last executing test programs:

11m53.758888019s ago: executing program 4 (id=5):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r6 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r6, &(0x7f0000000480)={0xa, 0xfffe, 0x6, @loopback, 0x5}, 0x1c)
r7 = dup2(r6, r6)
sendmmsg$unix(r7, &(0x7f0000008380), 0x400000000000174, 0x4008890)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0xf, &(0x7f0000000040)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xe0}, {{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

11m51.858911772s ago: executing program 4 (id=13):
syz_mount_image$erofs(&(0x7f0000000340), &(0x7f0000000580)='./file0\x00', 0x2000000, &(0x7f00000004c0)=ANY=[], 0x2, 0x222, &(0x7f0000000800)="$eJzsmL9rFEEUx78zu7feiog2KWwsDBjR7GX3UNIcGkGwEiHxV6WHWUPMJieXFUxANNjYaGchpLHwH7BIkcrCzn9A0EIFwcIrLGxsRmZndm9yc3HDcla+TzF8Z9+befPezbziQBDEf8vXL78+Pzs/PXcKwAGMY5/+/t0BGFOaG/6fXt4/+aJ1YfPNx9fvVg4+3B7cTy4RYueH+l/iuwDezjhIi0jF6t9SjOvJHHihr4DjhNbXwBBofQscV7WOwXBD67uG7kj/ILizmMTB7U4yL8WUHEI5RHJoDp6vt8Ewr+dCCMEM++ra+lI7SeKuIVxtG2KqJIpgS2NW/Wrw0JvhaBnnk1W8/vTJhpzntZky6heCI9RJNMEwq79PYzOvjSqJkf8Rt7+/Y+U/JFumLwNQlmRdidbPkRTLFIcnqy2fkOmcs02HUOUY2Lmqhr5JVnK0KVtXJxNu+V08q3/QCrEuDWYhHg1/AM99AP8oU1NUyiIXY73t97bpmxJ81/ssWHkItvf7U9/rmfOHWL1iPmReI/8tgA9bqn+IVwzHjf7kGv2jkS7fa6yurU8uLrcX4oV4JYqaZxjw+HTUyBqRGq2+1+/Pftaf9hv713bx9biHB+007YZq9JgHH2najbJ5ZDyb2a3Oj5t6WYqLAI6piWxpXrGjY8VgnvLhma9UE7YTQRAEQRAEQRAEQRAEQRBEJY6CZf+ClhBdzrz/BAAA//9oglvV")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000040)='./file0\x00')
bind$alg(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000004340)=""/102376, 0x18fe8)
syz_mount_image$erofs(&(0x7f0000000040), &(0x7f0000000400)='./file2\x00', 0x8, &(0x7f0000000000)=ANY=[], 0x1, 0x1ce, &(0x7f0000000800)="$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")
open(&(0x7f0000000200)='./file2\x00', 0x100, 0x123)

11m43.851188866s ago: executing program 3 (id=20):
syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
syz_open_dev$MSR(&(0x7f00000000c0), 0xfffffffffffffffc, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffc}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000240)='xen_mmu_release_ptpage\x00', r3, 0x0, 0x8}, 0x18)
syz_genetlink_get_family_id$nl80211(&(0x7f0000001880), 0xffffffffffffffff)
connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000001040)={'wlan1\x00', <r6=>0x0})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000080)=@ipv6_newrule={0x38, 0x20, 0x1, 0x0, 0x0, {0xa, 0x0, 0x10}, [@FIB_RULE_POLICY=@FRA_IP_PROTO={0x5, 0x16, 0x6c}, @FRA_SRC={0x14, 0x2, @mcast2}]}, 0x38}}, 0x0)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r5, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f00000001c0)={0x30, r4, 0x1, 0x70bd22, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x14, 0x11d, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x9f}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}]}]}, 0x30}}, 0x0)

11m43.701521421s ago: executing program 4 (id=21):
socket$inet6_mptcp(0xa, 0x1, 0x106)
syz_emit_ethernet(0x4e, &(0x7f00000003c0)=ANY=[], 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='loginuid\x00')
write$midi(r1, 0x0, 0x0)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000001380)='./file1\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="636865636b706f696e743d64697361626c652c6261636b67726f756e645f67633d73796e632c61636c2c616c6c6f635f6d6f64653d72657573652c696e6c696e655f78617474722c6e6f666c7573685f6d657267652c6d6f64653d6c66732c6e6f757365725f78617474722c636865636b706f696e743d64697361626c652c757365725f78617474722c6673796e635f6d6f64653d7374726963742c6167655f657874656e745f63616368652c646973636172642c6e6f696e6c696e655f64656e7472792c008bfb3c1e4b1b12ae77c937da8858"], 0x1, 0x5505, &(0x7f0000002480)="$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")
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r2, 0x0, 0x0)
r3 = open(&(0x7f0000000440)='./file1\x00', 0x84242, 0x1df2a23c5997fa7f)
write$FUSE_CREATE_OPEN(0xffffffffffffffff, &(0x7f0000000180)={0xa0, 0x1c7017ec88f5c5e8, 0x0, {{0x4, 0x3, 0x5, 0x2, 0x2, 0x1, {0x400000080001, 0xff, 0x20fb, 0x8, 0xe, 0xd615, 0x9, 0x1, 0xfffffffd, 0x8000, 0x10, 0x0, 0x0, 0x5, 0x2000001}}, {0x0, 0x11}}}, 0xa0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x22740, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000140)='./control\x00', 0x8)
rmdir(&(0x7f0000000280)='./control\x00')
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendfile(r3, r3, &(0x7f0000000080), 0x7f03)

11m42.331403s ago: executing program 3 (id=23):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$KDFONTOP_SET(r0, 0x4b72, 0x0)

11m41.404218863s ago: executing program 3 (id=27):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r0, &(0x7f0000000380)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1d}}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000280)='htcp', 0x4)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)

11m41.006592903s ago: executing program 4 (id=29):
syz_mount_image$exfat(&(0x7f0000000000), &(0x7f0000000380)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0xa10812, &(0x7f00000003c0)=ANY=[@ANYBLOB='dmask=00000000000000000002621,utf8,umask=00000000000000000200000,namecase=1,discard,errors=remount-ro,umask=00000000000000000200004,umask=00000000000000000003377,namecase=1,utf8,iocharset=iso8859-4,iocharset=cp874,dmask=01777777777777777777770,errors=remount-ro,uid=', @ANYRESOCT=0x0, @ANYRES16, @ANYRESDEC=0x0, @ANYRES8=0x0, @ANYRESDEC=0x0, @ANYRES8=0x0, @ANYRESDEC, @ANYBLOB="49440fb4005cba20653d2326292c265c2c00e79feca4a2e1053fdd2c84e7a89aa4ee02cbb47695d7ade8fd4362d0e37fbbb365b529e3d4cfa7ec78bc709784cc24ff7cfd3accb1a53fcd27bcb1794fcc15fc6eeae6dd85887fec609d9df9eb63c1eb27e9a7e7c87e551a878c1ff1548dce0557af9986d21054cc6d2e9be1e16b9e2e6e9df5b4b95e1b", @ANYRES8=0x0, @ANYRES16=0x0, @ANYRESOCT=0x0, @ANYRESOCT], 0x21, 0x1508, &(0x7f0000002080)="$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")
syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='comm\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101842, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x106, 0x5}}, 0x20)
open(0x0, 0x8000, 0xa0)
pwritev2(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)

11m39.605748545s ago: executing program 32 (id=29):
syz_mount_image$exfat(&(0x7f0000000000), &(0x7f0000000380)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0xa10812, &(0x7f00000003c0)=ANY=[@ANYBLOB='dmask=00000000000000000002621,utf8,umask=00000000000000000200000,namecase=1,discard,errors=remount-ro,umask=00000000000000000200004,umask=00000000000000000003377,namecase=1,utf8,iocharset=iso8859-4,iocharset=cp874,dmask=01777777777777777777770,errors=remount-ro,uid=', @ANYRESOCT=0x0, @ANYRES16, @ANYRESDEC=0x0, @ANYRES8=0x0, @ANYRESDEC=0x0, @ANYRES8=0x0, @ANYRESDEC, @ANYBLOB="49440fb4005cba20653d2326292c265c2c00e79feca4a2e1053fdd2c84e7a89aa4ee02cbb47695d7ade8fd4362d0e37fbbb365b529e3d4cfa7ec78bc709784cc24ff7cfd3accb1a53fcd27bcb1794fcc15fc6eeae6dd85887fec609d9df9eb63c1eb27e9a7e7c87e551a878c1ff1548dce0557af9986d21054cc6d2e9be1e16b9e2e6e9df5b4b95e1b", @ANYRES8=0x0, @ANYRES16=0x0, @ANYRESOCT=0x0, @ANYRESOCT], 0x21, 0x1508, &(0x7f0000002080)="$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")
syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='comm\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101842, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x106, 0x5}}, 0x20)
open(0x0, 0x8000, 0xa0)
pwritev2(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)

11m39.560819917s ago: executing program 3 (id=32):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000400)={[{@journal_dev={'journal_dev', 0x3d, 0x5}}, {@mblk_io_submit}, {@nodioread_nolock}, {@test_dummy_encryption}, {@nobarrier}, {@nodelalloc}, {@noinit_itable}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x1, 0xbaf, &(0x7f00000017c0)="$eJzs3M1rXFUbAPDn3ny2zftO+vIi1k0jIi2o07SSYotgKxU3LgTdCg3ppIRMP0giNWkWE/0HRF0LbgS1KF3YdTcKbt1o3VpcCEVioyCikTsfSWxmkrSd5Ibk94Mz95w5d+Z5nrlM7j0wNwHsWgPZQxpxICLOJhGF+vNpRHRXe70Rldp+C/OzI7/Pz44ksbj42i9JJBFxd352pPFeSX27rz7ojYhvX0zif++sjjs5PTM+XC6XJurjI1MXLh+ZnJ55ZuzC8PnS+dLFo8efGzo2dHzwxFDbav3jx1M3fnv85Z8qf37617Vf3/84iVPRV59bWUe7DMTA0meyUmdEDLc7WE466vWsrDPpXOdF6SYnBQBAS+mKa7hHohAdsXzxVoivvss1OQAAAKAtFjsiFgEAAIAdLrH+BwAAgB2u8TuAu/OzI42W7y8Sttad0xHRX6t/od5qM51RqW57oysi9t5NYuVtrUntZQ9tICJu/3Dii6zFJt2HvJbKXEQ82uz4J9X6+6t3ca+uP42IwTbEH7hnvN3qf7q7df2n2hA/7/oB2J1unq6dyFaf/9Kl659ocv7rbHLuehB5n/8a138Lq67/luvvaHH99+oGY1z95MMrreay+p+/8dLnjZbFz7YPVdR9uDMX8Vhns/qTpfqTFvWf3WCMwt9XSq3m8q5/8aOIQ9G8/oZk7f9PdGR0rFwarD02jTH3zdBnreLnXX92/Pe2qH+94395gzHeOHPmequ59etPf+5OXq/2uuvPvDU8NTVxNKI7eWX188fqN7S30Nin8R5Z/YefWPv736z+LESl/jlka4G5+jYbv31PzBeuXf1yrfqztV+ex//cAx7/dzcY48mv3zvcam7l+jdrWfzbSW0tDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANaUT0RZIWl/ppWixG7IuI/8fetHxpcuqp0UtvXjyXzUX0R1c6OlYuDUZEoTZOsvHRan95fOye8bMRsT8iPijsqY6LI5fK5/IuHgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgCX7IqIvkrQYEWlELBTStFjMOysAAACg7frzTgAAAADYdNb/AAAAsPNZ/wMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALDJ9h+8eSuJiMrJPdWW6a7PdeWaGbDZ0rwTAHLTkXcCQG46804AyM19rvFdLsAOlKwz39typqftuQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwfR06cPNWEhGVk3uqLdNdn+tq+oqDW5gdsJnSvBMActOx1mTn1uUBbD1fcdi9mq/xgd0kWWe+d3mfyr9nejYtJwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC2n75qS9JiRKTVfpoWixH/iYj+6EpGx8qlwYj4b0R8X+jqycY9eScNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA201Oz4wPl8ulCR0dnXw7yfZIo9bJ+y8TAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB5mJyeGR8ul0sTk3lnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAORtcnpmfLhcLk1soHP9fnZe0cm7RgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8vNPAAAA///5ZQ4Q")
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000002780)={0x2020}, 0x2020)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
prlimit64(0x0, 0x6, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[], 0x48)
read$msr(r3, &(0x7f0000002000)=""/102400, 0x19000)
setns(r2, 0x24020000)
openat$null(0xffffffffffffff9c, 0x0, 0x670883, 0x0)
syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
syz_genetlink_get_family_id$team(&(0x7f0000000080), 0xffffffffffffffff)

11m35.404280437s ago: executing program 3 (id=41):
r0 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000000)=0xffb)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000080)={{0x1009, 0x2, 0x0, 0x80, 'syz0\x00'}, 0x5, 0x0, 0x1, 0x0, 0x0, 0x8, 'syz1\x00', 0x0})
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000540)=0x7b1)

11m32.152668507s ago: executing program 3 (id=50):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, 0x0, 0x0)
r1 = landlock_create_ruleset(&(0x7f0000000200)={0x48, 0x3}, 0x18, 0x0)
landlock_add_rule$LANDLOCK_RULE_NET_PORT(r1, 0x2, &(0x7f00000000c0)={0x3}, 0x0)
landlock_restrict_self(r1, 0x0)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)

11m31.32879579s ago: executing program 33 (id=50):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, 0x0, 0x0)
r1 = landlock_create_ruleset(&(0x7f0000000200)={0x48, 0x3}, 0x18, 0x0)
landlock_add_rule$LANDLOCK_RULE_NET_PORT(r1, 0x2, &(0x7f00000000c0)={0x3}, 0x0)
landlock_restrict_self(r1, 0x0)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)

6m17.672142093s ago: executing program 0 (id=622):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f0000003e00)=[{&(0x7f0000000280)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r0, &(0x7f0000000240)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x0)

6m17.512358142s ago: executing program 0 (id=624):
openat(0xffffffffffffff9c, 0x0, 0x101c02, 0x26)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
ioctl$TIOCSRS485(0xffffffffffffffff, 0x542f, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffe}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r3}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804071, 0x0, 0x0, 0x0, &(0x7f0000000d40))
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x0)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

6m14.33777919s ago: executing program 0 (id=628):
r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
r3 = syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x1080000, 0x0, 0x0, 0x0, &(0x7f0000000000))
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ptrace$ARCH_MAP_VDSO_64(0x1e, r5, 0x6, 0x2003)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000340)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$SIOCGETNODEID(r9, 0x89e1, &(0x7f0000000280)={0x4})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000700)=ANY=[@ANYRES32=r3], 0x0, 0x58}, 0x28)
sendmsg$nl_xfrm(r4, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0)
connect$pppl2tp(r2, &(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, r1, {0x2, 0x0, @loopback}, 0x4}}, 0x2e)
ioctl$PPPIOCGCHAN(r2, 0x80047437, &(0x7f00000000c0))
syz_emit_ethernet(0x4c, &(0x7f0000000140)=ANY=[@ANYBLOB="0180d7000000ece65fbcee5586dd6001010000161100fe8000000000000000000000000000bbfe800000000000000000000000000052ed9c502200169078ffff000000000000ffb00afe4e70"], 0x0)
connect$bt_rfcomm(r0, &(0x7f0000000000)={0x1f, @none, 0x2}, 0xa)
getsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040), 0x10)
getsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x1, &(0x7f0000000080), &(0x7f00000001c0)=0x4)

6m13.192275812s ago: executing program 0 (id=629):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000680)='sched_switch\x00', r4}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r3}, &(0x7f0000001c00)=0x8000000, &(0x7f0000001c40)=r4}, 0x20)
r5 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r5, &(0x7f0000000140)='asymmetric\x00', 0x0)
pipe(0x0)
ioctl$BLKDISCARD(0xffffffffffffffff, 0x1277, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000240)='./bus\x00', 0x20000, 0x0, 0x0, 0x0, 0x0)

6m11.880468119s ago: executing program 0 (id=630):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeeb, 0x8031, 0xffffffffffffffff, 0xc36e5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
unshare(0x8000000)
semctl$IPC_RMID(0x0, 0x0, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
openat$dsp1(0xffffffffffffff9c, &(0x7f0000000140), 0x10000, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(0xffffffffffffffff, 0x40084146, &(0x7f00000001c0)={0x99, [[0x5, 0x0, 0x6, 0x1, 0x3, 0x8, 0x6, 0x1ffd], [0x1000, 0x0, 0x7, 0x6], [0x4000, 0x0, 0x400, 0x0, 0x1, 0x1, 0x4]], '\x00', [{0x8000}, {0x9}, {}, {0x0, 0xfffffff8}, {0x0, 0x2}, {0x3}, {0x4}, {}, {0x20, 0xb9f985e}, {}, {0x0, 0x9}, {0xffffffff}], '\x00', 0x4a0})

6m10.39708808s ago: executing program 0 (id=631):
socket$netlink(0x10, 0x3, 0xb)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000400850000008200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000004c0)={r3, &(0x7f0000000340)="a40dd7b9b473d381eeb19ce6a09a6510f6adfe199f8063c37e05f77b4c594bc71c757ac69590f934bdeed9c50c8c30d79f6508371808f54c5ecca16492e68bc96e13fdde327418f07c75512cc9d71ed446c02caddf67fa", &(0x7f00000003c0)=""/249}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
socket(0x2e, 0x807, 0xff)
syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f00000002c0)='./bus\x00', 0x1800840, &(0x7f0000000140)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c73686f72746e616d653d77696e6e742c756e695f786c6174653d312c696f636861727365743d63703836302c73686f72746e616d653d77696e39352c6e6f6e756d7461696c3d302c696f636861727365743d637039353046716e695f786c6174653d302c696f636861727365743d69736f384911f71ae4811ada6f6465706167653d3933362c696f636861727365743d6d616363656e746575726f2c6572726f72733d636f6e74696e75652c73686f72746e616d653d6c6f7765722c00"], 0x1, 0x362, &(0x7f0000000900)="$eJzs3U9oXFUXAPAzfUkmKfRLFh8UBeHpTtDQP7jQVUpJoTgblaHqQhxsqpKJhQwOpotO40ZcCi515UZc6MJF1yIo4s6FWytIVVxodwWLV2bmTeZNZpKmwrQWf7/FcHLuPe/eO3nJvLxkbl5eifXzs3Hhxo3rMT9fiZmV0ytxsxJLkcXAlRg3NyEHANwfbqYUf6S+A5ZUpjwlAGDKeq//rx4pZd7+ar/+yas/ANz3ip//F/brM79Xw8WpTAkAmLKx+/+PjDTPjf6qf6b0VwEAwP3quRdefPpULeLZPJ+P2HinXW/X46lh+6kL8Xo0Yy2OxWLciuhfKHQfKr3HM2drq8fyPO/Ez0tR71a06xEbnXa9f6VwKuvVV+N4LMZSUV9cbaSUsjOf11aP5z0RcaXTGz82Ku36bBwuxv/hcKzFicjj/2P1EWdrqyfy4gD1jUF9J2J7eN+iO//lWIzvXomL0YzzC+cipcFlTW318vE8P51qI/XtejXO7zwLe94BAQAAAAAAAAAAAAAAAAAAAACAf2Q537G0s/9NGu7fs7w8ob23P06/vtgfaLu/P1Cqpkjp97cer7+bxcj+QLv352nXZ+LQvV06AAAAAAAAAAAAAAAAAAAA/Gu0tuai0Wyubba2Lq2Xg85ma+tQRHQzb3zz6ZcLMd7nNsFMMUapKS9Sl9YbKRt0TtlInyLIuoMPMp9c3ZlxuU91ZxUTp1Hdu6nZPPLwTx8MMw9lgyP/NeyTxeQFZrumUQ42/tef0p08UZdOFsGJ23S+llLa6ziXXxqvikrEzJ1/4vYPUjf4+vprD5xsHX2il/ki9T362OK5a+9/9Ot6o9kduav58dxm61ZabxQfTz7Z9g6y0vlTiX5QKZ8JM/uVb49mGtn3vz3/4HvfHmz0VM68OaFP1l/OZ5utrUrxldJrmusH3dyuqoXm2Sxi13FmJ5z8UwiOfrjSuHr5x18OWlX6JmGjDgAAAAAAAAAAAAAAAAAAuCtK7xUvFG/2nd2v6slnpj8zAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALh7hv//vxRsj2UOEvzZifGm6tpmK2LuXi8TAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAID/uL8DAAD//2Kpa7U=")
prctl$PR_SET_PDEATHSIG(0x1, 0x1a)
r5 = socket(0x10, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r5, 0x89f1, &(0x7f0000000180)={'ip6_vti0\x00', &(0x7f0000000000)={'syztnl1\x00', <r6=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @private2={0xfc, 0x2, '\x00', 0x1}, 0x7800, 0x80, 0xfffffffc, 0xdc64}})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r5, 0x89f1, &(0x7f0000000140)={'syztnl1\x00', &(0x7f0000000240)={'syztnl0\x00', r6, 0x29, 0x0, 0x6, 0x7f, 0x5, @ipv4={'\x00', '\xff\xff', @multicast1}, @mcast1, 0x0, 0x40, 0x6, 0x41}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r5, 0x89f3, &(0x7f00000005c0)={'syztnl1\x00', &(0x7f0000000540)={'ip6gre0\x00', r6, 0x0, 0xc8, 0x0, 0xfffffffe, 0xd, @mcast1, @loopback, 0x1, 0x7800, 0xfffffffb}})

5m55.258730254s ago: executing program 34 (id=631):
socket$netlink(0x10, 0x3, 0xb)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000400850000008200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000004c0)={r3, &(0x7f0000000340)="a40dd7b9b473d381eeb19ce6a09a6510f6adfe199f8063c37e05f77b4c594bc71c757ac69590f934bdeed9c50c8c30d79f6508371808f54c5ecca16492e68bc96e13fdde327418f07c75512cc9d71ed446c02caddf67fa", &(0x7f00000003c0)=""/249}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
socket(0x2e, 0x807, 0xff)
syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f00000002c0)='./bus\x00', 0x1800840, &(0x7f0000000140)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c73686f72746e616d653d77696e6e742c756e695f786c6174653d312c696f636861727365743d63703836302c73686f72746e616d653d77696e39352c6e6f6e756d7461696c3d302c696f636861727365743d637039353046716e695f786c6174653d302c696f636861727365743d69736f384911f71ae4811ada6f6465706167653d3933362c696f636861727365743d6d616363656e746575726f2c6572726f72733d636f6e74696e75652c73686f72746e616d653d6c6f7765722c00"], 0x1, 0x362, &(0x7f0000000900)="$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")
prctl$PR_SET_PDEATHSIG(0x1, 0x1a)
r5 = socket(0x10, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r5, 0x89f1, &(0x7f0000000180)={'ip6_vti0\x00', &(0x7f0000000000)={'syztnl1\x00', <r6=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @private2={0xfc, 0x2, '\x00', 0x1}, 0x7800, 0x80, 0xfffffffc, 0xdc64}})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r5, 0x89f1, &(0x7f0000000140)={'syztnl1\x00', &(0x7f0000000240)={'syztnl0\x00', r6, 0x29, 0x0, 0x6, 0x7f, 0x5, @ipv4={'\x00', '\xff\xff', @multicast1}, @mcast1, 0x0, 0x40, 0x6, 0x41}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r5, 0x89f3, &(0x7f00000005c0)={'syztnl1\x00', &(0x7f0000000540)={'ip6gre0\x00', r6, 0x0, 0xc8, 0x0, 0xfffffffe, 0xd, @mcast1, @loopback, 0x1, 0x7800, 0xfffffffb}})

27.549171594s ago: executing program 6 (id=1122):
syz_read_part_table(0x60d, &(0x7f0000002200)="$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")
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x6000, 0x1)
pipe2(0x0, 0x80)
ioctl$UFFDIO_CONTINUE(0xffffffffffffffff, 0xc020aa07, &(0x7f00000000c0)={{&(0x7f0000ffd000/0x1000)=nil, 0x1000}})
r0 = fsopen(&(0x7f0000000180)='ext4\x00', 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
ioctl$sock_bt_hidp_HIDPCONNDEL(0xffffffffffffffff, 0x400448c9, 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040), 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)

22.464432708s ago: executing program 6 (id=1130):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="b40000000000000079104800000000000700000000000000950000802673610ccdeced017539e489d5a937963b3548969f86a19973e1"], 0x0, 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94)
close(0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, 0x0, 0x8000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
write$UHID_INPUT(r2, &(0x7f0000001040)={0xfc, {"a2e3ad09edfc09f91b44090987f70e06d038e7ff7fc6e5539b303d0e8b089b07323068090890e0879b0a0a5de70a9b3361959b4b9a240d5b0af3988f7ef319520100ffe8d178708c523c921b1b5b31070d074a0936cd3b78130daa61d8e8040000005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x1000}}, 0x1006)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000fdffffff850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r5, 0x8982, &(0x7f0000000240))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
r7 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r7, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r7, 0x0, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r8, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e230e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac71002000000ffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={0x0, 0x0}, 0x28)
r9 = getpid()
sched_setscheduler(r9, 0x2, &(0x7f0000000200)=0x7)
sched_setscheduler(r9, 0x0, &(0x7f0000000080)=0x1808)

20.647856702s ago: executing program 6 (id=1134):
keyctl$KEYCTL_PKEY_VERIFY(0x1c, 0x0, 0x0, 0x0, 0x0)
r0 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'lo\x00'})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[], [], 0x2f})
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r3, &(0x7f0000001fc0)=""/184, 0x20002078)

16.465586977s ago: executing program 5 (id=1142):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000280)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='`\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000007000000080001006e00000008000300", @ANYRES32=r3, @ANYBLOB="0c0099000000000000000000050053000100000014000400776c616e310000000000000000000000140006"], 0x60}}, 0x800)

16.316102184s ago: executing program 1 (id=1143):
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x16, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000100000000000000010000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b6000000b7080000000000007b8af8ff00000000b7080000001000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x39, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

