last executing test programs:

3m27.291777026s ago: executing program 32 (id=57):
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f0000000680)='./file2\x00', 0x800000, &(0x7f00000007c0)=ANY=[@ANYBLOB="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"], 0x1, 0x5504, &(0x7f000000c0c0)="$eJzs3M1rI2UYAPB32u1+uxbx4G0HFqGFTWj6seit6i5+YJey6sGTpsk0ZDfJlCZNa08ePIoH/xNR8OTRv8GDZ2/iQfEmKJl3qls/QGma2O3vB5Nn5p03zzxvKIVnJiQA59Z8+vOPSbgRroQQZkMI10Mo9pNyK6zH8Fx5buaxLSnHfx+4GEK4GkK4MUoecyblqU9vD2+t/fDGT199c+nCtc++/HZ6qwam7fkQQncn7u93Y8xbMT4sx+vDdhG7q8MyxhPdR+VxHuN+tlVk2K8fzasXcaUV5+c7e/1R3O7UG6PYam8X4zu9eMH+sHWUp3jDw/pucdzMtorY7udFbB3Gug4O4/+2w/4g5mmW+T4o0ofB4CjG8ewgi+vZeVTERm9Qjse8eTM7GMVhGcvLhUbeaRZ1bJ3kk/5/e7Pd2ztIh9luv5330rVq7YVq7U6ltps3s0G2Wql3m3dW04VWZzStMsjq3fVWnrc6WbWRdxfThVajUanV0oW72Va73ktrtepKdamytlju3U5fvf9O2mmmC6P4cru3N2h3+ul2vpvGdyymy9WVFxfTW7X0rY3NdPPBvXsbm2+/d/fd+y9tvP5KOekvZaULy0vLy5XaUmW5tniO1v9RWfQY1w8nkky7AICz57/2/zf1/8AYnF7/v/sghNPv/4P+fyzOVP973vv/U1g/nIj+HwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg3Ppu7vPXip35eHytHH+qHHqmPE5CCDMhhF//xmy4eCznbJln7h/mz/2phq+TUGQYXeNSuV0NIayX2y9Pn/anAAAAAE+uLz68+Uns1uPL/LQLYpLiTZuZ6++PKV8SQpib/35M2WZGL8+OKVnx930hHIwpW3ED6/KYksVbbhfGle1fmT0WLj8WkhhmJloOAAAwEcc7gcl2IQAAAEzSx9MugOlIwtGjzKNnwcU37/94IHjl2BEAAABwBiXTLgAAAAA4dUX/7/f/AAAA4MkWf/8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAH5j535yUgfiOID/WuiD9y+PvLj3Ku7gGB7BpUvDAbwER8AreAHPgDuPYMDQqUQU3XRKI/l8kjJMQ77MELqY3yQDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHTpsVrO7m7Ob9vmrDft5JkNAAAAcMiqWs7qN5PU/93c/9vc+t/0i4goI+LQ2n0QP/YyB01O9cnnq3djuI+oE7bfMWquXxFx0VzP/7r+FQAAAOB0PcwX07RaTy+TvgfEMaWiTfnnMlNeERHV5ClTWrnNO8sUVv+/h3GdKa0uYI0zhaWS2zBX2kcHouvHfVe1G79pitSUX0dmmzsAAHBEg72mw1UIAAAAPbvqewD0o4jXrczdVuAoNc323s+9HgAAAPANFX0PAAAAAOhcvf53/h8AAACctnT+HwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF1aVctZNV9M2+asN+3kmQ0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALywP+8oEAJhEAZ713cmc//DSoOmpiZVIHz8jcEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAm9/95f/E1DiTzL02lp5HkrVTY+vU2Ds3jv4wvn4NAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwMX+vKRACARBFMwZ/zvp+x9WEvQMIkRAw6OKWjQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPBFv/vl/8TUOJPMnTaWjkeStavG1lVj70Hj6MF4+zcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwMXO/bzGUcUBAP/uzs7WVsUYJYeIKHjQi023tbU38aAED/4JQki3NXbrjzYHW4qQizfJuRfRo4igxFv/h55b6KXeesihghcvlTc/kmkMuFo7s20+H3jzvjsZ3vu+GQj5zkwWAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgNr2u7txljZzZdyv9t28d3U19bf29Mn1zduLqaW412bSj4eXmx96C90lAgAAwMGR1fV9RNzJt5ZT358r6v+8PibV/N89W8Z1Pb+37q/7uvZP7ddf7r64M9FcOU8a9OzaZHzs76kMHt0qZ9tz/3jEoDjzxb2XrLgg/Q82XtjOi/PZ++bGjfeGRXiojWwBgP/iaN1XQf33UOpHXSYGwIExaBTedf2fzXWbEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEAbtjfi6TruRcTiYDdObt27urpff33z9mLdTl27ttkcMw2RR8TZtcn4WItrmXWXLl85vzKZjC+2H7wSEV3N/k61/PMfTXFwRCfnR/A/Bf3qYs9KPg8T5NVaHv1cHf1CAgDgiZVXLdX1d/Kt5bSvNx9x//sH6//XG3FMWf/f/fjUzeZczfp/1NoKZ9/S+oXPly5dvvLm2oWVc+Nz40/fOj56e3Ti9MmTp5eKeyVL7pgAAADwcIZVa9b/wz3HpJ8dacQxZf3/xbejr5rjZOr/fe0+9Os6EwAAgIPt+Vf/+L23z/7ecBhfrqyvXxyV253Px8ttB6n+a4eq1qz/s/muswIAAADasL3Re+D9/zONOKZ8/v/MDy/91Bwzi4jD1fP/o6ufTc60t5yZ1sa/Lne9RgAAALp1uGrN5//5fKr/+zuvPPQj4o3Xyrj6GsCp6v/s/a9/bM7VfP//RHtLnEn9hfJ8FP1CxGCh64wAAAB4Uv15P+KpKFsq9n/Lt5Y/+fnIh0Pv/wMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC07a8AAAD//3npOno=")
open(0x0, 0x64842, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r0, 0x4018f50b, &(0x7f0000000100)={0x0, 0x1000, 0x4})

3m25.848749425s ago: executing program 33 (id=102):
syz_mount_image$vfat(&(0x7f0000000780), &(0x7f0000000000)='./file0\x00', 0x90, &(0x7f0000000140)=ANY=[], 0x6, 0x2d7, &(0x7f0000000340)="$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")
mknod(&(0x7f0000000040)='./file0\x00', 0x40, 0xfffff7ff)
rename(&(0x7f0000000300)='./file0\x00', &(0x7f00000000c0)='./file1\x00')
statfs(&(0x7f0000000000)='./file1\x00', &(0x7f0000000240)=""/144)

3m25.533918879s ago: executing program 34 (id=116):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f0000000240), 0x3, 0x4d5, &(0x7f0000000680)="$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")
link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000600)={'syz0\x00', {0x9, 0x8, 0x7, 0x3}, 0x57, [0x2, 0xfffffff8, 0x8, 0x421, 0x10001, 0xf6, 0x69, 0x401, 0x0, 0x100, 0x2, 0xfdc1, 0x1ff, 0xb0, 0x5, 0xd476aa5, 0x7, 0xffffffff, 0x80000000, 0xffffffff, 0xe07, 0x9, 0x61, 0x7e, 0x66, 0x6, 0x8, 0x2, 0x4, 0x2, 0x10, 0x200, 0x7, 0x51e3848c, 0xffffff80, 0x2, 0x3, 0x6, 0x80000000, 0x30b0, 0x8, 0x73637f84, 0x6, 0x3, 0x82, 0x8e, 0x7, 0x3, 0xa, 0x1, 0xa903, 0x2930, 0x7, 0x80, 0x2, 0xffff, 0x4b, 0xdf84, 0x1000, 0x9, 0x7fffffff, 0x7ff, 0xa, 0x8], [0x9, 0x8, 0x9, 0x2, 0x80000001, 0xffff, 0xf, 0x25, 0x595, 0x1, 0x2, 0xfffffffe, 0xfffff000, 0xffff, 0x9, 0x4, 0x6, 0x7, 0x4, 0x1, 0x8, 0x7ff, 0x6, 0x1, 0x1fe, 0x9, 0x9, 0x40, 0x0, 0x7, 0x3, 0x3, 0x0, 0x7, 0x0, 0xb, 0x842, 0x7, 0x800, 0xfffffffc, 0x7, 0xaf04, 0x8, 0x1ff, 0x40, 0x9, 0xdc71, 0x10001, 0x4, 0x2, 0x5, 0x7, 0x3, 0x40, 0x6000, 0x2, 0x3, 0x1, 0x5, 0xfffffffd, 0x9, 0x18, 0x8, 0x2], [0xffffffff, 0x5, 0x1, 0x400, 0xa44b, 0x7b, 0x9, 0x7ff, 0x0, 0xc, 0x1ff, 0xffffffea, 0x1, 0x8, 0x37f9, 0x3, 0x5, 0x7fff, 0x7, 0x2, 0x7, 0x8, 0x2, 0x1, 0x9, 0x4, 0x6, 0x101, 0xf7, 0x8, 0xfffffff9, 0x9, 0x9, 0x5, 0xa, 0x0, 0x0, 0x7, 0x3, 0xa7, 0x9, 0x1, 0x0, 0xfff, 0x9, 0xe8, 0x4, 0x3, 0xffffffff, 0x31ea, 0x1a, 0x5, 0xa, 0x7, 0x0, 0xe, 0x7, 0x9, 0x1, 0x5, 0x4, 0x9, 0x10001, 0x2], [0x3, 0x950b, 0x4, 0x9, 0x809, 0xb626ab5, 0x89c, 0x3, 0x5, 0x5, 0x8, 0x9, 0x9, 0xfffffe01, 0x81, 0xe, 0xa7, 0x1c5, 0x4, 0x7, 0x9, 0x10000, 0x1, 0x8, 0xc9, 0x4d, 0x4, 0x40000004, 0x5, 0x6, 0x0, 0x2191fc97, 0x4, 0xc0, 0x7ff, 0x8, 0x9, 0x8, 0x10000043, 0x1000, 0x8, 0x7fff, 0x7, 0x1000, 0xf, 0x1, 0x3, 0xdffffffb, 0x1, 0xfffffffc, 0xfffffff1, 0x7, 0xa, 0x0, 0x0, 0x2, 0x5, 0x5, 0x0, 0xa, 0x9, 0x401, 0x4, 0x8]}, 0x45c)

3m9.159068724s ago: executing program 35 (id=775):
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='tlb_flush\x00', r0}, 0x10)

3m5.140103707s ago: executing program 36 (id=863):
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, &(0x7f0000000080), 0x4)
sendmmsg$inet(r0, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)
close(r1)

2m58.577102343s ago: executing program 37 (id=1115):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x1, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
listen(r1, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000000c0)={r0, &(0x7f0000000180), &(0x7f0000000100)=@tcp=r1, 0x1}, 0x20)

2m54.512249327s ago: executing program 38 (id=1229):
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f0000000380)={[{@grpjquota}, {@init_itable_val={'init_itable', 0x3d, 0x7}}, {@dioread_nolock}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7fffffff}}]}, 0x3, 0x4de, &(0x7f0000000c40)="$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")
rename(&(0x7f0000000000)='./file2\x00', &(0x7f0000000040)='./file1\x00')
r0 = open(&(0x7f0000000140)='./file1\x00', 0x64842, 0x21)
pwrite64(r0, 0x0, 0x0, 0x3)

2m37.452031651s ago: executing program 39 (id=1821):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYBLOB="58000000100037042dbd70000000000000000000", @ANYRES32=r2, @ANYBLOB="920100000801000008000d000004000030001680240001"], 0x58}}, 0x0)

2m35.067526662s ago: executing program 40 (id=1862):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xa, 0x10, &(0x7f00000008c0)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000000000000850000001c00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001bc0)={r1, 0x0, 0xdc0, 0xfffffffffffffe39, &(0x7f0000001cc0)="633268f83ca3000000a2029e3815bb2fa117d8326687688b2c969fd7267d546214af00d1ca2524d00f9e4d9555f3ab381b5d44fd6bda8c509e66101d296f10c805252e7c5d48d9814f46db8f07441878734b13270fe47fba418b7358984b9a61c2bbf964a520459fd0d90590b46cf1677d580a26933b6e35aee75996b73a15a25aa8ae2f1f9bc9699a505c0dc4050ab2255fc35f508ccc52f10ac12febf28652fe36f725714868675ca2a7042ab4b26904b2f000589694f69ab0b22a5aec72c5036ce1c8974690045e4ab412a70336b4c65b2dfc8121af4143c2e10a0e5632bcd44e0b000029da424d86f298656822dae2c002e289fbfa6fe0dfb2fd57713a7684dc166c628dc45027ac174c5db54f22e409eb4e94263dbc9919f90f1af3290918b9824c3e0268b300bf69cc2eb3fc58f655439bdbe2b905", &(0x7f0000001c40)=""/76, 0x0, 0x0, 0x47, 0x50, &(0x7f0000001ac0)="9c01bd6f9a6028c80d7364240fd78867d9d62eca43c565f2c5ac65dd4a0fadceb6c65dcb07f2421e69087e0f17b4eb709e4805f2722709c46bef17c4cb9aed9fb1c342179ea349", &(0x7f0000001a40)="408fd0050dc7945b483103067eca9bd26ffbe35abf0f88a103f6893dc2b1d1cdc2195d4ae89abc04ff5fe5d2466892c81015df835a7d47be4f852161bc4015e7564b08584290fe1762f943a653008ac5", 0x1, 0x0, 0x13}, 0x22)

2m28.560903348s ago: executing program 41 (id=2070):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000900)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000a0db000000000000000000850000000e000000d50000002a00c50095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00', r0, 0x0, 0x4}, 0x18)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@getpolicy={0x5c, 0x15, 0x1, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@dev}}, [@policy_type={0xa, 0x10, {0x3}}]}, 0x5c}}, 0x0)

2m13.841141141s ago: executing program 42 (id=2693):
r0 = socket$inet6(0xa, 0x2, 0x3a)
sendto$inet6(r0, &(0x7f0000000000)="800037bbfa9ba1ce", 0x8, 0x0, &(0x7f0000001100)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x23, &(0x7f0000000080)=0x5, 0x4)
recvmmsg(r0, &(0x7f0000000840)=[{{0x0, 0x0, 0x0}, 0x7ff}], 0x1, 0x162, 0x0)

2m7.86377718s ago: executing program 43 (id=2957):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000001640)={&(0x7f0000000040)=@ipv4_delroute={0x1c, 0x1a, 0x1, 0x0, 0x0, {0xa, 0x0, 0x80, 0x0, 0x0, 0x2}}, 0x1c}}, 0x0)
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0x80000020}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[], 0xa0}}, 0x0)

1m16.201573789s ago: executing program 6 (id=4952):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000600), 0x2, 0x0)
write$selinux_access(r1, &(0x7f0000000740)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a6c645f736f5f7420704a122f7362696e2f6468636c69656e742030"], 0x41)

1m16.11685745s ago: executing program 6 (id=4954):
pipe(&(0x7f00000001c0))
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

1m15.308847351s ago: executing program 6 (id=4982):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=@newtaction={0xcc, 0x30, 0xffff, 0x0, 0x0, {}, [{0xb8, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c}]]}, {0x4}, {0xc}, {0xc}}}, @m_gact={0x48, 0x2, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18}]}, {0x4}, {0xc, 0x3}, {0xc}}}]}]}, 0xcc}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000700)={0x0, 0x1e5, &(0x7f00000006c0)={&(0x7f0000000440)=@deltaction={0x28, 0x31, 0x101, 0x0, 0x0, {}, [@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}]}]}, 0x28}}, 0x0)

1m15.211079252s ago: executing program 6 (id=4986):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xfffffffe}, {0x85, 0x0, 0x0, 0x2d}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x60, &(0x7f0000000080)={'filter\x00', 0x4, [{}, {0x0, 0x100000000000000}]}, 0x68)

1m15.153798892s ago: executing program 6 (id=4988):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, &(0x7f00000002c0)=ANY=[@ANYBLOB="00000c000000070001"], 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000480)={0x2c, &(0x7f0000000200)=ANY=[], 0x0, 0x0, 0x0, 0x0})

1m13.499682844s ago: executing program 6 (id=5038):
ptrace(0x10, 0x1)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x6, 0x0, 0x0, 0x0, 0x8000000009917, 0x400000000000fffd}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0xffffffffffffffff}, 0x0)
sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x1}, 0x0)

58.279344685s ago: executing program 44 (id=5038):
ptrace(0x10, 0x1)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x6, 0x0, 0x0, 0x0, 0x8000000009917, 0x400000000000fffd}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0xffffffffffffffff}, 0x0)
sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x1}, 0x0)

47.19523626s ago: executing program 8 (id=5569):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000010100008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fdb_delete\x00', r1}, 0x18)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"})

47.181242531s ago: executing program 8 (id=5571):
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10, &(0x7f0000000680), 0xfe, 0x244, &(0x7f0000000400)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='blkio.bfq.sectors\x00', 0x275a, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r1, 0x8004587d, &(0x7f0000000080)={@id={0x2, 0x0, @c}})
fallocate(r0, 0x0, 0x0, 0x1000f8)

47.106715981s ago: executing program 8 (id=5572):
syz_mount_image$vfat(&(0x7f0000000340), &(0x7f0000000980)='./file1\x00', 0x0, &(0x7f0000000f40)=ANY=[], 0x5, 0x2b2, &(0x7f00000006c0)="$eJzs3U9rY1UUAPDz0jR9OosUcaMIPtCFqzJ166ZRRhC7UiKoCw3ODEgSBqYQmArGruYTuPR7+BHcuPEbDLgV3E0XlSfvX/7ga402VXR+v9Xh3nfuPXm3TbLJeZ+/Mh3ffZDE2dMnkaZJdI7iKM6T2I9ONL6JbgAA/x/neR6/5mWY5JUNM7udGy0MALgx1ef/X/rgBwD+4z78+JP3B8fHdz7IsjRe6j+eDZOImD6eDav5wf34MiZxL25HPy4i8oUqfve94zvRzQr78fp0PhsWmdPPfqzXH/wSUeYfRj/22/MPs8pK/nw23I3nI4vB/d2m1H682J7/Zkt+DHvxxmsr9R9EP376Ih7EJO5GkbvM//owy97Jv3361afFNkV+0onhXnldKfcFCQAAAAAAAAAAAAAAAAAAAACA7TrIsqRq31P27ymG6v47Oxfl/EHW2F/vz1PlJ81CVX+gvOmWM8/ju6a/zu0sy/L6wmV+N17uerAAAAAAAAAAAAAAAAAAAAAAFE4ePbk1mkzuPTx5dDq+dtB0A2h+1v931zlaGXk1TsejncsX3Nt8r9VuA0WtV14c3W5s6ba0B2eLkeeKera+xV4sRj6KKmgOZqt7vfB2tejpeJTVU81NHo+SP9srbQ7u+9WpXly3sLz8k7jI1880XZS6ntXb0t3o3Wqd+i3P883Weevn6ozqkaRssbHZ7rt10PoCiyAtziJd/OMXUz9cvuClbxk7137TAQAAAAAAAAAAAAAAAAAAWi1/9NsyeXZlaufGigIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAf9jy+f9NkEbE+sgfgnmdfNU1ddCLhyf/8ksEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgGfB7AAAA//8rlFqg")
r0 = open(&(0x7f0000000080)='./file0\x00', 0x40c5, 0x130)
r1 = open$dir(&(0x7f0000000100)='./file1\x00', 0x0, 0x178)
write$9p(r0, &(0x7f0000001400)=';', 0x1)
sendfile(r0, r1, 0x0, 0x7ffff000)

46.946768204s ago: executing program 8 (id=5573):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000640)='./file2\x00', 0x10050, &(0x7f00000000c0)={[{@errors_remount}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7}}]}, 0x3, 0x51e, &(0x7f0000000680)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
chdir(&(0x7f00000001c0)='./file0\x00')
lstat(&(0x7f0000000040)='./file2\x00', 0x0)
lstat(&(0x7f0000000180)='./file3\x00', 0x0)

46.756433356s ago: executing program 8 (id=5576):
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
pipe2$9p(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d000000180100002020732600000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='9p_protocol_dump\x00', r2}, 0x18)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

46.619848578s ago: executing program 8 (id=5578):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000005c0)={{0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0xfe, 0x9, 0x30}, {0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x6, 0x0, 0xb}, {0xffff1000, 0x5000, 0xc, 0x0, 0x7, 0xfe, 0x0, 0x0, 0x3, 0x0, 0xfe, 0xf}, {0x3000, 0x8000000, 0x0, 0x8, 0x0, 0xfe, 0x9, 0x0, 0x10, 0x0, 0x4}, {0x10000, 0x1000, 0xd, 0x1, 0x0, 0x6, 0x0, 0x3, 0x4, 0x5e, 0x0, 0x9}, {0x1000, 0x3000, 0x0, 0x0, 0x0, 0x3, 0x2}, {0x0, 0x5000, 0x9, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x24}, {0xeeee8000, 0x0, 0x0, 0x0, 0x0, 0x8b, 0x0, 0xa, 0x22, 0x4, 0x0, 0xfd}, {0x80a0000}, {0xdddd1000, 0x8}, 0xddf8ffdb, 0x0, 0xd000, 0x2b, 0x0, 0x3800, 0x6000, [0x0, 0x3, 0x1]})

