last executing test programs:

1m37.182576854s ago: executing program 1 (id=903):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x80082, 0x0)
write$vga_arbiter(r1, &(0x7f0000000040)=@other={'lock', ' ', 'io+mem'}, 0xc)
close_range(r0, 0xffffffffffffffff, 0x0)

1m37.112576358s ago: executing program 1 (id=905):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01040000000000000000010000020900010073797a30000000002c000000030a010200000000000000000100fffe0900010073797a30000000000900030073797a3000000000001c0000060a010400000000000000000100000008000b4000000000d81b0480541701800e000100696d6d65646961746500000040170280080001400000001318020280da000100eacc8759c940812b39f267d0d50d0499c80ced83ec4e58ded054b8c4a69ce3e9988eede7727e27e3dbff7e874cb1b05d587c253d495a053c719492db971f200e5bcf9a3bc095a26b61c9223f919be897ec511a8f508c6a5c8b12302d7734616c27da2316dd53a73312d3b378520796a6e349b06f99806394ad060919c8e6ec0702663f3c0ab0d9ed5f5944b8c19374ca21c2d2af8a899321e4549923584914221e95e35a16e33def4b5fbd5a78387388356f070ebdf992da0d227e98833e7d1ac7b846b257489164571ad67de3a54982f48f6538870e00002800028008000180fffffffb080003400000001f08000340000000800900020073797a32000000005400028008000180ffffffff0900020073797a31000000000900020073797a31000000000800034000000004080003400000000208000340000003160900020073797a30000000000900020073797a3200000000260001008d8fbb0bd19126e91fa6bb081a555f4f093b22335ea65b5e6443a42bc7772c627563000094000100a601cb73261b6882237a065ff363762d4e1f15598e444ff364754c34b4528543748c9b79c430aa603175a7e3b5b9d190a2c2c4188b7c26120148c094d265a74365a97767ab9cbb31397039ab3f063f96a0d751f68f1af1a4f74a3f5d1cd4c3f29834815f07d702f399b124dfd3b860402c6998b9ad7d6cab6628759fc92df931a9e7e7bb6acbcb7ef909c15a79d6479a0800014000000000bc1102806000010065fe9bb27826716fe37215876f3fdda74da914f0fe731980c3a4996a301da00f85e6a0d1e57217beef5c385d81f53cda9f47f7a3be67cf71ac8f58d16c169cfd9eba864d0d4d18181c1553667bc0f38b5d57f6db4617cf5aaee197826b000100f04fae3424364745390144ae9195c1d849951647176fbdd72c494fc2c8de4c3944c44516d2102eb25df75495a12cc963f6a65ea08d592069903d9ee593f218fb2d283c99fd01863a445de39926371b52a915a28c9fb94599947edf821d946b401a8b5693727aad002400028008000340000000060900020073797a32000000000900020073797a32000000000400028024000100a1d1361784bb6ca44fd5d07d33e06b7c0400466cd48ee5496c948e573baa0d077c0001007cec8b0057578ebd97c694cb01a31ef11e6f6f569023457553731f08213dcee163ae01b55a7a5fd908b8b74bfb5976c6b37dc1869e7383660478b5ff689033897f8792462855aef9e6222e794a93f8e9e1f6908c646c7b0bc78eb6bfa6fd829658a286d8b211229ec22252f93aa88bb87d05a35cf8e88d2c100002800900020073797a3200000000040002800c000280080003400080100004100100a50dccc20bdba1839e7e75a6bd58dac9063761500001c99a5a3edac0be788c5e3a0bd46472e7f5b6e49c7d9a9bec4b199c37e72b6e37497d9a7ff6911f9e588b3f5973c3bb9d22d90fede8ff634ed65fd5e4c0aa24a8f81e7ffc690221569c425c0e98c4c76a0b2fcc283328eee6e7fbb9348622add94e22229754b31f66b336bf5fa31b7d628a9024383408755f9d90e9050cb637524ca1b83f22b2009944656cec2b6696b528571e10fd82b0526b9dd7c128953863376e0bb9931b085db2572561e67b227763010f1f41dd5eb52b076900354c6c39279e0ee4d9d42f002b923518d13a0e5c092ce532d9f4b74fa8039549eaee57f6db389b0fa08604caa4edadef0cc3825133d26a4db36770cc2384822cb67efcb1fda960bb9b30b43f0f480bb38f9695d244153d411d407180c42f0b7edbc2a67dc0127442be628e5923eb9ede3579666fe9054afae87fc70928a7f65acf020628ef352f0e536a73d0cad686607d8958ffa02caa38305c0d6c5757569479c7d24f2f77828d029c6caf99bd9ebe723187521c9a90860a71bcb2756eda673f05138112c46cf01452d493ca5c7169fdd9b072f249f465e06e98c4e14fe87eebe28712ef7ff84c6501cb708ad2a8a256a2a6996bd449a62e6f08ec4338be46d84c129fb555ffb8857a9662098cb0123f82cb348dff614cb0d5fd9bd88b0052981dae9375edc65939f6a372dd26b9fd6da8e7aa60d2b77870a388477575683e4b071f8df923b38dadafff09eae68dbad4932d70a9a76cff3bb7c2deb3efe1c311ab212380cc51986cd9eacad9ef77b0e3d7212fdacc25707ac72518ee9b9ac136fb3297fb3197ef04e489aef2cdb5c21ddadea7ac8eb4a5b411c24e9ad00de7b07e8b2299fa6b85f8eed59aca91622bf9ebafc8051413ff279e88b8c835f486e9e169d0d0b71a86182a0f153db5c74e2bfba3355b21b155ef77a1aaf39f4031132281a99171455d6801c435073d5d8143b24d9241bba82b7553e7b36c44062fc4047bf4bc8d6c9d594dd6bb220297616256ae9d30d98d33c1fad934f2f392bcc977d417d6463f84feb16f410045772bb92ed2d7eb93fec3dbe9490f10b4e7e293a50c1e196b8c4b9479013b9f9ad74eb96d7e828e0843f56a0c652b1054e7c20740cd540eb78c45d46ab7ee71e908b2fe1f072b5066ff2b8c232992ce6e38629f3acdfc6876dbc6f67e91ca069b8aa785b94d6569667f4a5675b1ad3274f96c411a8cdb500c4a50d56951d196a5849d7d4651cf38d73b88c66a6e9ac9d6103ded9f686fda7a56d262b5f7aca3661329ff505152d61bb10306e03338bc331096513123926b8b3005bf63486b8179ffbeba6c2122d53caa76ba756e1b8c5dd2d64915017d0ac348aac7e20280700b0379604c57988f4d13760e16ff4c29fd6ad76775d8c1619cc9a286958ea390635c90957aeac760caab20f297765091e8c4620e4041c256e3e063c4a75ad4e1b8563e84393f77f36212baba9c6644735de1b09acc0c33d88ec1c86f016e6fb8c0662645d2755a5470043c1bd2059079723ca0d0acb27c1916bf3821309606b8876ca60b87e52dce1fee4c697fc606406ed9d5aea44646891df32dfa567e9b93c02fcdff6e8a3583bd0c8507974805c0786895489f69d19c8970a762b03448894187f3150fcf433b00ead09987cee6473e28492532e74c846d0ab6e7908e260571f62e712fd8d0212030e41681b1e23c8f60af3c458eba1d41c1a365901039adee88ccc1f8dd06911ec37048509acbb56491ed5bc91d274faad42ca11e2b3d02f14c95d20aab34e313f1b91928408142d19570b217237b39a6281322b7cc7d8dee6a07145cd3827dff0e55b7ac5ac618e8e81b42002efb045fff6c08915888470bbe430749693c0d65c182c3483561624b7c309e19e94ba194f403ee8a1406d5f09df5cfa3839e1017d99b226b40a6baa06aff4b17a6fe995a6a83c56bba65a118bd93432d27d44fcc125e395f818fef7b82360eccc399ed0f03e1f0be86baeec92b67b54fcab9389bb5fdcb8b4303b6c2a4262ee30b37b917c6e14f2b52d481d2e5ad02739851b203b8602b983dc19bffdd3748fd0b29dc6b70054e68534888c02cdef58d15c79258c9880dd32ad90fbd2c766b2a68b880e7f0262640fc3e32c88e913dac1cf34201adda0cd457e87013889dc6f69d17bf1318b11c6293c1fb429050dcd33af8b7e31ce38990d358da60c5b31d16dadd46c6aad637b92ccad11b6249679998be4918d50e8208dd8286b1e325b8e00bcbd9d707481752ecc6c5bfdb12aa88e14a154db4e79a64daa5ee9a53ac351065da81f07a9e427c3f215f11deef388b8f9960ac15251f2bb02ec282c858605061006211958260a8ce394f55a1c70883271709f24c1eb3f64eff2c2b69fb1368cce3d0f8d3d62e6192fc8b2368b0ae1311da57a8633060153293435ba8945249b9226ea630b2b6aa33d181cacddda6d3338fe6e9f1779d966d14c1f156757d5f5fb15102002c39421cb41b97b142853b6da4b86bb88aadf526447c5a12b4c324f9a1604cb7956b9afb5c596641f9cd9fc6be37eff82f32ce45d0515bf1cc966b8e57397986817399c98047622c87acfb1c6bfb0a37f326d285e22f6308bd1384c1e8681d44762dae45e073d246b52f6414eedecb90217057d42f985a2f8e2acd041af03e61d69e67e1689459a267090993e3d98f45314b9d43570a482c21ef678793f85f181eb677b4f73981c5d0a1ca8c6e65249359ca95093185cc8640e1f1cec8abfef53ba9c7fc24f0ca20389e9606dcfbaa93f5426e084d9cf522b3c75411aa34c22b289b1a7bd3ab01efebc27a1e09ee81056a113839234c0400dba9696c219eeacae13623505cdded580bc54819974c06ffcbb87c45d377c0bedf25907327bb7f4d07b600c9a816620815275c75aca418ade32ea85c965b379e8af6d8c8a32aa7f546978617cd907d39e75aab3221af030194559e73d93e74d897b114b39d53ec305d332310b7abbef44569307703e916f7514b8497b6f3fb6f0daccd7bd301f67cad840419cf7128aa0b6264c6bbfd0c21eb6771bfbcc8590cbf7de3e6d9aa83667deb776715736c9194bb8825d0abce6d9b2693f93aa81ca67eb0ac9566456d6dababb75ccef060df30c8c23be41560e58f9f846debbf43765649047187cc7549d6728190675e7be45b3f56ed71564ae74b544b493e567459503b237a811a84036512e0728879eecc085ed1807613eb097ed784237c8746e96b73912be98f20dd2e2d4a79d0f6df706cf2366acbd01eafad1de8930d04bef65a5ee17ee453d5cb648d6279dd602814445d2967af8c1b1e92dc049ad9bee6f3b746ba5d8323b02f3ad671538f71efb65dd31fb86c090b77de525a678c12be72b86a62d1d850a1ab62ec46e0f11d34f43dac738bb2c2f925af7cc9d46a2b63f54077f0bc0035848d948531f1071ef4e1b8ba9a4fe2e4e1778c4f715a97787c29a4187c718dedf0459a4a6c736d0cefd2d6e2c49b7332d68ede037fe6f4281fee0afeccdd2c22763783f681ed014461aa805fdce74a1712a79473b5d99ab08b9dd4c3c6eae5d16f689ec2084382bf1b44fb1ac891e0a5adddcefb1b11f755ff2eadfa2d992c740826b246d3a91346a87f8802796e269323151f9c359715c6199338c003e19f8dfc474bc898bc3f0ef4a9b8d47cea6c655840dc9cc685c6e16104beadca4b069957fd54b62c6077c717f1b8ff6052aa89237ce8b71c44ca4f2fcedcee464774eb56132ddf1c037def1ad39a14e00f76f1fe84d90b48dd3c28bbbfeb157416b659b740bc35949765e8644a50eca9116c043718e233f80a307cf78c93cd6e38a2cf143faaaf602806556dc293d4907f5aa4e541901ee12267697cfc7fa35d979d6aaf8312e21c4f571dd32b506fc488da3843629ff5b63db55a5021286346b691ce7d8f930cdbcb4d07411f585de89696b33e0a8f32bc42ec9f6699f4a8af2fd74d1359898558ea0158342ff7703611af8d5a98c537b3bf6856bdfec88c73013b9cdcf987a12c9df591aa75d28ead7537e975479b9712d713b36744e5dc4ffd05f168be52bd0f4ffeb4ae6a638f2e415ef1a2d5d4d9d9a9e8bdb08265492b49e2ca6651a93230ed3ba9c09bc112591117939b043016732a083be675327b92c4624cbc62113c85253e653d001c157d23a3d1784a1cc1cf6d564bdb1c910a492d351c3471ee5486887c1f32555fb286da41ae46f3910516ed3bc4c8262cf6a668d0fb4f472dd7ffd23f9c5dbaa9f22f0f5a97905effdcb7877aba1213a2412bc5bd5fc6d8e7d0e7be5baa3c09dcc2b2299a72450adf04667244c930e638d4ce768386f8d954fba62a4fdc723c7cb8432361addbf15c086b4c1321463f2ec34d623426c4de8f4724b403ca013d5ea473be184d44716c3d7bc74d802e7f3898799346a752130aa3db94962ef7625fad6d2fa3b3ce37ba6ece06a4fde35b6490285bb66718551ca883edef903d3885deb852dd05df86eedec946b3543cf85cc5f3f89f13dae6cdc9d3b238fce59f4aae66ff2aba8c99ffd7c14b07a069fbade76084bdfbcecc00492147356d3d931bf15cf4b759981c290b9951d7abee0e43a6f9fac598c174d2ae0894dc5697633a0d051c5ace7f295376b53cfbfb5b49d01d09e56912d74d9494741c6fde0562004c5397c9f477a80be0db173a5336cfd74afa55f8afb1f0b93f2d6cc8b18cc3bbc954291a69c889f8361d0d93ccd9f1e0d950e08e1030eed47957c369e64c97aef34c289a778863d34684d90f54ec29a1a45b058d96dcd77d4708c8ce8fa087dc212f0f4785b1e145c7e6c734fcc8ec0a0fdc457cb60c57bc1259d05ed92ddacc9ba2d8e810ffde8ccf67ec43ac8f05c5f9dff3efbafe67271a7cbfd85dc90f870a3a2be2145b767edfa0e666a041ca7b99ac6cf09379df560e27bf00b60acc8bdc28bf765fd1a3a6daf20905e5f0a2dd473b3fbe1eaa414e5af8d4fa9847af219db7118d609cf28a45d810cfc2cbc9dfcdd1676816309165d89cf3a138fb785f4e41adb7e15cf40e6401ca684bfb976d4a7989b4fe6666fd926857366da896815d243c033fa243f6d02c683091d8b9ba613225246ab1f661f8085da9f18682e410e9aa771e6f30cb8b00d17e7cfaefd9d9b80a8760506f34ba04e0844b5dc8ec53cdf578d2a0bbdbe3ba4c92ff75d85caa97b396405f06dcecf136a3a73944a44e333df258a86960285f6cf2a5185b9e1afdd6feadef8f25b0836ab644eaedaa39b7f840332b6ba4a2e2ca4007dc02a8009e81d23428651a597437155d03a177e9c8501fbfca334d2515cbbde3116e5db438de268eb4ed4c29c7e19a421e7581969919449ea4982018a0ab283790a3741495572568476abc5ef7110db461167846cdfb21f5af30692724a3930b34a95fbfd2fea886ae5c3d30ab3737a5df1689ca3e30e24c1a907196e34002247bec3c7b58ead4c5b374f2ff6408bfc8f513c6bf7e8cf3a493046c16340459053a569fedf652bd4f6b04c43fa770b084defa3b2d7182feff095c4f0fd23e33ba1a3513e7a9c6a42ac35afa085083fe1ec331a1b1d4b11c5fc9573cfaf984027c98191ef52ec14e23477ce2b8ebc8523f3dc74fea42984d8711c2d5a98a92bfa26e8b92053e448f1d0aa9b3ad6bb159e08eb923d710e50784166e2d0021a933de490eb0542e45072c178646a6f674a5eabdde0aff8c20ef266c41bcb3150a8e2948e46e618988d44305ccb39dd77909f24704000280b80002809c000100875ba50afb7c4103b226f60ec3155234e3877c38dfdddca157704e58f963af3fd3ab9cddf625c2c3b44632f25af3de897f9aef70806700bc24c712677751fe844e94e44aa78410a88d4d32cc8fc592535e47a2045b6b13fec2acff1c57ec2e44789220c6ad86cde3262c0e29767d0793beb652eaa9ef1c9befb0a0641870d88c46e54141d2d8882c844b51249f0528a3413711f0c9b13a3b170001004310bc2a4e2de1f78da171e70703a65b8066da0004000280c0010280490001003342d233e05edebf6453ad40ffb8fdc32e50e78270ec9bdf6e7643df95e8d153f0fc5e15f615da4801b0fdb192177422b143dbbe14ee95b9f90e9d8797ca929c8a7ca57574000000e40001006aa6eaac6f4b461864c9dbab56133eaaa9f50b6770a119a9d89fec6e4376b5b2c32f661be94a4fe7c0755fd642f4b8d4752b9660d5b61226062d8871599bbcfa7c8206e27495557f57bc4647d209c70145e88dfe8b23aab7743c420ca8d3bffa2d96d91374fa565ac88aba12fb8163ec8d485eda1ff86f398f947db05a51b74abee278e6add982c178c4e08fb5aa9ef689629f74947a06d3b2d653216aaba7124ab6cf2a2bb2662834fc66fa32961f2065450b967516aaa8bed092ee58639c4fa0afe229c4a5e5c6f0d899360b0a26467db5b4f43fb3228fab59ae84be114ba0880001005ad7e6e7290ad3eb30b6f62075fa7597f1fd84d9549fb819d48dc0632c14e96918cc653ec6718691516a727a180f8cd727f98394328b476bd4496f31fbdbecac89913ab041d49d9083286f1919c157b091587e87ec3ece2bfeb2c64400e7f8d1919215eb96d3f0919ae61554cf4911b5c2b6e2332e869e337ab23d2de9544ec2b5304dc5040002804c00028048000280080003400000000008000180ffffffff0900020073797a3100000000080003400000000708000180000000000900020073797a30000000000900020073797a300000000048000280340002800900020073797a300000000008000340000000020900020073797a3000000000080003400000000808000180fffffffd100002800900020073797a3200000000440002804000028008000180fffffffc08000340000000069d6e46dd337029c308000180fffffffc080003400000000908000340000080010400020073797a30000000003c0401800c00010062697477697365002c040280080003400000000808000240000000140800064000000002080006400000000068020580bb0001001d92704a203d5ecc985c4e4280e5378a36a2856959ffa601c237cc270251cf18420d11613ec98e629c7d84c655efcb2b5ecd71666675bf512cadfe09e4d05a4f60f60e007ca1cf70a5185f973cec0f1ab052acf1acf6a2df83dd88facc62c6e94a1b6368d6bda68abcaed2ee48c3d589bf2a814b728efb93401dfa1d1063200c10e56294dba0e7b780ce0f6090bd0de9f5e000c98c4b97cd985c91284c2bca23e4757407bb41fd8de797502a72e122032d4ef3160f9f7b00fd000100854e3cb6d05d310db3d528811da7f7450ebb2d62cddc6981343570b9f4ab17d75de9411dea482f508c0dce42c25c4778ebc56bb303f9f51c489eedffcb1490560ab26ab7507ec029cca3ddfe7c4f4f6d91db07cbc008636bc7bea7f96954d31da9d8a9ca043df7b409ca2864d56fc6b2a70fcc2f1a3579737bf47542dae337d5203869caff9ab95a317c25521ebf848fad8ceb87f4655ace0701dbe961e9dcaeffa37bfa2e9d127d61b8d6edc1437b46f54c061e1c9d68120ac8300e91d19c708aa9589c37de59a9f8df5546855e934599a2f31b6cb847347fc02231fec395b906e60300340d60ebe7a3f23e1aa6eec9e0150a9d16b3c25e590000002800028008000340fffffff8080003400000000908000340684dbc580900020073797a30000000006200010091de8d9ca3503f5a0a8259007bc5088ccfe97cfebb5ebb90e05d4e8a63fcbee6f14ab7eff7469cf243a6ef6e528b811dfd72af1e7e08de8fbdd4849367ea82016412fab2ccc0fb94fa63fac7fd0c6ea48c0e9ac7d1a30ecf3e70e44ed5ff00001c0002800800034080000000080003400000000308000180fffffffc080001400000000d600004804000028008000180fffffffb36ff020073797a3000000000080001802b30a3bc08000180000000000900020073797a31000000000900020073797a31000000001c0002800900020073797a31000000000900020073797a3200000000080002400000000a30010480380002800900020073797a3200000000080003400000000908000180fffffffc0800018000000007080003408000000008000340000000050b0001000bca99f460f4b0002800028008000180fffffffb0900020073797a3000000000080003400000000308000340000001ff04000100bc000100e27404a10a99dbcc4575917adc29373e2cc46e5e8f99d7a36b7c42c92713cce62084d863a11eb9c2e19fde212924e527db981a9be0c2c15f6a04a67e9e20f86e4bebd07665e2d01da200712427a5525403c1c75468f31b91a60def25f7757c9921d08b9a5b0bc6f8953efbd0416091bf2b30d9a37e789198313dd07b7b70cebff25c562434b67e9a6b70708dd84c86135ab9b0ffda2c4b2fb4a139220c101f4c0a3d58eb124346005c82dea6f0f36444b28300758475eb3d34000180090001006d65746100000000240002800800024000000002080003400000000d08000340000000090800034000000001100001800a0001006c696d69740000000900010073797a30"], 0x1c74}, 0x1, 0x0, 0x0, 0xc000}, 0x0)