15.19836425s ago: executing program 1 (id=1144):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000180)={[{@grpid}, {@mblk_io_submit}, {@nodioread_nolock}, {@test_dummy_encryption}, {@inode_readahead_blks}, {@nodelalloc}, {@minixdf}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x4, 0xbaf, &(0x7f00000017c0)="$eJzs3M1rXFUbAPDn3ny2zftO+vIi1k0jIi2o07SSYotgKxU3LgTdCg3ppIRMP0giNWkWE/0HRF0LbgS1KF3YdTcKbt1o3VpcCEVioyCikTsfSWxmkrSd5Ibk94Mz95w5d+Z5nrlM7j0wNwHsWgPZQxpxICLOJhGF+vNpRHRXe70Rldp+C/OzI7/Pz44ksbj42i9JJBFxd352pPFeSX27rz7ojYhvX0zif++sjjs5PTM+XC6XJurjI1MXLh+ZnJ55ZuzC8PnS+dLFo8efGzo2dHzwxFDbav3jx1M3fnv85Z8qf37617Vf3/84iVPRV59bWUe7DMTA0meyUmdEDLc7WE466vWsrDPpXOdF6SYnBQBAS+mKa7hHohAdsXzxVoivvss1OQAAAKAtFjsiFgEAAIAdLrH+BwAAgB2u8TuAu/OzI42W7y8Sttad0xHRX6t/od5qM51RqW57oysi9t5NYuVtrUntZQ9tICJu/3Dii6zFJt2HvJbKXEQ82uz4J9X6+6t3ca+uP42IwTbEH7hnvN3qf7q7df2n2hA/7/oB2J1unq6dyFaf/9Kl659ocv7rbHLuehB5n/8a138Lq67/luvvaHH99+oGY1z95MMrreay+p+/8dLnjZbFz7YPVdR9uDMX8Vhns/qTpfqTFvWf3WCMwt9XSq3m8q5/8aOIQ9G8/oZk7f9PdGR0rFwarD02jTH3zdBnreLnXX92/Pe2qH+94395gzHeOHPmequ59etPf+5OXq/2uuvPvDU8NTVxNKI7eWX188fqN7S30Nin8R5Z/YefWPv736z+LESl/jlka4G5+jYbv31PzBeuXf1yrfqztV+ex//cAx7/dzcY48mv3zvcam7l+jdrWfzbSW0tDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANaUT0RZIWl/ppWixG7IuI/8fetHxpcuqp0UtvXjyXzUX0R1c6OlYuDUZEoTZOsvHRan95fOye8bMRsT8iPijsqY6LI5fK5/IuHgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgCX7IqIvkrQYEWlELBTStFjMOysAAACg7frzTgAAAADYdNb/AAAAsPNZ/wMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALDJ9h+8eSuJiMrJPdWW6a7PdeWaGbDZ0rwTAHLTkXcCQG46804AyM19rvFdLsAOlKwz39typqftuQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwfR06cPNWEhGVk3uqLdNdn+tq+oqDW5gdsJnSvBMActOx1mTn1uUBbD1fcdi9mq/xgd0kWWe+d3mfyr9nejYtJwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC2n75qS9JiRKTVfpoWixH/iYj+6EpGx8qlwYj4b0R8X+jqycY9eScNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA201Oz4wPl8ulCR0dnXw7yfZIo9bJ+y8TAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB5mJyeGR8ul0sTk3lnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAORtcnpmfLhcLk1soHP9fnZe0cm7RgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8vNPAAAA///5ZQ4Q")
syz_mount_image$exfat(0x0, &(0x7f0000000180)='./bus\x00', 0x0, 0x0, 0x1, 0x0, &(0x7f0000002980))

14.427528246s ago: executing program 2 (id=1147):
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
ustat(0x801, 0x0)

14.204288207s ago: executing program 1 (id=1148):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0)
write$uinput_user_dev(r0, 0x0, 0x0)

13.159869158s ago: executing program 5 (id=1150):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000001440)={{0x1, 0x1, 0x18, <r1=>r0, {0x4}}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00'})
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f0000002480)={'nat\x00', 0x0, 0x0, 0x0, [0xffffffffffffffff, 0x4aca3e29, 0x6, 0x4, 0x2, 0xd4]}, &(0x7f0000002500)=0x78)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x20)
syz_usb_connect(0x2, 0x24, &(0x7f0000000080)={{0x12, 0x1, 0x141, 0x48, 0x13, 0x44, 0x20, 0x424, 0x7500, 0x69ee, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0xb8, 0x7, 0x0, 0x96, 0xd1, 0xca}}]}}]}}, 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000240)=ANY=[@ANYRESOCT], 0x0)
r2 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
timerfd_create(0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
execve(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0)
getsockopt$CAN_RAW_LOOPBACK(0xffffffffffffffff, 0x65, 0x20, 0x0, 0x0)
r5 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x2, 0x0, 0x2}, &(0x7f00000000c0)=<r6=>0x0, &(0x7f0000000280))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
sendmsg$NFNL_MSG_ACCT_NEW(0xffffffffffffffff, 0x0, 0x80)
io_uring_enter(r5, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
r7 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000700), 0x101180, 0x0)
ioctl$SOUND_MIXER_WRITE_VOLUME(r7, 0xc0040d07, &(0x7f0000000040)=0x121)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r2, 0xc1105517, &(0x7f0000000080)={{0x1009, 0x2, 0x0, 0x80, 'syz0\x00'}, 0x5, 0x0, 0x1, 0x0, 0x0, 0x8, 'syz1\x00', 0x0})
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x3000001, 0x32, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r2, 0xc0045516, &(0x7f0000000540)=0x7b1)

12.996066499s ago: executing program 1 (id=1151):
socket$inet6_mptcp(0xa, 0x1, 0x106)
syz_emit_ethernet(0x4e, &(0x7f00000003c0)=ANY=[], 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='loginuid\x00')
write$midi(r1, 0x0, 0x0)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, r1}, 0x10)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000001380)='./file1\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="636865636b706f696e743d64697361626c652c6261636b67726f756e645f67633d73796e632c61636c2c616c6c6f635f6d6f64653d72657573652c696e6c696e655f78617474722c6e6f666c7573685f6d657267652c6d6f64653d6c66732c6e6f757365725f78617474722c636865636b706f696e743d64697361626c652c757365725f78617474722c6673796e635f6d6f64653d7374726963742c6167655f657874656e745f63616368652c646973636172642c6e6f696e6c696e655f64656e7472792c008bfb3c1e4b1b12ae77c937da8858"], 0x1, 0x5505, &(0x7f0000002480)="$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")
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r2, 0x0, 0x0)
r3 = open(&(0x7f0000000440)='./file1\x00', 0x84242, 0x1df2a23c5997fa7f)
write$FUSE_CREATE_OPEN(0xffffffffffffffff, &(0x7f0000000180)={0xa0, 0x1c7017ec88f5c5e8, 0x0, {{0x4, 0x3, 0x5, 0x2, 0x2, 0x1, {0x400000080001, 0xff, 0x20fb, 0x8, 0xe, 0xd615, 0x9, 0x1, 0xfffffffd, 0x8000, 0x10, 0x0, 0x0, 0x5, 0x2000001}}, {0x0, 0x11}}}, 0xa0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x22740, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000140)='./control\x00', 0x8)
rmdir(0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendfile(r3, r3, &(0x7f0000000080), 0x7f03)

12.707204478s ago: executing program 6 (id=1152):
socket$inet6_mptcp(0xa, 0x1, 0x106)
syz_emit_ethernet(0x4e, &(0x7f00000003c0)=ANY=[], 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='loginuid\x00')
write$midi(r1, 0x0, 0x0)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, r1}, 0x10)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000001380)='./file1\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="636865636b706f696e743d64697361626c652c6261636b67726f756e645f67633d73796e632c61636c2c616c6c6f635f6d6f64653d72657573652c696e6c696e655f78617474722c6e6f666c7573685f6d657267652c6d6f64653d6c66732c6e6f757365725f78617474722c636865636b706f696e743d64697361626c652c757365725f78617474722c6673796e635f6d6f64653d7374726963742c6167655f657874656e745f63616368652c646973636172642c6e6f696e6c696e655f64656e7472792c008bfb3c1e4b1b12ae77c937da8858"], 0x1, 0x5505, &(0x7f0000002480)="$eJzs3E1rY9UbAPAn7XTe//Mv4sLdXBiEFiZh0nlBd6PO4At2KKMuXGmapCEzSW5p0rR25cKluPCbiIIrl34GF67diQvFnaDknlud+gJC08ZOfz+4ee45OXnuc8Iw8NxbEsCptZj9/GMlrsSFiJiPiMsRxXmlPAp3U3guIq5GxNwTR6Wc/33ibERcjIgrk+QpZ6V869Pr42u3f3jjp6++OXfm0mdffju7XQOz9nxE9DfT+U4/xbyT4qNyvjHuFrF/a1zG9Eb/cTnOU9xprxcZdhr76xpFvNlJ6/PN7eEkbvQazUnsdDeK+c1BuuBw3NnPU3zgUWOrGLfa60XsDvMidvZSXbt76f+2veEo5WmV+T4o0sdotB/TfHu3nfaz+biIzcGonE9581Z7dxLHZSwvF8281yrqWD/MN/3f9mZ3sL2bjdtbw24+yG7X6i/U6neq9a281R61b1Ub/dadW9lSpzdZVh21G/27nTzv9Nq1Zt5fzpY6zWa1Xs+W7rXXu41BVq/XbtZuVG8vl2fXs1cfvJP1WtnSJL7cHWyPur1htpFvZekTy9lK7eaLy9m1evbW6lq29vD+/dW1t9+79+6Dl1Zff6Vc9JeysqWVGysr1fqN6kp9+RTt/6Oy6CnuHw6lMusCAE4e/T8wC0fX/289jDj6/j/0/1Nxovrf097/H8H+4VD0/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAp9Z3C5+/VpwspvGlcv5/5dQz5bgSEXMR8evfmI+zB3LOl3kW/mH9wp9q+LoSRYbJNc6Vx8WIuFsev/z/qL8FAAAAeHp98eHVT1K3nl4WZ10QxyndtJm7/P6U8lUiYmHx+yllm5u8PDulZMW/7zOxO6VsxQ2s81NKlm65nZlWtn9l/kA4/0SopDB3rOUAAADH4mAncLxdCAAAAMfp41kXwGxUYv9R5v6z4OIv7/94IHjhwAgAAAA4gSqzLgAAAAA4ckX/7/f/AAAA4OmWfv8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAfmPnfm4TB6I4AD8bvLD/tGi1921lb1DGlrDHPUYUkCYoIAfSQhqgBnJLCRFEeBwCEYdIHttK9H2SMxnL/HiD4DAz0gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF26r9aL26vf121zdvt28owGAAAAuGRbrRf1P7PU/9rc/97c+tn0i4goI+LS3H0Un84yR01O9fL8zenz1asa7iLqhMN7TJrrS0T8aa7HH11/CgAAAPBxbZareZqtpz+zoQuiT2nRpvz2N1NeERHV7CFTWnnI+5UprP5+j+N/prR6AWuaKSwtuY1zpb1J/XM/rtpNT5oiNeXFlx2LzDZ2AACgR6Ozpt9ZCAAAAH36N3QBDKOI563M41bgJDXN9t7nsx4AAADwDhVDFwAAAAB0rp7/93T+3975fwAAADCMdP4fAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXdpW68VmuZq3zdnt28kzGgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHhif95RIATCIAz2ru9M5v6HlQZNTU2qQPj4G4MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIA3v/vL/4mpcSaZe20sPY8ka6fG1qmxd24c/WF8/RoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIv9eUmBEAiCKJgz/nfS9z+sJOgZRIiAhkcVtWgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4It+98v/ialxJpk7bSwdjyRrV42tq8beg8bRg/H2bwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIud+3mNo4oDAP5mZmdrq+IaZQ8RUfCgF7vd1tbexIMSPPgnCCHd1titP9ocbCliLt4k515EjyKCEm/9H3JOIJd4y2EPETwrMzuTnfwA118zm+TzgTfvu8Mw7/tmIeQ77yUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACURm9P4iQ7dMZxXJzb3Hu4lPVbh/rM47Xt+axlcVRn0ifDi9UPUbe5RAAAADg7krK+DyHspOsLWR938vo/La/Jav5vnx7HZT1/uO4v+7L2z9ovP+8+vz9QZzxOdtOby8PBpaOptP6/Wc62Z/7yilb+5PN3L0n+hcTvrT43SvPnGX29sfFOOw/P1ZEtAPBPXCz7Iih/H8r6fpOJAXBmtCqFd1n/J51mcwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACow2g1PFnGUQhhvjWJM1t7D5eO6x+vbc+X7dqjR2vhy8k9s1ukIYSby8PBpVpnM9vu3X9we3E4HNytP3gphNDU6G8V07/9wRQXh9DI8xH8R0FcfNmzks/JCBr8oQQAwKmUFi2r63fS9YXsXDQXwh/fHaz/X63EYcr6f/fDa5vVsar1f7+2Gc6+3sqdT3v37j94ffnO4q3BrcHHb1zuv9m/cv3q1eu9/F1JzxsTAAAA/p120ar1fzx3dP3/QiUOU9b/n33T/6I6VqL+P9Zk0a/pTAAAAM62Z1/+/bfomPNRux0+X1xZudsfH/c/Xx4fG0j1bztXtGr9n8w1nRUAAABQh9FqdGD9/0YlDlOu/z/1/Qs/Vu+ZhBDOF+v/F5c+Gd6obzozrY4/J256jgAAADTrfNGq6/9pvv8/3t/yEIcQXntlHBf/BnCq+j9596sfqmNV9/9fqW+KMynujp9H3ndDaHWbzggAAIDT7ImiZcX+r+n6wkc/XXi/bf8/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQN3+DAAA//962D6S")
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r2, 0x0, 0x0)
r3 = open(&(0x7f0000000440)='./file1\x00', 0x84242, 0x1df2a23c5997fa7f)
write$FUSE_CREATE_OPEN(0xffffffffffffffff, &(0x7f0000000180)={0xa0, 0x1c7017ec88f5c5e8, 0x0, {{0x4, 0x3, 0x5, 0x2, 0x2, 0x1, {0x400000080001, 0xff, 0x20fb, 0x8, 0xe, 0xd615, 0x9, 0x1, 0xfffffffd, 0x8000, 0x10, 0x0, 0x0, 0x5, 0x2000001}}, {0x0, 0x11}}}, 0xa0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x22740, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000140)='./control\x00', 0x8)
rmdir(0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendfile(r3, r3, &(0x7f0000000080), 0x7f03)

11.075688495s ago: executing program 1 (id=1153):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2, &(0x7f00000003c0)=ANY=[@ANYBLOB="696f636861727365743d6d616363726f617469616e2c646973636172643d3078303030303030303030303030303030332c6e6f646973636172642c6572726f72733d636f6e74696e75652c696f636861727365743d6d6163637972696c6c69632c0067add4ceec7cb8702b1bb9ec930dabfc165907d7478e0706b00408dc59283f5c0159b8e3c0289dcb182504844ef8e6972cdb3f50680fc9602ed27c1f6b47a91f941f154ae205d34a9b7a7c67efa0c0e2a70251d664fce12ae64a5a521aa83080b7672c4e1566a61a0ade4b6c9d78151053d9fb31c0971007f269f873e14e5fe3c46c0ac2b22d40391ae31d2025dcd947adf76739ae4ecbe3b630040b37e2b09d7816e0b93981de1147532cf2f46d4d4904f68fb43cd165b98ade053b2f9b7918"], 0x1, 0x625c, &(0x7f000000bdc0)="$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")
r1 = open(0x0, 0x64842, 0x86)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0xffffffc2}], 0x1, 0x7800, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x7b)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f00000005c0)={'syz1\x00', {0x0, 0x0, 0x0, 0x448}, 0x0, [0x4fc0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x57b07c7d, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd], [0x0, 0x0, 0x0, 0x7c4f, 0x0, 0x2000000, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7355, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3], [0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x7, 0x4, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x5, 0x0, 0x10, 0xbaf4400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xe04], [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x758, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0xfffffffd, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff8000, 0x0, 0x3, 0x0, 0x0, 0x66, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfffffffc]}, 0x45c)
writev(r2, &(0x7f0000000300)=[{&(0x7f0000000a40)="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", 0x1000}, {&(0x7f0000001a40)="c2f3a88da071d96c72693eb3431ab283e02e0f363a04667af64004fe25072cc8bdec97165b7cd5d3da1b40b282d040be0ac8e3dd5506c17ba5ea29f255230cbfea68c4809c41644dc5c8b675bf747a993b6a25f51f3acc86cba6be4c34e2cd78402771438492d4751b2fcbca206dfe5a20c18a1cb52d11cc980e7237ab298eaa282fb7ff6b605f5188894fd4b12728eb7982052826a1f10a2057340624271c430fc2ace54ef24f4c24f2223a177fd124fb45249912ec79e522d58e131811a06a6ff11acae9329cb8174b75750ed6a3ec7aa65a253a1551a6504b3c81ad34106194508af4a90a", 0xe6}, {&(0x7f0000001c40)="fcbd815ab68b3ab64697ca9e25b5e0bb927240f9842d9c6e7d1ee514b58f43554b32e2791121f4887c33febbb30edaed735efb3f89916e1b4a422d6129d12d1c143f95c6e7dd6712055b21ba42890aff8472f213c520ef67281edd62fd970cc0cb97fd78858ae0d7185720c0b1d4f0ad6fc3943821730f2be6ddb139c3c355490d758dc787ad983d173e7f6ad230ac604768aa4517d960b6a6b359b7d79ebb98b9dd455d8c19f726fe83c9fe5d428597d559e0186f20804e5288e7bc6321fea6c4d925f1", 0xc4}, {&(0x7f0000000200)="b6ac7564e536a21701b6ab4ee0133f998c65696c3f15287fe317b2166e2f01df8d297f14e79de9eac4cc05ce13b4a05389", 0x31}, {&(0x7f0000000280)="3e9ce7e6e91d128b5c2bf133cbe88cc591cc", 0x12}], 0x5)

10.055928738s ago: executing program 6 (id=1154):
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x16, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000100000000000000010000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b6000000b7080000000000007b8af8ff00000000b7080000001000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x39, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

9.797504934s ago: executing program 7 (id=1155):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x7e, &(0x7f0000000300)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x31}, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x0, 0x0, 0x3, 0x0, 0x0, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x29, 0x7f, @broadcast, @rand_addr, {[@timestamp_addr={0x44, 0x1c, 0x0, 0x1, 0x0, [{@multicast2}, {@remote}, {@private=0xa010102}]}, @ssrr={0x89, 0x23, 0x9, [@initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, @private=0xa010100, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, @dev={0xac, 0x14, 0x14, 0x34}, @empty, @empty]}]}}}}}}}, 0x0)

8.800099141s ago: executing program 7 (id=1156):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000440)=0xc0, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'bridge0\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f0000000080)="0b032200e07f14000200475400f6843b", 0x10, 0x0, &(0x7f0000000140)={0x11, 0x18, r1, 0x1, 0x10, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xf}}, 0x14)

8.57031295s ago: executing program 2 (id=1157):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000400), 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a, 0x4})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000580)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000280)={@flat=@binder={0x73622a85, 0x101, 0x1}, @flat=@weak_binder={0x77622a85, 0x1001, 0x3}, @flat=@weak_binder={0x77622a85, 0x1101, 0x3}}, &(0x7f0000000240)={0x0, 0x18, 0x30}}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000700)="56623f5b80d9b1b130f34604fc9dd47a371c29774d10620f1a83d99781b3bab665ffafcabbd87fb92ae27c13a89fce5bfb1f6eddca176459c16cb7bffc8af3cc13590a006adab3ba678c93a81f0f16db"})

8.520432476s ago: executing program 7 (id=1158):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000580), 0x802, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040), 0x0, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000540)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

8.361904016s ago: executing program 2 (id=1159):
socket$inet_tcp(0x2, 0x1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@updpolicy={0xb8, 0x14, 0x1, 0x0, 0x0, {{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x0, 0x0, 0x100000000, 0xca8}, {}, 0x0, 0x0, 0x1}}, 0xb8}}, 0x0)

7.52000571s ago: executing program 7 (id=1160):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x50)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2002b08030300ecff3f0000", 0x1c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8c}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket(0x11, 0x2, 0x10001)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000280)=ANY=[@ANYBLOB="40000000100005ff00000008000000000000004a", @ANYRES32=0x0, @ANYBLOB="6f77000000000000140012800b0001006261746164760000040002800a000100"], 0x40}, 0x1, 0x0, 0x0, 0x80}, 0x20000840)
getpid()
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x62)
listxattr(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4000000}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_open_dev$evdev(0x0, 0x0, 0x0)
syz_usb_connect$lan78xx(0x3, 0x3f, &(0x7f0000000540)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0x424, 0x7850, 0x0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xfffffffffffffefa}}]}}, 0x0)

7.438243453s ago: executing program 8 (id=652):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x2800000, &(0x7f0000000380)={[{@debug}, {@delalloc}, {@journal_ioprio}, {@test_dummy_encryption}, {@nodiscard}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@acl}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x1, 0xbb4, &(0x7f00000017c0)="$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")
r0 = syz_open_dev$evdev(&(0x7f0000001f80), 0x34, 0x181002)
ioctl$EVIOCGKEYCODE(r0, 0x80084504, &(0x7f0000000140)=""/106)

7.239859619s ago: executing program 2 (id=1161):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000280)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='`\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000007000000080001006e00000008000300", @ANYRES32=r3, @ANYBLOB="0c0099000000000000000000050053000100000014000400776c616e310000000000000000000000140006"], 0x60}}, 0x800)

7.204810801s ago: executing program 5 (id=1162):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syncfs(r0)
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f00000700"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0x6c}, [@ldst={0x7}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x48)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00'})
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@updpolicy={0x13c, 0x19, 0x1, 0x0, 0x0, {{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x0, 0x0, 0x100000000, 0xca8}, {}, 0x0, 0x0, 0x1}, [@tmpl={0x84, 0x5, [{{@in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x0, 0x6c}, 0x0, @in=@local, 0x0, 0x0, 0x0, 0x80}, {{@in6=@mcast1, 0x0, 0x32}, 0xa, @in6=@private1, 0x0, 0x4, 0x0, 0x2}]}]}, 0x13c}}, 0x0)

5.933758493s ago: executing program 5 (id=1163):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x87)
connect$inet6(r3, &(0x7f0000000500)={0xa, 0xfffd, 0x0, @loopback, 0x5}, 0x1c)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000440), 0x1000a)
sendfile(r3, r4, &(0x7f0000000000)=0x5, 0x20001)
socket$inet6_udp(0xa, 0x2, 0x0)
r5 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f00000006c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x2a8, 0x0, 0x940c, 0x3002, 0x0, 0x2c0, 0x328, 0x3d8, 0x3d8, 0x328, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0xa8, 0xf0, 0x4001}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x1, 0xbe, {0x565159d7}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x308)
accept$inet6(r3, &(0x7f0000000300)={0xa, 0x0, 0x0, @mcast2}, &(0x7f0000000580)=0x1c)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYRES32, @ANYBLOB, @ANYBLOB], 0x50)
listen(0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x759, &(0x7f0000000c00)={[{@noload}, {@noblock_validity}, {@discard}, {@errors_remount}, {@discard, 0x0}, {@noauto_da_alloc}, {@noload}, {@journal_checksum}, {@mblk_io_submit}, {@noacl}, {@journal_dev={'journal_dev', 0x3d, 0x4}}, {@test_dummy_encryption_v1}, {@journal_dev={'journal_dev', 0x3d, 0x765}}, {@norecovery}, {@nobarrier}, {@data_writeback}, {@nombcache}], [{@audit}, {@uid_lt}], 0x2c}, 0x2, 0x4f8, &(0x7f0000000700)="$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")

4.168290559s ago: executing program 2 (id=1164):
openat$ppp(0xffffffffffffff9c, 0x0, 0x40082, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)=ANY=[], 0x50)
sched_setaffinity(0x0, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$printer(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x40000000000001, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000000), 0x0, 0x0)
read$msr(r0, &(0x7f0000019780)=""/102400, 0x19000)
socket$inet6_udp(0xa, 0x2, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000100), 0x1c3902, 0x0)
sendfile(r1, r1, 0x0, 0x20003f)
connect$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
r2 = accept(0xffffffffffffffff, 0x0, &(0x7f0000000000))
setsockopt$SO_TIMESTAMP(r2, 0x1, 0x0, 0x0, 0x0)
r3 = syz_open_dev$MSR(0x0, 0x0, 0x0)
read$msr(r3, &(0x7f0000032680)=""/102392, 0x18ff8)
mount(0x0, 0x0, &(0x7f0000000080)='squashfs\x00', 0x0, 0x0)

3.833138631s ago: executing program 5 (id=1165):
socket$inet6_mptcp(0xa, 0x1, 0x106)
syz_emit_ethernet(0x4e, &(0x7f00000003c0)=ANY=[], 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='loginuid\x00')
write$midi(r1, 0x0, 0x0)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, r1}, 0x10)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000001380)='./file1\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="636865636b706f696e743d64697361626c652c6261636b67726f756e645f67633d73796e632c61636c2c616c6c6f635f6d6f64653d72657573652c696e6c696e655f78617474722c6e6f666c7573685f6d657267652c6d6f64653d6c66732c6e6f757365725f78617474722c636865636b706f696e743d64697361626c652c757365725f78617474722c6673796e635f6d6f64653d7374726963742c6167655f657874656e745f63616368652c646973636172642c6e6f696e6c696e655f64656e7472792c008bfb3c1e4b1b12ae77c937da8858"], 0x1, 0x5505, &(0x7f0000002480)="$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")
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r2, 0x0, 0x0)
r3 = open(&(0x7f0000000440)='./file1\x00', 0x84242, 0x1df2a23c5997fa7f)
write$FUSE_CREATE_OPEN(0xffffffffffffffff, &(0x7f0000000180)={0xa0, 0x1c7017ec88f5c5e8, 0x0, {{0x4, 0x3, 0x5, 0x2, 0x2, 0x1, {0x400000080001, 0xff, 0x20fb, 0x8, 0xe, 0xd615, 0x9, 0x1, 0xfffffffd, 0x8000, 0x10, 0x0, 0x0, 0x5, 0x2000001}}, {0x0, 0x11}}}, 0xa0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x22740, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000140)='./control\x00', 0x8)
rmdir(&(0x7f0000000280)='./control\x00')
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendfile(r3, r3, 0x0, 0x7f03)

3.71639039s ago: executing program 6 (id=1166):
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0xfffffff9)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/56, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1)

3.325812411s ago: executing program 8 (id=1167):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x0, &(0x7f0000003000))
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000))
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x101042, 0x40)
symlinkat(&(0x7f0000000000)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00')
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
linkat(0xffffffffffffff9c, &(0x7f00000006c0)='./file2\x00', 0xffffffffffffff9c, &(0x7f0000000700)='./file7\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@index_on}, {@metacopy_on}]})
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f0000000240)='./bus\x00', 0x322020, &(0x7f0000000240)=ANY=[], 0x1, 0x0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file7\x00', 0xffffffffffffff9c, &(0x7f00000007c0)='./file1\x00', 0x0)

2.816273677s ago: executing program 7 (id=1168):
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
ustat(0x801, 0x0)

2.28181929s ago: executing program 1 (id=1169):
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
socket$nl_xfrm(0x10, 0x3, 0x6)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, 0x0)
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2182, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000080)={'wg1\x00', &(0x7f0000000040)=@ethtool_sset_info={0x51}})

397.548052ms ago: executing program 7 (id=1170):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000400), 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a, 0x4})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000580)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000280)={@flat=@binder={0x73622a85, 0x101, 0x1}, @flat=@weak_binder={0x77622a85, 0x1001, 0x3}, @flat=@weak_binder={0x77622a85, 0x1101, 0x3}}, &(0x7f0000000240)={0x0, 0x18, 0x30}}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000700)="56623f5b80d9b1b130f34604fc9dd47a371c29774d10620f1a83d99781b3bab665ffafcabbd87fb92ae27c13a89fce5bfb1f6eddca176459c16cb7bffc8af3cc13590a006adab3ba678c93a81f0f16db"})

393.364489ms ago: executing program 5 (id=1171):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x8, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000280)={0x1, &(0x7f0000000780)=[{0x200000000006, 0xf, 0x6, 0x7ffc1ffb}]})
r2 = timerfd_create(0x0, 0x80000)
timerfd_gettime(r2, &(0x7f0000000040))

