 callbacks suppressed
[  729.218092][ T2273] Buffer I/O error on dev nbd1, logical block 0, async page read
[  729.232807][ T6931] I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  729.246760][ T6931] Buffer I/O error on dev nbd1, logical block 1, async page read
[  729.254858][ T6931] I/O error, dev nbd1, sector 4 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  729.264807][ T6931] Buffer I/O error on dev nbd1, logical block 2, async page read
[  729.273061][ T6931] I/O error, dev nbd1, sector 6 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  729.279460][ T1182] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  729.282751][ T6931] Buffer I/O error on dev nbd1, logical block 3, async page read
[  729.300364][ T6931] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  729.310466][ T6931] Buffer I/O error on dev nbd1, logical block 0, async page read
[  729.321498][ T6931] I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  729.335969][ T6931] Buffer I/O error on dev nbd1, logical block 1, async page read
[  729.345490][ T6931] I/O error, dev nbd1, sector 4 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  729.360020][ T1182] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  729.370327][ T6931] Buffer I/O error on dev nbd1, logical block 2, async page read
[  729.434083][ T6931] I/O error, dev nbd1, sector 6 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  729.439228][ T1182] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  729.485967][ T6931] Buffer I/O error on dev nbd1, logical block 3, async page read
[  729.497547][ T1182] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  729.506958][ T6931] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  729.506987][ T6931] Buffer I/O error on dev nbd1, logical block 0, async page read
[  729.507025][ T6931] I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  729.507042][ T6931] Buffer I/O error on dev nbd1, logical block 1, async page read
[  729.526181][ T6931] ldm_validate_partition_table(): Disk read failed.
[  729.526672][ T6931] Dev nbd1: unable to read RDB block 0
[  729.527254][ T6931]  nbd1: unable to read partition table
[  729.534790][ T6931] ldm_validate_partition_table(): Disk read failed.
[  729.535250][ T6931] Dev nbd1: unable to read RDB block 0
[  729.554052][ T6931]  nbd1: unable to read partition table
[  729.734239][ T1182] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  729.734314][ T1182] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  729.843613][T27649] loop6: detected capacity change from 0 to 40427
[  729.874250][T27680] loop7: detected capacity change from 0 to 512
[  729.906755][ T6909] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  729.915716][T27649] F2FS-fs (loop6): invalid crc value
[  729.952643][ T6909] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  729.974994][T27680] EXT4-fs error (device loop7): ext4_orphan_get:1391: inode #15: comm syz.7.8607: inode has both inline data and extents flags
[  730.048901][T27680] loop7: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  730.054230][T27680] EXT4-fs error (device loop7): ext4_orphan_get:1396: comm syz.7.8607: couldn't read orphan inode 15 (err -117)
[  730.063474][    C0] EXT4-fs (loop7): error count since last fsck: 1
[  730.063503][    C0] EXT4-fs (loop7): initial error at time 2000000088: ext4_orphan_get:1391: inode 15
[  730.063540][    C0] EXT4-fs (loop7): last error at time 2000000088: ext4_orphan_get:1391: inode 15
[  730.109089][T27680] loop7: lost filesystem error report for type 5 error -117
[  730.109393][T27649] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  730.130490][T27680] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  730.203424][T27649] F2FS-fs (loop6): Start checkpoint disabled!
[  730.232032][T27649] F2FS-fs (loop6): f2fs_disable_checkpoint() finish, err:0
[  730.253466][T27649] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  730.298710][   T30] audit: type=1800 audit(2000000089.000:379): pid=27680 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.8607" name="file1" dev="loop7" ino=18 res=0 errno=0
[  730.369772][T20496] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  730.549322][ T6903] kworker/u8:11: attempt to access beyond end of device
[  730.549322][ T6903] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  730.590583][ T6903] CPU: 1 UID: 0 PID: 6903 Comm: kworker/u8:11 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  730.590615][ T6903] Tainted: [L]=SOFTLOCKUP
[  730.590623][ T6903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  730.590635][ T6903] Workqueue: writeback wb_workfn (flush-7:6)
[  730.590665][ T6903] Call Trace:
[  730.590673][ T6903]  <TASK>
[  730.590682][ T6903]  dump_stack_lvl+0xe8/0x150
[  730.590712][ T6903]  f2fs_handle_critical_error+0x37c/0x540
[  730.590753][ T6903]  f2fs_write_end_io+0xcdb/0xff0
[  730.590794][ T6903]  __submit_merged_bio+0x256/0x700
[  730.590826][ T6903]  __submit_merged_write_cond+0x3c9/0x4e0
[  730.590861][ T6903]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  730.590913][ T6903]  f2fs_write_data_pages+0x2975/0x35e0
[  730.590970][ T6903]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  730.591004][ T6903]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  730.591062][ T6903]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  730.591113][ T6903]  ? __lock_acquire+0x6b5/0x2cf0
[  730.591156][ T6903]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  730.591176][ T6903]  do_writepages+0x32e/0x550
[  730.591209][ T6903]  ? reacquire_held_locks+0x104/0x190
[  730.591235][ T6903]  ? writeback_sb_inodes+0x477/0x1a20
[  730.591265][ T6903]  __writeback_single_inode+0x133/0x11a0
[  730.591290][ T6903]  ? do_raw_spin_unlock+0xf5/0x210
[  730.591315][ T6903]  writeback_sb_inodes+0x992/0x1a20
[  730.591370][ T6903]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  730.591391][ T6903]  ? do_raw_spin_lock+0x12b/0x2f0
[  730.591456][ T6903]  ? rcu_is_watching+0x15/0xb0
[  730.591492][ T6903]  wb_writeback+0x456/0xb70
[  730.591519][ T6903]  ? queue_io+0x1e1/0x4a0
[  730.591551][ T6903]  ? __pfx_wb_writeback+0x10/0x10
[  730.591571][ T6903]  ? do_raw_spin_lock+0x12b/0x2f0
[  730.591609][ T6903]  wb_workfn+0x414/0xf50
[  730.591632][ T6903]  ? look_up_lock_class+0x57/0x110
[  730.591671][ T6903]  ? __pfx_wb_workfn+0x10/0x10
[  730.591699][ T6903]  ? do_raw_spin_unlock+0xf5/0x210
[  730.591730][ T6903]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  730.591774][ T6903]  ? process_one_work+0x87c/0x1650
[  730.591797][ T6903]  process_one_work+0x949/0x1650
[  730.591834][ T6903]  ? irqentry_exit+0x570/0x620
[  730.591875][ T6903]  ? __pfx_process_one_work+0x10/0x10
[  730.591896][ T6903]  ? do_raw_spin_lock+0x12b/0x2f0
[  730.591935][ T6903]  worker_thread+0xb46/0x1140
[  730.591988][ T6903]  kthread+0x388/0x470
[  730.592008][ T6903]  ? __pfx_worker_thread+0x10/0x10
[  730.592030][ T6903]  ? __pfx_kthread+0x10/0x10
[  730.592051][ T6903]  ret_from_fork+0x51e/0xb90
[  730.592079][ T6903]  ? __pfx_ret_from_fork+0x10/0x10
[  730.592102][ T6903]  ? __switch_to+0xc7d/0x1450
[  730.592129][ T6903]  ? __pfx_kthread+0x10/0x10
[  730.592150][ T6903]  ret_from_fork_asm+0x1a/0x30
[  730.592187][ T6903]  </TASK>
[  730.592195][ T6903] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  731.176283][T27693] loop8: detected capacity change from 0 to 32768
[  731.370720][T27693] JBD2: Ignoring recovery information on journal
[  731.527552][T27693] ocfs2: Mounting device (7,8) on (node local, slot 0) with ordered data mode.
[  732.037215][T27346] ocfs2: Unmounting device (7,8) on (node local)
[  732.125712][T27717] loop7: detected capacity change from 0 to 512
[  732.153750][T27717] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  732.208162][T27717] EXT4-fs (loop7): 1 truncate cleaned up
[  732.214635][T27720] netlink: 564 bytes leftover after parsing attributes in process `syz.1.8621'.
[  732.217609][T27717] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  732.291007][T27720] netlink: 564 bytes leftover after parsing attributes in process `syz.1.8621'.
[  732.578377][T20496] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  732.655741][T18213] kernel write not supported for file /snd/seq (pid: 18213 comm: kworker/0:1)
[  733.134824][T27742] loop6: detected capacity change from 0 to 32768
[  733.163544][T27742] XFS (loop6): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  733.211535][T27742] XFS (loop6): Ending clean mount
[  733.347102][T19339] XFS (loop6): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  733.740623][T27775] bridge0: port 2(bridge_slave_1) entered disabled state
[  733.984148][T27790] loop7: detected capacity change from 0 to 256
[  734.013129][T27790] exFAT-fs (loop7): failed to load upcase table (idx : 0x00012366, chksum : 0x6ab66362, utbl_chksum : 0xe619d30d)
[  734.096868][T27794] Bluetooth: hci0: load_link_keys: expected 3 bytes, got 7 bytes
[  734.098684][T27790] exFAT-fs (loop7): error, in sector 161, dentry 16 should be unused, but 0xff
[  734.155191][T27790] exFAT-fs (loop7): Filesystem has been set read-only
[  734.508244][T22854] Bluetooth: hci3: command tx timeout
[  735.059254][T27808] loop8: detected capacity change from 0 to 32768
[  735.117673][T27808] XFS (loop8): Mounting V5 Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4
[  735.339933][T27808] XFS (loop8): Starting recovery (logdev: internal)
[  735.340253][T27837] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  735.416938][T27808] XFS (loop8): Ending recovery (logdev: internal)
[  735.498666][T27808] XFS (loop8): Corruption warning: Metadata has LSN (8192:64) ahead of current LSN (1:192). Please unmount and run xfs_repair (>= v4.3) to resolve.