1m37.052633162s ago: executing program 1 (id=907):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000008300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syz_fuse_handle_req(r0, &(0x7f0000006300), 0x2000, &(0x7f00000041c0)={&(0x7f00000001c0)={0x50, 0x0, 0x0, {0x7, 0x29, 0x7, 0x22110039, 0x1000, 0x0, 0x7ff, 0x58, 0x0, 0x0, 0x6, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x2)
syz_fuse_handle_req(r0, &(0x7f0000004300)="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", 0x2000, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)={0x78, 0x0, 0x100000000, {0x6, 0xcbff, 0x0, {0x5, 0x5, 0x200000003, 0x6c, 0x400000000000007, 0xd, 0x1, 0x6, 0x101, 0xa000, 0xfffffffe, 0xffffffffffffffff, 0x0, 0x3, 0x1}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

1m36.905627031s ago: executing program 1 (id=914):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x1400c, &(0x7f0000000680)={[{@test_dummy_encryption}, {@init_itable}, {@noload}]}, 0x3, 0x470, &(0x7f0000001240)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})

1m36.599540605s ago: executing program 1 (id=922):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000080)={0x34, r2, 0x1, 0x70bd2c, 0x0, {{0x2}, {@val={0x8, 0x3, r1}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16fd}], @chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_CENTER_FREQ2={0x8}]]}, 0x34}, 0x1, 0x0, 0x0, 0x48010}, 0x40044)

1m36.273898094s ago: executing program 1 (id=926):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000580)={r0, 0x64, 0xfffffffffffffffd}, 0x33)

1m36.163945985s ago: executing program 32 (id=926):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000580)={r0, 0x64, 0xfffffffffffffffd}, 0x33)

40.753906907s ago: executing program 0 (id=1609):
syz_usb_connect(0x0, 0x3f, &(0x7f0000000b00)=ANY=[@ANYBLOB="12010000d0918108ac051582588f0000000109022d00010000000009040000030b08000009058d67"], 0x0)

39.544277495s ago: executing program 0 (id=1632):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x10, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', 0x0, 0x8030, &(0x7f0000000480)={{}, 0x2c, {'rootmode', 0x3d, 0x8000}})

39.544112792s ago: executing program 0 (id=1633):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000001000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000004c0), 0xfe, 0x269, &(0x7f0000000200)="$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")
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x9)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10cd0e0, 0x0, 0xfc, 0x0, &(0x7f00000000c0))
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
symlink(&(0x7f0000000440)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000980)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

39.414271596s ago: executing program 0 (id=1634):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount_setattr(r0, &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f0000000080)={0x2, 0xf8, 0x40000, {r0}}, 0x20)

39.414088953s ago: executing program 0 (id=1635):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000009740)={0x14, 0x12, 0xa01, 0x70bd26, 0x0, {0x7}}, 0x14}, 0x1, 0x0, 0x0, 0x90}, 0x0)

39.204087852s ago: executing program 0 (id=1636):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000040)={0xf0f017, 0x1})

39.091087865s ago: executing program 33 (id=1636):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000040)={0xf0f017, 0x1})

7.049364572s ago: executing program 3 (id=2050):
setresuid(0xee01, 0xee00, 0x0)
setfsuid(0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_refresh_period\x00', 0x2, 0x0)

6.982350813s ago: executing program 3 (id=2051):
syz_usb_connect(0x0, 0x36, &(0x7f0000000f00)=ANY=[@ANYBLOB="120100007ce7c810d804300a471437ac780109022400010000000009040000020de67a000905040200000000000905810284"], 0x0)

5.012750141s ago: executing program 3 (id=2080):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@updpolicy={0x1bc, 0x19, 0x1, 0x0, 0x10, {{@in=@remote, @in=@remote, 0x0, 0x0, 0xffff, 0x0, 0xa, 0x80, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x0, 0x0, 0x9}, {0x1, 0x0, 0x80}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, [@tmpl={0x104, 0x5, [{{@in=@local, 0x0, 0x32}, 0x0, @in=@broadcast}, {{@in=@local, 0x0, 0x2b}, 0x0, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x800}, {{@in=@loopback, 0x0, 0x32}, 0x0, @in=@multicast1, 0x800000, 0x3}, {{@in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x2b}, 0x2, @in6=@private1, 0x0, 0x1, 0x0, 0x0, 0x1}]}]}, 0x1bc}}, 0x0)

4.999649985s ago: executing program 3 (id=2082):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000300)='./file2\x00', 0x8c80, &(0x7f0000000540)={[{@fmask={'fmask', 0x3d, 0x1}}, {@umask={'umask', 0x3d, 0x5}}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-2'}}, {@allow_utime={'allow_utime', 0x3d, 0x801}}, {@errors_continue}, {@discard}, {}, {@iocharset={'iocharset', 0x3d, 'cp850'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-1'}}]}, 0x3, 0x1510, &(0x7f0000003640)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x2020)

4.858292455s ago: executing program 3 (id=2084):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x11, r0, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0x54, &(0x7f0000000040)=0x80, 0x4)

4.490484691s ago: executing program 3 (id=2085):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x4b, 0x1, 0xffffffff, 0x6, 0x0)

4.133017413s ago: executing program 34 (id=2085):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x4b, 0x1, 0xffffffff, 0x6, 0x0)

2.192654635s ago: executing program 4 (id=2117):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="0f000000040000000400000015"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r2}, &(0x7f00000006c0), &(0x7f0000000700)=r1}, 0x20)
recvmsg$unix(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000240)=""/170, 0xaa}], 0x1}, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x4000000)

2.121867894s ago: executing program 5 (id=2086):
sendmsg$NFT_MSG_GETRULE(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000240)='./file0\x00', 0x8c0, &(0x7f0000000100)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6572726f72733d72656d6f756e742d726f2c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c6c6f63616c666c6f636b732c696e74722c6e6f61636c2c001967b9b8a6cdd636d75428f2c5e8054d01858eef552755576e749526b36860cf2511040d1ce5a743ffd83d29d1ba3a54a59d8c7aa249f08d3c8c6d04ac105d67934db6190d59f2323b55a5a4"], 0x1, 0x445e, &(0x7f00000054c0)="$eJzs3c9PHNcdAPA3A9jgX8WuD65UqSvVUqu2QuBTWywVY2wMNnXl1j70sl5gbdMurAVLlIMP5GYpp0g5RDlYiZQbJwvJl1ycPyGXHJ2zpeSQS6RIVoh2dxYzw27YoF0IzudzYHbevB9f+O7MvkHaeXGi8mBhJbewkiss5cpz91Yu5N4ql1YXiyHeJ03H79u/8WlPN94nP9bns45FTjM3L1/9950LIXw2/8XLzc3NzVDVG5oa2fb6228ezW3fNsSZNtV+m3TV13yEvfhvCOHsjriqekII/SGEKIRwKSkbT7YDIYSTybE7j969m+tQNE9fFC/mX8083hg9P73+ZKPZ714XhfBh6Td/ub/41e97Rr/8U+sePz3eodAAAAAAAAAAAAAAAAAAADgEJm/dvP2v4ZHwPAq969HO7+tOJttW34/d7JjfNR+gJ4SjHf6dAQAAAAAAAAAAAAAAAAAA4Ofm9ff/c9GZJt//n0i2Yy3ab/6j+zHSPVP/vDlxZXgkWf892nH8r0nR15d6wukm675n13+/lGnffP33nePsVSO+xriDIYqHUvtxPDQUwsfJwu/nomNxqbxS+fO98urSfMfCOLTS+a+v3p/KTrKgf5v5j8cz/bdY/7+Dfr3j3VTdv9u5t9gbrZr/eCv/PS3rffJO1Nb5fznTbj/yz96lz//eWtnA9gpj9QtANf/v9e6e/4lM/93K/6kQQi6qxppLXQGqc5hqeav5Cmnp/PfVylKXzuQP2er8/y6T/yuZ/g/q+r+W/SCiqXT+j9TK+lM16k/fquU/3v38v5rp/yDyX41/rV642d2xD790/pMnrfWmqtT+ku1e/ycz/bfMf/sPdXvWrPB2nMR5Kkq9A9ajennyvLojbY/yC5XOf/+O46/v/+K25n/XMu336/6vMW7j/q9x+f9jVL//o7l0/gda1mv3/J/KtOv29X+sNv9jr9L5P1YrS8+dB2s/283/dKb/buW/dlfS38j/6+vJ90fr5R81n/9dONWNYA6xdP6P1wvj7TXWaj9r879o9/n/9Uz/BzH/q8a/Fnd31DdFOv8nWtar5v/zNj7/b2TadT//IQz7X9+epfN/smW92vnfv3v+ZzLtup3/P3SzcwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBDYDzZDoYoHkrtx/HQUAiXk/1z4Vg0W5jPz5bKc/9fCWEiKc+FM9H9Unm2UMovLJXni/lCqVSeC+FKcvxs6I9WSuVKfrHw8OpWXwPRg2JhuTJbLFRCCJNJ+W/DyUZfswuVxcLDEMK1rWO/isvLDx8UlvLzC8t/Hx4eHg5TWzGcjopvV4pLlfro9aMhTG+1HYy2BVc7fH0rlhPR/8qry0uFUq38xrY2pfJcobStzUxy7P1wOqosry7NFSrFfKl8vzHewekLY8mrialb/7l1Y2RHjbtRfTu+v4EBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8BM9H/3bByGE3vpeHEIYa7yImtV/+qJ4Mf9q5vHG6Pnp9ScbL1vVAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4Ad24EAAAAAAAMj/tRGqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqsEvHqAkEURiA30yKJF2OkWpJurQbAiEpskHwBHoMD6NH8RLewcLC1kIE2UVdd2Ebrb6veTA/M+/BPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBhvkfV+P/tPSLF0/4xYjldrc/z37rOP7vvP9xhRm7n56/6Ov1huso/6qNNmY/pbjubREdtLFp70t6nyz7PvXP17VvffE3fl0i5iIiyzl9TzkUx7C0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4MAOHAgAAAAAAPm/NkJVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVUVduBYAAAAAECYv3UUfRsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8CgAA//+DMB3W")
r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40186f02, &(0x7f0000000100)={0x6, 0x1000, 0x2000, 0x0, 0x0, 0x0, 0x2401})