0s ago: executing program 2 (id=1172):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='sched_switch\x00', r4}, 0x18)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f0000000c00)=@filter={'filter\x00', 0x42, 0x4, 0x558, 0xffffffff, 0x3d8, 0x98, 0x98, 0xffffffff, 0xffffffff, 0x4c0, 0x4c0, 0x4c0, 0xffffffff, 0x4, 0x0, {[{{@ip={@private=0xa010100, @multicast2, 0xff000000, 0x0, 'nr0\x00', 'pimreg\x00', {}, {}, 0xe9, 0x3, 0x28}, 0x3e020000, 0x70, 0x98, 0x0, {0x88000000}}, @REJECT={0x28}}, {{@uncond, 0x0, 0x318, 0x340, 0x0, {0x122}, [@common=@inet=@hashlimit3={{0x158}, {'ip_vti0\x00', {0x80, 0x1, 0x1e, 0x3, 0xffff61e9, 0x1, 0x9, 0x3, 0x80, 0x80}, {0x7}}}, @common=@inet=@hashlimit2={{0x150}, {'macsec0\x00', {0x1, 0xe0b6, 0x54, 0x40f, 0xf, 0x1000, 0x1000, 0x78}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00', 0x0, {0x2}}}, {{@uncond, 0x0, 0xc0, 0xe8, 0x0, {}, [@common=@osf={{0x50}, {'syz0\x00'}}]}, @REJECT={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x5b8)
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f0000000180))
rt_sigsuspend(0x0, 0x0)

kernel console output (not intermixed with test programs):

515] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  688.212985][ T6067] bridge0: port 1(bridge_slave_0) entered blocking state
[  688.220182][ T6067] bridge0: port 1(bridge_slave_0) entered forwarding state
[  688.250474][T10515] EXT4-fs (loop5): 2 truncates cleaned up
[  688.258149][T10515] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  688.290661][ T6067] bridge0: port 2(bridge_slave_1) entered blocking state
[  688.297844][ T6067] bridge0: port 2(bridge_slave_1) entered forwarding state
[  688.962550][ T5846] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  690.029211][T10331] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  690.120919][T10540] netlink: 68 bytes leftover after parsing attributes in process `syz.1.924'.
[  690.380158][T10331] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  690.464229][T10331] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  691.281074][T10331] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  691.968231][T10559] loop5: detected capacity change from 0 to 40427
[  692.589000][ T5845] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  692.602625][T10559] F2FS-fs (loop5): invalid crc value
[  692.678724][ T5845] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  692.706582][ T5845] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  692.715030][ T5845] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  692.724054][ T5845] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  692.915428][T10559] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  692.926145][T10559] F2FS-fs (loop5): Start checkpoint disabled!
[  692.947464][T10559] F2FS-fs (loop5): f2fs_disable_checkpoint() finish, err:0
[  692.957742][T10559] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  693.272937][   T30] audit: type=1800 audit(1759829393.161:276): pid=10559 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.926" name="file1" dev="loop5" ino=10 res=0 errno=0
[  694.152464][ T6076] kworker/u8:15: attempt to access beyond end of device
[  694.152464][ T6076] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  694.180085][   T30] audit: type=1804 audit(1759829393.161:277): pid=10559 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.926" name="/newroot/255/file1/file1" dev="loop5" ino=10 res=1 errno=0
[  694.266774][ T6076] CPU: 1 UID: 0 PID: 6076 Comm: kworker/u8:15 Not tainted syzkaller #0 PREEMPT(full) 
[  694.266821][ T6076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  694.266845][ T6076] Workqueue: writeback wb_workfn (flush-7:5)
[  694.266909][ T6076] Call Trace:
[  694.266921][ T6076]  <TASK>
[  694.266934][ T6076]  dump_stack_lvl+0x16c/0x1f0
[  694.266991][ T6076]  f2fs_handle_critical_error+0x624/0x9f0
[  694.267038][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.267081][ T6076]  ? f2fs_build_fault_attr+0x53/0x1f0
[  694.267128][ T6076]  f2fs_write_end_io+0x958/0xcf0
[  694.267179][ T6076]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  694.267232][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.267285][ T6076]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  694.267330][ T6076]  bio_endio+0x713/0x860
[  694.267387][ T6076]  submit_bio_noacct+0x306/0x1f60
[  694.267440][ T6076]  __submit_merged_bio+0x33c/0x770
[  694.267492][ T6076]  __submit_merged_write_cond+0x319/0x3f0
[  694.267557][ T6076]  f2fs_write_cache_pages+0x2067/0x2570
[  694.267640][ T6076]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  694.267697][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.267742][ T6076]  ? __lock_acquire+0x62e/0x1ce0
[  694.267793][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.267837][ T6076]  ? __lock_acquire+0x62e/0x1ce0
[  694.267901][ T6076]  ? lock_acquire+0x179/0x350
[  694.267950][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.268014][ T6076]  ? ret_from_fork_asm+0x1a/0x30
[  694.268103][ T6076]  ? __pfx_stack_trace_save+0x10/0x10
[  694.268141][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.268206][ T6076]  ? stack_depot_save_flags+0x29/0x9c0
[  694.268265][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.268306][ T6076]  ? __lock_acquire+0x62e/0x1ce0
[  694.268349][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.268401][ T6076]  f2fs_write_data_pages+0x4ad/0xd90
[  694.268465][ T6076]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  694.268517][ T6076]  ? worker_thread+0x6c8/0xf10
[  694.268585][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.268629][ T6076]  ? __lock_acquire+0xb97/0x1ce0
[  694.268674][ T6076]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  694.268732][ T6076]  do_writepages+0x27a/0x600
[  694.268782][ T6076]  ? __pfx_do_writepages+0x10/0x10
[  694.268824][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.268867][ T6076]  ? reacquire_held_locks+0xcd/0x1f0
[  694.268910][ T6076]  ? writeback_sb_inodes+0x3b0/0xfa0
[  694.268969][ T6076]  __writeback_single_inode+0x160/0xfb0
[  694.269025][ T6076]  ? __pfx___writeback_single_inode+0x10/0x10
[  694.269078][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.269121][ T6076]  ? do_raw_spin_unlock+0x172/0x230
[  694.269173][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.269224][ T6076]  writeback_sb_inodes+0x60d/0xfa0
[  694.269300][ T6076]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  694.269350][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.269393][ T6076]  ? find_held_lock+0x2b/0x80
[  694.269513][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.269565][ T6076]  ? rcu_is_watching+0x12/0xc0
[  694.269623][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.269665][ T6076]  ? queue_io+0x3f6/0x520
[  694.269716][ T6076]  wb_writeback+0x419/0xb70
[  694.269779][ T6076]  ? __pfx_wb_writeback+0x10/0x10
[  694.269829][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.269885][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.269928][ T6076]  ? mark_held_locks+0x49/0x80
[  694.269978][ T6076]  wb_workfn+0x14d/0xbe0
[  694.270042][ T6076]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  694.270094][ T6076]  ? __pfx_wb_workfn+0x10/0x10
[  694.270153][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.270201][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.270249][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.270293][ T6076]  ? rcu_is_watching+0x12/0xc0
[  694.270357][ T6076]  process_one_work+0x9cf/0x1b70
[  694.270426][ T6076]  ? __pfx_process_one_work+0x10/0x10
[  694.270476][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.270535][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.270577][ T6076]  ? assign_work+0x1a0/0x250
[  694.270628][ T6076]  worker_thread+0x6c8/0xf10
[  694.270700][ T6076]  ? __pfx_worker_thread+0x10/0x10
[  694.270749][ T6076]  kthread+0x3c5/0x780
[  694.270797][ T6076]  ? __pfx_kthread+0x10/0x10
[  694.270845][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  694.270888][ T6076]  ? rcu_is_watching+0x12/0xc0
[  694.270944][ T6076]  ? __pfx_kthread+0x10/0x10
[  694.270992][ T6076]  ret_from_fork+0x56d/0x730
[  694.271033][ T6076]  ? __pfx_kthread+0x10/0x10
[  694.271080][ T6076]  ret_from_fork_asm+0x1a/0x30
[  694.271153][ T6076]  </TASK>
[  694.806193][T10331] 8021q: adding VLAN 0 to HW filter on device bond0
[  694.824255][T10331] 8021q: adding VLAN 0 to HW filter on device team0
[  694.864370][T10331] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  694.874790][T10331] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  694.903199][ T6088] bridge0: port 1(bridge_slave_0) entered blocking state
[  694.910383][ T6088] bridge0: port 1(bridge_slave_0) entered forwarding state
[  694.940799][ T6088] bridge0: port 2(bridge_slave_1) entered blocking state
[  694.947987][ T6088] bridge0: port 2(bridge_slave_1) entered forwarding state
[  695.023933][ T6076] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  695.202491][ T5845] Bluetooth: hci0: command tx timeout
[  695.381231][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  695.389050][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  696.678234][T10191] 8021q: adding VLAN 0 to HW filter on device batadv0
[  697.074550][T10612] loop1: detected capacity change from 0 to 512
[  697.135704][T10612] EXT4-fs error (device loop1): ext4_validate_block_bitmap:440: comm syz.1.933: bg 0: block 393: padding at end of block bitmap is not set
[  697.158899][T10612] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  697.219880][T10612] EXT4-fs (loop1): 2 truncates cleaned up
[  697.227870][T10612] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  697.268704][T10331] 8021q: adding VLAN 0 to HW filter on device batadv0
[  697.371237][ T5845] Bluetooth: hci0: command tx timeout
[  698.269968][T10624] netlink: 60 bytes leftover after parsing attributes in process `syz.5.935'.
[  699.203636][ T5843] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  699.587988][ T5845] Bluetooth: hci0: command tx timeout
[  700.216683][T10558] chnl_net:caif_netlink_parms(): no params data found
[  700.547714][ T6092] bridge_slave_1: left allmulticast mode
[  700.568834][ T6092] bridge_slave_1: left promiscuous mode
[  700.609707][ T6092] bridge0: port 2(bridge_slave_1) entered disabled state
[  701.203078][T10655] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  701.485976][ T6092] bridge_slave_0: left allmulticast mode
[  701.501425][ T6092] bridge_slave_0: left promiscuous mode
[  701.507227][ T6092] bridge0: port 1(bridge_slave_0) entered disabled state
[  701.610737][ T5845] Bluetooth: hci0: command tx timeout
[  702.157663][ T6092] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  702.173200][ T6092] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  702.188306][ T6092] bond0 (unregistering): Released all slaves
[  702.341446][ T6092] hsr_slave_0: left promiscuous mode
[  702.347674][ T6092] hsr_slave_1: left promiscuous mode
[  702.353894][ T6092] batman_adv: batadv0: Removing interface: batadv_slave_0
[  702.366833][ T6092] batman_adv: batadv0: Removing interface: batadv_slave_1
[  703.194939][T10679] loop1: detected capacity change from 0 to 40427
[  703.880407][T10679] F2FS-fs (loop1): invalid crc value
[  703.993230][T10679] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  704.018377][T10679] F2FS-fs (loop1): Start checkpoint disabled!
[  704.027242][T10679] F2FS-fs (loop1): f2fs_disable_checkpoint() finish, err:0
[  704.041340][T10679] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  704.098653][   T30] audit: type=1800 audit(1759829404.191:278): pid=10679 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.941" name="file1" dev="loop1" ino=10 res=0 errno=0
[  704.146262][   T30] audit: type=1804 audit(1759829404.221:279): pid=10679 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.941" name="/newroot/240/file1/file1" dev="loop1" ino=10 res=1 errno=0
[  704.695714][ T6076] kworker/u8:15: attempt to access beyond end of device
[  704.695714][ T6076] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  705.000178][ T6076] CPU: 1 UID: 0 PID: 6076 Comm: kworker/u8:15 Not tainted syzkaller #0 PREEMPT(full) 
[  705.000231][ T6076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  705.000255][ T6076] Workqueue: writeback wb_workfn (flush-7:1)
[  705.000320][ T6076] Call Trace:
[  705.000332][ T6076]  <TASK>
[  705.000345][ T6076]  dump_stack_lvl+0x16c/0x1f0
[  705.000402][ T6076]  f2fs_handle_critical_error+0x624/0x9f0
[  705.000447][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.000491][ T6076]  ? f2fs_build_fault_attr+0x53/0x1f0
[  705.000544][ T6076]  f2fs_write_end_io+0x958/0xcf0
[  705.000598][ T6076]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  705.000652][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.000707][ T6076]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  705.000753][ T6076]  bio_endio+0x713/0x860
[  705.000812][ T6076]  submit_bio_noacct+0x306/0x1f60
[  705.000868][ T6076]  __submit_merged_bio+0x33c/0x770
[  705.000922][ T6076]  __submit_merged_write_cond+0x319/0x3f0
[  705.000984][ T6076]  f2fs_write_cache_pages+0x2067/0x2570
[  705.001074][ T6076]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  705.001131][ T6076]  ? __kernel_text_address+0xd/0x40
[  705.001181][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.001224][ T6076]  ? unwind_get_return_address+0x59/0xa0
[  705.001278][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.001320][ T6076]  ? arch_stack_walk+0x88/0x100
[  705.001384][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.001427][ T6076]  ? __lock_acquire+0x62e/0x1ce0
[  705.001492][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.001611][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.001652][ T6076]  ? lock_acquire+0x179/0x350
[  705.001702][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.001753][ T6076]  f2fs_write_data_pages+0x4ad/0xd90
[  705.001815][ T6076]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  705.001880][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.001922][ T6076]  ? __lock_acquire+0xb97/0x1ce0
[  705.001966][ T6076]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  705.002021][ T6076]  do_writepages+0x27a/0x600
[  705.002072][ T6076]  ? __pfx_do_writepages+0x10/0x10
[  705.002111][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.002152][ T6076]  ? reacquire_held_locks+0xcd/0x1f0
[  705.002193][ T6076]  ? writeback_sb_inodes+0x3b0/0xfa0
[  705.002251][ T6076]  __writeback_single_inode+0x160/0xfb0
[  705.002306][ T6076]  ? __pfx___writeback_single_inode+0x10/0x10
[  705.002355][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.002396][ T6076]  ? do_raw_spin_unlock+0x172/0x230
[  705.002446][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.002495][ T6076]  writeback_sb_inodes+0x60d/0xfa0
[  705.002579][ T6076]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  705.002632][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.002673][ T6076]  ? do_raw_spin_unlock+0x172/0x230
[  705.002793][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.002833][ T6076]  ? rcu_is_watching+0x12/0xc0
[  705.002888][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.002929][ T6076]  ? queue_io+0x3f6/0x520
[  705.002979][ T6076]  wb_writeback+0x419/0xb70
[  705.003042][ T6076]  ? __pfx_wb_writeback+0x10/0x10
[  705.003088][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.003144][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.003185][ T6076]  ? mark_held_locks+0x49/0x80
[  705.003234][ T6076]  wb_workfn+0x14d/0xbe0
[  705.003291][ T6076]  ? try_to_wake_up+0x160/0x1870
[  705.003346][ T6076]  ? __pfx_wb_workfn+0x10/0x10
[  705.003402][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.003448][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.003500][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.003550][ T6076]  ? rcu_is_watching+0x12/0xc0
[  705.003618][ T6076]  process_one_work+0x9cf/0x1b70
[  705.003687][ T6076]  ? __pfx_batadv_mcast_mla_update+0x10/0x10
[  705.003731][ T6076]  ? __pfx_process_one_work+0x10/0x10
[  705.003780][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.003835][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.003875][ T6076]  ? assign_work+0x1a0/0x250
[  705.003926][ T6076]  worker_thread+0x6c8/0xf10
[  705.003999][ T6076]  ? __pfx_worker_thread+0x10/0x10
[  705.004047][ T6076]  kthread+0x3c5/0x780
[  705.004093][ T6076]  ? __pfx_kthread+0x10/0x10
[  705.004140][ T6076]  ? srso_alias_return_thunk+0x5/0xfbef5
[  705.004181][ T6076]  ? rcu_is_watching+0x12/0xc0
[  705.004236][ T6076]  ? __pfx_kthread+0x10/0x10
[  705.004283][ T6076]  ret_from_fork+0x56d/0x730
[  705.004323][ T6076]  ? __pfx_kthread+0x10/0x10
[  705.004369][ T6076]  ret_from_fork_asm+0x1a/0x30
[  705.004445][ T6076]  </TASK>
[  705.004458][ T6076] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  705.304652][ T5850] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  705.474414][ T5850] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  705.485368][ T5850] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  705.506843][ T5850] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  705.515247][ T5850] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  705.675534][ T6092] team0 (unregistering): Port device team_slave_1 removed
[  705.734730][ T6092] team0 (unregistering): Port device team_slave_0 removed
[  705.753763][T10708] fuse: Bad value for 'group_id'
[  705.758815][T10708] fuse: Bad value for 'group_id'
[  706.256755][T10558] bridge0: port 1(bridge_slave_0) entered blocking state
[  706.265342][T10558] bridge0: port 1(bridge_slave_0) entered disabled state
[  706.272713][T10558] bridge_slave_0: entered allmulticast mode
[  706.281210][T10558] bridge_slave_0: entered promiscuous mode
[  706.291570][T10558] bridge0: port 2(bridge_slave_1) entered blocking state
[  706.298778][T10558] bridge0: port 2(bridge_slave_1) entered disabled state
[  706.327073][T10558] bridge_slave_1: entered allmulticast mode
[  706.349496][T10558] bridge_slave_1: entered promiscuous mode
[  707.260248][T10558] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  707.398119][T10558] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  707.677047][ T5845] Bluetooth: hci1: command tx timeout
[  708.201664][T10331] veth0_vlan: entered promiscuous mode
[  708.427975][T10558] team0: Port device team_slave_0 added
[  708.736096][T10558] team0: Port device team_slave_1 added
[  709.432640][T10331] veth1_vlan: entered promiscuous mode
[  709.690228][ T5845] Bluetooth: hci1: command tx timeout
[  709.807840][T10558] batman_adv: batadv0: Adding interface: batadv_slave_0
[  709.843933][T10558] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  709.910064][T10558] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  709.937088][T10558] batman_adv: batadv0: Adding interface: batadv_slave_1
[  709.950158][T10558] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  709.976569][T10558] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  710.513429][T10732] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  710.879912][T10705] chnl_net:caif_netlink_parms(): no params data found
[  711.028781][T10331] veth0_macvtap: entered promiscuous mode
[  712.342161][ T5845] Bluetooth: hci1: command tx timeout
[  712.733180][T10558] hsr_slave_0: entered promiscuous mode
[  712.791135][T10558] hsr_slave_1: entered promiscuous mode
[  713.244025][T10766] netlink: 104 bytes leftover after parsing attributes in process `syz.5.959'.
[  714.137150][T10331] veth1_macvtap: entered promiscuous mode
[  714.192176][T10331] batman_adv: batadv0: Interface activated: batadv_slave_0
[  714.510217][ T5845] Bluetooth: hci1: command tx timeout
[  714.606921][T10776] loop5: detected capacity change from 0 to 256
[  714.831760][T10331] batman_adv: batadv0: Interface activated: batadv_slave_1
[  714.898181][T10776] FAT-fs (loop5): Directory bread(block 64) failed
[  714.942853][T10776] FAT-fs (loop5): Directory bread(block 65) failed
[  714.949508][T10776] FAT-fs (loop5): Directory bread(block 66) failed
[  714.959433][T10776] FAT-fs (loop5): Directory bread(block 67) failed
[  714.976407][T10776] FAT-fs (loop5): Directory bread(block 68) failed
[  714.988427][T10776] FAT-fs (loop5): Directory bread(block 69) failed
[  714.995821][T10776] FAT-fs (loop5): Directory bread(block 70) failed
[  715.002970][T10776] FAT-fs (loop5): Directory bread(block 71) failed
[  715.013290][T10776] FAT-fs (loop5): Directory bread(block 72) failed
[  715.019910][T10776] FAT-fs (loop5): Directory bread(block 73) failed
[  716.504057][T10791] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  716.590403][ T5991] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  716.620190][ T5991] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  716.680209][ T6088] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  716.981862][T10798] loop1: detected capacity change from 0 to 2048
[  717.328418][T10798] NILFS (loop1): invalid segment: Inconsistency found
[  717.610481][T10798] NILFS (loop1): trying rollback from an earlier position
[  717.649929][T10798] NILFS (loop1): recovery complete
[  717.722754][T10805] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  717.957399][ T6088] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  717.971085][T10705] bridge0: port 1(bridge_slave_0) entered blocking state
[  717.978222][T10705] bridge0: port 1(bridge_slave_0) entered disabled state
[  717.987203][T10705] bridge_slave_0: entered allmulticast mode
[  717.996649][T10705] bridge_slave_0: entered promiscuous mode
[  718.954132][T10705] bridge0: port 2(bridge_slave_1) entered blocking state
[  718.961405][T10705] bridge0: port 2(bridge_slave_1) entered disabled state
[  718.968591][T10705] bridge_slave_1: entered allmulticast mode
[  718.977469][T10705] bridge_slave_1: entered promiscuous mode
[  719.336702][T10822] loop5: detected capacity change from 0 to 512
[  719.471474][T10822] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e01c, mo2=0002]
[  719.489762][T10822] System zones: 1-12
[  719.565616][T10822] EXT4-fs error (device loop5): ext4_free_branches:1020: inode #13: comm syz.5.973: invalid indirect mapped block 1819239214 (level 1)
[  719.625200][T10822] EXT4-fs error (device loop5): ext4_validate_block_bitmap:440: comm syz.5.973: bg 0: block 361: padding at end of block bitmap is not set
[  719.654598][T10822] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  719.911479][T10822] EXT4-fs error (device loop5): ext4_clear_blocks:874: inode #13: comm syz.5.973: attempt to clear invalid blocks 33619980 len 1
[  720.082034][T10822] EXT4-fs error (device loop5): ext4_free_branches:1020: inode #13: comm syz.5.973: invalid indirect mapped block 1819239214 (level 0)
[  720.299142][T10822] EXT4-fs (loop5): 1 truncate cleaned up
[  720.443005][T10822] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  720.539040][T10705] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  720.958521][ T5846] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  721.322802][T10705] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  721.948669][T10705] team0: Port device team_slave_0 added
[  721.987263][T10705] team0: Port device team_slave_1 added
[  722.651915][T10853] loop5: detected capacity change from 0 to 40427
[  722.700429][T10853] F2FS-fs (loop5): invalid crc value
[  722.717941][ T6092] bridge_slave_1: left allmulticast mode
[  722.800426][T10853] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  722.818605][T10853] F2FS-fs (loop5): Start checkpoint disabled!
[  722.826183][T10853] F2FS-fs (loop5): f2fs_disable_checkpoint() finish, err:0
[  722.836565][T10853] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  722.956205][ T6092] bridge_slave_1: left promiscuous mode
[  723.001765][ T6092] bridge0: port 2(bridge_slave_1) entered disabled state
[  723.010588][   T30] audit: type=1800 audit(1759829422.971:280): pid=10853 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.980" name="file1" dev="loop5" ino=10 res=0 errno=0
[  723.121439][ T6092] bridge_slave_0: left allmulticast mode
[  723.153335][   T30] audit: type=1804 audit(1759829422.971:281): pid=10853 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.980" name="/newroot/269/file1/file1" dev="loop5" ino=10 res=1 errno=0
[  723.185250][ T6092] bridge_slave_0: left promiscuous mode
[  723.195632][ T6092] bridge0: port 1(bridge_slave_0) entered disabled state
[  723.913686][ T5991] kworker/u8:8: attempt to access beyond end of device
[  723.913686][ T5991] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  724.038395][ T5991] CPU: 0 UID: 0 PID: 5991 Comm: kworker/u8:8 Not tainted syzkaller #0 PREEMPT(full) 
[  724.038444][ T5991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  724.038470][ T5991] Workqueue: writeback wb_workfn (flush-7:5)
[  724.038537][ T5991] Call Trace:
[  724.038549][ T5991]  <TASK>
[  724.038563][ T5991]  dump_stack_lvl+0x16c/0x1f0
[  724.038619][ T5991]  f2fs_handle_critical_error+0x624/0x9f0
[  724.038666][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.038709][ T5991]  ? f2fs_build_fault_attr+0x53/0x1f0
[  724.038757][ T5991]  f2fs_write_end_io+0x958/0xcf0
[  724.038809][ T5991]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  724.038868][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.038924][ T5991]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  724.038969][ T5991]  bio_endio+0x713/0x860
[  724.039029][ T5991]  submit_bio_noacct+0x306/0x1f60
[  724.039086][ T5991]  __submit_merged_bio+0x33c/0x770
[  724.039140][ T5991]  __submit_merged_write_cond+0x319/0x3f0
[  724.039202][ T5991]  f2fs_write_cache_pages+0x2067/0x2570
[  724.039292][ T5991]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  724.039356][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.039401][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.039444][ T5991]  ? find_held_lock+0x2b/0x80
[  724.039503][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.039552][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.039594][ T5991]  ? do_raw_spin_unlock+0x172/0x230
[  724.039666][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.039708][ T5991]  ? f2fs_available_free_memory+0x279/0xa30
[  724.039860][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.039914][ T5991]  f2fs_write_data_pages+0x4ad/0xd90
[  724.039979][ T5991]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  724.040048][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.040091][ T5991]  ? __lock_acquire+0xb97/0x1ce0
[  724.040135][ T5991]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  724.040193][ T5991]  do_writepages+0x27a/0x600
[  724.040243][ T5991]  ? __pfx_do_writepages+0x10/0x10
[  724.040283][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.040324][ T5991]  ? reacquire_held_locks+0xcd/0x1f0
[  724.040371][ T5991]  ? writeback_sb_inodes+0x3b0/0xfa0
[  724.040430][ T5991]  __writeback_single_inode+0x160/0xfb0
[  724.040488][ T5991]  ? __pfx___writeback_single_inode+0x10/0x10
[  724.040540][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.040582][ T5991]  ? do_raw_spin_unlock+0x172/0x230
[  724.040633][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.040685][ T5991]  writeback_sb_inodes+0x60d/0xfa0
[  724.040765][ T5991]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  724.040818][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.040861][ T5991]  ? mark_held_locks+0x49/0x80
[  724.040977][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.041020][ T5991]  ? rcu_is_watching+0x12/0xc0
[  724.041077][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.041119][ T5991]  ? queue_io+0x3f6/0x520
[  724.041170][ T5991]  wb_writeback+0x419/0xb70
[  724.041236][ T5991]  ? __pfx_wb_writeback+0x10/0x10
[  724.041284][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.041348][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.041390][ T5991]  ? mark_held_locks+0x49/0x80
[  724.041442][ T5991]  wb_workfn+0x14d/0xbe0
[  724.041501][ T5991]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  724.041553][ T5991]  ? __pfx_wb_workfn+0x10/0x10
[  724.041612][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.041661][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.041710][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.041752][ T5991]  ? rcu_is_watching+0x12/0xc0
[  724.041819][ T5991]  process_one_work+0x9cf/0x1b70
[  724.041893][ T5991]  ? __pfx_process_one_work+0x10/0x10
[  724.041943][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.042001][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.042044][ T5991]  ? assign_work+0x1a0/0x250
[  724.042096][ T5991]  worker_thread+0x6c8/0xf10
[  724.042159][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.042204][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.042246][ T5991]  ? __kthread_parkme+0x19e/0x250
[  724.042282][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.042328][ T5991]  ? __pfx_worker_thread+0x10/0x10
[  724.042383][ T5991]  kthread+0x3c5/0x780
[  724.042430][ T5991]  ? __pfx_kthread+0x10/0x10
[  724.042479][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.042521][ T5991]  ? rcu_is_watching+0x12/0xc0
[  724.042578][ T5991]  ? __pfx_kthread+0x10/0x10
[  724.042627][ T5991]  ret_from_fork+0x56d/0x730
[  724.042668][ T5991]  ? __pfx_kthread+0x10/0x10
[  724.042715][ T5991]  ret_from_fork_asm+0x1a/0x30
[  724.042793][ T5991]  </TASK>
[  725.440309][ T5991] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  725.784076][ T6092] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  725.805661][ T6092] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  725.824298][ T6092] bond0 (unregistering): Released all slaves
[  725.872985][T10705] batman_adv: batadv0: Adding interface: batadv_slave_0
[  725.880289][T10705] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  725.920069][T10705] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  725.959941][ T6092] hsr_slave_0: left promiscuous mode
[  725.967941][ T6092] hsr_slave_1: left promiscuous mode
[  725.974686][ T6092] batman_adv: batadv0: Removing interface: batadv_slave_0
[  726.041890][ T6092] batman_adv: batadv0: Removing interface: batadv_slave_1
[  728.527684][ T5850] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  728.542895][ T5850] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  728.577436][ T5850] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  728.585757][ T5850] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  728.593924][ T5850] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  728.697958][ T6092] team0 (unregistering): Port device team_slave_1 removed
[  728.736251][ T6092] team0 (unregistering): Port device team_slave_0 removed
[  729.032323][T10705] batman_adv: batadv0: Adding interface: batadv_slave_1
[  729.039937][T10705] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  729.066524][T10705] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  729.306978][T10705] hsr_slave_0: entered promiscuous mode
[  729.322390][T10705] hsr_slave_1: entered promiscuous mode
[  729.339081][T10705] debugfs: 'hsr0' already exists in 'hsr'
[  729.350718][T10705] Cannot create hsr debugfs directory
[  730.177314][T10558] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  730.304377][T10558] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  730.419886][T10558] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  730.650391][ T5850] Bluetooth: hci5: command tx timeout
[  730.688889][T10558] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  731.649768][T10927] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  731.953814][ T6092] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  732.730204][ T5850] Bluetooth: hci5: command tx timeout
[  733.088079][ T6092] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  733.479898][ T6092] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  733.699419][ T6092] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  734.276588][T10895] chnl_net:caif_netlink_parms(): no params data found
[  734.657002][T10972] loop5: detected capacity change from 0 to 40427
[  734.810191][ T5850] Bluetooth: hci5: command tx timeout
[  735.075389][T10980] netlink: 'syz.5.1001': attribute type 64 has an invalid length.
[  735.083517][T10980] netlink: 9 bytes leftover after parsing attributes in process `syz.5.1001'.
[  736.597414][T10705] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  736.650826][ T6092] bridge_slave_1: left allmulticast mode
[  736.656491][ T6092] bridge_slave_1: left promiscuous mode
[  736.680273][ T6092] bridge0: port 2(bridge_slave_1) entered disabled state
[  736.731469][ T6092] bridge_slave_0: left allmulticast mode
[  736.748795][ T6092] bridge_slave_0: left promiscuous mode
[  736.789843][ T6092] bridge0: port 1(bridge_slave_0) entered disabled state
[  736.890134][ T5850] Bluetooth: hci5: command tx timeout
[  738.237875][T11013] netlink: 'syz.2.1006': attribute type 10 has an invalid length.
[  738.833120][ T6092] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  738.845472][ T6092] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  738.860589][ T6092] bond0 (unregistering): Released all slaves
[  738.881667][T10895] bridge0: port 1(bridge_slave_0) entered blocking state
[  738.888803][T10895] bridge0: port 1(bridge_slave_0) entered disabled state
[  738.897430][T10895] bridge_slave_0: entered allmulticast mode
[  738.907327][T10895] bridge_slave_0: entered promiscuous mode
[  738.922180][T10705] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  738.955801][T11014] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  739.111599][T10895] bridge0: port 2(bridge_slave_1) entered blocking state
[  739.118798][T10895] bridge0: port 2(bridge_slave_1) entered disabled state
[  739.168919][T10895] bridge_slave_1: entered allmulticast mode
[  739.186710][T10895] bridge_slave_1: entered promiscuous mode
[  739.273257][T11026] loop5: detected capacity change from 0 to 2048
[  739.283098][T10705] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  739.352946][T11026] NILFS (loop5): invalid segment: Inconsistency found
[  739.359752][T11026] NILFS (loop5): trying rollback from an earlier position
[  739.395958][T11026] NILFS (loop5): recovery complete
[  739.419365][T11030] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  740.353445][T11041] loop1: detected capacity change from 0 to 256
[  740.438303][T11041] FAT-fs (loop1): Directory bread(block 64) failed
[  740.460168][T11041] FAT-fs (loop1): Directory bread(block 65) failed
[  740.487112][T11041] FAT-fs (loop1): Directory bread(block 66) failed