[  735.548591][T27808] XFS (loop8): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xe0, xfs_bnobt block 0x4 
[  735.594719][T27808] XFS (loop8): Unmount and run xfs_repair
[  735.606555][T27808] XFS (loop8): First 128 bytes of corrupted metadata buffer:
[  735.613966][T27808] 00000000: 53 55 4d 59 00 00 00 02 ff ff ff ff ff ff ff ff  SUMY............
[  735.640084][T27808] 00000010: 00 00 00 00 00 00 00 04 00 00 20 00 00 00 00 40  .......... ....@
[  735.655965][T27808] 00000020: 9f 91 83 2a 3b 79 45 c3 9d 6d ed 0b c7 35 7f e4  ...*;yE..m...5..
[  735.664912][T27808] 00000030: 00 00 00 00 25 47 cc 81 00 00 00 0d 00 00 00 03  ....%G..........
[  735.694326][T27808] 00000040: 00 00 0e a8 00 00 11 58 00 00 00 00 00 00 00 00  .......X........
[  735.714575][T27808] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  735.740232][T27808] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  735.760668][T27808] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  735.761297][T27847] loop7: detected capacity change from 0 to 256
[  735.775880][T27808] XFS (loop8): metadata I/O error in "xfs_btree_read_buf_block+0x2b0/0x490" at daddr 0x4 len 4 error 74
[  735.827633][T27808] XFS (loop8): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x518/0x950 (fs/xfs/xfs_trans_buf.c:311).  Shutting down filesystem.
[  735.846678][T27845] nbd2: detected capacity change from 0 to 127
[  735.866870][T27808] XFS (loop8): Please unmount the filesystem and rectify the problem(s)
[  735.875362][T22854] block nbd2: Receive control failed (result -32)
[  735.891207][ T6931] block nbd2: Dead connection, failed to find a fallback
[  735.915088][ T6931] block nbd2: shutting down sockets
[  735.931538][ T6931] blk_print_req_error: 138 callbacks suppressed
[  735.931557][ T6931] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  735.957279][ T6931] buffer_io_error: 138 callbacks suppressed
[  735.957297][ T6931] Buffer I/O error on dev nbd2, logical block 0, async page read
[  735.971248][ T6931] I/O error, dev nbd2, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  735.987969][ T6931] Buffer I/O error on dev nbd2, logical block 1, async page read
[  735.998566][ T6931] I/O error, dev nbd2, sector 4 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  736.004558][T27849] loop3: detected capacity change from 0 to 256
[  736.015416][ T6931] Buffer I/O error on dev nbd2, logical block 2, async page read
[  736.026350][ T6931] I/O error, dev nbd2, sector 6 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  736.044396][T27851] loop7: detected capacity change from 0 to 256
[  736.053933][ T6931] Buffer I/O error on dev nbd2, logical block 3, async page read
[  736.068481][ T6931] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  736.077780][T27849] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  736.110906][T27346] XFS (loop8): Unmounting Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4
[  736.132091][T27851] FAT-fs (loop7): Directory bread(block 64) failed
[  736.141559][ T6931] Buffer I/O error on dev nbd2, logical block 0, async page read
[  736.176522][ T6931] I/O error, dev nbd2, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  736.186865][T27851] FAT-fs (loop7): Directory bread(block 65) failed
[  736.193486][T27851] FAT-fs (loop7): Directory bread(block 66) failed
[  736.207821][ T6931] Buffer I/O error on dev nbd2, logical block 1, async page read
[  736.226459][T27851] FAT-fs (loop7): Directory bread(block 67) failed
[  736.233307][T27851] FAT-fs (loop7): Directory bread(block 68) failed
[  736.240050][ T6931] I/O error, dev nbd2, sector 4 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  736.264927][ T6931] Buffer I/O error on dev nbd2, logical block 2, async page read
[  736.277977][T27851] FAT-fs (loop7): Directory bread(block 69) failed
[  736.284683][ T6931] I/O error, dev nbd2, sector 6 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  736.306197][T27851] FAT-fs (loop7): Directory bread(block 70) failed
[  736.313025][ T6931] Buffer I/O error on dev nbd2, logical block 3, async page read
[  736.324810][T27849] exFAT-fs (loop3): error, invalid access to FAT (entry 0xffffffff)
[  736.335386][T27851] FAT-fs (loop7): Directory bread(block 71) failed
[  736.352211][T27849] exFAT-fs (loop3): Filesystem has been set read-only
[  736.359315][ T6931] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  736.375743][T27851] FAT-fs (loop7): Directory bread(block 72) failed
[  736.382704][T27851] FAT-fs (loop7): Directory bread(block 73) failed
[  736.391333][ T6931] Buffer I/O error on dev nbd2, logical block 0, async page read
[  736.405628][ T6931] I/O error, dev nbd2, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  736.421749][ T6931] Buffer I/O error on dev nbd2, logical block 1, async page read
[  736.456261][ T6931] ldm_validate_partition_table(): Disk read failed.
[  736.463455][ T6931] Dev nbd2: unable to read RDB block 0
[  736.484416][ T6931]  nbd2: unable to read partition table
[  736.509485][ T6931] ldm_validate_partition_table(): Disk read failed.
[  736.554710][ T6931] Dev nbd2: unable to read RDB block 0
[  736.579438][ T6931]  nbd2: unable to read partition table
[  736.675418][T27858] loop3: detected capacity change from 0 to 256
[  736.692896][ T5900] IPVS: starting estimator thread 0...
[  736.732448][T27858] exfat: Deprecated parameter 'namecase'
[  736.783112][T27858] exfat: Deprecated parameter 'utf8'
[  736.795887][T27863] IPVS: using max 29 ests per chain, 69600 per kthread
[  736.832958][T27858] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  736.856546][T27868] netlink: 'syz.8.8677': attribute type 1 has an invalid length.
[  736.864331][T27868] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  737.481245][T27888] loop8: detected capacity change from 0 to 512
[  737.528193][T27888] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  737.608951][T27888] EXT4-fs (loop8): 1 truncate cleaned up
[  737.617825][T27888] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  737.830068][T27874] loop6: detected capacity change from 0 to 32768
[  737.876053][T27874] JBD2: Ignoring recovery information on journal
[  738.053364][T27886] loop7: detected capacity change from 0 to 40427
[  738.059764][T27874] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  738.087329][T27886] F2FS-fs (loop7): build fault injection rate: 174
[  738.124494][T27886] F2FS-fs (loop7): build fault injection type: 0x3bfe8c
[  738.153316][T27886] F2FS-fs (loop7): invalid crc value
[  738.220368][T27874] (syz.6.8680,27874,0):ocfs2_read_blocks_sync:112 ERROR: status = -12
[  738.273972][T27346] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  738.277877][T27874] (syz.6.8680,27874,0):update_backups:196 ERROR: status = -12
[  738.305021][T27879] loop3: detected capacity change from 0 to 40427
[  738.356417][T27879] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  738.364507][T27879] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  738.375586][T27886] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  738.397076][T27874] ocfs2: Failed to update super blocks on 7,6 during fs resize. This condition is not fatal, but fsck.ocfs2 should be run to fix it
[  738.429146][T27886] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  738.469044][T27879] F2FS-fs (loop3): invalid crc value
[  738.525317][T27886] F2FS-fs (loop7): Stopped filesystem due to reason: 0
[  738.751159][T27879] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  738.780108][T19339] ocfs2: Unmounting device (7,6) on (node local)
[  738.830359][T27879] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  738.869068][T27879] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  739.318975][T27902] loop8: detected capacity change from 0 to 32768
[  739.374966][T27902] JBD2: Ignoring recovery information on journal
[  739.637361][T27902] ocfs2: Mounting device (7,8) on (node local, slot 0) with ordered data mode.
[  739.727693][T27932] loop6: detected capacity change from 0 to 1024
[  739.734883][T27932] EXT4-fs: Ignoring removed orlov option
[  739.800992][T27934] (syz.8.8688,27934,1):ocfs2_get_block:141 get_block on system inode 0xffff888078c7a4f8 (65)
[  739.871786][T27932] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  739.959366][T27930] loop7: detected capacity change from 0 to 4096
[  740.008273][T27932] EXT4-fs (loop6): shut down requested (0)
[  740.195136][   T30] audit: type=1800 audit(2000000098.890:380): pid=27930 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.8690" name="file1" dev="loop7" ino=30 res=0 errno=0
[  740.267482][   T30] audit: type=1800 audit(2000000098.890:381): pid=27930 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.8690" name="file1" dev="loop7" ino=30 res=0 errno=0
[  740.297655][T27346] ocfs2: Unmounting device (7,8) on (node local)
[  740.327919][T19339] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  740.470694][ T5900] kernel write not supported for file /snd/seq (pid: 5900 comm: kworker/1:5)
[  740.646140][T27953] loop6: detected capacity change from 0 to 256
[  740.653490][T27953] exfat: Deprecated parameter 'namecase'
[  740.671679][T27953] exfat: Deprecated parameter 'namecase'
[  740.709925][T27953] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xd8f0c8a0, utbl_chksum : 0xe619d30d)
[  741.016319][T27969] netlink: 64 bytes leftover after parsing attributes in process `syz.1.8696'.
[  741.138144][T27976] netlink: 6 bytes leftover after parsing attributes in process `syz.6.8706'.