2.121570361s ago: executing program 4 (id=2119):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
recvmmsg(r0, &(0x7f0000006880)=[{{0x0, 0x0, 0x0}, 0x80000001}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}, 0x101}, {{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000440)=""/183, 0xb7}, {&(0x7f00000007c0)=""/242, 0xf2}, {&(0x7f0000000000)=""/41, 0x29}, {&(0x7f00000018c0)=""/4104, 0x1008}, {&(0x7f0000000340)=""/75, 0x4b}, {&(0x7f0000000500)=""/224, 0xe0}, {&(0x7f00000000c0)=""/237, 0xed}], 0x7}, 0x80000000}, {{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, 0x0}, 0x200}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}, 0x7}, {{0x0, 0x0, 0x0}, 0xd}], 0x9, 0x4022, 0x0)

1.989241019s ago: executing program 4 (id=2122):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@newtaction={0x74, 0x30, 0xb, 0x70bd27, 0x0, {}, [{0x60, 0x1, [@m_skbmod={0x5c, 0x1, 0x0, 0x0, {{0xb}, {0x30, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x24, 0x2, {{0xfff, 0x3, 0xffffffffffffffff}, 0x1000000}}, @TCA_SKBMOD_PARMS={0x0, 0x2, {{0x4, 0x9, 0x20000000, 0x8000, 0x8a4}, 0x3}}]}, {0x4}, {0xc}, {0xa}}}]}]}, 0x74}}, 0x0)

1.923005868s ago: executing program 4 (id=2124):
syz_open_dev$vim2m(&(0x7f0000000100), 0xffffffffffffff47, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="66617374626f6f742c71756f7461000018bbdecde39739fcd1df176dde746ec834120600000000003b814e50a959736d6572462abc30ef5b65c70f73ecea54b5e5bea9836c319f653557e79a002208ce996dda659bd5ba0f4ce5c2080002223dc60000000000000044cd0a1e3686873600000000005493b4b81d5b9fa9b40fe4d76afc3a989c6d60044e89eb96e44d01a1034e3797ffa86870b82939f41ffa0f3d726f085663c29cbdc4c766a7eb77cc36160191acf5ae7469c82ab4145b595b987d75912a0fcd1c061835294cc0c618aba204f8adaa20c80108d356cd88cc86177056b06e7068c40f807d9e539f8f5b64a8ee0725aa8d00000000007cb6020d90ea79b8027cf75964dd86c2ed2b5e75779677aa8c76b848dd03dab190b5f02ec52830a17b01eaae1c3df076000000000000000000000000000083a48a6b926c668b9b90195018ea3619f9d80a0b894e212178e1a19909d764666264fa29e2c055fd7f8e67c2acfb75f0a8d41692f4542a575ee42ed94a0014fba44985cca9df12fe93bfaccf0122a6e7e593613ac0111701b125cc6799c43aa4ff708dc4a00a6decad26f0378072a571da000000b1a6bdf03fd56697e348b5b494f6fddb9f56142a47a40ef81690a7eca421bd0ad198afa58ce69d61c29deaa93c0efea0df04f20020ee84075b4e1a2ad43d1be1138de4668e7b6137545708790c501f1ed7f6a571d500000000000000"], 0x27, 0x5586, &(0x7f00000079c0)="$eJzs3EtvG2UXAOAzTtP71y9CLNh1pAopkWqrTi+CFQVacRGtKi4LVuDYruXW9kSx44SsumCJWPBPEEisWPIbWMASdogFiB0SyDMTaNoGSuM4avs80vjMHL8+874jK9KZiRzAU2sh/e2XJE7FsYiYi4iTSeT7SblF3Im4XIx9LiJOR0Tlri0p838lDkfE8Yg4NSle1EzKtz47Oz5z8ec3f/362yOHTnz+1XcHunDgQD0fEf3VYn+jX8SsU8RbZb4x7uaxf2FcxtUdNfpZkd9or+QVNhrb4xp5PN8pxmer68NJvNlrNCex072Z51cHxQmH4852nckH0luNtfy41V7JY3eY5bGzVZx3c6v427Y1HBV1WmW9j/LyMRptxyLf3mwX61m9ncfmYFTmi7pZq705ieMylqeLZtZr5fNYecSL/Bh4qztY30zH7bVhNxukF2v1F2r1S9X6WtZqj9oXqo1+69KFdLHTmwyrjtqN/uVOlnV67Voz6y+li51ms1qvp4tX2ivdxiCt12vna+eqF5fKvbPpa9ffS3utdHESX+kO1kfd3jC9ma2lxSeW0uXa+ReX0jP19J1rN9Ibb1+9eu3Gux9cef/6y9feeLUcdN+00sXlc8vL1fq56nJ96Sla/8flpP/D+pMHp3/4fm+XDQq7fMEA2N19/X/c2/+H/h+Yur30//3b5fH+9P/xMP1/TLP/n7RU+v9/738rB9D/zof+fx/XD3vyaP3/4anPAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAmftx/ovX852F4vhEmf9fmXqmPE4iohIRfzzAXBzeUXOurDO/y/j5e+bwTRJ5hck5jpTb8Yi4XG6//3+/rwIAAAA8ub68c/rTolsvXhYOekLMUnHTpnLywynVSyJifuGnKVWrTF6enVKx/Pt9KDanVC2/gXV0SsWKW26HplXtocztCEfvCkkRKjOdDgAAMBM7O4HZdiEAAADM0if/+O5LM5sHM5bE9qPM7WfB+X/e//1A8NiO9wAAAIDHUHLQEwAAAAD2Xd7/+/0/AAAAeLIVv/8HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAf7JzP7lpA1EcgJ8Nhv5VUdV9r9IdHKNH6LLLwgF6CY5Ar9ALcAYiZZEjRBBhT5CcgBSJMU7Q90m2M+Po5xlg88bSAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXbqpVrN/f77/PTdnuztPntkAAAAAx2yq1az+Y9K0P6b+z6nra2oXEVFGxLHafRCjVuYg5VQn/r96Mob/EXXCvn+cjg8R8SMd91+6/hQAAADgeq0Xy2lTrTentARw2++ouJBm0ab89DNTXhER1eQuU1q5P33LFFb/vofxO1NavYD1LlNYs+Q2PH5vlOshbYPW5XEm8/pLrFtlN88FAAD61K4ETlQhAAAAXIFffQ+AS3he2heH0+E947i5pBeC71stAAAA4A0q+h4AAAAA0Lm6/n9N+/8V9v8DAACA7Jr9/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOjSplrN1ovl9NT9+Qtztrvz5JsRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPLA/7ygQAmEQBnvXdyZz/8NKg4bGJlUgfPyNwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwJvf/eX/xNQ4k8y9NpaeR5K1U2Pr1Ng7N47+ML5+DQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAxf68pEAIBEEUzBn/O+n7H1YS9AwiREDDo4paNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwRb/75f/E1DiTzJ02lo5HkrWrxtZVY+9B4+jBePs3AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAxb799EZRhgEAf3anu1DUWKtpYtVgwkEvUhYEuRqjaTz4EUyassXqIgo9CGnEXryZnrkYPRpjoqm3fgfONOGCNw491MSTh5r5V2bbFRqUmUJ/v+Td99nZ4f23E9Jn3lkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABKm+/Gq+0iTtKXiTwuj93eWp5P641ddWp99c50WtK4VfO4nwCvVd8cn2puIAAAABweSZnfR8TdztpsWrcnsvy/U56T5vw/PJfHZT6/O+/f2Fo+Wnw0Xeb/v/9276WdjiaSrJ+00YXFQf/U3qGMPaYpHnjPP/SMsWzls3svSfaFtD9ceXGzk61n67tbt97vZuGROkYLADyKk2VdBOXfQ2nda3JgABwaY5XEu8z/k4lmxwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABQh82VeKaMWxExPXY/Tm1sLc+Pqr9ZvTO9XpRzN2+uVttMm+hExMLioH+qxrkcXOVqXv9sbjDoX7l6re7geESM+OjG/v55Ugz/X8/pRsTQkRMvj2jn4330taudPUFxeUa9aziezu+hJ7eGjrT2LPh727kmLoC6gnbx/TyOLsZr/96Hg/La+/9brvm/IwAAnnqdoqSZ6N3O2mx6rDUZsf3jcP7/RiWOobx/+0Z+JH+/Xsn/731y7na1r2r+36tpfk+CmaVLX8xcvXb9rcVLcxf7F/ufv326907vzPmzZ8/PZPdKZhai7Y4JAAAA/0G3KNX8vz25d///WCWOB+z/51vCef7/5fe9r6t9JfL/ke5v+jU9EgAAgMOouxO98Ppff7ZGnNHqduOruaWlK738def96fy11uE+oiNFqeb/yWTTowIAAADqsLnSGtr/v1CJ4wH7/9Xn/5/96ZVfqm0mETEecTki+ifnLw8u1DedA62OHypnHXWbnikAAABNGS9Kdf+/kz3/39555KEdEW+eiPi7+A1/7DP/Tz749udqX9Xn/8/UOsuDpz2Vr0dWT0WMTTU9IgAAAJ5mR4uSJvt/dNZmP/312Eddz/8DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA1O2fAAAA//+FVSwP")
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000003c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
open_by_handle_at(0xffffffffffffff9c, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x441, 0x20)
truncate(&(0x7f0000000900)='./file1\x00', 0x3000000)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r4, 0x0, 0x8000)
fallocate(r4, 0x8, 0x4000, 0x4000)

1.542226853s ago: executing program 5 (id=2126):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x24}}, 0x0)
rt_sigqueueinfo(0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0xffffff1d})

1.171438615s ago: executing program 5 (id=2128):
syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f0000000100)='./file1\x00', 0x8, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0xfb, 0x6a8, &(0x7f0000001dc0)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=ANY=[], 0x361, 0x0)
unlink(&(0x7f0000000000)='./file1\x00')

1.099372566s ago: executing program 5 (id=2131):
read$FUSE(0xffffffffffffffff, &(0x7f0000006380)={0x2020}, 0x2020)
openat(0xffffffffffffff9c, 0x0, 0x24c01, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={0xffffffffffffffff, 0x2000000, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x4c)
r5 = io_uring_setup(0x67bb, &(0x7f0000000280))
io_uring_enter(r5, 0x0, 0x2, 0xf, &(0x7f0000000000), 0x18)

892.539226ms ago: executing program 4 (id=2133):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000010180)=@newtaction={0x490, 0x30, 0x12f, 0x0, 0x0, {}, [{0x47c, 0x1, [@m_police={0x478, 0x1, 0x0, 0x0, {{0xb}, {0x44c, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0xa, 0x4, 0x2, 0x4, 0x4, {0x3, 0x0, 0x101, 0x9, 0x5, 0x2}, {0x3, 0x1, 0x3ff, 0x2, 0x5}, 0x2, 0x3, 0xeea4}}, @TCA_POLICE_RATE={0x404, 0x2, [0x100000, 0x2, 0x0, 0x5, 0x7, 0x6, 0x5, 0x5, 0x4, 0x10000, 0xfffffff1, 0x800, 0x1, 0x1, 0x1, 0x4, 0xffffffda, 0x8, 0x2, 0x76ccfa5f, 0x5, 0x8, 0x80, 0x451, 0x2, 0x1, 0x8, 0x8, 0xfff, 0x100, 0x8, 0x1, 0x9, 0x2, 0xc, 0x1, 0x8, 0x7, 0x5, 0x8, 0x6, 0xfff, 0x9, 0x9, 0x4, 0x200, 0x8000, 0xffffff01, 0x1, 0x80, 0xa8, 0x7f, 0x84, 0x6, 0x637, 0x8, 0xfb, 0x9, 0x97, 0x6, 0x791a, 0x9, 0x3, 0x7, 0xab5, 0x0, 0x66ab6d08, 0xd, 0x8, 0x8, 0x2, 0xfffffff7, 0x9, 0x1eb, 0x7, 0xd43, 0x9, 0x6, 0x7, 0x7, 0x4, 0x4, 0x5a8b, 0x6f, 0x3f, 0x6, 0x7, 0x4, 0x15, 0x7f, 0xfff, 0xb, 0x2, 0x10001, 0xffffffff, 0x3, 0xaa2, 0x400, 0x40, 0x1, 0x0, 0x80, 0x44f0, 0x1, 0xffff, 0xf, 0x3f0f, 0x9, 0x7, 0x33f6, 0x6, 0x200, 0x100, 0x1ea, 0x1, 0x7ff, 0x7ff, 0x4, 0x49, 0x80000001, 0x7, 0x81, 0x5, 0x1, 0x10000000, 0x8, 0x1, 0x800, 0x7, 0x6, 0x3ff, 0x2, 0xb7c, 0xfffffffc, 0x3, 0x9, 0x3, 0x6, 0x1ff, 0x1ff, 0x8, 0x2, 0x5, 0xffffffff, 0x9, 0x6, 0x5, 0x7ff, 0x8, 0x2, 0x9, 0xfffffffd, 0x4, 0x6, 0x1, 0x3, 0x9, 0x7fff, 0x1, 0x5, 0x7, 0x10001, 0x2, 0x8, 0x5, 0x4, 0x2, 0x2, 0x1, 0x8001, 0x1, 0xfffffff4, 0x5, 0x8, 0xfffefffc, 0x1, 0x0, 0x1, 0x1, 0xd0c0, 0xfffff33c, 0xc974, 0x3, 0xff, 0x3, 0x1b4, 0x24f, 0x3, 0x10001, 0x6, 0x7, 0x5, 0x9, 0xede9, 0x2, 0x5, 0x5, 0x7, 0x800, 0x2, 0x5, 0x7fff, 0x5, 0x8, 0xffff, 0x7, 0x0, 0x9, 0xfffffff7, 0x2, 0x6, 0x7, 0xd9f, 0x6, 0x9, 0x0, 0x10000, 0x0, 0x8, 0x10, 0x720b, 0xfffffff7, 0x7106075a, 0xffff, 0x401, 0x3, 0x8, 0x6, 0x3, 0xf, 0x6, 0x9, 0x9, 0xffffffff, 0x7ff, 0x10, 0x2, 0x8, 0x4, 0xa27d, 0x9, 0x9, 0x0, 0x81, 0x4, 0x7f8000, 0x9, 0x0, 0x1, 0x0, 0x40000005, 0xc1, 0x2, 0x401, 0x40, 0x2]}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x9}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa, {0x1}}}}]}]}, 0x490}}, 0x0)