[  740.518021][T11041] FAT-fs (loop1): Directory bread(block 67) failed
[  740.528445][T11041] FAT-fs (loop1): Directory bread(block 68) failed
[  740.574071][T11041] FAT-fs (loop1): Directory bread(block 69) failed
[  740.600295][T11041] FAT-fs (loop1): Directory bread(block 70) failed
[  740.606826][T11041] FAT-fs (loop1): Directory bread(block 71) failed
[  740.670812][T11041] FAT-fs (loop1): Directory bread(block 72) failed
[  740.703608][T10895] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  740.760194][T11041] FAT-fs (loop1): Directory bread(block 73) failed
[  740.979525][T10705] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  741.687942][ T6092] hsr_slave_0: left promiscuous mode
[  741.718464][ T6092] hsr_slave_1: left promiscuous mode
[  741.765014][ T6092] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  741.782448][ T6092] batman_adv: batadv0: Removing interface: batadv_slave_0
[  741.799240][ T6092] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  741.812292][ T6092] batman_adv: batadv0: Removing interface: batadv_slave_1
[  741.887598][ T6092] veth1_macvtap: left promiscuous mode
[  741.913304][ T6092] veth0_macvtap: left promiscuous mode
[  741.946104][ T6092] veth1_vlan: left promiscuous mode
[  741.966921][ T6092] veth0_vlan: left promiscuous mode
[  742.483606][T11063] loop1: detected capacity change from 0 to 1024
[  742.542035][T11063] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  743.273506][T11062] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1286: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  743.288595][T11062] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28
[  743.300904][T11062] EXT4-fs (loop1): This should not happen!! Data will be lost
[  743.300904][T11062] 
[  743.310645][T11062] EXT4-fs (loop1): Total free blocks count 0
[  743.316627][T11062] EXT4-fs (loop1): Free/Dirty block details
[  743.322549][T11062] EXT4-fs (loop1): free_blocks=68451041280
[  743.328359][T11062] EXT4-fs (loop1): dirty_blocks=32
[  743.333722][T11062] EXT4-fs (loop1): Block reservation details
[  743.339699][T11062] EXT4-fs (loop1): i_reserved_data_blocks=2
[  743.636504][ T5843] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  745.044907][ T6092] team0 (unregistering): Port device team_slave_1 removed
[  745.077459][ T6092] team0 (unregistering): Port device team_slave_0 removed
[  745.492747][T10895] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  745.519887][T10558] 8021q: adding VLAN 0 to HW filter on device bond0
[  745.551075][T10558] 8021q: adding VLAN 0 to HW filter on device team0
[  745.598897][T10558] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  745.609527][T10558] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  746.015082][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  746.022321][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  746.034003][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  746.041172][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  747.245029][T10895] team0: Port device team_slave_0 added
[  747.520298][T11107] netlink: 'syz.2.1018': attribute type 10 has an invalid length.
[  747.592155][T11109] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  747.792148][T10895] team0: Port device team_slave_1 added
[  748.083224][T11118] fuse: Unknown parameter 'grou00000000000000000000'
[  748.098870][T10895] batman_adv: batadv0: Adding interface: batadv_slave_0
[  748.112518][T10895] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  748.184101][T10895] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  748.363763][T10895] batman_adv: batadv0: Adding interface: batadv_slave_1
[  749.340592][T10895] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  749.806244][T10895] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  749.881080][T11128] loop5: detected capacity change from 0 to 2048
[  749.893639][T11128] NILFS (loop5): invalid segment: Inconsistency found
[  749.900462][T11128] NILFS (loop5): trying rollback from an earlier position
[  749.917951][T11128] NILFS (loop5): recovery complete
[  750.001865][T11129] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  751.161460][T10895] hsr_slave_0: entered promiscuous mode
[  751.168341][T10895] hsr_slave_1: entered promiscuous mode
[  751.175264][T10895] debugfs: 'hsr0' already exists in 'hsr'
[  751.181310][T10895] Cannot create hsr debugfs directory
[  752.578159][T10705] 8021q: adding VLAN 0 to HW filter on device bond0
[  753.134881][T10705] 8021q: adding VLAN 0 to HW filter on device team0
[  753.238445][ T6092] bridge0: port 1(bridge_slave_0) entered blocking state
[  753.245654][ T6092] bridge0: port 1(bridge_slave_0) entered forwarding state
[  753.372535][ T5845] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  753.383594][ T5845] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  753.397214][ T5845] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  753.407931][ T5845] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  753.417663][ T5845] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  753.539725][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  753.546930][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  754.193237][T10705] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  754.338989][T11154] loop1: detected capacity change from 0 to 4096
[  754.386549][T11154] EXT4-fs: Ignoring removed nomblk_io_submit option
[  754.536980][T10895] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  754.568360][T11154] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  754.644029][T10895] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  754.691853][T10895] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  754.960274][T10895] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  755.101080][T11166] netlink: 'syz.1.1030': attribute type 10 has an invalid length.
[  755.463931][T11171] fuse: Unknown parameter 'grou00000000000000000000'
[  755.470889][ T5850] Bluetooth: hci0: command tx timeout
[  755.792818][ T5843] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  755.853345][ T6078] bridge_slave_1: left allmulticast mode
[  755.859025][ T6078] bridge_slave_1: left promiscuous mode
[  755.896191][ T6078] bridge0: port 2(bridge_slave_1) entered disabled state
[  755.929133][ T6078] bridge_slave_0: left allmulticast mode
[  755.950335][ T6078] bridge_slave_0: left promiscuous mode
[  755.957943][ T6078] bridge0: port 1(bridge_slave_0) entered disabled state
[  755.979256][T11172] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  756.875138][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  757.031125][T11188] loop5: detected capacity change from 0 to 512
[  757.107530][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  757.330738][T11188] EXT4-fs error (device loop5): ext4_validate_block_bitmap:440: comm syz.5.1036: bg 0: block 393: padding at end of block bitmap is not set
[  757.362712][T11188] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  757.377913][T11188] EXT4-fs (loop5): 2 truncates cleaned up
[  757.397628][T11188] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  758.036276][ T5850] Bluetooth: hci0: command tx timeout
[  759.580502][ T5846] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  759.838517][ T6078] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  759.869409][ T6078] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  759.885666][ T6078] bond0 (unregistering): Released all slaves
[  760.063434][ T6078] hsr_slave_0: left promiscuous mode
[  760.069747][ T6078] hsr_slave_1: left promiscuous mode
[  760.076483][ T6078] batman_adv: batadv0: Removing interface: batadv_slave_0
[  760.090165][ T5850] Bluetooth: hci0: command tx timeout
[  760.096331][ T6078] batman_adv: batadv0: Removing interface: batadv_slave_1
[  760.904388][ T6078] team0 (unregistering): Port device team_slave_1 removed
[  760.957410][ T6078] team0 (unregistering): Port device team_slave_0 removed
[  762.035251][T10705] 8021q: adding VLAN 0 to HW filter on device batadv0
[  762.230167][ T5850] Bluetooth: hci0: command tx timeout
[  762.306921][T10895] 8021q: adding VLAN 0 to HW filter on device bond0
[  762.362227][T11216] loop5: detected capacity change from 0 to 4096
[  762.394047][T11216] EXT4-fs: Ignoring removed nomblk_io_submit option
[  762.434839][T11151] chnl_net:caif_netlink_parms(): no params data found
[  763.165587][T11216] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  763.308179][T10895] 8021q: adding VLAN 0 to HW filter on device team0
[  763.668421][ T5991] bridge0: port 1(bridge_slave_0) entered blocking state
[  763.675626][ T5991] bridge0: port 1(bridge_slave_0) entered forwarding state
[  763.802757][T11229] netlink: 'syz.5.1044': attribute type 10 has an invalid length.
[  764.144854][ T5991] bridge0: port 2(bridge_slave_1) entered blocking state
[  764.152073][ T5991] bridge0: port 2(bridge_slave_1) entered forwarding state
[  764.233627][T11230] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  764.365412][T11151] bridge0: port 1(bridge_slave_0) entered blocking state
[  764.398391][T11151] bridge0: port 1(bridge_slave_0) entered disabled state
[  764.406098][T11151] bridge_slave_0: entered allmulticast mode
[  764.414340][T11151] bridge_slave_0: entered promiscuous mode
[  764.417469][ T5846] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  764.465798][T11151] bridge0: port 2(bridge_slave_1) entered blocking state
[  764.494599][T11151] bridge0: port 2(bridge_slave_1) entered disabled state
[  764.510290][T11151] bridge_slave_1: entered allmulticast mode
[  764.526093][T11151] bridge_slave_1: entered promiscuous mode
[  764.562862][T11233] fuse: Unknown parameter 'grou00000000000000000000'
[  766.167327][T11151] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  766.337676][T11151] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  767.066574][T11249] loop1: detected capacity change from 0 to 40427
[  767.520938][T11253] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  767.529945][T11253] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  767.538799][T11253] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  767.550106][T10895] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  767.560733][T11253] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  767.568509][T11253] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  767.651780][T11249] F2FS-fs (loop1): invalid crc value
[  767.815802][T11249] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  767.830606][T11249] F2FS-fs (loop1): Start checkpoint disabled!
[  767.838743][T11249] F2FS-fs (loop1): f2fs_disable_checkpoint() finish, err:0
[  767.841304][T11260] loop5: detected capacity change from 0 to 256
[  767.874857][T11249] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  767.900565][   T30] audit: type=1800 audit(1759829468.001:282): pid=11249 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1050" name="file1" dev="loop1" ino=10 res=0 errno=0
[  768.122386][   T30] audit: type=1804 audit(1759829468.021:283): pid=11249 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1050" name="/newroot/273/file1/file1" dev="loop1" ino=10 res=1 errno=0
[  768.149875][T11151] team0: Port device team_slave_0 added
[  768.242206][T11151] team0: Port device team_slave_1 added
[  768.259419][T11260] FAT-fs (loop5): Directory bread(block 64) failed
[  768.266164][T11260] FAT-fs (loop5): Directory bread(block 65) failed
[  768.284011][T11260] FAT-fs (loop5): Directory bread(block 66) failed
[  768.440632][ T6067] kworker/u8:11: attempt to access beyond end of device
[  768.440632][ T6067] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  768.460415][T11260] FAT-fs (loop5): Directory bread(block 67) failed
[  768.488297][ T6067] CPU: 1 UID: 0 PID: 6067 Comm: kworker/u8:11 Not tainted syzkaller #0 PREEMPT(full) 
[  768.488339][ T6067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  768.488361][ T6067] Workqueue: writeback wb_workfn (flush-7:1)
[  768.488430][ T6067] Call Trace:
[  768.488441][ T6067]  <TASK>
[  768.488454][ T6067]  dump_stack_lvl+0x16c/0x1f0
[  768.488506][ T6067]  f2fs_handle_critical_error+0x624/0x9f0
[  768.488549][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.488590][ T6067]  ? f2fs_build_fault_attr+0x53/0x1f0
[  768.488633][ T6067]  f2fs_write_end_io+0x958/0xcf0
[  768.488683][ T6067]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  768.488738][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.488796][ T6067]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  768.488826][T11260] FAT-fs (loop5): Directory bread(block 68) failed
[  768.488846][ T6067]  bio_endio+0x713/0x860
[  768.488909][ T6067]  submit_bio_noacct+0x306/0x1f60
[  768.488966][ T6067]  __submit_merged_bio+0x33c/0x770
[  768.489020][ T6067]  __submit_merged_write_cond+0x319/0x3f0
[  768.489081][ T6067]  f2fs_write_cache_pages+0x2067/0x2570
[  768.489170][ T6067]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  768.489229][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.489273][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.489315][ T6067]  ? find_held_lock+0x2b/0x80
[  768.489380][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.489427][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.489468][ T6067]  ? do_raw_spin_unlock+0x172/0x230
[  768.489538][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.489580][ T6067]  ? f2fs_available_free_memory+0x279/0xa30
[  768.489730][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.489783][ T6067]  f2fs_write_data_pages+0x4ad/0xd90
[  768.489846][ T6067]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  768.489913][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.489954][ T6067]  ? __lock_acquire+0xb97/0x1ce0
[  768.489999][ T6067]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  768.490059][ T6067]  do_writepages+0x27a/0x600
[  768.490111][ T6067]  ? __pfx_do_writepages+0x10/0x10
[  768.490151][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.490192][ T6067]  ? reacquire_held_locks+0xcd/0x1f0
[  768.490234][ T6067]  ? writeback_sb_inodes+0x3b0/0xfa0
[  768.490293][ T6067]  __writeback_single_inode+0x160/0xfb0
[  768.490351][ T6067]  ? __pfx___writeback_single_inode+0x10/0x10
[  768.490406][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.490447][ T6067]  ? do_raw_spin_unlock+0x172/0x230
[  768.490498][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.490547][ T6067]  writeback_sb_inodes+0x60d/0xfa0
[  768.490626][ T6067]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  768.490674][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.490716][ T6067]  ? find_held_lock+0x2b/0x80
[  768.490846][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.490888][ T6067]  ? rcu_is_watching+0x12/0xc0
[  768.490943][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.490984][ T6067]  ? queue_io+0x3f6/0x520
[  768.491035][ T6067]  wb_writeback+0x419/0xb70
[  768.491099][ T6067]  ? __pfx_wb_writeback+0x10/0x10
[  768.491147][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.491204][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.491245][ T6067]  ? mark_held_locks+0x49/0x80
[  768.491296][ T6067]  wb_workfn+0x14d/0xbe0
[  768.491355][ T6067]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  768.491413][ T6067]  ? __pfx_wb_workfn+0x10/0x10
[  768.491470][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.491517][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.491565][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.491607][ T6067]  ? rcu_is_watching+0x12/0xc0
[  768.491671][ T6067]  process_one_work+0x9cf/0x1b70
[  768.491745][ T6067]  ? __pfx_process_one_work+0x10/0x10
[  768.491794][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.491849][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.491890][ T6067]  ? assign_work+0x1a0/0x250
[  768.491942][ T6067]  worker_thread+0x6c8/0xf10
[  768.492018][ T6067]  ? __pfx_worker_thread+0x10/0x10
[  768.492066][ T6067]  kthread+0x3c5/0x780
[  768.492113][ T6067]  ? __pfx_kthread+0x10/0x10
[  768.492161][ T6067]  ? srso_alias_return_thunk+0x5/0xfbef5
[  768.492202][ T6067]  ? rcu_is_watching+0x12/0xc0
[  768.492258][ T6067]  ? __pfx_kthread+0x10/0x10
[  768.492305][ T6067]  ret_from_fork+0x56d/0x730
[  768.492345][ T6067]  ? __pfx_kthread+0x10/0x10
[  768.492396][ T6067]  ret_from_fork_asm+0x1a/0x30
[  768.492473][ T6067]  </TASK>
[  768.920894][T11260] FAT-fs (loop5): Directory bread(block 69) failed
[  768.927544][T11260] FAT-fs (loop5): Directory bread(block 70) failed
[  768.942244][T11260] FAT-fs (loop5): Directory bread(block 71) failed
[  768.948835][T11260] FAT-fs (loop5): Directory bread(block 72) failed
[  768.954518][ T6067] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  768.978243][T11260] FAT-fs (loop5): Directory bread(block 73) failed
[  769.318498][   T30] audit: type=1326 audit(1759829469.341:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11265 comm="syz.2.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e0958eec9 code=0x7ffc0000
[  769.441599][   T30] audit: type=1326 audit(1759829469.341:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11265 comm="syz.2.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e0958eec9 code=0x7ffc0000
[  769.537482][T11151] batman_adv: batadv0: Adding interface: batadv_slave_0
[  769.550154][   T30] audit: type=1326 audit(1759829469.451:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11265 comm="syz.2.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7f9e0958eec9 code=0x7ffc0000
[  769.579230][T11151] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  769.647883][   T30] audit: type=1326 audit(1759829469.451:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11265 comm="syz.2.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e0958eec9 code=0x7ffc0000
[  769.676554][T11151] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  769.703728][T11253] Bluetooth: hci1: command tx timeout
[  769.713604][T11151] batman_adv: batadv0: Adding interface: batadv_slave_1
[  769.722862][   T30] audit: type=1326 audit(1759829469.451:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11265 comm="syz.2.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e0958eec9 code=0x7ffc0000
[  769.747883][T11151] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  769.780973][T11151] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  770.145450][T11277] loop5: detected capacity change from 0 to 4096
[  770.160931][T11277] EXT4-fs: Ignoring removed nomblk_io_submit option
[  770.242458][T11151] hsr_slave_0: entered promiscuous mode
[  770.261213][T11151] hsr_slave_1: entered promiscuous mode
[  770.386175][T11277] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  771.328037][T11284] netlink: 'syz.5.1056': attribute type 10 has an invalid length.
[  771.340277][T11284] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  771.872169][T11253] Bluetooth: hci1: command tx timeout
[  771.918788][ T5846] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  773.039000][T10895] 8021q: adding VLAN 0 to HW filter on device batadv0
[  773.875954][   T12] bridge_slave_1: left allmulticast mode
[  773.896334][   T12] bridge_slave_1: left promiscuous mode
[  773.910849][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  773.939115][   T12] bridge_slave_0: left allmulticast mode
[  773.940349][T11253] Bluetooth: hci1: command tx timeout
[  773.951215][   T12] bridge_slave_0: left promiscuous mode
[  773.957021][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  774.388537][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  774.401680][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  774.413265][   T12] bond0 (unregistering): Released all slaves
[  774.596341][T11252] chnl_net:caif_netlink_parms(): no params data found
[  774.786497][   T12] hsr_slave_0: left promiscuous mode
[  774.797359][   T12] hsr_slave_1: left promiscuous mode
[  774.804022][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  774.827906][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  775.925492][T11323] loop1: detected capacity change from 0 to 256
[  775.977532][T11323] FAT-fs (loop1): Directory bread(block 64) failed
[  775.996740][T11323] FAT-fs (loop1): Directory bread(block 65) failed
[  776.014660][T11323] FAT-fs (loop1): Directory bread(block 66) failed
[  776.015557][T11253] Bluetooth: hci1: command tx timeout
[  776.023812][T11323] FAT-fs (loop1): Directory bread(block 67) failed
[  776.059825][T11323] FAT-fs (loop1): Directory bread(block 68) failed
[  776.066466][T11323] FAT-fs (loop1): Directory bread(block 69) failed
[  776.073152][T11323] FAT-fs (loop1): Directory bread(block 70) failed
[  776.079680][T11323] FAT-fs (loop1): Directory bread(block 71) failed
[  776.089302][T11323] FAT-fs (loop1): Directory bread(block 72) failed
[  776.095980][T11323] FAT-fs (loop1): Directory bread(block 73) failed
[  776.160730][   T12] team0 (unregistering): Port device team_slave_1 removed
[  776.412089][   T12] team0 (unregistering): Port device team_slave_0 removed
[  777.138348][T11331] loop1: detected capacity change from 0 to 256
[  777.179173][T11331] FAT-fs (loop1): bogus sectors per cluster 30
[  777.185705][T11331] FAT-fs (loop1): Can't find a valid FAT filesystem
[  779.448512][T11344] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1071'.
[  779.674052][T11252] bridge0: port 1(bridge_slave_0) entered blocking state
[  779.702074][T11252] bridge0: port 1(bridge_slave_0) entered disabled state
[  779.738082][T11252] bridge_slave_0: entered allmulticast mode
[  779.757228][T11252] bridge_slave_0: entered promiscuous mode
[  779.823581][T11252] bridge0: port 2(bridge_slave_1) entered blocking state
[  779.831917][T11252] bridge0: port 2(bridge_slave_1) entered disabled state
[  779.839775][T11252] bridge_slave_1: entered allmulticast mode
[  779.859632][T11252] bridge_slave_1: entered promiscuous mode
[  779.934929][T10895] veth0_vlan: entered promiscuous mode
[  780.149076][T11252] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  780.382307][T11252] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  780.522705][T11252] team0: Port device team_slave_0 added
[  780.596186][T11151] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  780.634317][T11252] team0: Port device team_slave_1 added
[  780.943124][T11151] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  781.910395][T11151] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  782.823305][T11252] batman_adv: batadv0: Adding interface: batadv_slave_0
[  782.836930][T11252] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  783.111840][T11252] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  783.129631][T10895] veth1_vlan: entered promiscuous mode
[  783.996330][T11151] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  784.042235][T11252] batman_adv: batadv0: Adding interface: batadv_slave_1
[  784.059419][T11252] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  784.191526][T11252] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  785.424939][T11404] loop1: detected capacity change from 0 to 256
[  785.613605][T11404] FAT-fs (loop1): Directory bread(block 64) failed
[  785.641129][T11404] FAT-fs (loop1): Directory bread(block 65) failed
[  785.647784][T11404] FAT-fs (loop1): Directory bread(block 66) failed
[  785.668822][T11252] hsr_slave_0: entered promiscuous mode
[  785.700155][T11404] FAT-fs (loop1): Directory bread(block 67) failed
[  785.706793][T11404] FAT-fs (loop1): Directory bread(block 68) failed
[  785.714648][T11252] hsr_slave_1: entered promiscuous mode
[  785.741055][T11252] debugfs: 'hsr0' already exists in 'hsr'
[  785.746797][T11252] Cannot create hsr debugfs directory
[  785.757046][T11404] FAT-fs (loop1): Directory bread(block 69) failed
[  785.786917][T11404] FAT-fs (loop1): Directory bread(block 70) failed
[  785.796947][T11404] FAT-fs (loop1): Directory bread(block 71) failed
[  785.805441][T10895] veth0_macvtap: entered promiscuous mode
[  785.820498][T11404] FAT-fs (loop1): Directory bread(block 72) failed
[  785.827062][T11404] FAT-fs (loop1): Directory bread(block 73) failed
[  785.927518][T10895] veth1_macvtap: entered promiscuous mode
[  786.542283][T11151] 8021q: adding VLAN 0 to HW filter on device bond0
[  786.675538][T11151] 8021q: adding VLAN 0 to HW filter on device team0
[  786.746904][ T6098] bridge0: port 1(bridge_slave_0) entered blocking state
[  786.754119][ T6098] bridge0: port 1(bridge_slave_0) entered forwarding state
[  788.192830][T11429] loop1: detected capacity change from 0 to 512
[  788.205066][T11429] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  789.078616][ T6098] bridge0: port 2(bridge_slave_1) entered blocking state
[  789.085820][ T6098] bridge0: port 2(bridge_slave_1) entered forwarding state
[  789.607153][T11441] loop1: detected capacity change from 0 to 256
[  789.678073][T11441] exfat: Deprecated parameter 'namecase'
[  789.721658][T11441] exfat: Deprecated parameter 'utf8'
[  789.727037][T11441] exfat: Deprecated parameter 'namecase'
[  789.770131][T11441] exfat: Deprecated parameter 'utf8'
[  789.795034][T11441] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012153, chksum : 0x555ffa9e, utbl_chksum : 0xe619d30d)
[  789.918438][ T5850] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  789.938273][ T5850] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  790.304165][ T5850] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  790.583630][ T5850] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  790.591541][ T5850] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  792.650714][ T5850] Bluetooth: hci6: command tx timeout
[  792.684359][T11475] tmpfs: Unknown parameter 'nolazytime0000000000002,00000000000000000000000,00000000000000000000007'
[  793.032385][T11252] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  793.167972][T11252] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  793.219591][T11252] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  793.353191][T11252] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  794.094519][T11151] 8021q: adding VLAN 0 to HW filter on device batadv0
[  794.204994][T11443] chnl_net:caif_netlink_parms(): no params data found
[  794.332564][ T6098] bridge_slave_1: left allmulticast mode
[  794.352180][ T6098] bridge_slave_1: left promiscuous mode
[  794.367125][ T6098] bridge0: port 2(bridge_slave_1) entered disabled state
[  794.438786][ T6098] bridge_slave_0: left allmulticast mode
[  794.474236][ T6098] bridge_slave_0: left promiscuous mode
[  794.483783][ T6098] bridge0: port 1(bridge_slave_0) entered disabled state
[  794.730248][ T5850] Bluetooth: hci6: command tx timeout
[  795.390662][ T6098] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  795.440516][ T6098] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  795.472710][ T6098] bond0 (unregistering): Released all slaves
[  795.754917][ T6098] hsr_slave_0: left promiscuous mode
[  795.764323][ T6098] hsr_slave_1: left promiscuous mode
[  795.773615][ T6098] batman_adv: batadv0: Removing interface: batadv_slave_0
[  795.820831][ T6098] batman_adv: batadv0: Removing interface: batadv_slave_1
[  795.874799][ T6098] veth1_macvtap: left promiscuous mode
[  795.902351][ T6098] veth0_macvtap: left promiscuous mode
[  795.928944][ T6098] veth1_vlan: left promiscuous mode
[  795.942778][ T6098] veth0_vlan: left promiscuous mode
[  796.233277][T11541] loop5: detected capacity change from 0 to 256
[  796.349060][T11541] FAT-fs (loop5): Directory bread(block 64) failed
[  796.389423][T11541] FAT-fs (loop5): Directory bread(block 65) failed
[  796.421272][T11541] FAT-fs (loop5): Directory bread(block 66) failed
[  796.427827][T11541] FAT-fs (loop5): Directory bread(block 67) failed
[  796.457673][T11541] FAT-fs (loop5): Directory bread(block 68) failed
[  796.530192][T11541] FAT-fs (loop5): Directory bread(block 69) failed
[  796.537551][T11541] FAT-fs (loop5): Directory bread(block 70) failed
[  796.621150][T11541] FAT-fs (loop5): Directory bread(block 71) failed
[  796.683067][T11541] FAT-fs (loop5): Directory bread(block 72) failed
[  796.810400][ T5850] Bluetooth: hci6: command tx timeout
[  796.855945][T11541] FAT-fs (loop5): Directory bread(block 73) failed
[  798.930472][ T5850] Bluetooth: hci6: command tx timeout
[  799.759580][T11563] loop1: detected capacity change from 0 to 1024
[  799.887221][T11563] Quota error (device loop1): do_check_range: Getting block 64 out of range 1-5
[  799.896547][T11563] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  799.908034][T11563] EXT4-fs error (device loop1): ext4_acquire_dquot:6943: comm syz.1.1104: Failed to acquire dquot type 0
[  799.922260][T11563] EXT4-fs error (device loop1): mb_free_blocks:2014: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  799.937641][T11563] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #13: comm syz.1.1104: corrupted inode contents
[  799.960333][T11563] EXT4-fs error (device loop1): ext4_dirty_inode:6509: inode #13: comm syz.1.1104: mark_inode_dirty error
[  799.997219][T11563] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #13: comm syz.1.1104: corrupted inode contents
[  800.034403][T11563] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #13: comm syz.1.1104: mark_inode_dirty error
[  800.065098][T11563] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #13: comm syz.1.1104: corrupted inode contents
[  800.128517][T11563] EXT4-fs error (device loop1) in ext4_orphan_del:301: Corrupt filesystem
[  800.148703][T11563] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #13: comm syz.1.1104: corrupted inode contents
[  800.174617][T11563] EXT4-fs error (device loop1): ext4_truncate:4637: inode #13: comm syz.1.1104: mark_inode_dirty error
[  800.198991][T11563] EXT4-fs error (device loop1) in ext4_process_orphan:343: Corrupt filesystem
[  800.219835][T11563] EXT4-fs (loop1): 1 truncate cleaned up
[  800.232433][T11563] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  800.902902][T11583] Quota error (device loop1): do_check_range: Getting block 64 out of range 1-5
[  800.912339][T11583] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  800.921892][T11583] EXT4-fs error (device loop1): ext4_acquire_dquot:6943: comm syz.1.1104: Failed to acquire dquot type 0
[  801.448807][ T5843] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  801.580816][ T6098] team0 (unregistering): Port device team_slave_1 removed
[  801.938505][ T6098] team0 (unregistering): Port device team_slave_0 removed
[  803.179735][T11443] bridge0: port 1(bridge_slave_0) entered blocking state
[  803.193683][T11443] bridge0: port 1(bridge_slave_0) entered disabled state
[  803.210708][T11443] bridge_slave_0: entered allmulticast mode
[  803.239324][T11443] bridge_slave_0: entered promiscuous mode
[  803.264312][T11443] bridge0: port 2(bridge_slave_1) entered blocking state
[  803.325145][T11443] bridge0: port 2(bridge_slave_1) entered disabled state
[  803.374836][T11443] bridge_slave_1: entered allmulticast mode
[  803.432575][T11443] bridge_slave_1: entered promiscuous mode
[  803.473964][T11252] 8021q: adding VLAN 0 to HW filter on device bond0
[  803.519919][T11613] overlayfs: failed to clone upperpath
[  803.529154][T11615] loop5: detected capacity change from 0 to 128
[  803.587507][T11615] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  803.608635][T11615] ext4 filesystem being mounted at /306/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  803.657351][T11443] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  803.750094][T11619] capability: warning: `syz.1.1111' uses deprecated v2 capabilities in a way that may be insecure
[  803.764763][T11443] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  803.883228][T11443] team0: Port device team_slave_0 added
[  803.923640][T11443] team0: Port device team_slave_1 added
[  803.963709][T11252] 8021q: adding VLAN 0 to HW filter on device team0
[  806.269497][T11443] batman_adv: batadv0: Adding interface: batadv_slave_0
[  806.338691][T11443] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  806.556054][T11443] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  806.704689][T11443] batman_adv: batadv0: Adding interface: batadv_slave_1
[  806.733937][T11443] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  806.847417][T11443] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  807.085109][T11151] veth0_vlan: entered promiscuous mode
[  807.634185][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  807.641382][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  807.898061][T11443] hsr_slave_0: entered promiscuous mode
[  807.931530][T11443] hsr_slave_1: entered promiscuous mode
[  807.937934][T11443] debugfs: 'hsr0' already exists in 'hsr'
[  807.995076][T11443] Cannot create hsr debugfs directory
[  808.021209][T11151] veth1_vlan: entered promiscuous mode
[  808.045078][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  808.052285][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  808.165391][ T5846] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  808.721248][T11151] veth0_macvtap: entered promiscuous mode
[  808.745051][T11151] veth1_macvtap: entered promiscuous mode
[  808.903906][T11151] batman_adv: batadv0: Interface activated: batadv_slave_0
[  809.004101][T11151] batman_adv: batadv0: Interface activated: batadv_slave_1