[  742.433968][T28000] loop7: detected capacity change from 0 to 32768
[  742.523579][T28000] XFS (loop7): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  742.543497][T28021] netlink: 'syz.1.8718': attribute type 1 has an invalid length.
[  742.589446][T28021] netlink: 'syz.1.8718': attribute type 2 has an invalid length.
[  742.648768][T28000] XFS (loop7): Ending clean mount
[  742.691713][T28000] XFS (loop7): Quotacheck needed: Please wait.
[  742.965461][T28040] loop8: detected capacity change from 0 to 2048
[  742.995417][T28000] XFS (loop7): Quotacheck: Done.
[  743.071726][T28044] gre1: entered promiscuous mode
[  743.128950][T28044] gre1: entered allmulticast mode
[  743.151974][T28040] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  743.176608][T28040] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  743.181370][T20496] XFS (loop7): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  743.253276][T28040] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.8723: bg 0: block 345: padding at end of block bitmap is not set
[  743.351759][T28040] EXT4-fs (loop8): Remounting filesystem read-only
[  743.371058][T28055] netlink: 44 bytes leftover after parsing attributes in process `syz.1.8727'.
[  743.380312][T28040] fs-verity (loop8, inode 13): Error -117 writing Merkle tree block 0
[  743.381014][T28055] netem: unknown loss type 12
[  743.425635][T28055] netem: change failed
[  743.436219][T28040] fs-verity (loop8, inode 13): Error -117 building Merkle tree
[  743.616228][T27346] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  744.113978][T28053] loop6: detected capacity change from 0 to 40427
[  744.180943][T28053] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  744.205821][T28053] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  744.274784][T28053] F2FS-fs (loop6): invalid crc value
[  744.309777][T28084] loop8: detected capacity change from 0 to 256
[  744.356954][T28084] exfat: Deprecated parameter 'utf8'
[  744.399621][T28084] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  744.497780][   T30] audit: type=1800 audit(2000000103.200:382): pid=28084 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.8735" name="file1" dev="loop8" ino=1048956 res=0 errno=0
[  744.551745][T28053] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  744.605054][T28053] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  744.646291][T28053] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  744.768309][   T30] audit: type=1800 audit(2000000103.470:383): pid=28053 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.8725" name="bus" dev="loop6" ino=10 res=0 errno=0
[  744.823099][T28101] loop8: detected capacity change from 0 to 2048
[  744.933266][T28101] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  744.975492][T28101] ext4 filesystem being mounted at /22/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  745.037209][   T30] audit: type=1800 audit(2000000103.740:384): pid=28101 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.8742" name="file1" dev="loop8" ino=15 res=0 errno=0
[  745.488675][T28121] netlink: 'syz.7.8751': attribute type 1 has an invalid length.
[  745.499324][T28119] program syz.1.8749 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  745.516890][T28121] netlink: 'syz.7.8751': attribute type 2 has an invalid length.
[  745.558383][T28121] netlink: 'syz.7.8751': attribute type 1 has an invalid length.
[  745.586615][T28121] netlink: 'syz.7.8751': attribute type 3 has an invalid length.
[  745.594378][T28121] netlink: 4 bytes leftover after parsing attributes in process `syz.7.8751'.
[  745.792242][T28133] loop7: detected capacity change from 0 to 512
[  745.848977][T28129] loop3: detected capacity change from 0 to 2048
[  745.898729][T28133] EXT4-fs error (device loop7): ext4_orphan_get:1391: inode #15: comm syz.7.8755: iget: bad i_size value: 38620345925642
[  745.926954][T28137] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  745.958664][T28133] loop7: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  745.965824][    C1] EXT4-fs (loop7): error count since last fsck: 1
[  745.981484][    C1] EXT4-fs (loop7): initial error at time 2000000104: ext4_orphan_get:1391: inode 15
[  745.991049][    C1] EXT4-fs (loop7): last error at time 2000000104: ext4_orphan_get:1391: inode 15
[  746.002216][T28133] EXT4-fs error (device loop7): ext4_orphan_get:1396: comm syz.7.8755: couldn't read orphan inode 15 (err -117)
[  746.025934][T28133] loop7: lost filesystem error report for type 5 error -117
[  746.028316][T28133] EXT4-fs (loop7): mounted filesystem 00000000-0000-00a1-0000-000000000000 r/w without journal. Quota mode: writeback.
[  746.120157][T27346] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  746.220022][   T13] EXT4-fs error (device loop7): ext4_validate_block_bitmap:432: comm kworker/u8:1: bg 0: block 5: invalid block bitmap
[  746.252008][   T13] EXT4-fs (loop7): Delayed block allocation failed for inode 18 at logical offset 131075 with max blocks 1 with error 28
[  746.306272][   T13] EXT4-fs (loop7): This should not happen!! Data will be lost
[  746.306272][   T13] 
[  746.346377][   T13] EXT4-fs (loop7): Total free blocks count 0
[  746.352713][T28141] ªªªªªª: renamed from vlan0 (while UP)
[  746.363713][T28143] loop3: detected capacity change from 0 to 256
[  746.367355][   T13] EXT4-fs (loop7): Free/Dirty block details
[  746.401099][   T13] EXT4-fs (loop7): free_blocks=0
[  746.411927][T28143] FAT-fs (loop3): Directory bread(block 64) failed
[  746.420855][T28143] FAT-fs (loop3): Directory bread(block 65) failed
[  746.426052][   T13] EXT4-fs (loop7): dirty_blocks=1
[  746.438029][T28143] FAT-fs (loop3): Directory bread(block 66) failed
[  746.442845][   T13] EXT4-fs (loop7): Block reservation details
[  746.444709][T28143] FAT-fs (loop3): Directory bread(block 67) failed
[  746.470107][   T13] EXT4-fs (loop7): i_reserved_data_blocks=1
[  746.493310][T28143] FAT-fs (loop3): Directory bread(block 68) failed
[  746.506539][T28143] FAT-fs (loop3): Directory bread(block 69) failed
[  746.508212][T20496] EXT4-fs (loop7): unmounting filesystem 00000000-0000-00a1-0000-000000000000.
[  746.546100][T28143] FAT-fs (loop3): Directory bread(block 70) failed
[  746.586497][T28143] FAT-fs (loop3): Directory bread(block 71) failed
[  746.601531][T28143] FAT-fs (loop3): Directory bread(block 72) failed
[  746.609059][T28143] FAT-fs (loop3): Directory bread(block 73) failed
[  746.721816][T28150] netlink: 12 bytes leftover after parsing attributes in process `syz.7.8759'.
[  746.756248][T28150] netlink: 28 bytes leftover after parsing attributes in process `syz.7.8759'.
[  746.765608][T28150] netlink: 12 bytes leftover after parsing attributes in process `syz.7.8759'.
[  746.800045][T28150] netlink: 28 bytes leftover after parsing attributes in process `syz.7.8759'.
[  746.826864][T28150] netlink: 'syz.7.8759': attribute type 6 has an invalid length.
[  747.162304][ T1308] ieee802154 phy0 wpan0: encryption failed: -22
[  747.264962][T28163] loop7: detected capacity change from 0 to 256
[  747.360994][T28163] exFAT-fs (loop7): failed to test first cluster bit of root dir(5)
[  747.378308][T28153] loop8: detected capacity change from 0 to 32768
[  747.452168][T28153] XFS (loop8): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  747.542669][T28153] XFS (loop8): Ending clean mount
[  747.613220][T28153] XFS (loop8): Quotacheck needed: Please wait.
[  747.837936][T28153] XFS (loop8): Quotacheck: Done.
[  747.903084][T27346] XFS (loop8): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  747.955297][T28188] Attempt to restore checkpoint with obsolete wellknown handles
[  748.094472][T28190] loop6: detected capacity change from 0 to 512
[  748.117553][T28190] EXT4-fs (loop6): Test dummy encryption mode enabled
[  748.149325][T28190] EXT4-fs (loop6): warning: mounting unchecked fs, running e2fsck is recommended
[  748.187679][T28190] EXT4-fs (loop6): Errors on filesystem, clearing orphan list.
