last executing test programs:

4m39.69254234s ago: executing program 0 (id=10):
r0 = syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
ftruncate(r1, 0x1)
write$binfmt_script(r1, &(0x7f00000019c0)={'#! ', './file1/../file0', [{0x20, '\xd1r2|\x9c\xdc\x04*Z6\xd2O}$.%{\x06G\xc5@5A\xe5c\tp\xce\x84\xa1\xc4\x992\xb6\x17\x88Q\x1ex\x7f\xe1\x98o\xdb\x13\x92\xf6I\xbb\xd5H\xf4A\x87\x1e/3\x85\xf6\xcc\xab\xefAa5*\x00\x00\x00\x00\xe6c\'~\xf2\x81~\x89E\xbe\x17\x9e\xb6\xc3-\xd2\xf0\xb4\x13\x97{\xd8\xdc\xad\x80\xd2^\xd0}a2\x9e#\x18\xb9\x11\xa1\xe9V\x99\xef\xfe{\x90\xe0\fcM\xeb\xf5\xdb\xaf\xf2\x8a%\"\x90\x8e~N\xaa\xa6\xa2N\xf3\x90g\xef\x15P\xab\x1b\x8c\x8a|\f\xefm\xcf\xff\xebp\x8df{_'}], 0xa, "0000783348b29e910024000029f50a899336010000000000000000ebf7fade"}, 0xd0)
write$UHID_INPUT(r1, &(0x7f00000007c0)={0x8, {"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", 0x1000}}, 0x1006)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc5e3ed1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "9001001c551265406c7f306003d8a0f4bd0000000300"}})

4m38.464800094s ago: executing program 0 (id=13):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000100)='./file1\x00', 0x8c0, &(0x7f0000000380)=ANY=[@ANYBLOB="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", @ANYRES64, @ANYRESOCT, @ANYBLOB="e6d96c8fa41236869e8d88e08903947c550de36d3749c398dca5c2662feb7c7e633d169f3b3540a7b7d27c1a51fbaacef0089af14216453e614370a26599e0bd752db93214aee8e0e7ed370904b299ecea40258bdc6e80de10aa7387537a1c2b826fc09c00b41f5082546a2e190b3d89b5cba8edd41852dfbfe2917578fe835316", @ANYRES64], 0x1, 0x4432, &(0x7f00000088c0)="$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")
unshare(0x400)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x400, 0x0)
fadvise64(r0, 0x12fff, 0x4101, 0x3)

4m36.70738512s ago: executing program 0 (id=18):
r0 = syz_io_uring_setup(0xe42, &(0x7f0000000140)={0x0, 0x2119, 0x400}, &(0x7f0000000240)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000040)=0xfffffffc, 0x0, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f00000004c0)={0x0, 0x0, 0x32}, &(0x7f0000000500)='./file0\x00', 0x18})
io_uring_enter(r0, 0x6f58, 0x0, 0x0, 0x0, 0x0)

4m34.911057538s ago: executing program 0 (id=23):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b105f, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x80, 0x9)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f00000002c0)='./file0/file0\x00', 0x201)

4m34.129887224s ago: executing program 0 (id=27):
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x5603d}], 0x1)
r1 = syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xffffffffffffff31})
io_uring_enter(r1, 0x7a98, 0x0, 0x8, 0x0, 0x0)

4m33.208050696s ago: executing program 0 (id=28):
r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000100)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x40, 0x45e, 0xf9, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x40, 0xb1, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x101, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0xc, 0x0, 0x7c}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x4, 0xc}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18040000000000000000000000400000850000000800000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000000)={0x40, 0x5, 0x5, {0x5, 0x11, "00f400"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

4m30.283276075s ago: executing program 32 (id=28):
r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000100)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x40, 0x45e, 0xf9, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x40, 0xb1, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x101, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0xc, 0x0, 0x7c}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x4, 0xc}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18040000000000000000000000400000850000000800000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000000)={0x40, 0x5, 0x5, {0x5, 0x11, "00f400"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

4m22.0770566s ago: executing program 4 (id=51):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r0, &(0x7f0000000140)={@val={0x3, 0x800}, @val={0x1, 0x0, 0x0, 0x0, 0x14}, @ipv4=@icmp={{0x5, 0x4, 0x0, 0x0, 0x8016, 0x1400, 0x0, 0x0, 0x1, 0x0, @private=0xa010100, @local}, @dest_unreach={0x4, 0x0, 0x0, 0x0, 0x0, 0x1400, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @local, @loopback}}}}, 0xfdef)

4m20.257766527s ago: executing program 4 (id=58):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r1, 0x40000000af01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000340))
r2 = dup(r0)
ioctl$VHOST_NET_SET_BACKEND(r1, 0x4008af30, &(0x7f0000000000)={0x1, r2})

4m19.329029056s ago: executing program 4 (id=59):
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000e0095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socket(0x80000000000000a, 0x2, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0x40)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f0000001200)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2405000005000000000000000c240000e9fffff5ffffffff092403f3", @ANYRES8=r1, @ANYRES64=r0], 0x0)

4m15.957923635s ago: executing program 4 (id=64):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f00000004c0)={[{@resuid}, {@init_itable}, {@minixdf}, {@noblock_validity}]}, 0x3, 0x451, &(0x7f0000000f80)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file2\x00', 0x42, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
link(&(0x7f0000000080)='./file1\x00', &(0x7f0000000240)='./file2/file0\x00')
chdir(&(0x7f00000001c0)='./file0\x00')
link(&(0x7f0000000100)='./file1\x00', &(0x7f0000000280)='./file3\x00')

4m12.931758667s ago: executing program 4 (id=68):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = inotify_init1(0x0)
iopl(0x3)
read(r1, 0x0, 0x0)

4m11.720776967s ago: executing program 4 (id=70):
syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000001c0)={[{@usrquota}, {@grpjquota}, {@nodelalloc}]}, 0x1, 0x4bc, &(0x7f0000000a40)="$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")
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000002100))
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4028af11, &(0x7f00000001c0)={0x0, 0x1})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000001980)=0x1)

4m7.858914071s ago: executing program 33 (id=70):
syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000001c0)={[{@usrquota}, {@grpjquota}, {@nodelalloc}]}, 0x1, 0x4bc, &(0x7f0000000a40)="$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")
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000002100))
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4028af11, &(0x7f00000001c0)={0x0, 0x1})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000001980)=0x1)

3m34.547310431s ago: executing program 2 (id=132):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f00000000c0)={0x4000001, 0x71, 0x200000009})
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r1=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f0000000300)={r1, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f0000000400)={0x0, 0x0, r2, 0x0, 0x0, 0x1f5, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "b4bc323ef77d1f000071849800000000dfff00"}})

3m32.737578179s ago: executing program 2 (id=136):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r0, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001640)={0x11, 0x19, &(0x7f0000001740)=ANY=[@ANYBLOB="180800000600000000000000000000008510"], &(0x7f0000000000)='GPL\x00', 0xa, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x1}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x18, &(0x7f0000001840)=ANY=[@ANYBLOB="180000009a010000000000000500000018110000d5903d0fe25ee49d69c127a073c160a2e47ba3c3e5dd5f4ef66aede2387e24f6a5867909d956a80475a81b48eb04a23fd18dec90db36f40eebdcd557a2323c2f6312963b330c7b2b762675577d309b6e97d5c60c2e7909bd1126fd0d8067883f546b874a3def588f8141dd1f7b18446fcef0f36c55ee16878fe632cb3ac4fab8b89cbc7caabe65831a1bedf5ee7f49416e9c2601b720b77b977da661a230b65c1782240b463b9e4aa74f783504234fd4da8e69fc24dcbfe03362320b4b1ab91d5cfa7b694fe192785f68592068", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000090000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000010000008500000082000000bf91000000000000b7020000010000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x8, 0x0, 0x0, 0x41100, 0x71, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000280)={0x2, 0x8, 0x472, 0x5}, 0x10, 0x0, 0x0, 0x1, &(0x7f0000000040)=[0x1, 0xffffffffffffffff], &(0x7f0000001700)=[{0x4, 0x3, 0x5, 0x3}], 0x10, 0xb}, 0xe4)

3m30.636731148s ago: executing program 2 (id=140):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000080)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0xf, {[@main=@item_4={0x3, 0x0, 0x8, '\t\x00'}, @local=@item_4={0x3, 0x2, 0x0, "93bf0280"}, @main=@item_4={0x3, 0x0, 0xb, "7488dffc"}]}}, 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, 0x0)
ioctl$BTRFS_IOC_RM_DEV(r1, 0x5000940b, 0x0)

3m24.379677818s ago: executing program 2 (id=150):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
syz_mount_image$f2fs(&(0x7f0000000380), &(0x7f0000000400)='./bus\x00', 0xa18008, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x1, 0x5505, &(0x7f00000079c0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './bus'}}], [], 0x2c})

3m21.821024921s ago: executing program 2 (id=156):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000940), 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
recvmmsg(r1, &(0x7f0000017480)=[{{0x0, 0x0, 0x0}, 0x5}], 0x1, 0x40000001, 0x0)

3m16.32366809s ago: executing program 2 (id=167):
r0 = signalfd4(0xffffffffffffffff, &(0x7f00000003c0)={[0x1fffffffff]}, 0x8, 0x0)
r1 = syz_io_uring_setup(0x186, &(0x7f0000000080)={0x0, 0x3416, 0x13100, 0x2, 0x4, 0x0, r0}, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000000200)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0})
unshare(0x20000400)
io_uring_enter(r1, 0x2def, 0x9566, 0x0, 0x0, 0x0)
signalfd4(r0, &(0x7f0000000140), 0x8, 0x0)

3m13.416020229s ago: executing program 34 (id=167):
r0 = signalfd4(0xffffffffffffffff, &(0x7f00000003c0)={[0x1fffffffff]}, 0x8, 0x0)
r1 = syz_io_uring_setup(0x186, &(0x7f0000000080)={0x0, 0x3416, 0x13100, 0x2, 0x4, 0x0, r0}, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000000200)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0})
unshare(0x20000400)
io_uring_enter(r1, 0x2def, 0x9566, 0x0, 0x0, 0x0)
signalfd4(r0, &(0x7f0000000140), 0x8, 0x0)

59.586194384s ago: executing program 1 (id=550):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000003840), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_REGISTER_BEACONS(r1, &(0x7f0000003900)={0x0, 0x0, &(0x7f00000038c0)={&(0x7f0000000080)={0x1c, r0, 0x411, 0x70bd25, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0xc800)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REGISTER_BEACONS(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x24, r3, 0x1, 0x50bd26, 0x25dfdbf8, {{}, {@val={0x8, 0x1, 0x4f}, @val={0x8, 0x3, r2}, @void}}}, 0x24}, 0x1, 0x0, 0x0, 0x20044040}, 0x24008004)

58.533125266s ago: executing program 1 (id=553):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x1, 0xffff000}, 0x28)
r0 = socket(0x15, 0x5, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x4000000000002fe, 0x61, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f00000006c0)=ANY=[@ANYRES64=r0], 0x20)
ppoll(&(0x7f0000000540)=[{}], 0x5b, 0x0, 0x0, 0x0)

56.719632213s ago: executing program 1 (id=557):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0xf)
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
capset(&(0x7f0000000c00)={0x20080522}, &(0x7f0000000140))
sendmsg$DCCPDIAG_GETSOCK(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001200010100000000000000002702000000000000000000000400000000000000404000000000a2b84d87d6040000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000004"], 0x4c}}, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000200), r1)

55.513054518s ago: executing program 1 (id=562):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000300)='\x00', 0x81901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x1)

54.590162774s ago: executing program 1 (id=565):
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000040), 0x8002)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0}, 0x94)
write$binfmt_aout(r1, &(0x7f0000000380)=ANY=[@ANYBLOB="03070000b5"], 0xc8)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="03040000b500000001008aea0000feff"], 0xc8)
dup3(r1, r0, 0x0)

53.652299158s ago: executing program 1 (id=569):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x1, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x2}, 0x1c)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x22}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

49.536712278s ago: executing program 35 (id=569):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x1, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x2}, 0x1c)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x22}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

17.455256458s ago: executing program 3 (id=651):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000000)={0x4800}, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)={0x14, 0x16, 0xa01, 0x0, 0x4000000, {0x5}}, 0x14}}, 0x40)

16.385638493s ago: executing program 3 (id=655):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
syz_usb_connect(0x3, 0x4f, &(0x7f0000000000)=ANY=[@ANYBLOB="120100005cdd2e10630715108856000000010902"], 0x0)
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
syz_open_procfs$namespace(r0, &(0x7f00000003c0)='ns/uts\x00')