[  809.219516][T11252] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  809.362063][  T139] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  809.375754][  T139] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  809.403521][  T139] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  809.446573][  T139] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  809.851093][  T139] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  809.876698][  T139] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  810.094252][  T139] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  810.110945][  T139] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  810.802095][T11252] 8021q: adding VLAN 0 to HW filter on device batadv0
[  810.816837][T11253] Bluetooth: hci6: command 0x0405 tx timeout
[  811.888882][T11443] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  812.157360][T11443] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  812.742704][T11698] loop6: detected capacity change from 0 to 2048
[  812.862841][T11443] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  813.351637][T11705] loop5: detected capacity change from 0 to 40427
[  813.390678][T11705] F2FS-fs (loop5): invalid crc value
[  813.434608][T11701] EXT4-fs (loop13): unable to read superblock
[  813.454578][T11443] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  813.675999][T11705] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  813.693639][T10078]  loop6: p1 < > p4
[  813.847167][T11705] F2FS-fs (loop5): Start checkpoint disabled!
[  814.026540][T11705] F2FS-fs (loop5): f2fs_disable_checkpoint() finish, err:0
[  814.056781][T11705] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  814.331029][T10078] loop6: p4 size 8388608 extends beyond EOD, truncated
[  814.341587][   T30] audit: type=1800 audit(1759829514.441:289): pid=11705 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1124" name="file1" dev="loop5" ino=10 res=0 errno=0
[  816.212908][   T30] audit: type=1804 audit(1759829514.461:290): pid=11705 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.1124" name="/newroot/310/file1/file1" dev="loop5" ino=10 res=1 errno=0
[  816.224870][ T5991] kworker/u8:8: attempt to access beyond end of device
[  816.224870][ T5991] loop5: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  816.304693][T10071] udevd[10071]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[  816.318832][T10078] udevd[10078]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory
[  816.701222][ T5991] CPU: 0 UID: 0 PID: 5991 Comm: kworker/u8:8 Not tainted syzkaller #0 PREEMPT(full) 
[  816.701268][ T5991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  816.701292][ T5991] Workqueue: writeback wb_workfn (flush-7:5)
[  816.701363][ T5991] Call Trace:
[  816.701374][ T5991]  <TASK>
[  816.701388][ T5991]  dump_stack_lvl+0x16c/0x1f0
[  816.701443][ T5991]  f2fs_handle_critical_error+0x624/0x9f0
[  816.701489][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.701534][ T5991]  ? f2fs_build_fault_attr+0x53/0x1f0
[  816.701579][ T5991]  f2fs_write_end_io+0x958/0xcf0
[  816.701630][ T5991]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  816.701683][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.701736][ T5991]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  816.701781][ T5991]  bio_endio+0x713/0x860
[  816.701839][ T5991]  submit_bio_noacct+0x306/0x1f60
[  816.701892][ T5991]  __submit_merged_bio+0x33c/0x770
[  816.701945][ T5991]  __submit_merged_write_cond+0x319/0x3f0
[  816.702004][ T5991]  f2fs_write_cache_pages+0x2067/0x2570
[  816.702088][ T5991]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  816.702147][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.702191][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.702234][ T5991]  ? find_held_lock+0x2b/0x80
[  816.702293][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.702346][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.702389][ T5991]  ? __lock_acquire+0xb97/0x1ce0
[  816.702472][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.702514][ T5991]  ? do_raw_spin_unlock+0x172/0x230
[  816.702616][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.702668][ T5991]  f2fs_write_data_pages+0x4ad/0xd90
[  816.702732][ T5991]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  816.702798][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.702840][ T5991]  ? __lock_acquire+0xb97/0x1ce0
[  816.702885][ T5991]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  816.702943][ T5991]  do_writepages+0x27a/0x600
[  816.702993][ T5991]  ? __pfx_do_writepages+0x10/0x10
[  816.703034][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.703077][ T5991]  ? reacquire_held_locks+0xcd/0x1f0
[  816.703119][ T5991]  ? writeback_sb_inodes+0x3b0/0xfa0
[  816.703178][ T5991]  __writeback_single_inode+0x160/0xfb0
[  816.703235][ T5991]  ? __pfx___writeback_single_inode+0x10/0x10
[  816.703287][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.703336][ T5991]  ? do_raw_spin_unlock+0x172/0x230
[  816.703388][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.703437][ T5991]  writeback_sb_inodes+0x60d/0xfa0
[  816.703514][ T5991]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  816.703564][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.703606][ T5991]  ? find_held_lock+0x2b/0x80
[  816.703728][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.703770][ T5991]  ? rcu_is_watching+0x12/0xc0
[  816.703827][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.703870][ T5991]  ? queue_io+0x3f6/0x520
[  816.703921][ T5991]  wb_writeback+0x419/0xb70
[  816.703984][ T5991]  ? __pfx_wb_writeback+0x10/0x10
[  816.704033][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.704089][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.704131][ T5991]  ? mark_held_locks+0x49/0x80
[  816.704181][ T5991]  wb_workfn+0x14d/0xbe0
[  816.704240][ T5991]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  816.704292][ T5991]  ? __pfx_wb_workfn+0x10/0x10
[  816.704354][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.704402][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.704451][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.704493][ T5991]  ? rcu_is_watching+0x12/0xc0
[  816.704558][ T5991]  process_one_work+0x9cf/0x1b70
[  816.704629][ T5991]  ? __pfx_process_one_work+0x10/0x10
[  816.704679][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.704735][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.704778][ T5991]  ? assign_work+0x1a0/0x250
[  816.704829][ T5991]  worker_thread+0x6c8/0xf10
[  816.704889][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.704933][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.704974][ T5991]  ? __kthread_parkme+0x19e/0x250
[  816.705009][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.705054][ T5991]  ? __pfx_worker_thread+0x10/0x10
[  816.705103][ T5991]  kthread+0x3c5/0x780
[  816.705149][ T5991]  ? __pfx_kthread+0x10/0x10
[  816.705196][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  816.705239][ T5991]  ? rcu_is_watching+0x12/0xc0
[  816.705296][ T5991]  ? __pfx_kthread+0x10/0x10
[  816.705349][ T5991]  ret_from_fork+0x56d/0x730
[  816.705390][ T5991]  ? __pfx_kthread+0x10/0x10
[  816.705437][ T5991]  ret_from_fork_asm+0x1a/0x30
[  816.705511][ T5991]  </TASK>
[  816.705524][ T5991] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  816.846414][T11252] veth0_vlan: entered promiscuous mode
[  817.201940][ T5991] CPU: 0 UID: 0 PID: 5991 Comm: kworker/u8:8 Not tainted syzkaller #0 PREEMPT(full) 
[  817.201988][ T5991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  817.202012][ T5991] Workqueue: writeback wb_workfn (flush-7:5)
[  817.202077][ T5991] Call Trace:
[  817.202089][ T5991]  <TASK>
[  817.202102][ T5991]  dump_stack_lvl+0x16c/0x1f0
[  817.202156][ T5991]  f2fs_handle_critical_error+0x624/0x9f0
[  817.202201][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.202245][ T5991]  ? f2fs_build_fault_attr+0x53/0x1f0
[  817.202290][ T5991]  f2fs_write_end_io+0x958/0xcf0
[  817.202346][ T5991]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  817.202399][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.202452][ T5991]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  817.202496][ T5991]  bio_endio+0x713/0x860
[  817.202554][ T5991]  submit_bio_noacct+0x306/0x1f60
[  817.202607][ T5991]  __submit_merged_bio+0x33c/0x770
[  817.202659][ T5991]  __submit_merged_write_cond+0x319/0x3f0
[  817.202718][ T5991]  f2fs_write_cache_pages+0x2067/0x2570
[  817.202802][ T5991]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  817.202860][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.202903][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.202946][ T5991]  ? find_held_lock+0x2b/0x80
[  817.203004][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.203052][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.203095][ T5991]  ? __lock_acquire+0xb97/0x1ce0
[  817.203181][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.203223][ T5991]  ? do_raw_spin_unlock+0x172/0x230
[  817.203330][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.203382][ T5991]  f2fs_write_data_pages+0x4ad/0xd90
[  817.203445][ T5991]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  817.203510][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.203552][ T5991]  ? __lock_acquire+0xb97/0x1ce0
[  817.203596][ T5991]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  817.203653][ T5991]  do_writepages+0x27a/0x600
[  817.203703][ T5991]  ? __pfx_do_writepages+0x10/0x10
[  817.203743][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.203786][ T5991]  ? reacquire_held_locks+0xcd/0x1f0
[  817.203828][ T5991]  ? writeback_sb_inodes+0x3b0/0xfa0
[  817.203886][ T5991]  __writeback_single_inode+0x160/0xfb0
[  817.203943][ T5991]  ? __pfx___writeback_single_inode+0x10/0x10
[  817.203994][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.204036][ T5991]  ? do_raw_spin_unlock+0x172/0x230
[  817.204088][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.204137][ T5991]  writeback_sb_inodes+0x60d/0xfa0
[  817.204211][ T5991]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  817.204261][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.204303][ T5991]  ? find_held_lock+0x2b/0x80
[  817.204429][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.204472][ T5991]  ? rcu_is_watching+0x12/0xc0
[  817.204529][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.204571][ T5991]  ? queue_io+0x3f6/0x520
[  817.204621][ T5991]  wb_writeback+0x419/0xb70
[  817.204683][ T5991]  ? __pfx_wb_writeback+0x10/0x10
[  817.204732][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.204788][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.204830][ T5991]  ? mark_held_locks+0x49/0x80
[  817.204881][ T5991]  wb_workfn+0x14d/0xbe0
[  817.204938][ T5991]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  817.204990][ T5991]  ? __pfx_wb_workfn+0x10/0x10
[  817.205047][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.205095][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.205144][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.205186][ T5991]  ? rcu_is_watching+0x12/0xc0
[  817.205250][ T5991]  process_one_work+0x9cf/0x1b70
[  817.205326][ T5991]  ? __pfx_process_one_work+0x10/0x10
[  817.205382][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.205436][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.205479][ T5991]  ? assign_work+0x1a0/0x250
[  817.205529][ T5991]  worker_thread+0x6c8/0xf10
[  817.205588][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.205633][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.205674][ T5991]  ? __kthread_parkme+0x19e/0x250
[  817.205710][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.205755][ T5991]  ? __pfx_worker_thread+0x10/0x10
[  817.205805][ T5991]  kthread+0x3c5/0x780
[  817.205850][ T5991]  ? __pfx_kthread+0x10/0x10
[  817.205898][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  817.205939][ T5991]  ? rcu_is_watching+0x12/0xc0
[  817.205996][ T5991]  ? __pfx_kthread+0x10/0x10
[  817.206044][ T5991]  ret_from_fork+0x56d/0x730
[  817.206084][ T5991]  ? __pfx_kthread+0x10/0x10
[  817.206131][ T5991]  ret_from_fork_asm+0x1a/0x30
[  817.206204][ T5991]  </TASK>
[  817.650368][ T5991] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  817.695659][T11252] veth1_vlan: entered promiscuous mode
[  817.736192][T11252] veth0_macvtap: entered promiscuous mode
[  817.940766][T11252] veth1_macvtap: entered promiscuous mode
[  818.090466][T11252] batman_adv: batadv0: Interface activated: batadv_slave_0
[  818.305824][T11252] batman_adv: batadv0: Interface activated: batadv_slave_1
[  818.369350][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  818.375757][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  819.551611][ T5991] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  819.600259][ T5991] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  819.613218][T11770] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  819.722926][T11443] 8021q: adding VLAN 0 to HW filter on device bond0
[  819.748866][ T5991] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  819.816988][ T5991] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  819.963057][T11443] 8021q: adding VLAN 0 to HW filter on device team0
[  820.032138][ T6098] bridge0: port 1(bridge_slave_0) entered blocking state
[  820.039358][ T6098] bridge0: port 1(bridge_slave_0) entered forwarding state
[  820.122004][ T6098] bridge0: port 2(bridge_slave_1) entered blocking state
[  820.129216][ T6098] bridge0: port 2(bridge_slave_1) entered forwarding state
[  820.348675][T11779] loop5: detected capacity change from 0 to 40427
[  820.393804][T11779] F2FS-fs (loop5): invalid crc value
[  820.486775][T11779] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  820.506422][T11779] F2FS-fs (loop5): Start checkpoint disabled!
[  820.520221][T11779] F2FS-fs (loop5): f2fs_disable_checkpoint() finish, err:0
[  820.527780][ T6069] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  820.536062][T11779] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  820.555403][ T6069] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  820.568412][   T30] audit: type=1800 audit(1759829520.661:291): pid=11779 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1138" name="file1" dev="loop5" ino=10 res=0 errno=0
[  821.598459][   T30] audit: type=1804 audit(1759829520.691:292): pid=11779 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.1138" name="/newroot/312/file1/file1" dev="loop5" ino=10 res=1 errno=0
[  822.180303][ T6069] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  822.230176][ T6069] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  822.341741][  T139] kworker/u8:5: attempt to access beyond end of device
[  822.341741][  T139] loop5: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  822.434456][  T139] CPU: 0 UID: 0 PID: 139 Comm: kworker/u8:5 Not tainted syzkaller #0 PREEMPT(full) 
[  822.434503][  T139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  822.434527][  T139] Workqueue: writeback wb_workfn (flush-7:5)
[  822.434600][  T139] Call Trace:
[  822.434611][  T139]  <TASK>
[  822.434626][  T139]  dump_stack_lvl+0x16c/0x1f0
[  822.434683][  T139]  f2fs_handle_critical_error+0x624/0x9f0
[  822.434730][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.434774][  T139]  ? f2fs_build_fault_attr+0x53/0x1f0
[  822.434822][  T139]  f2fs_write_end_io+0x958/0xcf0
[  822.434876][  T139]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  822.434931][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.434988][  T139]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  822.435034][  T139]  bio_endio+0x713/0x860
[  822.435095][  T139]  submit_bio_noacct+0x306/0x1f60
[  822.435151][  T139]  __submit_merged_bio+0x33c/0x770
[  822.435207][  T139]  __submit_merged_write_cond+0x319/0x3f0
[  822.435270][  T139]  f2fs_write_cache_pages+0x2067/0x2570
[  822.435360][  T139]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  822.435421][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.435466][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.435509][  T139]  ? find_held_lock+0x2b/0x80
[  822.435577][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.435627][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.435670][  T139]  ? __lock_acquire+0xb97/0x1ce0
[  822.435760][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.435804][  T139]  ? do_raw_spin_unlock+0x172/0x230
[  822.435917][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.435972][  T139]  f2fs_write_data_pages+0x4ad/0xd90
[  822.436036][  T139]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  822.436106][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.436150][  T139]  ? __lock_acquire+0xb97/0x1ce0
[  822.436196][  T139]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  822.436256][  T139]  do_writepages+0x27a/0x600
[  822.436309][  T139]  ? __pfx_do_writepages+0x10/0x10
[  822.436352][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.436395][  T139]  ? reacquire_held_locks+0xcd/0x1f0
[  822.436440][  T139]  ? writeback_sb_inodes+0x3b0/0xfa0
[  822.436501][  T139]  __writeback_single_inode+0x160/0xfb0
[  822.436568][  T139]  ? __pfx___writeback_single_inode+0x10/0x10
[  822.436619][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.436663][  T139]  ? do_raw_spin_unlock+0x172/0x230
[  822.436716][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.436769][  T139]  writeback_sb_inodes+0x60d/0xfa0
[  822.436851][  T139]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  822.436902][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.436946][  T139]  ? find_held_lock+0x2b/0x80
[  822.437079][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.437123][  T139]  ? rcu_is_watching+0x12/0xc0
[  822.437180][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.437224][  T139]  ? queue_io+0x3f6/0x520
[  822.437276][  T139]  wb_writeback+0x419/0xb70
[  822.437342][  T139]  ? __pfx_wb_writeback+0x10/0x10
[  822.437391][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.437449][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.437493][  T139]  ? mark_held_locks+0x49/0x80
[  822.437545][  T139]  wb_workfn+0x14d/0xbe0
[  822.437614][  T139]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  822.437669][  T139]  ? __pfx_wb_workfn+0x10/0x10
[  822.437728][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.437778][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.437829][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.437873][  T139]  ? rcu_is_watching+0x12/0xc0
[  822.437940][  T139]  process_one_work+0x9cf/0x1b70
[  822.438016][  T139]  ? __pfx_process_one_work+0x10/0x10
[  822.438068][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.438126][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.438169][  T139]  ? assign_work+0x1a0/0x250
[  822.438223][  T139]  worker_thread+0x6c8/0xf10
[  822.438301][  T139]  ? __pfx_worker_thread+0x10/0x10
[  822.438353][  T139]  kthread+0x3c5/0x780
[  822.438402][  T139]  ? __pfx_kthread+0x10/0x10
[  822.438452][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.438496][  T139]  ? rcu_is_watching+0x12/0xc0
[  822.438562][  T139]  ? __pfx_kthread+0x10/0x10
[  822.438612][  T139]  ret_from_fork+0x56d/0x730
[  822.438655][  T139]  ? __pfx_kthread+0x10/0x10
[  822.438703][  T139]  ret_from_fork_asm+0x1a/0x30
[  822.438784][  T139]  </TASK>
[  822.438798][  T139] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  822.914840][  T139] CPU: 0 UID: 0 PID: 139 Comm: kworker/u8:5 Not tainted syzkaller #0 PREEMPT(full) 
[  822.914887][  T139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  822.914912][  T139] Workqueue: writeback wb_workfn (flush-7:5)
[  822.914976][  T139] Call Trace:
[  822.914988][  T139]  <TASK>
[  822.915002][  T139]  dump_stack_lvl+0x16c/0x1f0
[  822.915058][  T139]  f2fs_handle_critical_error+0x624/0x9f0
[  822.915105][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.915149][  T139]  ? f2fs_build_fault_attr+0x53/0x1f0
[  822.915197][  T139]  f2fs_write_end_io+0x958/0xcf0
[  822.915249][  T139]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  822.915304][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.915360][  T139]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  822.915405][  T139]  bio_endio+0x713/0x860
[  822.915465][  T139]  submit_bio_noacct+0x306/0x1f60
[  822.915521][  T139]  __submit_merged_bio+0x33c/0x770
[  822.915582][  T139]  __submit_merged_write_cond+0x319/0x3f0
[  822.915643][  T139]  f2fs_write_cache_pages+0x2067/0x2570
[  822.915732][  T139]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  822.915792][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.915836][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.915878][  T139]  ? find_held_lock+0x2b/0x80
[  822.915938][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.915988][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.916031][  T139]  ? __lock_acquire+0xb97/0x1ce0
[  822.916121][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.916164][  T139]  ? do_raw_spin_unlock+0x172/0x230
[  822.916276][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.916329][  T139]  f2fs_write_data_pages+0x4ad/0xd90
[  822.916394][  T139]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  822.916462][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.916504][  T139]  ? __lock_acquire+0xb97/0x1ce0
[  822.916549][  T139]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  822.916613][  T139]  do_writepages+0x27a/0x600
[  822.916665][  T139]  ? __pfx_do_writepages+0x10/0x10
[  822.916706][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.916749][  T139]  ? reacquire_held_locks+0xcd/0x1f0
[  822.916791][  T139]  ? writeback_sb_inodes+0x3b0/0xfa0
[  822.916851][  T139]  __writeback_single_inode+0x160/0xfb0
[  822.916909][  T139]  ? __pfx___writeback_single_inode+0x10/0x10
[  822.916961][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.917004][  T139]  ? do_raw_spin_unlock+0x172/0x230
[  822.917055][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.917105][  T139]  writeback_sb_inodes+0x60d/0xfa0
[  822.917184][  T139]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  822.917235][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.917277][  T139]  ? find_held_lock+0x2b/0x80
[  822.917408][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.917451][  T139]  ? rcu_is_watching+0x12/0xc0
[  822.917509][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.917558][  T139]  ? queue_io+0x3f6/0x520
[  822.917610][  T139]  wb_writeback+0x419/0xb70
[  822.917676][  T139]  ? __pfx_wb_writeback+0x10/0x10
[  822.917725][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.917783][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.917827][  T139]  ? mark_held_locks+0x49/0x80
[  822.917879][  T139]  wb_workfn+0x14d/0xbe0
[  822.917939][  T139]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  822.917991][  T139]  ? __pfx_wb_workfn+0x10/0x10
[  822.918051][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.918099][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.918150][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.918193][  T139]  ? rcu_is_watching+0x12/0xc0
[  822.918260][  T139]  process_one_work+0x9cf/0x1b70
[  822.918334][  T139]  ? __pfx_process_one_work+0x10/0x10
[  822.918385][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.918443][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.918486][  T139]  ? assign_work+0x1a0/0x250
[  822.918539][  T139]  worker_thread+0x6c8/0xf10
[  822.918623][  T139]  ? __pfx_worker_thread+0x10/0x10
[  822.918672][  T139]  kthread+0x3c5/0x780
[  822.918717][  T139]  ? __pfx_kthread+0x10/0x10
[  822.918765][  T139]  ? srso_alias_return_thunk+0x5/0xfbef5
[  822.918806][  T139]  ? rcu_is_watching+0x12/0xc0
[  822.918859][  T139]  ? __pfx_kthread+0x10/0x10
[  822.918906][  T139]  ret_from_fork+0x56d/0x730
[  822.918945][  T139]  ? __pfx_kthread+0x10/0x10
[  822.918991][  T139]  ret_from_fork_asm+0x1a/0x30
[  822.919069][  T139]  </TASK>
[  822.919082][  T139] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  824.016895][T11802] loop1: detected capacity change from 0 to 4096
[  824.063282][T11802] EXT4-fs: Ignoring removed mblk_io_submit option
[  824.130940][T11802] EXT4-fs (loop1): Test dummy encryption mode enabled
[  824.195623][T11802] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  824.326436][T11443] 8021q: adding VLAN 0 to HW filter on device batadv0
[  824.538839][ T5843] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  826.254181][T11835] loop1: detected capacity change from 0 to 40427
[  826.268318][T11835] F2FS-fs (loop1): invalid crc value
[  826.332246][T11443] veth0_vlan: entered promiscuous mode
[  826.361546][T11835] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  826.371395][T11835] F2FS-fs (loop1): Start checkpoint disabled!
[  826.379298][T11835] F2FS-fs (loop1): f2fs_disable_checkpoint() finish, err:0
[  826.387295][T11835] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  826.410306][ T9049] usb 6-1: new full-speed USB device number 4 using dummy_hcd
[  826.426110][T11443] veth1_vlan: entered promiscuous mode
[  826.469309][T11443] veth0_macvtap: entered promiscuous mode
[  826.486300][   T30] audit: type=1800 audit(1759829526.581:293): pid=11835 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1151" name="file1" dev="loop1" ino=10 res=0 errno=0
[  826.518093][   T30] audit: type=1804 audit(1759829526.601:294): pid=11835 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1151" name="/newroot/308/file1/file1" dev="loop1" ino=10 res=1 errno=0
[  827.009823][T11843] loop6: detected capacity change from 0 to 40427
[  827.044603][ T9049] usb 6-1: config 0 has an invalid interface number: 184 but max is 0
[  827.360331][T11843] F2FS-fs (loop6): invalid crc value
[  827.383087][T11443] veth1_macvtap: entered promiscuous mode
[  827.478915][T11843] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  827.489111][T11843] F2FS-fs (loop6): Start checkpoint disabled!
[  827.498608][T11843] F2FS-fs (loop6): f2fs_disable_checkpoint() finish, err:0
[  827.507332][T11843] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  827.531964][   T30] audit: type=1800 audit(1759829527.631:295): pid=11843 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1152" name="file1" dev="loop6" ino=10 res=0 errno=0
[  827.601569][ T9049] usb 6-1: config 0 has no interface number 0
[  827.607714][ T9049] usb 6-1: config 0 interface 184 has no altsetting 0
[  827.654708][ T9049] usb 6-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  827.698951][ T9049] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  827.728176][ T5991] kworker/u8:8: attempt to access beyond end of device
[  827.728176][ T5991] loop1: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  827.775384][T11443] batman_adv: batadv0: Interface activated: batadv_slave_0
[  827.796517][ T9049] usb 6-1: Product: syz
[  827.818686][ T9049] usb 6-1: Manufacturer: syz
[  827.820510][   T30] audit: type=1804 audit(1759829527.651:296): pid=11843 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.1152" name="/newroot/4/file1/file1" dev="loop6" ino=10 res=1 errno=0
[  827.844885][ T9049] usb 6-1: SerialNumber: syz
[  827.857089][ T5991] CPU: 1 UID: 0 PID: 5991 Comm: kworker/u8:8 Not tainted syzkaller #0 PREEMPT(full) 
[  827.857133][ T5991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  827.857156][ T5991] Workqueue: writeback wb_workfn (flush-7:1)
[  827.857220][ T5991] Call Trace:
[  827.857231][ T5991]  <TASK>
[  827.857244][ T5991]  dump_stack_lvl+0x16c/0x1f0
[  827.857299][ T5991]  f2fs_handle_critical_error+0x624/0x9f0
[  827.857351][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.857394][ T5991]  ? f2fs_build_fault_attr+0x53/0x1f0
[  827.857438][ T5991]  f2fs_write_end_io+0x958/0xcf0
[  827.857488][ T5991]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  827.857540][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.857592][ T5991]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  827.857637][ T5991]  bio_endio+0x713/0x860
[  827.857693][ T5991]  submit_bio_noacct+0x306/0x1f60
[  827.857746][ T5991]  __submit_merged_bio+0x33c/0x770
[  827.857797][ T5991]  __submit_merged_write_cond+0x319/0x3f0
[  827.857855][ T5991]  f2fs_write_cache_pages+0x2067/0x2570
[  827.857940][ T5991]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  827.857997][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.858041][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.858082][ T5991]  ? find_held_lock+0x2b/0x80
[  827.858139][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.858187][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.858228][ T5991]  ? __lock_acquire+0xb97/0x1ce0
[  827.858312][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.858355][ T5991]  ? do_raw_spin_unlock+0x172/0x230
[  827.858456][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.858507][ T5991]  f2fs_write_data_pages+0x4ad/0xd90
[  827.858567][ T5991]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  827.858633][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.858675][ T5991]  ? __lock_acquire+0xb97/0x1ce0
[  827.858721][ T5991]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  827.858778][ T5991]  do_writepages+0x27a/0x600
[  827.858826][ T5991]  ? __pfx_do_writepages+0x10/0x10
[  827.858867][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.858909][ T5991]  ? reacquire_held_locks+0xcd/0x1f0
[  827.858951][ T5991]  ? writeback_sb_inodes+0x3b0/0xfa0
[  827.859011][ T5991]  __writeback_single_inode+0x160/0xfb0
[  827.859070][ T5991]  ? __pfx___writeback_single_inode+0x10/0x10
[  827.859125][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.859168][ T5991]  ? do_raw_spin_unlock+0x172/0x230
[  827.859220][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.859269][ T5991]  writeback_sb_inodes+0x60d/0xfa0
[  827.859352][ T5991]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  827.859472][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.859517][ T5991]  ? rcu_is_watching+0x12/0xc0
[  827.859572][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.859615][ T5991]  ? queue_io+0x3f6/0x520
[  827.859666][ T5991]  wb_writeback+0x419/0xb70
[  827.859729][ T5991]  ? __pfx_wb_writeback+0x10/0x10
[  827.859777][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.859833][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.859876][ T5991]  ? mark_held_locks+0x49/0x80
[  827.859925][ T5991]  wb_workfn+0x14d/0xbe0
[  827.859983][ T5991]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  827.860040][ T5991]  ? __pfx_wb_workfn+0x10/0x10
[  827.860096][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.860144][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.860192][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.860234][ T5991]  ? rcu_is_watching+0x12/0xc0
[  827.860298][ T5991]  process_one_work+0x9cf/0x1b70
[  827.860376][ T5991]  ? __pfx_process_one_work+0x10/0x10
[  827.860426][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.860480][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.860524][ T5991]  ? assign_work+0x1a0/0x250
[  827.860574][ T5991]  worker_thread+0x6c8/0xf10
[  827.860636][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.860680][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.860722][ T5991]  ? __kthread_parkme+0x19e/0x250
[  827.860758][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.860804][ T5991]  ? __pfx_worker_thread+0x10/0x10
[  827.860854][ T5991]  kthread+0x3c5/0x780
[  827.860900][ T5991]  ? __pfx_kthread+0x10/0x10
[  827.860947][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  827.860989][ T5991]  ? rcu_is_watching+0x12/0xc0
[  827.861046][ T5991]  ? __pfx_kthread+0x10/0x10
[  827.861093][ T5991]  ret_from_fork+0x56d/0x730
[  827.861134][ T5991]  ? __pfx_kthread+0x10/0x10
[  827.861180][ T5991]  ret_from_fork_asm+0x1a/0x30
[  827.861252][ T5991]  </TASK>
[  827.879091][ T9049] usb 6-1: config 0 descriptor??
[  827.882453][ T5991] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  827.909950][T11443] batman_adv: batadv0: Interface activated: batadv_slave_1
[  827.943996][ T9049] smsc75xx v1.0.0
[  828.440123][ T9049] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[  828.470342][ T9049] smsc75xx 6-1:0.184: probe with driver smsc75xx failed with error -22
[  828.510285][ T5991] CPU: 0 UID: 0 PID: 5991 Comm: kworker/u8:8 Not tainted syzkaller #0 PREEMPT(full) 
[  828.510339][ T5991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  828.510363][ T5991] Workqueue: writeback wb_workfn (flush-7:1)
[  828.510427][ T5991] Call Trace:
[  828.510439][ T5991]  <TASK>
[  828.510452][ T5991]  dump_stack_lvl+0x16c/0x1f0
[  828.510508][ T5991]  f2fs_handle_critical_error+0x624/0x9f0
[  828.510553][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.510596][ T5991]  ? f2fs_build_fault_attr+0x53/0x1f0
[  828.510642][ T5991]  f2fs_write_end_io+0x958/0xcf0
[  828.510692][ T5991]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  828.510744][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.510798][ T5991]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  828.510843][ T5991]  bio_endio+0x713/0x860
[  828.510899][ T5991]  submit_bio_noacct+0x306/0x1f60
[  828.510951][ T5991]  __submit_merged_bio+0x33c/0x770
[  828.511003][ T5991]  __submit_merged_write_cond+0x319/0x3f0
[  828.511062][ T5991]  f2fs_write_cache_pages+0x2067/0x2570