653.533636ms ago: executing program 2 (id=2141):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1e000000000000000b00000007"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)

593.806709ms ago: executing program 2 (id=2142):
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
pipe2$watch_queue(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r0, r1, 0x12)
keyctl$get_persistent(0x16, 0x0, r0)

542.465881ms ago: executing program 2 (id=2143):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x18, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="85000000c6000000799000000000000063008000000000009500050000000000"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0x13, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000080), 0x10}, 0x23)

542.199695ms ago: executing program 4 (id=2144):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18)
r0 = creat(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
accept4$netrom(r0, &(0x7f0000000440)={{0x3, @rose}, [@netrom, @bcast, @remote, @netrom, @netrom, @default, @rose, @null]}, &(0x7f00000002c0)=0x8b, 0x80c00)
add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0)="1d", 0xfe3a, 0xfffffffffffffffe)
add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0)="1d", 0xfe3a, 0xfffffffffffffffe)

542.036635ms ago: executing program 2 (id=2145):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040))
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f00000005c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x3, 0x0}, &(0x7f0000000380)="a3a302ae2f62", 0x0, 0x5, 0x0, 0x0, 0x0})

413.817768ms ago: executing program 2 (id=2146):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={0x0, r0}, 0x18)
r1 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r1, 0x10e, 0xc, &(0x7f0000000640)=0xb, 0x4)
sendmsg$netlink(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)={0x1c, 0x5e, 0x601, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @nested={0x4}]}, 0x1c}], 0x1}, 0x0)

413.595498ms ago: executing program 2 (id=2147):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="0203f30216000000000000000000000002001b0008000000e900000000000000030006000000000002000000000000000000000000000000020001000000000000000316ff000020030005000000000002000000ac1414aa00000000000000000a00080008"], 0xb0}, 0x1, 0x7}, 0x0)

111.364572ms ago: executing program 5 (id=2148):
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x2000c8, &(0x7f00000005c0)=ANY=[@ANYBLOB='codepage=874,nodots,dots,tz=UTC,dots,nodots,codepage=862,dots,dots,check=strict,allow_utime=000000000000000000001,sys_immutable,nodots,nfs,quiet,dots,nodots,nodots,debug,usefree,tz=UTC,flush,nodots,\x00'], 0xfd, 0x1bf, &(0x7f0000000940)="$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")
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='mounts\x00')
read$FUSE(r0, &(0x7f00000029c0)={0x2020}, 0x2020)

0s ago: executing program 5 (id=2149):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
listen(r0, 0x3)
setsockopt$inet_tcp_int(r0, 0x6, 0x1e, &(0x7f00000001c0)=0x1, 0x4)

kernel console output (not intermixed with test programs):