46.574443669s ago: executing program 45 (id=5578):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000005c0)={{0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0xfe, 0x9, 0x30}, {0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x6, 0x0, 0xb}, {0xffff1000, 0x5000, 0xc, 0x0, 0x7, 0xfe, 0x0, 0x0, 0x3, 0x0, 0xfe, 0xf}, {0x3000, 0x8000000, 0x0, 0x8, 0x0, 0xfe, 0x9, 0x0, 0x10, 0x0, 0x4}, {0x10000, 0x1000, 0xd, 0x1, 0x0, 0x6, 0x0, 0x3, 0x4, 0x5e, 0x0, 0x9}, {0x1000, 0x3000, 0x0, 0x0, 0x0, 0x3, 0x2}, {0x0, 0x5000, 0x9, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x24}, {0xeeee8000, 0x0, 0x0, 0x0, 0x0, 0x8b, 0x0, 0xa, 0x22, 0x4, 0x0, 0xfd}, {0x80a0000}, {0xdddd1000, 0x8}, 0xddf8ffdb, 0x0, 0xd000, 0x2b, 0x0, 0x3800, 0x6000, [0x0, 0x3, 0x1]})

45.519455862s ago: executing program 3 (id=5614):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
arch_prctl$ARCH_REQ_XCOMP_GUEST_PERM(0x1025, 0x9)

45.502717533s ago: executing program 3 (id=5615):
mkdir(&(0x7f0000000200)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
unlinkat(r0, &(0x7f0000000280)='./file0\x00', 0x200)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f00000000c0)='devpts\x00', 0x4000, 0x0)

45.488480963s ago: executing program 3 (id=5616):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000002c0)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143441, 0x98)
mount(0x0, &(0x7f0000000300)='./file1\x00', &(0x7f00000003c0)='ramfs\x00', 0x0, 0x0)

45.471037403s ago: executing program 3 (id=5617):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000740)={[{@test_dummy_encryption}, {@i_version}, {@noload}, {@commit={'commit', 0x3d, 0x5}}, {@inlinecrypt}, {@max_batch_time}, {@abort}, {@auto_da_alloc}, {@lazytime}, {@lazytime}, {@block_validity}]}, 0xd, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
r1 = syz_io_uring_setup(0x2e2c, &(0x7f0000001580), &(0x7f0000001600), &(0x7f0000001640))
io_uring_register$IORING_REGISTER_BUFFERS2(r1, 0x2, &(0x7f0000002c40)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x20)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f0000000200)={0x9, 0x0, &(0x7f0000000080)=[r0]}, 0x1)

45.404638994s ago: executing program 3 (id=5618):
sched_setscheduler(0x0, 0x1, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000004000000000000008100d00850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x10)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x0, r1, 0x0, 0x61000006, 0x0)

45.287956625s ago: executing program 3 (id=5619):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newlink={0x44, 0x10, 0xffffff1f, 0xfffffffc, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @gretap={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x8, 0x7, @local}]}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0)

45.287757485s ago: executing program 46 (id=5619):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newlink={0x44, 0x10, 0xffffff1f, 0xfffffffc, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @gretap={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x8, 0x7, @local}]}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0)

43.500164499s ago: executing program 9 (id=5687):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0200000004000000e27f000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000e80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = dup2(r1, r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r2}, 0x10)
capget(&(0x7f0000000040)={0x20071026}, 0x0)

43.45651228s ago: executing program 9 (id=5688):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000640)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
chmod(0x0, 0xe0)

43.456224369s ago: executing program 9 (id=5689):
r0 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r0, &(0x7f0000000240)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171, 0x0, 0x0, 0x4000000}}], 0x400000000000172, 0x0)
write$UHID_INPUT(r0, &(0x7f0000000680)={0x8, {"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", 0x1000}}, 0x1006)

43.349942861s ago: executing program 9 (id=5694):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000740)={[{@test_dummy_encryption}, {@i_version}, {@noload}, {@commit={'commit', 0x3d, 0x5}}, {@inlinecrypt}, {@max_batch_time}, {@abort}, {@auto_da_alloc}, {@lazytime}, {@lazytime}, {@block_validity}]}, 0xd, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
r1 = syz_io_uring_setup(0x2e2c, &(0x7f0000001580), &(0x7f0000001600), &(0x7f0000001640))
io_uring_register$IORING_REGISTER_BUFFERS2(r1, 0x2, &(0x7f0000002c40)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x20)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f0000000200)={0x9, 0x0, &(0x7f0000000080)=[r0]}, 0x1)

43.333382171s ago: executing program 9 (id=5696):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x4, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
timerfd_gettime(0xffffffffffffffff, 0x0)

43.288940711s ago: executing program 9 (id=5697):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
sendmmsg$inet(r1, &(0x7f0000000440)=[{{&(0x7f00000001c0)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000000580)=[{&(0x7f0000000200)="a9050000000074640000000000003552bde5c064c6", 0x15}, {&(0x7f00000002c0)="174640b6d80fb2eedc81ba60ccbb9d", 0xf}], 0x2}}, {{&(0x7f00000004c0)={0x2, 0x4e24, @multicast1}, 0x10, 0x0}}], 0x2, 0x4004040)

43.220711792s ago: executing program 47 (id=5697):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
sendmmsg$inet(r1, &(0x7f0000000440)=[{{&(0x7f00000001c0)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000000580)=[{&(0x7f0000000200)="a9050000000074640000000000003552bde5c064c6", 0x15}, {&(0x7f00000002c0)="174640b6d80fb2eedc81ba60ccbb9d", 0xf}], 0x2}}, {{&(0x7f00000004c0)={0x2, 0x4e24, @multicast1}, 0x10, 0x0}}], 0x2, 0x4004040)

23.072407767s ago: executing program 4 (id=6336):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="0100000008000000010000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000006020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b70300000000ecff850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
mkdir(&(0x7f0000000200)='./bus\x00', 0x0)
mount$incfs(&(0x7f0000000000)='./bus\x00', &(0x7f0000000140)='./bus\x00', &(0x7f0000000240), 0x80, &(0x7f00000008c0)=ANY=[@ANYBLOB='f'])

22.967135079s ago: executing program 4 (id=6341):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0x8, &(0x7f0000000100)=0x40049, 0x4)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
readv(r0, &(0x7f0000000000)=[{&(0x7f0000000140)=""/190, 0xbe}], 0x1)

22.967042059s ago: executing program 4 (id=6342):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="82000000000000001f0001c0"])

22.84638447s ago: executing program 4 (id=6349):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000480)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x512, &(0x7f0000000c40)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './bus'}}], [], 0x2c})
chdir(&(0x7f0000000140)='./file0\x00')
link(&(0x7f0000000280)='./file1\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

22.666641143s ago: executing program 4 (id=6355):
r0 = memfd_create(&(0x7f0000000380)='\x103q}2\x9a\xce\xaf\x03\xdfyR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7R\x94\xaf\xbb\xdcM\x90k\xd6\x05\r\x84\x87\x1e?\x10\x95SWFO{\x1f\x1b!\xd5\x991D\x1c\b\x8c`\xeaSA\x90m\xb6&\xd0\xf1\xb3\xed:\x82\xbd\xe3i|BL\x1f\x9d\x00\x00\xc5\xb8$\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\r\xd6h\x80\x8fQ|\xf5d\x10\x10\xd7\t\x00\x00\x00\x00\x00\x00\x00<\xfeeS\xb2l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfaa\xd3\xf1\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7~x\xb8vo\xe6\x15@\xc9\"CY\x11\xb9u\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D4E^7%8\x94y\x90\xf0l\xa0\'L%\xd4\xda\xee\x81\x98\xcc\xfd\xa2\x89$\x9by\xf1\xbb\x01\xb7\xcd\xbf\x99\x1f\x90@b\x03\xb3\xe0CfU\x16{\xbey\xa1cs\x96U\x11\xdb*\xdf\xcdG\xc7z\x85\x8aE\xf7\xd5\x9dAj\xe3\xfb\xc4\xa0\x14\x87\x19\x17\xed\xd1\x185%Q%\x81\xfaK\x82\xec=\xa3\xb8~\xb6O\xbd\x19*\xdb\x1c\x10\xa4\x8dIl\xc1\xceG\xd0h\xa1\xab:dP\xb6\xa0BR\xbe\x03\xac\xd9\x87\x00@\x80\x94\xd88\xc9\x03\x97\x17r\x85#\x7f\x8cu\x8f\xcc\x7fF\xb5\xea\xa6\xc1\x9d\xac\x89\xc9\xa1tuJw\xee\x1a\xe73\xa8\xadS\xd1\x11#d\xc2\xcfdj\x9ec\x93\xd5K\x90*_3\x89\v\xab\x04ih\x12\x93\xc5m\x8f~{\xe5\x85\xa5g\x00\x00\x00\xe45Q\xab%\xa8[\xf3\x17\x94\xf8\xdfq\xff\xd2?\xafW\xde\x1bW]\x1f\aaV\xc5\xc82*\xc7\xc5\"C}L\x10e\xc6\x90\xc0\xf9z\xb6+/d\x86\xf2\xbe\xc9:u\t\\e\x05)\xe4\xd2\xc4\x1a\xc9\xac\xdb\x925\x02\x94@\xa2\xe1\xee\x16\xb4\x98\xff\x0f\xbb\xb2\x81\xcf\x13g6l\xcc\xc8\x02\v\xa2\xb2\xf6\xbf@d\xcecC\x9fVz\xf4\x14\xa5\x8b|\xe1\xc0\xfa3X\xf4\xd9L\xe6\x8f\x9dy\x0fX.\xc5EQ\xd1/\xa1\xd0\x03>\xf0\x90\x13B\xe2\x97\x8b!\xf7\"\xecX\x92\xab\xbc^\xb2\x80@\xcc+\xbbp\xdc|N\xd3[=G\xb2\xe1\x9c\xc5\x81y\x84\xef\xacQ\x01\xdd\xe7<\xb8\xf1Hn\x86\xa6\xe3\x18N\x19\"[-\xdb\xef\xc3\xe0\xa8}', 0x0)
ftruncate(r0, 0x80079a0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
sendfile(r1, r0, 0x0, 0x10003)

22.07993503s ago: executing program 4 (id=6375):
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000980)=ANY=[@ANYBLOB="440100001000130400000000f9dbdf25fe80000000000000000000000000000000000000000000000000ffffe000000200"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc0100000000000000000000000000000000000032000000000000009f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000002abd7000000000000200020062000000000000004c001200726663343130362867636d28616573292900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000080018"], 0x144}, 0x1, 0x0, 0x0, 0x4000}, 0x40c0)

22.07389061s ago: executing program 48 (id=6375):
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000980)=ANY=[@ANYBLOB="440100001000130400000000f9dbdf25fe80000000000000000000000000000000000000000000000000ffffe000000200"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc0100000000000000000000000000000000000032000000000000009f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000002abd7000000000000200020062000000000000004c001200726663343130362867636d28616573292900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000080018"], 0x144}, 0x1, 0x0, 0x0, 0x4000}, 0x40c0)

1.655345159s ago: executing program 0 (id=7115):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000001000000080000000c"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000980)='sys_enter\x00', r2}, 0x18)
fstatfs(r0, &(0x7f0000000080)=""/39)

1.046141047s ago: executing program 0 (id=7128):
r0 = socket$inet(0x2, 0x2, 0x1)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x6e24, @empty}, 0x10)
r1 = socket(0x2, 0x2, 0x1)
bind$unix(r1, &(0x7f0000000000)=@abs, 0x6e)
syz_emit_ethernet(0x3e, &(0x7f0000000180)={@random="e33110495bfd", @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00e1ff", 0x8, 0x3a, 0x0, @dev={0xfe, 0x80, '\x00', 0x3}, @local, {[], @echo_reply={0x81, 0x0, 0x0, 0xbc64, 0xf801}}}}}}, 0x0)

999.870447ms ago: executing program 0 (id=7121):
io_setup(0x4, &(0x7f00000004c0)=<r0=>0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f00000000c0)={'#! ', './file0'}, 0xb)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0)
io_submit(r0, 0x1, &(0x7f0000003e40)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}])

899.012149ms ago: executing program 0 (id=7124):
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='mountinfo\x00')
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040))
epoll_pwait(r1, 0x0, 0x0, 0x200, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x80, &(0x7f0000000240), 0x1, 0x50d, &(0x7f0000000980)="$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")

822.77553ms ago: executing program 0 (id=7129):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x18)
connect$can_bcm(r0, &(0x7f0000000180), 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0500000000bbd10d0bc11fc00000000040000000aef028c89c34dcb05408427474e1cb5e689c593e7a16dd0af4f5be2f038bc9faf7"], 0x80}}, 0x0)

784.54988ms ago: executing program 0 (id=7132):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
openat$dir(0xffffffffffffff9c, 0x0, 0xea, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000000), 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000003c0)={<r1=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, &(0x7f0000000240)={r1, 0x2, r0})

657.256342ms ago: executing program 5 (id=7141):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x38, 0x24, 0xd0f, 0x70bd30, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_pfifo={{0xa}, {0x8, 0x2, 0xfff}}]}, 0x38}}, 0x44080)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0x2c, 0x24, 0xd0f, 0x70bd25, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0xa}, {0xffe0, 0xa}, {0x0, 0x10}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x55}, 0x4000)

642.862202ms ago: executing program 5 (id=7143):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x2, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
getpriority(0x2, 0x0)

617.252203ms ago: executing program 5 (id=7145):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000600)='sys_enter\x00', r1}, 0x10)
clock_gettime(0x5, &(0x7f0000000180))

614.669753ms ago: executing program 1 (id=7146):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
sync()

587.480823ms ago: executing program 5 (id=7148):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000340)=ANY=[@ANYBLOB="01000000000000000100000000000000000000000000000000000000ff"])
ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000009104"])

482.904274ms ago: executing program 5 (id=7150):
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f0000000240)='./bus\x00', 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], 0x1, 0x54f4, &(0x7f0000005600)="$eJzs3M1rI2UYAPBn2u1+uxbx4G0HFqGFTdj0Y9Fb1V38wC7Fj4MnTZM0ZDfJlCZNa08ePIoH/xNR8OTRv8GDZ2/iQfEmKJmZ6tYvhKaNtb8fTJ6ZN2+eed5QCs9MmADOrfn0px+SuBFXImI2Iq5H5PtJueXWivBMRNyMiJnHtqQc/23gYkRcjYgb4+RFzqR865Pbo1ur37/245dfX7pw7dMvvpneqoFpezYietvF/l6viFm7iA/L8fqok8feyqiMxRu9R+VxVsS91maeYa9+OK+ex+V2MT/b3h2MY5LUG+PY7mzl49v94oSDUfswT/6Bh/Wd/LjZ2sxjZ5DlsX1Q1LV/UPxvOxgMizzNMt/7efoYDg9jMd7abxXr2X6Ux0Z/WI4XebNma38cR2UsTxeNrNvM69g8zjf93/Z6p7+7n45aO4NO1k9Xq7XnqrW7ldpO1mwNWyuVeq95dyVdaHfH0yrDVr231s6ydrdVbWS9xXSh3WhUarV04V5rs1Pvp7Vadbl6p7K6WO7dTl9+8HbabaYL4/hip7877HQH6Va2kxafWEyXqsvPL6a3aumb6xvpxhv3769vvPXuvXcevLD+6kvlpD+VlS4s3VlaqtTuVJZqi+do/R+WRU9w/XAsybQLADh79P/ANEyj/9/qTq7/D/3/RJyp/ve89/8nsH44Fv0/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMC59e3cZ6/kO/PF8bVy/ImIm+Ohp8rjJCJmIuKXvzAbF4/knC3zzP3N/Lk/1PBVEnmG8TkuldvViFgrt5+fPOlvAQAAAP6/Pv/g5sdFt168zE+7IE5TcdFm5vp7E8qXRMTc/HcTyjYzfnl6Qsnyv+8LsT+hbPkFrMsTSlZccrswqWz/yuyRcPmxkBRh5lTLAQAATsXRTuB0uxAAAABO00fTLoDpSOLwVubhveD8l/e/3xC8cuQIAAAAOIOSaRcAAAAAnLi8//+H5/+F5/8BAADA2Vc8/w8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPiVnfvJSR2K4gB8Wuh7vD9GYpy7FWewDJfg0KFhAW6CJeAW3ABrwJlLMGBoS7QGE5PetpF8X9JebkN+nBIm515SAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6NJzsZo/3l89tM3Z7tpJczcAAADAMZtiNS9fTKv5v/r6WX3pop5nEZFHxLHefRS/GpmjOqf44v3FpxqeIsqE/Wf8ro+/EXFdH6/nXX8LAAAAcLrWi+Ws6tar03ToguhTtWiT/79JlJdFRDF9SZSW70+XicLK3/c47hKllQtYk0Rh1ZLbOFXat4waw+TDkFVD3ms5AABAL5qdQL9dCAAAAH26HboAhpHFYSvzsBdc/vP+fUPwT2MGAAAA/EDZ0AUAAAAAnSv7f8//AwAAgNNWPf8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACALm2K1Xy9WM7a5mx37aS5GwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgjf15R4EQCIMw2Lu+M5n7H1YaNDU1qQLh428MBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIA3v/vL/4mpcSaZe20sPY8ka6fG1qmxd24c/WF8/RoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAu9uclBUIgCKJgzvjfSd//sJKgZxAhAhoeVdSiAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4It+98v/ialxJpk7bSwdjyRrV42tq8beg8bRg/H2bwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAudu7nNY4qDgD4d2Z2trYqxig5RETBg17sdlNbe/WgBA/+CUJItzW69Ueagy1FyMWb5NyL6FFEUOKt/0PPLfRSbz3soYJnZWZnmmkacLV0Zpt8PvD2fWcY5n3fJIR8570EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKA2eW8vzoqPhWmcVudu3b+2XvS39/WFGzt3lotWxEmbST8dXm0eJEvdJQIAAMDRkdX1fUTczXdXiz5dKOv/vL6mqPl/eH4a1/X8/rq/7uvav2i//3bv5QcDLUzHKW56YWM8OvVoKr0nN8v59sK/XtErn3z57iUrvyDph9svTfLyeSbf3bz5fr8Mj7WRLQDwf5ys+yqofx8q+mGXiQFwZPQahXdd/2cL3eYEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0IbJdjxbx0lELPf24sLt+9fWD+pv7NxZrtvZ69d3mvcsbpFHxIWN8ehUi3OZd5evXP1sbTwebbYfvBYR3Y1eBR/PcE1ElxkKHjdIq+/1ecnn6Qg6/sEEAMChk1etqOvv5rurxblkMeLvHx+u/99sxDFj/X/vk7O3mmM16/9hazOcf4OtS18OLl+5+vbGpbWLo4ujz99ZGb47PH3uzJlzg/JdycAbEwAAAB5PP4no76v/08VH1/9PNOKYsf7/6vvhN82xMvX/gfYW/brOBAAA4Gh78fW//kwOOJ/0+/H12tbW5nD6WR3H5kp5vNJBqv/Zsao16/9sseusAAAAgDZMtpOH1v/PN+KYcf3/uZ9e+aV5zywijlfr/yfXvxifb286c62NPyfueo4AAAB063jVmuv/ebn/P32w5SGNiLfemMbVvwGcqf7PPvj25+ZYzf3/p9ub4lxKl6bPo+yXInpLXWcEAADAYfZM1Ypi/498d/XTX0981Lf/HwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKBt/wQAAP//K8ZAQg==")
r0 = open(&(0x7f00000002c0)='./bus\x00', 0x189842, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000003})
fallocate(r0, 0x11, 0x0, 0x6fffffc)

476.860614ms ago: executing program 1 (id=7151):
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000000340)='./file0\x00', 0x0, &(0x7f00000000c0)=ANY=[@ANYRES16=0x0, @ANYRESHEX, @ANYBLOB="9f04dcff0e3290a8362c00b30069935f66000000005b8aa6823b2badb585fff1d6b6b31f21a64bc21483140600000000000000aa5a95ec", @ANYRES16, @ANYRES32=0x0, @ANYRESHEX], 0x1, 0x14e8, &(0x7f0000002a80)="$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")
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x40, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="0100000000000800020100c0"])

469.398994ms ago: executing program 7 (id=7152):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f0000000080)=ANY=[@ANYBLOB="0100000000080000ce"])

458.232025ms ago: executing program 2 (id=7153):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x4, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='kfree_skb\x00', r1}, 0x10)
syz_emit_ethernet(0x46, &(0x7f0000000400)={@broadcast, @dev, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "2e5cca", 0x10, 0x3c, 0x0, @dev, @mcast2, {[], {0x0, 0x0, 0x10, 0x0, @gue={{0x2}}}}}}}}, 0x0)

398.299086ms ago: executing program 7 (id=7154):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000005c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
readahead(r2, 0xff, 0x80000)

397.681546ms ago: executing program 2 (id=7155):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@base={0x2, 0x4, 0x8, 0xd, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc0000000}}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)