[  748.212871][T28190] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  748.381210][T19339] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  749.514506][T28229] loop3: detected capacity change from 0 to 40427
[  749.537152][T28229] F2FS-fs (loop3): Invalid segment/section count (31, 24 x 1)
[  749.545175][T28229] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  749.557431][T28229] F2FS-fs (loop3): invalid crc value
[  749.568004][T28229] F2FS-fs (loop3): Ignore s_resuid=0, s_resgid=60928 w/o reserve_root and reserve_node
[  749.738416][T28229] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  749.751849][T28229] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[  749.759321][T28229] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  749.800596][   T30] audit: type=1800 audit(2000000108.500:385): pid=28229 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.8792" name="file1" dev="loop3" ino=10 res=0 errno=0
[  749.847597][T28229] syz.3.8792: attempt to access beyond end of device
[  749.847597][T28229] loop3: rw=2049, sector=45096, nr_sectors = 968 limit=40427
[  749.923936][ T5823] syz-executor: attempt to access beyond end of device
[  749.923936][ T5823] loop3: rw=2049, sector=46064, nr_sectors = 8 limit=40427
[  749.947077][ T5823] CPU: 0 UID: 0 PID: 5823 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  749.947106][ T5823] Tainted: [L]=SOFTLOCKUP
[  749.947113][ T5823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  749.947124][ T5823] Call Trace:
[  749.947132][ T5823]  <TASK>
[  749.947141][ T5823]  dump_stack_lvl+0xe8/0x150
[  749.947172][ T5823]  f2fs_handle_critical_error+0x37c/0x540
[  749.947216][ T5823]  f2fs_write_end_io+0xcdb/0xff0
[  749.947255][ T5823]  __submit_merged_bio+0x256/0x700
[  749.947288][ T5823]  __submit_merged_write_cond+0x3c9/0x4e0
[  749.947323][ T5823]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  749.947375][ T5823]  f2fs_write_data_pages+0x2975/0x35e0
[  749.947434][ T5823]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  749.947469][ T5823]  ? do_raw_spin_lock+0x12b/0x2f0
[  749.947518][ T5823]  ? do_raw_spin_unlock+0xf5/0x210
[  749.947543][ T5823]  ? free_unref_folios+0x15ad/0x16d0
[  749.947585][ T5823]  ? __lock_acquire+0x6b5/0x2cf0
[  749.947634][ T5823]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  749.947654][ T5823]  do_writepages+0x32e/0x550
[  749.947691][ T5823]  ? do_raw_spin_unlock+0xf5/0x210
[  749.947716][ T5823]  filemap_fdatawrite+0x1e9/0x2f0
[  749.947742][ T5823]  ? look_up_lock_class+0x57/0x110
[  749.947767][ T5823]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  749.947843][ T5823]  ? do_raw_spin_unlock+0xf5/0x210
[  749.947868][ T5823]  f2fs_sync_dirty_inodes+0x30e/0x860
[  749.947905][ T5823]  f2fs_write_checkpoint+0x9df/0x26a0
[  749.947962][ T5823]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  749.948043][ T5823]  kill_f2fs_super+0x314/0x720
[  749.948069][ T5823]  ? __pfx_kill_f2fs_super+0x10/0x10
[  749.948103][ T5823]  ? lockdep_hardirqs_on+0x7a/0x110
[  749.948141][ T5823]  deactivate_locked_super+0xbc/0x130
[  749.948170][ T5823]  cleanup_mnt+0x437/0x4d0
[  749.948195][ T5823]  ? _raw_spin_unlock_irq+0x23/0x50
[  749.948222][ T5823]  task_work_run+0x1d9/0x270
[  749.948246][ T5823]  ? __pfx_task_work_run+0x10/0x10
[  749.948280][ T5823]  exit_to_user_mode_loop+0xed/0x480
[  749.948300][ T5823]  ? rcu_is_watching+0x15/0xb0
[  749.948328][ T5823]  do_syscall_64+0x32d/0xf80
[  749.948348][ T5823]  ? trace_irq_disable+0x3b/0x150
[  749.948364][ T5823]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  749.948381][ T5823]  ? clear_bhb_loop+0x40/0x90
[  749.948404][ T5823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  749.948423][ T5823] RIP: 0033:0x7fe253b9d897
[  749.948441][ T5823] Code: a2 c7 05 5c ee 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  749.948456][ T5823] RSP: 002b:00007fff7e4b7cb8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  749.948476][ T5823] RAX: 0000000000000000 RBX: 00007fe253c31ef0 RCX: 00007fe253b9d897
[  749.948489][ T5823] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff7e4b7d70
[  749.948500][ T5823] RBP: 00007fff7e4b7d70 R08: 00007fff7e4b8d70 R09: 00000000ffffffff
[  749.948512][ T5823] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff7e4b8e00
[  749.948524][ T5823] R13: 00007fe253c31ef0 R14: 00000000000b7175 R15: 00007fff7e4b8e40
[  749.948557][ T5823]  </TASK>
[  749.948565][ T5823] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  750.456524][T28263] netlink: 'syz.8.8806': attribute type 8 has an invalid length.
[  750.476828][T28263] sch_fq: defrate 0 ignored.
[  750.573194][    C1] vcan0: j1939_tp_rxtimer: 0xffff888033939000: rx timeout, send abort
[  750.586932][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888033939000: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  750.770670][T28274] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  751.063270][T28285] loop3: detected capacity change from 0 to 2048
[  751.090020][T28285] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  751.357358][T28291] nbd3: detected capacity change from 0 to 127
[  751.380369][T22854] block nbd3: Receive control failed (result -104)
[  751.620849][   T30] audit: type=1800 audit(2000000110.320:386): pid=28297 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.8819" name="file1" dev="tmpfs" ino=9758 res=0 errno=0
[  752.181162][ T6909] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  752.206705][ T6909] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  752.216319][ T6909] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  752.225119][ T6909] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  752.938275][T28351] mkiss: ax0: crc mode is auto.
[  753.184085][T28359] vcan0: tx address claim with dlc 0
[  753.602035][T28369] loop7: detected capacity change from 0 to 1024
[  753.746468][ T6909] hfsplus: b-tree write err: -5, ino 25
[  753.764573][ T6909] hfsplus: b-tree write err: -5, ino 4
[  753.780860][ T6909] hfsplus: b-tree write err: -5, ino 2
[  753.789566][T28362] loop3: detected capacity change from 0 to 40427
[  753.841211][T28362] F2FS-fs (loop3): invalid crc value
[  753.921036][T28374] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  754.020356][T28362] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  754.067323][T28362] F2FS-fs (loop3): Start checkpoint disabled!
[  754.096566][T28362] F2FS-fs (loop3): f2fs_disable_checkpoint() finish, err:0
[  754.117610][T28362] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  754.171473][T28362] syz.3.8847: attempt to access beyond end of device
[  754.171473][T28362] loop3: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  754.374587][ T6909] kworker/u8:13: attempt to access beyond end of device
[  754.374587][ T6909] loop3: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  754.423775][ T6909] CPU: 0 UID: 0 PID: 6909 Comm: kworker/u8:13 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  754.423809][ T6909] Tainted: [L]=SOFTLOCKUP
[  754.423816][ T6909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  754.423828][ T6909] Workqueue: writeback wb_workfn (flush-7:3)
[  754.423859][ T6909] Call Trace:
[  754.423866][ T6909]  <TASK>
[  754.423876][ T6909]  dump_stack_lvl+0xe8/0x150
[  754.423905][ T6909]  f2fs_handle_critical_error+0x37c/0x540
[  754.423945][ T6909]  f2fs_write_end_io+0xcdb/0xff0
[  754.424002][ T6909]  __submit_merged_bio+0x256/0x700
[  754.424035][ T6909]  __submit_merged_write_cond+0x3c9/0x4e0
[  754.424068][ T6909]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  754.424118][ T6909]  f2fs_write_data_pages+0x2975/0x35e0
[  754.424176][ T6909]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  754.424210][ T6909]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  754.424267][ T6909]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  754.424317][ T6909]  ? __lock_acquire+0x6b5/0x2cf0
[  754.424356][ T6909]  ? __pfx_f2fs_inode_chksum_set+0x10/0x10
[  754.424380][ T6909]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  754.424400][ T6909]  do_writepages+0x32e/0x550
[  754.424432][ T6909]  ? reacquire_held_locks+0x104/0x190
[  754.424456][ T6909]  ? writeback_sb_inodes+0x477/0x1a20
[  754.424486][ T6909]  __writeback_single_inode+0x133/0x11a0
[  754.424511][ T6909]  ? do_raw_spin_unlock+0xf5/0x210
[  754.424535][ T6909]  writeback_sb_inodes+0x992/0x1a20
[  754.424580][ T6909]  ? __lock_acquire+0x6b5/0x2cf0
[  754.424613][ T6909]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  754.424634][ T6909]  ? do_raw_spin_lock+0x12b/0x2f0
[  754.424698][ T6909]  ? rcu_is_watching+0x15/0xb0
[  754.424733][ T6909]  wb_writeback+0x456/0xb70
[  754.424755][ T6909]  ? queue_io+0x1e1/0x4a0
[  754.424785][ T6909]  ? __pfx_wb_writeback+0x10/0x10
[  754.424805][ T6909]  ? do_raw_spin_lock+0x12b/0x2f0
[  754.424842][ T6909]  wb_workfn+0x414/0xf50
[  754.424865][ T6909]  ? look_up_lock_class+0x57/0x110
[  754.424905][ T6909]  ? __pfx_wb_workfn+0x10/0x10
[  754.424929][ T6909]  ? do_raw_spin_lock+0x12b/0x2f0
[  754.424952][ T6909]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  754.425002][ T6909]  ? process_one_work+0x87c/0x1650
[  754.425025][ T6909]  process_one_work+0x949/0x1650
[  754.425073][ T6909]  ? __pfx_process_one_work+0x10/0x10
[  754.425093][ T6909]  ? do_raw_spin_lock+0x12b/0x2f0
[  754.425132][ T6909]  worker_thread+0xb46/0x1140
[  754.425185][ T6909]  kthread+0x388/0x470
[  754.425205][ T6909]  ? __pfx_worker_thread+0x10/0x10
[  754.425226][ T6909]  ? __pfx_kthread+0x10/0x10
[  754.425246][ T6909]  ret_from_fork+0x51e/0xb90
[  754.425274][ T6909]  ? __pfx_ret_from_fork+0x10/0x10
[  754.425296][ T6909]  ? __switch_to+0xc7d/0x1450
[  754.425323][ T6909]  ? __pfx_kthread+0x10/0x10
[  754.425343][ T6909]  ret_from_fork_asm+0x1a/0x30
[  754.425381][ T6909]  </TASK>
[  754.491027][ T6909] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  754.945401][T28399] loop8: detected capacity change from 0 to 256
[  754.963849][T28399] exfat: Deprecated parameter 'namecase'
[  754.982996][T28399] exfat: Deprecated parameter 'utf8'
[  755.017211][T28399] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[  755.270516][T28386] loop7: detected capacity change from 0 to 32768
[  755.295014][T28386] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.8858 (28386)
[  755.356065][T28386] BTRFS info (device loop7): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  755.372344][T28386] BTRFS info (device loop7): using crc32c checksum algorithm
[  755.472980][T28411] kvm: kvm [28410]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x40000086) = 0x0
[  755.474848][T28386] BTRFS info (device loop7): enabling ssd optimizations
[  755.521508][T28386] BTRFS info (device loop7): turning on async discard
[  755.532947][T28386] BTRFS info (device loop7): enabling free space tree
[  755.647826][   T24] usb 2-1: new high-speed USB device number 49 using dummy_hcd
[  755.836163][   T24] usb 2-1: Using ep0 maxpacket: 32
[  755.849839][   T24] usb 2-1: New USB device found, idVendor=2304, idProduct=0222, bcdDevice=77.3f
[  755.900216][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  755.932350][   T24] usb 2-1: Product: syz
[  755.945742][   T24] usb 2-1: Manufacturer: syz
[  755.956195][   T24] usb 2-1: SerialNumber: syz
[  755.979099][   T24] usb 2-1: config 0 descriptor??