D 1ea7:0907] on usb-dummy_hcd.1-1/input0
[  136.132942][   T47] usb 2-1: USB disconnect, device number 12
[  137.225410][   T47] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  137.280322][ T7966] block nbd0: NBD_DISCONNECT
[  137.284708][ T7966] block nbd0: Disconnected due to user request.
[  137.287911][ T7966] block nbd0: shutting down sockets
[  137.377888][   T47] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  137.383408][   T47] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  137.389409][   T47] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  137.393295][   T47] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  137.398358][   T47] usb 2-1: SerialNumber: syz
[  137.626601][   T47] usb 2-1: 0:2 : does not exist
[  137.650487][   T47] usb 2-1: USB disconnect, device number 13
[  137.684039][ T5994] udevd[5994]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  137.778372][ T7980] loop0: detected capacity change from 0 to 32768
[  137.790794][ T7980] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.844 (7980)
[  137.805570][ T7980] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  137.809749][ T7980] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  137.813292][ T7980] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  137.845352][ T7980] BTRFS info (device loop0): rebuilding free space tree
[  137.871019][ T7980] BTRFS info (device loop0): disabling free space tree
[  137.874730][ T7980] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  137.879491][ T7980] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  137.888033][ T7980] BTRFS info (device loop0): enabling ssd optimizations
[  137.890323][ T7980] BTRFS info (device loop0): enabling disk space caching
[  137.892888][ T7980] BTRFS info (device loop0): force clearing of disk cache
[  137.901209][ T7980] BTRFS info (device loop0): enabling auto defrag
[  137.903877][ T7980] BTRFS info (device loop0): max_inline set to 0
[  137.991364][ T7980] BTRFS info (device loop0): scrub: started on devid 1
[  138.014298][ T7980] BTRFS info (device loop0): scrub: finished on devid 1 with status: 0
[  138.230474][ T5850] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  138.439126][ T8002] loop1: detected capacity change from 0 to 32768
[  139.195520][ T8024] netlink: 8 bytes leftover after parsing attributes in process `syz.1.854'.
[  139.358728][ T8036] loop1: detected capacity change from 0 to 2048
[  139.369025][ T8036] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found!
[  139.374684][ T8036] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  139.613891][ T8048] loop0: detected capacity change from 0 to 1764
[  139.924498][ T8075] loop0: detected capacity change from 0 to 8
[  139.936438][ T8075] SQUASHFS error: zlib decompression failed, data probably corrupt
[  139.955442][ T8075] SQUASHFS error: Failed to read block 0x9b: -5
[  139.960356][ T8075] SQUASHFS error: Unable to read metadata cache entry [99]
[  139.982039][ T8075] SQUASHFS error: Unable to read inode 0x127
[  140.029627][ T8079] loop1: detected capacity change from 0 to 128
[  140.034644][ T8079] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  140.061235][ T8079] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  140.211212][ T8089] loop0: detected capacity change from 0 to 4096
[  140.255514][ T8089] EXT4-fs: Ignoring removed mblk_io_submit option
[  140.282755][ T8089] EXT4-fs (loop0): Test dummy encryption mode enabled
[  140.298470][ T8089] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0083]
[  140.302125][ T8089] System zones: 0-5
[  140.311407][ T8089] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.393902][ T8089] fscrypt: AES-256-CBC-CTS using implementation "cts(cbc(ecb(aes-fixed-time)))"
[  140.430598][ T5850] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.503238][ T8109] netlink: 8 bytes leftover after parsing attributes in process `syz.1.894'.
[  141.538288][ T8129] gfs2: path_lookup on tmpfs returned error -2
[  141.642692][ T8137] netlink: 44 bytes leftover after parsing attributes in process `syz.1.905'.
[  141.773929][ T8147] netlink: 40 bytes leftover after parsing attributes in process `syz.2.911'.
[  141.869135][   T33] audit: type=1326 audit(1758860995.316:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8154 comm="syz.0.915" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7febcbf8ec29 code=0x0
[  141.892832][ T8156] loop1: detected capacity change from 0 to 512
[  141.906192][ T8156] EXT4-fs (loop1): Test dummy encryption mode enabled
[  141.908890][ T8156] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  141.944217][ T8156] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.914: bad orphan inode 131083
[  141.950626][ T8156] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  141.980717][ T8156] overlayfs: upper fs needs to support d_type.
[  142.107679][ T8156] fscrypt: AES-256-XTS using implementation "xts(ecb(aes-fixed-time))"
[  142.425528][ T5853] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.508183][ T5879] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.612141][ T5879] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.700639][ T5879] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.790955][ T8192] loop0: detected capacity change from 0 to 256
[  142.798566][ T8192] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb5f96684, utbl_chksum : 0xe619d30d)
[  142.830304][ T5879] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.060668][ T5849] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  143.072420][ T5849] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  143.079006][ T5849] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  143.083483][ T5849] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  143.089268][ T5849] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  143.209883][ T5879] bridge_slave_1: left allmulticast mode
[  143.212948][ T5879] bridge_slave_1: left promiscuous mode
[  143.218734][ T5879] bridge0: port 2(bridge_slave_1) entered disabled state
[  143.227241][ T5879] bridge_slave_0: left allmulticast mode
[  143.229392][ T5879] bridge_slave_0: left promiscuous mode
[  143.232506][ T5879] bridge0: port 1(bridge_slave_0) entered disabled state
[  143.908143][ T5879] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  143.916916][ T5879] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  143.921446][ T5879] bond0 (unregistering): Released all slaves
[  144.242992][ T8219] netlink: 'syz.0.940': attribute type 12 has an invalid length.
[  144.250145][ T8219] netlink: 'syz.0.940': attribute type 29 has an invalid length.
[  144.253324][ T8219] netlink: 148 bytes leftover after parsing attributes in process `syz.0.940'.
[  144.257597][ T8219] netlink: 'syz.0.940': attribute type 2 has an invalid length.
[  144.260854][ T8219] netlink: 'syz.0.940': attribute type 3 has an invalid length.
[  144.452270][ T8237] netlink: 28 bytes leftover after parsing attributes in process `syz.2.947'.
[  144.576352][ T5879] hsr_slave_0: left promiscuous mode
[  144.580988][ T5879] hsr_slave_1: left promiscuous mode
[  144.599298][ T5879] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  144.611501][ T5879] batman_adv: batadv0: Removing interface: batadv_slave_0
[  144.640856][ T5879] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  144.657348][ T5879] batman_adv: batadv0: Removing interface: batadv_slave_1
[  144.753739][ T5879] veth1_macvtap: left promiscuous mode
[  144.763137][ T5879] veth0_macvtap: left promiscuous mode
[  144.778758][ T5879] veth1_vlan: left promiscuous mode
[  144.798389][ T5879] veth0_vlan: left promiscuous mode
[  145.107794][ T5854] Bluetooth: hci2: command tx timeout
[  145.479704][ T8261] loop0: detected capacity change from 0 to 1024
[  145.533371][ T8261] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  145.661168][ T5850] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.892618][ T5879] team0 (unregistering): Port device team_slave_1 removed
[  145.937705][ T5879] team0 (unregistering): Port device team_slave_0 removed
[  146.799149][ T8266] netlink: 80 bytes leftover after parsing attributes in process `syz.0.954'.
[  146.804636][ T8286] sch_fq: defrate 0 ignored.
[  146.832832][ T8201] chnl_net:caif_netlink_parms(): no params data found
[  146.860489][ T8288] netdevsim netdevsim0 : renamed from netdevsim0 (while UP)
[  147.119272][ T8201] bridge0: port 1(bridge_slave_0) entered blocking state
[  147.131318][ T8201] bridge0: port 1(bridge_slave_0) entered disabled state
[  147.136602][ T8201] bridge_slave_0: entered allmulticast mode
[  147.147231][ T8201] bridge_slave_0: entered promiscuous mode
[  147.153137][ T8201] bridge0: port 2(bridge_slave_1) entered blocking state
[  147.161270][ T8201] bridge0: port 2(bridge_slave_1) entered disabled state
[  147.164111][ T8201] bridge_slave_1: entered allmulticast mode
[  147.173445][ T8201] bridge_slave_1: entered promiscuous mode
[  147.185177][ T5854] Bluetooth: hci2: command tx timeout
[  147.222811][ T8201] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  147.232543][ T8201] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  147.295995][ T8201] team0: Port device team_slave_0 added
[  147.301493][ T8201] team0: Port device team_slave_1 added
[  147.303481][ T5879] IPVS: stop unused estimator thread 0...
[  147.374248][ T8201] batman_adv: batadv0: Adding interface: batadv_slave_0
[  147.395193][ T8201] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  147.425357][ T8201] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  147.433254][ T8201] batman_adv: batadv0: Adding interface: batadv_slave_1
[  147.446450][ T8201] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  147.488760][ T8201] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  147.614160][ T8201] hsr_slave_0: entered promiscuous mode
[  147.627124][ T8201] hsr_slave_1: entered promiscuous mode
[  147.682116][   T33] audit: type=1326 audit(1758861001.116:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8336 comm="syz.0.975" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7febcbf8ec29 code=0x0
[  147.983700][ T8201] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  148.009565][ T8201] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  148.024318][ T8201] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  148.034548][ T8201] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  148.169970][ T8201] 8021q: adding VLAN 0 to HW filter on device bond0
[  148.186058][ T8201] 8021q: adding VLAN 0 to HW filter on device team0
[  148.193801][ T3802] bridge0: port 1(bridge_slave_0) entered blocking state
[  148.196407][ T3802] bridge0: port 1(bridge_slave_0) entered forwarding state
[  148.204214][ T3802] bridge0: port 2(bridge_slave_1) entered blocking state
[  148.206966][ T3802] bridge0: port 2(bridge_slave_1) entered forwarding state
[  148.362134][ T8201] 8021q: adding VLAN 0 to HW filter on device batadv0
[  148.428343][ T8201] veth0_vlan: entered promiscuous mode
[  148.438759][ T8201] veth1_vlan: entered promiscuous mode
[  148.472130][ T8201] veth0_macvtap: entered promiscuous mode
[  148.477277][ T8201] veth1_macvtap: entered promiscuous mode
[  148.492991][ T8201] batman_adv: batadv0: Interface activated: batadv_slave_0
[  148.516899][ T8201] batman_adv: batadv0: Interface activated: batadv_slave_1
[  148.528078][ T5913] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  148.550544][ T5913] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  148.554301][ T5913] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  148.572751][ T5913] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  148.686560][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  148.692021][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  148.732330][ T1096] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  148.736776][ T1096] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  149.075355][ T5914] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  149.292373][ T5854] Bluetooth: hci2: command tx timeout
[  149.385499][ T5914] usb 4-1: Using ep0 maxpacket: 8
[  149.426898][ T5914] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  149.451389][ T5914] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  149.486589][ T5914] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  149.499761][ T5914] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  149.503525][ T5914] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  149.519906][ T5914] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  149.523006][ T5914] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  149.527275][ T5914] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  149.531585][ T5914] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  149.537779][ T5914] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  149.543267][ T5914] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  149.552623][ T5914] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  149.562400][ T5914] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  149.567992][ T5914] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  149.572608][ T5914] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  149.584329][ T5914] usb 4-1: string descriptor 0 read error: -22
[  149.587648][ T5914] usb 4-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  149.592646][ T5914] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.593373][ T8393] netlink: 4 bytes leftover after parsing attributes in process `syz.2.991'.
[  149.612589][ T5914] adutux 4-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  149.815917][ T8384] loop3: detected capacity change from 0 to 256
[  149.818838][ T8384] exfat: Deprecated parameter 'utf8'
[  149.828989][ T8384] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x40a90196, utbl_chksum : 0xe619d30d)
[  149.837368][    T9] usb 4-1: USB disconnect, device number 2
[  149.886096][ T8395] loop0: detected capacity change from 0 to 2048
[  149.922489][ T8395] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.946756][ T8395] EXT4-fs (loop0): shut down requested (0)
[  149.982377][ T5850] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.164498][    C0] vcan0: j1939_tp_rxtimer: 0xffff88802f0d0400: rx timeout, send abort
[  151.171522][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88802f0d0400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  151.178655][    C0] vcan0: j1939_tp_rxtimer: 0xffff88802f0d0000: rx timeout, send abort
[  151.315598][ T8431] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1006'.
[  151.319065][ T8431] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1006'.
[  151.345798][ T5854] Bluetooth: hci2: command tx timeout
[  151.374331][ T8435] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1008'.
[  151.509399][ T8445] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  151.539652][ T8449] loop0: detected capacity change from 0 to 164
[  151.577746][ T8449] Unsupported NM flag settings (8)
[  151.590769][ T8451] loop3: detected capacity change from 0 to 4096
[  151.632679][ T8451] ntfs3(loop3): ino=19, mi_enum_attr
[  151.638575][ T8451] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  151.682157][    C0] vcan0: j1939_tp_rxtimer: 0xffff88802f0d0000: abort rx timeout. Force session deactivation
[  152.350038][ T8455] loop0: detected capacity change from 0 to 32768
[  152.405969][ T8455] XFS (loop0): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  152.460278][ T8469] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  152.524737][ T8455] XFS (loop0): Ending clean mount
[  152.628807][ T5850] XFS (loop0): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  153.369768][ T8484] loop0: detected capacity change from 0 to 256
[  153.399838][ T8484] FAT-fs (loop0): Directory bread(block 64) failed
[  153.402515][ T8484] FAT-fs (loop0): Directory bread(block 65) failed
[  153.414558][ T8484] FAT-fs (loop0): Directory bread(block 66) failed
[  153.427738][ T8484] FAT-fs (loop0): Directory bread(block 67) failed
[  153.430176][ T8484] FAT-fs (loop0): Directory bread(block 68) failed
[  153.432778][ T8484] FAT-fs (loop0): Directory bread(block 69) failed
[  153.434981][ T8484] FAT-fs (loop0): Directory bread(block 70) failed
[  153.442511][ T8484] FAT-fs (loop0): Directory bread(block 71) failed
[  153.444723][ T8484] FAT-fs (loop0): Directory bread(block 72) failed
[  153.446209][ T8490] loop3: detected capacity change from 0 to 1024
[  153.448237][ T8484] FAT-fs (loop0): Directory bread(block 73) failed
[  153.462402][ T8490] hfsplus: bad catalog folder entry
[  153.539437][ T8492] loop3: detected capacity change from 0 to 1024
[  153.568614][ T8492] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  153.598683][ T8492] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.1031: Allocating blocks 385-513 which overlap fs metadata
[  153.672296][ T8492] EXT4-fs (loop3): pa ffff88801ddcf488: logic 16, phys. 129, len 24
[  153.675953][ T8492] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[  153.705254][ T8492] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 28 with max blocks 4 with error 28
[  153.710976][ T8492] EXT4-fs (loop3): This should not happen!! Data will be lost
[  153.710976][ T8492] 
[  153.732610][ T8492] EXT4-fs (loop3): Total free blocks count 0
[  153.735025][ T8492] EXT4-fs (loop3): Free/Dirty block details
[  153.739299][ T8492] EXT4-fs (loop3): free_blocks=128
[  153.741298][ T8492] EXT4-fs (loop3): dirty_blocks=0
[  153.743900][ T8492] EXT4-fs (loop3): Block reservation details
[  153.748749][ T8492] EXT4-fs (loop3): i_reserved_data_blocks=0
[  153.924566][ T8488] overlayfs: missing 'lowerdir'
[  154.002881][ T8508] loop0: detected capacity change from 0 to 8192
[  154.060297][ T5994]  loop0: p1 p2 p4 < >
[  154.062465][ T5994] loop0: partition table partially beyond EOD, truncated
[  154.070740][ T5994] loop0: p1 start 16777216 is beyond EOD, truncated
[  154.073542][ T5994] loop0: p2 size 515840 extends beyond EOD, truncated
[  154.081169][ T5994] loop0: p4 start 16777216 is beyond EOD, truncated
[  154.109024][ T8508]  loop0: p1 p2 p4 < >
[  154.110855][ T8508] loop0: partition table partially beyond EOD, truncated
[  154.122280][ T8508] loop0: p1 start 16777216 is beyond EOD, truncated
[  154.124767][ T8508] loop0: p2 size 515840 extends beyond EOD, truncated
[  154.134985][ T8508] loop0: p4 start 16777216 is beyond EOD, truncated
[  154.232350][ T5994] udevd[5994]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[  154.254745][ T8506] loop3: detected capacity change from 0 to 40427
[  154.695305][   T10] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  154.846366][   T10] usb 1-1: Using ep0 maxpacket: 8
[  154.852367][   T10] usb 1-1: config 0 has an invalid interface number: 200 but max is 0
[  154.857413][   T10] usb 1-1: config 0 has no interface number 0
[  154.860639][   T10] usb 1-1: config 0 interface 200 has no altsetting 0
[  154.869101][   T10] usb 1-1: New USB device found, idVendor=0b57, idProduct=8528, bcdDevice=6d.39
[  154.872960][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  154.878234][   T10] usb 1-1: Product: syz
[  154.880203][   T10] usb 1-1: Manufacturer: syz
[  154.882292][   T10] usb 1-1: SerialNumber: syz
[  154.889748][   T10] usb 1-1: config 0 descriptor??
[  155.121820][   T10] input: Hanwang Art Master III 0906 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.200/input/input12
[  155.143982][   T10] usb 1-1: USB disconnect, device number 14
[  155.645200][ T5851] usb 4-1: new full-speed USB device number 3 using dummy_hcd
[  155.800450][ T5851] usb 4-1: unable to get BOS descriptor or descriptor too short
[  155.805353][ T5851] usb 4-1: not running at top speed; connect to a high speed hub
[  155.809872][ T5851] usb 4-1: config 8 has an invalid interface number: 59 but max is 0
[  155.830050][ T5851] usb 4-1: config 8 has no interface number 0
[  155.840647][ T5851] usb 4-1: New USB device found, idVendor=102c, idProduct=6251, bcdDevice=a9.94
[  155.843803][ T5851] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  155.853426][ T5851] usb 4-1: Product: syz
[  155.859317][ T5851] usb 4-1: Manufacturer: syz
[  155.860981][ T5851] usb 4-1: SerialNumber: syz
[  155.926809][ T8575] overlayfs: failed to clone upperpath
[  156.021922][ T8581] loop0: detected capacity change from 0 to 256