358.838366ms ago: executing program 2 (id=7157):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1}, &(0x7f0000001fee)='R\x10rust\xe3c*sgrVdn:Dd', 0x0)

358.294066ms ago: executing program 7 (id=7158):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000e8ffd00000000080000000850000006d00000095"], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xbf, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0xb)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x5}, 0x10)
sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@ipv6_getroute={0x30, 0x1a, 0x1, 0x0, 0x0, {0x2}, [@RTA_GATEWAY={0x14, 0x5, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, 0x30}}, 0x0)

347.655926ms ago: executing program 1 (id=7160):
io_setup(0x4, &(0x7f00000004c0)=<r0=>0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f00000000c0)={'#! ', './file0'}, 0xb)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0)
io_submit(r0, 0x1, &(0x7f0000003e40)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}])

249.143317ms ago: executing program 1 (id=7162):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0x1, 0x100008, 0x4, 0x8, 0x1, 0xffffffffffffffff, 0x400000, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240), &(0x7f0000001940), 0x2000cc0, r1}, 0x38)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x1b, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240), 0x0, 0x2, r1}, 0x38)

248.937217ms ago: executing program 2 (id=7163):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10)
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x0)

248.838528ms ago: executing program 7 (id=7164):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000340)=ANY=[@ANYBLOB="01000000000000000100000000000000000000000000000000000000ff"])
ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000009104"])

222.922778ms ago: executing program 2 (id=7165):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000002380)=ANY=[@ANYBLOB='nonumtail=0,iocharset=cp950,umask=00000000000000000000000,uni_xlate=1,uni_xlate=1,shortname=win95,utf8=0,shortname=win95,utf8=1,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c73686f72746e616d653d77696e6e742c756e695f786c6174653d312c696f636861727365743d6d616363726f617469616e2c696f636861727365743d63703433372c757365667265652c726f6469722c7569643e74353a7bd912f41b207e4bc4478b479f5a21373fd412d72f65702b57308921a665e19ef4cc41aac5e7c09d211fd4c1fbf43833c769c6b16297c14d0d92df4f0371acd1b184d6", @ANYRES16, @ANYRES16=r0], 0x6, 0x2aa, &(0x7f0000000500)="$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")
mkdir(&(0x7f0000000240)='./file0\x00', 0x1)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f00000007c0), 0x4000)

209.328108ms ago: executing program 5 (id=7166):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = dup(r1)
setsockopt$packet_int(r2, 0x107, 0x10, &(0x7f0000006ac0)=0x2, 0x4)

98.462199ms ago: executing program 7 (id=7167):
pipe(0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000008500000023000000850000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x8100, &(0x7f0000000440)={&(0x7f0000000400)=@getqdisc={0x24, 0x26, 0x705, 0x70bd2b, 0x5, {0x0, 0x0, 0x0, 0x0, {0xffff, 0xd}, {0xf, 0xd}, {0xfff2, 0x7}}}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

97.87235ms ago: executing program 2 (id=7177):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000000000800000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xa, 0x101, 0x7ffc, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

91.667899ms ago: executing program 1 (id=7168):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f00000003c0)={'#! ', './file0', [{0x20, 'hfsplus\x00'}], 0xa, "ecf7823c437d625a10e08a8b8d7b3a5c9347d16d57c89aabb1fcb1632cf53836da8fd0770f744c884d2e6b19fd2c55c83c1be2c48fadfb136251ce4e19c8d2c6f24cb864fb1ed416bdd5599861dfaab00770a584e3b5035cd50eebca09527ca0fa160d41033d27e8cd0b0b8a94a8a235786a8189187e6e1c427915842e00003781e2b719876f0d09954053a3d8d26c45e59421874815f7adca0d7f7ea9b17715fd0f8facd3f1408336e6fdfa1a2aba222b610ef79a5123b164e882adcd3349f9e016e6dfb8a315b55e51e4289302e507b7b4ee6718ec9a8e629a69253bc7bddf411e9f26c7bfc441c87454c5abee29f6"}, 0x104)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r1, 0x5410, &(0x7f0000000100))

70.23033ms ago: executing program 7 (id=7169):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_opts(r0, 0x0, 0x4, 0x0, 0x0)
setsockopt$SO_BINDTODEVICE_wg(r0, 0x1, 0x19, &(0x7f00000003c0)='wg1\x00', 0x4)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @rand_addr=0x64010100}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)

0s ago: executing program 1 (id=7170):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x22, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x49)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f00000002c0)={0x14, r1, 0x62c21a4ade68aba1, 0x0, 0x0, {{0x32}, {@void, @void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x0)

kernel console output (not intermixed with test programs):