[  756.009101][   T24] dvb-usb: found a 'Pinnacle 450e DVB-S USB2.0' in warm state.
[  756.051718][   T24] dvb-usb: bulk message failed: -22 (4/0)
[  756.058034][   T24] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0)
[  756.066713][T20496] BTRFS info (device loop7): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  756.068700][   T24] dvb-usb: bulk message failed: -22 (5/0)
[  756.108157][   T24] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0)
[  756.198871][   T24] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  756.214071][   T24] dvbdev: DVB: registering new adapter (Pinnacle 450e DVB-S USB2.0)
[  756.224503][   T24] usb 2-1: media controller created
[  756.245422][T28414] dvb-usb: bulk message failed: -22 (7/0)
[  756.261803][   T24] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  756.270348][T28414] ttusb2: there might have been an error during control message transfer. (rlen = 3, was 0)
[  756.300590][T28414] ttusb2: i2c transfer failed.
[  756.338311][   T24] usb 2-1: selecting invalid altsetting 3
[  756.374852][   T24] ttusb2: set interface to alts=3 failed
[  756.465324][T28454] loop6: detected capacity change from 0 to 512
[  756.486086][    T9] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  756.554398][   T24] DVB: Unable to find symbol tda10086_attach()
[  756.571277][T28456] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  756.586263][   T24] dvb-usb: no frontend was attached by 'Pinnacle 450e DVB-S USB2.0'
[  756.615251][   T24] dvb-usb: bulk message failed: -22 (4/0)
[  756.635558][   T24] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0)
[  756.678706][T28456] overlayfs: overlapping lowerdir path
[  756.686455][   T24] dvb-usb: bulk message failed: -22 (5/0)
[  756.692615][   T24] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0)
[  756.713238][    T9] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  756.739225][    T9] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  756.740030][   T24] dvb-usb: Pinnacle 450e DVB-S USB2.0 successfully initialized and connected.
[  756.795130][   T24] usb 2-1: USB disconnect, device number 49
[  756.832361][    T9] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  756.878283][    T9] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  756.938437][   T24] dvb-usb: Pinnacle 450e DVB-S USB2.0 successfully deinitialized and disconnected.
[  756.988941][T28447] raw-gadget.1 gadget.8: fail, usb_ep_enable returned -22
[  757.019893][    T9] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  757.151179][T28463] loop6: detected capacity change from 0 to 256
[  757.297308][T28463] FAT-fs (loop6): Directory bread(block 64) failed
[  757.304698][T28463] FAT-fs (loop6): Directory bread(block 65) failed
[  757.339767][T28463] FAT-fs (loop6): Directory bread(block 66) failed
[  757.380926][    T9] usb 9-1: USB disconnect, device number 2
[  757.425979][T28463] FAT-fs (loop6): Directory bread(block 67) failed
[  757.445539][T28452] loop7: detected capacity change from 0 to 32768
[  757.461548][T28463] FAT-fs (loop6): Directory bread(block 68) failed
[  757.479129][T28463] FAT-fs (loop6): Directory bread(block 69) failed
[  757.506488][T28452] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.8876 (28452)
[  757.520269][T28463] FAT-fs (loop6): Directory bread(block 70) failed
[  757.536563][T28463] FAT-fs (loop6): Directory bread(block 71) failed
[  757.543264][T28463] FAT-fs (loop6): Directory bread(block 72) failed
[  757.579203][T28463] FAT-fs (loop6): Directory bread(block 73) failed
[  757.588320][T28452] BTRFS info (device loop7): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  757.636420][T28452] BTRFS info (device loop7): using crc32c checksum algorithm
[  757.643864][T28452] BTRFS warning (device loop7): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  757.882967][T28452] BTRFS info (device loop7): rebuilding free space tree
[  757.976021][T28452] BTRFS info (device loop7): disabling free space tree
[  758.000713][T28452] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  758.064388][T28452] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  758.147876][T28452] BTRFS info (device loop7): enabling ssd optimizations
[  758.175905][T28452] BTRFS info (device loop7): enabling disk space caching
[  758.178295][T28497] loop6: detected capacity change from 0 to 512
[  758.198601][T28452] BTRFS info (device loop7): force clearing of disk cache
[  758.221112][T28497] EXT4-fs: Ignoring removed orlov option
[  758.235837][T28452] BTRFS info (device loop7): force zstd compression, level 3
[  758.288990][T28497] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  758.331233][T28497] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[  758.376213][T28497] EXT4-fs error (device loop6): ext4_iget_extra_inode:5025: inode #15: comm syz.6.8893: corrupted in-inode xattr: e_value size too large
[  758.390484][T28497] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  758.390991][T28497] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.8893: couldn't read orphan inode 15 (err -117)
[  758.400206][    C0] EXT4-fs (loop6): error count since last fsck: 1
[  758.400228][    C0] EXT4-fs (loop6): initial error at time 2000000117: ext4_iget_extra_inode:5025: inode 15
[  758.400254][    C0] EXT4-fs (loop6): last error at time 2000000117: ext4_iget_extra_inode:5025: inode 15
[  758.441059][T28497] loop6: lost filesystem error report for type 5 error -117
[  758.444638][T28497] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  758.559154][T19339] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  758.608238][T20496] BTRFS info (device loop7): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  758.619973][T28505] loop8: detected capacity change from 0 to 2048
[  758.725921][T28505] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  759.195927][T19385] usb 4-1: new high-speed USB device number 60 using dummy_hcd
[  759.402998][T19385] usb 4-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[  759.443558][T19385] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  759.466827][T19385] usb 4-1: Product: syz
[  759.471024][T19385] usb 4-1: Manufacturer: syz
[  759.481299][T28524] netlink: 71 bytes leftover after parsing attributes in process `syz.7.8905'.
[  759.490645][T28522] loop8: detected capacity change from 0 to 4096
[  759.523154][T19385] usb 4-1: SerialNumber: syz
[  759.775552][T28532] smc: net device  applied user defined pnetid SYZ2
[  759.816450][T19385] rtl8150 4-1:1.0: couldn't reset the device
[  759.833124][T19385] rtl8150 4-1:1.0: probe with driver rtl8150 failed with error -5
[  759.844113][T28533] smc: net device  erased user defined pnetid SYZ2
[  759.873717][T19385] usb 4-1: USB disconnect, device number 60
[  760.050963][T28537] netlink: 'syz.7.8910': attribute type 10 has an invalid length.
[  760.238697][T28529] loop6: detected capacity change from 0 to 32768
[  760.266106][    C1] hrtimer: interrupt took 43882 ns
[  760.302113][T28529] JBD2: Ignoring recovery information on journal
[  760.398517][T28547] kvm: kvm [28546]: vcpu3, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010002) = 0xffffff
[  760.466884][T28529] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  760.473746][T28552] loop7: detected capacity change from 0 to 256
[  760.528903][T28552] exFAT-fs (loop7): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009ea0b8, utbl_chksum : 0x7319d30d)
[  760.643096][T28529] OCFS2: ERROR (device loop6): int ocfs2_xattr_find_entry(struct inode *, int, const char *, struct ocfs2_xattr_search *): corrupted xattr entries
[  760.643341][T28529] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  760.685992][  T805] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  760.734265][T28555] OCFS2: ERROR (device loop6): int ocfs2_xattr_find_entry(struct inode *, int, const char *, struct ocfs2_xattr_search *): corrupted xattr entries
[  760.734299][T28555] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  760.763152][T28529] OCFS2: File system is now read-only.
[  760.767572][T28555] OCFS2: File system is now read-only.
[  760.853781][  T805] usb 9-1: Using ep0 maxpacket: 8
[  760.878856][  T805] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  760.897319][  T805] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  760.932404][  T805] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  760.965931][  T805] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  761.029685][  T805] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  761.062218][T19339] ocfs2: Unmounting device (7,6) on (node local)
[  761.072062][  T805] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  761.377697][  T805] usb 9-1: GET_CAPABILITIES returned 0
[  761.417080][  T805] usbtmc 9-1:16.0: can't read capabilities
[  761.586265][    T9] usb 9-1: USB disconnect, device number 3
[  761.709169][T28561] loop7: detected capacity change from 0 to 131072
[  761.722949][T28561] F2FS-fs (loop7): QUOTA feature is enabled, so ignore qf_name
[  761.738364][T28561] F2FS-fs (loop7): invalid crc value
[  761.806194][T28561] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  761.825166][T28561] F2FS-fs (loop7): Mounted with checkpoint version = 753bd00b
[  762.465473][T28603] loop3: detected capacity change from 0 to 1024
[  762.489667][T28577] loop6: detected capacity change from 0 to 32768
[  762.659261][T28603] hfsplus: inconsistency in B*Tree (1,0,1,0,2)
[  762.699097][  T119] ERROR: (device loop6): diFree: numfree > numinos
[  762.699097][  T119] 
[  762.728336][  T119] ERROR: (device loop6): remounting filesystem as read-only
[  763.015510][T28617] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8947'.