[  828.511143][ T5991]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  828.511201][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.511245][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.511288][ T5991]  ? find_held_lock+0x2b/0x80
[  828.511351][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.511399][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.511442][ T5991]  ? __lock_acquire+0xb97/0x1ce0
[  828.511523][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.511564][ T5991]  ? do_raw_spin_unlock+0x172/0x230
[  828.511666][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.511717][ T5991]  f2fs_write_data_pages+0x4ad/0xd90
[  828.511779][ T5991]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  828.511844][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.511886][ T5991]  ? __lock_acquire+0xb97/0x1ce0
[  828.511930][ T5991]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  828.511987][ T5991]  do_writepages+0x27a/0x600
[  828.512036][ T5991]  ? __pfx_do_writepages+0x10/0x10
[  828.512076][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.512119][ T5991]  ? reacquire_held_locks+0xcd/0x1f0
[  828.512160][ T5991]  ? writeback_sb_inodes+0x3b0/0xfa0
[  828.512219][ T5991]  __writeback_single_inode+0x160/0xfb0
[  828.512276][ T5991]  ? __pfx___writeback_single_inode+0x10/0x10
[  828.512332][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.512374][ T5991]  ? do_raw_spin_unlock+0x172/0x230
[  828.512425][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.512475][ T5991]  writeback_sb_inodes+0x60d/0xfa0
[  828.512549][ T5991]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  828.512668][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.512711][ T5991]  ? rcu_is_watching+0x12/0xc0
[  828.512767][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.512810][ T5991]  ? queue_io+0x3f6/0x520
[  828.512859][ T5991]  wb_writeback+0x419/0xb70
[  828.512921][ T5991]  ? __pfx_wb_writeback+0x10/0x10
[  828.512970][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.513025][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.513067][ T5991]  ? mark_held_locks+0x49/0x80
[  828.513116][ T5991]  wb_workfn+0x14d/0xbe0
[  828.513174][ T5991]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  828.513225][ T5991]  ? __pfx_wb_workfn+0x10/0x10
[  828.513280][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.513335][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.513383][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.513426][ T5991]  ? rcu_is_watching+0x12/0xc0
[  828.513490][ T5991]  process_one_work+0x9cf/0x1b70
[  828.513560][ T5991]  ? __pfx_process_one_work+0x10/0x10
[  828.513611][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.513666][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.513708][ T5991]  ? assign_work+0x1a0/0x250
[  828.513759][ T5991]  worker_thread+0x6c8/0xf10
[  828.513819][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.513863][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.513905][ T5991]  ? __kthread_parkme+0x19e/0x250
[  828.513941][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.513986][ T5991]  ? __pfx_worker_thread+0x10/0x10
[  828.514035][ T5991]  kthread+0x3c5/0x780
[  828.514081][ T5991]  ? __pfx_kthread+0x10/0x10
[  828.514128][ T5991]  ? srso_alias_return_thunk+0x5/0xfbef5
[  828.514170][ T5991]  ? rcu_is_watching+0x12/0xc0
[  828.514226][ T5991]  ? __pfx_kthread+0x10/0x10
[  828.514274][ T5991]  ret_from_fork+0x56d/0x730
[  828.514336][ T5991]  ? __pfx_kthread+0x10/0x10
[  828.514383][ T5991]  ret_from_fork_asm+0x1a/0x30
[  828.514455][ T5991]  </TASK>
[  828.514468][ T5991] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  828.778466][ T6076] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  828.983161][T11831] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  828.995950][T11831] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  829.036936][ T6098] kworker/u8:24: attempt to access beyond end of device
[  829.036936][ T6098] loop6: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  829.090998][ T6098] CPU: 0 UID: 0 PID: 6098 Comm: kworker/u8:24 Not tainted syzkaller #0 PREEMPT(full) 
[  829.091044][ T6098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  829.091069][ T6098] Workqueue: writeback wb_workfn (flush-7:6)
[  829.091133][ T6098] Call Trace:
[  829.091144][ T6098]  <TASK>
[  829.091158][ T6098]  dump_stack_lvl+0x16c/0x1f0
[  829.091213][ T6098]  f2fs_handle_critical_error+0x624/0x9f0
[  829.091259][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.091303][ T6098]  ? f2fs_build_fault_attr+0x53/0x1f0
[  829.091355][ T6098]  f2fs_write_end_io+0x958/0xcf0
[  829.091405][ T6098]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  829.091457][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.091511][ T6098]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  829.091555][ T6098]  bio_endio+0x713/0x860
[  829.091612][ T6098]  submit_bio_noacct+0x306/0x1f60
[  829.091665][ T6098]  __submit_merged_bio+0x33c/0x770
[  829.091717][ T6098]  __submit_merged_write_cond+0x319/0x3f0
[  829.091776][ T6098]  f2fs_write_cache_pages+0x2067/0x2570
[  829.091859][ T6098]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  829.091917][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.091961][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.092004][ T6098]  ? find_held_lock+0x2b/0x80
[  829.092062][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.092113][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.092156][ T6098]  ? __lock_acquire+0xb97/0x1ce0
[  829.092237][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.092279][ T6098]  ? do_raw_spin_unlock+0x172/0x230
[  829.092386][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.092438][ T6098]  f2fs_write_data_pages+0x4ad/0xd90
[  829.092500][ T6098]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  829.092565][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.092608][ T6098]  ? __lock_acquire+0xb97/0x1ce0
[  829.092652][ T6098]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  829.092709][ T6098]  do_writepages+0x27a/0x600
[  829.092759][ T6098]  ? __pfx_do_writepages+0x10/0x10
[  829.092800][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.092843][ T6098]  ? reacquire_held_locks+0xcd/0x1f0
[  829.092885][ T6098]  ? writeback_sb_inodes+0x3b0/0xfa0
[  829.092944][ T6098]  __writeback_single_inode+0x160/0xfb0
[  829.093000][ T6098]  ? __pfx___writeback_single_inode+0x10/0x10
[  829.093052][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.093095][ T6098]  ? do_raw_spin_unlock+0x172/0x230
[  829.093146][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.093197][ T6098]  writeback_sb_inodes+0x60d/0xfa0
[  829.093272][ T6098]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  829.093328][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.093371][ T6098]  ? find_held_lock+0x2b/0x80
[  829.093490][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.093532][ T6098]  ? rcu_is_watching+0x12/0xc0
[  829.093589][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.093632][ T6098]  ? queue_io+0x3f6/0x520
[  829.093683][ T6098]  wb_writeback+0x419/0xb70
[  829.093745][ T6098]  ? __pfx_wb_writeback+0x10/0x10
[  829.093794][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.093849][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.093892][ T6098]  ? mark_held_locks+0x49/0x80
[  829.093942][ T6098]  wb_workfn+0x14d/0xbe0
[  829.094000][ T6098]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  829.094052][ T6098]  ? __pfx_wb_workfn+0x10/0x10
[  829.094109][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.094157][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.094205][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.094247][ T6098]  ? rcu_is_watching+0x12/0xc0
[  829.094316][ T6098]  process_one_work+0x9cf/0x1b70
[  829.094385][ T6098]  ? __pfx_process_one_work+0x10/0x10
[  829.094435][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.094489][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.094532][ T6098]  ? assign_work+0x1a0/0x250
[  829.094582][ T6098]  worker_thread+0x6c8/0xf10
[  829.094642][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.094687][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.094730][ T6098]  ? __kthread_parkme+0x19e/0x250
[  829.094766][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.094812][ T6098]  ? __pfx_worker_thread+0x10/0x10
[  829.094863][ T6098]  kthread+0x3c5/0x780
[  829.094910][ T6098]  ? __pfx_kthread+0x10/0x10
[  829.094958][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.095000][ T6098]  ? rcu_is_watching+0x12/0xc0
[  829.095057][ T6098]  ? __pfx_kthread+0x10/0x10
[  829.095106][ T6098]  ret_from_fork+0x56d/0x730
[  829.095146][ T6098]  ? __pfx_kthread+0x10/0x10
[  829.095194][ T6098]  ret_from_fork_asm+0x1a/0x30
[  829.095267][ T6098]  </TASK>
[  829.095280][ T6098] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  829.302104][ T5991] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  829.315562][ T6098] CPU: 0 UID: 0 PID: 6098 Comm: kworker/u8:24 Not tainted syzkaller #0 PREEMPT(full) 
[  829.315607][ T6098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  829.315631][ T6098] Workqueue: writeback wb_workfn (flush-7:6)
[  829.315693][ T6098] Call Trace:
[  829.315705][ T6098]  <TASK>
[  829.315718][ T6098]  dump_stack_lvl+0x16c/0x1f0
[  829.315773][ T6098]  f2fs_handle_critical_error+0x624/0x9f0
[  829.315819][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.315862][ T6098]  ? f2fs_build_fault_attr+0x53/0x1f0
[  829.315909][ T6098]  f2fs_write_end_io+0x958/0xcf0
[  829.315961][ T6098]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  829.316014][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.316068][ T6098]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  829.316113][ T6098]  bio_endio+0x713/0x860
[  829.316171][ T6098]  submit_bio_noacct+0x306/0x1f60
[  829.316226][ T6098]  __submit_merged_bio+0x33c/0x770
[  829.316279][ T6098]  __submit_merged_write_cond+0x319/0x3f0
[  829.316346][ T6098]  f2fs_write_cache_pages+0x2067/0x2570
[  829.316434][ T6098]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  829.316493][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.316536][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.316577][ T6098]  ? find_held_lock+0x2b/0x80
[  829.316635][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.316684][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.316725][ T6098]  ? __lock_acquire+0xb97/0x1ce0
[  829.316814][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.316855][ T6098]  ? do_raw_spin_unlock+0x172/0x230
[  829.316966][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.317018][ T6098]  f2fs_write_data_pages+0x4ad/0xd90
[  829.317081][ T6098]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  829.317148][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.317189][ T6098]  ? __lock_acquire+0xb97/0x1ce0
[  829.317234][ T6098]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  829.317290][ T6098]  do_writepages+0x27a/0x600
[  829.317345][ T6098]  ? __pfx_do_writepages+0x10/0x10
[  829.317385][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.317427][ T6098]  ? reacquire_held_locks+0xcd/0x1f0
[  829.317469][ T6098]  ? writeback_sb_inodes+0x3b0/0xfa0
[  829.317527][ T6098]  __writeback_single_inode+0x160/0xfb0
[  829.317584][ T6098]  ? __pfx___writeback_single_inode+0x10/0x10
[  829.317634][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.317676][ T6098]  ? do_raw_spin_unlock+0x172/0x230
[  829.317726][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.317777][ T6098]  writeback_sb_inodes+0x60d/0xfa0
[  829.317856][ T6098]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  829.317905][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.317950][ T6098]  ? find_held_lock+0x2b/0x80
[  829.318081][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.318122][ T6098]  ? rcu_is_watching+0x12/0xc0
[  829.318178][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.318219][ T6098]  ? queue_io+0x3f6/0x520
[  829.318270][ T6098]  wb_writeback+0x419/0xb70
[  829.318340][ T6098]  ? __pfx_wb_writeback+0x10/0x10
[  829.318388][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.318448][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.318490][ T6098]  ? mark_held_locks+0x49/0x80
[  829.318540][ T6098]  wb_workfn+0x14d/0xbe0
[  829.318599][ T6098]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  829.318650][ T6098]  ? __pfx_wb_workfn+0x10/0x10
[  829.318708][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.318755][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.318804][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.318846][ T6098]  ? rcu_is_watching+0x12/0xc0
[  829.318910][ T6098]  process_one_work+0x9cf/0x1b70
[  829.318983][ T6098]  ? __pfx_process_one_work+0x10/0x10
[  829.319033][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.319090][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.319131][ T6098]  ? assign_work+0x1a0/0x250
[  829.319184][ T6098]  worker_thread+0x6c8/0xf10
[  829.319245][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.319290][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.319336][ T6098]  ? __kthread_parkme+0x19e/0x250
[  829.319371][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.319417][ T6098]  ? __pfx_worker_thread+0x10/0x10
[  829.319467][ T6098]  kthread+0x3c5/0x780
[  829.319513][ T6098]  ? __pfx_kthread+0x10/0x10
[  829.319560][ T6098]  ? srso_alias_return_thunk+0x5/0xfbef5
[  829.319602][ T6098]  ? rcu_is_watching+0x12/0xc0
[  829.319658][ T6098]  ? __pfx_kthread+0x10/0x10
[  829.319706][ T6098]  ret_from_fork+0x56d/0x730
[  829.319747][ T6098]  ? __pfx_kthread+0x10/0x10
[  829.319794][ T6098]  ret_from_fork_asm+0x1a/0x30
[  829.319871][ T6098]  </TASK>
[  829.320054][ T6098] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  829.488913][ T5991] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  830.042042][ T5991] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  830.256621][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  830.283964][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  830.390965][ T6067] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  830.432601][ T6067] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  830.922343][T11867] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1159'.
[  831.536661][T10451] usb 6-1: USB disconnect, device number 4
[  831.726005][T11870] loop8: detected capacity change from 0 to 4096
[  832.026466][T11870] EXT4-fs (loop8): Test dummy encryption mode enabled
[  832.882122][T11870] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  833.150302][T11870] System zones: 0-5
[  833.237833][T11888] loop5: detected capacity change from 0 to 512
[  833.865087][T11888] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  834.580823][T11888] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  834.605393][T11888] EXT4-fs (loop5): orphan cleanup on readonly fs
[  834.615919][T11888] EXT4-fs error (device loop5): ext4_validate_block_bitmap:440: comm syz.5.1163: bg 0: block 361: padding at end of block bitmap is not set
[  834.634995][T11888] EXT4-fs (loop5): Remounting filesystem read-only
[  834.642192][T11888] EXT4-fs (loop5): 1 truncate cleaned up
[  834.649900][T11888] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  834.683312][T11870] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  835.035091][ T5846] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  835.341213][T11895] loop1: detected capacity change from 0 to 32768
[  835.411490][T11895] 
[  835.411490][T11895]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  835.411490][T11895] 
[  836.007129][T11443] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  836.391432][T11906] loop5: detected capacity change from 0 to 40427
[  836.490586][T11906] F2FS-fs (loop5): invalid crc value
[  836.572727][T11906] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  836.583527][T11906] F2FS-fs (loop5): Start checkpoint disabled!
[  836.595571][T11906] F2FS-fs (loop5): f2fs_disable_checkpoint() finish, err:0
[  836.608615][T11906] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  836.665412][   T30] audit: type=1800 audit(1759829536.751:297): pid=11906 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1165" name="file1" dev="loop5" ino=10 res=0 errno=0
[  838.450338][ T6069] 
[  838.450338][ T6069]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  838.450338][ T6069] 
[  838.508221][   T30] audit: type=1804 audit(1759829536.781:298): pid=11906 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.1165" name="/newroot/317/file1/file1" dev="loop5" ino=10 res=1 errno=0
[  838.571693][   T36] kworker/u8:2: attempt to access beyond end of device
[  838.571693][   T36] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  838.585828][ T6069] 
[  838.585828][ T6069]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  838.585828][ T6069] 
[  838.645336][ T6069] 
[  838.645336][ T6069]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  838.645336][ T6069] 
[  838.689510][ T5843] 
[  838.689510][ T5843]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  838.689510][ T5843] 
[  838.760186][   T36] CPU: 0 UID: 0 PID: 36 Comm: kworker/u8:2 Not tainted syzkaller #0 PREEMPT(full) 
[  838.760234][   T36] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  838.760260][   T36] Workqueue: writeback wb_workfn (flush-7:5)
[  838.760335][   T36] Call Trace:
[  838.760347][   T36]  <TASK>
[  838.760361][   T36]  dump_stack_lvl+0x16c/0x1f0
[  838.760417][   T36]  f2fs_handle_critical_error+0x624/0x9f0
[  838.760465][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  838.760509][   T36]  ? f2fs_build_fault_attr+0x53/0x1f0
[  838.760555][   T36]  f2fs_write_end_io+0x958/0xcf0
[  838.760606][   T36]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  838.760658][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  838.760713][   T36]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  838.760758][   T36]  bio_endio+0x713/0x860
[  838.760815][   T36]  submit_bio_noacct+0x306/0x1f60
[  838.760868][   T36]  __submit_merged_bio+0x33c/0x770
[  838.760921][   T36]  __submit_merged_write_cond+0x319/0x3f0
[  838.760981][   T36]  f2fs_write_cache_pages+0x2067/0x2570
[  838.761064][   T36]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  838.761120][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  838.761169][   T36]  ? ieee80211_inform_bss+0x781/0x1140
[  838.761223][   T36]  ? __pfx_ieee80211_inform_bss+0x10/0x10
[  838.761286][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  838.761336][   T36]  ? trace_cfg80211_return_bss+0x17f/0x200
[  838.761385][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  838.761493][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  838.761544][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  838.761595][   T36]  f2fs_write_data_pages+0x4ad/0xd90
[  838.761658][   T36]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  838.761724][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  838.761767][   T36]  ? __lock_acquire+0xb97/0x1ce0
[  838.761812][   T36]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  838.761871][   T36]  do_writepages+0x27a/0x600
[  838.761922][   T36]  ? __pfx_do_writepages+0x10/0x10
[  838.761965][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  838.762009][   T36]  ? reacquire_held_locks+0xcd/0x1f0
[  838.762054][   T36]  ? writeback_sb_inodes+0x3b0/0xfa0
[  838.762114][   T36]  __writeback_single_inode+0x160/0xfb0
[  838.762172][   T36]  ? __pfx___writeback_single_inode+0x10/0x10
[  838.762226][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  838.762269][   T36]  ? do_raw_spin_unlock+0x172/0x230
[  838.762327][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  838.762379][   T36]  writeback_sb_inodes+0x60d/0xfa0
[  838.762455][   T36]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  838.762576][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  838.762622][   T36]  ? rcu_is_watching+0x12/0xc0
[  838.762681][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  838.762725][   T36]  ? queue_io+0x3f6/0x520
[  838.762777][   T36]  wb_writeback+0x419/0xb70
[  838.762841][   T36]  ? __pfx_wb_writeback+0x10/0x10
[  838.762892][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  838.762949][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  838.762994][   T36]  ? mark_held_locks+0x49/0x80
[  838.763044][   T36]  wb_workfn+0x14d/0xbe0
[  838.763105][   T36]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  838.763158][   T36]  ? __pfx_wb_workfn+0x10/0x10
[  838.763217][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  838.763266][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  838.763321][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  838.763365][   T36]  ? rcu_is_watching+0x12/0xc0
[  838.763430][   T36]  process_one_work+0x9cf/0x1b70
[  838.763503][   T36]  ? __pfx_process_one_work+0x10/0x10
[  838.763554][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  838.763610][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  838.763654][   T36]  ? assign_work+0x1a0/0x250
[  838.763707][   T36]  worker_thread+0x6c8/0xf10
[  838.763781][   T36]  ? __pfx_worker_thread+0x10/0x10
[  838.763833][   T36]  kthread+0x3c5/0x780
[  838.763881][   T36]  ? __pfx_kthread+0x10/0x10
[  838.763931][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  838.763974][   T36]  ? rcu_is_watching+0x12/0xc0
[  838.764034][   T36]  ? __pfx_kthread+0x10/0x10
[  838.764084][   T36]  ret_from_fork+0x56d/0x730
[  838.764126][   T36]  ? __pfx_kthread+0x10/0x10
[  838.764175][   T36]  ret_from_fork_asm+0x1a/0x30
[  838.764250][   T36]  </TASK>
[  839.171753][   T36] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  839.317116][ T5843] 
[  839.317116][ T5843]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  839.317116][ T5843] 
[  839.420087][  T112] ==================================================================
[  839.428185][  T112] BUG: KASAN: slab-use-after-free in __mutex_lock+0xe87/0x1060
[  839.435770][  T112] Read of size 8 at addr ffff888067d5a108 by task jfsCommit/112
[  839.443410][  T112] 
[  839.445740][  T112] CPU: 1 UID: 0 PID: 112 Comm: jfsCommit Not tainted syzkaller #0 PREEMPT(full) 
[  839.445786][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  839.445810][  T112] Call Trace:
[  839.445822][  T112]  <TASK>
[  839.445836][  T112]  dump_stack_lvl+0x116/0x1f0
[  839.445894][  T112]  print_report+0xcd/0x630
[  839.445935][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  839.445982][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  839.446026][  T112]  ? __phys_addr+0xe8/0x180
[  839.446064][  T112]  ? __mutex_lock+0xe87/0x1060
[  839.446117][  T112]  kasan_report+0xe0/0x110
[  839.446160][  T112]  ? __mutex_lock+0xe87/0x1060
[  839.446219][  T112]  ? jfs_syncpt+0x2a/0xa0
[  839.446262][  T112]  __mutex_lock+0xe87/0x1060
[  839.446315][  T112]  ? jfs_syncpt+0x2a/0xa0
[  839.446361][  T112]  ? __pfx___mutex_lock+0x10/0x10
[  839.446417][  T112]  ? do_raw_spin_lock+0x12c/0x2b0
[  839.446476][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  839.446521][  T112]  ? find_held_lock+0x2b/0x80
[  839.446589][  T112]  ? jfs_syncpt+0x2a/0xa0
[  839.446628][  T112]  jfs_syncpt+0x2a/0xa0
[  839.446671][  T112]  txEnd+0x30a/0x5a0
[  839.446716][  T112]  jfs_lazycommit+0x783/0xb30
[  839.446770][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[  839.446821][  T112]  ? __pfx_default_wake_function+0x10/0x10
[  839.446880][  T112]  ? lockdep_hardirqs_on+0x7c/0x110
[  839.446932][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  839.446979][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  839.447024][  T112]  ? __kthread_parkme+0x19e/0x250
[  839.447063][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[  839.447112][  T112]  kthread+0x3c5/0x780
[  839.447158][  T112]  ? __pfx_kthread+0x10/0x10
[  839.447206][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  839.447251][  T112]  ? rcu_is_watching+0x12/0xc0
[  839.447310][  T112]  ? __pfx_kthread+0x10/0x10
[  839.447357][  T112]  ret_from_fork+0x56d/0x730
[  839.447400][  T112]  ? __pfx_kthread+0x10/0x10
[  839.447447][  T112]  ret_from_fork_asm+0x1a/0x30
[  839.447511][  T112]  </TASK>
[  839.447525][  T112] 
[  839.641983][  T112] Allocated by task 11895:
[  839.646390][  T112]  kasan_save_stack+0x33/0x60
[  839.651070][  T112]  kasan_save_track+0x14/0x30
[  839.655749][  T112]  __kasan_kmalloc+0xaa/0xb0
[  839.660338][  T112]  lmLogOpen+0x571/0x13c0
[  839.664674][  T112]  jfs_mount_rw+0x2e9/0x6f0
[  839.669178][  T112]  jfs_fill_super+0xc46/0x1040
[  839.673955][  T112]  get_tree_bdev_flags+0x38c/0x620
[  839.679067][  T112]  vfs_get_tree+0x8e/0x340
[  839.683495][  T112]  path_mount+0x7b9/0x23a0
[  839.687913][  T112]  __x64_sys_mount+0x293/0x310
[  839.692682][  T112]  do_syscall_64+0xcd/0x4e0
[  839.697200][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  839.703091][  T112] 
[  839.705400][  T112] Freed by task 5843:
[  839.709363][  T112]  kasan_save_stack+0x33/0x60
[  839.714036][  T112]  kasan_save_track+0x14/0x30
[  839.718711][  T112]  __kasan_save_free_info+0x3b/0x60
[  839.723919][  T112]  __kasan_slab_free+0x5f/0x80
[  839.728685][  T112]  kfree+0x2b8/0x6d0
[  839.732590][  T112]  lmLogClose+0x585/0x710
[  839.736926][  T112]  jfs_umount+0x2f0/0x440
[  839.741254][  T112]  jfs_put_super+0x88/0x1d0
[  839.745774][  T112]  generic_shutdown_super+0x156/0x390
[  839.751158][  T112]  kill_block_super+0x3b/0x90
[  839.755844][  T112]  deactivate_locked_super+0xc1/0x1a0
[  839.761241][  T112]  deactivate_super+0xde/0x100
[  839.766022][  T112]  cleanup_mnt+0x225/0x450
[  839.770454][  T112]  task_work_run+0x150/0x240
[  839.775055][  T112]  exit_to_user_mode_loop+0xec/0x130
[  839.780350][  T112]  do_syscall_64+0x419/0x4e0
[  839.784953][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  839.790844][  T112] 
[  839.793155][  T112] The buggy address belongs to the object at ffff888067d5a000
[  839.793155][  T112]  which belongs to the cache kmalloc-1k of size 1024
[  839.807203][  T112] The buggy address is located 264 bytes inside of
[  839.807203][  T112]  freed 1024-byte region [ffff888067d5a000, ffff888067d5a400)
[  839.821088][  T112] 
[  839.823403][  T112] The buggy address belongs to the physical page:
[  839.829796][  T112] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x67d58
[  839.838549][  T112] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  839.847044][  T112] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  839.855019][  T112] page_type: f5(slab)
[  839.859008][  T112] raw: 00fff00000000040 ffff88801b026dc0 0000000000000000 dead000000000001
[  839.867591][  T112] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  839.876174][  T112] head: 00fff00000000040 ffff88801b026dc0 0000000000000000 dead000000000001
[  839.884844][  T112] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  839.893514][  T112] head: 00fff00000000003 ffffea00019f5601 00000000ffffffff 00000000ffffffff
[  839.902190][  T112] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  839.910853][  T112] page dumped because: kasan: bad access detected
[  839.917252][  T112] page_owner tracks the page as allocated
[  839.922952][  T112] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 6067, tgid 6067 (kworker/u8:11), ts 434846948033, free_ts 434773941654
[  839.942502][  T112]  post_alloc_hook+0x1c0/0x230
[  839.947286][  T112]  get_page_from_freelist+0x10a3/0x3a30
[  839.952856][  T112]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  839.958771][  T112]  alloc_pages_mpol+0x1fb/0x550
[  839.963627][  T112]  new_slab+0x24a/0x360
[  839.967793][  T112]  ___slab_alloc+0xdc4/0x1ae0
[  839.972481][  T112]  __slab_alloc.constprop.0+0x63/0x110
[  839.977957][  T112]  __kmalloc_noprof+0x501/0x880
[  839.982818][  T112]  ieee802_11_parse_elems_full+0x1db/0x3780
[  839.988722][  T112]  ieee80211_ibss_rx_queued_mgmt+0xc79/0x2fe0
[  839.994795][  T112]  ieee80211_iface_work+0xe2e/0x1360
[  840.000087][  T112]  cfg80211_wiphy_work+0x2c7/0x580
[  840.005220][  T112]  process_one_work+0x9cf/0x1b70
[  840.010177][  T112]  worker_thread+0x6c8/0xf10
[  840.014788][  T112]  kthread+0x3c5/0x780
[  840.018879][  T112]  ret_from_fork+0x56d/0x730
[  840.023481][  T112] page last free pid 8582 tgid 8581 stack trace:
[  840.029796][  T112]  __free_frozen_pages+0x7df/0x1160
[  840.036913][  T112]  __put_partials+0x130/0x170
[  840.041607][  T112]  qlist_free_all+0x4d/0x120
[  840.046220][  T112]  kasan_quarantine_reduce+0x195/0x1e0
[  840.051678][  T112]  __kasan_slab_alloc+0x69/0x90
[  840.056533][  T112]  __kmalloc_cache_noprof+0x274/0x780
[  840.061917][  T112]  crypto_larval_alloc+0x4c/0x2a0
[  840.067033][  T112]  crypto_alg_mod_lookup+0x157/0x520
[  840.072324][  T112]  crypto_type_has_alg+0x2c/0x80
[  840.077276][  T112]  xfrm_probe_algs+0x7c/0x3f0
[  840.081967][  T112]  pfkey_register+0xf9/0x910
[  840.086569][  T112]  pfkey_process+0x6dc/0x840
[  840.091158][  T112]  pfkey_sendmsg+0x42c/0x850
[  840.095747][  T112]  ____sys_sendmsg+0xa98/0xc70
[  840.100518][  T112]  ___sys_sendmsg+0x134/0x1d0
[  840.105192][  T112]  __sys_sendmsg+0x16d/0x220
[  840.109777][  T112] 
[  840.112087][  T112] Memory state around the buggy address:
[  840.117706][  T112]  ffff888067d5a000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  840.125762][  T112]  ffff888067d5a080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  840.133820][  T112] >ffff888067d5a100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  840.141872][  T112]                       ^
[  840.146195][  T112]  ffff888067d5a180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  840.154258][  T112]  ffff888067d5a200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  840.162319][  T112] ==================================================================
[  840.172165][  T112] Disabling lock debugging due to kernel taint
[  840.178327][  T112] ==================================================================
[  840.186389][  T112] BUG: KASAN: slab-use-after-free in do_raw_spin_lock+0x26f/0x2b0
[  840.194228][  T112] Read of size 4 at addr ffff888067d5a0c4 by task jfsCommit/112
[  840.201864][  T112] 
[  840.204197][  T112] CPU: 1 UID: 0 PID: 112 Comm: jfsCommit Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  840.204250][  T112] Tainted: [B]=BAD_PAGE
[  840.204264][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  840.204287][  T112] Call Trace:
[  840.204299][  T112]  <TASK>
[  840.204319][  T112]  dump_stack_lvl+0x116/0x1f0
[  840.204377][  T112]  print_report+0xcd/0x630
[  840.204418][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  840.204463][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  840.204507][  T112]  ? __phys_addr+0xe8/0x180
[  840.204545][  T112]  ? do_raw_spin_lock+0x26f/0x2b0
[  840.204596][  T112]  kasan_report+0xe0/0x110
[  840.204638][  T112]  ? do_raw_spin_lock+0x26f/0x2b0
[  840.204694][  T112]  ? jfs_syncpt+0x2a/0xa0
[  840.204735][  T112]  do_raw_spin_lock+0x26f/0x2b0
[  840.204785][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  840.204831][  T112]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  840.204882][  T112]  ? lock_acquire+0x2cd/0x350
[  840.204925][  T112]  ? __mutex_lock+0xe87/0x1060
[  840.204982][  T112]  _raw_spin_lock_irqsave+0x42/0x60
[  840.205026][  T112]  ? __mutex_lock+0x851/0x1060
[  840.205078][  T112]  __mutex_lock+0x851/0x1060
[  840.205130][  T112]  ? jfs_syncpt+0x2a/0xa0
[  840.205176][  T112]  ? __pfx___mutex_lock+0x10/0x10
[  840.205231][  T112]  ? do_raw_spin_lock+0x12c/0x2b0
[  840.205286][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  840.205338][  T112]  ? find_held_lock+0x2b/0x80
[  840.205398][  T112]  ? jfs_syncpt+0x2a/0xa0
[  840.205438][  T112]  jfs_syncpt+0x2a/0xa0
[  840.205480][  T112]  txEnd+0x30a/0x5a0
[  840.205524][  T112]  jfs_lazycommit+0x783/0xb30
[  840.205576][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[  840.205627][  T112]  ? __pfx_default_wake_function+0x10/0x10
[  840.205687][  T112]  ? lockdep_hardirqs_on+0x7c/0x110
[  840.205737][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  840.205781][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  840.205826][  T112]  ? __kthread_parkme+0x19e/0x250
[  840.205865][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[  840.205915][  T112]  kthread+0x3c5/0x780
[  840.205960][  T112]  ? __pfx_kthread+0x10/0x10
[  840.206007][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  840.206052][  T112]  ? rcu_is_watching+0x12/0xc0
[  840.206110][  T112]  ? __pfx_kthread+0x10/0x10
[  840.206157][  T112]  ret_from_fork+0x56d/0x730
[  840.206200][  T112]  ? __pfx_kthread+0x10/0x10
[  840.206246][  T112]  ret_from_fork_asm+0x1a/0x30
[  840.206316][  T112]  </TASK>
[  840.206329][  T112] 
[  840.441975][  T112] Allocated by task 11895:
[  840.446382][  T112]  kasan_save_stack+0x33/0x60
[  840.451068][  T112]  kasan_save_track+0x14/0x30
[  840.455748][  T112]  __kasan_kmalloc+0xaa/0xb0
[  840.460343][  T112]  lmLogOpen+0x571/0x13c0
[  840.464679][  T112]  jfs_mount_rw+0x2e9/0x6f0
[  840.469184][  T112]  jfs_fill_super+0xc46/0x1040
[  840.473964][  T112]  get_tree_bdev_flags+0x38c/0x620
[  840.479074][  T112]  vfs_get_tree+0x8e/0x340
[  840.483501][  T112]  path_mount+0x7b9/0x23a0
[  840.487926][  T112]  __x64_sys_mount+0x293/0x310
[  840.492698][  T112]  do_syscall_64+0xcd/0x4e0
[  840.497219][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  840.503114][  T112] 