[  156.024575][ T8581] exfat: Deprecated parameter 'utf8'
[  156.034265][ T8581] exfat: Deprecated parameter 'utf8'
[  156.036961][ T8581] exfat: Deprecated parameter 'utf8'
[  156.043585][ T8581] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d)
[  156.092719][ T5851] gspca_main: etoms-2.14.0 probing 102c:6251
[  156.195625][ T5851] usb 4-1: USB disconnect, device number 3
[  156.340404][ T8597] loop0: detected capacity change from 0 to 8192
[  156.344443][ T8597] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  156.666506][ T8607] loop3: detected capacity change from 0 to 512
[  156.679332][ T8607] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.1080: Invalid inode bitmap blk 4 in block_group 0
[  156.685815][ T8607] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  156.693206][ T8607] EXT4-fs error (device loop3): ext4_lookup:1787: inode #15: comm syz.3.1080: iget: bad extended attribute block 1
[  156.703374][ T8607] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 7969 vs 220 free clusters
[  156.729705][ T8201] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.471872][ T8625] loop0: detected capacity change from 0 to 1024
[  157.491969][ T8625] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.534782][ T5850] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.797925][ T8642] loop0: detected capacity change from 0 to 1024
[  157.803493][ T8642] EXT4-fs: Ignoring removed nomblk_io_submit option
[  157.833180][ T8642] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  157.884091][ T5850] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.638680][ T8704] syz.3.1115 (8704): /proc/8690/oom_adj is deprecated, please use /proc/8690/oom_score_adj instead.
[  159.001120][ T8720] loop0: detected capacity change from 0 to 1024
[  159.307132][ T8726] loop0: detected capacity change from 0 to 32768
[  159.336455][ T8726] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  159.354126][   T33] audit: type=1800 audit(1758861012.796:15): pid=8726 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1129" name="file1" dev="loop0" ino=17058 res=0 errno=0
[  159.405934][ T5850] ocfs2: Unmounting device (7,0) on (node local)
[  159.437838][ T8735] netlink: 'syz.3.1133': attribute type 3 has an invalid length.
[  159.734258][ T8753] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1137'.
[  159.835007][ T8761] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  160.313059][ T8774] block nbd3: NBD_DISCONNECT
[  160.331476][ T8774] block nbd3: Disconnected due to user request.
[  160.361982][ T8774] block nbd3: shutting down sockets
[  160.740350][ T8788] loop3: detected capacity change from 0 to 512
[  160.758634][ T8788] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.1148: iget: bad i_size value: 38620345925642
[  160.774517][ T8788] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1148: couldn't read orphan inode 15 (err -117)
[  160.797176][ T8788] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.924837][ T8799] loop0: detected capacity change from 0 to 512
[  160.958695][ T8201] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.966715][ T8799] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.972144][ T8799] ext4 filesystem being mounted at /338/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  161.018324][ T8799] EXT4-fs (loop0): shut down requested (0)
[  161.059481][ T5850] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.522378][ T8814] loop3: detected capacity change from 0 to 512
[  161.538462][ T8814] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.543148][ T8814] ext4 filesystem being mounted at /47/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  161.560195][ T8808] loop0: detected capacity change from 0 to 32768
[  161.600586][ T8201] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.973375][ T8829] loop3: detected capacity change from 0 to 1024
[  161.976850][ T8829] EXT4-fs: Ignoring removed bh option
[  161.979532][ T8829] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  162.007092][ T8829] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  162.049743][ T8829] EXT4-fs error (device loop3): ext4_find_dest_de:2052: inode #12: block 7: comm syz.3.1161: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[  162.061823][ T8829] EXT4-fs (loop3): Remounting filesystem read-only
[  162.092143][ T8201] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.957227][ T8853] tmpfs: Bad value for 'nr_inodes'
[  163.330756][   T33] audit: type=1326 audit(1758861016.776:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8873 comm="syz.0.1178" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7febcbf8ec29 code=0x0
[  163.453212][ T8877] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  163.517923][ T8877] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  163.787414][ T8877] loop0: detected capacity change from 0 to 32768
[  163.921734][ T8877] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,norecovery,reconstruct_alloc,no_data_io
[  163.921754][ T8877]   allowing incompatible features above 0.0: (unknown version)
[  163.921761][ T8877]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  163.951987][ T8877] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0
[  163.954917][ T8877] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[  163.958538][ T8877] bcachefs (loop0): Version upgrade required:
[  163.958538][ T8877] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  163.958538][ T8877] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  163.958538][ T8877]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  163.988819][ T8877] bcachefs (loop0): dropping and reconstructing all alloc info
[  164.001044][ T8877] bcachefs (loop0): accounting_read... done
[  164.004437][ T8877] bcachefs (loop0): alloc_read... done
[  164.007406][ T8877] bcachefs (loop0): snapshots_read... done
[  164.010426][ T8877] bcachefs (loop0): done starting filesystem
[  164.180774][ T8903] loop3: detected capacity change from 0 to 2048
[  164.187229][ T8903] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  164.190649][ T8903] NILFS (loop3): mounting unchecked fs
[  164.197529][ T5994] udevd[5994]: incorrect nilfs2 checksum on /dev/loop3
[  164.207406][ T8903] NILFS (loop3): recovery complete
[  164.217117][ T8904] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  164.682647][ T5850] bcachefs (loop0): shutting down
[  164.723120][ T5850] bcachefs (loop0): shutdown complete
[  164.870519][ T8919] vcan0: tx drop: invalid da for name 0x0000000000000002
[  165.368265][ T8931] evm: overlay not supported
[  166.504643][ T8969] Device name not specified.
[  166.504643][ T8969] 
[  166.568213][ T8976] program syz.3.1216 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  166.765522][   T10] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  166.916585][ T8982] loop3: detected capacity change from 0 to 32768
[  166.920687][ T8982] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1219 (8982)
[  166.925352][   T10] usb 1-1: Using ep0 maxpacket: 32
[  166.933778][   T10] usb 1-1: New USB device found, idVendor=0fd9, idProduct=0021, bcdDevice=29.40
[  166.941756][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.952109][ T8982] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  166.956457][   T10] usb 1-1: config 0 descriptor??
[  166.959272][ T8982] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm
[  167.042382][ T8982] BTRFS info (device loop3): enabling ssd optimizations
[  167.046013][ T8982] BTRFS info (device loop3): enabling free space tree
[  167.129310][ T5863] BTRFS info (device loop3): qgroup scan completed (inconsistency flag cleared)
[  167.169888][   T10] dvb-usb: found a 'Elgato EyeTV DTT' in warm state.
[  167.189599][   T10] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  167.193899][   T10] dvbdev: DVB: registering new adapter (Elgato EyeTV DTT)
[  167.201267][   T10] usb 1-1: media controller created
[  167.217658][   T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  167.259383][   T10] DVB: Unable to find symbol dib7000p_attach()
[  167.261817][   T10] dvb-usb: no frontend was attached by 'Elgato EyeTV DTT'
[  167.315402][   T10] rc_core: IR keymap rc-dib0700-rc5 not found
[  167.317756][   T10] Registered IR keymap rc-empty
[  167.320446][   T10] dvb-usb: could not initialize remote control.
[  167.326632][ T8201] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  167.332683][   T10] dvb-usb: Elgato EyeTV DTT successfully initialized and connected.
[  167.382689][   T10] usb 1-1: USB disconnect, device number 15
[  167.493910][   T10] dvb-usb: Elgato EyeTV DTT successfully deinitialized and disconnected.
[  168.058430][ T9025] program syz.3.1226 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  168.381183][ T1059] ata1.00: exception Emask 0x0 SAct 0x0 SErr 0x0 action 0x0
[  168.384675][ T1059] ata1.00: irq_stat 0x40000001
[  168.389399][ T1059] ata1.00: failed command: ZAC MANAGEMENT OUT
[  168.391655][ T1059] ata1.00: cmd 9f/02:00:00:00:00/00:00:00:00:00/40 tag 13
[  168.391655][ T1059]          res 41/04:00:00:00:00/00:00:00:00:00/40 Emask 0x1 (device error)
[  168.397728][ T1059] ata1.00: status: { DRDY ERR }
[  168.400360][ T1059] ata1.00: error: { ABRT }
[  168.402148][ T1059] ata1.00: device reported invalid CHS sector 0
[  168.470803][ T9034] loop0: detected capacity change from 0 to 1024
[  168.474284][ T9034] EXT4-fs: Ignoring removed nomblk_io_submit option
[  168.487366][ T9034] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  168.497502][ T9034] System zones: 0-1, 3-36
[  168.508958][ T9034] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.554130][ T5850] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.715348][   T33] audit: type=1326 audit(1758861022.156:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9039 comm="syz.2.1233" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbefe78ec29 code=0x0
[  168.790648][ T9049] loop3: detected capacity change from 0 to 256
[  168.806682][ T9049] FAT-fs (loop3): Directory bread(block 64) failed
[  168.809579][ T9049] FAT-fs (loop3): Directory bread(block 65) failed
[  168.811914][ T9049] FAT-fs (loop3): Directory bread(block 66) failed
[  168.814738][ T9049] FAT-fs (loop3): Directory bread(block 67) failed
[  168.818011][ T9049] FAT-fs (loop3): Directory bread(block 68) failed
[  168.820824][ T9049] FAT-fs (loop3): Directory bread(block 69) failed
[  168.823464][ T9049] FAT-fs (loop3): Directory bread(block 70) failed
[  168.826539][ T9049] FAT-fs (loop3): Directory bread(block 71) failed
[  168.828966][ T9049] FAT-fs (loop3): Directory bread(block 72) failed
[  168.831147][ T9049] FAT-fs (loop3): Directory bread(block 73) failed
[  169.235422][ T5880] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  169.385466][ T5880] usb 4-1: Using ep0 maxpacket: 32
[  169.389686][ T5880] usb 4-1: config 0 has an invalid interface number: 184 but max is 0
[  169.393021][ T5880] usb 4-1: config 0 has no interface number 0
[  169.396135][ T5880] usb 4-1: config 0 interface 184 has no altsetting 0
[  169.401852][ T5880] usb 4-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  169.406207][ T5880] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  169.409675][ T5880] usb 4-1: Product: syz
[  169.411536][ T5880] usb 4-1: Manufacturer: syz
[  169.413492][ T5880] usb 4-1: SerialNumber: syz
[  169.418120][ T5880] usb 4-1: config 0 descriptor??
[  169.423005][ T5880] smsc75xx v1.0.0
[  169.783376][ T9067] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1245'.
[  170.211772][ T5880] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  170.219181][ T5880] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  170.313468][ T9074] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1248'.
[  170.321502][ T9074] loop0: detected capacity change from 0 to 128
[  170.330525][ T9074] FAT-fs (loop0): bogus number of FAT structure
[  170.333306][ T9074] FAT-fs (loop0): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  170.337863][ T9074] FAT-fs (loop0): Can't find a valid FAT filesystem
[  170.629263][ T5880] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000010: -71
[  170.634122][ T5880] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to write HW_CFG: -71
[  170.643443][ T5880] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  170.648455][ T5880] smsc75xx 4-1:0.184: probe with driver smsc75xx failed with error -71
[  170.656602][ T5880] usb 4-1: USB disconnect, device number 4
[  170.878605][    C1] ata1: illegal qc_active transition (00000000->00004000)
[  171.175481][ T5880] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  171.208153][ T1059] ata1: SATA link up 1.5 Gbps (SStatus 113 SControl 300)
[  171.238959][ T1059] ata1.00: configured for UDMA/100
[  171.339739][ T5880] usb 1-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac
[  171.345530][ T5880] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  171.363409][ T5880] usb 1-1: Product: syz
[  171.370028][ T5880] usb 1-1: Manufacturer: syz
[  171.372157][ T5880] usb 1-1: SerialNumber: syz
[  171.392945][ T5880] usb 1-1: config 0 descriptor??
[  171.398615][ T5880] gspca_main: sunplus-2.14.0 probing 055f:c230
[  171.443710][ T9131] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1275'.
[  171.863207][ T5880] gspca_sunplus: reg_r err -71
[  171.878434][ T5880] sunplus 1-1:0.0: probe with driver sunplus failed with error -71
[  171.989441][ T5880] usb 1-1: USB disconnect, device number 16
[  172.833882][ T9144] loop0: detected capacity change from 0 to 40427
[  172.845376][ T9144] F2FS-fs (loop0): build fault injection rate: 14
[  172.848156][ T9144] F2FS-fs (loop0): build fault injection type: 0x3bfe8c
[  172.886988][ T9144] F2FS-fs (loop0): invalid crc value
[  172.898279][    C0] F2FS-fs (loop0): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[  172.914892][    C0] F2FS-fs (loop0): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[  172.984853][ T9144] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  172.989415][ T9144] F2FS-fs (loop0): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[  173.006570][ T9144] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  173.023845][ T9144] F2FS-fs (loop0): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[  173.037682][ T9144] syz.0.1280: attempt to access beyond end of device
[  173.037682][ T9144] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  173.062642][ T9144] CPU: 0 UID: 0 PID: 9144 Comm: syz.0.1280 Not tainted syzkaller #0 PREEMPT(full) 
[  173.062663][ T9144] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  173.062671][ T9144] Call Trace:
[  173.062677][ T9144]  <TASK>
[  173.062683][ T9144]  dump_stack_lvl+0x189/0x250
[  173.062707][ T9144]  ? __pfx_dump_stack_lvl+0x10/0x10
[  173.062725][ T9144]  ? __pfx_queue_work_on+0x10/0x10
[  173.062738][ T9144]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  173.062759][ T9144]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  173.062787][ T9144]  f2fs_handle_critical_error+0x37c/0x540
[  173.062844][ T9144]  f2fs_write_end_io+0x886/0xb60
[  173.062876][ T9144]  __submit_merged_bio+0x27a/0x6a0
[  173.062901][ T9144]  __submit_merged_write_cond+0x255/0x530
[  173.062934][ T9144]  f2fs_write_data_pages+0x261d/0x3000
[  173.062975][ T9144]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  173.063066][ T9144]  ? __lock_acquire+0xab9/0xd20
[  173.063094][ T9144]  ? do_raw_spin_lock+0x121/0x290
[  173.063119][ T9144]  ? do_raw_spin_unlock+0x4d/0x240
[  173.063133][ T9144]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  173.063147][ T9144]  do_writepages+0x32e/0x550
[  173.063171][ T9144]  ? do_raw_spin_unlock+0x4d/0x240
[  173.063191][ T9144]  filemap_fdatawrite+0x199/0x240
[  173.063208][ T9144]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  173.063262][ T9144]  ? do_raw_spin_unlock+0x4d/0x240
[  173.063281][ T9144]  f2fs_sync_dirty_inodes+0x31f/0x830
[  173.063306][ T9144]  f2fs_write_checkpoint+0x95a/0x1df0
[  173.063338][ T9144]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  173.063381][ T9144]  ? down_write+0x162/0x1f0
[  173.063395][ T9144]  ? __pfx_down_write+0x10/0x10
[  173.063418][ T9144]  f2fs_issue_checkpoint+0x3ac/0x570
[  173.063434][ T9144]  ? __pfx_f2fs_issue_checkpoint+0x10/0x10
[  173.063454][ T9144]  ? do_raw_spin_lock+0x121/0x290
[  173.063476][ T9144]  ? __pfx_wake_up_var+0x10/0x10
[  173.063501][ T9144]  ? f2fs_sync_fs+0x200/0x3d0
[  173.063521][ T9144]  f2fs_mkdir+0x46b/0x570
[  173.063535][ T9144]  ? bpf_lsm_inode_mkdir+0x9/0x20
[  173.063551][ T9144]  vfs_mkdir+0x306/0x510
[  173.063573][ T9144]  do_mkdirat+0x247/0x590
[  173.063591][ T9144]  ? __pfx_do_mkdirat+0x10/0x10
[  173.063610][ T9144]  ? getname_flags+0x1e5/0x540
[  173.063628][ T9144]  __x64_sys_mkdirat+0x87/0xa0
[  173.063645][ T9144]  do_syscall_64+0xfa/0x3b0
[  173.063658][ T9144]  ? lockdep_hardirqs_on+0x9c/0x150
[  173.063670][ T9144]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.063682][ T9144]  ? exc_page_fault+0x9f/0xf0
[  173.063696][ T9144]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.063708][ T9144] RIP: 0033:0x7febcbf8ec29
[  173.063720][ T9144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.063730][ T9144] RSP: 002b:00007febccd5c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  173.063745][ T9144] RAX: ffffffffffffffda RBX: 00007febcc1d5fa0 RCX: 00007febcbf8ec29
[  173.063755][ T9144] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  173.063763][ T9144] RBP: 00007febcc011e41 R08: 0000000000000000 R09: 0000000000000000
[  173.063771][ T9144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  173.063778][ T9144] R13: 00007febcc1d6038 R14: 00007febcc1d5fa0 R15: 00007fff9401d4c8
[  173.063800][ T9144]  </TASK>
[  173.063869][ T9144] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  173.546979][ T9167] loop3: detected capacity change from 0 to 4096
[  173.603911][ T9170] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  173.623216][ T9169] Invalid option length (1047378) for dns_resolver key
[  173.833333][ T9184] loop0: detected capacity change from 0 to 256
[  173.866043][ T9184] exfat: Deprecated parameter 'utf8'
[  173.868399][ T9184] exfat: Deprecated parameter 'namecase'
[  173.870851][ T9184] exfat: Deprecated parameter 'namecase'
[  173.873252][ T9184] exfat: Deprecated parameter 'utf8'
[  173.884558][ T9184] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012153, chksum : 0x5270ca8d, utbl_chksum : 0xe619d30d)
[  173.917655][   T33] audit: type=1804 audit(1758861027.366:18): pid=9184 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1297" name="/newroot/374/file1/file1" dev="loop0" ino=1048609 res=1 errno=0
[  175.113399][ T9213] tipc: Can't bind to reserved service type 0
[  175.245909][   T10] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  175.416087][   T10] usb 4-1: Using ep0 maxpacket: 8
[  175.518936][   T10] usb 4-1: New USB device found, idVendor=0fe9, idProduct=db01, bcdDevice=e9.9b
[  175.522905][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  175.526490][   T10] usb 4-1: Product: syz
[  175.528290][   T10] usb 4-1: Manufacturer: syz
[  175.530214][   T10] usb 4-1: SerialNumber: syz
[  175.534430][   T10] usb 4-1: config 0 descriptor??
[  175.540468][   T10] dvb-usb: found a 'DViCO FusionHDTV DVB-T USB (LGZ201)' in warm state.
[  175.544553][   T10] dvb-usb: bulk message failed: -22 (2/0)
[  175.554307][   T10] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  175.562552][   T10] dvbdev: DVB: registering new adapter (DViCO FusionHDTV DVB-T USB (LGZ201))
[  175.567422][   T10] usb 4-1: media controller created
[  175.621332][   T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  175.762976][   T10] cxusb: set interface failed
[  175.766449][   T10] dvb-usb: bulk message failed: -22 (1/0)
[  175.892225][   T10] DVB: Unable to find symbol mt352_attach()
[  175.915491][   T10] dvb-usb: no frontend was attached by 'DViCO FusionHDTV DVB-T USB (LGZ201)'
[  176.056374][   T10] rc_core: IR keymap rc-dvico-portable not found
[  176.059877][   T10] Registered IR keymap rc-empty
[  176.074499][   T10] rc rc0: DViCO FusionHDTV DVB-T USB (LGZ201) as /devices/platform/dummy_hcd.3/usb4/4-1/rc/rc0
[  176.089669][   T10] input: DViCO FusionHDTV DVB-T USB (LGZ201) as /devices/platform/dummy_hcd.3/usb4/4-1/rc/rc0/input15
[  176.100995][   T10] dvb-usb: schedule remote query interval to 100 msecs.