ve_0) entered forwarding state
[  174.453373][T12251] netlink: 176 bytes leftover after parsing attributes in process `syz.2.5229'.
[  174.471753][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  174.480108][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[  174.487150][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[  174.517300][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  174.538917][   T28] audit: type=1400 audit(2000000048.370:11199): avc:  denied  { relabelfrom } for  pid=12260 comm="syz.3.5234" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  174.563784][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  174.573673][   T28] audit: type=1400 audit(2000000048.370:11200): avc:  denied  { relabelto } for  pid=12260 comm="syz.3.5234" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  174.596050][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  174.614216][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  174.633999][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  174.642944][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  174.651444][T12196] device veth0_vlan entered promiscuous mode
[  174.663425][  T312] device bridge_slave_1 left promiscuous mode
[  174.669643][  T312] bridge0: port 2(bridge_slave_1) entered disabled state
[  174.677206][  T312] device bridge_slave_0 left promiscuous mode
[  174.683647][  T312] bridge0: port 1(bridge_slave_0) entered disabled state
[  174.691667][  T312] device veth1_macvtap left promiscuous mode
[  174.698201][  T312] device veth0_vlan left promiscuous mode
[  174.718212][   T28] audit: type=1400 audit(2000000048.550:11201): avc:  denied  { mount } for  pid=12273 comm="syz.3.5240" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  174.746940][T12277] loop5: detected capacity change from 0 to 512
[  174.766085][T12279] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  174.785391][T12277] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #11: comm syz.5.5241: invalid indirect mapped block 256 (level 2)
[  174.800787][T12277] EXT4-fs (loop5): 2 truncates cleaned up
[  174.806600][T12277] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  174.821723][T12277] EXT4-fs error (device loop5): ext4_inlinedir_to_tree:1432: inode #12: block 7: comm syz.5.5241: path /382/file0/file0: bad entry in directory: rec_len % 4 != 0 - offset=259, inode=4278190093, rec_len=255, size=60 fake=0
[  174.829209][T12282] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5243'.
[  174.845387][T12277] EXT4-fs error (device loop5): ext4_inlinedir_to_tree:1432: inode #12: block 7: comm syz.5.5241: path /382/file0/file0: bad entry in directory: rec_len % 4 != 0 - offset=259, inode=4278190093, rec_len=255, size=60 fake=0
[  174.882990][ T7065] EXT4-fs (loop5): unmounting filesystem.
[  174.897391][T12196] device veth1_macvtap entered promiscuous mode
[  174.906276][  T715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  174.946396][  T715] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  174.959859][  T715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  174.968587][  T715] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  174.978989][  T715] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  175.004802][   T28] audit: type=1400 audit(2000000048.840:11202): avc:  denied  { mounton } for  pid=12196 comm="syz-executor" path="/root/syzkaller.x7AiV1/syz-tmp" dev="sda1" ino=1976 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[  175.054157][T12293] loop8: detected capacity change from 0 to 256
[  175.065436][   T28] audit: type=1400 audit(2000000048.870:11203): avc:  denied  { mounton } for  pid=12196 comm="syz-executor" path="/root/syzkaller.x7AiV1/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  175.098341][T12293] FAT-fs (loop8): Directory bread(block 64) failed
[  175.114437][T12293] FAT-fs (loop8): Directory bread(block 65) failed
[  175.121105][T12293] FAT-fs (loop8): Directory bread(block 66) failed
[  175.127709][T12293] FAT-fs (loop8): Directory bread(block 67) failed
[  175.134772][T12293] FAT-fs (loop8): Directory bread(block 68) failed
[  175.141366][T12293] FAT-fs (loop8): Directory bread(block 69) failed
[  175.173567][T12293] FAT-fs (loop8): Directory bread(block 70) failed
[  175.190275][T12293] FAT-fs (loop8): Directory bread(block 71) failed
[  175.200369][T12293] FAT-fs (loop8): Directory bread(block 72) failed
[  175.207898][T12293] FAT-fs (loop8): Directory bread(block 73) failed
[  175.308708][T12308] loop8: detected capacity change from 0 to 128
[  175.349051][T12308] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a802c018, mo2=0002]
[  175.360594][T12308] System zones: 1-3, 19-19, 35-36
[  175.366295][T12308] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  175.377327][T12316] loop5: detected capacity change from 0 to 512
[  175.384270][T12308] ext4 filesystem being mounted at /1/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  175.435977][T12316] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  175.452200][T12316] ext4 filesystem being mounted at /385/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  175.489004][T12196] EXT4-fs (loop8): unmounting filesystem.
[  175.490349][T12316] SELinux:  Context system_u:object_r:bsdpty_d is not valid (left unmapped).
[  175.539221][ T7065] EXT4-fs (loop5): unmounting filesystem.
[  175.546993][T12329] loop4: detected capacity change from 0 to 128
[  175.593213][T12335] loop5: detected capacity change from 0 to 256
[  175.791893][T12367] netlink: 'syz.3.5279': attribute type 8 has an invalid length.
[  175.930226][T12382] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  175.940033][T12382] FAT-fs (loop9): unable to read boot sector
[  176.001275][T12385] fuse: Bad value for 'user_id'
[  176.178224][T12393] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5290'.
[  176.301577][T12408] loop3: detected capacity change from 0 to 1024
[  176.313568][T12408] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  176.400406][ T4527] EXT4-fs (loop3): unmounting filesystem.
[  176.520010][T12429] tmpfs: Unknown parameter 'nolazytime1'
[  176.625361][T12444] loop8: detected capacity change from 0 to 4096
[  176.645491][T12444] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  176.666112][T12196] EXT4-fs (loop8): unmounting filesystem.
[  176.813518][T12455] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5315'.
[  177.568340][T12503] loop4: detected capacity change from 0 to 256
[  177.577641][T12503] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  177.619085][T12507] loop4: detected capacity change from 0 to 512
[  177.627281][T12507] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.5337: casefold flag without casefold feature
[  177.640346][T12507] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.5337: couldn't read orphan inode 15 (err -117)
[  177.652446][T12507] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  177.670410][ T2887] EXT4-fs (loop4): unmounting filesystem.
[  177.694827][T12512] loop4: detected capacity change from 0 to 4096
[  177.703489][T12512] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  177.721849][ T2887] EXT4-fs (loop4): unmounting filesystem.
[  177.832002][  T299] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  178.012243][  T299] usb 4-1: Using ep0 maxpacket: 16
[  178.018569][  T299] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  178.029105][  T299] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  178.050301][  T299] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  178.066060][  T299] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  178.081967][  T299] usb 4-1: Product: syz
[  178.086253][  T299] usb 4-1: Manufacturer: syz
[  178.096371][  T299] usb 4-1: SerialNumber: syz
[  178.171048][T12535] loop8: detected capacity change from 0 to 40427
[  178.178241][T12535] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[  178.186434][T12535] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  178.196155][T12535] F2FS-fs (loop8): invalid crc value
[  178.203281][T12535] F2FS-fs (loop8): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669)
[  178.213934][ T4547] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  178.220433][T12535] F2FS-fs (loop8): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  178.245002][T12535] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  178.252150][T12535] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  178.313704][  T299] usb 4-1: 0:2 : does not exist
[  178.323162][  T299] usb 4-1: USB disconnect, device number 20
[  178.402064][ T4547] usb 5-1: Using ep0 maxpacket: 8
[  178.408231][ T4547] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  178.426313][ T4547] usb 5-1: New USB device found, idVendor=046d, idProduct=c24f, bcdDevice= 0.00
[  178.435733][ T4547] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  178.444772][ T4547] usb 5-1: config 0 descriptor??
[  178.450815][ T4547] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  178.469023][T12554] loop5: detected capacity change from 0 to 2048
[  178.523663][T12554] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  178.548735][T12554] EXT4-fs (loop5): shut down requested (2)
[  178.563327][ T7065] EXT4-fs (loop5): unmounting filesystem.
[  178.661101][T12579] random: crng reseeded on system resumption
[  178.951673][T12599] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  179.010411][T12604] loop3: detected capacity change from 0 to 256
[  179.020059][T12604] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x1aabf3fb, utbl_chksum : 0xe619d30d)
[  179.052139][   T28] kauditd_printk_skb: 28 callbacks suppressed
[  179.052156][   T28] audit: type=1400 audit(2000000052.890:11232): avc:  denied  { map } for  pid=12602 comm="syz.3.5379" path="/630/file0/blkio.bfq.io_service_bytes_recursive" dev="loop3" ino=1048968 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  179.105317][T12615] futex_wake_op: syz.5.5384 tries to shift op by -1; fix this program
[  179.193139][   T28] audit: type=1400 audit(2000000053.030:11233): avc:  denied  { mount } for  pid=12631 comm="syz.2.5392" name="/" dev="ramfs" ino=63991 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  179.289250][   T28] audit: type=1400 audit(2000000053.120:11234): avc:  denied  { watch watch_reads } for  pid=12641 comm="syz.2.5396" path="/1455/file0" dev="tmpfs" ino=7558 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=sock_file permissive=1
[  179.371097][T12653] overlayfs: missing 'lowerdir'
[  179.444453][T12665] loop3: detected capacity change from 0 to 512
[  179.464698][T12665] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  179.473772][T12665] ext4 filesystem being mounted at /638/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  179.498560][ T4527] EXT4-fs (loop3): unmounting filesystem.
[  179.517996][T12674] netlink: 'syz.3.5409': attribute type 16 has an invalid length.
[  179.526033][T12674] netlink: 'syz.3.5409': attribute type 17 has an invalid length.
[  179.542689][T12674] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  179.558796][T12674] device veth0_vlan left promiscuous mode
[  179.565036][T12674] device veth0_vlan entered promiscuous mode
[  179.572253][T12674] device veth1_macvtap left promiscuous mode
[  179.579271][T12674] device veth1_macvtap entered promiscuous mode
[  179.605594][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  179.613436][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  179.621138][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  179.629668][   T43] bridge0: port 1(bridge_slave_0) entered blocking state
[  179.636752][   T43] bridge0: port 1(bridge_slave_0) entered forwarding state
[  179.645025][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  179.653587][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  179.662181][   T43] bridge0: port 2(bridge_slave_1) entered blocking state
[  179.669268][   T43] bridge0: port 2(bridge_slave_1) entered forwarding state
[  179.677042][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  179.685619][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  179.693878][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  179.702476][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  179.711130][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  179.722294][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  179.731089][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  179.743649][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  179.754329][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  179.763374][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  179.772083][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  179.782373][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  179.791299][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  179.809925][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  179.828237][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  179.844406][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  179.860268][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  179.878726][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  179.896014][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  179.913005][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  179.929045][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  179.943816][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  179.951510][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  179.959275][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  179.968186][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  179.976891][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  180.001654][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  180.024603][T12674] syz.3.5409 (12674) used greatest stack depth: 20480 bytes left
[  180.342005][   T19] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  180.532590][   T19] usb 9-1: Using ep0 maxpacket: 16
[  180.538981][   T19] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  180.570209][   T19] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  180.580312][   T19] usb 9-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[  180.590081][T12718] loop5: detected capacity change from 0 to 40427
[  180.597432][   T19] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.606342][T12718] F2FS-fs (loop5): invalid crc value
[  180.612782][   T19] usb 9-1: config 0 descriptor??
[  180.620184][T12718] F2FS-fs (loop5): Found nat_bits in checkpoint
[  180.667284][T12718] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[  180.768571][ T7065] syz-executor: attempt to access beyond end of device
[  180.768571][ T7065] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  180.940507][ T4547] usb 5-1: USB disconnect, device number 15
[  181.020855][   T19] appleir 0003:05AC:8241.0022: unknown main item tag 0x0
[  181.040431][   T19] appleir 0003:05AC:8241.0022: unknown main item tag 0x0
[  181.053061][   T19] appleir 0003:05AC:8241.0022: item fetching failed at offset 2/5
[  181.061415][   T19] appleir 0003:05AC:8241.0022: parse failed
[  181.068198][   T19] appleir: probe of 0003:05AC:8241.0022 failed with error -22
[  181.092946][T12752] loop5: detected capacity change from 0 to 512
[  181.104526][T12752] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  181.113712][T12752] ext4 filesystem being mounted at /419/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  181.128299][T12752] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5444'.
[  181.146334][ T7065] EXT4-fs (loop5): unmounting filesystem.
[  181.229681][   T19] usb 9-1: USB disconnect, device number 4
[  181.791607][   T28] audit: type=1400 audit(2000000055.620:11235): avc:  denied  { unmount } for  pid=12196 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  181.839333][   T28] audit: type=1400 audit(2000000055.670:11236): avc:  denied  { name_bind } for  pid=12814 comm="syz.4.5472" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  181.914580][   T28] audit: type=1326 audit(2000000055.750:11237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12825 comm="syz.5.5477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa428f8e969 code=0x7ffc0000
[  181.944826][   T28] audit: type=1326 audit(2000000055.780:11238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12825 comm="syz.5.5477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa428f8e969 code=0x7ffc0000
[  181.981237][   T28] audit: type=1326 audit(2000000055.780:11239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12825 comm="syz.5.5477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa428f8e969 code=0x7ffc0000
[  182.037069][   T28] audit: type=1326 audit(2000000055.780:11240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12825 comm="syz.5.5477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa428f8e969 code=0x7ffc0000
[  182.082825][   T28] audit: type=1326 audit(2000000055.800:11241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12825 comm="syz.5.5477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa428f8e969 code=0x7ffc0000
[  182.693790][T12859] random: crng reseeded on system resumption
[  182.783121][T12861] device bridge0 entered promiscuous mode
[  182.791237][T12860] device bridge0 left promiscuous mode
[  182.826809][T12857] loop8: detected capacity change from 0 to 40427
[  182.834083][T12857] F2FS-fs (loop8): fault_injection options not supported
[  182.842241][T12857] F2FS-fs (loop8): invalid crc value
[  182.854560][T12857] F2FS-fs (loop8): Found nat_bits in checkpoint
[  182.892776][T12857] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  183.063813][T12892] syz.3.5505[12892] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  183.063892][T12892] syz.3.5505[12892] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  183.313842][T12932] futex_wake_op: syz.4.5523 tries to shift op by -1; fix this program
[  183.364902][T12940] binder: 12939:12940 ioctl c0306201 200000000480 returned -14
[  183.384925][T12944] input: syz0 as /devices/virtual/input/input48
[  183.481976][   T24] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  183.662003][   T24] usb 9-1: Using ep0 maxpacket: 16
[  183.669728][   T24] usb 9-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  183.680338][   T24] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  183.688488][   T24] usb 9-1: Product: syz
[  183.692783][   T24] usb 9-1: Manufacturer: syz
[  183.697425][   T24] usb 9-1: SerialNumber: syz
[  183.702870][   T24] r8152-cfgselector 9-1: config 0 descriptor??
[  183.937123][T12976] loop4: detected capacity change from 0 to 512
[  183.953904][T12976] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  183.965186][T12976] ext4 filesystem being mounted at /854/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  183.985394][ T2887] EXT4-fs (loop4): unmounting filesystem.
[  184.020130][T12987] futex_wake_op: syz.2.5546 tries to shift op by -1; fix this program
[  184.074941][   T28] kauditd_printk_skb: 74 callbacks suppressed
[  184.074959][   T28] audit: type=1400 audit(2000000057.910:11316): avc:  denied  { read } for  pid=12998 comm="syz.4.5552" name="rtc0" dev="devtmpfs" ino=263 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  184.104346][   T28] audit: type=1400 audit(2000000057.910:11317): avc:  denied  { open } for  pid=12998 comm="syz.4.5552" path="/dev/rtc0" dev="devtmpfs" ino=263 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  184.129264][   T24] r8152-cfgselector 9-1: Unknown version 0x0000
[  184.136664][   T28] audit: type=1400 audit(2000000057.910:11318): avc:  denied  { ioctl } for  pid=12998 comm="syz.4.5552" path="/dev/rtc0" dev="devtmpfs" ino=263 ioctlcmd=0x7007 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  184.166216][   T24] r8152-cfgselector 9-1: bad CDC descriptors
[  184.176836][T13003] loop4: detected capacity change from 0 to 1024
[  184.184912][   T24] r8152-cfgselector 9-1: Unknown version 0x0000
[  184.192106][T13003] EXT4-fs: Ignoring removed orlov option
[  184.198099][   T24] r8152-cfgselector 9-1: USB disconnect, device number 5
[  184.206672][   T28] audit: type=1400 audit(2000000058.020:11319): avc:  denied  { mounton } for  pid=13002 comm="syz.4.5554" path="/860/bus" dev="tmpfs" ino=4509 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  184.237323][   T28] audit: type=1400 audit(2000000058.070:11320): avc:  denied  { mount } for  pid=13007 comm="syz.3.5556" name="/" dev="ramfs" ino=64939 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  184.260007][   T28] audit: type=1400 audit(2000000058.070:11321): avc:  denied  { unlink } for  pid=13007 comm="syz.3.5556" name="#f" dev="tmpfs" ino=3474 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  184.282686][   T28] audit: type=1400 audit(2000000058.070:11322): avc:  denied  { mount } for  pid=13007 comm="syz.3.5556" name="/" dev="overlay" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  184.305030][   T28] audit: type=1400 audit(2000000058.100:11323): avc:  denied  { unmount } for  pid=4527 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  184.325809][   T28] audit: type=1400 audit(2000000058.140:11324): avc:  denied  { unmount } for  pid=4527 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  184.348653][T13003] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a000c018, mo2=0002]
[  184.358241][T13003] System zones: 0-1, 3-12
[  184.363226][T13003] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  184.379237][   T28] audit: type=1400 audit(2000000058.210:11325): avc:  denied  { create } for  pid=13011 comm="syz.3.5557" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  184.399991][ T2887] EXT4-fs (loop4): unmounting filesystem.
[  184.414714][T13018] futex_wake_op: syz.3.5560 tries to shift op by -1; fix this program
[  184.674302][T13043] loop8: detected capacity change from 0 to 128
[  184.682992][T13043] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  184.691800][T13043] ext4 filesystem being mounted at /47/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  184.729886][T13043] EXT4-fs (loop8): shut down requested (2)
[  184.744148][T12196] EXT4-fs (loop8): unmounting filesystem.
[  184.756969][T13046] loop8: detected capacity change from 0 to 256
[  184.768076][T13046] FAT-fs (loop8): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  184.777015][T13046] FAT-fs (loop8): Filesystem has been set read-only
[  184.783711][T13046] FAT-fs (loop8): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  184.792785][T13046] FAT-fs (loop8): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  184.801504][T13046] FAT-fs (loop8): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  184.801988][   T19] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  184.811095][T13046] FAT-fs (loop8): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  184.826622][T13046] FAT-fs (loop8): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  184.835417][T13046] FAT-fs (loop8): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  184.844320][T13046] FAT-fs (loop8): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  184.853103][T13046] FAT-fs (loop8): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  184.861843][T13046] FAT-fs (loop8): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  184.871787][T13046] FAT-fs (loop8): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  184.880353][T13046] FAT-fs (loop8): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  184.910700][T13048] loop8: detected capacity change from 0 to 512
[  184.922741][T13048] EXT4-fs (loop8): revision level too high, forcing read-only mode
[  184.930711][T13048] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e028, mo2=0002]
[  184.938926][T13048] System zones: 0-1, 15-15, 18-18, 34-34
[  184.945037][T13048] EXT4-fs (loop8): orphan cleanup on readonly fs
[  184.951409][T13048] EXT4-fs warning (device loop8): ext4_enable_quotas:7024: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  184.966010][T13048] EXT4-fs (loop8): Cannot turn on quotas: error -22
[  184.973028][T13048] EXT4-fs error (device loop8): ext4_orphan_get:1426: comm syz.8.5573: bad orphan inode 16
[  184.983318][T13048] EXT4-fs (loop8): Remounting filesystem read-only
[  184.989959][T13048] ext4_test_bit(bit=15, block=18) = 1
[  184.995787][T13048] is_bad_inode(inode)=0
[  185.000509][T13048] NEXT_ORPHAN(inode)=0
[  185.004773][T13048] max_ino=32
[  185.008143][T13048] i_nlink=2
[  185.008219][   T19] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  185.021765][T13048] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  185.032116][   T19] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  185.041421][   T19] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  185.050659][   T19] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  185.063372][   T19] usb 4-1: config 0 descriptor??
[  185.068954][T13048] fscrypt (loop8, inode 16): Error -61 getting encryption context
[  185.078463][T13048] fscrypt (loop8, inode 16): Error -61 getting encryption context
[  185.094778][T12196] EXT4-fs error (device loop8): ext4_ext_check_inode:520: inode #13: comm syz-executor: pblk 0 bad header/extent: invalid magic - magic f300, entries 1, max 4(0), depth 0(0)
[  185.112850][T12196] EXT4-fs error (device loop8): ext4_ext_check_inode:520: inode #13: comm syz-executor: pblk 0 bad header/extent: invalid magic - magic f300, entries 1, max 4(0), depth 0(0)
[  185.213937][T12196] EXT4-fs (loop8): unmounting filesystem.
[  185.483338][   T19] usb 4-1: string descriptor 0 read error: -71
[  185.490370][T13071] bridge0: port 1(bridge_slave_0) entered blocking state
[  185.493046][   T19] usb 4-1: USB disconnect, device number 21
[  185.501984][T13071] bridge0: port 1(bridge_slave_0) entered disabled state
[  185.521112][T13071] device bridge_slave_0 entered promiscuous mode
[  185.533987][T13071] bridge0: port 2(bridge_slave_1) entered blocking state
[  185.541061][T13071] bridge0: port 2(bridge_slave_1) entered disabled state
[  185.549299][T13071] device bridge_slave_1 entered promiscuous mode
[  185.646736][T13071] bridge0: port 2(bridge_slave_1) entered blocking state
[  185.653926][T13071] bridge0: port 2(bridge_slave_1) entered forwarding state
[  185.661282][T13071] bridge0: port 1(bridge_slave_0) entered blocking state
[  185.668356][T13071] bridge0: port 1(bridge_slave_0) entered forwarding state
[  185.701908][T13098] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5594'.
[  185.720325][  T715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  185.729569][  T715] bridge0: port 1(bridge_slave_0) entered disabled state
[  185.737789][  T715] bridge0: port 2(bridge_slave_1) entered disabled state
[  185.771452][  T715] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  185.781597][  T715] bridge0: port 1(bridge_slave_0) entered blocking state