[  763.609460][T28640] loop7: detected capacity change from 0 to 1024
[  763.646857][T28640] EXT4-fs: inline encryption not supported
[  763.652766][T28640] EXT4-fs: Ignoring removed nobh option
[  763.679274][T28640] EXT4-fs: Ignoring removed bh option
[  763.720850][T28640] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  763.790427][T20496] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  764.361033][T28667] loop6: detected capacity change from 0 to 1024
[  764.377832][T28669] overlay: Unknown parameter '32
[  764.377832][T28669] time
[  764.377832][T28669] string
[  764.377832][T28669] statistic
[  764.377832][T28669] state
[  764.377832][T28669] realm
[  764.377832][T28669] rateest
[  764.377832][T28669] quota
[  764.377832][T28669] pkttype
[  764.377832][T28669] physdev
[  764.377832][T28669] cgroup
[  764.377832][T28669] cgroup
[  764.377832][T28669] cgroup
[  764.377832][T28669] owner
[  764.377832][T28669] nfacct
[  764.377832][T28669] nfacct
[  764.377832][T28669] mac
[  764.377832][T28669] limit
[  764.377832][T28669] ipvs
[  764.377832][T28669] helper
[  764.377832][T28669] devgroup
[  764.377832][T28669] cpu
[  764.377832][T28669] conntrack
[  764.377832][T28669] conntrack
[  764.377832][T28669] conntrack
[  764.377832][T28669] connlabel
[  764.377832][T28669] connbytes
[  764.377832][T28669] comment
[  764.377832][T28669] bpf
[  764.377832][T28669] bpf
[  764.377832][T28669] connmark
[  764.377832][T28669] mark
[  764.377832][T28669] rpfilter
[  764.377832][T28669] ah
[  764.377832][T28669] tcpmss
[  764.377832][T28669] socket
[  764.377832][T28669] socket
[  764.377832][T28669] socket
[  764.377832][T28669] socket
[  764.377832][T28669] sctp
[  764.377832][T28669] recent
[  764.377832][T28669] recent
[  764.377832][T28669] policy
[  764.377832][T28669] osf
[  764.377832][T28669] multiport
[  764.377832][T28669] length
[  764.377832][T28669] l2tp
[  764.377832][T28669] iprange
[  764.377832][T28669] ipcomp
[  764.377832][T28669] ttl
[  764.377832][T28669] hashlimit
[  764.377832][T28669] hashlimit
[  764.377832][T28669] hashlimit
[  764.377832][T28669] esp
[  764.377832][T28669] ecn
[  764.377832][T28669] tos
[  764.377832][T28669] dscp
[  764.377832][T28669] dccp
[  764.377832][T28669] connlimit
[  764.377832][T28669] cluster
[  764.377832][T28669] addrtype
[  764.377832][T28669] addrtype
[  764.377832][T28669] set
[  764.377832][T28669] set
[  764.377832][T28669] set
[  764.377832][T28669] set
[  764.377832][T28669] set
[  764.377832][T28669] icmp
[  764.428532][T28672] netlink: 678 bytes leftover after parsing attributes in process `syz.8.8971'.
[  764.668827][T28667] hfsplus: bad catalog folder entry
[  765.028773][   T24] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  765.064719][T28688] x_tables: ip6_tables: CLASSIFY target: used from hooks PREROUTING, but only usable from FORWARD/OUTPUT/POSTROUTING
[  765.187663][   T24] usb 9-1: Using ep0 maxpacket: 32
[  765.198800][   T24] usb 9-1: config 0 has an invalid interface number: 85 but max is 0
[  765.219436][   T24] usb 9-1: config 0 has no interface number 0
[  765.235891][   T24] usb 9-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  765.306915][   T24] usb 9-1: config 0 interface 85 has no altsetting 0
[  765.320134][   T24] usb 9-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  765.336798][   T24] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  765.352310][   T24] usb 9-1: Product: syz
[  765.359413][   T24] usb 9-1: Manufacturer: syz
[  765.364043][   T24] usb 9-1: SerialNumber: syz
[  765.413494][   T24] usb 9-1: config 0 descriptor??
[  765.896422][   T30] audit: type=1800 audit(2000000124.600:387): pid=28710 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.8989" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="tmpfs" ino=3371 res=0 errno=0
[  766.188363][   T24] appletouch 9-1:0.85: Geyser mode initialized.
[  766.235956][   T24] input: appletouch as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.85/input/input44
[  766.279560][    C0] appletouch 9-1:0.85: appletouch: OVERFLOW with data length 64, actual length is 64
[  766.483830][  T805] usb 9-1: USB disconnect, device number 4
[  766.489832][    C0] appletouch 9-1:0.85: atp_complete: usb_submit_urb failed with result -19
[  766.514358][T28733] loop7: detected capacity change from 0 to 64
[  766.674345][  T805] appletouch 9-1:0.85: input: appletouch disconnected
[  766.921553][T28754] loop7: detected capacity change from 0 to 512
[  766.947161][T28754] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  767.101591][T20496] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  767.160739][    T9] usb 4-1: new high-speed USB device number 61 using dummy_hcd
[  767.247702][T28763] nbd: socks must be embedded in a SOCK_ITEM attr
[  767.256586][T28763] block nbd4: shutting down sockets
[  767.305210][T28769] netlink: 48 bytes leftover after parsing attributes in process `syz.1.9016'.
[  767.352021][    T9] usb 4-1: config 0 has no interfaces?
[  767.365885][    T9] usb 4-1: New USB device found, idVendor=5bd3, idProduct=317c, bcdDevice= 4.5e
[  767.395453][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  767.417358][    T9] usb 4-1: config 0 descriptor??
[  768.283429][T28802] loop7: detected capacity change from 0 to 1024
[  768.350185][   T30] audit: type=1800 audit(2000000127.050:388): pid=28802 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.9030" name="file1" dev="loop7" ino=20 res=0 errno=0
[  768.429983][   T30] audit: type=1326 audit(2000000127.080:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28806 comm="syz.1.9034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f022f59c629 code=0x7ffc0000
[  768.543134][   T30] audit: type=1326 audit(2000000127.080:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28806 comm="syz.1.9034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f022f59c629 code=0x7ffc0000
[  768.621378][   T30] audit: type=1326 audit(2000000127.080:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28806 comm="syz.1.9034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f022f59c629 code=0x7ffc0000
[  768.655108][   T30] audit: type=1326 audit(2000000127.080:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28806 comm="syz.1.9034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f022f59c629 code=0x7ffc0000
[  768.679335][   T30] audit: type=1326 audit(2000000127.080:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28806 comm="syz.1.9034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7f022f59c629 code=0x7ffc0000
[  768.724195][   T30] audit: type=1326 audit(2000000127.080:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28806 comm="syz.1.9034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f022f59c629 code=0x7ffc0000
[  768.775506][   T30] audit: type=1326 audit(2000000127.080:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28806 comm="syz.1.9034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f022f59c629 code=0x7ffc0000
[  768.843652][   T30] audit: type=1326 audit(2000000127.080:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28806 comm="syz.1.9034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=438 compat=0 ip=0x7f022f59c629 code=0x7ffc0000
[  770.021099][T28843] netlink: 76 bytes leftover after parsing attributes in process `syz.1.9048'.
[  770.056207][T28843] netlink: 76 bytes leftover after parsing attributes in process `syz.1.9048'.
[  770.236280][T28847] sp0: Synchronizing with TNC
[  770.385309][   T24] usb 4-1: USB disconnect, device number 61
[  770.662542][T28837] loop7: detected capacity change from 0 to 40427
[  770.721899][T28837] F2FS-fs (loop7): invalid crc value
[  770.939905][T28837] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  770.969974][T28837] F2FS-fs (loop7): Start checkpoint disabled!