[  176.104391][   T10] dvb-usb: DViCO FusionHDTV DVB-T USB (LGZ201) successfully initialized and connected.
[  176.114973][   T10] usb 4-1: USB disconnect, device number 5
[  176.368374][   T10] dvb-usb: DViCO FusionHDTV DVB-T USB (LGZ201) successfully deinitialized and disconnected.
[  176.501330][ T9228] loop3: detected capacity change from 0 to 1024
[  176.507410][ T9228] EXT4-fs: Ignoring removed mblk_io_submit option
[  176.519428][ T9228] EXT4-fs: inline encryption not supported
[  176.528007][ T9228] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  176.553630][ T9228] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c842e018, mo2=0000]
[  176.573347][ T9228] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.1313: bad orphan inode 11
[  176.583414][ T9228] ext4_test_bit(bit=10, block=4) = 1
[  176.589287][ T9228] is_bad_inode(inode)=0
[  176.591208][ T9228] NEXT_ORPHAN(inode)=3254779904
[  176.595004][ T9228] max_ino=32
[  176.611303][ T9228] i_nlink=0
[  176.644023][ T9228] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 2: comm syz.3.1313: lblock 2 mapped to illegal pblock 2 (length 1)
[  176.653624][ T9228] Quota error (device loop3): qtree_write_dquot: dquota write failed
[  176.658095][ T9228] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 48: comm syz.3.1313: lblock 0 mapped to illegal pblock 48 (length 1)
[  176.664390][ T9228] Quota error (device loop3): v2_write_file_info: Can't write info structure
[  176.672373][ T9228] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.1313: Failed to acquire dquot type 0
[  176.686911][ T9228] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  176.699058][ T9228] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.1313: mark_inode_dirty error
[  176.704283][ T9228] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  176.721851][ T9228] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  176.799525][ T9228] EXT4-fs error (device loop3): __ext4_get_inode_loc:4861: comm syz.3.1313: Invalid inode table block 1 in block_group 0
[  176.811524][ T9228] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  176.833668][ T8201] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.850543][ T8201] EXT4-fs error (device loop3): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[  176.861275][ T8201] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  176.866931][ T8201] EXT4-fs error (device loop3): ext4_quota_off:7221: inode #3: comm syz-executor: mark_inode_dirty error
[  176.994182][ T9244] ip6erspan1: entered allmulticast mode
[  177.229599][ T9253] netlink: 'syz.0.1322': attribute type 9 has an invalid length.
[  177.233036][ T9253] netlink: 'syz.0.1322': attribute type 7 has an invalid length.
[  177.235776][ T9253] netlink: 'syz.0.1322': attribute type 8 has an invalid length.
[  177.268175][ T9254] warning: `syz.2.1321' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  178.115988][ T9263] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1327'.
[  178.119825][ T9263] netlink: 'syz.0.1327': attribute type 7 has an invalid length.
[  178.123056][ T9263] netlink: 'syz.0.1327': attribute type 8 has an invalid length.
[  178.130369][ T9263] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1327'.
[  178.228419][ T9268] loop0: detected capacity change from 0 to 2048
[  178.243926][ T9268] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 100: 0x82 != 0x8b
[  178.257735][ T9268] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  178.884513][ T9280] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1334'.
[  178.900147][ T9282] loop0: detected capacity change from 0 to 128
[  178.917187][ T9282] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  178.922483][ T9282] ext4 filesystem being mounted at /388/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  178.938252][ T9282] syz.0.1335 (pid 9282) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  178.980967][ T5850] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  179.219519][ T9295] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1341'.
[  179.222514][ T9295] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1341'.
[  179.223496][ T9297] netlink: 'syz.3.1342': attribute type 7 has an invalid length.
[  179.232375][ T9297] netlink: 'syz.3.1342': attribute type 8 has an invalid length.
[  179.235495][ T9295] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1341'.
[  179.241953][ T9297] netlink: 'syz.3.1342': attribute type 15 has an invalid length.
[  179.795832][ T9322] overlayfs: failed to clone upperpath
[  180.026496][ T9335] kernel read not supported for file /   (pid: 9335 comm: syz.2.1358)
[  180.045387][   T33] audit: type=1800 audit(1758861033.486:19): pid=9335 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1358" name=200120 dev="mqueue" ino=17319 res=0 errno=0
[  180.081734][ T9339] loop0: detected capacity change from 0 to 16
[  180.102975][ T9343] dns_resolver: Unsupported server list version (0)
[  180.103531][ T9339] erofs (device loop0): mounted with root inode @ nid 36.
[  180.114831][ T9342] netlink: 'syz.2.1361': attribute type 16 has an invalid length.
[  180.134468][ T9342] netlink: 'syz.2.1361': attribute type 17 has an invalid length.
[  180.149478][ T9339] syz.0.1360: attempt to access beyond end of device
[  180.149478][ T9339] loop0: rw=524288, sector=256, nr_sectors = 8 limit=16
[  180.177860][ T9339] syz.0.1360: attempt to access beyond end of device
[  180.177860][ T9339] loop0: rw=524288, sector=0, nr_sectors = 1024 limit=16
[  180.213935][ T9339] syz.0.1360: attempt to access beyond end of device
[  180.213935][ T9339] loop0: rw=0, sector=256, nr_sectors = 8 limit=16
[  180.232572][ T9339] erofs (device loop0): read error -5 @ 1 of nid 89
[  180.239267][   T33] audit: type=1800 audit(1758861033.686:20): pid=9339 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1360" name="file2" dev="loop0" ino=89 res=0 errno=0
[  180.276032][ T9351] trusted_key: encrypted_key: key description must be 16 hexadecimal characters long
[  180.446860][ T9360] tipc: Cannot configure node identity twice
[  180.510210][ T9362] loop3: detected capacity change from 0 to 64
[  180.544569][ T9362] syz.3.1371: attempt to access beyond end of device
[  180.544569][ T9362] loop3: rw=0, sector=234881062, nr_sectors = 2 limit=64
[  180.551364][ T9362] Buffer I/O error on dev loop3, logical block 117440531, async page read
[  180.561115][ T9362] syz.3.1371: attempt to access beyond end of device
[  180.561115][ T9362] loop3: rw=0, sector=234881062, nr_sectors = 2 limit=64
[  180.567494][ T9362] Buffer I/O error on dev loop3, logical block 117440531, async page read
[  180.571555][   T33] audit: type=1800 audit(1758861034.016:21): pid=9362 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1371" name="file2" dev="loop3" ino=6 res=0 errno=0
[  180.687875][ T9368] macvtap1: entered promiscuous mode
[  180.690201][ T9368] macvtap1: entered allmulticast mode
[  180.693645][ T9368] dummy0: entered promiscuous mode
[  180.698831][ T9368] dummy0: entered allmulticast mode
[  180.703155][ T9368] team0: Device macvtap1 failed to register rx_handler
[  180.718010][ T9368] dummy0: left allmulticast mode
[  180.722962][ T9368] dummy0: left promiscuous mode
[  180.857393][ T9375] mmap: syz.0.1377 (9375) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  181.004570][ T9387] loop0: detected capacity change from 0 to 256
[  181.017980][ T9387] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  181.093321][ T9393] loop0: detected capacity change from 0 to 512
[  181.103197][ T9393] EXT4-fs (loop0): blocks per group (95) and clusters per group (32768) inconsistent
[  181.954358][ T5880] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  181.981594][    C0] vcan0: j1939_tp_rxtimer: 0xffff88810fcee400: rx timeout, send abort
[  181.985845][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88810fcee400: 0x2f000: (3) A timeout occurred and this is the connection abort to close the session.
[  182.105416][ T5880] usb 1-1: Using ep0 maxpacket: 16
[  182.110722][ T5880] usb 1-1: config 0 has an invalid interface number: 214 but max is 0
[  182.114262][ T5880] usb 1-1: config 0 has no interface number 0
[  182.117225][ T5880] usb 1-1: config 0 interface 214 altsetting 0 endpoint 0x83 has invalid maxpacket 1023, setting to 64
[  182.124465][ T5880] usb 1-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5
[  182.128587][ T5880] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  182.132124][ T5880] usb 1-1: Product: syz
[  182.133937][ T5880] usb 1-1: Manufacturer: syz
[  182.136314][ T5880] usb 1-1: SerialNumber: syz
[  182.140947][ T5880] usb 1-1: config 0 descriptor??
[  182.354215][ T5880] usbtouchscreen 1-1:0.214: Failed to read FW rev: -71
[  182.354381][ T9415] bridge0: entered promiscuous mode
[  182.358725][ T5880] usbtouchscreen 1-1:0.214: probe with driver usbtouchscreen failed with error -71
[  182.362018][ T9415] bridge0: entered allmulticast mode
[  182.370556][ T5880] usb 1-1: USB disconnect, device number 17
[  183.054987][ T9426] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1400'.
[  184.217190][ T9459] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1414'.
[  184.333182][ T9462] sg_write: data in/out 41084/1 bytes for SCSI command 0x1c-- guessing data in;
[  184.333182][ T9462]    program syz.3.1415 not setting count and/or reply_len properly
[  184.961720][ T9469] loop3: detected capacity change from 0 to 64
[  185.142931][ T9475] loop3: detected capacity change from 0 to 128
[  185.224545][ T9475] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  185.242041][ T9475] ext4 filesystem being mounted at /133/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  185.347542][ T9483] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1419'.
[  185.455559][ T9475] fscrypt: loop3: 2 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 13
[  185.697681][ T8201] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  185.729244][ T9486] loop0: detected capacity change from 0 to 128
[  185.760164][ T9486] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  185.767029][ T9489] netlink: 'syz.3.1425': attribute type 4 has an invalid length.
[  185.771347][ T9486] ext4 filesystem being mounted at /411/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  185.878461][ T9491] loop3: detected capacity change from 0 to 4096
[  185.880909][ T5850] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  185.891724][ T9491] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  185.950929][ T9491] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  185.964192][ T9491] ntfs3(loop3): Failed to initialize $Extend/$Reparse.
[  185.989557][ T9495] loop0: detected capacity change from 0 to 4096
[  186.013024][ T9495] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00
[  186.016580][ T9495] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00
[  186.019208][ T9495] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00
[  186.022225][ T9495] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00
[  186.024895][ T9495] ntfs3(loop0): try to read out of volume at offset 0x3fffffc1c00
[  186.038497][ T9491] ntfs3(loop3): ino=1b, mi_enum_attr
[  186.041159][ T9495] ntfs3(loop0): try to read out of volume at offset 0x3fffffc2c00
[  186.048724][ T9495] ntfs3(loop0): try to read out of volume at offset 0x3fffffc4c00
[  186.051984][ T9495] ntfs3(loop0): try to read out of volume at offset 0x3fffffc8c00
[  186.057036][ T9495] ntfs3(loop0): try to read out of volume at offset 0x3fffffd0c00
[  186.060306][ T9495] ntfs3(loop0): try to read out of volume at offset 0x3fffffe0c00
[  186.365319][ T5914] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  186.517133][ T5914] usb 4-1: Using ep0 maxpacket: 32
[  186.523397][ T5914] usb 4-1: New USB device found, idVendor=084f, idProduct=0001, bcdDevice=e0.b8
[  186.536692][ T5914] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  186.542835][ T5914] usb 4-1: Product: syz
[  186.546184][ T5914] usb 4-1: Manufacturer: syz
[  186.548226][ T5914] usb 4-1: SerialNumber: syz
[  186.557084][ T5914] empeg 4-1:1.0: empeg converter detected
[  186.763939][ T5914] empeg 4-1:1.0: probe with driver empeg failed with error -71
[  186.783421][ T5914] usb 4-1: USB disconnect, device number 6
[  187.241155][ T9508] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check.
[  187.359637][ T9514] loop3: detected capacity change from 0 to 128
[  187.388569][ T9514] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  187.394292][ T9514] hpfs: filesystem error: improperly stopped
[  187.398472][ T9514] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  187.401895][ T9514] hpfs: You really don't want any checks? You are crazy...
[  187.405445][ T9514] hpfs: hpfs_map_sector(): read error
[  187.407884][ T9514] hpfs: code page support is disabled
[  187.410636][ T9514] hpfs: hpfs_map_4sectors(): unaligned read
[  187.413380][ T9514] hpfs: hpfs_map_4sectors(): unaligned read
[  187.418439][ T9514] hpfs: filesystem error: unable to find root dir
[  187.430274][ T9514] hpfs: hpfs_map_4sectors(): unaligned read
[  187.437926][ T9514] hpfs: hpfs_map_sector(): read error
[  187.734839][ T9522] loop3: detected capacity change from 0 to 1024
[  187.820179][   T40] hfsplus: b-tree write err: -5, ino 4
[  187.863464][ T9529] loop3: detected capacity change from 0 to 8
[  187.869920][ T9529] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  188.091351][ T9543] tipc: Cannot configure node identity twice
[  188.354867][ T9560] tmpfs: Bad value for 'mpol'
[  188.394781][ T9558] loop0: detected capacity change from 0 to 4096
[  188.460441][ T9558] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  188.488302][ T9558] ntfs3(loop0): Failed to load $Extend (-22).
[  188.490925][ T9558] ntfs3(loop0): Failed to initialize $Extend.
[  189.015291][  T971] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  189.166669][  T971] usb 4-1: config index 0 descriptor too short (expected 39, got 27)
[  189.323080][ T5914] IPVS: starting estimator thread 0...
[  189.415837][ T9589] IPVS: using max 45 ests per chain, 108000 per kthread
[  189.420355][  T971] usb 4-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  189.424297][  T971] usb 4-1: config 0 interface 0 has no altsetting 0
[  189.430037][  T971] usb 4-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  189.433716][  T971] usb 4-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  189.437138][  T971] usb 4-1: Product: syz
[  189.438919][  T971] usb 4-1: Manufacturer: syz
[  189.441490][  T971] usb 4-1: SerialNumber: syz
[  189.446675][  T971] usb 4-1: config 0 descriptor??
[  189.451593][  T971] hub 4-1:0.0: bad descriptor, ignoring hub
[  189.454089][  T971] hub 4-1:0.0: probe with driver hub failed with error -5
[  189.458764][  T971] usb 4-1: selecting invalid altsetting 0
[  189.743033][ T9597] vlan0: entered allmulticast mode
[  189.746150][ T9597] dummy0: entered allmulticast mode
[  189.775444][  T971] usb 4-1: USB disconnect, device number 7
[  190.265205][ T5914] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  190.415452][ T5914] usb 1-1: Using ep0 maxpacket: 8
[  190.419199][ T5914] usb 1-1: config index 0 descriptor too short (expected 301, got 45)
[  190.422708][ T5914] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  190.427344][ T5914] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  190.430820][ T5914] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  190.434891][ T5914] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  190.440232][ T5914] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  190.443814][ T5914] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.465370][   T24] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  190.615292][   T24] usb 4-1: Using ep0 maxpacket: 32
[  190.618686][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  190.622312][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  190.626480][   T24] usb 4-1: New USB device found, idVendor=0853, idProduct=0313, bcdDevice= 0.00
[  190.629625][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.639674][   T24] usb 4-1: config 0 descriptor??
[  190.653974][ T5914] usb 1-1: GET_CAPABILITIES returned 0
[  190.656652][ T5914] usbtmc 1-1:16.0: can't read capabilities
[  190.863915][ T5914] usb 1-1: USB disconnect, device number 18
[  191.053403][   T24] topre 0003:0853:0313.0006: unknown main item tag 0x0
[  191.060743][   T24] topre 0003:0853:0313.0006: hidraw0: USB HID v0.05 Device [HID 0853:0313] on usb-dummy_hcd.3-1/input0
[  191.105413][ T5857] Bluetooth: hci0: command 0x0c20 tx timeout
[  191.108944][ T5852] Bluetooth: hci1: command 0x0406 tx timeout
[  191.250826][  T971] usb 4-1: USB disconnect, device number 8
[  191.477350][ T9639] 
[  191.842646][ T9658] loop3: detected capacity change from 0 to 256
[  191.863219][ T9658] exFAT-fs (loop3): failed to load upcase table (idx : 0x000106cd, chksum : 0x3aeaf2c0, utbl_chksum : 0xe619d30d)
[  191.929621][ T9664] netlink: 'syz.3.1505': attribute type 10 has an invalid length.
[  191.943409][ T9664] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1505'.
[  191.951015][ T9664] batman_adv: batadv0: Adding interface: vlan1
[  191.953244][ T9664] batman_adv: batadv0: The MTU of interface vlan1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  192.035500][ T9664] batman_adv: batadv0: Interface activated: vlan1
[  192.121434][ T9669] loop3: detected capacity change from 0 to 512
[  192.157746][ T9669] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  192.163107][ T9669] EXT4-fs (loop3): orphan cleanup on readonly fs
[  192.456273][ T9669] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.1507: corrupted inode contents
[  192.470377][ T9669] EXT4-fs (loop3): Remounting filesystem read-only
[  192.474463][ T9669] EXT4-fs (loop3): 1 truncate cleaned up
[  192.484263][ T1096] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  192.492234][ T1096] Quota error (device loop3): write_blk: dquota write failed
[  192.498509][ T1096] Quota error (device loop3): remove_free_dqentry: Can't write block (5) with free entries
[  192.502821][ T1096] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  192.513745][ T1096] Quota error (device loop3): write_blk: dquota write failed
[  192.517199][ T1096] Quota error (device loop3): free_dqentry: Can't move quota data block (5) to free list
[  192.521444][ T1096] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[  192.526041][ T1096] Quota error (device loop3): v2_write_file_info: Can't write info structure
[  192.530604][ T1096] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  192.540367][ T9669] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  192.601741][ T8201] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.947029][ T9689] loop3: detected capacity change from 0 to 64
[  193.318371][ T9712] loop0: detected capacity change from 0 to 256
[  193.328300][ T9712] exfat: Deprecated parameter 'namecase'
[  193.330725][ T9712] exfat: Unknown parameter 'iocharseMTvڂzt'
[  193.647083][ T9714] loop3: detected capacity change from 0 to 40427
[  193.651236][ T9714] F2FS-fs (loop3): build fault injection rate: 14
[  193.655196][ T9714] F2FS-fs (loop3): build fault injection type: 0x77fd1
[  193.667289][ T9714] F2FS-fs (loop3): invalid crc value
[  193.673793][ T9714] F2FS-fs (loop3): inject kmalloc in f2fs_kmalloc of f2fs_fill_super+0x4429/0x6ff0
[  193.679014][ T9714] F2FS-fs (loop3): Failed to initialize F2FS segment manager (-12)
[  193.927958][ T9735] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1536'.
[  193.949547][ T9735] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1536'.
[  194.049306][ T9745] loop3: detected capacity change from 0 to 512
[  194.068935][ T5849] Bluetooth: hci2: command 0x0406 tx timeout
[  194.098510][ T9745] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  194.103063][ T9745] ext4 filesystem being mounted at /162/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  194.112397][ T9745] EXT4-fs warning (device loop3): ext4_group_add:1716: Can't resize non-sparse filesystem further
[  194.134282][ T8201] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.165229][ T1363] ieee802154 phy0 wpan0: encryption failed: -22
[  194.168020][ T1363] ieee802154 phy1 wpan1: encryption failed: -22
[  194.277221][ T9758] loop3: detected capacity change from 0 to 256