[  185.788702][  T715] bridge0: port 1(bridge_slave_0) entered forwarding state
[  185.797536][  T715] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  185.805804][  T715] bridge0: port 2(bridge_slave_1) entered blocking state
[  185.812843][  T715] bridge0: port 2(bridge_slave_1) entered forwarding state
[  185.826071][  T715] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  185.835546][  T715] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  185.851085][  T715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  185.865214][  T715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  185.873463][  T715] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  185.881002][  T715] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  185.889663][T13071] device veth0_vlan entered promiscuous mode
[  185.901152][  T715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  185.910666][T13071] device veth1_macvtap entered promiscuous mode
[  185.923688][  T715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  185.934565][  T715] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  185.963024][T13114] loop9: detected capacity change from 0 to 128
[  185.971096][T13114] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  185.980121][T13114] ext4 filesystem being mounted at /0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  186.023513][   T43] device bridge_slave_1 left promiscuous mode
[  186.029690][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[  186.038920][T13071] EXT4-fs (loop9): unmounting filesystem.
[  186.045574][   T43] device bridge_slave_0 left promiscuous mode
[  186.052253][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[  186.061240][   T43] device veth1_macvtap left promiscuous mode
[  186.067425][   T43] device veth0_vlan left promiscuous mode
[  186.362086][   T24] usb 10-1: new low-speed USB device number 6 using dummy_hcd
[  186.386627][T13147] loop3: detected capacity change from 0 to 1024
[  186.393818][T13147] EXT4-fs: Ignoring removed i_version option
[  186.400251][T13147] EXT4-fs (loop3): Test dummy encryption mode enabled
[  186.408822][T13147] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  186.422578][T13147] fscrypt: AES-256-XTS using blk-crypto-fallback
[  186.553150][   T24] usb 10-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  186.564354][   T24] usb 10-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid maxpacket 1023, setting to 8
[  186.575710][   T24] usb 10-1: config 0 interface 0 altsetting 9 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  186.588733][   T24] usb 10-1: config 0 interface 0 has no altsetting 0
[  186.595577][   T24] usb 10-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[  186.611894][   T24] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  186.640896][   T24] usb 10-1: config 0 descriptor??
[  186.652643][T13129] raw-gadget.1 gadget.9: fail, usb_ep_enable returned -22
[  186.681116][T13159] loop4: detected capacity change from 0 to 256
[  186.712340][T13159] FAT-fs (loop4): Directory bread(block 64) failed
[  186.720407][T13159] FAT-fs (loop4): Directory bread(block 65) failed
[  186.729501][T13159] FAT-fs (loop4): Directory bread(block 66) failed
[  186.746851][T13159] FAT-fs (loop4): Directory bread(block 67) failed
[  186.753624][T13159] FAT-fs (loop4): Directory bread(block 68) failed
[  186.760179][T13159] FAT-fs (loop4): Directory bread(block 69) failed
[  186.766950][T13159] FAT-fs (loop4): Directory bread(block 70) failed
[  186.774212][T13159] FAT-fs (loop4): Directory bread(block 71) failed
[  186.780925][T13159] FAT-fs (loop4): Directory bread(block 72) failed
[  186.787498][T13159] FAT-fs (loop4): Directory bread(block 73) failed
[  186.794764][T13157] bridge0: port 1(bridge_slave_0) entered blocking state
[  186.801809][T13157] bridge0: port 1(bridge_slave_0) entered disabled state
[  186.811262][T13157] device bridge_slave_0 entered promiscuous mode
[  186.820977][T13157] bridge0: port 2(bridge_slave_1) entered blocking state
[  186.828147][T13157] bridge0: port 2(bridge_slave_1) entered disabled state
[  186.835976][T13157] device bridge_slave_1 entered promiscuous mode
[  186.953336][T13157] bridge0: port 2(bridge_slave_1) entered blocking state
[  186.960420][T13157] bridge0: port 2(bridge_slave_1) entered forwarding state
[  186.967753][T13157] bridge0: port 1(bridge_slave_0) entered blocking state
[  186.974905][T13157] bridge0: port 1(bridge_slave_0) entered forwarding state
[  186.988062][T13190] netem: change failed
[  187.023173][  T715] device bridge_slave_1 left promiscuous mode
[  187.029425][  T715] bridge0: port 2(bridge_slave_1) entered disabled state
[  187.037175][  T715] device bridge_slave_0 left promiscuous mode
[  187.044857][  T715] bridge0: port 1(bridge_slave_0) entered disabled state
[  187.053787][  T715] device veth1_macvtap left promiscuous mode
[  187.059912][  T715] device veth0_vlan left promiscuous mode
[  187.063250][   T24] hid (null): invalid report_size -938219617
[  187.072834][   T24] uclogic 0003:28BD:0094.0023: interface is invalid, ignoring
[  187.188739][T13199] device vlan2 entered promiscuous mode
[  187.194356][T13199] device dummy0 entered promiscuous mode
[  187.200919][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[  187.208522][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[  187.218225][T13201] loop4: detected capacity change from 0 to 512
[  187.224801][T13201] ext4: Bad value for 'sb'
[  187.229727][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  187.237566][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  187.245491][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  187.254086][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  187.262425][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[  187.269461][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[  187.277738][  T278] usb 10-1: USB disconnect, device number 6
[  187.283860][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  187.292454][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  187.297784][T13203] loop4: detected capacity change from 0 to 512
[  187.300738][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[  187.313771][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[  187.313981][T13203] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  187.330107][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  187.338499][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  187.339903][T13203] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  187.347200][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  187.356290][T13203] ext4 filesystem being mounted at /884/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  187.363859][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  187.390750][ T2887] EXT4-fs (loop4): unmounting filesystem.
[  187.396610][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  187.405374][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  187.414540][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  187.423473][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  187.432302][T13157] device veth0_vlan entered promiscuous mode
[  187.440587][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  187.448182][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  187.460551][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  187.469679][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  187.479623][T13157] device veth1_macvtap entered promiscuous mode
[  187.492253][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  187.500521][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  187.509005][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  187.533013][ T4547] EXT4-fs (loop3): unmounting filesystem.
[  187.548843][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  187.568487][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  187.852277][T13258] loop9: detected capacity change from 0 to 256
[  187.864878][T13258] FAT-fs (loop9): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  187.873689][T13258] FAT-fs (loop9): Filesystem has been set read-only
[  187.880366][T13258] FAT-fs (loop9): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  187.889197][T13258] FAT-fs (loop9): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  187.898458][T13258] FAT-fs (loop9): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  187.907458][T13258] FAT-fs (loop9): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  187.914793][T13264] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5669'.
[  187.916266][ T4547] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  187.932823][T13258] FAT-fs (loop9): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  187.941677][T13258] FAT-fs (loop9): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  187.951189][T13258] FAT-fs (loop9): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  187.960187][T13258] FAT-fs (loop9): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  187.969124][T13258] FAT-fs (loop9): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  187.979658][T13258] FAT-fs (loop9): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  187.988813][T13258] FAT-fs (loop9): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  188.048479][T13277] loop1: detected capacity change from 0 to 512
[  188.056305][T13277] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  188.069758][T13277] EXT4-fs (loop1): 1 truncate cleaned up
[  188.076076][T13277] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  188.096537][T13157] EXT4-fs (loop1): unmounting filesystem.
[  188.128867][T13291] loop9: detected capacity change from 0 to 128
[  188.139419][T13291] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  188.154007][ T4547] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  188.162225][T13291] ext4 filesystem being mounted at /12/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  188.164999][ T4547] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  188.186880][ T4547] usb 5-1: New USB device found, idVendor=0925, idProduct=0005, bcdDevice= 0.00
[  188.196143][ T4547] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.206415][T13298] loop1: detected capacity change from 0 to 256
[  188.213260][ T4547] usb 5-1: config 0 descriptor??
[  188.219233][T13071] EXT4-fs (loop9): unmounting filesystem.
[  188.230138][T13298] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  188.239275][T13298] FAT-fs (loop1): Filesystem has been set read-only
[  188.246022][T13298] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  188.255132][T13298] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  188.264071][T13298] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  188.273062][T13298] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  188.281860][T13298] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  188.291002][T13298] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  188.297357][T13302] syz.9.5686[13302] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  188.299777][T13302] syz.9.5686[13302] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  188.300202][T13298] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  188.331782][T13298] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  188.340626][T13298] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  188.351324][T13298] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  188.360042][T13298] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  188.467224][T13318] loop9: detected capacity change from 0 to 1024
[  188.474835][T13318] EXT4-fs: Ignoring removed i_version option
[  188.481301][T13318] EXT4-fs (loop9): Test dummy encryption mode enabled
[  188.491036][T13318] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  188.627019][ T4547] smartjoyplus 0003:0925:0005.0024: unknown main item tag 0x0
[  188.647268][ T4547] smartjoyplus 0003:0925:0005.0024: item fetching failed at offset 6/7
[  188.667589][ T4547] smartjoyplus 0003:0925:0005.0024: parse failed
[  188.674306][ T4547] smartjoyplus: probe of 0003:0925:0005.0024 failed with error -22
[  188.793012][T13331] bridge0: port 1(bridge_slave_0) entered blocking state
[  188.806401][T13331] bridge0: port 1(bridge_slave_0) entered disabled state
[  188.821742][T13331] device bridge_slave_0 entered promiscuous mode
[  188.832781][T13331] bridge0: port 2(bridge_slave_1) entered blocking state
[  188.839944][T13331] bridge0: port 2(bridge_slave_1) entered disabled state
[  188.849357][T13331] device bridge_slave_1 entered promiscuous mode
[  188.862323][  T278] usb 5-1: USB disconnect, device number 16
[  188.973649][T13331] bridge0: port 2(bridge_slave_1) entered blocking state
[  188.980750][T13331] bridge0: port 2(bridge_slave_1) entered forwarding state
[  188.988093][T13331] bridge0: port 1(bridge_slave_0) entered blocking state
[  188.995173][T13331] bridge0: port 1(bridge_slave_0) entered forwarding state
[  189.040750][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  189.048855][  T312] bridge0: port 1(bridge_slave_0) entered disabled state
[  189.056478][  T312] bridge0: port 2(bridge_slave_1) entered disabled state
[  189.074310][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  189.082604][  T312] bridge0: port 1(bridge_slave_0) entered blocking state
[  189.083097][   T28] kauditd_printk_skb: 154 callbacks suppressed
[  189.083113][   T28] audit: type=1400 audit(2000000062.920:11479): avc:  denied  { write } for  pid=13349 comm="syz.5.5709" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  189.089674][  T312] bridge0: port 1(bridge_slave_0) entered forwarding state
[  189.089885][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  189.131652][  T312] bridge0: port 2(bridge_slave_1) entered blocking state
[  189.138762][  T312] bridge0: port 2(bridge_slave_1) entered forwarding state
[  189.147460][  T715] device bridge_slave_1 left promiscuous mode
[  189.153754][  T715] bridge0: port 2(bridge_slave_1) entered disabled state
[  189.161578][  T715] device bridge_slave_0 left promiscuous mode
[  189.167930][  T715] bridge0: port 1(bridge_slave_0) entered disabled state
[  189.178791][  T715] device veth1_macvtap left promiscuous mode
[  189.184949][  T715] device veth0_vlan left promiscuous mode
[  189.300576][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  189.325672][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  189.353767][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  189.367586][T13331] device veth0_vlan entered promiscuous mode
[  189.374294][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  189.382976][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  189.390637][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  189.397727][   T28] audit: type=1400 audit(2000000063.230:11480): avc:  denied  { bpf } for  pid=13353 comm="syz.4.5711" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  189.407750][T13331] device veth1_macvtap entered promiscuous mode
[  189.430057][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  189.439077][   T28] audit: type=1400 audit(2000000063.260:11481): avc:  denied  { read } for  pid=13352 comm="syz.1.5710" name="kvm" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  189.462137][   T28] audit: type=1400 audit(2000000063.260:11482): avc:  denied  { open } for  pid=13352 comm="syz.1.5710" path="/dev/kvm" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  189.486898][   T28] audit: type=1400 audit(2000000063.260:11483): avc:  denied  { map_create } for  pid=13353 comm="syz.4.5711" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  189.507025][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  189.518782][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  189.535160][   T28] audit: type=1400 audit(2000000063.260:11484): avc:  denied  { perfmon } for  pid=13353 comm="syz.4.5711" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  189.561703][T13362] loop4: detected capacity change from 0 to 2048
[  189.569547][   T28] audit: type=1400 audit(2000000063.260:11485): avc:  denied  { map_read map_write } for  pid=13353 comm="syz.4.5711" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  189.590579][   T28] audit: type=1400 audit(2000000063.260:11486): avc:  denied  { prog_load } for  pid=13353 comm="syz.4.5711" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  189.612478][   T28] audit: type=1400 audit(2000000063.260:11487): avc:  denied  { prog_run } for  pid=13353 comm="syz.4.5711" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  189.632743][   T28] audit: type=1400 audit(2000000063.260:11488): avc:  denied  { ioctl } for  pid=13352 comm="syz.1.5710" path="/dev/kvm" dev="devtmpfs" ino=83 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  189.651268][T13364] loop7: detected capacity change from 0 to 256
[  189.659246][  T278] EXT4-fs (loop9): unmounting filesystem.
[  189.670852][T13362] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  189.691704][T13362] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  189.732494][T13362] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  189.750043][T13362] EXT4-fs (loop4): This should not happen!! Data will be lost
[  189.750043][T13362] 
[  189.778625][T13362] EXT4-fs (loop4): Total free blocks count 0
[  189.785027][T13362] EXT4-fs (loop4): Free/Dirty block details
[  189.791078][T13362] EXT4-fs (loop4): free_blocks=2415919104
[  189.797084][T13362] EXT4-fs (loop4): dirty_blocks=736
[  189.802493][T13362] EXT4-fs (loop4): Block reservation details
[  189.808668][T13362] EXT4-fs (loop4): i_reserved_data_blocks=57
[  189.829575][T13382] syz.7.5721[13382] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  189.829654][T13382] syz.7.5721[13382] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  190.002131][T13390] device batadv_slave_0 entered promiscuous mode
[  190.015483][T13386] loop7: detected capacity change from 0 to 40427
[  190.028082][T13386] F2FS-fs (loop7): invalid crc value
[  190.031581][T13375] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2048 with error 28
[  190.036316][T13389] device batadv_slave_0 left promiscuous mode
[  190.053075][T13386] F2FS-fs (loop7): Found nat_bits in checkpoint
[  190.090980][T13386] F2FS-fs (loop7): Start checkpoint disabled!
[  190.100737][T13386] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e6
[  190.176741][  T312] kworker/u4:4: attempt to access beyond end of device
[  190.176741][  T312] loop7: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  190.241822][T13400] SELinux:  unknown common Ee
[  190.248795][T13400] SELinux: failed to load policy
[  190.584820][T13462] device veth1_macvtap left promiscuous mode
[  190.590910][T13462] device macsec0 entered promiscuous mode
[  190.601322][T13462] device veth1_macvtap entered promiscuous mode
[  190.607798][T13462] device macsec0 left promiscuous mode
[  190.613866][  T715] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  190.772124][ T4547] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  190.830525][T13471] loop1: detected capacity change from 0 to 40427
[  190.837758][T13471] F2FS-fs (loop1): fault_type options not supported
[  190.845346][T13471] F2FS-fs (loop1): invalid crc value
[  190.851620][T13471] F2FS-fs (loop1): Found nat_bits in checkpoint
[  190.891140][T13471] F2FS-fs (loop1): Start checkpoint disabled!
[  190.898033][T13471] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  190.952716][T13471] F2FS-fs (loop1): ino:10, start:1, end:8193, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[  190.982005][ T4547] usb 5-1: Using ep0 maxpacket: 16
[  190.988365][ T4547] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  191.009556][ T4547] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  191.029108][ T4547] usb 5-1: config 0 interface 0 has no altsetting 0
[  191.043497][ T4547] usb 5-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  191.052710][ T4547] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  191.074038][ T4547] usb 5-1: config 0 descriptor??
[  191.084738][  T312] kworker/u4:4: attempt to access beyond end of device
[  191.084738][  T312] loop1: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  191.185396][T13472] loop5: detected capacity change from 0 to 131072
[  191.202727][T13472] F2FS-fs (loop5): Test dummy encryption mode enabled
[  191.222436][T13472] F2FS-fs (loop5): invalid crc value
[  191.247240][T13472] F2FS-fs (loop5): Found nat_bits in checkpoint
[  191.303041][T13499] overlayfs: missing 'lowerdir'
[  191.333160][T13472] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  191.481546][ T4547] hid (null): unknown global tag 0xd
[  191.487465][ T4547] hid (null): unknown global tag 0xc
[  191.493092][ T4547] hid (null): unknown global tag 0xc
[  191.507982][ T4547] hid-generic 0003:060B:500A.0025: unknown main item tag 0x0
[  191.515504][ T4547] hid-generic 0003:060B:500A.0025: unknown main item tag 0x0
[  191.522949][ T4547] hid-generic 0003:060B:500A.0025: unknown main item tag 0x0
[  191.530385][ T4547] hid-generic 0003:060B:500A.0025: unknown main item tag 0x0
[  191.537919][ T4547] hid-generic 0003:060B:500A.0025: unknown main item tag 0x0
[  191.545461][ T4547] hid-generic 0003:060B:500A.0025: unknown main item tag 0x0
[  191.562168][ T4547] hid-generic 0003:060B:500A.0025: unknown main item tag 0x0
[  191.569631][ T4547] hid-generic 0003:060B:500A.0025: unknown main item tag 0x0
[  191.577408][ T4547] hid-generic 0003:060B:500A.0025: unknown main item tag 0x0
[  191.584904][ T4547] hid-generic 0003:060B:500A.0025: unknown main item tag 0x0
[  191.592332][ T4547] hid-generic 0003:060B:500A.0025: collection stack underflow
[  191.599829][ T4547] hid-generic 0003:060B:500A.0025: item 0 0 0 12 parsing failed
[  191.607837][ T4547] hid-generic: probe of 0003:060B:500A.0025 failed with error -22
[  191.671968][   T19] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  191.684060][ T4547] usb 5-1: USB disconnect, device number 17
[  191.863297][   T19] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  191.879269][   T19] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  191.889417][   T19] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  191.893335][T13566] syz.2.5805[13566] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  191.902617][T13566] syz.2.5805[13566] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  191.908680][   T19] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  191.934587][   T19] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  191.943273][   T19] usb 2-1: config 0 descriptor??
[  191.958094][T13569] netlink: 44 bytes leftover after parsing attributes in process `syz.5.5806'.
[  191.967384][T13569] netlink: 43 bytes leftover after parsing attributes in process `syz.5.5806'.
[  191.976462][T13569] netlink: 'syz.5.5806': attribute type 5 has an invalid length.
[  191.984338][T13569] netlink: 43 bytes leftover after parsing attributes in process `syz.5.5806'.
[  192.025852][T13573] SELinux: failed to load policy
[  192.117789][T13588] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=none:owns=io+mem
[  192.147356][T13592] loop5: detected capacity change from 0 to 512
[  192.155960][T13592] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  192.164976][T13592] EXT4-fs (loop5): orphan cleanup on readonly fs
[  192.171852][T13592] EXT4-fs warning (device loop5): ext4_enable_quotas:7024: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  192.186592][T13592] EXT4-fs (loop5): Cannot turn on quotas: error -22
[  192.190247][T13597] loop7: detected capacity change from 0 to 16
[  192.193468][T13592] EXT4-fs error (device loop5): ext4_orphan_get:1400: inode #16: comm syz.5.5816: iget: immutable or append flags not allowed on symlinks
[  192.199868][T13597] erofs: Unknown parameter 'ÿÿÿÿ'
[  192.229261][T13592] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.5816: couldn't read orphan inode 16 (err -117)
[  192.231418][T13599] loop4: detected capacity change from 0 to 128
[  192.248208][T13599] EXT4-fs (loop4): Test dummy encryption mode enabled
[  192.255630][T13592] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  192.269745][T13599] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  192.282260][T13599] ext4 filesystem being mounted at /900/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  192.305403][ T7065] EXT4-fs (loop5): unmounting filesystem.
[  192.342927][ T2887] EXT4-fs (loop4): unmounting filesystem.
[  192.356543][   T19] plantronics 0003:047F:FFFF.0026: unknown main item tag 0x0
[  192.370677][   T19] plantronics 0003:047F:FFFF.0026: unknown main item tag 0x0
[  192.384210][   T19] plantronics 0003:047F:FFFF.0026: unknown main item tag 0x0
[  192.397422][   T19] plantronics 0003:047F:FFFF.0026: unknown main item tag 0x0
[  192.405113][   T19] plantronics 0003:047F:FFFF.0026: unknown main item tag 0x0
[  192.412737][   T19] plantronics 0003:047F:FFFF.0026: unknown main item tag 0x0
[  192.420179][   T19] plantronics 0003:047F:FFFF.0026: unknown main item tag 0x0
[  192.427593][   T19] plantronics 0003:047F:FFFF.0026: unknown main item tag 0x0
[  192.434999][   T19] plantronics 0003:047F:FFFF.0026: unknown main item tag 0x0
[  192.442583][   T19] plantronics 0003:047F:FFFF.0026: No inputs registered, leaving
[  192.451374][   T19] plantronics 0003:047F:FFFF.0026: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  192.486849][T13631] loop5: detected capacity change from 0 to 256
[  192.652852][ T4547] usb 2-1: USB disconnect, device number 6
[  192.886547][T13678] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5851'.
[  192.898978][T13678] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5851'.
[  192.958100][T13690] loop4: detected capacity change from 0 to 256
[  193.150827][T13703] SELinux: failed to load policy
[  193.191318][T13706] loop4: detected capacity change from 0 to 512
[  193.198672][T13706] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  193.268550][T13701] loop5: detected capacity change from 0 to 40427
[  193.276003][T13701] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  193.283921][T13701] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  193.299942][T13712] loop1: detected capacity change from 0 to 4096
[  193.302286][T13718] loop7: detected capacity change from 0 to 512
[  193.307525][T13706] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  193.322617][T13706] ext4 filesystem being mounted at /920/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  193.324712][T13712] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  193.334779][T13701] F2FS-fs (loop5): Found nat_bits in checkpoint
[  193.359319][T13706] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.5863: bg 0: block 304: padding at end of block bitmap is not set
[  193.383659][T13706] EXT4-fs (loop4): Remounting filesystem read-only