13.78094481s ago: executing program 3 (id=661):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
syz_mount_image$bcachefs(&(0x7f00000000c0), &(0x7f0000000180)='./file1\x00', 0x10, &(0x7f0000000040)=ANY=[], 0xff, 0x5a82, &(0x7f0000001080)="$eJzs3X+QHNV9IPDXM7Pa2V39WAkcZDCrRUYJwbG14lf5RyqWc4mdAoeSyynH4mTDglZE9kqo9COATGKRA591YJedci7ByR/EhX1nW3FxZV+MQpmAOYnzLxUXH3VlU2ffYf/hK8KhMqCjXD42tTP9Zmd6p7dnZ2elBT6fkran37z59rdfv+np92Z2JwAAAPCqcPzOfaeuPvd3v/1nEy989Pf+YdftYahcK6/GCsPp8pYzlSGnU39lbW2Z7Re/9pEv/XT0ht/+1v2Dn3/x2PYLdvzwd8664cEPXXn0nr9+5PkVX3vpqaK4sT9dPLOePJOEUP3Gyb/42LHvnDNdlqyc/lk6FMLqZM0jq5NMiLFfhBC2T+cYQlibufOrL1y6Y3p5+139LeWrMvX091e36eM83bEOnrr5DeFH79h6x/fWfeXv+o48fWimSlJt6k8hrLyu+fF9IYSB9H9I+2Jo6o+x024JIQw2Pe7NBXm9vsP8N+asn5cul6XLoYI48f71mfVSpl52PerLLAcLtrdQeXl0U6/cQZ3lmfXsyWih8vKM5avT5dfT5cXzjF9O96GchFISKo30J5OZPhKajlsSktqxrDbWS41jG9L9z6wnmfVSZr3cl9mv2nbTjlZOktbyWC9THk/HlbT8guZzdRvvzSl/bbqspk/UF+N6yN6oG5p1o7FfNTGvk3PkcjqUms5B7cobBz49GENp2VCyZtZjptqI9x3beveG8rZvHh/OySO5P0njJ13FP/jd1cs/+OXDB7Kv643415XS+KWu4v/4qhPPXnP4c5/Njf+pGL/cVfxLHhp85qpH71yf2z4nY/tUuoo//tRjn1h39vVHcvO/N8avdhV/89ET/StOPfRwbv5jsX0Guor/5Nve+ZMvPvHA07nxQ4w/2FX8bUf3fLJ/5NRFufEfju0z1F3/ee7IFT8YGfnZaF78x2P8FV3F/8Khe95636q7rsw9vlti+wx3Ff/dFz54x/JTD5yfd+5M7u30FRaAds5Kr7E+nq53Nc6cys5azF/TeOGvRiv1a77l6f8VC47eJHPxOb2dlb2MDwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAhhNe84b++63+/b/iZSrren954slRfxvJlISQDIYR9+8f37t+5+8bRD910YO/u8cnR8f2jE7v377119LLfGN07sWdy/Nbpe8feeGn9cWtCUl8m58/a9kCYmioNt5bF7f2rC4/8aMOb/88/hzD2mu+PVHLz33jPrvvObvMzI9k89fZdB67+/uV/m+7XcJrXcJu8pqampkJOXv/3/b+8789P/vSiEMZ+Za68Hnvyt/6xJaFawUycVKk/1BPqTwbb5tHIOs0ntldlx87JibG523f68eWc/fjXH3n6Fztu+fQv6+1bzd2PDtt3YPPUZOkvt777///lbfWCorzO1HEvau+4FzG/2H7VtL1Xpvu1Mme/Kjn7def3Hn7iG+cezm/ogv3qSztAX/LajrYb924wWd1SXk3rx0Ti4zbu37Vn475bD75x567xGydunNj9lk2Xbbpi7PIrLt9Y2/ONvdn/5w+Fscpz6wZD3P6vdrj/vehPA9ln36ztrvrjQ1+PPzvrT615LZt3e0znVdwezRnlPf8G3/uxz7zlnkevrhcU9fNYu3E+SZeD08d5U2jqb7Pbqt1+FR2fEMJou3Z49vkrwzn/Y+cdReeh5iPT/DMj2Tz1nfU//9s3/83a36wXnJbzfHNCXZ7nG1nP5FNrr+qOnbc3111q7dsfyul+DbXNa9N3Hu27+/g//0kjv2XLwi3j+/fv3VT/uTzNdHlyXtu8sqVxv9bVfpZDenhDo5u26a/T+kI9v+z5M1bPtupQet9QsqbtfmXF+45tvXtDeds3j+e1dHJ/fYsDYUV9mbwup+Zk5oHlRsLttr9Un39F/WPkXX/ztfd97e8vm9U/Lqn/LNqvJGe/vvLEFz7z+U//27/v3X6967dODP/8f/7RhnrBkj+vlOuJNLJO80lmziuTE5eEUPT8Wxfa70fj+ffvyzFumlH7/Sl6/mW3M1O/fbzRzPpQKHf1fL3kocFnrnr0zvW5z9eTcz1fm3f2tpbHlQuer0ul/2SfX0mlNY/Fe361dJRk89S3Pn7WoUc+uuXcekHR62Wjdrt+fWkH44+c/frHa34wctPov/nvvTtvfOk3vnrtD8c3/2m9oPvjHnPpzXGvpu1bzWnfRtZx3Nncvm+64abJ7fXyonY+c9e/6bJg/BNPJftuPfjh8cnJib37OtuvTl9P43ayrdzt62k8u60p2K/SrP1avBudtFenz7eY//au26v1+TYUkq5eFw5+d/XyD3758IHhWY9KN3RdKY1f6ir+j6868ew1hz/32dz4n4rxK13FH3/qsU+sO/v6I7nx703S+NWu4m8+eqJ/xamHHs6NPxbzH+gq/pNve+dPvvjEA0/nxg8x/lBX8VM/y43/eJJuZ/oaKYSvvnDpjvp6EvrS51vMo68lr5BdTzLrpcx6uXm9FGcR0g2Uk6S1PNZLyy9oyqWdP8wpj1dh1bX15YtxPWRvzF2+1JSazv3tyouuUwEAXuni+//xGjS+/z+RXijlzzTAjG7HYT9+7sgVPxgZ+dnanLhxHDYzn9P6HuvaNH58fJwHHHlTGJte3j5av9Cf7/sI8fmQneeM27no9a0xCuc5p2rbnzXPWTT/vj6zHvOqz5dXmsahqdnjmkroYP59fSZM0fx7ZveL388a/fistEab5q2yx68vnTFr93mH0NoulekIef0jOy8WP88xsjJsqW2vw/6R/RxNPA7Zz9HE7ZybOXF2+zmavP4xPLsdWvKK/SPWm6N/1FIufj9y9vELc7TvzPFrHy17/OZxvKsh/KfPxZXFen+2B/OGbU9pncwb9rfZQryv83nDxX0/zLxkTvz0CdbBvOFLq1oed3rnDWN53I9Kh/OJ78sp79V8YjxdxLxOzpHL6WA+EXiliuP/+BoxPf6fvgD/f5l6ReOU7FVjjJf7Ob1y+3yKxh2zP6c32NXr+Lajez7ZP3LqotzrnIc7/Zzenpa1wYLP/RS144bMemE75kzQFI33stspavfs5zKGwoqu2v0Lh+55632r7royt9231F9Ii9v9My1rKwrafbE/z/ny/5yB8ULb+Ev8cwydzp+dsc8xpB98WqzxyB/klM93PDI460Zjv2qW7nhk5oW0v3UCDwCgrTj+b7x/lo7//1eskF5HFI1bL86sx3i549ac65O8cevvp8tbMvWH0t+omO9187svfPCO5aceOD933HJvp+PQ/9iyNlw4Dl3YuDl3HLGlN58Xzx1HNMZZCxsn5ubfGCcubJye8zZt0zh9YePo3PZpjKNb5wE+c6Kz+HEeIDd+Yx6gh+Pcl2Yqnb5xbsF8XWZjcbXT+bozMo5e2bqfizKOTn99drHG0e/NKZ/vOHpo1o3GftUs3XF0a7lxNADwShXH//EyLo7/H83UW+j77Lnjgh5dt2f/Hkgj/uOLMq6cid+j93+Lx32LPW7NG9cnh9ptJd7b+bh+seclXu7v/y72vNBw7Q94pvE3rewwfqfzZGfs/eWlMi5ON2pcDADAUhbH/wPpev74f2Hjk1njt776JeTM+OTlNz5vrnfmxue9et/d+Lxt/E7ft86Jv3Tmvxb3czKv+vF/XE9Xp4z/AQBYguL4P/7aY/z7f/8lXc/+3fqlN06fSi9JF+l99LQ9jNON08Mc4/S35/y+R7y/83F6j+fZYvzmzwGYBzi9n48fmKlvHgAAgDOhrzZSmv179h9Il9nfs8/7vfxrcurXdPA3USvp5fH1+/dOTFx7YM/28f0T1+6+afvEvmtv3rtz//6J3fV6Cx035o5b0iT7QiVtj/b1suO2VenEwKqcv4eQrR/Dnle7MfvvIWQ3O1DwdwRmjl9n+eYdv9Ic9dv1j7zjnRf/D3PqR43jf8MfXXLtjn3X7ty9c//O8cmdBydao083xOA8vjczSf/P6/tSH3vy3x0PoX6r9q2ZGaX5f39nPDzzzKPlx6wnUmm6RZLc4z+dR5LJY3Wayeq87z/Iyfvb/+3P//jCqV9+MYSx15RfN9+8W0NunvrP75/4/f3Hv79nOv/SnPk3aqZ5FX1fabZ+3J/K5E379r9hx00Hdme/UbI7cT6j1FhfpPmM9Olf7nB+YltO+Xx/f78868bS1PH8xLR3XH/6EgMAWOLi+//xeja+f/jp9AIqlnc+Tq9fOHb7/nHuOH2ss3F69nvJisbp2fpxfzsdp1cXOE7Pbj9/nD6QW7/dOD1v3J0X/w9y6s9X5/2ki9/HiMPPLx8+kNtPrsv2k4G29bLfZ1DUT7L159tPkgX2k+z2i+Zz2tVv10/yjnte/Pfk1M9T1B8qjf6wsN+fye0Pn+rsvPHrmfWi/pCtP9/+UFpgf8huv6g/tKvfrj/kHd+8+Ffn1O9Ua/+Y7hi1fjFx7c037f1wU73F/v6LMPsjGZ3kt2zmsYv7/R/d6rx9F/dzXwvPP4TNtZK8/Bf3c2ULz7+o/efx+18rw6zPleXm/3jOCaTn+S/u97tk5FWf/fjTNV+bngmKPn9WNI+7Nad8vvO4y2bdWJrmNY8L9FQc/8e3e+L4/6502eu3gV7+35Pme8zaxu/R95gVXce86l7Ps2+5ez0HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAePnrD6G/srZ28/id+05dfe7vfvvPJl746O/9w67bf+0jX/rp6A2//a37Bz//4rHtF+z44e+cdcODH7ry6D1//cjzK7720lOFsYdrPysXp6vVEJJnkhCq3zj5Fx879p1zpsuSEEI5GT4UwupkzSOrk0yEsV+EELbHVCutd371hUt3TC9vv6u/pXxVJkh2v8JQOebTnGcItxTuES9D1bSfHTx18xvCj96x9Y7vrfvK3/UdefrQTJWk2tSfQlh5XfPj+0IIA+n/UH/K1KyND06XW0IIg02Pe3NBXq/vMP+NOevnpctl6XKoIE68f31mvZSpl12P+jLLwYLtLVReHt3WK7I8s549GS1UXp6xfHW6/Hq6vHie8cvxfxJKSag00p9MZvpIaDpuSUhqx7LaWC81jm1I9z+znmTWS5n1cl9mv2rbTTtaOUlay2O9THk8HVfS8guaz9VtvDen/LXpspo+UV+M6yF7o25o1o3GftXEvE7OkUvqPxRX6V6p6RzUrrxx4NODMZSWDSVrZj1mqo1437Gtd28ob/vm8eGcPJL7kzR+0lX8g99dvfyDXz58YG1e/OtKafxSV/F/fNWJZ685/LnP5sb/VIxf7ir+JQ8NPnPVo3euz22fk7F9Kl3FH3/qsU+sO/v6I7n53xvjV7uKv/noif4Vpx56ODf/sdg+A13Ff/Jt7/zJF5944Onc+CHGH+wq/rajez7ZP3Lqotz4D8f2Gequ/zx35IofjIz8bDQv/uMx/oqu4n/h0D1vvW/VXVfmHt8tsX2Gu4r/7gsfvGP5qQfOzzt3Jvf26pUT4NXprPQa6+PperfjzIVqGi/81Wilfs23PP2/opcbypjezspFjA8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwCvTP9122Qfe//b3bK0kISQ5dabaiPeVl23ePNrFdsefeuwT686+/khz2dou4gAAAADF4ji81CiphrXh5mQgnNe2fpwjOC+uJa3l2WWMk50j6DROyMQptYlT6iJOuUf5VHoUp69HcZb1KE5/j+JUC+JUQ2dxBuaIU5nuAR3mMzhnPp3HGepRnOU9irOiR3FW9ijOqh7FGZ4zTuf9cHWP4qzpUZyzehTn7B7FeU2P4vxKj+Kc06M42Tnl+fbDFWnNc/Pi1G6UC+NUknLjjnbz6eek2zl/gdsZmnM71akVRa/HHW5noGB/4nZen3lcqXg7h5rrVzvczq/Ofzut+9/hdn59gdspFWwn9ttbsvnF7cS1Dvv/rT2Kc7BHcT7Sozi39SjOn8wnTpv3yGKcP+1RPh9dYByATsXx/8x4bzj0V34zDKZnnOwsQBzvrqv9nP16l3dCivFelylfVhQvO1DPxFs33/yyEwiZeOsz0fpa4lUa45E54lWb423I3DnX/r5tc/vcmuNdnCnvnyNeTXZiAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAW0T/ddtkH3v/292wNSZj+19ZUG/G+8rLNm0e72O6xrXdvKG/75vHmsv5KF4EAAACAQnEc3tcoqYb+yqbQnyxrqVdN5wGq6Xp5uL4cWRm2TC+T0VJtfTBZPefjKunjNu7ftWfjvlsPvnHnrvEbJ26c2P2WTZdtumLs8isu37hj5+TEWP1nCP0F8UIItemHfbce/PD45OTE3n31wmz+a9PHra0lW/tXe9zIm8LY9PL2NP81Bdsrzdre4t3o6AACAAAAAAAAAADAv7Brt6GSluUDwK9nZs7MeHT/zh/fxsU9DusqVlZqx9ASzwNBgi+LByHmWCdZciXp6C66K2aTLqSmFIGysGz4oQ2TNOmLLymRLywYZgmdTUKl/FAfCi1DxQ+hTJwz88yZmTPjnAZx1+33+/C8XPd139dzPx8OXM8ZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAP0WJjer4+Mzs3mUQkQ3KaA2Rj+WKa1sao+5Untv+gNPXO6d2xUmGMhQAAAICRsj58ohMpR6mQj3ycuHy3MboGYqXvBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/vcsNqbn6zOzc0cmEcmQnOYA2Vi+mKa1Meq++tZDn31paupv3bHqGOsAAAAAo2V9eK4TKUc1TomJ5MSlzr8Tzb4NrO+b38pbka2zYY15/d8OhuWdssa809aY97EReZvb55sCAAAAPvqy/r/QiVSiVFi3qh/O+v9RfX2Wd3JfXr59XvtvBYprzgQAAADeX9b/lzqRapQK1U6/vtZ+f2NfXjZ/1P/ts/mnDpk/6v/5l7bP/k8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB8di43p+frM7Fw+iUiG5DQHyMbyxTStjVH37Ccn/3Hx/ts3dsdKhTEWAgAAAEbK+vCV1rscpcJkTMSRy33/1IX3PvKlRx6bjohWm18sxk1bduy4/uzWMcs76/n9E99/9vVvr8o7q3U8aBsEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+MIuN6fn6zOzcEUlEMiSnOUA2li+maW2Muq98/ot/eeDFx1/rjlXHWAcAAAAYLevDV3r/clSjGMU4fvmuu9dfkuubP+ybAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHD4uOGbN39jy8LC1utdHJyLZj7iEHgMFy56Lw72XyYAAOCDdnIk0fwvnXDZwX5qAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgULDYmJ6vz8zOlZOIZEhOs9nctXTolo3li2laG6Nu+sQLpXXvPPl0d6w6xjoAAADAaFkfvtL7l6MaEzERxy3fDfomsNz/Vz7EhwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOKYuN6fn6zOzcuiQiGZLTHCAbyxfTtDZG3ft37f3cfUd/76LuWKkwxkIAAADASFkfXuxEylEqfDxKcVL7fqF3QpJvnwd/F1iZt71n2uSa5zW6ZhUjv+Z5d/btrNDeTWteuR3NV1rnzrzayrxce16ta141OuVrnXnLL2t3T7V1I55z0LsHAACAD0vW/5c6kUqUCqWu/v+nPfkVfS4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMMRiY3q+PjM7lyQRyZCc5gDZWL6YprUx6t782/8/6qs/u2tnd6w6xjoAAADAaFkfvtL7l6MaG+L/YsNy3x+V3vws75/1d++7519/PT3izOMPTBX6l/1RdvHrVy54qv8QkevNzkUc3a6XDKn3m9/fc+Om5rsPRJx5XP6kVfXi/ev1Lpk2H61vvXTHswe2j3g5AAAAcJjI+v+JTqQSpcJ1Q/v/rPMe0f93LDfgR9+46xfHto/tjrxvRq7SrpcbUu8Lmx7686nn/v31pf5/db1Pdq4+vffa+47tKdiK9EnS5sy1OzcfOGdfLtt1q36+r372Xr78rdf+ffVNd7/bql+Ocju+vu9RWtVWH/vKR9pcyO2Zu+S9PY3e+oUh+7/9d0+/+Kv1d729VP+tkyc79U+LQfVbOy8MrR9HpM3Jy+/Yfd7e/Zt760dELfKr67/x9kVxwh+vua1//5N9C3e/+e5j/wtIm89vfHPfufdWz++tnyzV75K9/5+/eP/un9z93cey+tlvRU4/Za31c331n7vzmF3P3HrZ+t76ub762f6fuuKlqW217/yhf/9X9axaGPoUq/f/4BkPX/nylvSW/iEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDDy2Jjer4+MzuXSyKSITnNAbKxfDFNa2PUffXiF9644q4f/7A7Vh1jHQAAAGC0rA9f6f3LUY1iFGNyue9/tL710h3PHtgeldZo0j4XFrbdsOMTV2/bed1VB+nJAQAAgLV69eJkuf8vdCKVKBU2xUS7/5+5dufmA+fsy2X9f27pnETE1dcsbD0zOnnP3XnMrmduvWx95ztBxPLPAspLeZ9Zybvwghcqb/7p66cOzDt7Je/5jW/uO/fe6vlZXnTnnRWd7xMPnvHwlS9vSW/pPF933qe+tm2h/XkiW3fy8jt2n7d3/+Zc9h2jfZ5sr5vlLeT2zF3y3p5GrhKlpfF8O6/c3jcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsNpiY3q+PjM7F/mIZEhOs1s7kI3li2laG6PuJZt+edtR7zy+oTtWKoyxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPAfduBAAAAAAADI/7URqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqrBffyFSlX0cwJ9nZvbd2Z1d3dUX2orW1YrCLpSCiLqpqAiNELoyJCzNiygIIgq7aA2NxIpugqwbiQqqLQSD3CTRYo3+STddVFBgXQQiLdQu0kXGzjxnnD3OaXS2AunzgeHZ5znnfM/vnOeZM3sAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4LzSWxmpt0d2PDJ750W3fvbU/TNP3v7BQ9uueOKtn8Y23fzp3v7XT05tXr7l21uWbjrwwJrJ3a8c/m3wvT+OdQx+vNGsTN1qCPFEDKH64fSLT099fsHcWAwhlOPQeAjDccnh4ZhLWP17CGFzs875G/fNXLNlrt22q3fe+OJcSP66Qq2c1dMwNL/eVqfyYZx3qmmdbZ197Krw/U3rt3+57N13eiaOj5/eJc7tU07rKYRFG1uP7wkh9KXPnGy1jWQHp3ZdCKG/5bjrOtR16VnWv6qgf3Fq/5faWoecbPuKXL+U2y/fz/Tk2v4O51uoojq63a+TgVw//zBaqGadq9qPD6f2/dSuPMf8cvaJoRRDpVn+g/H0Ggkt8xZDrM9ltdkvZXNbCen6e1qOiyHEXL+U65d7ctdVP29aaOUY549n++XGs8dxJY0vb31Wt3FXwfiFqa2mL+rJrB/yfzTUzvijeV11WV3Tf1HLv6HU8gxqN96c+DQZtTRWi0vOOOZUG9m2qfXPXl7e8NGRoYI64t6Y8mNX+Vu/GB645+2dj44U5W8spfxSV/k/rD36y907X325MP+FLL/cVf7VB/tPrP14x4rC+zOd3Z/KWeXH1M+23Xvsk+eW/f++iXZzXc/fk+VXu6r/xsmjvYOzBw8V1r86uz99XeV/d8NtP7759f7jhfkhy+/vKn/D5MPP947OXlmYf6jxVajVV2gX6+fXiWu/GR39eawo/6vs/g+2yY8d898Y3339a4t3rSlcn+uy+zOU8vvOqf47LjuwfWB2/yVFz8645+/65QT4b1qa/sd6JvU7vWfumym1fc9cqJb3hZfGKo1foIH06fRuuBBz51n0D+YDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwJztwQAIAAAAg6P/rdgQKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwVAAAAP//y70YrQ==")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
bind$bt_sco(0xffffffffffffffff, 0x0, 0x0)
fchown(r0, 0x0, 0x0)

13.723339769s ago: executing program 6 (id=662):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000440)=ANY=[@ANYBLOB="12010000062d14406d0470084761000000010902", @ANYRESHEX=0x0], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000180)={0x2c, 0x0, &(0x7f0000000080)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x804}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$uac1(r0, &(0x7f0000000800)={0x14, 0x0, &(0x7f0000000880)={0x0, 0x3, 0x2, @lang_id={0x0, 0x3, 0x860}}}, 0x0)

11.13907565s ago: executing program 3 (id=665):
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
bind$tipc(r0, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x3, {0x42, 0x2, 0xffffffff}}, 0x10)
bind$tipc(r0, &(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x42, 0x1}}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x42, 0x2, 0x2}, 0x10)
sendmsg$tipc(r0, &(0x7f0000002340)={&(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x4, 0x4}}, 0x10, 0x0}, 0x0)

10.098508577s ago: executing program 6 (id=668):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0xfff)
syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "128c00", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd000000100001000d0c10000000000000000000", 0x58}], 0x1)

8.095722783s ago: executing program 8 (id=571):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2800003, 0x31, 0xffffffffffffffff, 0x231cd000)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000400)='rss_stat\x00', r0, 0x0, 0x3}, 0x18)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='rdma.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)

8.030921886s ago: executing program 5 (id=672):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001400000018"], 0x44}}, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
ioctl$FS_IOC_GETFSLABEL(r2, 0x400452c8, &(0x7f0000000100))
ioctl$FS_IOC_GETFSLABEL(r0, 0x400452c9, &(0x7f0000000100))

7.490012108s ago: executing program 6 (id=673):
r0 = socket$inet6(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000ed3fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
shutdown(r0, 0x0)
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000040)={0x1, 0xfffffffd}, 0x8)
sendto$inet6(r0, &(0x7f0000000100)="bc", 0x1, 0x0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback, 0x1}, 0x1c)
close(r0)

7.083363253s ago: executing program 8 (id=674):
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x5, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000000000000000000008000000850000002e000000a50000007d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x10, 0x10, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

6.868156226s ago: executing program 5 (id=675):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x12, r0, 0x0)
preadv(r0, &(0x7f00000015c0)=[{0x0}], 0x1, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)

6.575953337s ago: executing program 7 (id=676):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x80)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x0, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000140)='./file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount$tmpfs(0x0, &(0x7f0000000400)='./file0/../file0\x00', &(0x7f00000001c0), 0x0, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)

6.476659401s ago: executing program 6 (id=677):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x77, 0x29, 0x4, 0x20, 0x424, 0x9901, 0xc257, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x43, 0x0, 0x2, 0x31, 0x7d, 0x55, 0x0, [], [{{0x9, 0x5, 0x2, 0x2, 0x200, 0x2}}, {{0x9, 0x5, 0x82, 0x2, 0x200}}]}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000440)={0x2c, &(0x7f0000000640)={0x0, 0x9, 0x5, "9c5a2259a3"}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, &(0x7f0000000780)={0x84, &(0x7f0000000280)={0x40, 0xf, 0x4, "ddf3b708"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

6.072757972s ago: executing program 8 (id=678):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000140)={0x10000000})
ioctl$TIOCL_GETMOUSEREPORTING(r1, 0x5412, &(0x7f0000000400)=0x13)
ioctl$TCSETS(r0, 0x5402, &(0x7f0000000000)={0x10, 0x3, 0x8c, 0x8, 0x19, "007de521ec070ef4f834bbeda7f6647bbfdef7"})

5.742084534s ago: executing program 7 (id=679):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'lo\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@ipv4_newaddr={0x50, 0x14, 0x503, 0x800000, 0x25dfdbff, {0x2, 0x7, 0x51, 0xff, r3}, [@IFA_LOCAL={0x8, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x3ff, 0xffffffff, 0x3}}, @IFA_BROADCAST={0x8, 0x4, @multicast2}, @IFA_LABEL={0x14, 0x3, 'veth0_to_bridge\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0xc090}, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000180)={'lo\x00', {0x2, 0x4e21, @empty=0x7f000000}})

5.251998345s ago: executing program 5 (id=680):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x28}}, 0x10)
sendto$inet(r1, &(0x7f00000001c0)="f72bacc3ca1aaadf08e239411cbcf4b2ef908084f500db36e2ef38b56d756f041132ccc67bec238c21e52da753", 0x2d, 0x0, &(0x7f00000004c0)={0x2, 0x4e20, @multicast1}, 0x10)
readv(r0, &(0x7f0000000180)=[{&(0x7f00000000c0)=""/16, 0x10}], 0x1)

4.789986019s ago: executing program 7 (id=681):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000040)={'team0\x00', <r2=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x8, r2, 0x1, 0x2, 0x6, @multicast}, 0x14)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000002c0)="2e00000010008188040f80ec59acbc0413010048100000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)

4.682895613s ago: executing program 8 (id=682):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000100001ff00000000000000000000000a2c000000050a010200000000000000000200000009"], 0x68}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f28000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003"], 0xe8}, 0x1, 0x0, 0x0, 0x40}, 0x4000000)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[], 0xe8}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)

4.052541542s ago: executing program 5 (id=683):
syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x3000050, &(0x7f0000000440)=ANY=[], 0x83, 0x1501, &(0x7f0000002180)="$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")
timer_create(0x3, 0x0, &(0x7f0000000280))
timer_settime(0x0, 0x1, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
timer_create(0x3, 0x0, &(0x7f00000000c0)=<r0=>0x0)
timer_settime(r0, 0x1, &(0x7f0000000180)={{0x77359400}, {0x0, 0x989680}}, 0x0)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)

3.83732563s ago: executing program 7 (id=684):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r0, &(0x7f00000025c0)=[{{&(0x7f0000000000)={0xa, 0x4e22, 0x0, @private1}, 0x1c, &(0x7f0000000300)=[{&(0x7f0000000040)='P', 0x1}], 0x1}}], 0x1, 0x0)
shutdown(r0, 0x1)
setsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f00000000c0)=@int=0x5, 0x4)

3.433452875s ago: executing program 8 (id=685):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000001300)={'team0\x00', <r2=>0x0})
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'team_slave_1\x00', <r4=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000100000008000100", @ANYRES32=r2, @ANYBLOB="400002803c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000005000300060000000400000008000600", @ANYRES32=r4], 0x5c}}, 0x0)