[  840.505425][  T112] Freed by task 5843:
[  840.509393][  T112]  kasan_save_stack+0x33/0x60
[  840.514069][  T112]  kasan_save_track+0x14/0x30
[  840.518744][  T112]  __kasan_save_free_info+0x3b/0x60
[  840.523956][  T112]  __kasan_slab_free+0x5f/0x80
[  840.528720][  T112]  kfree+0x2b8/0x6d0
[  840.532626][  T112]  lmLogClose+0x585/0x710
[  840.536962][  T112]  jfs_umount+0x2f0/0x440
[  840.541293][  T112]  jfs_put_super+0x88/0x1d0
[  840.545811][  T112]  generic_shutdown_super+0x156/0x390
[  840.551201][  T112]  kill_block_super+0x3b/0x90
[  840.555902][  T112]  deactivate_locked_super+0xc1/0x1a0
[  840.561305][  T112]  deactivate_super+0xde/0x100
[  840.566086][  T112]  cleanup_mnt+0x225/0x450
[  840.570520][  T112]  task_work_run+0x150/0x240
[  840.575127][  T112]  exit_to_user_mode_loop+0xec/0x130
[  840.580426][  T112]  do_syscall_64+0x419/0x4e0
[  840.585033][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  840.590926][  T112] 
[  840.593237][  T112] The buggy address belongs to the object at ffff888067d5a000
[  840.593237][  T112]  which belongs to the cache kmalloc-1k of size 1024
[  840.607285][  T112] The buggy address is located 196 bytes inside of
[  840.607285][  T112]  freed 1024-byte region [ffff888067d5a000, ffff888067d5a400)
[  840.621255][  T112] 
[  840.623571][  T112] The buggy address belongs to the physical page:
[  840.629967][  T112] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x67d58
[  840.638725][  T112] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  840.647221][  T112] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  840.655199][  T112] page_type: f5(slab)
[  840.659179][  T112] raw: 00fff00000000040 ffff88801b026dc0 0000000000000000 dead000000000001
[  840.667765][  T112] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  840.676353][  T112] head: 00fff00000000040 ffff88801b026dc0 0000000000000000 dead000000000001
[  840.685024][  T112] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  840.693698][  T112] head: 00fff00000000003 ffffea00019f5601 00000000ffffffff 00000000ffffffff
[  840.702371][  T112] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  840.711032][  T112] page dumped because: kasan: bad access detected
[  840.717430][  T112] page_owner tracks the page as allocated
[  840.723136][  T112] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 6067, tgid 6067 (kworker/u8:11), ts 434846948033, free_ts 434773941654
[  840.742685][  T112]  post_alloc_hook+0x1c0/0x230
[  840.747469][  T112]  get_page_from_freelist+0x10a3/0x3a30
[  840.753032][  T112]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  840.758956][  T112]  alloc_pages_mpol+0x1fb/0x550
[  840.763817][  T112]  new_slab+0x24a/0x360
[  840.767986][  T112]  ___slab_alloc+0xdc4/0x1ae0
[  840.772681][  T112]  __slab_alloc.constprop.0+0x63/0x110
[  840.778153][  T112]  __kmalloc_noprof+0x501/0x880
[  840.783014][  T112]  ieee802_11_parse_elems_full+0x1db/0x3780
[  840.788920][  T112]  ieee80211_ibss_rx_queued_mgmt+0xc79/0x2fe0
[  840.794995][  T112]  ieee80211_iface_work+0xe2e/0x1360
[  840.800294][  T112]  cfg80211_wiphy_work+0x2c7/0x580
[  840.805429][  T112]  process_one_work+0x9cf/0x1b70
[  840.810379][  T112]  worker_thread+0x6c8/0xf10
[  840.814981][  T112]  kthread+0x3c5/0x780
[  840.819060][  T112]  ret_from_fork+0x56d/0x730
[  840.823659][  T112] page last free pid 8582 tgid 8581 stack trace:
[  840.829973][  T112]  __free_frozen_pages+0x7df/0x1160
[  840.835186][  T112]  __put_partials+0x130/0x170
[  840.839876][  T112]  qlist_free_all+0x4d/0x120
[  840.844485][  T112]  kasan_quarantine_reduce+0x195/0x1e0
[  840.849943][  T112]  __kasan_slab_alloc+0x69/0x90
[  840.854801][  T112]  __kmalloc_cache_noprof+0x274/0x780
[  840.860191][  T112]  crypto_larval_alloc+0x4c/0x2a0
[  840.865229][  T112]  crypto_alg_mod_lookup+0x157/0x520
[  840.870523][  T112]  crypto_type_has_alg+0x2c/0x80
[  840.875480][  T112]  xfrm_probe_algs+0x7c/0x3f0
[  840.880169][  T112]  pfkey_register+0xf9/0x910
[  840.884761][  T112]  pfkey_process+0x6dc/0x840
[  840.889348][  T112]  pfkey_sendmsg+0x42c/0x850
[  840.893939][  T112]  ____sys_sendmsg+0xa98/0xc70
[  840.898710][  T112]  ___sys_sendmsg+0x134/0x1d0
[  840.903384][  T112]  __sys_sendmsg+0x16d/0x220
[  840.907973][  T112] 
[  840.910281][  T112] Memory state around the buggy address:
[  840.915900][  T112]  ffff888067d59f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  840.923956][  T112]  ffff888067d5a000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  840.932014][  T112] >ffff888067d5a080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  840.940064][  T112]                                            ^
[  840.946204][  T112]  ffff888067d5a100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  840.954260][  T112]  ffff888067d5a180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  840.962350][  T112] ==================================================================
[  840.970402][  T112] ==================================================================
[  840.978449][  T112] BUG: KASAN: slab-use-after-free in do_raw_spin_lock+0x27f/0x2b0
[  840.986275][  T112] Read of size 8 at addr ffff888067d5a0d0 by task jfsCommit/112
[  840.993900][  T112] 
[  840.996223][  T112] CPU: 1 UID: 0 PID: 112 Comm: jfsCommit Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  840.996270][  T112] Tainted: [B]=BAD_PAGE
[  840.996283][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  840.996304][  T112] Call Trace:
[  840.996316][  T112]  <TASK>
[  840.996330][  T112]  dump_stack_lvl+0x116/0x1f0
[  840.996380][  T112]  print_report+0xcd/0x630
[  840.996417][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  840.996459][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  840.996499][  T112]  ? __phys_addr+0xe8/0x180
[  840.996533][  T112]  ? do_raw_spin_lock+0x27f/0x2b0
[  840.996584][  T112]  kasan_report+0xe0/0x110
[  840.996621][  T112]  ? do_raw_spin_lock+0x27f/0x2b0
[  840.996672][  T112]  ? jfs_syncpt+0x2a/0xa0
[  840.996709][  T112]  do_raw_spin_lock+0x27f/0x2b0
[  840.996754][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  840.996795][  T112]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  840.996841][  T112]  ? lock_acquire+0x2cd/0x350
[  840.996880][  T112]  ? __mutex_lock+0xe87/0x1060
[  840.996932][  T112]  _raw_spin_lock_irqsave+0x42/0x60
[  840.996973][  T112]  ? __mutex_lock+0x851/0x1060
[  840.997020][  T112]  __mutex_lock+0x851/0x1060
[  840.997068][  T112]  ? jfs_syncpt+0x2a/0xa0
[  840.997109][  T112]  ? __pfx___mutex_lock+0x10/0x10
[  840.997160][  T112]  ? do_raw_spin_lock+0x12c/0x2b0
[  840.997210][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  840.997250][  T112]  ? find_held_lock+0x2b/0x80
[  840.997304][  T112]  ? jfs_syncpt+0x2a/0xa0
[  840.997340][  T112]  jfs_syncpt+0x2a/0xa0
[  840.997378][  T112]  txEnd+0x30a/0x5a0
[  840.997419][  T112]  jfs_lazycommit+0x783/0xb30
[  840.997467][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[  840.997512][  T112]  ? __pfx_default_wake_function+0x10/0x10
[  840.997571][  T112]  ? lockdep_hardirqs_on+0x7c/0x110
[  840.997616][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  840.997658][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  840.997698][  T112]  ? __kthread_parkme+0x19e/0x250
[  840.997734][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[  840.997777][  T112]  kthread+0x3c5/0x780
[  840.997818][  T112]  ? __pfx_kthread+0x10/0x10
[  840.997860][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  840.997900][  T112]  ? rcu_is_watching+0x12/0xc0
[  840.997954][  T112]  ? __pfx_kthread+0x10/0x10
[  840.997996][  T112]  ret_from_fork+0x56d/0x730
[  840.998034][  T112]  ? __pfx_kthread+0x10/0x10
[  840.998076][  T112]  ret_from_fork_asm+0x1a/0x30
[  840.998131][  T112]  </TASK>
[  840.998144][  T112] 
[  841.233597][  T112] Allocated by task 11895:
[  841.238002][  T112]  kasan_save_stack+0x33/0x60
[  841.242682][  T112]  kasan_save_track+0x14/0x30
[  841.247363][  T112]  __kasan_kmalloc+0xaa/0xb0
[  841.251951][  T112]  lmLogOpen+0x571/0x13c0
[  841.256286][  T112]  jfs_mount_rw+0x2e9/0x6f0
[  841.260791][  T112]  jfs_fill_super+0xc46/0x1040
[  841.265574][  T112]  get_tree_bdev_flags+0x38c/0x620
[  841.270687][  T112]  vfs_get_tree+0x8e/0x340
[  841.275118][  T112]  path_mount+0x7b9/0x23a0
[  841.279539][  T112]  __x64_sys_mount+0x293/0x310
[  841.284311][  T112]  do_syscall_64+0xcd/0x4e0
[  841.288830][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  841.294726][  T112] 
[  841.297037][  T112] Freed by task 5843:
[  841.301006][  T112]  kasan_save_stack+0x33/0x60
[  841.305684][  T112]  kasan_save_track+0x14/0x30
[  841.310360][  T112]  __kasan_save_free_info+0x3b/0x60
[  841.315666][  T112]  __kasan_slab_free+0x5f/0x80
[  841.320431][  T112]  kfree+0x2b8/0x6d0
[  841.324338][  T112]  lmLogClose+0x585/0x710
[  841.328673][  T112]  jfs_umount+0x2f0/0x440
[  841.333025][  T112]  jfs_put_super+0x88/0x1d0
[  841.337549][  T112]  generic_shutdown_super+0x156/0x390
[  841.342938][  T112]  kill_block_super+0x3b/0x90
[  841.347626][  T112]  deactivate_locked_super+0xc1/0x1a0
[  841.353101][  T112]  deactivate_super+0xde/0x100
[  841.357882][  T112]  cleanup_mnt+0x225/0x450
[  841.362321][  T112]  task_work_run+0x150/0x240
[  841.366934][  T112]  exit_to_user_mode_loop+0xec/0x130
[  841.372234][  T112]  do_syscall_64+0x419/0x4e0
[  841.376845][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  841.382742][  T112] 
[  841.385054][  T112] The buggy address belongs to the object at ffff888067d5a000
[  841.385054][  T112]  which belongs to the cache kmalloc-1k of size 1024
[  841.399100][  T112] The buggy address is located 208 bytes inside of
[  841.399100][  T112]  freed 1024-byte region [ffff888067d5a000, ffff888067d5a400)
[  841.412982][  T112] 
[  841.415294][  T112] The buggy address belongs to the physical page:
[  841.421698][  T112] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x67d58
[  841.430456][  T112] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  841.438948][  T112] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  841.446925][  T112] page_type: f5(slab)
[  841.450905][  T112] raw: 00fff00000000040 ffff88801b026dc0 0000000000000000 dead000000000001
[  841.459489][  T112] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  841.468073][  T112] head: 00fff00000000040 ffff88801b026dc0 0000000000000000 dead000000000001
[  841.476743][  T112] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  841.485418][  T112] head: 00fff00000000003 ffffea00019f5601 00000000ffffffff 00000000ffffffff
[  841.494090][  T112] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  841.502752][  T112] page dumped because: kasan: bad access detected
[  841.509155][  T112] page_owner tracks the page as allocated
[  841.514857][  T112] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 6067, tgid 6067 (kworker/u8:11), ts 434846948033, free_ts 434773941654
[  841.534410][  T112]  post_alloc_hook+0x1c0/0x230
[  841.539195][  T112]  get_page_from_freelist+0x10a3/0x3a30
[  841.544756][  T112]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  841.550670][  T112]  alloc_pages_mpol+0x1fb/0x550
[  841.555525][  T112]  new_slab+0x24a/0x360
[  841.559693][  T112]  ___slab_alloc+0xdc4/0x1ae0
[  841.564382][  T112]  __slab_alloc.constprop.0+0x63/0x110
[  841.569854][  T112]  __kmalloc_noprof+0x501/0x880
[  841.574717][  T112]  ieee802_11_parse_elems_full+0x1db/0x3780
[  841.580624][  T112]  ieee80211_ibss_rx_queued_mgmt+0xc79/0x2fe0
[  841.586701][  T112]  ieee80211_iface_work+0xe2e/0x1360
[  841.591994][  T112]  cfg80211_wiphy_work+0x2c7/0x580
[  841.597128][  T112]  process_one_work+0x9cf/0x1b70
[  841.602076][  T112]  worker_thread+0x6c8/0xf10
[  841.606679][  T112]  kthread+0x3c5/0x780
[  841.610754][  T112]  ret_from_fork+0x56d/0x730
[  841.615351][  T112] page last free pid 8582 tgid 8581 stack trace:
[  841.621663][  T112]  __free_frozen_pages+0x7df/0x1160
[  841.626873][  T112]  __put_partials+0x130/0x170
[  841.631570][  T112]  qlist_free_all+0x4d/0x120
[  841.636182][  T112]  kasan_quarantine_reduce+0x195/0x1e0
[  841.641639][  T112]  __kasan_slab_alloc+0x69/0x90
[  841.646492][  T112]  __kmalloc_cache_noprof+0x274/0x780
[  841.651885][  T112]  crypto_larval_alloc+0x4c/0x2a0
[  841.656917][  T112]  crypto_alg_mod_lookup+0x157/0x520
[  841.662210][  T112]  crypto_type_has_alg+0x2c/0x80
[  841.667163][  T112]  xfrm_probe_algs+0x7c/0x3f0
[  841.671853][  T112]  pfkey_register+0xf9/0x910
[  841.676448][  T112]  pfkey_process+0x6dc/0x840
[  841.681039][  T112]  pfkey_sendmsg+0x42c/0x850
[  841.685632][  T112]  ____sys_sendmsg+0xa98/0xc70
[  841.690405][  T112]  ___sys_sendmsg+0x134/0x1d0
[  841.695081][  T112]  __sys_sendmsg+0x16d/0x220
[  841.699667][  T112] 
[  841.701976][  T112] Memory state around the buggy address:
[  841.707595][  T112]  ffff888067d59f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  841.715652][  T112]  ffff888067d5a000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  841.723709][  T112] >ffff888067d5a080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  841.731761][  T112]                                                  ^
[  841.738425][  T112]  ffff888067d5a100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  841.746482][  T112]  ffff888067d5a180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  841.754532][  T112] ==================================================================
[  841.762587][  T112] ==================================================================
[  841.770636][  T112] BUG: KASAN: slab-use-after-free in do_raw_spin_lock+0x265/0x2b0
[  841.778461][  T112] Read of size 4 at addr ffff888067d5a0c8 by task jfsCommit/112
[  841.786086][  T112] 
[  841.788408][  T112] CPU: 1 UID: 0 PID: 112 Comm: jfsCommit Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  841.788456][  T112] Tainted: [B]=BAD_PAGE
[  841.788468][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  841.788489][  T112] Call Trace:
[  841.788501][  T112]  <TASK>
[  841.788514][  T112]  dump_stack_lvl+0x116/0x1f0
[  841.788571][  T112]  print_report+0xcd/0x630
[  841.788607][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  841.788648][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  841.788688][  T112]  ? __phys_addr+0xe8/0x180
[  841.788722][  T112]  ? do_raw_spin_lock+0x265/0x2b0
[  841.788767][  T112]  kasan_report+0xe0/0x110
[  841.788805][  T112]  ? do_raw_spin_lock+0x265/0x2b0
[  841.788856][  T112]  ? jfs_syncpt+0x2a/0xa0
[  841.788892][  T112]  do_raw_spin_lock+0x265/0x2b0
[  841.788938][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  841.788979][  T112]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  841.789024][  T112]  ? lock_acquire+0x2cd/0x350
[  841.789063][  T112]  ? __mutex_lock+0xe87/0x1060
[  841.789115][  T112]  _raw_spin_lock_irqsave+0x42/0x60
[  841.789156][  T112]  ? __mutex_lock+0x851/0x1060
[  841.789203][  T112]  __mutex_lock+0x851/0x1060
[  841.789251][  T112]  ? jfs_syncpt+0x2a/0xa0
[  841.789292][  T112]  ? __pfx___mutex_lock+0x10/0x10
[  841.789341][  T112]  ? do_raw_spin_lock+0x12c/0x2b0
[  841.789391][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  841.789430][  T112]  ? find_held_lock+0x2b/0x80
[  841.789485][  T112]  ? jfs_syncpt+0x2a/0xa0
[  841.789521][  T112]  jfs_syncpt+0x2a/0xa0
[  841.789558][  T112]  txEnd+0x30a/0x5a0
[  841.789603][  T112]  jfs_lazycommit+0x783/0xb30
[  841.789650][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[  841.789695][  T112]  ? __pfx_default_wake_function+0x10/0x10
[  841.789747][  T112]  ? lockdep_hardirqs_on+0x7c/0x110
[  841.789793][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  841.789833][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  841.789873][  T112]  ? __kthread_parkme+0x19e/0x250
[  841.789908][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[  841.789951][  T112]  kthread+0x3c5/0x780
[  841.789992][  T112]  ? __pfx_kthread+0x10/0x10
[  841.790038][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  841.790081][  T112]  ? rcu_is_watching+0x12/0xc0
[  841.790138][  T112]  ? __pfx_kthread+0x10/0x10
[  841.790183][  T112]  ret_from_fork+0x56d/0x730
[  841.790226][  T112]  ? __pfx_kthread+0x10/0x10
[  841.790273][  T112]  ret_from_fork_asm+0x1a/0x30
[  841.790334][  T112]  </TASK>
[  841.790347][  T112] 
[  842.025767][  T112] Allocated by task 11895:
[  842.030179][  T112]  kasan_save_stack+0x33/0x60
[  842.034862][  T112]  kasan_save_track+0x14/0x30
[  842.039541][  T112]  __kasan_kmalloc+0xaa/0xb0
[  842.044142][  T112]  lmLogOpen+0x571/0x13c0
[  842.048477][  T112]  jfs_mount_rw+0x2e9/0x6f0
[  842.052983][  T112]  jfs_fill_super+0xc46/0x1040
[  842.057765][  T112]  get_tree_bdev_flags+0x38c/0x620
[  842.062875][  T112]  vfs_get_tree+0x8e/0x340
[  842.067304][  T112]  path_mount+0x7b9/0x23a0
[  842.071724][  T112]  __x64_sys_mount+0x293/0x310
[  842.076495][  T112]  do_syscall_64+0xcd/0x4e0
[  842.081020][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  842.086914][  T112] 
[  842.089225][  T112] Freed by task 5843:
[  842.093193][  T112]  kasan_save_stack+0x33/0x60
[  842.097872][  T112]  kasan_save_track+0x14/0x30
[  842.102547][  T112]  __kasan_save_free_info+0x3b/0x60
[  842.107766][  T112]  __kasan_slab_free+0x5f/0x80
[  842.112530][  T112]  kfree+0x2b8/0x6d0
[  842.116442][  T112]  lmLogClose+0x585/0x710
[  842.120775][  T112]  jfs_umount+0x2f0/0x440
[  842.125107][  T112]  jfs_put_super+0x88/0x1d0
[  842.129626][  T112]  generic_shutdown_super+0x156/0x390
[  842.135010][  T112]  kill_block_super+0x3b/0x90
[  842.139699][  T112]  deactivate_locked_super+0xc1/0x1a0
[  842.145088][  T112]  deactivate_super+0xde/0x100
[  842.149870][  T112]  cleanup_mnt+0x225/0x450
[  842.154309][  T112]  task_work_run+0x150/0x240
[  842.158913][  T112]  exit_to_user_mode_loop+0xec/0x130
[  842.164213][  T112]  do_syscall_64+0x419/0x4e0
[  842.168819][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  842.174714][  T112] 
[  842.177032][  T112] The buggy address belongs to the object at ffff888067d5a000
[  842.177032][  T112]  which belongs to the cache kmalloc-1k of size 1024
[  842.191083][  T112] The buggy address is located 200 bytes inside of
[  842.191083][  T112]  freed 1024-byte region [ffff888067d5a000, ffff888067d5a400)
[  842.204968][  T112] 
[  842.207281][  T112] The buggy address belongs to the physical page:
[  842.213678][  T112] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x67d58
[  842.222434][  T112] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  842.230928][  T112] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  842.238906][  T112] page_type: f5(slab)
[  842.242895][  T112] raw: 00fff00000000040 ffff88801b026dc0 0000000000000000 dead000000000001
[  842.251478][  T112] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  842.260066][  T112] head: 00fff00000000040 ffff88801b026dc0 0000000000000000 dead000000000001
[  842.268737][  T112] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  842.277411][  T112] head: 00fff00000000003 ffffea00019f5601 00000000ffffffff 00000000ffffffff
[  842.286086][  T112] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  842.294751][  T112] page dumped because: kasan: bad access detected
[  842.301156][  T112] page_owner tracks the page as allocated
[  842.306858][  T112] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 6067, tgid 6067 (kworker/u8:11), ts 434846948033, free_ts 434773941654
[  842.326412][  T112]  post_alloc_hook+0x1c0/0x230
[  842.331198][  T112]  get_page_from_freelist+0x10a3/0x3a30
[  842.336765][  T112]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  842.342676][  T112]  alloc_pages_mpol+0x1fb/0x550
[  842.347531][  T112]  new_slab+0x24a/0x360
[  842.351702][  T112]  ___slab_alloc+0xdc4/0x1ae0
[  842.356392][  T112]  __slab_alloc.constprop.0+0x63/0x110
[  842.361862][  T112]  __kmalloc_noprof+0x501/0x880
[  842.366725][  T112]  ieee802_11_parse_elems_full+0x1db/0x3780
[  842.372630][  T112]  ieee80211_ibss_rx_queued_mgmt+0xc79/0x2fe0
[  842.378704][  T112]  ieee80211_iface_work+0xe2e/0x1360
[  842.383995][  T112]  cfg80211_wiphy_work+0x2c7/0x580
[  842.389126][  T112]  process_one_work+0x9cf/0x1b70
[  842.394077][  T112]  worker_thread+0x6c8/0xf10
[  842.398684][  T112]  kthread+0x3c5/0x780
[  842.402761][  T112]  ret_from_fork+0x56d/0x730
[  842.407359][  T112] page last free pid 8582 tgid 8581 stack trace:
[  842.413674][  T112]  __free_frozen_pages+0x7df/0x1160
[  842.418885][  T112]  __put_partials+0x130/0x170
[  842.423578][  T112]  qlist_free_all+0x4d/0x120
[  842.428188][  T112]  kasan_quarantine_reduce+0x195/0x1e0
[  842.433645][  T112]  __kasan_slab_alloc+0x69/0x90
[  842.438497][  T112]  __kmalloc_cache_noprof+0x274/0x780
[  842.443887][  T112]  crypto_larval_alloc+0x4c/0x2a0
[  842.448916][  T112]  crypto_alg_mod_lookup+0x157/0x520
[  842.454208][  T112]  crypto_type_has_alg+0x2c/0x80
[  842.459160][  T112]  xfrm_probe_algs+0x7c/0x3f0
[  842.463849][  T112]  pfkey_register+0xf9/0x910
[  842.468442][  T112]  pfkey_process+0x6dc/0x840
[  842.473031][  T112]  pfkey_sendmsg+0x42c/0x850
[  842.477620][  T112]  ____sys_sendmsg+0xa98/0xc70
[  842.482390][  T112]  ___sys_sendmsg+0x134/0x1d0
[  842.487064][  T112]  __sys_sendmsg+0x16d/0x220
[  842.491656][  T112] 
[  842.493966][  T112] Memory state around the buggy address:
[  842.499587][  T112]  ffff888067d59f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  842.507644][  T112]  ffff888067d5a000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  842.515703][  T112] >ffff888067d5a080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  842.523756][  T112]                                               ^
[  842.530161][  T112]  ffff888067d5a100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  842.538221][  T112]  ffff888067d5a180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  842.546277][  T112] ==================================================================
[  842.554326][  T112] ==================================================================
[  842.562378][  T112] BUG: KASAN: slab-use-after-free in do_raw_spin_lock+0x11d/0x2b0
[  842.570212][  T112] Write of size 4 at addr ffff888067d5a0c0 by task jfsCommit/112
[  842.577931][  T112] 
[  842.580257][  T112] CPU: 1 UID: 0 PID: 112 Comm: jfsCommit Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  842.580306][  T112] Tainted: [B]=BAD_PAGE
[  842.580319][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  842.580340][  T112] Call Trace:
[  842.580351][  T112]  <TASK>
[  842.580365][  T112]  dump_stack_lvl+0x116/0x1f0
[  842.580417][  T112]  print_report+0xcd/0x630
[  842.580454][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  842.580495][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  842.580534][  T112]  ? __phys_addr+0xe8/0x180
[  842.580573][  T112]  ? do_raw_spin_lock+0x11d/0x2b0
[  842.580619][  T112]  kasan_report+0xe0/0x110
[  842.580657][  T112]  ? do_raw_spin_lock+0x11d/0x2b0
[  842.580707][  T112]  ? jfs_syncpt+0x2a/0xa0
[  842.580744][  T112]  kasan_check_range+0x100/0x1b0
[  842.580788][  T112]  do_raw_spin_lock+0x11d/0x2b0
[  842.580833][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  842.580874][  T112]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  842.580920][  T112]  ? lock_acquire+0x2cd/0x350
[  842.580958][  T112]  ? __mutex_lock+0xe87/0x1060
[  842.581011][  T112]  _raw_spin_lock_irqsave+0x42/0x60
[  842.581051][  T112]  ? __mutex_lock+0x851/0x1060
[  842.581098][  T112]  __mutex_lock+0x851/0x1060
[  842.581146][  T112]  ? jfs_syncpt+0x2a/0xa0
[  842.581188][  T112]  ? __pfx___mutex_lock+0x10/0x10
[  842.581238][  T112]  ? do_raw_spin_lock+0x12c/0x2b0
[  842.581287][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  842.581328][  T112]  ? find_held_lock+0x2b/0x80
[  842.581382][  T112]  ? jfs_syncpt+0x2a/0xa0
[  842.581417][  T112]  jfs_syncpt+0x2a/0xa0
[  842.581455][  T112]  txEnd+0x30a/0x5a0
[  842.581495][  T112]  jfs_lazycommit+0x783/0xb30
[  842.581543][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[  842.581593][  T112]  ? __pfx_default_wake_function+0x10/0x10
[  842.581646][  T112]  ? lockdep_hardirqs_on+0x7c/0x110
[  842.581691][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  842.581733][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  842.581773][  T112]  ? __kthread_parkme+0x19e/0x250
[  842.581808][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[  842.581852][  T112]  kthread+0x3c5/0x780
[  842.581893][  T112]  ? __pfx_kthread+0x10/0x10
[  842.581935][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  842.581975][  T112]  ? rcu_is_watching+0x12/0xc0
[  842.582027][  T112]  ? __pfx_kthread+0x10/0x10
[  842.582069][  T112]  ret_from_fork+0x56d/0x730
[  842.582107][  T112]  ? __pfx_kthread+0x10/0x10
[  842.582148][  T112]  ret_from_fork_asm+0x1a/0x30
[  842.582204][  T112]  </TASK>
[  842.582216][  T112] 
[  842.822600][  T112] Allocated by task 11895:
[  842.827006][  T112]  kasan_save_stack+0x33/0x60
[  842.831691][  T112]  kasan_save_track+0x14/0x30
[  842.836371][  T112]  __kasan_kmalloc+0xaa/0xb0
[  842.840960][  T112]  lmLogOpen+0x571/0x13c0
[  842.845298][  T112]  jfs_mount_rw+0x2e9/0x6f0
[  842.849802][  T112]  jfs_fill_super+0xc46/0x1040
[  842.854582][  T112]  get_tree_bdev_flags+0x38c/0x620
[  842.859692][  T112]  vfs_get_tree+0x8e/0x340
[  842.864119][  T112]  path_mount+0x7b9/0x23a0
[  842.868540][  T112]  __x64_sys_mount+0x293/0x310
[  842.873312][  T112]  do_syscall_64+0xcd/0x4e0
[  842.877833][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  842.883732][  T112] 
[  842.886044][  T112] Freed by task 5843:
[  842.890011][  T112]  kasan_save_stack+0x33/0x60
[  842.894693][  T112]  kasan_save_track+0x14/0x30
[  842.899368][  T112]  __kasan_save_free_info+0x3b/0x60
[  842.904583][  T112]  __kasan_slab_free+0x5f/0x80
[  842.909353][  T112]  kfree+0x2b8/0x6d0
[  842.913263][  T112]  lmLogClose+0x585/0x710
[  842.917600][  T112]  jfs_umount+0x2f0/0x440
[  842.921928][  T112]  jfs_put_super+0x88/0x1d0
[  842.926454][  T112]  generic_shutdown_super+0x156/0x390
[  842.931841][  T112]  kill_block_super+0x3b/0x90
[  842.936532][  T112]  deactivate_locked_super+0xc1/0x1a0
[  842.941925][  T112]  deactivate_super+0xde/0x100
[  842.946707][  T112]  cleanup_mnt+0x225/0x450
[  842.951139][  T112]  task_work_run+0x150/0x240
[  842.955741][  T112]  exit_to_user_mode_loop+0xec/0x130
[  842.961036][  T112]  do_syscall_64+0x419/0x4e0
[  842.965644][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  842.971538][  T112] 
[  842.973854][  T112] The buggy address belongs to the object at ffff888067d5a000
[  842.973854][  T112]  which belongs to the cache kmalloc-1k of size 1024
[  842.987902][  T112] The buggy address is located 192 bytes inside of
[  842.987902][  T112]  freed 1024-byte region [ffff888067d5a000, ffff888067d5a400)
[  843.001788][  T112] 
[  843.004099][  T112] The buggy address belongs to the physical page:
[  843.010496][  T112] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x67d58
[  843.019253][  T112] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  843.027745][  T112] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  843.035723][  T112] page_type: f5(slab)
[  843.039703][  T112] raw: 00fff00000000040 ffff88801b026dc0 0000000000000000 dead000000000001
[  843.048286][  T112] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  843.056872][  T112] head: 00fff00000000040 ffff88801b026dc0 0000000000000000 dead000000000001
[  843.065545][  T112] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  843.074220][  T112] head: 00fff00000000003 ffffea00019f5601 00000000ffffffff 00000000ffffffff
[  843.082892][  T112] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  843.091551][  T112] page dumped because: kasan: bad access detected
[  843.097954][  T112] page_owner tracks the page as allocated
[  843.103656][  T112] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 6067, tgid 6067 (kworker/u8:11), ts 434846948033, free_ts 434773941654
[  843.123208][  T112]  post_alloc_hook+0x1c0/0x230
[  843.127991][  T112]  get_page_from_freelist+0x10a3/0x3a30
[  843.133553][  T112]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  843.139471][  T112]  alloc_pages_mpol+0x1fb/0x550
[  843.144329][  T112]  new_slab+0x24a/0x360
[  843.148501][  T112]  ___slab_alloc+0xdc4/0x1ae0
[  843.153191][  T112]  __slab_alloc.constprop.0+0x63/0x110
[  843.158666][  T112]  __kmalloc_noprof+0x501/0x880
[  843.163529][  T112]  ieee802_11_parse_elems_full+0x1db/0x3780
[  843.169439][  T112]  ieee80211_ibss_rx_queued_mgmt+0xc79/0x2fe0
[  843.175513][  T112]  ieee80211_iface_work+0xe2e/0x1360
[  843.180815][  T112]  cfg80211_wiphy_work+0x2c7/0x580
[  843.185948][  T112]  process_one_work+0x9cf/0x1b70
[  843.190898][  T112]  worker_thread+0x6c8/0xf10
[  843.195500][  T112]  kthread+0x3c5/0x780
[  843.199580][  T112]  ret_from_fork+0x56d/0x730
[  843.204178][  T112] page last free pid 8582 tgid 8581 stack trace:
[  843.210494][  T112]  __free_frozen_pages+0x7df/0x1160
[  843.215717][  T112]  __put_partials+0x130/0x170
[  843.220411][  T112]  qlist_free_all+0x4d/0x120
[  843.225023][  T112]  kasan_quarantine_reduce+0x195/0x1e0
[  843.230486][  T112]  __kasan_slab_alloc+0x69/0x90
[  843.235345][  T112]  __kmalloc_cache_noprof+0x274/0x780
[  843.240735][  T112]  crypto_larval_alloc+0x4c/0x2a0
[  843.245765][  T112]  crypto_alg_mod_lookup+0x157/0x520
[  843.251057][  T112]  crypto_type_has_alg+0x2c/0x80
[  843.256012][  T112]  xfrm_probe_algs+0x7c/0x3f0
[  843.260702][  T112]  pfkey_register+0xf9/0x910
[  843.265296][  T112]  pfkey_process+0x6dc/0x840
[  843.269883][  T112]  pfkey_sendmsg+0x42c/0x850
[  843.274471][  T112]  ____sys_sendmsg+0xa98/0xc70
[  843.279244][  T112]  ___sys_sendmsg+0x134/0x1d0
[  843.283919][  T112]  __sys_sendmsg+0x16d/0x220
[  843.288508][  T112] 
[  843.290819][  T112] Memory state around the buggy address:
[  843.296440][  T112]  ffff888067d59f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  843.304496][  T112]  ffff888067d5a000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  843.312551][  T112] >ffff888067d5a080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  843.320611][  T112]                                            ^
[  843.326758][  T112]  ffff888067d5a100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  843.334817][  T112]  ffff888067d5a180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  843.342869][  T112] ==================================================================
[  843.350923][  T112] Kernel panic - not syncing: kasan.fault=panic_on_write set ...
[  843.358637][  T112] CPU: 1 UID: 0 PID: 112 Comm: jfsCommit Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  843.369322][  T112] Tainted: [B]=BAD_PAGE
[  843.373463][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  843.383517][  T112] Call Trace:
[  843.386791][  T112]  <TASK>
[  843.389714][  T112]  dump_stack_lvl+0x3d/0x1f0
[  843.394328][  T112]  vpanic+0x640/0x6f0
[  843.398319][  T112]  panic+0xca/0xd0
[  843.402047][  T112]  ? __pfx_panic+0x10/0x10
[  843.406474][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  843.412116][  T112]  ? rcu_is_watching+0x12/0xc0
[  843.416907][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  843.422550][  T112]  ? lock_release+0x201/0x2f0
[  843.427241][  T112]  ? print_report+0x2bd/0x630
[  843.431923][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  843.437575][  T112]  end_report+0x159/0x170
[  843.441912][  T112]  kasan_report+0xee/0x110
[  843.446339][  T112]  ? do_raw_spin_lock+0x11d/0x2b0
[  843.451385][  T112]  ? jfs_syncpt+0x2a/0xa0
[  843.455722][  T112]  kasan_check_range+0x100/0x1b0
[  843.460674][  T112]  do_raw_spin_lock+0x11d/0x2b0
[  843.465540][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  843.471188][  T112]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  843.476579][  T112]  ? lock_acquire+0x2cd/0x350
[  843.481271][  T112]  ? __mutex_lock+0xe87/0x1060
[  843.486069][  T112]  _raw_spin_lock_irqsave+0x42/0x60
[  843.491280][  T112]  ? __mutex_lock+0x851/0x1060
[  843.496070][  T112]  __mutex_lock+0x851/0x1060
[  843.500678][  T112]  ? jfs_syncpt+0x2a/0xa0
[  843.505020][  T112]  ? __pfx___mutex_lock+0x10/0x10
[  843.510063][  T112]  ? do_raw_spin_lock+0x12c/0x2b0
[  843.515107][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  843.520749][  T112]  ? find_held_lock+0x2b/0x80
[  843.525459][  T112]  ? jfs_syncpt+0x2a/0xa0
[  843.529799][  T112]  jfs_syncpt+0x2a/0xa0
[  843.533965][  T112]  txEnd+0x30a/0x5a0
[  843.537874][  T112]  jfs_lazycommit+0x783/0xb30
[  843.542571][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[  843.547790][  T112]  ? __pfx_default_wake_function+0x10/0x10
[  843.553625][  T112]  ? lockdep_hardirqs_on+0x7c/0x110
[  843.558841][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  843.564485][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  843.570129][  T112]  ? __kthread_parkme+0x19e/0x250
[  843.575160][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[  843.580372][  T112]  kthread+0x3c5/0x780
[  843.584457][  T112]  ? __pfx_kthread+0x10/0x10
[  843.589057][  T112]  ? srso_alias_return_thunk+0x5/0xfbef5
[  843.594699][  T112]  ? rcu_is_watching+0x12/0xc0
[  843.599485][  T112]  ? __pfx_kthread+0x10/0x10
[  843.604087][  T112]  ret_from_fork+0x56d/0x730
[  843.608685][  T112]  ? __pfx_kthread+0x10/0x10
[  843.613290][  T112]  ret_from_fork_asm+0x1a/0x30
[  843.618084][  T112]  </TASK>
[  843.621306][  T112] Kernel Offset: disabled
[  843.625627][  T112] Rebooting in 86400 seconds..