[  193.391378][T13718] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  193.391452][T13701] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  193.407420][T13701] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  193.407536][T13718] ext4 filesystem being mounted at /29/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  193.441386][T13718] EXT4-fs error (device loop7): ext4_do_update_inode:5226: inode #2: comm syz.7.5867: corrupted inode contents
[  193.453536][T13718] EXT4-fs error (device loop7): ext4_dirty_inode:6091: inode #2: comm syz.7.5867: mark_inode_dirty error
[  193.471808][T13718] EXT4-fs error (device loop7): ext4_do_update_inode:5226: inode #2: comm syz.7.5867: corrupted inode contents
[  193.484082][T13718] EXT4-fs error (device loop7): __ext4_ext_dirty:202: inode #2: comm syz.7.5867: mark_inode_dirty error
[  193.484495][ T2887] EXT4-fs (loop4): unmounting filesystem.
[  193.516115][T13157] EXT4-fs (loop1): unmounting filesystem.
[  193.562705][T13331] EXT4-fs (loop7): unmounting filesystem.
[  193.605060][T13742] SELinux: failed to load policy
[  193.605685][T13739] loop1: detected capacity change from 0 to 2048
[  193.652580][T13739] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  193.692610][T13751] loop4: detected capacity change from 0 to 512
[  193.715396][T13739] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  193.733959][T13739] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  193.746328][T13739] EXT4-fs (loop1): This should not happen!! Data will be lost
[  193.746328][T13739] 
[  193.752306][T13751] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  193.756084][T13739] EXT4-fs (loop1): Total free blocks count 0
[  193.766421][T13751] EXT4-fs (loop4): orphan cleanup on readonly fs
[  193.769978][T13739] EXT4-fs (loop1): Free/Dirty block details
[  193.782450][T13751] EXT4-fs warning (device loop4): ext4_enable_quotas:7024: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  193.783591][T13739] EXT4-fs (loop1): free_blocks=2415919104
[  193.802958][T13751] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  193.809791][T13751] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #16: comm syz.4.5890: iget: immutable or append flags not allowed on symlinks
[  193.824662][T13739] EXT4-fs (loop1): dirty_blocks=16
[  193.829905][T13739] EXT4-fs (loop1): Block reservation details
[  193.830997][T13751] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.5890: couldn't read orphan inode 16 (err -117)
[  193.849144][T13751] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  193.851190][T13739] EXT4-fs (loop1): i_reserved_data_blocks=26
[  193.897284][ T2887] EXT4-fs (loop4): unmounting filesystem.
[  194.032817][T13783] loop7: detected capacity change from 0 to 128
[  194.042601][T13783] EXT4-fs (loop7): Test dummy encryption mode enabled
[  194.063020][T13783] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  194.075006][T13783] ext4 filesystem being mounted at /36/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  194.127946][T13331] EXT4-fs (loop7): unmounting filesystem.
[  194.162563][   T28] kauditd_printk_skb: 101 callbacks suppressed
[  194.162581][   T28] audit: type=1400 audit(2000000068.000:11590): avc:  denied  { relabelfrom } for  pid=13800 comm="syz.2.5900" name="NETLINK" dev="sockfs" ino=69656 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  194.179267][T13758] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2048 with error 28
[  194.222573][   T28] audit: type=1400 audit(2000000068.040:11591): avc:  denied  { relabelto } for  pid=13800 comm="syz.2.5900" name="NETLINK" dev="sockfs" ino=69656 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=netlink_netfilter_socket permissive=1
[  194.327203][T13818] netlink: 104 bytes leftover after parsing attributes in process `syz.4.5909'.
[  194.336579][   T28] audit: type=1400 audit(2000000068.160:11592): avc:  denied  { nlmsg_read } for  pid=13816 comm="syz.4.5909" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  194.404074][T13822] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  194.421679][T13822] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  194.510621][   T28] audit: type=1400 audit(2000000068.340:11593): avc:  denied  { write } for  pid=13831 comm="syz.4.5916" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  194.575644][T13820] loop7: detected capacity change from 0 to 40427
[  194.591378][T13820] F2FS-fs (loop7): fault_type options not supported
[  194.600384][T13820] F2FS-fs (loop7): invalid crc value
[  194.607502][   T28] audit: type=1400 audit(2000000068.440:11594): avc:  denied  { read } for  pid=13838 comm="syz.4.5919" dev="nsfs" ino=4026532635 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  194.632622][T13820] F2FS-fs (loop7): Found nat_bits in checkpoint
[  194.643730][T13842] loop1: detected capacity change from 0 to 1024
[  194.655079][   T28] audit: type=1400 audit(2000000068.440:11595): avc:  denied  { open } for  pid=13838 comm="syz.4.5919" path="net:[4026532635]" dev="nsfs" ino=4026532635 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  194.661180][T13842] EXT4-fs (loop1): Test dummy encryption mode enabled
[  194.698978][   T28] audit: type=1400 audit(2000000068.440:11596): avc:  denied  { create } for  pid=13838 comm="syz.4.5919" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  194.709081][T13820] F2FS-fs (loop7): Start checkpoint disabled!
[  194.728249][T13842] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  194.737244][   T28] audit: type=1400 audit(2000000068.470:11597): avc:  denied  { bind } for  pid=13838 comm="syz.4.5919" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  194.737934][T13820] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e6
[  194.787745][   T28] audit: type=1400 audit(2000000068.470:11598): avc:  denied  { listen } for  pid=13838 comm="syz.4.5919" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  194.821766][T13157] EXT4-fs (loop1): unmounting filesystem.
[  194.840480][T13820] F2FS-fs (loop7): ino:10, start:1, end:8193, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[  194.855159][   T28] audit: type=1400 audit(2000000068.610:11599): avc:  denied  { write } for  pid=13841 comm="syz.1.5929" name="bus" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  194.947709][  T298] kworker/u4:3: attempt to access beyond end of device
[  194.947709][  T298] loop7: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  195.002092][   T24] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  195.124358][T13862] loop1: detected capacity change from 0 to 512
[  195.127670][T13864] loop7: detected capacity change from 0 to 1024
[  195.130967][T13862] EXT4-fs: Ignoring removed mblk_io_submit option
[  195.143825][T13862] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  195.145401][T13864] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  195.169307][T13862] EXT4-fs (loop1): 1 truncate cleaned up
[  195.175654][T13862] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  195.191325][T13331] EXT4-fs (loop7): unmounting filesystem.
[  195.203076][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  195.214393][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  195.215351][T13157] EXT4-fs (loop1): unmounting filesystem.
[  195.224347][   T24] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  195.243267][   T24] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  195.252389][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  195.260935][   T24] usb 5-1: config 0 descriptor??
[  195.282490][T13873] SELinux:  Context system_u:object_r:dhcp_state_t:s0 is not valid (left unmapped).
[  195.284386][T13874] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  195.379922][T13890] loop7: detected capacity change from 0 to 512
[  195.386938][T13890] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  195.398349][T13890] EXT4-fs (loop7): 1 truncate cleaned up
[  195.404434][T13890] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  195.424736][T13331] EXT4-fs (loop7): unmounting filesystem.
[  195.669546][   T24] plantronics 0003:047F:FFFF.0027: No inputs registered, leaving
[  195.681885][   T24] plantronics 0003:047F:FFFF.0027: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  195.752028][T13911] loop7: detected capacity change from 0 to 1024
[  195.760945][T13911] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  195.778712][T13331] EXT4-fs (loop7): unmounting filesystem.
[  195.831087][T13891] loop1: detected capacity change from 0 to 131072
[  195.838354][T13918] netem: change failed
[  195.838579][T13891] F2FS-fs (loop1): Test dummy encryption mode enabled
[  195.856033][T13891] F2FS-fs (loop1): invalid crc value
[  195.878550][T13891] F2FS-fs (loop1): Found nat_bits in checkpoint
[  195.922883][T13891] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  195.998043][T13942] loop7: detected capacity change from 0 to 512
[  196.032929][T13942] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  196.041900][T13942] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  196.083596][T13942] EXT4-fs (loop7): shut down requested (0)
[  196.090708][T13942] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop7 ino=15
[  196.105449][T13942] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop7 ino=15
[  196.132943][T13331] EXT4-fs (loop7): unmounting filesystem.
[  196.274366][T13958] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5963'.
[  196.478841][T13964] loop1: detected capacity change from 0 to 40427
[  196.485811][T13964] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  196.493598][T13964] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  196.502935][T13964] F2FS-fs (loop1): invalid crc value
[  196.509722][T13964] F2FS-fs (loop1): Found nat_bits in checkpoint
[  196.541434][T13964] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  196.548738][T13964] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  197.029293][T13999] loop1: detected capacity change from 0 to 1024
[  197.032537][T13987] loop5: detected capacity change from 0 to 40427
[  197.042740][T13987] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  197.050503][T13987] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  197.059721][T13987] F2FS-fs (loop5): invalid crc value
[  197.066846][T13999] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  197.079954][T13987] F2FS-fs (loop5): Found nat_bits in checkpoint
[  197.127756][T13157] EXT4-fs (loop1): unmounting filesystem.
[  197.151559][T13987] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  197.158907][T13987] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  197.205227][  T298] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  197.214597][  T298] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  197.324403][T14016] loop1: detected capacity change from 0 to 256
[  197.568232][T14056] loop4: detected capacity change from 0 to 512
[  197.600384][T14056] EXT4-fs: Ignoring removed mblk_io_submit option
[  197.618085][T14056] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  197.653912][ T2887] EXT4-fs (loop4): unmounting filesystem.
[  197.774208][T14065] loop4: detected capacity change from 0 to 4096
[  197.801151][T14065] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  197.822480][   T19] usb 5-1: USB disconnect, device number 18
[  197.874420][ T2887] EXT4-fs (loop4): unmounting filesystem.
[  198.172001][   T24] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  198.190960][T14081] loop5: detected capacity change from 0 to 1024
[  198.212294][T14081] EXT4-fs: Ignoring removed oldalloc option
[  198.253205][T14081] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  198.379358][ T7065] EXT4-fs (loop5): unmounting filesystem.
[  198.403096][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  198.422056][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  198.441561][   T24] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  198.448847][T14087] loop5: detected capacity change from 0 to 4096
[  198.462704][   T24] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  198.465279][T14079] loop4: detected capacity change from 0 to 131072
[  198.478937][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.487322][T14079] F2FS-fs (loop4): Test dummy encryption mode enabled
[  198.495712][   T24] usb 2-1: config 0 descriptor??
[  198.501300][T14079] F2FS-fs (loop4): invalid crc value
[  198.508805][T14087] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  198.526499][T14079] F2FS-fs (loop4): Found nat_bits in checkpoint
[  198.526655][T14087] EXT4-fs error (device loop5): ext4_do_update_inode:5226: inode #15: comm syz.5.6020: corrupted inode contents
[  198.545199][T14087] EXT4-fs error (device loop5): ext4_dirty_inode:6091: inode #15: comm syz.5.6020: mark_inode_dirty error
[  198.558539][T14087] EXT4-fs error (device loop5): ext4_do_update_inode:5226: inode #15: comm syz.5.6020: corrupted inode contents
[  198.570729][T14087] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #15: comm syz.5.6020: mark_inode_dirty error
[  198.584092][T14087] EXT4-fs error (device loop5): ext4_do_update_inode:5226: inode #15: comm syz.5.6020: corrupted inode contents
[  198.596658][T14087] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #15: comm syz.5.6020: mark_inode_dirty error
[  198.608287][T14079] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  198.608486][T14087] EXT4-fs error (device loop5): ext4_do_update_inode:5226: inode #15: comm syz.5.6020: corrupted inode contents
[  198.642258][T14087] EXT4-fs error (device loop5): ext4_truncate:4313: inode #15: comm syz.5.6020: mark_inode_dirty error
[  198.662585][T14087] EXT4-fs error (device loop5) in ext4_setattr:5630: Corrupt filesystem
[  198.676658][T14097] EXT4-fs error (device loop5): ext4_do_update_inode:5226: inode #15: comm syz.5.6020: corrupted inode contents
[  198.721561][ T7065] EXT4-fs warning (device loop5): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[  198.733637][ T7065] EXT4-fs (loop5): unmounting filesystem.
[  198.753149][T14111] loop5: detected capacity change from 0 to 128
[  198.785468][T14113] loop5: detected capacity change from 0 to 1024
[  198.792319][T14113] EXT4-fs: Ignoring removed bh option
[  198.799010][T14113] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  198.807743][T14113] EXT4-fs (loop5): orphan cleanup on readonly fs
[  198.815135][T14113] EXT4-fs error (device loop5): __ext4_get_inode_loc:4508: comm syz.5.6031: Invalid inode table block 0 in block_group 0
[  198.828046][T14113] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5887: Corrupt filesystem
[  198.837710][T14113] EXT4-fs error (device loop5): ext4_quota_write:7184: inode #3: comm syz.5.6031: mark_inode_dirty error
[  198.849319][T14113] EXT4-fs error (device loop5): ext4_acquire_dquot:6789: comm syz.5.6031: Failed to acquire dquot type 0
[  198.860914][T14113] EXT4-fs error (device loop5): __ext4_get_inode_loc:4508: comm syz.5.6031: Invalid inode table block 0 in block_group 0
[  198.873904][T14113] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5887: Corrupt filesystem
[  198.883486][T14113] EXT4-fs error (device loop5): ext4_ext_truncate:4453: inode #15: comm syz.5.6031: mark_inode_dirty error
[  198.895333][T14113] EXT4-fs error (device loop5): __ext4_get_inode_loc:4508: comm syz.5.6031: Invalid inode table block 0 in block_group 0
[  198.908151][T14113] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5887: Corrupt filesystem
[  198.918066][T14113] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  198.919271][   T24] plantronics 0003:047F:FFFF.0028: No inputs registered, leaving
[  198.926838][T14113] EXT4-fs error (device loop5): __ext4_get_inode_loc:4508: comm syz.5.6031: Invalid inode table block 0 in block_group 0
[  198.947446][T14113] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5887: Corrupt filesystem
[  198.953315][   T24] plantronics 0003:047F:FFFF.0028: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  198.969550][T14113] EXT4-fs error (device loop5): ext4_truncate:4313: inode #15: comm syz.5.6031: mark_inode_dirty error
[  198.982055][T14113] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  198.991188][T14113] EXT4-fs (loop5): 1 truncate cleaned up
[  198.997026][T14113] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  199.031847][ T7065] EXT4-fs (loop5): unmounting filesystem.
[  199.071382][T14124] loop5: detected capacity change from 0 to 256
[  199.078514][T14124] exfat: Deprecated parameter 'namecase'
[  199.086677][T14124] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe3f33698, utbl_chksum : 0xe619d30d)
[  199.105123][T14128] loop4: detected capacity change from 0 to 1024
[  199.112002][T14128] EXT4-fs: Ignoring removed oldalloc option
[  199.143594][T14128] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  199.209104][ T2887] EXT4-fs (loop4): unmounting filesystem.
[  199.282283][   T28] kauditd_printk_skb: 40 callbacks suppressed
[  199.282300][   T28] audit: type=1400 audit(2000000073.120:11638): avc:  denied  { read write } for  pid=14150 comm="syz.5.6046" name="uinput" dev="devtmpfs" ino=262 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  199.323029][T14154] loop5: detected capacity change from 0 to 512
[  199.334071][   T28] audit: type=1400 audit(2000000073.120:11639): avc:  denied  { open } for  pid=14150 comm="syz.5.6046" path="/dev/uinput" dev="devtmpfs" ino=262 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  199.366195][T14154] EXT4-fs (loop5): orphan cleanup on readonly fs
[  199.383275][T14154] EXT4-fs error (device loop5): ext4_orphan_get:1426: comm syz.5.6048: bad orphan inode 13
[  199.403733][T14154] ext4_test_bit(bit=12, block=18) = 1
[  199.409317][T14154] is_bad_inode(inode)=0
[  199.421963][T14154] NEXT_ORPHAN(inode)=2130706432
[  199.432097][T14154] max_ino=32
[  199.435400][T14154] i_nlink=1
[  199.438624][T14154] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  199.451864][T14154] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  199.472982][T14154] EXT4-fs (loop5): re-mounted. Quota mode: writeback.
[  199.488283][ T7065] EXT4-fs (loop5): unmounting filesystem.
[  199.518742][T14170] loop5: detected capacity change from 0 to 512
[  199.525404][T14170] EXT4-fs: Ignoring removed mblk_io_submit option
[  199.533582][T14170] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  199.552011][ T4547] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  199.563534][ T7065] EXT4-fs (loop5): unmounting filesystem.
[  199.743156][ T4547] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  199.754541][ T4547] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  199.772526][ T4547] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  199.788200][ T4547] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  199.803686][ T4547] usb 5-1: SerialNumber: syz
[  199.816541][T14183] loop5: detected capacity change from 0 to 512
[  199.834527][T14183] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  199.840575][T14139] loop7: detected capacity change from 0 to 131072
[  199.843776][T14183] ext4 filesystem being mounted at /518/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  199.850868][T14139] F2FS-fs (loop7): Test dummy encryption mode enabled
[  199.868446][T14139] F2FS-fs (loop7): invalid crc value
[  199.874693][T14183] EXT4-fs (loop5): shut down requested (0)
[  199.875529][T14139] F2FS-fs (loop7): Found nat_bits in checkpoint
[  199.889144][T14183] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop5 ino=15
[  199.898065][T14183] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop5 ino=15
[  199.916039][ T7065] EXT4-fs (loop5): unmounting filesystem.
[  199.917488][T14139] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  199.943342][   T28] audit: type=1400 audit(2000000073.780:11640): avc:  denied  { read } for  pid=14190 comm="syz.5.6061" name="loop-control" dev="devtmpfs" ino=117 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  199.968557][   T28] audit: type=1400 audit(2000000073.780:11641): avc:  denied  { open } for  pid=14190 comm="syz.5.6061" path="/dev/loop-control" dev="devtmpfs" ino=117 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  199.994485][   T28] audit: type=1400 audit(2000000073.810:11642): avc:  denied  { ioctl } for  pid=14190 comm="syz.5.6061" path="/dev/loop-control" dev="devtmpfs" ino=117 ioctlcmd=0x4c82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  200.021164][ T4547] usb 5-1: 0:2 : does not exist
[  200.036909][ T4547] usb 5-1: USB disconnect, device number 19
[  200.235777][T14204] loop7: detected capacity change from 0 to 4096
[  200.244636][T14204] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  200.257542][T14204] EXT4-fs error (device loop7): ext4_do_update_inode:5226: inode #15: comm syz.7.6062: corrupted inode contents
[  200.269830][T14204] EXT4-fs error (device loop7): ext4_dirty_inode:6091: inode #15: comm syz.7.6062: mark_inode_dirty error
[  200.281597][T14204] EXT4-fs error (device loop7): ext4_do_update_inode:5226: inode #15: comm syz.7.6062: corrupted inode contents
[  200.294025][T14204] EXT4-fs error (device loop7): __ext4_ext_dirty:202: inode #15: comm syz.7.6062: mark_inode_dirty error
[  200.305500][T14204] EXT4-fs error (device loop7): ext4_do_update_inode:5226: inode #15: comm syz.7.6062: corrupted inode contents
[  200.317665][T14204] EXT4-fs error (device loop7): __ext4_ext_dirty:202: inode #15: comm syz.7.6062: mark_inode_dirty error
[  200.329299][T14204] EXT4-fs error (device loop7): ext4_do_update_inode:5226: inode #15: comm syz.7.6062: corrupted inode contents
[  200.341467][T14204] EXT4-fs error (device loop7): ext4_truncate:4313: inode #15: comm syz.7.6062: mark_inode_dirty error
[  200.352789][T14204] EXT4-fs error (device loop7) in ext4_setattr:5630: Corrupt filesystem
[  200.361568][T14206] EXT4-fs error (device loop7): ext4_do_update_inode:5226: inode #15: comm syz.7.6062: corrupted inode contents
[  200.384714][T13331] EXT4-fs warning (device loop7): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[  200.396152][T13331] EXT4-fs (loop7): unmounting filesystem.
[  200.446965][   T28] audit: type=1400 audit(2000000074.280:11643): avc:  denied  { mount } for  pid=14213 comm="syz.2.6071" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  200.468885][   T28] audit: type=1400 audit(2000000074.280:11644): avc:  denied  { sys_module } for  pid=14213 comm="syz.2.6071" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  200.521533][T14227] loop7: detected capacity change from 0 to 128
[  200.528772][T14227] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  200.621511][T14239] syz.2.6083[14239] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  200.621595][T14239] syz.2.6083[14239] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  200.642956][T14245] loop4: detected capacity change from 0 to 256
[  200.733889][   T28] audit: type=1400 audit(2000000074.570:11645): avc:  denied  { mount } for  pid=14261 comm="syz.7.6094" name="/" dev="ramfs" ino=70474 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  200.757779][T14264] usb usb1: check_ctrlrecip: process 14264 (syz.1.6095) requesting ep 01 but needs 81
[  200.772233][T14260] netlink: 'syz.2.6092': attribute type 1 has an invalid length.
[  200.848512][   T28] audit: type=1326 audit(2000000074.680:11646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14271 comm="syz.2.6098" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2849b8e969 code=0x7ffc0000
[  200.892003][   T28] audit: type=1326 audit(2000000074.680:11647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14271 comm="syz.2.6098" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2849b8e969 code=0x7ffc0000
[  200.941104][T14254] loop4: detected capacity change from 0 to 40427
[  200.963261][T14254] F2FS-fs (loop4): invalid crc value
[  200.972877][T14254] F2FS-fs (loop4): Found nat_bits in checkpoint
[  200.992357][  T278] usb 2-1: USB disconnect, device number 7
[  201.023677][T14254] F2FS-fs (loop4): Start checkpoint disabled!
[  201.040034][T14254] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  201.322880][T14297] loop7: detected capacity change from 0 to 40427
[  201.331316][T14297] F2FS-fs (loop7): fault_injection options not supported
[  201.339311][T14297] F2FS-fs (loop7): invalid crc value
[  201.361736][T14297] F2FS-fs (loop7): Found nat_bits in checkpoint
[  201.407764][T14297] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  201.645651][T14335] loop1: detected capacity change from 0 to 128
[  201.654087][T14335] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  201.662929][T14335] ext4 filesystem being mounted at /85/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  201.687903][T13157] EXT4-fs (loop1): unmounting filesystem.
[  201.952283][T14373] loop4: detected capacity change from 0 to 1024
[  201.959293][T14373] EXT4-fs: Ignoring removed bh option
[  201.970857][T14373] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  201.981474][T14373] EXT4-fs (loop4): orphan cleanup on readonly fs
[  201.982733][T14376] loop1: detected capacity change from 0 to 16
[  201.999671][T14376] erofs: (device loop1): mounted with root inode @ nid 36.
[  202.007692][T14373] EXT4-fs error (device loop4): __ext4_get_inode_loc:4508: comm syz.4.6141: Invalid inode table block 0 in block_group 0
[  202.020639][T14373] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5887: Corrupt filesystem
[  202.030995][T14373] EXT4-fs error (device loop4): ext4_quota_write:7184: inode #3: comm syz.4.6141: mark_inode_dirty error
[  202.042620][T14373] EXT4-fs error (device loop4): ext4_acquire_dquot:6789: comm syz.4.6141: Failed to acquire dquot type 0
[  202.054296][T14373] EXT4-fs error (device loop4): __ext4_get_inode_loc:4508: comm syz.4.6141: Invalid inode table block 0 in block_group 0
[  202.069738][T14373] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5887: Corrupt filesystem
[  202.087259][T14373] EXT4-fs error (device loop4): ext4_ext_truncate:4453: inode #15: comm syz.4.6141: mark_inode_dirty error
[  202.099517][T14373] EXT4-fs error (device loop4): __ext4_get_inode_loc:4508: comm syz.4.6141: Invalid inode table block 0 in block_group 0
[  202.131823][T14373] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5887: Corrupt filesystem
[  202.152118][T14373] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  202.161063][T14373] EXT4-fs error (device loop4): __ext4_get_inode_loc:4508: comm syz.4.6141: Invalid inode table block 0 in block_group 0
[  202.174056][T14373] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5887: Corrupt filesystem
[  202.183704][T14373] EXT4-fs error (device loop4): ext4_truncate:4313: inode #15: comm syz.4.6141: mark_inode_dirty error
[  202.195067][T14373] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  202.213765][T14373] EXT4-fs (loop4): 1 truncate cleaned up
[  202.219536][T14373] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  202.240143][T14390] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  202.259734][T14390] FAT-fs (loop5): unable to read boot sector