3.296973097s ago: executing program 6 (id=686):
r0 = userfaultfd(0x80801)
r1 = dup(r0)
r2 = syz_io_uring_setup(0x10e, &(0x7f00000000c0)={0x0, 0x8d2dc, 0x0, 0xffffffff}, &(0x7f00000003c0)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x40, 0x5, r1, 0x0, 0x0, 0x0, 0x80000})
io_uring_enter(r2, 0x47f5, 0x0, 0x0, 0x0, 0x0)

3.243940867s ago: executing program 3 (id=687):
syz_mount_image$hfsplus(&(0x7f0000000a40), &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2010410, &(0x7f0000000000)=ANY=[], 0x1, 0x684, &(0x7f0000001780)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x101042, 0xb0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
linkat(r0, &(0x7f0000000180)='./file1\x00', r0, &(0x7f0000000640)='./bus\x00', 0x0)
unlink(&(0x7f0000000180)='./file1\x00')
unlink(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

3.201137439s ago: executing program 7 (id=688):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_mount_image$f2fs(&(0x7f0000000380), &(0x7f0000000400)='./bus\x00', 0xa18008, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x1, 0x5505, &(0x7f00000079c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xe7c)
write$P9_RSTATFS(r0, &(0x7f00000000c0)={0x43, 0x9, 0x1, {0x7ff, 0x40, 0x5, 0x0, 0x6, 0xe, 0x5d, 0x7, 0xffff}}, 0x43)

2.567900072s ago: executing program 5 (id=689):
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
bind$inet6(r0, &(0x7f0000fa0fe4)={0xa, 0x4e20, 0x4, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0xffffffac, 0x20000008, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000140)=0x1f08, 0x4)
sendmmsg$inet6(r0, &(0x7f0000006d40)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000040)="4f1a", 0x2}], 0x1}}, {{0x0, 0x0, &(0x7f00000015c0)=[{&(0x7f00000014c0)="4a3deb", 0x3}], 0x1}}], 0x2, 0x48815)
sendto$inet6(r0, &(0x7f0000000040)="911c07fd5cb6e642f154893e299c5495a6a01bfd889793b7bbf1a6c50d57fe6b48f269682e39a0", 0x27, 0x801, 0x0, 0x0)

2.241731625s ago: executing program 8 (id=690):
r0 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$int_in(r2, 0x5452, &(0x7f0000000040)=0x401)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000100)={0x20000014})
close(r1)

1.622188767s ago: executing program 6 (id=691):
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x14, 0x0, 0x0)
sendmsg$DEVLINK_CMD_PORT_UNSPLIT(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0xd4, 0x0, 0x200, 0x70bd25, 0x25dfdbfb, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}]}, 0xd4}, 0x1, 0x0, 0x0, 0x8004}, 0x20000080)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000008c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000240)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010029bd70000000000007000000080001002800000008000300", @ANYRES32=r2, @ANYBLOB="140004006e69637666300000000000000000000008000500060000001c00178004"], 0x78}}, 0x0)

1.171983771s ago: executing program 7 (id=692):
creat(&(0x7f00000002c0)='./file0\x00', 0x109)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
truncate(&(0x7f0000000180)='./file0\x00', 0x8fff5)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r0, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)=[0x1], 0x0, 0x0, 0x1, 0x1}}, 0x40)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)

111.974446ms ago: executing program 5 (id=693):
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2a, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}, 0x2}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108)
r1 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2a, &(0x7f0000000080)={0x20, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x1, @mcast1={0xff, 0x7}, 0x3}}, {{0xa, 0x4c34, 0x0, @mcast1, 0x7}}}, 0x108)
close(r0)

0s ago: executing program 3 (id=694):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000380)={'vcan0\x00', <r1=>0x0})
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r2, &(0x7f0000000080)={0x1d, r1, 0x0, {0x0, 0x0, 0x4}, 0xfe}, 0x18)
sendmsg$can_j1939(r2, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f0000000400)="927d36243d2da7d037", 0x9}}, 0xee)
sendmsg$can_j1939(r2, &(0x7f00000006c0)={&(0x7f0000000600)={0x1d, r1, 0x1, {0x0, 0xf0, 0x1}, 0x2}, 0x18, &(0x7f0000000680)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x20000811)

kernel console output (not intermixed with test programs):