[  770.997026][T28837] F2FS-fs (loop7): f2fs_disable_checkpoint() finish, err:0
[  771.071705][T28837] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e6
[  771.167731][T28837] syz.7.9045: attempt to access beyond end of device
[  771.167731][T28837] loop7: rw=2049, sector=77824, nr_sectors = 136 limit=40427
[  771.300387][   T13] kworker/u8:1: attempt to access beyond end of device
[  771.300387][   T13] loop7: rw=1, sector=45096, nr_sectors = 16 limit=40427
[  771.328820][   T13] kworker/u8:1: attempt to access beyond end of device
[  771.328820][   T13] loop7: rw=2049, sector=45112, nr_sectors = 8 limit=40427
[  771.356200][   T13] CPU: 1 UID: 0 PID: 13 Comm: kworker/u8:1 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  771.356231][   T13] Tainted: [L]=SOFTLOCKUP
[  771.356238][   T13] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  771.356249][   T13] Workqueue: writeback wb_workfn (flush-7:7)
[  771.356277][   T13] Call Trace:
[  771.356285][   T13]  <TASK>
[  771.356293][   T13]  dump_stack_lvl+0xe8/0x150
[  771.356320][   T13]  f2fs_handle_critical_error+0x37c/0x540
[  771.356352][   T13]  f2fs_write_end_io+0xcdb/0xff0
[  771.356390][   T13]  __submit_merged_bio+0x256/0x700
[  771.356429][   T13]  __submit_merged_write_cond+0x3c9/0x4e0
[  771.356459][   T13]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  771.356508][   T13]  f2fs_write_data_pages+0x2975/0x35e0
[  771.356564][   T13]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  771.356596][   T13]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  771.356647][   T13]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  771.356695][   T13]  ? __lock_acquire+0x6b5/0x2cf0
[  771.356731][   T13]  ? __pfx_f2fs_inode_chksum_set+0x10/0x10
[  771.356754][   T13]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  771.356774][   T13]  do_writepages+0x32e/0x550
[  771.356807][   T13]  ? reacquire_held_locks+0x104/0x190
[  771.356830][   T13]  ? writeback_sb_inodes+0x477/0x1a20
[  771.356860][   T13]  __writeback_single_inode+0x133/0x11a0
[  771.356885][   T13]  ? do_raw_spin_unlock+0xf5/0x210
[  771.356910][   T13]  writeback_sb_inodes+0x992/0x1a20
[  771.356954][   T13]  ? __lock_acquire+0x6b5/0x2cf0
[  771.356984][   T13]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  771.357005][   T13]  ? do_raw_spin_lock+0x12b/0x2f0
[  771.357064][   T13]  ? rcu_is_watching+0x15/0xb0
[  771.357099][   T13]  wb_writeback+0x456/0xb70
[  771.357126][   T13]  ? queue_io+0x1e1/0x4a0
[  771.357157][   T13]  ? __pfx_wb_writeback+0x10/0x10
[  771.357177][   T13]  ? do_raw_spin_lock+0x12b/0x2f0
[  771.357211][   T13]  wb_workfn+0x414/0xf50
[  771.357234][   T13]  ? look_up_lock_class+0x57/0x110
[  771.357273][   T13]  ? __pfx_wb_workfn+0x10/0x10
[  771.357297][   T13]  ? do_raw_spin_lock+0x12b/0x2f0
[  771.357339][   T13]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  771.357382][   T13]  ? process_one_work+0x87c/0x1650
[  771.357483][   T13]  process_one_work+0x949/0x1650
[  771.357533][   T13]  ? __pfx_process_one_work+0x10/0x10
[  771.357554][   T13]  ? do_raw_spin_lock+0x12b/0x2f0
[  771.357591][   T13]  worker_thread+0xb46/0x1140
[  771.357641][   T13]  kthread+0x388/0x470
[  771.357660][   T13]  ? __pfx_worker_thread+0x10/0x10
[  771.357681][   T13]  ? __pfx_kthread+0x10/0x10
[  771.357700][   T13]  ret_from_fork+0x51e/0xb90
[  771.357726][   T13]  ? __pfx_ret_from_fork+0x10/0x10
[  771.357748][   T13]  ? __switch_to+0xc7d/0x1450
[  771.357771][   T13]  ? __pfx_kthread+0x10/0x10
[  771.357792][   T13]  ret_from_fork_asm+0x1a/0x30
[  771.357829][   T13]  </TASK>
[  771.357838][   T13] F2FS-fs (loop7): Stopped filesystem due to reason: 3
[  771.373898][T28867] loop3: detected capacity change from 0 to 512
[  771.700080][T28867] EXT4-fs (loop3): blocks per group (95) and clusters per group (32768) inconsistent
[  771.815468][T28867] netlink: 153524 bytes leftover after parsing attributes in process `syz.3.9058'.
[  771.969712][T28871] program syz.3.9060 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  772.169332][T28875] loop7: detected capacity change from 0 to 128
[  772.214011][T28875] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  772.262994][T28875] ext4 filesystem being mounted at /665/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  772.291391][T28875] EXT4-fs warning (device loop7): verify_group_input:137: Cannot add at group 1949724777 (only 1 groups)
[  772.489202][T20496] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  772.881859][T28886] loop7: detected capacity change from 0 to 2048
[  772.943298][T28886] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  773.761620][T28903] lo: Caught tx_queue_len zero misconfig
[  774.044376][T28827] Set syz1 is full, maxelem 65536 reached
[  774.057279][  T805] usb 4-1: new full-speed USB device number 62 using dummy_hcd
[  774.244638][  T805] usb 4-1: New USB device found, idVendor=0763, idProduct=2081, bcdDevice=d0.ab
[  774.269449][  T805] usb 4-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  774.280484][  T805] usb 4-1: Product: syz
[  774.288934][T28909] loop7: detected capacity change from 0 to 32768
[  774.296991][  T805] usb 4-1: Manufacturer: syz
[  774.301818][  T805] usb 4-1: SerialNumber: syz
[  774.326877][  T805] usb 4-1: config 0 descriptor??
[  774.354799][T28909] XFS (loop7): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  774.479364][T28909] XFS (loop7): Ending clean mount
[  774.493071][T28909] XFS (loop7): Quotacheck needed: Please wait.
[  774.673102][T28909] XFS (loop7): Quotacheck: Done.
[  774.726339][T28909] XFS (loop7): User initiated shutdown received.
[  774.767804][T28909] XFS (loop7): Metadata I/O Error (0x4) detected at xfs_fs_goingdown+0x71/0x150 (fs/xfs/xfs_fsops.c:462).  Shutting down filesystem.
[  774.792450][  T805] usb 4-1: USB disconnect, device number 62
[  774.810828][T28909] XFS (loop7): Please unmount the filesystem and rectify the problem(s)
[  774.858656][T28935] netlink: 12 bytes leftover after parsing attributes in process `syz.8.9085'.
[  774.996301][T20496] XFS (loop7): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  775.442969][T28946] loop6: detected capacity change from 0 to 256
[  775.462034][T28946] exfat: Deprecated parameter 'utf8'
[  775.496197][T28946] exfat: Deprecated parameter 'namecase'
[  775.535989][T28946] exfat: Deprecated parameter 'namecase'
[  775.541811][T28946] exfat: Deprecated parameter 'utf8'
[  775.644443][T28946] exFAT-fs (loop6): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[  775.735397][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  775.735415][   T30] audit: type=1800 audit(2000000134.430:399): pid=28946 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.9093" name="file2" dev="loop6" ino=1048982 res=0 errno=0
[  775.968597][T28959] bridge_slave_0: left allmulticast mode
[  775.974428][T28959] bridge_slave_0: left promiscuous mode
[  775.984866][T28959] bridge0: port 1(bridge_slave_0) entered disabled state
[  776.052291][T28943] loop3: detected capacity change from 0 to 32768
[  776.138682][   T30] audit: type=1800 audit(2000000134.840:400): pid=28943 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.9091" name="file1" dev="loop3" ino=4 res=0 errno=0
[  776.288672][   T49] ERROR: (device loop3): diWrite: ixpxd invalid
[  776.288672][   T49] 
[  776.328507][   T49] ERROR: (device loop3): remounting filesystem as read-only
[  776.366401][   T49] ERROR: (device loop3): txCommit: 
[  776.366401][   T49] 
[  776.387570][   T49] jfs_write_inode: jfs_commit_inode failed!
[  776.485455][T28978] netlink: 28 bytes leftover after parsing attributes in process `syz.3.9106'.
[  776.914830][T28974] loop8: detected capacity change from 0 to 32768
[  776.936268][T28974] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.9105 (28974)
[  776.982130][T28974] BTRFS info (device loop8): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  777.011593][T28974] BTRFS info (device loop8): using blake2b checksum algorithm
[  777.121779][T28974] BTRFS info (device loop8): enabling ssd optimizations
[  777.146214][T28974] BTRFS info (device loop8): turning on async discard
[  777.176092][T28974] BTRFS info (device loop8): enabling free space tree
[  777.182929][T28974] BTRFS info (device loop8): use zstd compression, level 3
[  777.397707][T29016] loop3: detected capacity change from 0 to 256
[  777.583027][T27346] BTRFS info (device loop8): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  778.450109][T29036] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9124'.
[  778.827571][T29030] loop8: detected capacity change from 0 to 65536
[  778.895974][T29030] XFS (loop8): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  779.085528][T29030] XFS (loop8): Ending clean mount
[  779.154149][T29059] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  779.161444][T29059] IPv6: NLM_F_CREATE should be set when creating new route
[  779.168896][T29059] IPv6: NLM_F_CREATE should be set when creating new route
[  779.176165][T29059] IPv6: NLM_F_CREATE should be set when creating new route
[  779.204266][T27346] XFS (loop8): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  779.216374][T29059] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  779.352992][T29041] loop3: detected capacity change from 0 to 32768
[  779.426223][ T5900] usb 2-1: new full-speed USB device number 50 using dummy_hcd
[  779.475141][T29041] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  779.492898][T29062] loop6: detected capacity change from 0 to 4096
[  779.554450][T29062] EXT4-fs: Ignoring removed mblk_io_submit option
[  779.631645][T29062] EXT4-fs (loop6): Test dummy encryption mode enabled
[  779.651204][ T5900] usb 2-1: config 0 has an invalid interface number: 37 but max is 1
[  779.708664][ T5900] usb 2-1: config 0 has an invalid interface number: 255 but max is 1
[  779.738968][ T5900] usb 2-1: config 0 has no interface number 0
[  779.745634][ T5900] usb 2-1: config 0 has no interface number 1
[  779.753055][T29062] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  779.755913][ T5900] usb 2-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[  779.780163][ T5900] usb 2-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  779.794583][ T5900] usb 2-1: config 0 interface 255 has no altsetting 0
[  779.807964][ T5900] usb 2-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=20.a3
[  779.824930][T29041] XFS (loop3): Ending clean mount
[  779.825818][ T5900] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  779.839336][ T5900] usb 2-1: Product: syz
[  779.843520][ T5900] usb 2-1: Manufacturer: syz
[  779.848632][ T5900] usb 2-1: SerialNumber: syz
[  779.856351][ T5900] usb 2-1: config 0 descriptor??