[  202.636556][T14407] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  202.646590][T14407] SELinux: failed to load policy
[  203.254902][T14412] device vlan3 entered promiscuous mode
[  203.260973][T14412] device gretap0 entered promiscuous mode
[  204.293213][   T28] kauditd_printk_skb: 3027 callbacks suppressed
[  204.293231][   T28] audit: type=1326 audit(2000000078.130:14673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14383 comm="syz.1.6155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f38b072ab39 code=0x7ffc0000
[  204.373927][T14462] netlink: 'syz.4.6184': attribute type 2 has an invalid length.
[  204.377296][   T28] audit: type=1326 audit(2000000078.130:14674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14383 comm="syz.1.6155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f38b072ab39 code=0x7ffc0000
[  204.410507][   T28] audit: type=1326 audit(2000000078.130:14675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14383 comm="syz.1.6155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f38b072ab39 code=0x7ffc0000
[  204.424908][T14467] netlink: 148 bytes leftover after parsing attributes in process `syz.2.6186'.
[  204.443401][   T28] audit: type=1326 audit(2000000078.130:14676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14383 comm="syz.1.6155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f38b072ab39 code=0x7ffc0000
[  204.481841][   T28] audit: type=1326 audit(2000000078.130:14677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14383 comm="syz.1.6155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f38b072ab39 code=0x7ffc0000
[  204.516560][   T28] audit: type=1326 audit(2000000078.130:14678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14383 comm="syz.1.6155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f38b072ab39 code=0x7ffc0000
[  204.552729][   T28] audit: type=1326 audit(2000000078.130:14679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14383 comm="syz.1.6155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f38b072ab39 code=0x7ffc0000
[  204.579253][   T28] audit: type=1326 audit(2000000078.130:14680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14383 comm="syz.1.6155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f38b072ab39 code=0x7ffc0000
[  204.604769][   T28] audit: type=1326 audit(2000000078.140:14681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14383 comm="syz.1.6155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f38b072ab39 code=0x7ffc0000
[  204.628536][   T28] audit: type=1326 audit(2000000078.140:14682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14383 comm="syz.1.6155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f38b072ab39 code=0x7ffc0000
[  205.135994][T14518] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6208'.
[  205.227687][T14506] loop4: detected capacity change from 0 to 40427
[  205.234741][T14506] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  205.242809][T14506] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  205.255190][T14506] F2FS-fs (loop4): Found nat_bits in checkpoint
[  205.267532][T14532] loop7: detected capacity change from 0 to 256
[  205.276544][T14532] exFAT-fs (loop7): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  205.298297][T14506] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  205.305470][T14506] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  205.478487][  T298] tipc: Subscription rejected, illegal request
[  206.314317][T14588] device ip6tnl2 entered promiscuous mode
[  206.761959][   T24] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  206.963151][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  206.974145][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  206.983977][   T24] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  206.996943][   T24] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  207.006035][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  207.014770][   T24] usb 5-1: config 0 descriptor??
[  207.140248][T14616] netlink: 136 bytes leftover after parsing attributes in process `syz.2.6252'.
[  207.150021][T14616] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  207.274534][T14637] device batadv_slave_1 entered promiscuous mode
[  207.281045][T14637] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6262'.
[  207.370111][T14647] netlink: 136 bytes leftover after parsing attributes in process `syz.7.6265'.
[  207.379519][T14647] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  207.423563][   T24] plantronics 0003:047F:FFFF.0029: unknown main item tag 0xd
[  207.436476][   T24] plantronics 0003:047F:FFFF.0029: No inputs registered, leaving
[  207.446482][   T24] plantronics 0003:047F:FFFF.0029: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  207.450679][T14655] tipc: Started in network mode
[  207.464164][T14655] tipc: Node identity ac1414bb, cluster identity 4711
[  207.471141][T14655] tipc: New replicast peer: 172.30.1.8
[  207.476810][T14655] tipc: Enabled bearer <udp:syz1>, priority 10
[  207.565933][T14674] netlink: 136 bytes leftover after parsing attributes in process `syz.5.6279'.
[  207.575163][T14674] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  207.713410][   T24] usb 5-1: USB disconnect, device number 20
[  207.828941][T14700] loop7: detected capacity change from 0 to 512
[  207.835897][T14700] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  207.854425][T14700] ext4 filesystem being mounted at /113/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  208.029185][T14712] loop7: detected capacity change from 0 to 40427
[  208.036213][T14712] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[  208.044006][T14712] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  208.054540][T14712] F2FS-fs (loop7): Found nat_bits in checkpoint
[  208.084025][T14712] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  208.091157][T14712] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  208.277505][T14736] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6305'.
[  208.343599][T14743] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6307'.
[  208.354191][T14746] 9pnet_virtio: no channels available for device syz
[  208.402810][T14749] tipc: New replicast peer: 255.255.255.255
[  208.591974][  T278] tipc: Node number set to 2886997179
[  208.813674][T14806] incfs: Options parsing error. -22
[  208.829105][T14806] incfs: mount failed -22
[  208.925980][T14825] syz.2.6346[14825] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  208.926065][T14825] syz.2.6346[14825] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  209.000855][T14830] loop4: detected capacity change from 0 to 512
[  209.037794][T14830] EXT4-fs (loop4): 1 orphan inode deleted
[  209.045995][T14836] tun0: tun_chr_ioctl cmd 1074025675
[  209.046239][T14830] ext4 filesystem being mounted at /1004/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  209.061545][T14836] tun0: persist enabled
[  209.088176][  T312] EXT4-fs error (device loop4): ext4_release_dquot:6812: comm kworker/u4:4: Failed to release dquot type 1
[  209.152541][ T2887] EXT4-fs error (device loop4): ext4_readdir:263: inode #11: block 4: comm syz-executor: path (unknown): bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  209.182169][T14844] tun0: tun_chr_ioctl cmd 1074025675
[  209.190724][ T2887] EXT4-fs error (device loop4): ext4_empty_dir:3145: inode #11: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  209.202003][T14844] tun0: persist disabled
[  209.216598][ T2887] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  209.248681][ T2887] EXT4-fs error (device loop4): ext4_readdir:263: inode #11: block 4: comm syz-executor: path (unknown): bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  209.269329][ T2887] EXT4-fs error (device loop4): ext4_empty_dir:3145: inode #11: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  209.289809][ T2887] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  209.301481][ T2887] EXT4-fs error (device loop4): ext4_readdir:263: inode #11: block 4: comm syz-executor: path (unknown): bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  209.323648][ T2887] EXT4-fs error (device loop4): ext4_empty_dir:3145: inode #11: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  209.342492][T14854] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6359'.
[  209.345720][ T2887] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  209.359341][T14854] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6359'.
[  209.363897][ T2887] EXT4-fs error (device loop4): ext4_readdir:263: inode #11: block 4: comm syz-executor: path (unknown): bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  209.412106][ T2887] EXT4-fs error (device loop4): ext4_empty_dir:3145: inode #11: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  209.436939][ T2887] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  209.448592][ T2887] EXT4-fs error (device loop4): ext4_readdir:263: inode #11: block 4: comm syz-executor: path (unknown): bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  209.469097][ T2887] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  209.481150][ T2887] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  209.493385][ T2887] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  209.505519][ T2887] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  209.517568][ T2887] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  209.529574][ T2887] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  209.630831][T14879] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6370'.
[  209.639860][T14879] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6370'.
[  209.649091][T14879] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6370'.
[  209.658495][T14879] A link change request failed with some changes committed already. Interface wg1 may have been left with an inconsistent configuration, please check.
[  209.693478][   T28] kauditd_printk_skb: 1527 callbacks suppressed
[  209.693496][   T28] audit: type=1400 audit(2000000000.670:16209): avc:  denied  { compute_member } for  pid=14884 comm="syz.7.6373" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  209.722009][ T4547] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  209.784632][T14891] tipc: Started in network mode
[  209.789546][T14891] tipc: Node identity 7, cluster identity 4711
[  209.796121][T14891] tipc: Node number set to 7
[  209.877524][   T28] audit: type=1400 audit(2000000000.850:16210): avc:  denied  { mounton } for  pid=14905 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  209.903084][ T4547] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  209.915559][   T28] audit: type=1400 audit(2000000000.880:16211): avc:  denied  { mount } for  pid=14906 comm="syz.7.6387" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  209.919485][ T4547] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  209.939619][   T28] audit: type=1400 audit(2000000000.880:16212): avc:  denied  { unlink } for  pid=14906 comm="syz.7.6387" name="#17" dev="tmpfs" ino=794 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  209.948638][ T4547] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  209.976118][   T28] audit: type=1400 audit(2000000000.920:16213): avc:  denied  { unmount } for  pid=13331 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  209.983480][ T4547] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  210.012814][ T4547] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  210.022545][ T4547] usb 2-1: config 0 descriptor??
[  210.043690][T14905] bridge0: port 1(bridge_slave_0) entered blocking state
[  210.050813][T14905] bridge0: port 1(bridge_slave_0) entered disabled state
[  210.058536][T14905] device bridge_slave_0 entered promiscuous mode
[  210.065900][T14905] bridge0: port 2(bridge_slave_1) entered blocking state
[  210.067853][T14916] loop7: detected capacity change from 0 to 256
[  210.073186][T14905] bridge0: port 2(bridge_slave_1) entered disabled state
[  210.079659][T14916] exfat: Deprecated parameter 'namecase'
[  210.087641][T14905] device bridge_slave_1 entered promiscuous mode
[  210.098827][T14916] exfat: Deprecated parameter 'namecase'
[  210.107145][T14916] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[  210.132052][T14916] incfs: ino conflict with backing FS 1
[  210.156771][  T298] tipc: Left network mode
[  210.202350][T14905] bridge0: port 2(bridge_slave_1) entered blocking state
[  210.209436][T14905] bridge0: port 2(bridge_slave_1) entered forwarding state
[  210.217129][T14905] bridge0: port 1(bridge_slave_0) entered blocking state
[  210.224198][T14905] bridge0: port 1(bridge_slave_0) entered forwarding state
[  210.255740][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  210.263582][  T312] bridge0: port 1(bridge_slave_0) entered disabled state
[  210.270994][  T312] bridge0: port 2(bridge_slave_1) entered disabled state
[  210.286442][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  210.294786][  T312] bridge0: port 1(bridge_slave_0) entered blocking state
[  210.301838][  T312] bridge0: port 1(bridge_slave_0) entered forwarding state
[  210.311299][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  210.320035][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  210.328307][  T312] bridge0: port 2(bridge_slave_1) entered blocking state
[  210.335387][  T312] bridge0: port 2(bridge_slave_1) entered forwarding state
[  210.349778][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  210.358077][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  210.368056][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  210.376476][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  210.395136][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  210.403917][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  210.418691][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  210.426771][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  210.435931][T14905] device veth0_vlan entered promiscuous mode
[  210.435979][ T4547] plantronics 0003:047F:FFFF.002A: No inputs registered, leaving
[  210.451093][ T4547] plantronics 0003:047F:FFFF.002A: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  210.463606][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  210.471161][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  210.483349][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  210.491603][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  210.501834][  T298] device gretap0 left promiscuous mode
[  210.510563][T14905] device veth1_macvtap entered promiscuous mode
[  210.520656][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  210.528414][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  210.536890][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  210.546654][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  210.555369][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  210.683384][  T298] device bridge_slave_1 left promiscuous mode
[  210.689680][  T298] bridge0: port 2(bridge_slave_1) entered disabled state
[  210.697420][  T298] device bridge_slave_0 left promiscuous mode
[  210.703658][  T298] bridge0: port 1(bridge_slave_0) entered disabled state
[  210.711709][  T298] device dummy0 left promiscuous mode
[  210.717243][  T298] device veth1_macvtap left promiscuous mode
[  210.723359][  T298] device veth0_vlan left promiscuous mode
[  210.743104][   T28] audit: type=1400 audit(2000000001.720:16214): avc:  denied  { remount } for  pid=14926 comm="syz.0.6394" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  210.950449][   T28] audit: type=1400 audit(2000000001.920:16215): avc:  denied  { mount } for  pid=14931 comm="syz.2.6396" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  211.005263][   T28] audit: type=1400 audit(2000000001.980:16216): avc:  denied  { create } for  pid=14937 comm="syz.2.6399" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  211.026490][   T28] audit: type=1400 audit(2000000002.010:16217): avc:  denied  { read } for  pid=14937 comm="syz.2.6399" path="socket:[73002]" dev="sockfs" ino=73002 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  211.122581][T14946] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6402'.
[  211.131623][T14946] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6402'.
[  211.169245][   T28] audit: type=1400 audit(2000000002.140:16218): avc:  denied  { remount } for  pid=14949 comm="syz.0.6404" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  211.214288][T14954] loop7: detected capacity change from 0 to 2048
[  211.227040][T14954] incfs: iterate_incfs_dir / -22
[  211.367923][T14977] veth1_to_batadv: vlans aren't supported yet for dev_uc|mc_add()
[  211.565233][T15001] loop5: detected capacity change from 0 to 128
[  211.571811][T15001] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  211.586454][T15001] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  211.722159][    C1] plantronics 0003:047F:FFFF.002A: usb_submit_urb(ctrl) failed: -1
[  212.413571][    T6] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  212.423952][    T6] hid-generic 0000:0000:0000.002B: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  212.461360][T15057] netlink: 24 bytes leftover after parsing attributes in process `syz.5.6454'.
[  212.497884][T15059] netlink: '+}[@': attribute type 13 has an invalid length.
[  212.514852][T15059] gretap0: refused to change device tx_queue_len
[  212.521277][T15059] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  212.552385][   T24] usb 2-1: USB disconnect, device number 8
[  212.894317][T15116] loop5: detected capacity change from 0 to 256
[  213.200777][T15171] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6508'.
[  214.105181][T15224] loop5: detected capacity change from 0 to 40427
[  214.117063][T15224] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  214.125433][T15224] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  214.135222][T15224] F2FS-fs (loop5): invalid crc_offset: 33558524
[  214.158689][T15224] F2FS-fs (loop5): Found nat_bits in checkpoint
[  214.217009][T15224] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  214.224276][T15224] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  214.271024][T15224] F2FS-fs (loop5): f2fs_fill_dentries: corrupted namelen=27648, run fsck to fix.
[  214.281840][T15224] F2FS-fs (loop5): f2fs_fill_dentries: corrupted namelen=27648, run fsck to fix.
[  214.615359][T15302] netlink: 74 bytes leftover after parsing attributes in process `syz.0.6569'.
[  214.626464][T15300] input: syz0 as /devices/virtual/input/input52
[  214.764564][T15334] netlink: 104 bytes leftover after parsing attributes in process `syz.2.6584'.
[  214.952122][   T28] kauditd_printk_skb: 20 callbacks suppressed
[  214.952139][   T28] audit: type=1400 audit(2000000005.930:16239): avc:  denied  { setopt } for  pid=15373 comm="syz.2.6603" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  214.978400][   T28] audit: type=1400 audit(2000000005.950:16240): avc:  denied  { read } for  pid=15373 comm="syz.2.6603" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  215.055964][T15386] incfs: Options parsing error. -22
[  215.061262][T15386] incfs: mount failed -22
[  215.217588][T15415] input: syz0 as /devices/virtual/input/input54
[  215.722015][   T24] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  215.912039][   T24] usb 2-1: Using ep0 maxpacket: 16
[  215.918524][   T24] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 11
[  215.927845][   T24] usb 2-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0
[  215.937558][   T24] usb 2-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0
[  215.947370][   T24] usb 2-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0
[  215.957134][   T24] usb 2-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0
[  215.966914][   T24] usb 2-1: config 1 interface 0 has no altsetting 0
[  215.973721][   T24] usb 2-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[  215.982805][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  215.993024][   T24] ums-sddr09 2-1:1.0: USB Mass Storage device detected
[  216.168691][T15495] overlayfs: unrecognized mount option "smackfshat=\*" or missing value
[  216.193933][   T24] scsi host1: usb-storage 2-1:1.0
[  216.394699][ T4547] usb 2-1: USB disconnect, device number 9
[  217.036976][T15513] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  217.046397][T15513] FAT-fs (loop3): unable to read boot sector
[  217.063371][T15515] TCP: TCP_TX_DELAY enabled
[  217.805219][   T28] audit: type=1400 audit(2000000008.780:16241): avc:  denied  { module_load } for  pid=15601 comm="syz.2.6710" path="/1864/bus" dev="tmpfs" ino=9679 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=system permissive=1
[  217.807437][T15602] Invalid ELF header magic: != ELF
[  217.845183][ T4547] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x4
[  217.853650][ T4547] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x2
[  217.861368][ T4547] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x0
[  217.869116][ T4547] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x0
[  217.876875][ T4547] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x0
[  217.884636][ T4547] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x0
[  217.893846][ T4547] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x0
[  217.901583][ T4547] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x0
[  217.909289][ T4547] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x0
[  217.917037][ T4547] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x0
[  217.924732][ T4547] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x0
[  217.932844][ T4547] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x0
[  217.940557][ T4547] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x0
[  217.948306][ T4547] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x0
[  217.956040][ T4547] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x0
[  217.963737][ T4547] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x0
[  217.972434][ T4547] hid-generic 0000:3000000:0000.002C: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  217.994263][   T28] audit: type=1326 audit(2000000008.970:16242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15613 comm="syz.1.6716" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f38b078e969 code=0x0
[  218.017940][T15610] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  218.187002][T15635] loop5: detected capacity change from 0 to 512
[  218.195167][T15635] EXT4-fs mount: 7 callbacks suppressed
[  218.195187][T15635] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  218.211854][T15635] EXT4-fs warning (device loop5): dx_probe:869: inode #2: comm syz.5.6725: Unimplemented hash flags: 0x0001
[  218.225432][T15635] EXT4-fs warning (device loop5): dx_probe:966: inode #2: comm syz.5.6725: Corrupt directory, running e2fsck is recommended
[  218.248922][T15635] EXT4-fs error (device loop5): ext4_readdir:263: inode #2: block 3: comm syz.5.6725: path /594/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0
[  218.311682][ T7065] EXT4-fs (loop5): unmounting filesystem.
[  218.648689][   T28] audit: type=1400 audit(2000000009.620:16243): avc:  denied  { ioctl } for  pid=15667 comm="syz.0.6738" path="socket:[75262]" dev="sockfs" ino=75262 ioctlcmd=0x52c8 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  218.728160][   T28] audit: type=1326 audit(2000000009.700:16244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15676 comm="syz.2.6743" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2849b8e969 code=0x0
[  218.907401][T15657] loop5: detected capacity change from 0 to 131072
[  218.916727][T15657] F2FS-fs (loop5): Found nat_bits in checkpoint
[  218.960246][T15657] F2FS-fs (loop5): Mounted with checkpoint version = 753bd00b
[  219.185326][   T28] audit: type=1400 audit(2000000010.160:16245): avc:  denied  { create } for  pid=15717 comm="syz.1.6760" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  219.219738][   T28] audit: type=1400 audit(2000000010.190:16246): avc:  denied  { ioctl } for  pid=15717 comm="syz.1.6760" path="socket:[76247]" dev="sockfs" ino=76247 ioctlcmd=0x8916 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  219.307119][   T28] audit: type=1400 audit(2000000010.280:16247): avc:  denied  { read } for  pid=15723 comm="syz.5.6762" name="msr" dev="devtmpfs" ino=86 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  219.331015][   T28] audit: type=1400 audit(2000000010.310:16248): avc:  denied  { open } for  pid=15723 comm="syz.5.6762" path="/dev/cpu/0/msr" dev="devtmpfs" ino=86 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  219.369657][T15728] loop5: detected capacity change from 0 to 2048
[  219.383607][T15728] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  219.393774][T15728] EXT4-fs error (device loop5): ext4_ext_precache:645: inode #2: comm syz.5.6763: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  219.410521][T15728] EXT4-fs (loop5): Remounting filesystem read-only
[  219.422922][T15728] EXT4-fs error (device loop5): ext4_find_extent:936: inode #2: comm syz.5.6763: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  219.439590][T15728] EXT4-fs (loop5): Remounting filesystem read-only
[  219.453594][ T7065] EXT4-fs (loop5): unmounting filesystem.
[  219.599527][T15745] fuse: Invalid group_id
[  219.679564][ T4547] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  219.692029][ T4547] hid-generic 0000:0000:0000.002D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  219.743604][T15763] netlink: 4 bytes leftover after parsing attributes in process `syz.7.6780'.
[  219.795618][T15771] netlink: 4 bytes leftover after parsing attributes in process `syz.7.6784'.
[  219.932218][T15787] syz.2.6792[15787] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  219.932373][T15787] syz.2.6792[15787] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  219.963027][   T28] kauditd_printk_skb: 1 callbacks suppressed
[  219.963044][   T28] audit: type=1400 audit(2000000010.940:16250): avc:  denied  { sqpoll } for  pid=15788 comm="syz.2.6793" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  220.208096][T15821] 9pnet: p9_errstr2errno: server reported unknown error 184467
[  220.258312][T15826] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6809'.
[  220.267324][T15826] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6809'.
[  220.442872][   T28] audit: type=1400 audit(2000000011.420:16251): avc:  denied  { connect } for  pid=15853 comm="syz.0.6823" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  220.502305][   T28] audit: type=1400 audit(2000000011.480:16252): avc:  denied  { write } for  pid=15863 comm="syz.1.6828" name="tcp6" dev="proc" ino=4026532826 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  220.946220][T15936] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6859'.