hci0: unexpected cc 0x0c23 length: 249 > 4
[  310.567732][ T5806] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  310.568436][ T6250] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  311.032449][ T6250] XFS (loop3): Ending clean mount
[  311.045415][ T6250] XFS (loop3): Quotacheck needed: Please wait.
[  311.180338][ T6250] XFS (loop3): Quotacheck: Done.
[  312.118569][ T5795] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  312.555482][ T6252] chnl_net:caif_netlink_parms(): no params data found
[  312.693837][ T5806] Bluetooth: hci0: command tx timeout
[  313.696919][ T6279] loop3: detected capacity change from 0 to 40427
[  313.777581][ T6288] netlink: 'syz.2.80': attribute type 22 has an invalid length.
[  313.780064][ T6075] veth0_vlan: entered promiscuous mode
[  313.798840][ T6279] F2FS-fs (loop3): invalid crc value
[  314.057160][ T6075] veth1_vlan: entered promiscuous mode
[  314.236992][ T6279] F2FS-fs (loop3): Start checkpoint disabled!
[  314.370360][ T6279] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  314.696606][ T6075] veth0_macvtap: entered promiscuous mode
[  314.749129][ T5806] Bluetooth: hci0: command tx timeout
[  314.783598][ T6279] F2FS-fs (loop3): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[  314.967612][ T6075] veth1_macvtap: entered promiscuous mode
[  315.263897][ T3503] kworker/u8:9: attempt to access beyond end of device
[  315.263897][ T3503] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  315.278636][ T3503] CPU: 1 UID: 0 PID: 3503 Comm: kworker/u8:9 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(undef) 
[  315.278788][ T3503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  315.278917][ T3503] Workqueue: writeback wb_workfn (flush-7:3)
[  315.279114][ T3503] Call Trace:
[  315.279170][ T3503]  <TASK>
[  315.279219][ T3503]  __dump_stack+0x26/0x30
[  315.279398][ T3503]  dump_stack_lvl+0x1df/0x270
[  315.279607][ T3503]  dump_stack+0x1e/0x25
[  315.279773][ T3503]  f2fs_handle_critical_error+0xa6f/0xc20
[  315.280019][ T3503]  f2fs_stop_checkpoint+0x65/0x80
[  315.280237][ T3503]  f2fs_write_end_io+0xb4b/0x1920
[  315.280421][ T3503]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  315.280662][ T3503]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  315.280811][ T3503]  bio_endio+0xe24/0xf80
[  315.281007][ T3503]  submit_bio_noacct+0x214/0x2710
[  315.281253][ T3503]  submit_bio+0x5a9/0x5d0
[  315.281465][ T3503]  f2fs_submit_write_bio+0x92/0x250
[  315.281670][ T3503]  __submit_merged_bio+0x16f/0x6a0
[  315.281856][ T3503]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  315.282093][ T3503]  __submit_merged_write_cond+0x458/0x9a0
[  315.282324][ T3503]  f2fs_write_data_pages+0x4bb2/0x5480
[  315.282680][ T3503]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  315.282865][ T3503]  ? kmsan_get_metadata+0xfb/0x160
[  315.283071][ T3503]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  315.283301][ T3503]  ? kmsan_get_metadata+0xfb/0x160
[  315.283504][ T3503]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  315.283697][ T3503]  ? kmsan_get_metadata+0xfb/0x160
[  315.283893][ T3503]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  315.284117][ T3503]  ? kmsan_get_metadata+0xfb/0x160
[  315.284314][ T3503]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  315.284527][ T3503]  ? kmsan_get_metadata+0xfb/0x160
[  315.284729][ T3503]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  315.284944][ T3503]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  315.285153][ T3503]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  315.285356][ T3503]  do_writepages+0x3ef/0x860
[  315.285546][ T3503]  ? stack_depot_save_flags+0x35/0x7b0
[  315.285720][ T3503]  ? kmsan_get_metadata+0xfb/0x160
[  315.285930][ T3503]  ? kmsan_get_metadata+0xfb/0x160
[  315.286158][ T3503]  __writeback_single_inode+0x101/0x1190
[  315.286357][ T3503]  ? kmsan_get_metadata+0xfb/0x160
[  315.286585][ T3503]  writeback_sb_inodes+0xaa9/0x1c90
[  315.286919][ T3503]  wb_writeback+0x4ce/0xc00
[  315.287124][ T3503]  ? queue_io+0x481/0x790
[  315.287319][ T3503]  wb_workfn+0x397/0x1910
[  315.287472][ T3503]  ? kmsan_get_metadata+0xfb/0x160
[  315.287681][ T3503]  ? __pfx_wb_workfn+0x10/0x10
[  315.287806][ T3503]  process_scheduled_works+0xb8e/0x1d80
[  315.288059][ T3503]  worker_thread+0xedf/0x1590
[  315.288286][ T3503]  kthread+0xd5c/0xf00
[  315.288424][ T3503]  ? __pfx_worker_thread+0x10/0x10
[  315.288646][ T3503]  ? __pfx_kthread+0x10/0x10
[  315.288794][ T3503]  ret_from_fork+0x1e0/0x310
[  315.288943][ T3503]  ? __pfx_kthread+0x10/0x10
[  315.289092][ T3503]  ret_from_fork_asm+0x1a/0x30
[  315.289295][ T3503]  </TASK>
[  315.294846][ T6075] batman_adv: batadv0: Interface activated: batadv_slave_0
[  315.302539][ T3503] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  315.710146][ T6075] batman_adv: batadv0: Interface activated: batadv_slave_1
[  315.792516][ T6075] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  315.803345][ T6075] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  315.813965][ T6075] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  315.824470][ T6075] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  316.776531][ T6252] bridge0: port 1(bridge_slave_0) entered blocking state
[  316.787144][ T6252] bridge0: port 1(bridge_slave_0) entered disabled state
[  316.796978][ T6252] bridge_slave_0: entered allmulticast mode
[  316.806950][ T6252] bridge_slave_0: entered promiscuous mode
[  316.881269][ T6252] bridge0: port 2(bridge_slave_1) entered blocking state
[  316.890446][ T5806] Bluetooth: hci0: command tx timeout
[  316.897356][ T6252] bridge0: port 2(bridge_slave_1) entered disabled state
[  316.905394][ T6252] bridge_slave_1: entered allmulticast mode
[  316.916168][ T6252] bridge_slave_1: entered promiscuous mode
[  317.392816][ T6310] loop3: detected capacity change from 0 to 4096
[  317.624630][ T6318] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  317.681214][ T6252] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  317.789278][ T6252] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  317.818536][   T30] audit: type=1800 audit(1751398211.960:10): pid=6310 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.84" name="bus" dev="loop3" ino=18 res=0 errno=0
[  318.205686][ T6252] team0: Port device team_slave_0 added
[  318.272496][ T6252] team0: Port device team_slave_1 added
[  318.282607][ T6317] loop1: detected capacity change from 0 to 4096
[  318.612411][ T6252] batman_adv: batadv0: Adding interface: batadv_slave_0
[  318.619797][ T6252] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  318.650483][ T6252] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  318.690709][ T6252] batman_adv: batadv0: Adding interface: batadv_slave_1
[  318.700856][ T6252] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  318.732031][ T6252] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  318.915247][ T5806] Bluetooth: hci0: command tx timeout
[  319.362766][ T6252] hsr_slave_0: entered promiscuous mode
[  319.373282][ T6252] hsr_slave_1: entered promiscuous mode
[  319.382606][ T6252] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  319.390560][ T6252] Cannot create hsr debugfs directory
[  321.932037][ T6341] loop1: detected capacity change from 0 to 32768
[  322.043685][ T6342] bond0: entered promiscuous mode
[  322.050476][ T6342] bond_slave_0: entered promiscuous mode
[  322.059956][ T6342] bond_slave_1: entered promiscuous mode
[  322.075571][ T6342] batadv0: entered promiscuous mode
[  322.086638][ T6342] 8021q: adding VLAN 0 to HW filter on device hsr1
[  322.280588][ T6341] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  322.332271][ T6342] bond0: left promiscuous mode
[  322.337371][ T6342] bond_slave_0: left promiscuous mode
[  322.344740][ T6342] bond_slave_1: left promiscuous mode
[  322.367379][   T30] audit: type=1800 audit(1751398216.510:11): pid=6341 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.87" name="file1" dev="loop1" ino=17058 res=0 errno=0
[  322.459192][ T6342] batadv0: left promiscuous mode
[  322.611825][ T5810] ocfs2: Unmounting device (7,1) on (node local)
[  322.898900][ T1878] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  323.169529][ T1878] usb 4-1: New USB device found, idVendor=2c42, idProduct=1709, bcdDevice=ca.b7
[  323.179143][ T1878] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  323.187427][ T1878] usb 4-1: Product: syz
[  323.193031][ T1878] usb 4-1: Manufacturer: syz
[  323.197927][ T1878] usb 4-1: SerialNumber: syz
[  323.215217][ T5853] libceph: connect (1)[c::]:6789 error -101
[  323.222134][ T5853] libceph: mon0 (1)[c::]:6789 connect error
[  323.251566][ T1878] usb 4-1: config 0 descriptor??
[  323.286480][ T6252] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  323.332403][ T6252] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  323.401122][ T6252] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  323.531603][ T6252] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  323.544839][ T5853] libceph: connect (1)[c::]:6789 error -101
[  323.552279][ T5853] libceph: mon0 (1)[c::]:6789 connect error
[  323.870942][ T6356] ceph: No mds server is up or the cluster is laggy
[  324.729916][ T1878] usb 4-1: f81604_read: reg: 100e failed: -EPROTO
[  324.953776][ T1878] usb 4-1: f81604_read: reg: 200f failed: -EPROTO
[  325.011736][ T1878] usb 4-1: USB disconnect, device number 3
[  325.064208][ T1878] usb 4-1: f81604_read: reg: 100f failed: -ENODEV
[  325.227469][ T1878] usb 4-1: f81604_read: reg: 200f failed: -ENODEV
[  326.188971][ T6252] 8021q: adding VLAN 0 to HW filter on device bond0
[  326.480356][ T6252] 8021q: adding VLAN 0 to HW filter on device team0
[  326.639192][ T4182] bridge0: port 1(bridge_slave_0) entered blocking state
[  326.646863][ T4182] bridge0: port 1(bridge_slave_0) entered forwarding state
[  326.799669][ T4182] bridge0: port 2(bridge_slave_1) entered blocking state
[  326.807424][ T4182] bridge0: port 2(bridge_slave_1) entered forwarding state
[  327.703742][ T3647] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  327.712487][ T3647] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  327.977670][ T6390] loop8: detected capacity change from 0 to 8
[  328.100501][ T6390] Dev loop8: unable to read RDB block 8
[  328.106592][ T6390]  loop8: unable to read partition table
[  328.121949][ T3517] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  328.130259][ T3517] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  328.219789][ T6390] loop8: partition table beyond EOD, truncated
[  328.226530][ T6390] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5)
[  329.745492][ T6252] 8021q: adding VLAN 0 to HW filter on device batadv0
[  331.774034][ T6431] loop5: detected capacity change from 0 to 1024
[  331.910429][ T6431] hfsplus: Filesystem is marked locked, mounting read-only.
[  332.210658][ T5854] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  332.447641][ T5854] usb 2-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  332.460852][ T5854] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  332.470713][ T5854] usb 2-1: Product: syz
[  332.475159][ T5854] usb 2-1: Manufacturer: syz
[  332.480147][ T5854] usb 2-1: SerialNumber: syz
[  332.599724][ T5854] usb 2-1: config 0 descriptor??
[  333.082926][ T6252] veth0_vlan: entered promiscuous mode
[  333.289078][ T6252] veth1_vlan: entered promiscuous mode
[  333.736921][ T6252] veth0_macvtap: entered promiscuous mode
[  333.755373][ T5854] usb 2-1: non-Atmel transceiver xxxxa208
[  333.827875][ T6252] veth1_macvtap: entered promiscuous mode
[  333.997544][ T5854] usb 2-1: Firmware version (0.0) predates our first public release.
[  334.006571][ T5854] usb 2-1: Please update to version 0.2 or newer
[  334.054747][ T6252] batman_adv: batadv0: Interface activated: batadv_slave_0
[  334.081741][ T5854] usb 2-1: atusb_probe: initialization failed, error = -19
[  334.187361][ T6252] batman_adv: batadv0: Interface activated: batadv_slave_1
[  334.221384][ T5854] usb 2-1: USB disconnect, device number 3
[  334.335737][ T6252] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  334.345119][ T6252] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  334.354415][ T6252] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  334.363989][ T6252] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  335.765932][ T6465] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  335.906141][ T6459] loop2: detected capacity change from 0 to 256
[  336.344277][ T6459] FAT-fs (loop2): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  337.536787][ T6486] loop3: detected capacity change from 0 to 128
[  337.794635][ T6486] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  337.872389][ T6486] ext4 filesystem being mounted at /29/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  338.132729][ T6486] EXT4-fs warning (device loop3): ext4_dirblock_csum_verify:375: inode #2: comm syz.3.123: No space for directory leaf checksum. Please run e2fsck -D.
[  338.149392][ T6486] EXT4-fs error (device loop3): __ext4_find_entry:1626: inode #2: comm syz.3.123: checksumming directory block 0
[  338.821892][ T5795] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  338.824464][ T6499] loop5: detected capacity change from 0 to 512
[  339.116147][ T6499] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  339.127032][ T6499] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  339.272095][ T6499] EXT4-fs (loop5): warning: checktime reached, running e2fsck is recommended
[  339.368694][ T6499] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  339.377405][ T6499] System zones: 0-2, 18-18, 34-34
[  339.456264][ T6499] EXT4-fs error (device loop5): ext4_orphan_get:1393: inode #15: comm syz.5.125: iget: bad i_size value: 360287970189639680
[  339.559153][ T6499] EXT4-fs error (device loop5): ext4_orphan_get:1398: comm syz.5.125: couldn't read orphan inode 15 (err -117)
[  339.619649][ T6499] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  339.921641][   T30] audit: type=1800 audit(1751398234.000:12): pid=6499 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.125" name="file2" dev="loop5" ino=16 res=0 errno=0
[  340.516846][ T6508] loop3: detected capacity change from 0 to 32768
[  340.548071][ T6075] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  341.242755][ T6518] IPv4: Oversized IP packet from 172.20.20.24
[  341.253662][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  341.262194][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  342.462773][ T6529] loop5: detected capacity change from 0 to 1024
[  343.071289][   T30] audit: type=1800 audit(1751398237.230:13): pid=6540 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.133" name="file1" dev="loop5" ino=0 res=0 errno=0
[  344.670003][ T3503] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  344.678485][ T3503] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  344.721166][ T6548] loop3: detected capacity change from 0 to 40427
[  344.732338][ T6548] F2FS-fs (loop3): Insane cp_payload (553648128 >= 504)
[  344.745461][ T6548] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  344.764055][ T6548] F2FS-fs (loop3): build fault injection rate: 17008
[  344.772476][ T6548] F2FS-fs (loop3): build fault injection type: 0x1f8
[  344.780074][ T6548] F2FS-fs (loop3): build fault injection type: 0x6
[  344.805168][ T6548] F2FS-fs (loop3): invalid crc value
[  345.213169][ T6552] loop5: detected capacity change from 0 to 1024
[  345.259805][ T6548] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  345.267196][ T6548] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  345.467523][ T3503] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  345.476467][ T3503] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  345.545327][ T6552] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  345.563111][ T6552] ext4 filesystem being mounted at /11/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  345.802439][ T6565] EXT4-fs error (device loop5): ext4_map_blocks:816: inode #15: block 8: comm syz.5.139: lblock 8 mapped to illegal pblock 8 (length 8)
[  346.106074][ T6565] EXT4-fs error (device loop5): ext4_ext_remove_space:2955: inode #15: comm syz.5.139: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  346.404206][ T6560] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  346.610310][   T42] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  346.842743][   T42] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  346.855375][   T42] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  346.865826][   T42] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  346.879351][   T42] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  346.893844][   T42] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  346.984168][ T6075] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  347.032761][   T42] usb 3-1: config 0 descriptor??
[  347.911302][   T42] plantronics 0003:047F:FFFF.0001: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  348.194939][ T6576] sctp: failed to load transform for md5: -2
[  348.452933][ T5853] usb 3-1: USB disconnect, device number 4
[  349.293181][ T6584] loop3: detected capacity change from 0 to 40427
[  349.309193][ T6584] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  349.317288][ T6584] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  349.351481][ T6584] F2FS-fs (loop3): invalid crc value
[  349.794594][ T6584] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  349.802280][ T6584] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  349.837340][ T6584] syz.3.145: attempt to access beyond end of device
[  349.837340][ T6584] loop3: rw=2049, sector=45096, nr_sectors = 88 limit=40427
[  349.887774][ T6584] syz.3.145: attempt to access beyond end of device
[  349.887774][ T6584] loop3: rw=2049, sector=45184, nr_sectors = 40 limit=40427
[  349.902442][ T6584] syz.3.145: attempt to access beyond end of device
[  349.902442][ T6584] loop3: rw=2049, sector=45096, nr_sectors = 88 limit=40427
[  350.846871][ T6588] fido_id[6588]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  351.637564][ T6610] loop1: detected capacity change from 0 to 512
[  351.853803][ T6610] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 0 not in group (block 0)!
[  351.864461][ T6610] EXT4-fs (loop1): group descriptors corrupted!
[  352.469568][ T6609] loop2: detected capacity change from 0 to 40427
[  352.523350][ T6609] F2FS-fs (loop2): build fault injection rate: 690
[  352.530708][ T6609] F2FS-fs (loop2): Image doesn't support compression
[  352.538073][ T6609] F2FS-fs (loop2): Image doesn't support compression
[  352.573190][ T6610] loop1: detected capacity change from 0 to 256
[  352.581167][ T6609] F2FS-fs (loop2): invalid crc value
[  352.619929][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  352.629475][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  352.711537][ T6610] vfat: Bad value for 'fmask'
[  353.015696][ T6609] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  353.105813][   T42] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  353.342347][   T42] usb 2-1: config 1 has an invalid descriptor of length 253, skipping remainder of the config
[  353.355127][   T42] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2
[  353.364590][   T42] usb 2-1: config 1 has no interface number 0
[  353.371088][   T42] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  353.382421][   T42] usb 2-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[  353.392032][   T42] usb 2-1: too many endpoints for config 1 interface 1 altsetting 1: 75, using maximum allowed: 30
[  353.403220][   T42] usb 2-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 75
[  353.472052][ T6624] Bluetooth: MGMT ver 1.23
[  353.493722][ T5798] syz-executor: attempt to access beyond end of device
[  353.493722][ T5798] loop2: rw=524288, sector=45064, nr_sectors = 8 limit=40427
[  353.508757][ T5798] syz-executor: attempt to access beyond end of device
[  353.508757][ T5798] loop2: rw=0, sector=45064, nr_sectors = 8 limit=40427
[  353.770011][   T42] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  353.779848][   T42] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  353.788516][   T42] usb 2-1: Product: syz
[  353.792960][   T42] usb 2-1: Manufacturer: syz
[  353.797824][   T42] usb 2-1: SerialNumber: syz
[  354.518908][ T6630] loop5: detected capacity change from 0 to 128
[  354.691874][   T42] cdc_ncm 2-1:1.1: bind() failure
[  354.710758][   T42] usb 2-1: USB disconnect, device number 4
[  354.758646][ T6631] Invalid ELF header len 8
[  355.157328][ T6630] support for the xor transformation has been removed.
[  355.612851][ T3517] kworker/u8:10: attempt to access beyond end of device
[  355.612851][ T3517] loop2: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  355.627996][ T3517] CPU: 0 UID: 0 PID: 3517 Comm: kworker/u8:10 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(undef) 
[  355.628157][ T3517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  355.628287][ T3517] Workqueue: writeback wb_workfn (flush-7:2)
[  355.628486][ T3517] Call Trace:
[  355.628537][ T3517]  <TASK>
[  355.628589][ T3517]  __dump_stack+0x26/0x30
[  355.628764][ T3517]  dump_stack_lvl+0x1df/0x270
[  355.628950][ T3517]  dump_stack+0x1e/0x25
[  355.629134][ T3517]  f2fs_handle_critical_error+0xa6f/0xc20
[  355.629408][ T3517]  f2fs_stop_checkpoint+0x65/0x80
[  355.629621][ T3517]  f2fs_write_end_io+0xb4b/0x1920
[  355.629788][ T3517]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  355.630028][ T3517]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  355.630187][ T3517]  bio_endio+0xe24/0xf80
[  355.630402][ T3517]  submit_bio_noacct+0x214/0x2710
[  355.630680][ T3517]  submit_bio+0x5a9/0x5d0
[  355.630956][ T3517]  f2fs_submit_write_bio+0x92/0x250
[  355.631225][ T3517]  __submit_merged_bio+0x16f/0x6a0
[  355.631494][ T3517]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  355.631722][ T3517]  __submit_merged_write_cond+0x458/0x9a0
[  355.631952][ T3517]  f2fs_write_data_pages+0x4bb2/0x5480
[  355.632328][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.632556][ T3517]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  355.632773][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.632981][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.633188][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.633403][ T3517]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  355.633686][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.633926][ T3517]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  355.634138][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.634355][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.634570][ T3517]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  355.634783][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.634991][ T3517]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  355.635198][ T3517]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  355.635437][ T3517]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  355.635657][ T3517]  do_writepages+0x3ef/0x860
[  355.635845][ T3517]  ? wb_writeback+0x4ce/0xc00
[  355.636016][ T3517]  ? __msan_warning+0x1b/0x30
[  355.636207][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.636441][ T3517]  __writeback_single_inode+0x101/0x1190
[  355.636648][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.636903][ T3517]  writeback_sb_inodes+0xaa9/0x1c90
[  355.637206][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.637487][ T3517]  wb_writeback+0x4ce/0xc00
[  355.637686][ T3517]  ? queue_io+0x481/0x790
[  355.637871][ T3517]  wb_workfn+0x397/0x1910
[  355.638036][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.638263][ T3517]  ? __pfx_wb_workfn+0x10/0x10
[  355.638425][ T3517]  process_scheduled_works+0xb8e/0x1d80
[  355.638696][ T3517]  worker_thread+0xedf/0x1590
[  355.638936][ T3517]  kthread+0xd5c/0xf00
[  355.639101][ T3517]  ? __pfx_worker_thread+0x10/0x10
[  355.639390][ T3517]  ? __pfx_kthread+0x10/0x10
[  355.639557][ T3517]  ret_from_fork+0x1e0/0x310
[  355.639714][ T3517]  ? __pfx_kthread+0x10/0x10
[  355.639873][ T3517]  ret_from_fork_asm+0x1a/0x30
[  355.640111][ T3517]  </TASK>
[  355.957323][ T3517] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  355.967208][ T3517] CPU: 0 UID: 0 PID: 3517 Comm: kworker/u8:10 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(undef) 
[  355.967365][ T3517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  355.967501][ T3517] Workqueue: writeback wb_workfn (flush-7:2)
[  355.967700][ T3517] Call Trace:
[  355.967755][ T3517]  <TASK>
[  355.967809][ T3517]  __dump_stack+0x26/0x30
[  355.968002][ T3517]  dump_stack_lvl+0x1df/0x270
[  355.968198][ T3517]  dump_stack+0x1e/0x25