[  779.862457][T29041] XFS (loop3): Quotacheck needed: Please wait.
[  779.959416][T19339] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  780.059370][T29041] XFS (loop3): Quotacheck: Done.
[  780.181806][ T5823] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  780.189905][ T5900] usb 2-1: USB disconnect, device number 50
[  780.309006][T29063] loop7: detected capacity change from 0 to 32768
[  780.337102][T29063] xfs: Unknown parameter 'mtpt'
[  780.364068][T29080] loop6: detected capacity change from 0 to 1024
[  780.407758][T29080] EXT4-fs (loop6): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  780.491315][T29080] ext4 filesystem being mounted at /642/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  780.730507][T19339] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  780.975257][T29094] input: syz1 as /devices/virtual/input/input45
[  781.493830][   T30] audit: type=1326 audit(2000000140.190:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29104 comm="syz.8.9146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23f919c629 code=0x7ffc0000
[  781.595867][   T30] audit: type=1326 audit(2000000140.220:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29104 comm="syz.8.9146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f23f919c629 code=0x7ffc0000
[  781.708415][   T30] audit: type=1326 audit(2000000140.220:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29104 comm="syz.8.9146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23f919c629 code=0x7ffc0000
[  781.749111][T29091] loop3: detected capacity change from 0 to 131072
[  781.778757][   T30] audit: type=1326 audit(2000000140.220:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29104 comm="syz.8.9146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23f919c629 code=0x7ffc0000
[  781.802595][   T25] block nbd3: Possible stuck request ffff8880277d8000: control (read@0,1024B). Runtime 30 seconds
[  781.818595][   T25] block nbd3: Possible stuck request ffff8880277d8200: control (read@1024,1024B). Runtime 30 seconds
[  781.829925][   T25] block nbd3: Possible stuck request ffff8880277d8400: control (read@2048,1024B). Runtime 30 seconds
[  781.841014][   T25] block nbd3: Possible stuck request ffff8880277d8600: control (read@3072,1024B). Runtime 30 seconds
[  781.852345][   T30] audit: type=1326 audit(2000000140.220:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29104 comm="syz.8.9146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=270 compat=0 ip=0x7f23f919c629 code=0x7ffc0000
[  781.875122][   T30] audit: type=1326 audit(2000000140.220:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29104 comm="syz.8.9146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23f919c629 code=0x7ffc0000
[  781.969194][T29091] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  781.980671][T29091] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  782.043283][T29091] F2FS-fs (loop3): recover xattr in inode (7), error(0)
[  782.051837][T29091] F2FS-fs (loop3): set inode (7) has corrupted xattr
[  783.452700][T29145] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  784.607082][T29174] loop3: detected capacity change from 0 to 4096
[  784.799339][T29181] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9179'.
[  784.876411][T29181] hsr_slave_1 (unregistering): left promiscuous mode
[  785.018609][  T805] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  785.161144][T29196] loop3: detected capacity change from 0 to 256
[  785.168755][T29196] exfat: Deprecated parameter 'utf8'
[  785.188468][  T805] usb 9-1: config 17 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  785.216201][  T805] usb 9-1: config 17 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  785.236946][  T805] usb 9-1: config 17 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  785.264807][T29196] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  785.280008][  T805] usb 9-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  785.289493][  T805] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  785.326638][T29200] netlink: 'syz.7.9188': attribute type 12 has an invalid length.
[  785.326817][T29179] raw-gadget.2 gadget.8: fail, usb_ep_enable returned -22
[  785.858341][T29222] netlink: 8 bytes leftover after parsing attributes in process `syz.6.9198'.
[  785.868236][T29222] netlink: 8 bytes leftover after parsing attributes in process `syz.6.9198'.
[  786.233089][  T805] aiptek 9-1:17.0: Aiptek using 400 ms programming speed
[  786.255027][  T805] input: Aiptek as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:17.0/input/input46
[  786.337349][    C0] aiptek 9-1:17.0: aiptek_irq - usb_submit_urb failed with result -19
[  786.348136][  T805] usb 9-1: USB disconnect, device number 5
[  787.166867][T29252] loop3: detected capacity change from 0 to 32768
[  787.239376][   T13] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000002: 0000 [#1] SMP KASAN PTI
[  787.251415][   T13] KASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017]
[  787.259834][   T13] CPU: 0 UID: 0 PID: 13 Comm: kworker/u8:1 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  787.270696][   T13] Tainted: [L]=SOFTLOCKUP
[  787.275004][   T13] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  787.285040][   T13] Workqueue: krdsd rds_tcp_accept_worker
[  787.290675][   T13] RIP: 0010:rds_tcp_accept_one+0xa5b/0xd70
[  787.296480][   T13] Code: 00 00 48 83 c3 18 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 a3 92 38 f7 48 8b 1b 48 83 c3 12 49 89 de 49 c1 ee 03 <43> 0f b6 04 2e 84 c0 0f 85 53 02 00 00 44 0f b6 2b bf 08 00 00 00
[  787.316080][   T13] RSP: 0018:ffffc900001279a0 EFLAGS: 00010202
[  787.322138][   T13] RAX: 1ffff1100f2267eb RBX: 0000000000000012 RCX: 0000000000000000
[  787.330095][   T13] RDX: 0000000000000006 RSI: ffffffff8defa290 RDI: 00000000ffffffff
[  787.338052][   T13] RBP: ffffc90000127b18 R08: ffffffff9011c2b7 R09: 1ffffffff2023856
[  787.346017][   T13] R10: dffffc0000000000 R11: fffffbfff2023857 R12: ffff88807a850000
[  787.353987][   T13] R13: dffffc0000000000 R14: 0000000000000002 R15: 1ffff92000024f3c
[  787.361942][   T13] FS:  0000000000000000(0000) GS:ffff888125457000(0000) knlGS:0000000000000000
[  787.370863][   T13] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  787.377564][   T13] CR2: 0000001b35020ff8 CR3: 000000005e63c000 CR4: 00000000003526f0
[  787.385572][   T13] Call Trace:
[  787.388854][   T13]  <TASK>
[  787.391778][   T13]  ? __pfx_rds_tcp_accept_one+0x10/0x10
[  787.397318][   T13]  ? do_raw_spin_lock+0x12b/0x2f0
[  787.402333][   T13]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  787.407693][   T13]  ? process_one_work+0x87c/0x1650
[  787.412790][   T13]  rds_tcp_accept_worker+0x1d/0x70
[  787.417894][   T13]  process_one_work+0x949/0x1650
[  787.422857][   T13]  ? __pfx_process_one_work+0x10/0x10
[  787.428218][   T13]  ? do_raw_spin_lock+0x12b/0x2f0
[  787.433274][   T13]  worker_thread+0xb46/0x1140
[  787.438001][   T13]  kthread+0x388/0x470
[  787.442094][   T13]  ? __pfx_worker_thread+0x10/0x10
[  787.447223][   T13]  ? __pfx_kthread+0x10/0x10
[  787.451821][   T13]  ret_from_fork+0x51e/0xb90
[  787.456406][   T13]  ? __pfx_ret_from_fork+0x10/0x10
[  787.461506][   T13]  ? __switch_to+0xc7d/0x1450
[  787.466167][   T13]  ? __pfx_kthread+0x10/0x10
[  787.470739][   T13]  ret_from_fork_asm+0x1a/0x30
[  787.475602][   T13]  </TASK>
[  787.478613][   T13] Modules linked in:
[  787.484334][   T13] ---[ end trace 0000000000000000 ]---
[  787.542063][   T13] RIP: 0010:rds_tcp_accept_one+0xa5b/0xd70
[  787.555255][   T13] Code: 00 00 48 83 c3 18 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 a3 92 38 f7 48 8b 1b 48 83 c3 12 49 89 de 49 c1 ee 03 <43> 0f b6 04 2e 84 c0 0f 85 53 02 00 00 44 0f b6 2b bf 08 00 00 00
[  787.582550][   T13] RSP: 0018:ffffc900001279a0 EFLAGS: 00010202
[  787.594121][   T13] RAX: 1ffff1100f2267eb RBX: 0000000000000012 RCX: 0000000000000000
[  787.613554][   T13] RDX: 0000000000000006 RSI: ffffffff8defa290 RDI: 00000000ffffffff
[  787.637672][   T13] RBP: ffffc90000127b18 R08: ffffffff9011c2b7 R09: 1ffffffff2023856
[  787.645686][   T13] R10: dffffc0000000000 R11: fffffbfff2023857 R12: ffff88807a850000
[  787.660180][   T13] R13: dffffc0000000000 R14: 0000000000000002 R15: 1ffff92000024f3c
[  787.668549][   T13] FS:  0000000000000000(0000) GS:ffff888125557000(0000) knlGS:0000000000000000
[  787.677545][   T13] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  787.684217][   T13] CR2: 00007f35a5fea000 CR3: 0000000029f38000 CR4: 00000000003526f0
[  787.692552][   T13] Kernel panic - not syncing: Fatal exception
[  787.698954][   T13] Kernel Offset: disabled
[  787.703296][   T13] Rebooting in 86400 seconds..