[  221.018235][    T8] tipc: Subscription rejected, illegal request
[  222.574853][T16004] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6888'.
[  223.563914][T16072] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6925'.
[  223.652518][T16082] overlayfs: failed to clone lowerpath
[  223.812726][T16105] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6938'.
[  223.988592][T16127] input: syz0 as /devices/virtual/input/input55
[  224.293580][   T28] audit: type=1326 audit(2000000015.270:16253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16159 comm="syz.5.6965" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa428f8e969 code=0x0
[  224.323966][T16169] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6970'.
[  224.974601][T16182] loop7: detected capacity change from 0 to 512
[  225.016387][T16182] EXT4-fs (loop7): 1 orphan inode deleted
[  225.024501][T16182] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  225.034479][  T715] Quota error (device loop7): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  225.040135][T16182] ext4 filesystem being mounted at /194/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  225.046227][  T715] EXT4-fs error (device loop7): ext4_release_dquot:6812: comm kworker/u4:5: Failed to release dquot type 1
[  225.079070][   T28] audit: type=1400 audit(2000000016.050:16254): avc:  denied  { setattr } for  pid=16179 comm="syz.7.6973" name="bus" dev="loop7" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  225.105238][T13331] EXT4-fs (loop7): unmounting filesystem.
[  225.125533][T16207] input: syz0 as /devices/virtual/input/input57
[  225.274394][T16234] loop5: detected capacity change from 0 to 512
[  225.294663][T16234] EXT4-fs (loop5): 1 orphan inode deleted
[  225.300430][T16234] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  225.310101][T16234] ext4 filesystem being mounted at /625/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  225.319848][   T28] audit: type=1326 audit(2000000016.290:16255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16235 comm="syz.2.6999" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2849b8e969 code=0x0
[  225.320877][  T298] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  225.353408][  T298] EXT4-fs error (device loop5): ext4_release_dquot:6812: comm kworker/u4:3: Failed to release dquot type 1
[  225.366795][ T7065] EXT4-fs (loop5): unmounting filesystem.
[  226.244217][T16255] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  226.253759][T16255] FAT-fs (loop5): unable to read boot sector
[  226.258036][T16257] netlink: 104 bytes leftover after parsing attributes in process `syz.1.7008'.
[  226.431199][T16288] loop5: detected capacity change from 0 to 1024
[  226.439596][T16288] EXT4-fs: Ignoring removed orlov option
[  226.450101][T16288] EXT4-fs (loop5): Test dummy encryption mode enabled
[  226.460667][T16288] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  226.484791][ T7065] EXT4-fs (loop5): unmounting filesystem.
[  226.554381][T16311] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  226.616494][T16321] overlayfs: failed to clone upperpath
[  228.045018][T16349] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  228.305373][T16384] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  228.728686][  T715] Bluetooth: hci0: Frame reassembly failed (-84)
[  228.810235][T16435] Invalid ELF header magic: != ELF
[  230.067767][T16473] loop5: detected capacity change from 0 to 40427
[  230.076830][T16473] F2FS-fs (loop5): Insane cp_payload (553648128 >= 504)
[  230.083958][T16473] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  230.105345][T16473] F2FS-fs (loop5): invalid crc value
[  230.112522][T16473] F2FS-fs (loop5): Found nat_bits in checkpoint
[  230.150601][T16473] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  230.159164][T16473] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  230.205435][T16487] f2fs_ckpt-7:5: attempt to access beyond end of device
[  230.205435][T16487] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  230.227225][   T28] audit: type=1400 audit(2000000021.200:16256): avc:  denied  { create } for  pid=16472 comm="syz.5.7105" name="file4" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=sock_file permissive=1
[  230.772019][T13651] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  230.772044][T16421] Bluetooth: hci0: command 0x1003 tx timeout
[  230.784538][T16420] Bluetooth: hci0: Opcode 0x0c20 failed: -22
[  231.032779][T16526] netlink: 'syz.2.7127': attribute type 5 has an invalid length.
[  231.120127][   T28] audit: type=1400 audit(2000000022.090:16257): avc:  denied  { bind } for  pid=16542 comm="syz.2.7138" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  231.141266][   T28] audit: type=1400 audit(2000000022.090:16258): avc:  denied  { name_bind } for  pid=16542 comm="syz.2.7138" src=28196 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  231.163560][   T28] audit: type=1400 audit(2000000022.090:16259): avc:  denied  { node_bind } for  pid=16542 comm="syz.2.7138" src=28196 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  231.522574][T16594] netlink: 'syz.7.7158': attribute type 5 has an invalid length.
[  231.535007][T16580] loop5: detected capacity change from 0 to 40427
[  231.542638][T16580] F2FS-fs (loop5): invalid crc value
[  231.549440][T16580] F2FS-fs (loop5): Found nat_bits in checkpoint
[  231.578188][T16580] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[  231.638421][ T7065] syz-executor: attempt to access beyond end of device
[  231.638421][ T7065] loop5: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  231.811931][    C1] ==================================================================
[  231.820044][    C1] BUG: KASAN: use-after-free in enqueue_timer+0xae/0x480
[  231.827108][    C1] Write of size 8 at addr ffff8881199e4a00 by task syz-executor/7065
[  231.835189][    C1] 
[  231.837555][    C1] CPU: 1 PID: 7065 Comm: syz-executor Tainted: G        W          6.1.134-syzkaller-00033-g0c1a07d9c284 #0
[  231.849111][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  231.859171][    C1] Call Trace:
[  231.862530][    C1]  <IRQ>
[  231.865370][    C1]  __dump_stack+0x21/0x24
[  231.869703][    C1]  dump_stack_lvl+0xee/0x150
[  231.874292][    C1]  ? __cfi_dump_stack_lvl+0x8/0x8
[  231.879318][    C1]  ? enqueue_timer+0xae/0x480
[  231.883990][    C1]  print_address_description+0x71/0x210
[  231.889532][    C1]  print_report+0x4a/0x60
[  231.893856][    C1]  kasan_report+0x122/0x150
[  231.898356][    C1]  ? enqueue_timer+0xae/0x480
[  231.903033][    C1]  __asan_report_store8_noabort+0x17/0x20
[  231.908751][    C1]  enqueue_timer+0xae/0x480
[  231.913256][    C1]  __mod_timer+0x79f/0xb30
[  231.917673][    C1]  mod_timer+0x1f/0x30
[  231.921771][    C1]  can_stat_update+0xb1a/0xbb0
[  231.926534][    C1]  ? __cfi_can_stat_update+0x10/0x10
[  231.931819][    C1]  call_timer_fn+0x46/0x2a0
[  231.936319][    C1]  ? __cfi_can_stat_update+0x10/0x10
[  231.941600][    C1]  __run_timers+0x639/0x9a0
[  231.946107][    C1]  ? calc_index+0x200/0x200
[  231.950625][    C1]  ? kvm_sched_clock_read+0x18/0x40
[  231.955825][    C1]  run_timer_softirq+0x6a/0xf0
[  231.960588][    C1]  handle_softirqs+0x1d7/0x600
[  231.965355][    C1]  __irq_exit_rcu+0x52/0xf0
[  231.969857][    C1]  irq_exit_rcu+0x9/0x10
[  231.974113][    C1]  sysvec_apic_timer_interrupt+0xa9/0xc0
[  231.979744][    C1]  </IRQ>
[  231.982703][    C1]  <TASK>
[  231.985658][    C1]  asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  231.991653][    C1] RIP: 0010:page_ext_get+0x0/0x150
[  231.996786][    C1] Code: 48 83 c4 20 5b 41 5c 41 5d 41 5e 41 5f 5d c3 00 00 cc cc 00 00 cc cc 00 00 cc 90 90 90 90 90 90 90 90 90 90 90 b8 ac 54 91 33 <55> 48 89 e5 41 57 41 56 41 54 53 49 89 fe 49 bf 00 00 00 00 00 fc
[  232.016401][    C1] RSP: 0018:ffffc90001557458 EFLAGS: 00000246
[  232.022480][    C1] RAX: 00000035f91093b2 RBX: 1ffffd40009e398b RCX: ec9d6dbacd345600
[  232.030453][    C1] RDX: 1ffffffff0f2c808 RSI: ffffffff8796405c RDI: ffffea0004f1cc40
[  232.038424][    C1] RBP: ffffc900015574a8 R08: ffffffff87964048 R09: ffffffff87964058
[  232.046391][    C1] R10: ffffffff87964043 R11: 1ffffffff0f2c808 R12: 0000000000000000
[  232.054359][    C1] R13: 1ffffd40009e3901 R14: ffffea0004f1cc40 R15: ffffea0004f1cc48
[  232.062532][    C1]  ? __reset_page_owner+0x34/0x190
[  232.067659][    C1]  free_unref_page_prepare+0x742/0x750
[  232.073119][    C1]  ? uncharge_folio+0x4c3/0x6d0
[  232.077968][    C1]  ? lru_gen_del_folio+0x1cf/0x360
[  232.083089][    C1]  free_unref_page_list+0xba/0x7c0
[  232.088199][    C1]  release_pages+0xad1/0xb20
[  232.092790][    C1]  ? find_lock_entries+0x435/0x4b0
[  232.097904][    C1]  ? __cfi_release_pages+0x10/0x10
[  232.103014][    C1]  ? filemap_remove_folio+0x356/0x450
[  232.108386][    C1]  ? __cfi_filemap_remove_folio+0x10/0x10
[  232.114104][    C1]  ? truncate_cleanup_folio+0x244/0x2b0
[  232.119653][    C1]  __pagevec_release+0x71/0xe0
[  232.124421][    C1]  shmem_undo_range+0x51a/0x1470
[  232.129356][    C1]  ? shmem_truncate_range+0xc0/0xc0
[  232.134553][    C1]  ? __kernel_text_address+0xd/0x30
[  232.139758][    C1]  ? unwind_get_return_address+0x4d/0x90
[  232.145392][    C1]  ? __kasan_check_write+0x14/0x20
[  232.150504][    C1]  ? _raw_spin_lock+0x8e/0xe0
[  232.155182][    C1]  ? __cfi__raw_spin_lock+0x10/0x10
[  232.160376][    C1]  ? stack_trace_save+0x98/0xe0
[  232.165225][    C1]  shmem_evict_inode+0x242/0xa10
[  232.170165][    C1]  ? inode_wait_for_writeback+0x1b0/0x200
[  232.175890][    C1]  ? __cfi_shmem_evict_inode+0x10/0x10
[  232.181353][    C1]  ? __cfi_wake_bit_function+0x10/0x10
[  232.186821][    C1]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  232.192897][    C1]  ? __cfi_shmem_evict_inode+0x10/0x10
[  232.198353][    C1]  evict+0x493/0x890
[  232.202247][    C1]  ? proc_nr_inodes+0x2f0/0x2f0
[  232.207095][    C1]  ? __kasan_check_write+0x14/0x20
[  232.212205][    C1]  iput+0x620/0x670
[  232.216008][    C1]  dentry_unlink_inode+0x33d/0x3f0
[  232.221120][    C1]  __dentry_kill+0x460/0x670
[  232.225712][    C1]  dentry_kill+0xc0/0x2a0
[  232.230039][    C1]  dput+0x42/0x80
[  232.233671][    C1]  __fput+0x5be/0x8f0
[  232.237653][    C1]  ____fput+0x15/0x20
[  232.241630][    C1]  task_work_run+0x1db/0x240
[  232.246218][    C1]  ? __cfi_task_work_run+0x10/0x10
[  232.251326][    C1]  ? __x64_sys_umount+0x125/0x160
[  232.256347][    C1]  ? __cfi___x64_sys_umount+0x10/0x10
[  232.261720][    C1]  exit_to_user_mode_loop+0x9b/0xb0
[  232.266915][    C1]  exit_to_user_mode_prepare+0x5a/0xa0
[  232.272370][    C1]  syscall_exit_to_user_mode+0x1a/0x30
[  232.277827][    C1]  do_syscall_64+0x58/0xa0
[  232.282244][    C1]  ? clear_bhb_loop+0x15/0x70
[  232.286918][    C1]  ? clear_bhb_loop+0x15/0x70
[  232.291588][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  232.297489][    C1] RIP: 0033:0x7fa428f8fc97
[  232.301905][    C1] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  232.321504][    C1] RSP: 002b:00007ffd6b461128 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  232.329914][    C1] RAX: 0000000000000000 RBX: 00007fa42901089d RCX: 00007fa428f8fc97
[  232.337881][    C1] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd6b4611e0
[  232.345846][    C1] RBP: 00007ffd6b4611e0 R08: 0000000000000000 R09: 0000000000000000
[  232.353814][    C1] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd6b462270
[  232.361784][    C1] R13: 00007fa42901089d R14: 00000000000388b0 R15: 00007ffd6b4622b0
[  232.369757][    C1]  </TASK>
[  232.372768][    C1] 
[  232.375084][    C1] Allocated by task 16420:
[  232.379481][    C1]  kasan_set_track+0x4b/0x70
[  232.384064][    C1]  kasan_save_alloc_info+0x25/0x30
[  232.389172][    C1]  __kasan_kmalloc+0x95/0xb0
[  232.393756][    C1]  __kmalloc+0xb1/0x1e0
[  232.397910][    C1]  hci_alloc_dev_priv+0x27/0x1bd0
[  232.403058][    C1]  hci_uart_tty_ioctl+0x3c8/0xa00
[  232.408778][    C1]  tty_ioctl+0x8ef/0xc60
[  232.413015][    C1]  __se_sys_ioctl+0x12f/0x1b0
[  232.417694][    C1]  __x64_sys_ioctl+0x7b/0x90
[  232.422285][    C1]  x64_sys_call+0x58b/0x9a0
[  232.426788][    C1]  do_syscall_64+0x4c/0xa0
[  232.431206][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  232.437104][    C1] 
[  232.439416][    C1] Freed by task 16420:
[  232.443674][    C1]  kasan_set_track+0x4b/0x70
[  232.448258][    C1]  kasan_save_free_info+0x31/0x50
[  232.453279][    C1]  ____kasan_slab_free+0x132/0x180
[  232.458393][    C1]  __kasan_slab_free+0x11/0x20
[  232.463152][    C1]  slab_free_freelist_hook+0xc2/0x190
[  232.468523][    C1]  __kmem_cache_free+0xb7/0x1b0
[  232.473388][    C1]  kfree+0x6f/0xf0
[  232.477111][    C1]  hci_release_dev+0x13ad/0x1500
[  232.482042][    C1]  bt_host_release+0x82/0x90
[  232.486626][    C1]  device_release+0xa4/0x1d0
[  232.491208][    C1]  kobject_put+0x19d/0x280
[  232.495626][    C1]  put_device+0x1f/0x30
[  232.499787][    C1]  hci_dev_cmd+0x265/0x720
[  232.504203][    C1]  hci_sock_ioctl+0x41e/0x7f0
[  232.508877][    C1]  sock_do_ioctl+0x101/0x310
[  232.513463][    C1]  sock_ioctl+0x4d8/0x6e0
[  232.517784][    C1]  __se_sys_ioctl+0x12f/0x1b0
[  232.522462][    C1]  __x64_sys_ioctl+0x7b/0x90
[  232.527052][    C1]  x64_sys_call+0x58b/0x9a0
[  232.531575][    C1]  do_syscall_64+0x4c/0xa0
[  232.535990][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  232.541886][    C1] 
[  232.544205][    C1] Last potentially related work creation:
[  232.549907][    C1]  kasan_save_stack+0x3a/0x60
[  232.554607][    C1]  __kasan_record_aux_stack+0xb6/0xc0
[  232.559988][    C1]  kasan_record_aux_stack_noalloc+0xb/0x10
[  232.565791][    C1]  insert_work+0x51/0x300
[  232.570128][    C1]  __queue_work+0x9b1/0xd30
[  232.574626][    C1]  queue_work_on+0xd2/0x140
[  232.579123][    C1]  __hci_cmd_sync_sk+0xa3e/0xcf0
[  232.584060][    C1]  hci_cmd_sync_status+0x53/0x120
[  232.589105][    C1]  hci_dev_cmd+0x628/0x720
[  232.593516][    C1]  hci_sock_ioctl+0x41e/0x7f0
[  232.598275][    C1]  sock_do_ioctl+0x101/0x310
[  232.602862][    C1]  sock_ioctl+0x4d8/0x6e0
[  232.607185][    C1]  __se_sys_ioctl+0x12f/0x1b0
[  232.611862][    C1]  __x64_sys_ioctl+0x7b/0x90
[  232.616453][    C1]  x64_sys_call+0x58b/0x9a0
[  232.620951][    C1]  do_syscall_64+0x4c/0xa0
[  232.625369][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  232.631274][    C1] 
[  232.633599][    C1] Second to last potentially related work creation:
[  232.640173][    C1]  kasan_save_stack+0x3a/0x60
[  232.644861][    C1]  __kasan_record_aux_stack+0xb6/0xc0
[  232.650237][    C1]  kasan_record_aux_stack_noalloc+0xb/0x10
[  232.656043][    C1]  insert_work+0x51/0x300
[  232.660372][    C1]  __queue_work+0x9b1/0xd30
[  232.664872][    C1]  queue_work_on+0xd2/0x140
[  232.669375][    C1]  hci_cmd_timeout+0x191/0x200
[  232.674141][    C1]  process_one_work+0x71f/0xc40
[  232.678995][    C1]  worker_thread+0xa29/0x11f0
[  232.683662][    C1]  kthread+0x281/0x320
[  232.687725][    C1]  ret_from_fork+0x1f/0x30
[  232.692136][    C1] 
[  232.694560][    C1] The buggy address belongs to the object at ffff8881199e4000
[  232.694560][    C1]  which belongs to the cache kmalloc-8k of size 8192
[  232.708605][    C1] The buggy address is located 2560 bytes inside of
[  232.708605][    C1]  8192-byte region [ffff8881199e4000, ffff8881199e6000)
[  232.722062][    C1] 
[  232.724388][    C1] The buggy address belongs to the physical page:
[  232.730798][    C1] page:ffffea0004667800 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1199e0
[  232.741111][    C1] head:ffffea0004667800 order:3 compound_mapcount:0 compound_pincount:0
[  232.749427][    C1] flags: 0x4000000000010200(slab|head|zone=1)
[  232.755598][    C1] raw: 4000000000010200 ffffea0004615e00 dead000000000004 ffff888100043500
[  232.764179][    C1] raw: 0000000000000000 0000000000020002 00000001ffffffff 0000000000000000
[  232.772754][    C1] page dumped because: kasan: bad access detected
[  232.779174][    C1] page_owner tracks the page as allocated
[  232.784879][    C1] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x152a20(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 568, tgid 568 (syz-executor), ts 26187995351, free_ts 26184547994
[  232.805431][    C1]  post_alloc_hook+0x1f5/0x210
[  232.810232][    C1]  prep_new_page+0x1c/0x110
[  232.814737][    C1]  get_page_from_freelist+0x2c6e/0x2ce0
[  232.820295][    C1]  __alloc_pages+0x19e/0x3a0
[  232.824903][    C1]  alloc_slab_page+0x6e/0xf0
[  232.829499][    C1]  new_slab+0x98/0x3d0
[  232.833577][    C1]  ___slab_alloc+0x6f6/0xb50
[  232.838168][    C1]  __slab_alloc+0x5e/0xa0
[  232.842587][    C1]  __kmem_cache_alloc_node+0x203/0x2c0
[  232.848038][    C1]  kmalloc_trace+0x29/0xb0
[  232.852452][    C1]  audit_log_d_path+0xc6/0x240
[  232.857214][    C1]  common_lsm_audit+0x327/0x16d0
[  232.862157][    C1]  slow_avc_audit+0x1ac/0x220
[  232.866828][    C1]  avc_has_perm+0x1e6/0x240
[  232.871327][    C1]  selinux_file_open+0x467/0x620
[  232.876257][    C1]  security_file_open+0x73/0xb0
[  232.881105][    C1] page last free stack trace:
[  232.885764][    C1]  free_unref_page_prepare+0x742/0x750
[  232.891226][    C1]  free_unref_page+0x8f/0x530
[  232.895896][    C1]  __free_pages+0x67/0x100
[  232.900305][    C1]  __free_slab+0xca/0x1a0
[  232.904631][    C1]  __unfreeze_partials+0x160/0x190
[  232.909738][    C1]  put_cpu_partial+0xa9/0x100
[  232.914411][    C1]  __slab_free+0x1c4/0x280
[  232.918823][    C1]  ___cache_free+0xbf/0xd0
[  232.923233][    C1]  qlist_free_all+0xc6/0x140
[  232.927825][    C1]  kasan_quarantine_reduce+0x14a/0x170
[  232.933282][    C1]  __kasan_slab_alloc+0x24/0x80
[  232.938124][    C1]  slab_post_alloc_hook+0x4f/0x2d0
[  232.943230][    C1]  kmem_cache_alloc_node+0x181/0x340
[  232.948513][    C1]  dup_task_struct+0x5a/0x770
[  232.953195][    C1]  copy_process+0x5ac/0x3470
[  232.957785][    C1]  kernel_clone+0x23a/0x810
[  232.962289][    C1] 
[  232.964603][    C1] Memory state around the buggy address:
[  232.970221][    C1]  ffff8881199e4900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  232.978273][    C1]  ffff8881199e4980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  232.986322][    C1] >ffff8881199e4a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  232.994371][    C1]                    ^
[  232.998424][    C1]  ffff8881199e4a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  233.006472][    C1]  ffff8881199e4b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  233.014519][    C1] ==================================================================
[  233.022571][    C1] Disabling lock debugging due to kernel taint
[  233.028935][    C1] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN
[  233.031967][   T28] audit: type=1326 audit(2000000024.000:16260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16533 comm="syz.0.7132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40f318e969 code=0x7fc00000
[  233.040667][    C1] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[  233.040685][    C1] CPU: 1 PID: 7065 Comm: syz-executor Tainted: G    B   W          6.1.134-syzkaller-00033-g0c1a07d9c284 #0
[  233.084035][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  233.094092][    C1] RIP: 0010:__queue_work+0x575/0xd30
[  233.099384][    C1] Code: 39 2b 0f 84 b9 00 00 00 e8 58 ce 28 00 4c 89 ff e8 90 7d a8 03 49 bc 00 00 00 00 00 fc ff df 4c 8b 6d d0 4c 89 e8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ef e8 dc 1f 6d 00 49 8b 7d 00 e8 73 79
[  233.118989][    C1] RSP: 0018:ffffc900001b0c70 EFLAGS: 00010046
[  233.125051][    C1] RAX: 0000000000000000 RBX: 000000007fffffff RCX: ffff888124425100
[  233.133017][    C1] RDX: 0000000000000100 RSI: 000000007fffffff RDI: 000000007fffffff
[  233.140983][    C1] RBP: ffffc900001b0d08 R08: fffffffffffffffb R09: 0000000000000007
[  233.148948][    C1] R10: ffffed102333c939 R11: 1ffff1102333c939 R12: dffffc0000000000
[  233.156914][    C1] R13: 0000000000000000 R14: ffff8881199e49c8 R15: 0000000000000008
[  233.164880][    C1] FS:  000055558b2f0500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  233.173803][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  233.180378][    C1] CR2: 000020000000b038 CR3: 0000000128f76000 CR4: 00000000003506a0
[  233.188348][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  233.196310][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  233.204276][    C1] Call Trace:
[  233.207552][    C1]  <IRQ>
[  233.210428][    C1]  delayed_work_timer_fn+0x61/0x80
[  233.215546][    C1]  ? __cfi_delayed_work_timer_fn+0x10/0x10
[  233.221352][    C1]  call_timer_fn+0x46/0x2a0
[  233.225852][    C1]  ? __cfi_delayed_work_timer_fn+0x10/0x10
[  233.231661][    C1]  __run_timers+0x667/0x9a0
[  233.236182][    C1]  ? calc_index+0x200/0x200
[  233.240683][    C1]  ? kvm_sched_clock_read+0x18/0x40
[  233.245886][    C1]  run_timer_softirq+0x6a/0xf0
[  233.250649][    C1]  handle_softirqs+0x1d7/0x600
[  233.255408][    C1]  __irq_exit_rcu+0x52/0xf0
[  233.259911][    C1]  irq_exit_rcu+0x9/0x10
[  233.264149][    C1]  sysvec_apic_timer_interrupt+0xa9/0xc0
[  233.269782][    C1]  </IRQ>
[  233.272710][    C1]  <TASK>
[  233.275634][    C1]  asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  233.281614][    C1] RIP: 0010:page_ext_get+0x0/0x150
[  233.286727][    C1] Code: 48 83 c4 20 5b 41 5c 41 5d 41 5e 41 5f 5d c3 00 00 cc cc 00 00 cc cc 00 00 cc 90 90 90 90 90 90 90 90 90 90 90 b8 ac 54 91 33 <55> 48 89 e5 41 57 41 56 41 54 53 49 89 fe 49 bf 00 00 00 00 00 fc
[  233.306329][    C1] RSP: 0018:ffffc90001557458 EFLAGS: 00000246
[  233.312390][    C1] RAX: 00000035f91093b2 RBX: 1ffffd40009e398b RCX: ec9d6dbacd345600
[  233.320357][    C1] RDX: 1ffffffff0f2c808 RSI: ffffffff8796405c RDI: ffffea0004f1cc40
[  233.328325][    C1] RBP: ffffc900015574a8 R08: ffffffff87964048 R09: ffffffff87964058
[  233.336293][    C1] R10: ffffffff87964043 R11: 1ffffffff0f2c808 R12: 0000000000000000
[  233.344270][    C1] R13: 1ffffd40009e3901 R14: ffffea0004f1cc40 R15: ffffea0004f1cc48
[  233.352242][    C1]  ? __reset_page_owner+0x34/0x190
[  233.357380][    C1]  free_unref_page_prepare+0x742/0x750
[  233.362834][    C1]  ? uncharge_folio+0x4c3/0x6d0
[  233.367680][    C1]  ? lru_gen_del_folio+0x1cf/0x360
[  233.372793][    C1]  free_unref_page_list+0xba/0x7c0
[  233.377901][    C1]  release_pages+0xad1/0xb20
[  233.382488][    C1]  ? find_lock_entries+0x435/0x4b0
[  233.387604][    C1]  ? __cfi_release_pages+0x10/0x10
[  233.392714][    C1]  ? filemap_remove_folio+0x356/0x450
[  233.398084][    C1]  ? __cfi_filemap_remove_folio+0x10/0x10
[  233.403797][    C1]  ? truncate_cleanup_folio+0x244/0x2b0
[  233.409343][    C1]  __pagevec_release+0x71/0xe0
[  233.414105][    C1]  shmem_undo_range+0x51a/0x1470
[  233.419039][    C1]  ? shmem_truncate_range+0xc0/0xc0
[  233.424234][    C1]  ? __kernel_text_address+0xd/0x30
[  233.429430][    C1]  ? unwind_get_return_address+0x4d/0x90
[  233.435059][    C1]  ? __kasan_check_write+0x14/0x20
[  233.440172][    C1]  ? _raw_spin_lock+0x8e/0xe0
[  233.444847][    C1]  ? __cfi__raw_spin_lock+0x10/0x10
[  233.450040][    C1]  ? stack_trace_save+0x98/0xe0
[  233.454886][    C1]  shmem_evict_inode+0x242/0xa10
[  233.459820][    C1]  ? inode_wait_for_writeback+0x1b0/0x200
[  233.465547][    C1]  ? __cfi_shmem_evict_inode+0x10/0x10
[  233.471001][    C1]  ? __cfi_wake_bit_function+0x10/0x10
[  233.476459][    C1]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  233.482534][    C1]  ? __cfi_shmem_evict_inode+0x10/0x10
[  233.487987][    C1]  evict+0x493/0x890
[  233.491877][    C1]  ? proc_nr_inodes+0x2f0/0x2f0
[  233.496734][    C1]  ? __kasan_check_write+0x14/0x20
[  233.501857][    C1]  iput+0x620/0x670
[  233.505665][    C1]  dentry_unlink_inode+0x33d/0x3f0
[  233.510775][    C1]  __dentry_kill+0x460/0x670
[  233.515370][    C1]  dentry_kill+0xc0/0x2a0
[  233.519701][    C1]  dput+0x42/0x80
[  233.523329][    C1]  __fput+0x5be/0x8f0
[  233.527307][    C1]  ____fput+0x15/0x20
[  233.531282][    C1]  task_work_run+0x1db/0x240
[  233.535867][    C1]  ? __cfi_task_work_run+0x10/0x10
[  233.540975][    C1]  ? __x64_sys_umount+0x125/0x160
[  233.545995][    C1]  ? __cfi___x64_sys_umount+0x10/0x10
[  233.551363][    C1]  exit_to_user_mode_loop+0x9b/0xb0
[  233.556559][    C1]  exit_to_user_mode_prepare+0x5a/0xa0
[  233.562013][    C1]  syscall_exit_to_user_mode+0x1a/0x30
[  233.567466][    C1]  do_syscall_64+0x58/0xa0
[  233.571883][    C1]  ? clear_bhb_loop+0x15/0x70
[  233.576555][    C1]  ? clear_bhb_loop+0x15/0x70
[  233.581227][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  233.587209][    C1] RIP: 0033:0x7fa428f8fc97
[  233.591617][    C1] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  233.611218][    C1] RSP: 002b:00007ffd6b461128 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  233.619627][    C1] RAX: 0000000000000000 RBX: 00007fa42901089d RCX: 00007fa428f8fc97
[  233.627590][    C1] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd6b4611e0
[  233.635554][    C1] RBP: 00007ffd6b4611e0 R08: 0000000000000000 R09: 0000000000000000
[  233.643522][    C1] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd6b462270
[  233.651625][    C1] R13: 00007fa42901089d R14: 00000000000388b0 R15: 00007ffd6b4622b0
[  233.659615][    C1]  </TASK>
[  233.662636][    C1] Modules linked in:
[  233.666538][    C1] ---[ end trace 0000000000000000 ]---
[  233.671985][    C1] RIP: 0010:__queue_work+0x575/0xd30
[  233.677275][    C1] Code: 39 2b 0f 84 b9 00 00 00 e8 58 ce 28 00 4c 89 ff e8 90 7d a8 03 49 bc 00 00 00 00 00 fc ff df 4c 8b 6d d0 4c 89 e8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ef e8 dc 1f 6d 00 49 8b 7d 00 e8 73 79
[  233.696875][    C1] RSP: 0018:ffffc900001b0c70 EFLAGS: 00010046
[  233.702946][    C1] RAX: 0000000000000000 RBX: 000000007fffffff RCX: ffff888124425100
[  233.710918][    C1] RDX: 0000000000000100 RSI: 000000007fffffff RDI: 000000007fffffff
[  233.718883][    C1] RBP: ffffc900001b0d08 R08: fffffffffffffffb R09: 0000000000000007
[  233.726848][    C1] R10: ffffed102333c939 R11: 1ffff1102333c939 R12: dffffc0000000000
[  233.734813][    C1] R13: 0000000000000000 R14: ffff8881199e49c8 R15: 0000000000000008
[  233.742781][    C1] FS:  000055558b2f0500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  233.751716][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  233.758290][    C1] CR2: 000020000000b038 CR3: 0000000128f76000 CR4: 00000000003506a0
[  233.766283][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  233.774248][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  233.782222][    C1] Kernel panic - not syncing: Fatal exception in interrupt
[  233.789725][    C1] Kernel Offset: disabled
[  233.794043][    C1] Rebooting in 86400 seconds..