[  355.968375][ T3517]  f2fs_handle_critical_error+0xa6f/0xc20
[  355.968628][ T3517]  f2fs_stop_checkpoint+0x65/0x80
[  355.968845][ T3517]  f2fs_write_end_io+0xb4b/0x1920
[  355.969042][ T3517]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  355.969192][ T3517]  bio_endio+0xe24/0xf80
[  355.969387][ T3517]  submit_bio_noacct+0x214/0x2710
[  355.969635][ T3517]  submit_bio+0x5a9/0x5d0
[  355.969830][ T3517]  f2fs_submit_write_bio+0x92/0x250
[  355.970054][ T3517]  __submit_merged_bio+0x16f/0x6a0
[  355.970242][ T3517]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  355.970472][ T3517]  __submit_merged_write_cond+0x458/0x9a0
[  355.970691][ T3517]  f2fs_write_data_pages+0x4bb2/0x5480
[  355.971053][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.971256][ T3517]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  355.971477][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.971679][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.971884][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.972091][ T3517]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  355.972448][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.972694][ T3517]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  355.972919][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.973299][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.973521][ T3517]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  355.973838][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.974038][ T3517]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  355.974264][ T3517]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  355.974589][ T3517]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  355.974799][ T3517]  do_writepages+0x3ef/0x860
[  355.975018][ T3517]  ? wb_writeback+0x4ce/0xc00
[  355.975185][ T3517]  ? __msan_warning+0x1b/0x30
[  355.975378][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.975593][ T3517]  __writeback_single_inode+0x101/0x1190
[  355.975788][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.976033][ T3517]  writeback_sb_inodes+0xaa9/0x1c90
[  355.976316][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.976568][ T3517]  wb_writeback+0x4ce/0xc00
[  355.976764][ T3517]  ? queue_io+0x481/0x790
[  355.976978][ T3517]  wb_workfn+0x397/0x1910
[  355.977135][ T3517]  ? kmsan_get_metadata+0xfb/0x160
[  355.977369][ T3517]  ? __pfx_wb_workfn+0x10/0x10
[  355.977521][ T3517]  process_scheduled_works+0xb8e/0x1d80
[  355.977818][ T3517]  worker_thread+0xedf/0x1590
[  355.978074][ T3517]  kthread+0xd5c/0xf00
[  355.978214][ T3517]  ? __pfx_worker_thread+0x10/0x10
[  355.978442][ T3517]  ? __pfx_kthread+0x10/0x10
[  355.978601][ T3517]  ret_from_fork+0x1e0/0x310
[  355.978747][ T3517]  ? __pfx_kthread+0x10/0x10
[  355.978894][ T3517]  ret_from_fork_asm+0x1a/0x30
[  355.979135][ T3517]  </TASK>
[  356.289524][ T3517] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  357.186884][ T6646] loop3: detected capacity change from 0 to 256
[  357.308123][   T35] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  357.752912][   T35] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  358.223444][   T35] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  358.475377][   T35] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  358.528575][   T42] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  358.772627][   T42] usb 2-1: Using ep0 maxpacket: 16
[  358.938782][   T42] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  358.950373][   T42] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  358.963836][   T42] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  358.981439][   T42] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  359.151774][   T42] usb 2-1: config 0 descriptor??
[  359.323031][   T35] bridge_slave_1: left allmulticast mode
[  359.329889][   T35] bridge_slave_1: left promiscuous mode
[  359.337283][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[  359.569579][   T35] bridge_slave_0: left allmulticast mode
[  359.575753][   T35] bridge_slave_0: left promiscuous mode
[  359.591560][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[  359.715806][   T42] HID 045e:07da: Invalid code 65791 type 1
[  359.757947][   T42] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0002/input/input7
[  360.080634][   T42] microsoft 0003:045E:07DA.0002: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  360.597677][   T42] usb 2-1: USB disconnect, device number 5
[  360.601329][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  360.744028][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  360.793623][   T35] bond0 (unregistering): Released all slaves
[  361.066723][ T6664] fido_id[6664]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  362.165245][   T35] hsr_slave_0: left promiscuous mode
[  362.213782][   T35] hsr_slave_1: left promiscuous mode
[  362.222881][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  362.230887][   T35] batman_adv: batadv0: Removing interface: batadv_slave_0
[  362.298823][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  362.306841][   T35] batman_adv: batadv0: Removing interface: batadv_slave_1
[  362.519838][   T35] veth1_macvtap: left promiscuous mode
[  362.525953][   T35] veth0_macvtap: left promiscuous mode
[  362.532261][   T35] veth1_vlan: left promiscuous mode
[  362.537871][   T35] veth0_vlan: left promiscuous mode
[  363.161525][ T6674] loop6: detected capacity change from 0 to 32768
[  363.436038][ T6674] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  364.232711][ T6684] loop1: detected capacity change from 0 to 32768
[  364.386115][ T5850] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  364.610770][ T5804] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  364.620835][ T5850] usb 4-1: Using ep0 maxpacket: 16
[  364.631634][ T5804] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  364.646809][ T5804] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  364.666091][ T5850] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  364.667773][ T5804] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  364.676949][ T5850] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  364.734588][ T5804] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  364.933565][ T5850] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  364.943411][ T5850] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  364.951906][ T5850] usb 4-1: Product: syz
[  364.956406][ T5850] usb 4-1: Manufacturer: syz
[  364.961770][ T5850] usb 4-1: SerialNumber: syz
[  365.000504][   T35] team0 (unregistering): Port device team_slave_1 removed
[  365.168473][   T35] team0 (unregistering): Port device team_slave_0 removed
[  366.016873][    C1] raw-gadget.0 gadget.3: ignoring, device is not running
[  366.025957][    C1] raw-gadget.0 gadget.3: ignoring, device is not running
[  366.038048][ T5850] usb 4-1: cannot find UAC_HEADER
[  366.101408][ T6684] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[  366.101570][ T6684]   allowing incompatible features above 0.0: (unknown version)
[  366.101659][ T6684]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  366.147463][ T6684] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[  366.156365][ T6684] bcachefs (loop1): initializing new filesystem
[  366.175190][ T6684] bcachefs (loop1): going read-write
[  366.240336][ T5850] snd-usb-audio 4-1:1.0: probe with driver snd-usb-audio failed with error -22
[  366.309214][ T6684] bcachefs (loop1): marking superblocks
[  366.364312][ T6684] bcachefs (loop1): initializing freespace
[  366.392542][ T6684] bcachefs (loop1): done initializing freespace
[  366.413048][ T6684] bcachefs (loop1): reading snapshots table
[  366.419541][ T6684] bcachefs (loop1): reading snapshots done
[  366.605969][ T6684] bcachefs (loop1): done starting filesystem
[  366.772219][ T5850] usb 4-1: USB disconnect, device number 4
[  366.784154][ T5810] bcachefs (loop1): shutting down
[  366.790176][ T5810] bcachefs (loop1): going read-only
[  366.795841][ T5810] bcachefs (loop1): finished waiting for writes to stop
[  366.895883][ T5810] bcachefs (loop1): flushing journal and stopping allocators, journal seq 3
[  367.007047][ T5804] Bluetooth: hci2: command tx timeout
[  367.379033][ T5810] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 3
[  367.430397][ T5810] bcachefs (loop1): clean shutdown complete, journal seq 4
[  367.463010][ T5810] bcachefs (loop1): marking filesystem clean
[  367.627553][ T6212] udevd[6212]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  367.711350][ T5810] bcachefs (loop1): shutdown complete
[  368.079250][ T6692] chnl_net:caif_netlink_parms(): no params data found
[  368.481383][ T6722] loop6: detected capacity change from 0 to 256
[  368.654955][ T6726] loop5: detected capacity change from 0 to 256
[  369.189262][ T5806] Bluetooth: hci2: command tx timeout
[  369.203742][ T6724] loop3: detected capacity change from 0 to 32768
[  369.219428][ T6724] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.182 (6724)
[  369.291400][ T6724] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  369.302148][ T6724] BTRFS info (device loop3): using crc32c (crc32c-x86_64) checksum algorithm
[  369.312292][ T6724] BTRFS info (device loop3): using free-space-tree
[  369.959481][   T30] audit: type=1800 audit(1751398264.040:14): pid=6724 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.182" name="file1" dev="loop3" ino=260 res=0 errno=0
[  370.377401][ T5795] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  370.782979][ T6692] bridge0: port 1(bridge_slave_0) entered blocking state
[  370.791804][ T6692] bridge0: port 1(bridge_slave_0) entered disabled state
[  370.799825][ T6692] bridge_slave_0: entered allmulticast mode
[  370.809800][ T6692] bridge_slave_0: entered promiscuous mode
[  371.031130][ T6692] bridge0: port 2(bridge_slave_1) entered blocking state
[  371.038877][ T6692] bridge0: port 2(bridge_slave_1) entered disabled state
[  371.046676][ T6692] bridge_slave_1: entered allmulticast mode
[  371.056659][ T6692] bridge_slave_1: entered promiscuous mode
[  371.229905][ T5806] Bluetooth: hci2: command tx timeout
[  371.725092][ T6692] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  371.872488][ T6692] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  372.596021][ T6692] team0: Port device team_slave_0 added
[  372.719829][ T6692] team0: Port device team_slave_1 added
[  373.308696][ T5801] Bluetooth: hci2: command tx timeout
[  373.342623][ T6692] batman_adv: batadv0: Adding interface: batadv_slave_0
[  373.350587][ T6692] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  373.378019][ T6692] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  373.686197][ T6692] batman_adv: batadv0: Adding interface: batadv_slave_1
[  373.693650][ T6692] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  373.721424][ T6692] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  374.164919][ T6777] loop3: detected capacity change from 0 to 8
[  374.273263][ T6777] squashfs: Unknown parameter '00000000000000000000'
[  374.361577][ T5801] Bluetooth: unknown link type 6
[  374.366867][ T5801] Bluetooth: hci1: connection err: -111
[  374.426577][ T6692] hsr_slave_0: entered promiscuous mode
[  374.437243][ T6692] hsr_slave_1: entered promiscuous mode
[  374.446262][ T6692] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  374.454373][ T6692] Cannot create hsr debugfs directory
[  375.150396][ T5801] Bluetooth: hci4: command 0x0406 tx timeout
[  375.156751][ T5801] Bluetooth: hci1: command 0x0406 tx timeout
[  376.480557][ T5853] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  376.658944][ T5853] usb 2-1: Using ep0 maxpacket: 16
[  376.698882][ T5853] usb 2-1: config 0 has no interfaces?
[  376.731789][ T5853] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  376.741581][ T5853] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  376.750173][ T5853] usb 2-1: Product: syz
[  376.754596][ T5853] usb 2-1: Manufacturer: syz
[  376.759722][ T5853] usb 2-1: SerialNumber: syz
[  376.806677][ T6692] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  376.871285][ T5853] usb 2-1: config 0 descriptor??
[  376.890095][ T6692] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  376.907305][ T6811] evm: overlay not supported
[  377.041677][ T6692] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  377.100666][ T6692] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  377.125756][ T5850] usb 2-1: USB disconnect, device number 6
[  378.523644][ T6692] 8021q: adding VLAN 0 to HW filter on device bond0
[  378.767779][ T6692] 8021q: adding VLAN 0 to HW filter on device team0
[  378.869346][ T3503] bridge0: port 1(bridge_slave_0) entered blocking state
[  378.876992][ T3503] bridge0: port 1(bridge_slave_0) entered forwarding state
[  378.981837][ T3503] bridge0: port 2(bridge_slave_1) entered blocking state
[  378.989568][ T3503] bridge0: port 2(bridge_slave_1) entered forwarding state
[  381.536914][ T6692] 8021q: adding VLAN 0 to HW filter on device batadv0
[  383.241608][ T6889] netlink: 4 bytes leftover after parsing attributes in process `syz.3.223'.
[  383.251194][ T6889] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  383.259292][ T6889] batman_adv: batadv0: Removing interface: batadv_slave_0
[  383.334409][ T6889] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  383.342536][ T6889] batman_adv: batadv0: Removing interface: batadv_slave_1
[  384.344779][ T6692] veth0_vlan: entered promiscuous mode
[  384.488256][ T6692] veth1_vlan: entered promiscuous mode
[  384.872490][ T6692] veth0_macvtap: entered promiscuous mode
[  385.077073][ T6692] veth1_macvtap: entered promiscuous mode
[  385.453476][ T6905] loop6: detected capacity change from 0 to 32768
[  385.485853][ T6905] bcachefs (/dev/loop6): error validating superblock: Invalid superblock section members_v2: device 0: too many buckets (got 30064771200, max 2147483583)
[  385.485853][ T6905] members_v2 (size 152):
[  385.485853][ T6905] Device:                        0
[  385.485853][ T6905]   Label:                       (none)
[  385.485853][ T6905]   UUID:                        7af6772b-00de-4159-84cd-1faead05aceb
[  385.485853][ T6905]   Size:                        3940649690726400
[  385.485853][ T6905]   read errors:                 0
[  385.485853][ T6905]   write errors:                0
[  385.485853][ T6905]   checksum errors:             0
[  385.485853][ T6905]   seqread iops:                0
[  385.485853][ T6905]   seqwrite iops:               0
[  385.485853][ T6905]   randread iops:               0
[  385.485853][ T6905]   randwrite iops:              0
[  385.485853][ T6905]   Bucket size:                 131072
[  385.485853][ T6905]   First bucket:                0
[  385.485853][ T6905]   Buckets:                     30064771200
[  385.485853][ T6905]   Last mount:                  1714681267
[  385.485853][ T6905]   Last superblock write:       42
[  385.485853][ T6905]   State:                       rw
[  385.485853][ T6905]   Data allowed:                journal,btree,user
[  385.485853][ T6905]   Has data:                    journal,btree,user
[  385.485853][ T6905]   Btree allocated bitmap blocksize:256
[  385.485853][ T6905]   Btree allocated bitmap:      0000000000000000000001000010000010
[  385.486848][ T6905] bcachefs: bch2_fs_get_tree() error: invalid_sb_members
[  385.797427][ T6692] batman_adv: batadv0: Interface activated: batadv_slave_0
[  385.910453][ T6692] batman_adv: batadv0: Interface activated: batadv_slave_1
[  386.062805][ T6692] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  386.073616][ T6692] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  386.082923][ T6692] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  386.092289][ T6692] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  386.310366][ T6915] loop3: detected capacity change from 0 to 512
[  386.477872][ T6915] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c11d, mo2=0002]
[  386.619656][ T6915] EXT4-fs error (device loop3): ext4_iget_extra_inode:5035: inode #15: comm syz.3.231: corrupted in-inode xattr: e_value size too large
[  386.691326][ T6915] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.231: couldn't read orphan inode 15 (err -117)
[  386.811977][ T6915] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  387.194907][ T6915] EXT4-fs error (device loop3): ext4_append:79: inode #2: comm syz.3.231: Logical block already allocated
[  387.880510][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  387.941449][ T6935] all: renamed from bridge_slave_0 (while UP)
[  389.022837][ T6948] loop6: detected capacity change from 0 to 1024
[  389.172409][ T6948] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  389.530493][ T6956] EXT4-fs error (device loop6): __ext4_remount:6736: comm syz.6.239: Abort forced by user
[  389.555168][ T6956] EXT4-fs (loop6): Remounting filesystem read-only
[  389.562780][ T6956] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000.
[  390.304555][ T5853] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  390.332369][ T6252] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  390.522245][ T5853] usb 4-1: Using ep0 maxpacket: 8
[  390.574362][ T5853] usb 4-1: config index 0 descriptor too short (expected 61008, got 80)
[  390.583511][ T5853] usb 4-1: config 0 has an invalid interface number: 31 but max is -1
[  390.592916][ T5853] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  390.603988][ T5853] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 0
[  390.613520][ T5853] usb 4-1: config 0 has no interface number 0
[  390.789875][ T5853] usb 4-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  390.799688][ T5853] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  390.807985][ T5853] usb 4-1: Product: syz
[  390.812840][ T5853] usb 4-1: Manufacturer: syz
[  390.817702][ T5853] usb 4-1: SerialNumber: syz
[  390.946688][ T5853] usb 4-1: config 0 descriptor??
[  391.049074][ T5853] usb 4-1: Found UVC 0.04 device syz (046d:08c3)
[  391.056069][ T5853] uvcvideo 4-1:0.31: Entity type for entity Output 6 was not initialized!
[  391.065330][ T5853] usb 4-1: Failed to create links for entity 6
[  391.074462][ T5853] usb 4-1: Failed to register entities (-22).
[  391.251494][ T5853] usb 4-1: USB disconnect, device number 5
[  392.325698][ T6986] loop5: detected capacity change from 0 to 2048
[  392.537451][ T6986] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  392.769262][ T6986] EXT4-fs (loop5): Online defrag not supported with bigalloc
[  393.030153][ T6986] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  393.200696][ T7004] netlink: 4 bytes leftover after parsing attributes in process `syz.3.252'.
[  393.210855][ T7001] loop1: detected capacity change from 0 to 512
[  393.233823][ T7004] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  393.243228][ T7004] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  393.252480][ T7004] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  393.261722][ T7004] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  393.359627][ T7004] vxlan0: entered promiscuous mode
[  393.465692][ T7001] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  393.479279][ T7001] ext4 filesystem being mounted at /62/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  394.249393][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  394.786907][ T7027] loop1: detected capacity change from 0 to 512
[  394.940862][ T7027] EXT4-fs error (device loop1): ext4_orphan_get:1393: inode #15: comm syz.1.256: casefold flag without casefold feature
[  395.046722][ T7027] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.256: couldn't read orphan inode 15 (err -117)
[  395.221407][ T7027] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  395.712390][ T7032] loop5: detected capacity change from 0 to 1024
[  395.897909][ T5151] udevd[5151]: worker [6212] terminated by signal 33 (Unknown signal 33)
[  395.948620][ T4890] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  395.957031][ T4890] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  395.997588][ T5151] udevd[5151]: worker [6212] failed while handling '/devices/virtual/block/loop5'
[  396.106170][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  396.366470][ T3517] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  396.374812][ T3517] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  398.516347][ T7062] loop6: detected capacity change from 0 to 32768
[  398.608344][ T7062] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  398.916496][ T6252] ocfs2: Unmounting device (7,6) on (node local)
[  400.639352][ T5850] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  400.892881][ T5850] usb 2-1: Using ep0 maxpacket: 32
[  400.982809][ T7084] loop7: detected capacity change from 0 to 32768
[  401.010935][ T5850] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  401.022595][ T5850] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  401.034975][ T5850] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  401.044773][ T5850] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  401.161390][ T7084] ERROR: (device loop7): diAllocAG: numfree > numinos
[  401.161390][ T7084] 
[  401.172061][ T7084] ERROR: (device loop7): remounting filesystem as read-only
[  401.179846][ T7084] ialloc: diAlloc returned -5!
[  401.256148][ T7094] loop5: detected capacity change from 0 to 256
[  401.321393][ T5850] usb 2-1: config 0 descriptor??
[  401.346364][ T7094] exfat: Deprecated parameter 'namecase'
[  401.373315][ T5850] hub 2-1:0.0: USB hub found
[  401.555446][ T7094] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  401.626722][ T7088] loop6: detected capacity change from 0 to 4096
[  401.655086][ T5850] hub 2-1:0.0: 1 port detected
[  402.041851][ T5853] usb 6-1: new full-speed USB device number 2 using dummy_hcd
[  402.279566][ T5850] hub 2-1:0.0: activate --> -90
[  402.312402][ T5853] usb 6-1: config 0 has an invalid descriptor of length 191, skipping remainder of the config
[  402.323371][ T5853] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  402.335097][ T5853] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid maxpacket 33536, setting to 64
[  402.346615][ T5853] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  402.534672][ T5850] hub 2-1:0.0: hub_ext_port_status failed (err = -71)
[  402.649956][ T7088] ntfs3(loop6): ino=21, "bus" direct i/o + compressed not supported
[  402.672735][   T42] usb 2-1: USB disconnect, device number 7
[  402.680222][ T5850] usb 2-1: Failed to suspend device, error -19
[  402.708742][ T5853] usb 6-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  402.719677][ T5853] usb 6-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  402.728976][ T5853] usb 6-1: Manufacturer: syz
[  402.903040][ T5853] usb 6-1: config 0 descriptor??
[  403.284513][ T1131] ntfs3(loop6): ino=5, mi_enum_attr
[  403.825124][ T5853] rc_core: IR keymap rc-hauppauge not found
[  403.833611][ T5853] Registered IR keymap rc-empty
[  403.889585][ T5853] mceusb 6-1:0.0: Error: mce write urb status = -71
[  403.949467][ T5853] mceusb 6-1:0.0: Error: mce write urb status = -71
[  403.990959][ T5853] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0
[  404.006776][ T5853] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0/input8
[  404.275677][ T5853] mceusb 6-1:0.0: Error: mce write urb status = -71
[  404.370649][ T5853] mceusb 6-1:0.0: Error: mce write urb status = -71
[  404.420800][ T5853] mceusb 6-1:0.0: Error: mce write urb status = -71
[  404.490305][ T5853] mceusb 6-1:0.0: Error: mce write urb status = -71
[  404.567195][ T5853] mceusb 6-1:0.0: Error: mce write urb status = -71
[  404.627812][ T5853] mceusb 6-1:0.0: Error: mce write urb status = -71
[  404.685626][ T5853] mceusb 6-1:0.0: Error: mce write urb status = -71
[  404.745956][ T5853] mceusb 6-1:0.0: Error: mce write urb status = -71
[  404.808881][ T5853] mceusb 6-1:0.0: Error: mce write urb status = -71
[  404.881628][ T5853] mceusb 6-1:0.0: Error: mce write urb status = -71
[  404.945039][ T5853] mceusb 6-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  404.956587][ T5853] mceusb 6-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  405.080358][ T7118] netlink: 120 bytes leftover after parsing attributes in process `syz.7.284'.
[  405.113113][ T5853] usb 6-1: USB disconnect, device number 2
[  405.961529][ T5853] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  406.211937][ T5853] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  406.220577][ T5853] usb 6-1: config 0 has no interface number 0
[  406.227046][ T5853] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  406.239221][ T5853] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  406.250931][ T5853] usb 6-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00
[  406.260501][ T5853] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  406.551018][ T5853] usb 6-1: config 0 descriptor??
[  406.559290][ T7121] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  407.022838][ T5853] prodikeys 0003:041E:2801.0003: unexpected long global item
[  407.091600][ T5853] prodikeys 0003:041E:2801.0003: hid parse failed
[  407.100610][ T5853] prodikeys 0003:041E:2801.0003: probe with driver prodikeys failed with error -22
[  407.304731][ T5853] usb 6-1: USB disconnect, device number 3
[  407.712452][ T7140] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  408.471184][ T7153] loop3: detected capacity change from 0 to 128
[  408.626285][ T7153] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  408.740022][ T7153] ext4 filesystem being mounted at /67/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  409.114283][ T7161] loop1: detected capacity change from 0 to 256
[  409.190681][ T7165] EXT4-fs error (device loop3): dx_make_map:1296: inode #2: block 18: comm syz.3.296: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1
[  409.274981][ T7165] EXT4-fs error (device loop3) in do_split:2029: Corrupt filesystem
[  409.281501][ T7161] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  409.753618][ T7170] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  409.825719][ T5795] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  410.221578][ T7174] loop5: detected capacity change from 0 to 256
[  410.694019][ T7174] FAT-fs (loop5): Directory bread(block 64) failed
[  410.701222][ T7174] FAT-fs (loop5): Directory bread(block 65) failed
[  410.708546][ T7174] FAT-fs (loop5): Directory bread(block 66) failed
[  410.715357][ T7174] FAT-fs (loop5): Directory bread(block 67) failed
[  410.722582][ T7174] FAT-fs (loop5): Directory bread(block 68) failed
[  410.729577][ T7174] FAT-fs (loop5): Directory bread(block 69) failed
[  410.736536][ T7174] FAT-fs (loop5): Directory bread(block 70) failed
[  410.744923][ T7174] FAT-fs (loop5): Directory bread(block 71) failed
[  410.752189][ T7174] FAT-fs (loop5): Directory bread(block 72) failed
[  410.759135][ T7174] FAT-fs (loop5): Directory bread(block 73) failed
[  410.989673][ T5804] Bluetooth: hci3: command 0x0406 tx timeout
[  411.122605][ T7187] netlink: 8 bytes leftover after parsing attributes in process `syz.1.308'.
[  411.132044][ T7187] netlink: 8 bytes leftover after parsing attributes in process `syz.1.308'.
[  412.336593][   T30] audit: type=1326 audit(1751398306.490:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7199 comm="syz.3.314" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa38b58e929 code=0x0
[  413.051697][ T7209] netlink: 20 bytes leftover after parsing attributes in process `syz.7.317'.
[  413.155090][ T7209] netlink: 20 bytes leftover after parsing attributes in process `syz.7.317'.
[  414.077382][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  414.084308][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  414.153422][ T7225] loop1: detected capacity change from 0 to 512
[  414.240506][ T7227] binder: 7226:7227 ioctl 40046205 0 returned -22
[  414.510303][ T7225] EXT4-fs (loop1): 1 orphan inode deleted
[  414.519141][ T7225] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  414.548401][ T3517] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  414.560313][ T3517] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:10: Failed to release dquot type 1
[  414.659183][ T7225] ext4 filesystem being mounted at /77/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  414.940876][ T7232] netlink: 'syz.5.325': attribute type 2 has an invalid length.
[  415.299263][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  415.922157][ T7248] loop6: detected capacity change from 0 to 16
[  416.060797][ T7248] erofs (device loop6): mounted with root inode @ nid 36.
[  416.605597][ T7244] loop7: detected capacity change from 0 to 32768
[  416.615989][ T7244] XFS: attr2 mount option is deprecated.
[  416.699885][ T7244] XFS (loop7): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  417.047400][ T7265] loop5: detected capacity change from 0 to 256
[  417.097138][ T7244] XFS (loop7): Ending clean mount
[  417.125113][ T7265] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  417.137423][ T7265] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  417.148434][ T7244] XFS (loop7): Quotacheck needed: Please wait.
[  417.215582][ T7265] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  417.309875][ T7244] XFS (loop7): Quotacheck: Done.
[  417.927249][ T7274] loop1: detected capacity change from 0 to 64
[  418.141558][ T7268] loop6: detected capacity change from 0 to 32768
[  418.216851][ T6692] XFS (loop7): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  418.341080][ T7268] bcachefs (loop6): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[  418.341248][ T7268]   allowing incompatible features above 0.0: (unknown version)
[  418.341343][ T7268]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  418.364256][    C0] vkms_vblank_simulate: vblank timer overrun
[  418.394825][ T7268] bcachefs (loop6): Using encoding defined by superblock: utf8-12.1.0
[  418.403752][ T7268] bcachefs (loop6): initializing new filesystem
[  418.425293][ T7268] bcachefs (loop6): going read-write
[  418.473799][ T7268] bcachefs (loop6): marking superblocks
[  418.532779][ T7268] bcachefs (loop6): initializing freespace
[  418.563683][ T7268] bcachefs (loop6): done initializing freespace
[  418.586391][ T7268] bcachefs (loop6): reading snapshots table
[  418.593020][ T7268] bcachefs (loop6): reading snapshots done
[  418.733606][ T7268] bcachefs (loop6): done starting filesystem
[  419.219447][ T6252] bcachefs (loop6): shutting down
[  419.224757][ T6252] bcachefs (loop6): going read-only
[  419.230470][ T6252] bcachefs (loop6): finished waiting for writes to stop
[  419.307074][ T6252] bcachefs (loop6): flushing journal and stopping allocators, journal seq 3
[  419.428537][   T42] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  419.642728][ T6252] bcachefs (loop6): flushing journal and stopping allocators complete, journal seq 3
[  419.697965][ T6252] bcachefs (loop6): clean shutdown complete, journal seq 4
[  419.715740][   T42] usb 6-1: New USB device found, idVendor=1645, idProduct=0008, bcdDevice=cf.36
[  419.725337][   T42] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  419.745608][ T6252] bcachefs (loop6): marking filesystem clean
[  419.783709][   T42] usb 6-1: config 0 descriptor??
[  420.025634][ T6252] bcachefs (loop6): shutdown complete
[  420.154286][   T42] kaweth 6-1:0.0: Firmware present in device.
[  420.378862][   T42] kaweth 6-1:0.0: Statistics collection: 0
[  420.385039][   T42] kaweth 6-1:0.0: Multicast filter limit: 0
[  420.391590][   T42] kaweth 6-1:0.0: MTU: 0
[  420.396137][   T42] kaweth 6-1:0.0: Read MAC address 00:00:00:00:00:00
[  421.186653][   T42] kaweth 6-1:0.0: kaweth interface created at eth13
[  421.358706][   T42] usb 6-1: USB disconnect, device number 4
[  421.360403][ T7302] loop3: detected capacity change from 0 to 32768
[  421.737154][ T7302] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[  421.737306][ T7302]   allowing incompatible features above 0.0: (unknown version)
[  421.737397][ T7302]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  421.785781][ T7302] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0
[  421.794536][ T7302] bcachefs (loop3): initializing new filesystem
[  421.815742][ T7302] bcachefs (loop3): going read-write
[  421.886742][ T7302] bcachefs (loop3): marking superblocks
[  421.949702][ T7302] bcachefs (loop3): initializing freespace
[  421.978770][ T7302] bcachefs (loop3): done initializing freespace
[  422.000024][ T7302] bcachefs (loop3): reading snapshots table
[  422.006436][ T7302] bcachefs (loop3): reading snapshots done
[  422.167250][ T7302] bcachefs (loop3): done starting filesystem
[  423.015916][ T5795] bcachefs (loop3): shutting down
[  423.022467][ T5795] bcachefs (loop3): going read-only
[  423.027969][ T5795] bcachefs (loop3): finished waiting for writes to stop
[  423.089671][ T5795] bcachefs (loop3): flushing journal and stopping allocators, journal seq 4
[  423.321703][ T5795] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 4
[  423.419151][ T5795] bcachefs (loop3): clean shutdown complete, journal seq 5
[  423.499517][ T5795] bcachefs (loop3): marking filesystem clean
[  423.747237][ T5795] bcachefs (loop3): shutdown complete
[  424.588100][   T42] libceph: connect (1)[c::]:6789 error -101
[  424.597631][   T42] libceph: mon0 (1)[c::]:6789 connect error
[  424.671550][ T7337] ceph: No mds server is up or the cluster is laggy
[  425.886566][ T7362] loop5: detected capacity change from 0 to 16
[  426.087202][ T7362] erofs (device loop5): mounted with root inode @ nid 36.
[  427.461437][ T7377] loop5: detected capacity change from 0 to 64
[  427.526834][ T7377] BFS-fs: bfs_fill_super(): loop5 is unclean, continuing
[  428.900907][ T7379] loop1: detected capacity change from 0 to 32768
[  428.933877][ T7379] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.360 (7379)
[  429.029893][ T7379] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  429.040689][ T7379] BTRFS info (device loop1): using crc32c (crc32c-x86_64) checksum algorithm
[  429.050233][ T7379] BTRFS info (device loop1): using free-space-tree
[  429.132443][ T7383] Zero length message leads to an empty skb
[  429.315085][   T30] audit: type=1326 audit(1751398323.470:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7385 comm="syz.5.363" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7feacf98e929 code=0x0
[  429.629610][   T30] audit: type=1804 audit(1751398323.740:17): pid=7379 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.360" name="/newroot/86/file1/file1" dev="loop1" ino=260 res=1 errno=0
[  429.900870][ T5810] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  431.140242][ T7420] netlink: 4 bytes leftover after parsing attributes in process `syz.6.368'.
[  431.946718][ T1131] nci: nci_ntf_packet: unknown ntf opcode 0xc
[  432.587394][ T7442] dummy0: entered promiscuous mode
[  432.593322][ T7442] macsec1: entered promiscuous mode
[  432.601376][ T7442] macsec1: entered allmulticast mode
[  432.606930][ T7442] dummy0: entered allmulticast mode
[  433.174201][ T7446] loop5: detected capacity change from 0 to 16
[  433.187462][ T7442] dummy0: left allmulticast mode
[  433.194038][ T7442] dummy0: left promiscuous mode
[  433.291660][ T7439] loop7: detected capacity change from 0 to 32768
[  433.345502][ T7446] erofs (device loop5): mounted with root inode @ nid 36.
[  433.477105][ T7439] XFS (loop7): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  433.892096][ T7439] XFS (loop7): Ending clean mount
[  433.902401][ T7439] XFS (loop7): Metadata CRC error detected at xfs_inobt_read_verify+0xaf/0x2d0, xfs_finobt block 0x20 
[  433.915571][ T7439] XFS (loop7): Unmount and run xfs_repair
[  433.925321][ T7439] XFS (loop7): First 128 bytes of corrupted metadata buffer:
[  433.935365][ T7439] 00000000: 46 49 42 33 00 00 00 01 ff ff ff ff ff ff ff ff  FIB3............
[  433.944758][ T7439] 00000010: 00 00 00 00 00 00 00 20 00 00 00 01 00 00 00 40  ....... .......@
[  433.954072][ T7439] 00000020: 9f 1c ad 42 11 bd 4e 12 8f 0b f0 78 76 b8 1d 9a  ...B..N....xv...
[  433.963521][ T7439] 00000030: 00 00 00 00 8a d2 18 46 00 00 16 80 00 00 40 37  .......F......@7
[  433.972904][ T7439] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00  ................
[  433.982201][ T7439] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 09 00 00  ................
[  433.991680][ T7439] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  434.000955][ T7439] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  434.010218][ T7439] XFS (loop7): metadata I/O error in "xfs_btree_read_buf_block+0x33d/0x5f0" at daddr 0x20 len 8 error 74
[  434.023411][ T7439] XFS (loop7): Failed to initialize disk quotas, err -117.
[  434.061420][ T7439] XFS (loop7): Metadata CRC error detected at xfs_inobt_read_verify+0xaf/0x2d0, xfs_finobt block 0x20 
[  434.073251][ T7439] XFS (loop7): Unmount and run xfs_repair
[  434.079369][ T7439] XFS (loop7): First 128 bytes of corrupted metadata buffer:
[  434.087050][ T7439] 00000000: 46 49 42 33 00 00 00 01 ff ff ff ff ff ff ff ff  FIB3............
[  434.096322][ T7439] 00000010: 00 00 00 00 00 00 00 20 00 00 00 01 00 00 00 40  ....... .......@
[  434.105596][ T7439] 00000020: 9f 1c ad 42 11 bd 4e 12 8f 0b f0 78 76 b8 1d 9a  ...B..N....xv...
[  434.115054][ T7439] 00000030: 00 00 00 00 8a d2 18 46 00 00 16 80 00 00 40 37  .......F......@7
[  434.124373][ T7439] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00  ................
[  434.135141][ T7439] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 09 00 00  ................
[  434.144526][ T7439] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  434.153906][ T7439] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  434.163161][ T7439] XFS (loop7): metadata I/O error in "xfs_btree_read_buf_block+0x33d/0x5f0" at daddr 0x20 len 8 error 74
[  434.294085][ T6692] XFS (loop7): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  434.354519][ T6692] XFS (loop7): Uncorrected metadata errors detected; please run xfs_repair.
[  434.623405][ T7465] loop6: detected capacity change from 0 to 16
[  434.656472][ T7464] loop5: detected capacity change from 0 to 512
[  434.792903][ T7465] erofs (device loop6): mounted with root inode @ nid 36.
[  434.977344][ T7464] EXT4-fs (loop5): orphan cleanup on readonly fs
[  435.119453][ T7464] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.379: bg 0: block 248: padding at end of block bitmap is not set
[  435.209659][ T7464] Quota error (device loop5): write_blk: dquota write failed
[  435.218905][ T7464] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  435.232885][ T7464] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.379: Failed to acquire dquot type 1
[  435.359752][ T7469] Driver unsupported XDP return value 0 on prog  (id 43) dev N/A, expect packet loss!
[  435.405484][ T7464] EXT4-fs (loop5): 1 truncate cleaned up
[  435.463262][ T7464] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  435.631310][ T5151] udevd[5151]: worker [6008] terminated by signal 33 (Unknown signal 33)
[  435.684698][ T7464] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  435.695753][ T5151] udevd[5151]: worker [6008] failed while handling '/devices/virtual/block/loop7'
[  435.949031][ T7464] EXT4-fs warning (device loop5): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop5.
[  436.461749][ T7479] netlink: 'syz.1.385': attribute type 1 has an invalid length.
[  436.500991][ T6075] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.598798][ T5806] Bluetooth: hci0: command 0x0406 tx timeout
[  437.560758][ T7487] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  437.835061][ T7490] loop6: detected capacity change from 0 to 512
[  437.892817][ T7481] loop3: detected capacity change from 0 to 8192
[  438.162288][ T7490] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  438.176641][ T7490] ext4 filesystem being mounted at /59/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  438.471637][ T7501] netlink: 16 bytes leftover after parsing attributes in process `syz.1.391'.
[  439.063070][ T6252] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  439.839030][   T42] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  440.098478][   T42] usb 7-1: Using ep0 maxpacket: 32
[  440.166526][   T42] usb 7-1: config 0 has an invalid interface number: 51 but max is 0
[  440.176053][   T42] usb 7-1: config 0 has no interface number 0
[  440.231076][   T42] usb 7-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  440.241037][   T42] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  440.249848][   T42] usb 7-1: Product: syz
[  440.254316][   T42] usb 7-1: Manufacturer: syz
[  440.259340][   T42] usb 7-1: SerialNumber: syz
[  440.286561][   T42] usb 7-1: config 0 descriptor??
[  440.334517][   T42] quatech2 7-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  440.586132][   T42] usb 7-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  440.662657][   T42] usb 7-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  441.011832][    C1] usb 7-1: qt2_read_bulk_callback - non-zero urb status: -71
[  441.026284][   T42] usb 7-1: USB disconnect, device number 2
[  441.123495][   T42] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  441.189077][ T7522] loop3: detected capacity change from 0 to 4096
[  441.207971][   T42] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  441.222756][   T42] quatech2 7-1:0.51: device disconnected
[  442.985674][ T7546] loop3: detected capacity change from 0 to 512
[  443.226920][ T7546] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  443.236508][ T7546] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.406: invalid indirect mapped block 2683928664 (level 1)
[  443.252314][ T7554] loop5: detected capacity change from 0 to 128
[  443.314043][ T7546] EXT4-fs (loop3): Remounting filesystem read-only
[  443.415404][ T7546] EXT4-fs (loop3): 1 truncate cleaned up
[  443.423864][ T7546] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  443.646389][ T7546] warning: `syz.3.406' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  443.830368][ T7556] loop6: detected capacity change from 0 to 128
[  443.933685][ T7559] loop7: detected capacity change from 0 to 16
[  443.940171][ T7556] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  443.992107][ T7556] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  444.099372][ T7559] erofs (device loop7): mounted with root inode @ nid 36.
[  444.241409][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  445.515471][ T7566] loop3: detected capacity change from 0 to 32768
[  445.529093][ T7566] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.414 (7566)
[  445.577515][ T7566] BTRFS info (device loop3): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  445.588390][ T7566] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[  445.600905][ T7566] BTRFS info (device loop3): using free-space-tree
[  446.177873][   T30] audit: type=1800 audit(1751398340.310:18): pid=7566 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.414" name="file1" dev="loop3" ino=260 res=0 errno=0
[  446.816899][ T5795] BTRFS info (device loop3): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  447.224813][ T7599] loop6: detected capacity change from 0 to 2048
[  447.570292][ T7605] process 'syz.5.423' launched './file0' with NULL argv: empty string added
[  447.600420][ T7599] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  448.564926][ T6252] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  448.663320][ T6252] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  451.063818][ T6252] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  451.799375][ T7711] loop1: detected capacity change from 0 to 64
[  451.870895][ T7711] hfs: unable to locate alternate MDB
[  451.876752][ T7711] hfs: continuing without an alternate MDB
[  453.617019][ T7728] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  454.362309][ T7733] loop5: detected capacity change from 0 to 512
[  454.728779][ T7733] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  454.742119][ T7733] ext4 filesystem being mounted at /83/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  454.912021][ T7736] loop1: detected capacity change from 0 to 2048
[  455.565911][ T7736] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  455.783275][ T7736] EXT4-fs (loop1): Online defrag not supported with bigalloc
[  456.210643][ T6075] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  456.344356][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  457.579801][ T7761] netlink: 8 bytes leftover after parsing attributes in process `syz.7.445'.
[  457.787693][ T7763] loop3: detected capacity change from 0 to 512
[  457.952129][ T7763] EXT4-fs: Ignoring removed nomblk_io_submit option
[  458.049663][ T7763] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  458.057922][ T7763] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01d, mo2=0102]
[  458.135119][ T7763] EXT4-fs (loop3): couldn't mount RDWR because of unsupported optional features (80)
[  458.145560][ T7763] EXT4-fs (loop3): Skipping orphan cleanup due to unknown ROCOMPAT features
[  458.157038][ T7763] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  458.330231][ T7769] loop6: detected capacity change from 0 to 256
[  458.421601][ T7769] exfat: Deprecated parameter 'utf8'
[  458.474721][ T7763] EXT4-fs warning (device loop3): dx_probe:861: inode #2: comm syz.3.442: dx entry: limit 65535 != root limit 120
[  458.487539][ T7763] EXT4-fs warning (device loop3): dx_probe:934: inode #2: comm syz.3.442: Corrupt directory, running e2fsck is recommended
[  458.613265][ T7763] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 3: comm syz.3.442: path /89/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0
[  458.829405][ T7769] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  459.186405][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  460.632192][ T7783] loop3: detected capacity change from 0 to 32768
[  460.646550][ T7783] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.451 (7783)
[  460.721123][ T7783] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  460.731876][ T7783] BTRFS info (device loop3): using crc32c (crc32c-x86_64) checksum algorithm
[  460.747381][ T7783] BTRFS info (device loop3): using free-space-tree
[  461.547608][ T5795] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  463.233746][ T7829] loop1: detected capacity change from 0 to 32768
[  463.719482][ T7835] loop6: detected capacity change from 0 to 1024
[  464.082171][ T7835] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  464.244986][ T7835] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  464.390230][ T7835] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 319 with max blocks 1 with error 28
[  464.404346][ T7835] EXT4-fs (loop6): This should not happen!! Data will be lost
[  464.404346][ T7835] 
[  464.414528][ T7835] EXT4-fs (loop6): Total free blocks count 0
[  464.421055][ T7835] EXT4-fs (loop6): Free/Dirty block details
[  464.427252][ T7835] EXT4-fs (loop6): free_blocks=68451041280
[  464.435286][ T7835] EXT4-fs (loop6): dirty_blocks=32
[  464.442751][ T7835] EXT4-fs (loop6): Block reservation details
[  464.449546][ T7835] EXT4-fs (loop6): i_reserved_data_blocks=2
[  464.611342][ T7835] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 21 with max blocks 44 with error 28
[  465.374575][ T7855] input: syz1 as /devices/virtual/input/input9
[  468.170410][ T7876] loop5: detected capacity change from 0 to 4096
[  468.551047][ T7882] overlayfs: overlay with incompat feature 'volatile' cannot be mounted
[  468.964841][ T7876] loop5: detected capacity change from 4096 to 64
[  469.015387][ T7890] ntfs3(loop5): failed to read volume at offset 0x47000
[  469.595561][ T6075] ntfs3(loop5): failed to read volume at offset 0x45000
[  470.157053][ T7902] netlink: 8 bytes leftover after parsing attributes in process `syz.5.482'.
[  470.166714][ T7902] netlink: 8 bytes leftover after parsing attributes in process `syz.5.482'.
[  470.331186][ T7898] loop6: detected capacity change from 0 to 4096
[  470.382158][ T7898] ntfs3: Unknown parameter ''
[  471.178795][ T7904] loop7: detected capacity change from 0 to 32768
[  471.448329][ T7904] bcachefs (loop7): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[  471.448488][ T7904]   allowing incompatible features above 0.0: (unknown version)
[  471.448586][ T7904]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  471.497443][ T7904] bcachefs (loop7): Using encoding defined by superblock: utf8-12.1.0
[  471.507135][ T7904] bcachefs (loop7): initializing new filesystem
[  471.536275][ T7904] bcachefs (loop7): going read-write
[  471.610444][ T7904] bcachefs (loop7): marking superblocks
[  471.667235][ T7904] bcachefs (loop7): initializing freespace
[  471.696472][ T7904] bcachefs (loop7): done initializing freespace
[  471.720025][ T7904] bcachefs (loop7): reading snapshots table
[  471.726454][ T7904] bcachefs (loop7): reading snapshots done
[  471.821205][ T7904] bcachefs (loop7): done starting filesystem
[  472.059195][ T7922] loop1: detected capacity change from 0 to 512
[  472.251822][ T6692] bcachefs (loop7): shutting down
[  472.257151][ T6692] bcachefs (loop7): going read-only
[  472.263108][ T6692] bcachefs (loop7): finished waiting for writes to stop
[  472.295482][ T7922] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  472.309071][ T7922] ext4 filesystem being mounted at /116/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  472.379453][ T6692] bcachefs (loop7): flushing journal and stopping allocators, journal seq 2
[  472.742001][ T7922] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #2: block 18: comm syz.1.486: lblock 23 mapped to illegal pblock 18 (length 1)
[  472.939239][ T7922] EXT4-fs (loop1): Remounting filesystem read-only
[  473.260423][ T7929] loop3: detected capacity change from 0 to 32768
[  473.409966][ T7929] XFS (loop3): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  473.494358][ T6692] bcachefs (loop7): flushing journal and stopping allocators complete, journal seq 3
[  473.678785][ T6692] bcachefs (loop7): clean shutdown complete, journal seq 4
[  473.697221][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  473.739932][ T7929] XFS (loop3): Ending clean mount
[  473.753259][ T7929] XFS (loop3): Metadata CRC error detected at xfs_inobt_read_verify+0xaf/0x2d0, xfs_finobt block 0x20 
[  473.767305][ T7929] XFS (loop3): Unmount and run xfs_repair
[  473.773530][ T7929] XFS (loop3): First 128 bytes of corrupted metadata buffer:
[  473.781385][ T7929] 00000000: 46 49 42 33 00 00 00 01 ff ff ff ff ff ff ff ff  FIB3............
[  473.790893][ T7929] 00000010: 00 00 00 00 00 00 00 20 00 00 00 01 00 00 00 40  ....... .......@
[  473.800175][ T7929] 00000020: 9f 1c ad 42 11 bd 4e 12 8f 0b f0 78 76 b8 1d 9a  ...B..N....xv...
[  473.809461][ T7929] 00000030: 00 00 00 00 8a d2 18 46 00 00 16 80 00 00 40 37  .......F......@7
[  473.818782][ T7929] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00  ................
[  473.827949][ T7929] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 09 00 00  ................
[  473.837448][ T7929] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  473.847266][ T7929] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  473.856685][ T7929] XFS (loop3): metadata I/O error in "xfs_btree_read_buf_block+0x33d/0x5f0" at daddr 0x20 len 8 error 74
[  473.872529][ T7929] XFS (loop3): Failed to initialize disk quotas, err -117.
[  473.873722][ T6692] bcachefs (loop7): marking filesystem clean
[  474.072339][ T5795] XFS (loop3): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  474.161765][ T5795] XFS (loop3): Uncorrected metadata errors detected; please run xfs_repair.
[  474.550092][ T7945] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  474.654392][ T6692] bcachefs (loop7): shutdown complete
[  475.498464][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  475.505949][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  477.537216][ T7981] loop1: detected capacity change from 0 to 128
[  477.784722][ T7981] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  477.910765][ T7981] ext4 filesystem being mounted at /120/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  478.563614][ T5810] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  479.808767][ T8009] capability: warning: `syz.6.511' uses deprecated v2 capabilities in a way that may be insecure
[  480.076364][ T8007] loop3: detected capacity change from 0 to 2048
[  480.145246][ T8007] udf: Unknown parameter '0xffffffffffffffff00000000000000000000̉aƒûÙ¸w›WÍ)Ò.Noêð›†)‰l_ýSœ€8*'
[  481.867888][ T5853] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  482.102759][ T5853] usb 7-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  482.112679][ T5853] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  482.229137][ T5853] usb 7-1: config 0 descriptor??
[  483.140081][ T8029] loop3: detected capacity change from 0 to 40427
[  483.200055][ T8029] F2FS-fs (loop3): invalid crc value
[  483.595567][ T8029] F2FS-fs (loop3): Start checkpoint disabled!
[  483.647612][ T8029] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  483.741175][   T30] audit: type=1800 audit(1751398377.900:19): pid=8029 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.518" name="bus" dev="loop3" ino=10 res=0 errno=0
[  483.749382][ T5853] usb 7-1: Cannot set autoneg
[  483.767352][ T5853] MOSCHIP usb-ethernet driver 7-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[  483.923855][   T14] kworker/u8:1: attempt to access beyond end of device
[  483.923855][   T14] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  483.938703][   T14] CPU: 0 UID: 0 PID: 14 Comm: kworker/u8:1 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(undef) 
[  483.938861][   T14] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  483.939001][   T14] Workqueue: writeback wb_workfn (flush-7:3)
[  483.939205][   T14] Call Trace:
[  483.939264][   T14]  <TASK>
[  483.939315][   T14]  __dump_stack+0x26/0x30
[  483.939505][   T14]  dump_stack_lvl+0x1df/0x270
[  483.939708][   T14]  dump_stack+0x1e/0x25
[  483.939884][   T14]  f2fs_handle_critical_error+0xa6f/0xc20
[  483.940135][   T14]  f2fs_stop_checkpoint+0x65/0x80
[  483.940354][   T14]  f2fs_write_end_io+0xb4b/0x1920
[  483.940524][   T14]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  483.940797][   T14]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  483.940948][   T14]  bio_endio+0xe24/0xf80
[  483.941150][   T14]  submit_bio_noacct+0x214/0x2710
[  483.941397][   T14]  submit_bio+0x5a9/0x5d0
[  483.941603][   T14]  f2fs_submit_write_bio+0x92/0x250
[  483.941806][   T14]  __submit_merged_bio+0x16f/0x6a0
[  483.942004][   T14]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  483.942229][   T14]  __submit_merged_write_cond+0x458/0x9a0
[  483.942459][   T14]  f2fs_write_data_pages+0x4bb2/0x5480
[  483.942822][   T14]  ? blk_trace_startstop+0x750/0xab0
[  483.942989][   T14]  ? kmsan_get_metadata+0xfb/0x160
[  483.943195][   T14]  ? kmsan_get_metadata+0xfb/0x160
[  483.943405][   T14]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  483.943627][   T14]  ? kmsan_get_metadata+0xfb/0x160
[  483.943838][   T14]  ? kmsan_get_metadata+0xfb/0x160
[  483.944047][   T14]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  483.944266][   T14]  ? kmsan_get_metadata+0xfb/0x160
[  483.944475][   T14]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  483.944692][   T14]  ? kmsan_get_metadata+0xfb/0x160
[  483.944899][   T14]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  483.945114][   T14]  ? kmsan_get_metadata+0xfb/0x160
[  483.945323][   T14]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  483.945532][   T14]  ? kmsan_get_metadata+0xfb/0x160
[  483.945743][   T14]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  483.945954][   T14]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  483.946176][   T14]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  483.946392][   T14]  do_writepages+0x3ef/0x860
[  483.946607][   T14]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  483.946826][   T14]  ? queue_io+0x781/0x790
[  483.946989][   T14]  ? kmsan_get_metadata+0xfb/0x160
[  483.947224][   T14]  __writeback_single_inode+0x101/0x1190
[  483.947421][   T14]  ? kmsan_get_metadata+0xfb/0x160
[  483.947648][   T14]  writeback_sb_inodes+0xaa9/0x1c90
[  483.947925][   T14]  ? kmsan_get_metadata+0xfb/0x160
[  483.948171][   T14]  wb_writeback+0x4ce/0xc00
[  483.948388][   T14]  ? queue_io+0x481/0x790
[  483.948569][   T14]  wb_workfn+0x397/0x1910
[  483.948740][   T14]  ? kmsan_get_metadata+0xfb/0x160
[  483.948967][   T14]  ? __pfx_wb_workfn+0x10/0x10
[  483.949124][   T14]  process_scheduled_works+0xb8e/0x1d80
[  483.949391][   T14]  worker_thread+0xedf/0x1590
[  483.949639][   T14]  kthread+0xd5c/0xf00
[  483.949784][   T14]  ? __pfx_worker_thread+0x10/0x10
[  483.950013][   T14]  ? __pfx_kthread+0x10/0x10
[  483.950172][   T14]  ret_from_fork+0x1e0/0x310
[  483.950323][   T14]  ? __pfx_kthread+0x10/0x10
[  483.950481][   T14]  ret_from_fork_asm+0x1a/0x30
[  483.950718][   T14]  </TASK>
[  484.274647][   T14] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  484.395602][ T5853] usb 7-1: USB disconnect, device number 3
[  485.048916][ T5853] usb 2-1: new full-speed USB device number 8 using dummy_hcd
[  485.322370][ T5853] usb 2-1: config 0 has an invalid interface number: 6 but max is 0
[  485.332066][ T5853] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  485.343014][ T5853] usb 2-1: config 0 has no interface number 0
[  485.349500][ T5853] usb 2-1: config 0 interface 6 altsetting 0 endpoint 0x2 has invalid maxpacket 512, setting to 64
[  485.781759][ T5853] usb 2-1: New USB device found, idVendor=10cf, idProduct=8061, bcdDevice=b7.12
[  485.791994][ T5853] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  485.800519][ T5853] usb 2-1: Product: syz
[  485.804965][ T5853] usb 2-1: Manufacturer: syz
[  485.810234][ T5853] usb 2-1: SerialNumber: syz
[  485.940623][ T5853] usb 2-1: config 0 descriptor??
[  485.999375][ T8040] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  486.007281][ T8040] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  486.300888][ T5853] comedi comedi0: driver 'vmk80xx' has successfully auto-configured 'K8061 (VM140)'.
[  486.569634][ T5804] Bluetooth: hci3: unexpected event for opcode 0x0000
[  486.923831][ T1924] usb 2-1: USB disconnect, device number 8
[  487.036662][ T8066] loop3: detected capacity change from 0 to 128
[  487.127578][ T8066] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  487.348595][ T8066] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  487.537265][ T8073] netlink: 'syz.6.530': attribute type 12 has an invalid length.
[  487.545633][ T8073] netlink: 'syz.6.530': attribute type 29 has an invalid length.
[  487.553891][ T8073] netlink: 148 bytes leftover after parsing attributes in process `syz.6.530'.
[  487.563474][ T8073] netlink: 'syz.6.530': attribute type 1 has an invalid length.
[  487.571536][ T8073] netlink: 'syz.6.530': attribute type 2 has an invalid length.
[  487.579555][ T8073] netlink: 39 bytes leftover after parsing attributes in process `syz.6.530'.
[  487.821890][ T5804] Bluetooth: hci2: command 0x0406 tx timeout
[  488.206411][ T7680] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  488.822768][ T8078] loop1: detected capacity change from 0 to 1024
[  489.012202][   T42] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  489.228517][   T42] usb 7-1: Using ep0 maxpacket: 8
[  489.340533][   T42] usb 7-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  489.350151][   T42] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  489.359064][   T42] usb 7-1: Product: syz
[  489.363519][   T42] usb 7-1: Manufacturer: syz
[  489.368715][   T42] usb 7-1: SerialNumber: syz
[  489.516227][   T42] usb 7-1: config 0 descriptor??
[  489.767688][ T8093] netlink: 340 bytes leftover after parsing attributes in process `syz.7.536'.
[  489.848687][   T42] usb 7-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  489.920886][   T30] audit: type=1800 audit(1751398384.080:20): pid=8078 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.532" name="file1" dev="loop1" ino=20 res=0 errno=0
[  490.588607][ T5804] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  490.597498][ T5804] Bluetooth: hci3: Injecting HCI hardware error event
[  490.606221][ T5806] Bluetooth: hci3: hardware error 0x00
[  490.702429][   T42] dvb_usb_rtl28xxu 7-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  490.798923][   T42] usb 7-1: USB disconnect, device number 4
[  491.562749][ T8103] loop5: detected capacity change from 0 to 512
[  492.260930][ T8108] loop3: detected capacity change from 0 to 32768
[  492.320501][ T8108] ocfs2: Slot 0 on device (7,3) was already allocated to this node!
[  492.345141][ T8103] EXT4-fs (loop5): 1 orphan inode deleted
[  492.353961][ T8103] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  492.389049][ T7680] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  492.401874][ T7680] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:20: Failed to release dquot type 1
[  492.490406][ T8103] ext4 filesystem being mounted at /108/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  492.570867][ T8108] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  492.621102][ T8108] (syz.3.542,8108,1):ocfs2_read_blocks:239 ERROR: status = -12
[  492.625734][ T8103] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  492.629163][ T8108] (syz.3.542,8108,1):ocfs2_xattr_block_find:2831 ERROR: status = -12
[  492.680587][ T5806] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  492.891765][ T5795] ocfs2: Unmounting device (7,3) on (node local)
[  493.529086][    T9] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  493.738863][    T9] usb 2-1: Using ep0 maxpacket: 32
[  493.799905][    T9] usb 2-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  493.809783][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  493.907990][   T30] audit: type=1326 audit(1751398388.070:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8128 comm="syz.5.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feacf98e929 code=0x7ffc0000
[  493.931122][   T30] audit: type=1326 audit(1751398388.070:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8128 comm="syz.5.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feacf98e929 code=0x7ffc0000
[  493.978324][    T9] usb 2-1: config 0 descriptor??
[  494.078994][   T30] audit: type=1326 audit(1751398388.230:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8128 comm="syz.5.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7feacf98e929 code=0x7ffc0000
[  494.088304][    T9] gspca_main: nw80x-2.14.0 probing 055f:d001
[  494.102087][   T30] audit: type=1326 audit(1751398388.230:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8128 comm="syz.5.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feacf98e929 code=0x7ffc0000
[  494.131417][   T30] audit: type=1326 audit(1751398388.230:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8128 comm="syz.5.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feacf98e929 code=0x7ffc0000
[  494.155104][   T30] audit: type=1326 audit(1751398388.250:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8128 comm="syz.5.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7feacf98e929 code=0x7ffc0000
[  494.180054][   T30] audit: type=1326 audit(1751398388.250:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8128 comm="syz.5.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feacf98e929 code=0x7ffc0000
[  494.203103][   T30] audit: type=1326 audit(1751398388.250:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8128 comm="syz.5.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feacf98e929 code=0x7ffc0000
[  494.229600][ T8114] loop7: detected capacity change from 0 to 4096
[  494.729127][   T42] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  494.778818][    T9] gspca_nw80x: reg_w err -71
[  494.784004][    T9] nw80x 2-1:0.0: probe with driver nw80x failed with error -71
[  494.850176][    T9] usb 2-1: USB disconnect, device number 9
[  494.968922][   T42] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  494.980544][   T42] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  495.140518][   T42] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  495.150987][   T42] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  495.159477][   T42] usb 7-1: Product: syz
[  495.164867][   T42] usb 7-1: Manufacturer: syz
[  495.170192][   T42] usb 7-1: SerialNumber: syz
[  495.423239][ T8114] ntfs3(loop7): Failed to read $AttrDef (-4).
[  495.990651][ T8140] loop3: detected capacity change from 0 to 512
[  496.227137][ T8140] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  496.248806][ T8140] ext4 filesystem being mounted at /112/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  496.498003][   T42] cdc_ncm 7-1:1.0: bind() failure
[  496.516989][   T42] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[  496.524498][   T42] cdc_ncm 7-1:1.1: bind() failure
[  496.582072][ T8149] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  496.737321][    T9] usb 7-1: USB disconnect, device number 5
[  497.249526][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  497.625323][ T8158] netlink: 8 bytes leftover after parsing attributes in process `syz.7.552'.
[  498.367412][ T8154] loop5: detected capacity change from 0 to 4096
[  498.445728][ T8163] netlink: 4 bytes leftover after parsing attributes in process `syz.6.556'.
[  498.634953][ T8161] loop3: detected capacity change from 0 to 32768
[  498.648759][ T8161] btrfs: Deprecated parameter 'usebackuproot'
[  498.655157][ T8161] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  498.686090][ T8161] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.555 (8161)
[  498.712135][ T8161] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  498.724520][ T8161] BTRFS info (device loop3): using sha256 (sha256-x86_64) checksum algorithm
[  498.736947][ T8161] BTRFS info (device loop3): using free-space-tree
[  498.768961][ T8154] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  499.266553][ T8161] BTRFS info (device loop3): rebuilding free space tree
[  499.517611][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  499.517694][   T30] audit: type=1800 audit(1751398393.660:31): pid=8161 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.555" name="file1" dev="loop3" ino=260 res=0 errno=0
[  499.739281][ T6075] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  500.036075][ T5795] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  501.727907][ T7680] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  501.963833][ T7680] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  502.235040][ T7680] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  502.627862][ T7680] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  503.300803][ T8212] loop5: detected capacity change from 0 to 32768
[  503.350924][ T8212] find_entry called with index = 0
[  503.357563][ T8212] find_entry called with index = 0
[  503.365806][ T8212] find_entry called with index = 0
[  503.371662][ T8212] find_entry called with index = 0
[  503.701134][ T7680] bridge_slave_1: left allmulticast mode
[  503.707144][ T7680] bridge_slave_1: left promiscuous mode
[  503.714697][ T7680] bridge0: port 2(bridge_slave_1) entered disabled state
[  503.849284][ T7680] bridge_slave_0: left allmulticast mode
[  503.855278][ T7680] bridge_slave_0: left promiscuous mode
[  503.862640][ T7680] bridge0: port 1(bridge_slave_0) entered disabled state
[  504.781645][ T7680] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  504.834829][ T7680] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  504.865673][ T7680] bond0 (unregistering): Released all slaves
[  505.804864][ T7680] hsr_slave_0: left promiscuous mode
[  505.829257][ T7680] hsr_slave_1: left promiscuous mode
[  505.837413][ T7680] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  505.845497][ T7680] batman_adv: batadv0: Removing interface: batadv_slave_0
[  505.976849][ T7680] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  505.985003][ T7680] batman_adv: batadv0: Removing interface: batadv_slave_1
[  506.179247][ T7680] veth1_macvtap: left promiscuous mode
[  506.185327][ T7680] veth0_macvtap: left promiscuous mode
[  506.206375][ T7680] veth1_vlan: left promiscuous mode
[  506.212282][ T7680] veth0_vlan: left promiscuous mode
[  507.465299][ T5804] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  507.517410][ T5804] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  507.597469][ T5804] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  507.624291][ T7680] team0 (unregistering): Port device team_slave_1 removed
[  507.661636][ T7680] team0 (unregistering): Port device team_slave_0 removed
[  507.720999][ T5804] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  507.725484][ T5804] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  509.791550][ T5804] Bluetooth: hci4: command tx timeout
[  509.872168][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  510.797626][ T8266] loop5: detected capacity change from 0 to 128
[  510.862074][ T8266] EXT4-fs: Ignoring removed nobh option
[  511.288778][ T8261] loop6: detected capacity change from 0 to 40427
[  511.368838][ T8261] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  511.376936][ T8261] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  511.394505][ T8261] F2FS-fs (loop6): invalid crc value
[  511.587863][ T8266] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  511.722513][ T8261] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  511.729294][ T8266] ext4 filesystem being mounted at /120/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  511.729937][ T8261] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  511.871498][ T5804] Bluetooth: hci4: command tx timeout
[  511.885383][   T30] audit: type=1800 audit(1751398406.050:32): pid=8261 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.583" name="bus" dev="loop6" ino=10 res=0 errno=0
[  512.086135][ T8240] chnl_net:caif_netlink_parms(): no params data found
[  512.527168][ T8278] loop3: detected capacity change from 0 to 4096
[  512.648739][ T8278] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512).
[  512.663426][ T8281] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  512.911364][ T6075] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  513.604451][   T30] audit: type=1800 audit(1751398407.770:33): pid=8292 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.587" name="file2" dev="loop3" ino=31 res=0 errno=0
[  513.950758][ T5806] Bluetooth: hci4: command tx timeout
[  514.683503][ T5806] Bluetooth: hci0: command 0x0406 tx timeout
[  514.690537][ T5804] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  514.725839][ T8240] bridge0: port 1(bridge_slave_0) entered blocking state
[  514.733704][ T8240] bridge0: port 1(bridge_slave_0) entered disabled state
[  514.741747][ T8240] bridge_slave_0: entered allmulticast mode
[  514.894512][ T8240] bridge_slave_0: entered promiscuous mode
[  514.962278][ T8240] bridge0: port 2(bridge_slave_1) entered blocking state
[  514.970276][ T8240] bridge0: port 2(bridge_slave_1) entered disabled state
[  514.978817][ T8240] bridge_slave_1: entered allmulticast mode
[  514.988790][ T8240] bridge_slave_1: entered promiscuous mode
[  515.008560][   T42] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  515.265360][   T42] usb 6-1: Using ep0 maxpacket: 16
[  515.329097][   T42] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  515.341630][   T42] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  515.352307][   T42] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  515.365679][   T42] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  515.375180][   T42] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  515.459135][ T5853] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  515.563128][ T8312] loop6: detected capacity change from 0 to 128
[  515.663098][   T42] usb 6-1: config 0 descriptor??
[  515.857205][ T8240] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  515.903271][ T5853] usb 8-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  515.912909][ T5853] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  515.921651][ T5853] usb 8-1: Product: syz
[  515.926079][ T5853] usb 8-1: Manufacturer: syz
[  515.931098][ T5853] usb 8-1: SerialNumber: syz
[  516.039849][ T5804] Bluetooth: hci4: command tx timeout
[  516.107592][ T5853] usb 8-1: config 0 descriptor??
[  516.686590][ T5853] usb 8-1: Firmware version (0.0) predates our first public release.
[  516.695220][ T5853] usb 8-1: Please update to version 0.2 or newer
[  516.748389][ T5804] Bluetooth: hci0: command 0x0406 tx timeout
[  517.171158][ T8240] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  517.248258][ T8314] loop3: detected capacity change from 0 to 40427
[  517.273638][ T8314] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  517.283069][ T8314] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  517.303220][ T8314] F2FS-fs (loop3): invalid crc value
[  517.339309][   T42] microsoft 0003:045E:07DA.0004: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.5-1/input0
[  517.353155][   T42] microsoft 0003:045E:07DA.0004: no inputs found
[  517.362291][   T42] microsoft 0003:045E:07DA.0004: could not initialize ff, continuing anyway
[  517.430126][ T5853] usb 8-1: USB disconnect, device number 2
[  517.720523][   T42] usb 6-1: USB disconnect, device number 5
[  517.824865][ T8314] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  517.832764][ T8314] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  518.183644][ T8240] team0: Port device team_slave_0 added
[  518.281315][ T8240] team0: Port device team_slave_1 added
[  518.933529][ T8240] batman_adv: batadv0: Adding interface: batadv_slave_0
[  518.941482][ T8240] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  518.968213][ T8240] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  519.066837][ T8240] batman_adv: batadv0: Adding interface: batadv_slave_1
[  519.077214][ T8240] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  519.103902][ T8240] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  519.803313][ T8332] fido_id[8332]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  519.888599][ T8240] hsr_slave_0: entered promiscuous mode
[  519.899378][ T8240] hsr_slave_1: entered promiscuous mode
[  519.908847][ T8240] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  519.916768][ T8240] Cannot create hsr debugfs directory
[  521.183307][ T8355] loop6: detected capacity change from 0 to 256
[  521.306177][ T8355] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  521.317653][ T8355] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  521.677896][ T8355] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  521.775288][ T8352] sctp: failed to load transform for md5: -2
[  521.826187][ T8359] loop5: detected capacity change from 0 to 256
[  522.064348][ T8362] exFAT-fs (loop6): abnormal access to deleted source dentry
[  522.076554][ T8359] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  522.088383][ T8359] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  522.287041][ T8359] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  522.362748][ T8240] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  522.522108][ T8240] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  522.681900][ T8240] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  522.785795][ T8240] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  524.562035][ T8240] 8021q: adding VLAN 0 to HW filter on device bond0
[  524.902255][ T8240] 8021q: adding VLAN 0 to HW filter on device team0
[  525.041003][ T7700] bridge0: port 1(bridge_slave_0) entered blocking state
[  525.048765][ T7700] bridge0: port 1(bridge_slave_0) entered forwarding state
[  525.194846][ T7700] bridge0: port 2(bridge_slave_1) entered blocking state
[  525.202587][ T7700] bridge0: port 2(bridge_slave_1) entered forwarding state
[  528.276005][ T8240] 8021q: adding VLAN 0 to HW filter on device batadv0
[  529.471612][ T8438] loop3: detected capacity change from 0 to 32768
[  529.514336][ T8438] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.627 (8438)
[  529.546623][ T8438] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  529.557432][ T8438] BTRFS info (device loop3): using crc32c (crc32c-x86_64) checksum algorithm
[  529.566793][ T8438] BTRFS info (device loop3): using free-space-tree
[  529.900503][ T8438] BTRFS info (device loop3): rebuilding free space tree
[  531.121411][ T5795] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  533.507205][ T1924] Process accounting resumed
[  533.645107][ T8240] veth0_vlan: entered promiscuous mode
[  533.817618][ T8240] veth1_vlan: entered promiscuous mode
[  534.244525][ T8240] veth0_macvtap: entered promiscuous mode
[  534.361988][ T8240] veth1_macvtap: entered promiscuous mode
[  534.676355][ T8240] batman_adv: batadv0: Interface activated: batadv_slave_0
[  534.812221][ T8240] batman_adv: batadv0: Interface activated: batadv_slave_1
[  534.854438][ T8497] loop3: detected capacity change from 0 to 512
[  534.975131][ T8240] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  534.984630][ T8240] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  534.994035][ T8240] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  535.005131][ T8240] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  535.115166][ T8497] EXT4-fs (loop3): blocks per group (95) and clusters per group (32768) inconsistent
[  536.711964][ T8512] input: syz1 as /devices/virtual/input/input10
[  536.946043][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  536.953172][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  538.660551][ T8534] netlink: 8 bytes leftover after parsing attributes in process `syz.7.652'.
[  540.021912][ T5853] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  540.258750][ T5853] usb 4-1: Using ep0 maxpacket: 16
[  540.308476][ T5853] usb 4-1: config 0 has no interfaces?
[  540.314465][ T5853] usb 4-1: New USB device found, idVendor=0763, idProduct=1015, bcdDevice=56.88
[  540.325284][ T5853] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  540.448014][ T5853] usb 4-1: config 0 descriptor??
[  540.656001][ T8553] netlink: 4 bytes leftover after parsing attributes in process `syz.6.657'.
[  540.715131][ T5850] usb 4-1: USB disconnect, device number 6
[  540.802825][ T8553] bond0: (slave bond_slave_1): Releasing backup interface
[  541.204483][   T42] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  541.459902][   T42] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  541.471448][   T42] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  541.481818][   T42] usb 8-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00
[  541.491355][   T42] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  541.621813][   T42] usb 8-1: config 0 descriptor??
[  542.254909][ T5850] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  542.668334][   T42] hid-led 0003:27B8:01ED.0005: hidraw0: USB HID v0.00 Device [HID 27b8:01ed] on usb-dummy_hcd.7-1/input0
[  542.702954][   T42] hid-led 0003:27B8:01ED.0005: ThingM blink(1) initialized
[  542.717749][ T5850] usb 7-1: config index 0 descriptor too short (expected 30768, got 18)
[  542.726758][ T5850] usb 7-1: config 48 has too many interfaces: 48, using maximum allowed: 32
[  542.735900][ T5850] usb 7-1: config 48 has an invalid descriptor of length 48, skipping remainder of the config
[  542.746607][ T5850] usb 7-1: config 48 has 0 interfaces, different from the descriptor's value: 48
[  542.756395][ T5850] usb 7-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  542.765927][ T5850] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  542.875131][ T8566] loop3: detected capacity change from 0 to 32768
[  542.990965][   T42] usb 8-1: USB disconnect, device number 3
[  543.191548][ T8566] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nocow
[  543.191678][ T8566]   allowing incompatible features above 0.0: (unknown version)
[  543.191780][ T8566]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  543.231412][ T8566] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0
[  543.240043][ T8566] bcachefs (loop3): initializing new filesystem
[  543.262455][ T8566] bcachefs (loop3): going read-write
[  543.313395][ T8566] bcachefs (loop3): marking superblocks
[  543.368410][ T8566] bcachefs (loop3): initializing freespace
[  543.399896][ T8566] bcachefs (loop3): done initializing freespace
[  543.421516][ T8566] bcachefs (loop3): reading snapshots table
[  543.427979][ T8566] bcachefs (loop3): reading snapshots done
[  543.540950][ T8566] bcachefs (loop3): done starting filesystem
[  543.766838][ T5850] usb 7-1: string descriptor 0 read error: -22
[  543.865780][ T8571] fido_id[8571]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.7/usb8/report_descriptor': No such file or directory
[  544.017517][ T5853] usb 7-1: USB disconnect, device number 6
[  544.259701][ T5795] bcachefs (loop3): shutting down
[  544.265068][ T5795] bcachefs (loop3): going read-only
[  544.270866][ T5795] bcachefs (loop3): finished waiting for writes to stop
[  544.374846][ T5795] bcachefs (loop3): flushing journal and stopping allocators, journal seq 2
[  544.646634][ T8586] netlink: 4 bytes leftover after parsing attributes in process `syz.7.664'.
[  544.813833][ T5795] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 3
[  544.986195][ T5795] bcachefs (loop3): clean shutdown complete, journal seq 4
[  545.041109][ T5795] bcachefs (loop3): marking filesystem clean
[  545.240710][ T5795] bcachefs (loop3): shutdown complete
[  545.772890][ T8596] loop7: detected capacity change from 0 to 128
[  545.910871][ T8596] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  545.945905][ T8596] ext4 filesystem being mounted at /68/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  546.148551][   T30] audit: type=1804 audit(1751398440.310:34): pid=8599 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.669" name="/newroot/68/file1/file0" dev="loop7" ino=12 res=1 errno=0
[  546.280680][   T30] audit: type=1804 audit(1751398440.460:35): pid=8599 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.7.669" name="/newroot/68/file1/file0" dev="loop7" ino=12 res=1 errno=0
[  546.502211][ T7667] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  546.511318][ T7667] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  546.627934][ T3647] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  546.637194][ T3647] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  546.757421][ T8601] xt_NFQUEUE: number of total queues is 0
[  547.024119][ T6692] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  547.696441][ T8607] loop7: detected capacity change from 0 to 256
[  547.784585][ T8607] exFAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  547.799087][ T8607] exFAT-fs (loop7): Medium has reported failures. Some data may be lost.
[  548.048640][ T8607] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  549.499542][ T5850] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  549.728557][ T5850] usb 7-1: Using ep0 maxpacket: 32
[  549.755696][ T5850] usb 7-1: config 0 has an invalid interface number: 67 but max is 0
[  549.755843][ T5850] usb 7-1: config 0 has no interface number 0
[  549.805996][ T5850] usb 7-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  549.806163][ T5850] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  549.806293][ T5850] usb 7-1: Product: syz
[  549.806394][ T5850] usb 7-1: Manufacturer: syz
[  549.806512][ T5850] usb 7-1: SerialNumber: syz
[  549.852492][ T5850] usb 7-1: config 0 descriptor??
[  549.902880][ T5850] smsc95xx v2.0.0
[  550.377873][ T5850] smsc95xx 7-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[  550.389474][ T5850] smsc95xx 7-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  550.958943][ T8639] netlink: 'syz.7.681': attribute type 10 has an invalid length.
[  550.993704][ T8639] 8021q: adding VLAN 0 to HW filter on device team0
[  551.010120][ T8639] bond0: (slave team0): Enslaving as an active interface with an up link
[  551.024046][ T5850] smsc95xx 7-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  551.036803][ T5850] smsc95xx 7-1:0.67: probe with driver smsc95xx failed with error -71
[  551.207569][ T5850] usb 7-1: USB disconnect, device number 7
[  551.299125][ T8641] netlink: 8 bytes leftover after parsing attributes in process `syz.8.682'.
[  551.308981][ T8641] netlink: 5 bytes leftover after parsing attributes in process `syz.8.682'.
[  551.318547][ T8641] netlink: 5 bytes leftover after parsing attributes in process `syz.8.682'.
[  551.464993][ T8641] netlink: 8 bytes leftover after parsing attributes in process `syz.8.682'.
[  551.475378][ T8641] netlink: 5 bytes leftover after parsing attributes in process `syz.8.682'.
[  551.485952][ T8641] netlink: 5 bytes leftover after parsing attributes in process `syz.8.682'.
[  551.692662][ T8646] loop5: detected capacity change from 0 to 256
[  551.758552][ T8646] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  551.769830][ T8646] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  552.029763][ T8649] sctp: [Deprecated]: syz.7.684 (pid 8649) Use of int in max_burst socket option deprecated.
[  552.029763][ T8649] Use struct sctp_assoc_value instead
[  552.053502][ T8646] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  552.619606][ T8654] loop3: detected capacity change from 0 to 1024
[  553.439958][ T8656] loop7: detected capacity change from 0 to 40427
[  553.499212][ T8656] F2FS-fs (loop7): build fault injection rate: 690
[  553.506319][ T8656] F2FS-fs (loop7): Image doesn't support compression
[  553.514092][ T8656] F2FS-fs (loop7): Image doesn't support compression
[  553.526328][ T8656] F2FS-fs (loop7): invalid crc value
[  553.869125][ T8656] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  553.997940][ T8656] syz.7.688: attempt to access beyond end of device
[  553.997940][ T8656] loop7: rw=2049, sector=77824, nr_sectors = 136 limit=40427
[  554.039330][ T8656] syz.7.688: attempt to access beyond end of device
[  554.039330][ T8656] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  554.207212][ T6692] syz-executor: attempt to access beyond end of device
[  554.207212][ T6692] loop7: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  554.222190][ T6692] CPU: 0 UID: 0 PID: 6692 Comm: syz-executor Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(undef) 
[  554.222360][ T6692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  554.222445][ T6692] Call Trace:
[  554.222500][ T6692]  <TASK>
[  554.222552][ T6692]  __dump_stack+0x26/0x30
[  554.222734][ T6692]  dump_stack_lvl+0x1df/0x270
[  554.222927][ T6692]  dump_stack+0x1e/0x25
[  554.223095][ T6692]  f2fs_handle_critical_error+0xa6f/0xc20
[  554.223350][ T6692]  f2fs_stop_checkpoint+0x65/0x80
[  554.223559][ T6692]  f2fs_write_end_io+0xb4b/0x1920
[  554.223717][ T6692]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  554.223949][ T6692]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  554.224094][ T6692]  bio_endio+0xe24/0xf80
[  554.224295][ T6692]  submit_bio_noacct+0x214/0x2710
[  554.224562][ T6692]  submit_bio+0x5a9/0x5d0
[  554.224752][ T6692]  f2fs_submit_write_bio+0x92/0x250
[  554.224954][ T6692]  __submit_merged_bio+0x16f/0x6a0
[  554.225151][ T6692]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  554.225372][ T6692]  __submit_merged_write_cond+0x458/0x9a0
[  554.225596][ T6692]  f2fs_write_data_pages+0x4bb2/0x5480
[  554.225961][ T6692]  ? kmsan_get_metadata+0xfb/0x160
[  554.226158][ T6692]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  554.226364][ T6692]  ? __update_load_avg_cfs_rq+0xe9/0x1010
[  554.226602][ T6692]  ? kmsan_get_metadata+0xfb/0x160
[  554.226826][ T6692]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  554.227038][ T6692]  ? kmsan_get_metadata+0xfb/0x160
[  554.227238][ T6692]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  554.227442][ T6692]  ? kmsan_get_metadata+0xfb/0x160
[  554.227649][ T6692]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  554.227859][ T6692]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  554.228116][ T6692]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  554.228324][ T6692]  do_writepages+0x3ef/0x860
[  554.228504][ T6692]  ? _raw_spin_unlock+0x30/0x50
[  554.228692][ T6692]  ? wbc_attach_and_unlock_inode+0x131/0x680
[  554.228876][ T6692]  filemap_fdatawrite+0x207/0x260
[  554.229190][ T6692]  f2fs_sync_dirty_inodes+0x2ab/0x9e0
[  554.229373][ T6692]  f2fs_write_checkpoint+0xfe2/0x2b00
[  554.229661][ T6692]  kill_f2fs_super+0x2ff/0x970
[  554.229834][ T6692]  ? __pfx_kill_f2fs_super+0x10/0x10
[  554.229986][ T6692]  deactivate_locked_super+0xc8/0x3c0
[  554.230196][ T6692]  deactivate_super+0x12f/0x140
[  554.230369][ T6692]  cleanup_mnt+0x6fb/0x780
[  554.230510][ T6692]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  554.230709][ T6692]  ? __pfx___cleanup_mnt+0x10/0x10
[  554.230858][ T6692]  __cleanup_mnt+0x22/0x30
[  554.231001][ T6692]  task_work_run+0x209/0x2b0
[  554.231176][ T6692]  exit_to_user_mode_loop+0x2a6/0x330
[  554.231357][ T6692]  do_syscall_64+0x1e3/0x210
[  554.231527][ T6692]  ? irqentry_exit+0x16/0x60
[  554.231718][ T6692]  ? clear_bhb_loop+0x40/0x90
[  554.231882][ T6692]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  554.232053][ T6692] RIP: 0033:0x7f581a78fc57
[  554.232179][ T6692] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  554.232308][ T6692] RSP: 002b:00007ffed3852b28 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  554.232452][ T6692] RAX: 0000000000000000 RBX: 00007f581a810925 RCX: 00007f581a78fc57
[  554.232552][ T6692] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffed3852be0
[  554.232644][ T6692] RBP: 00007ffed3852be0 R08: 0000000000000000 R09: 0000000000000000
[  554.232741][ T6692] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffed3853c70
[  554.232842][ T6692] R13: 00007f581a810925 R14: 0000000000087451 R15: 00007ffed3853cb0
[  554.232983][ T6692]  </TASK>
[  554.593520][ T6692] F2FS-fs (loop7): Stopped filesystem due to reason: 3
[  555.085380][ T8671] netlink: 28 bytes leftover after parsing attributes in process `syz.6.691'.
[  555.095039][ T8671] netlink: 24 bytes leftover after parsing attributes in process `syz.6.691'.
[  555.523497][ T7305] =====================================================
[  555.531657][ T7305] BUG: KMSAN: kernel-infoleak in _copy_to_iter+0xf0e/0x33f0
[  555.540476][ T7305]  _copy_to_iter+0xf0e/0x33f0
[  555.545398][ T7305]  copy_page_to_iter+0x482/0x910
[  555.551655][ T7305]  filemap_read+0x1cda/0x2300
[  555.556734][ T7305]  blkdev_read_iter+0x89f/0xb00
[  555.562011][ T7305]  vfs_read+0x85a/0xf00
[  555.566426][ T7305]  __x64_sys_read+0x1fb/0x4d0
[  555.572134][ T7305]  x64_sys_call+0x39db/0x3db0
[  555.578924][ T7305]  do_syscall_64+0xd9/0x210
[  555.583670][ T7305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  555.589989][ T7305] 
[  555.592438][ T7305] Uninit was stored to memory at:
[  555.597801][ T7305]  _copy_to_iter+0x1324/0x33f0
[  555.603086][ T7305]  copy_page_to_iter+0x482/0x910
[  555.608385][ T7305]  shmem_file_read_iter+0x904/0x1140
[  555.613913][ T7305]  lo_rw_aio+0x12d7/0x1610
[  555.618720][ T7305]  loop_process_work+0xe30/0x1ee0
[  555.624011][ T7305]  loop_rootcg_workfn+0x2b/0x40
[  555.631514][ T7305]  process_scheduled_works+0xb8e/0x1d80
[  555.637352][ T7305]  worker_thread+0xedf/0x1590
[  555.642379][ T7305]  kthread+0xd5c/0xf00
[  555.646652][ T7305]  ret_from_fork+0x1e0/0x310
[  555.651577][ T7305]  ret_from_fork_asm+0x1a/0x30
[  555.656604][ T7305] 
[  555.659292][ T7305] Uninit was stored to memory at:
[  555.664665][ T7305]  copy_folio_from_iter_atomic+0x18f2/0x3c10
[  555.671064][ T7305]  generic_perform_write+0x8eb/0x10c0
[  555.676669][ T7305]  shmem_file_write_iter+0x2b7/0x2f0
[  555.683238][ T7305]  lo_rw_aio+0x12d7/0x1610
[  555.688510][ T7305]  loop_process_work+0xe30/0x1ee0
[  555.693797][ T7305]  loop_rootcg_workfn+0x2b/0x40
[  555.699074][ T7305]  process_scheduled_works+0xb8e/0x1d80
[  555.704902][ T7305]  worker_thread+0xedf/0x1590
[  555.710010][ T7305]  kthread+0xd5c/0xf00
[  555.714304][ T7305]  ret_from_fork+0x1e0/0x310
[  555.719383][ T7305]  ret_from_fork_asm+0x1a/0x30
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  555.724392][ T7305] 
[  555.726877][ T7305] Uninit was stored to memory at:
[  555.732369][ T7305]  hfsplus_bnode_write+0x158/0x430
[  555.737741][ T7305]  hfsplus_brec_insert+0xaec/0x1540
[  555.743402][ T7305]  hfsplus_create_cat+0x1396/0x1910
[  555.748926][ T7305]  hfsplus_link+0x601/0xc30
[  555.753690][ T7305]  vfs_link+0x8e8/0xb30
[  555.758373][ T7305]  do_linkat+0x4af/0x1040
[  555.762968][ T7305]  __x64_sys_linkat+0x176/0x250
[  555.768224][ T7305]  x64_sys_call+0x38ff/0x3db0
[  555.773171][ T7305]  do_syscall_64+0xd9/0x210
[  555.777902][ T7305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  555.786114][ T7305] 
[  555.789036][ T7305] Uninit was stored to memory at:
[  555.794364][ T7305]  hfsplus_create_cat+0x1748/0x1910
[  555.799980][ T7305]  hfsplus_link+0x601/0xc30
[  555.804733][ T7305]  vfs_link+0x8e8/0xb30
[  555.809645][ T7305]  do_linkat+0x4af/0x1040
[  555.814246][ T7305]  __x64_sys_linkat+0x176/0x250
[  555.819531][ T7305]  x64_sys_call+0x38ff/0x3db0
[  555.824464][ T7305]  do_syscall_64+0xd9/0x210
[  555.829276][ T7305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  555.835431][ T7305] 
[  555.837889][ T7305] Uninit was created at:
[  555.842715][ T7305]  __alloc_frozen_pages_noprof+0x689/0xf00
[  555.848897][ T7305]  alloc_pages_mpol+0x328/0x860
[  555.854023][ T7305]  alloc_frozen_pages_noprof+0xf7/0x200
[  555.859978][ T7305]  allocate_slab+0x24d/0x1220
[  555.864901][ T7305]  ___slab_alloc+0xfec/0x3480
[  555.869947][ T7305]  kmem_cache_alloc_lru_noprof+0x922/0xed0
[  555.876006][ T7305]  hfsplus_alloc_inode+0x5a/0xd0
[  555.881364][ T7305]  alloc_inode+0x87/0x4a0
[  555.886982][ T7305]  iget_locked+0x239/0x12d0
[  555.892196][ T7305]  hfsplus_iget+0x5c/0xb80
[  555.896831][ T7305]  hfsplus_btree_open+0x134/0x1d00
[  555.902519][ T7305]  hfsplus_fill_super+0x1161/0x2740
[  555.907932][ T7305]  get_tree_bdev_flags+0x6e6/0x920
[  555.913460][ T7305]  get_tree_bdev+0x38/0x50
[  555.918239][ T7305]  hfsplus_get_tree+0x35/0x40
[  555.923120][ T7305]  vfs_get_tree+0xb3/0x5c0
[  555.927801][ T7305]  do_new_mount+0x738/0x1610
[  555.932875][ T7305]  path_mount+0x6db/0x1e90
[  555.937540][ T7305]  __se_sys_mount+0x6eb/0x7d0
[  555.942663][ T7305]  __x64_sys_mount+0xe4/0x150
[  555.947637][ T7305]  x64_sys_call+0xfa7/0x3db0
[  555.952614][ T7305]  do_syscall_64+0xd9/0x210
[  555.957336][ T7305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  555.963708][ T7305] 
[  555.966169][ T7305] Bytes 840-843 of 3072 are uninitialized
[  555.972190][ T7305] Memory access of size 3072 starts at ffff88813113a000
[  555.979422][ T7305] Data copied to user address 00007f4230fcc400
[  555.985739][ T7305] 
[  555.989350][ T7305] CPU: 1 UID: 0 PID: 7305 Comm: udevd Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(undef) 
[  556.001699][ T7305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  556.012109][ T7305] =====================================================
[  556.019486][ T7305] Disabling lock debugging due to kernel taint
[  556.025810][ T7305] Kernel panic - not syncing: kmsan.panic set ...
[  556.032455][ T7305] CPU: 1 UID: 0 PID: 7305 Comm: udevd Tainted: G    B               6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(undef) 
[  556.046036][ T7305] Tainted: [B]=BAD_PAGE
[  556.050355][ T7305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  556.060617][ T7305] Call Trace:
[  556.064083][ T7305]  <TASK>
[  556.067163][ T7305]  __dump_stack+0x26/0x30
[  556.071886][ T7305]  dump_stack_lvl+0x53/0x270
[  556.076804][ T7305]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  556.082932][ T7305]  dump_stack+0x1e/0x25
[  556.087346][ T7305]  panic+0x4bd/0xd50
[  556.091566][ T7305]  kmsan_report+0x31c/0x320
[  556.096350][ T7305]  ? kmsan_internal_check_memory+0x16c/0x230
[  556.102597][ T7305]  ? kmsan_copy_to_user+0xf1/0x190
[  556.107982][ T7305]  ? _copy_to_iter+0xf0e/0x33f0
[  556.113057][ T7305]  ? copy_page_to_iter+0x482/0x910
[  556.118437][ T7305]  ? filemap_read+0x1cda/0x2300
[  556.123510][ T7305]  ? blkdev_read_iter+0x89f/0xb00
[  556.128749][ T7305]  ? vfs_read+0x85a/0xf00
[  556.133342][ T7305]  ? __x64_sys_read+0x1fb/0x4d0
[  556.138469][ T7305]  ? x64_sys_call+0x39db/0x3db0
[  556.143588][ T7305]  ? do_syscall_64+0xd9/0x210
[  556.148484][ T7305]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  556.154810][ T7305]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  556.161175][ T7305]  ? up_read+0x6a/0xf0
[  556.165489][ T7305]  ? do_user_addr_fault+0x1a1a/0x2560
[  556.171143][ T7305]  ? kmsan_get_metadata+0xfb/0x160
[  556.176513][ T7305]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  556.182592][ T7305]  kmsan_internal_check_memory+0x16c/0x230
[  556.188663][ T7305]  kmsan_copy_to_user+0xf1/0x190
[  556.193857][ T7305]  _copy_to_iter+0xf0e/0x33f0
[  556.198761][ T7305]  ? kmsan_get_shadow_origin_ptr+0x35/0xb0
[  556.204854][ T7305]  ? filemap_get_pages+0x371e/0x3a60
[  556.210378][ T7305]  ? kmsan_get_metadata+0xfb/0x160
[  556.215746][ T7305]  copy_page_to_iter+0x482/0x910
[  556.220886][ T7305]  ? kmsan_get_metadata+0xfb/0x160
[  556.226276][ T7305]  filemap_read+0x1cda/0x2300
[  556.231159][ T7305]  ? kmsan_get_metadata+0xfb/0x160
[  556.236516][ T7305]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  556.242584][ T7305]  ? __rcu_read_unlock+0x6d/0xd0
[  556.247838][ T7305]  ? aa_file_perm+0x24c/0x18d0
[  556.252847][ T7305]  ? aa_file_perm+0x378/0x18d0
[  556.257928][ T7305]  blkdev_read_iter+0x89f/0xb00
[  556.263021][ T7305]  vfs_read+0x85a/0xf00
[  556.267424][ T7305]  ? __pfx_blkdev_read_iter+0x10/0x10
[  556.273012][ T7305]  __x64_sys_read+0x1fb/0x4d0
[  556.277948][ T7305]  x64_sys_call+0x39db/0x3db0
[  556.282872][ T7305]  do_syscall_64+0xd9/0x210
[  556.287571][ T7305]  ? clear_bhb_loop+0x40/0x90
[  556.292457][ T7305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  556.298563][ T7305] RIP: 0033:0x7f42308a7407
[  556.303154][ T7305] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[  556.322995][ T7305] RSP: 002b:00007fff45516eb0 EFLAGS: 00000202 ORIG_RAX: 0000000000000000
[  556.331618][ T7305] RAX: ffffffffffffffda RBX: 00007f4230fdc880 RCX: 00007f42308a7407
[  556.339778][ T7305] RDX: 0000000000002000 RSI: 00007f4230fcb000 RDI: 0000000000000009
[  556.347918][ T7305] RBP: 0000559f8ca4c060 R08: 0000000000000000 R09: 0000000000000000
[  556.356057][ T7305] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[  556.364187][ T7305] R13: 0000000000018c00 R14: 0000559f8ca4d758 R15: 00007f423110339c
[  556.372358][ T7305]  </TASK>
[  556.375862][ T7305] Kernel Offset: disabled
[  556.380297][ T7305] Rebooting in 86400 seconds..