[  194.298015][ T9758] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  194.393637][ T9754] loop0: detected capacity change from 0 to 32768
[  194.405593][ T9754] (syz.0.1545,9754,0):ocfs2_read_blocks:239 ERROR: status = -12
[  194.410670][ T9754] (syz.0.1545,9754,0):ocfs2_map_slot_buffers:388 ERROR: status = -12
[  194.414116][ T9754] (syz.0.1545,9754,0):ocfs2_init_slot_info:426 ERROR: status = -12
[  194.420360][ T9754] (syz.0.1545,9754,0):ocfs2_initialize_super:2222 ERROR: status = -12
[  194.427269][ T9754] (syz.0.1545,9754,0):ocfs2_fill_super:1177 ERROR: status = -12
[  194.751839][ T9783] loop0: detected capacity change from 0 to 512
[  194.770220][ T9783] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  194.790157][ T9783] ext4 filesystem being mounted at /457/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  194.805523][ T9783] EXT4-fs (loop0): shut down requested (1)
[  194.840523][ T5850] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.910410][ T9789] loop0: detected capacity change from 0 to 1024
[  194.967195][ T1093] hfsplus: b-tree write err: -5, ino 4
[  194.987680][ T9782] loop3: detected capacity change from 0 to 32768
[  195.001031][ T9782] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1558 (9782)
[  195.015005][ T9782] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  195.060607][ T9782] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm
[  195.217893][ T9782] BTRFS info (device loop3): enabling ssd optimizations
[  195.220878][ T9782] BTRFS info (device loop3): enabling free space tree
[  195.597892][ T8201] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  195.879110][ T9827] loop3: detected capacity change from 0 to 16384
[  195.945210][ T9837] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  195.949059][ T9837] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  195.962411][ T9837] vhci_hcd vhci_hcd.0: Device attached
[  195.971909][ T9844] pim6reg: entered allmulticast mode
[  195.975015][ T9827] bcachefs (loop3): starting version 1.13: inode_has_child_snapshots opts=errors=continue,data_checksum=none,usrquota,grpquota,degraded=yes,no_splitbrain_check,norecovery,no_data_io
[  195.975033][ T9827]   features: new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  195.989226][ T9827] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0
[  195.993025][ T9827] bcachefs (loop3): invalid journal entry, version=1.13: inode_has_child_snapshots type=clock in superblock: bad size, fixing
[  196.003255][ T9827] bcachefs (loop3): recovering from clean shutdown, journal seq 18
[  196.008172][ T9827] bcachefs (loop3): Doing compatible version upgrade from 1.13: inode_has_child_snapshots to 1.28: inode_has_case_insensitive
[  196.008172][ T9827]   running recovery passes: check_allocations,check_extents_to_backpointers,check_inodes
[  196.041792][ T9827] bcachefs (loop3): error reading btree root btree=accounting level=0: btree_node_read_error, fixing
[  196.048526][ T9827] bcachefs (loop3): check_topology...
[  196.051644][ T9848] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1576'.
[  196.067987][ T9827]  done
[  196.069499][ T9827] bcachefs (loop3): accounting_read... done
[  196.073606][ T9827] bcachefs (loop3): alloc_read... done
[  196.076786][ T9827] bcachefs (loop3): snapshots_read... done
[  196.079892][ T9827] bcachefs (loop3): Fixed errors, running fsck a second time to verify fs is clean
[  196.083957][ T9827] bcachefs (loop3): reading quotas
[  196.087610][ T9827] bcachefs (loop3): quotas done
[  196.090302][ T9827] bcachefs (loop3): done starting filesystem
[  196.108179][   T33] audit: type=1326 audit(1758861049.556:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9849 comm="syz.2.1577" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbefe78ec29 code=0x7ffc0000
[  196.125237][   T33] audit: type=1326 audit(1758861049.556:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9849 comm="syz.2.1577" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbefe78ec29 code=0x7ffc0000
[  196.134744][   T33] audit: type=1326 audit(1758861049.556:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9849 comm="syz.2.1577" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbefe78ec29 code=0x7ffc0000
[  196.144360][   T33] audit: type=1326 audit(1758861049.556:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9849 comm="syz.2.1577" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbefe78ec29 code=0x7ffc0000
[  196.148278][   T24] vhci_hcd: vhci_device speed not set
[  196.168536][ T8201] bcachefs (loop3): shutting down
[  196.187496][ T8201] bcachefs (loop3): shutdown complete
[  196.205625][ T5914] usb 1-1: new low-speed USB device number 19 using dummy_hcd
[  196.235223][   T24] usb 33-1: new full-speed USB device number 2 using vhci_hcd
[  196.380788][ T5914] usb 1-1: config 0 has no interfaces?
[  196.382568][ T5914] usb 1-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  196.385994][ T5914] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  196.392067][ T5914] usb 1-1: config 0 descriptor??
[  196.409968][ T9860] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1582'.
[  196.600544][ T9840] vhci_hcd: unknown pdu 1
[  196.601988][    T9] usb 1-1: USB disconnect, device number 19
[  196.609624][   T12] vhci_hcd: stop threads
[  196.616859][   T12] vhci_hcd: release socket
[  196.621454][   T12] vhci_hcd: disconnect device
[  196.675997][   T24] vhci_hcd: vhci_device speed not set
[  197.561125][ T9900] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1599'.
[  197.582770][ T9900] bridge1: entered promiscuous mode
[  197.823948][ T9907] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1602'.
[  197.831004][ T9907] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1602'.
[  198.235218][   T24] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  198.396417][   T24] usb 1-1: Using ep0 maxpacket: 8
[  198.400632][   T24] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  198.404950][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  198.420031][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8D has invalid wMaxPacketSize 0
[  198.424569][   T24] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  198.430128][   T24] usb 1-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  198.433953][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.441525][   T24] usb 1-1: config 0 descriptor??
[  198.654274][    T9] usb 1-1: USB disconnect, device number 20
[  198.762368][ T9945] netlink: 148 bytes leftover after parsing attributes in process `syz.2.1621'.
[  198.810144][ T9936] loop3: detected capacity change from 0 to 32768
[  198.832229][ T9936] add_index: next_index = 0.  Resetting!
[  199.242583][ T9970] loop0: detected capacity change from 0 to 128
[  199.250976][ T9970] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  199.257842][ T9970] ext4 filesystem being mounted at /473/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  199.286836][ T9970] EXT4-fs error (device loop0): dx_make_map:1296: inode #2: block 20: comm syz.0.1633: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1
[  199.294474][ T9970] EXT4-fs error (device loop0) in do_split:2029: Corrupt filesystem
[  199.310371][ T5850] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  199.335170][    T9] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  199.499186][    T9] usb 4-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice=f6.00
[  199.502438][    T9] usb 4-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  199.506210][    T9] usb 4-1: Product: syz
[  199.507691][    T9] usb 4-1: SerialNumber: syz
[  199.510768][    T9] usb 4-1: config 0 descriptor??
[  199.609408][   T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  199.700778][   T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  199.725860][    T9] hso 4-1:0.0: Failed to find BULK IN ep
[  199.767400][   T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  199.832928][   T12] netdevsim netdevsim0  (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  199.858248][ T5849] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  199.866787][ T5849] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  199.872124][ T5849] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  199.877148][ T5849] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  199.880757][ T5849] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  199.954248][   T24] usb 4-1: USB disconnect, device number 9
[  200.037296][   T12] bridge_slave_1: left allmulticast mode
[  200.039633][   T12] bridge_slave_1: left promiscuous mode
[  200.042163][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  200.047505][   T12] bridge_slave_0: left allmulticast mode
[  200.050012][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  200.648302][   T12] team0: Port device bond0 removed
[  200.666399][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  200.673535][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  200.682522][   T12] bond0 (unregistering): Released all slaves
[  200.705798][ T9993] netlink: 92 bytes leftover after parsing attributes in process `syz.3.1643'.
[  200.739108][ T9981] chnl_net:caif_netlink_parms(): no params data found
[  200.772768][   T12] tipc: Left network mode
[  200.938047][ T9981] bridge0: port 1(bridge_slave_0) entered blocking state
[  200.940609][ T9981] bridge0: port 1(bridge_slave_0) entered disabled state
[  200.943203][ T9981] bridge_slave_0: entered allmulticast mode
[  200.966648][ T9981] bridge_slave_0: entered promiscuous mode
[  201.036467][ T9981] bridge0: port 2(bridge_slave_1) entered blocking state
[  201.039525][ T9981] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.042526][ T9981] bridge_slave_1: entered allmulticast mode
[  201.047760][ T9981] bridge_slave_1: entered promiscuous mode
[  201.087365][ T9981] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  201.098574][ T9981] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  201.118960][   T12] hsr_slave_0: left promiscuous mode
[  201.121487][   T12] hsr_slave_1: left promiscuous mode
[  201.124141][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  201.127225][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  201.130516][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  201.133093][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  201.149859][   T12] veth1_macvtap: left promiscuous mode
[  201.151955][   T12] veth0_macvtap: left promiscuous mode
[  201.159200][   T12] veth1_vlan: left promiscuous mode
[  201.161369][   T12] veth0_vlan: left promiscuous mode
[  201.251338][T10018] loop3: detected capacity change from 0 to 4096
[  201.261088][T10018] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512).
[  201.571997][   T12] team0 (unregistering): Port device team_slave_1 removed
[  201.603143][   T12] team0 (unregistering): Port device team_slave_0 removed
[  201.915530][ T5849] Bluetooth: hci1: command tx timeout
[  201.963353][ T9981] team0: Port device team_slave_0 added
[  201.968982][ T9981] team0: Port device team_slave_1 added
[  202.043163][ T9981] batman_adv: batadv0: Adding interface: batadv_slave_0
[  202.049349][T10018] ntfs3(loop3): Failed to initialize $Extend/$ObjId.
[  202.051937][ T9981] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.051958][ T9981] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  202.068934][ T9981] batman_adv: batadv0: Adding interface: batadv_slave_1
[  202.074084][ T9981] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.085860][ T9981] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  202.186009][T10022] vim2m vim2m.0: Fourcc format (0x42474752) invalid.
[  202.199116][ T9981] hsr_slave_0: entered promiscuous mode
[  202.202297][ T9981] hsr_slave_1: entered promiscuous mode
[  202.215393][ T9981] debugfs: 'hsr0' already exists in 'hsr'
[  202.217742][ T9981] Cannot create hsr debugfs directory
[  202.425578][   T12] IPVS: stop unused estimator thread 0...
[  202.801787][ T9981] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  202.820140][ T9981] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  202.838441][ T9981] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  202.851972][ T9981] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  203.169282][ T9981] 8021q: adding VLAN 0 to HW filter on device bond0
[  203.222191][ T9981] 8021q: adding VLAN 0 to HW filter on device team0
[  203.270556][ T3802] bridge0: port 1(bridge_slave_0) entered blocking state
[  203.273761][ T3802] bridge0: port 1(bridge_slave_0) entered forwarding state
[  203.296810][ T3802] bridge0: port 2(bridge_slave_1) entered blocking state
[  203.300003][ T3802] bridge0: port 2(bridge_slave_1) entered forwarding state
[  203.878314][ T9981] 8021q: adding VLAN 0 to HW filter on device batadv0
[  203.990082][ T5849] Bluetooth: hci1: command tx timeout
[  204.173573][ T9981] veth0_vlan: entered promiscuous mode
[  204.186975][ T9981] veth1_vlan: entered promiscuous mode
[  204.205447][ T9981] veth0_macvtap: entered promiscuous mode
[  204.209558][ T9981] veth1_macvtap: entered promiscuous mode
[  204.221671][ T9981] batman_adv: batadv0: Interface activated: batadv_slave_0
[  204.238788][ T9981] batman_adv: batadv0: Interface activated: batadv_slave_1
[  204.252878][ T5879] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  204.261791][ T5879] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  204.267702][ T5879] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  204.271351][ T5879] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  204.359512][ T1093] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  204.361895][ T1093] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  204.396119][ T1093] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  204.398452][ T1093] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  204.567387][T10095] openvswitch: netlink: Message has 1 unknown bytes.
[  204.569741][T10095] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  204.599081][T10098] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1680'.
[  204.673856][T10104] loop4: detected capacity change from 0 to 512
[  204.680994][T10104] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  204.691904][T10104] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  204.694729][T10104] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2
[  204.706947][T10104] EXT4-fs (loop4): 1 truncate cleaned up
[  204.709560][T10104] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.723067][T10104] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000.
[  204.764061][ T9981] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.962282][T10117] loop4: detected capacity change from 0 to 128
[  204.972060][T10117] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  204.980307][T10117] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  205.109350][T10121] loop3: detected capacity change from 0 to 4096
[  205.131920][T10126] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  205.180374][   T33] kauditd_printk_skb: 12 callbacks suppressed
[  205.180390][   T33] audit: type=1800 audit(1758861058.626:38): pid=10121 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1690" name="file1" dev="loop3" ino=18 res=0 errno=0
[  205.197400][T10128] loop4: detected capacity change from 0 to 164
[  205.592683][T10149] loop3: detected capacity change from 0 to 65
[  205.972983][T10154] loop3: detected capacity change from 0 to 32768
[  205.989157][T10154] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  206.016613][T10154] XFS (loop3): Ending clean mount
[  206.026292][T10154] XFS (loop3): Quotacheck needed: Please wait.
[  206.063986][T10154] XFS (loop3): Quotacheck: Done.
[  206.065261][ T5849] Bluetooth: hci1: command tx timeout
[  206.109778][ T8201] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  206.262505][T10180] loop3: detected capacity change from 0 to 512
[  206.266444][T10180] EXT4-fs: Ignoring removed nomblk_io_submit option
[  206.271688][T10180] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  206.274941][T10180] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c000e128, mo2=0002]
[  206.279013][T10180] EXT4-fs (loop3): orphan cleanup on readonly fs
[  206.281776][T10180] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0
[  206.286513][T10180] EXT4-fs warning (device loop3): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  206.292714][T10180] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  206.304763][T10180] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1711: bg 0: block 40: padding at end of block bitmap is not set
[  206.314681][T10180] EXT4-fs (loop3): Remounting filesystem read-only
[  206.317898][T10180] EXT4-fs (loop3): 1 truncate cleaned up
[  206.321442][T10180] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  206.348412][ T8201] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.506838][   T33] audit: type=1326 audit(1758861059.956:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10184 comm="syz.3.1714" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f11b9d8ec29 code=0x0
[  206.729129][T10195] loop4: detected capacity change from 0 to 8
[  208.025816][T10232] batadv0: entered promiscuous mode
[  208.028931][T10232] macvtap1: entered promiscuous mode
[  208.033998][T10232] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  208.039690][T10232] batadv0: left promiscuous mode
[  208.145232][ T5849] Bluetooth: hci1: command tx timeout
[  208.293693][T10239] xt_time: invalid argument - start or stop time greater than 23:59:59
[  208.562502][T10242] 9pnet_fd: Insufficient options for proto=fd
[  209.026545][T10264] loop4: detected capacity change from 0 to 4096
[  209.407770][T10283] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.521077][T10285] binder: 10277:10285 ioctl c0306201 0 returned -14
[  209.789813][T10283] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.824875][T10287] loop3: detected capacity change from 0 to 512
[  209.849511][T10287] FAT-fs (loop3): error, corrupted directory (invalid entries)
[  209.859316][T10287] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[  209.894545][T10283] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.992208][T10283] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  210.037317][T10291] loop3: detected capacity change from 0 to 8192
[  210.244363][   T12] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  210.250449][   T12] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  210.268876][T10299] loop4: detected capacity change from 0 to 512
[  210.273968][T10299] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  210.286987][   T12] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  210.303090][T10299] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  210.309376][   T12] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  210.322443][T10299] ext4 filesystem being mounted at /33/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  210.354746][ T9981] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.798747][T10322] loop4: detected capacity change from 0 to 32768
[  210.879020][T10322] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=crc64,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io
[  210.879033][T10322]   allowing incompatible features above 0.0: (unknown version)
[  210.879038][T10322]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  210.895468][T10322] bcachefs (loop4): Using encoding defined by superblock: utf8-12.1.0
[  210.899010][T10322] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[  210.902340][T10322] bcachefs (loop4): Version upgrade required:
[  210.902340][T10322] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  210.902340][T10322] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  210.902340][T10322]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  210.932139][T10322] bcachefs (loop4): dropping and reconstructing all alloc info
[  210.947445][T10322] bcachefs (loop4): invalid bkey in btree_node btree=inodes level=0: u64s 18 type inode_v3 0:536870913:U32_MAX len 0 ver 0: (unpack error)
[  210.947481][T10322]   invalid variable length fields, deleting
[  210.960046][T10322] bcachefs (loop4): accounting_read... done
[  210.963126][T10322] bcachefs (loop4): alloc_read... done
[  210.965881][T10322] bcachefs (loop4): snapshots_read... done
[  210.968461][T10322] bcachefs (loop4): check_allocations... done
[  210.989642][T10322] bcachefs (loop4): going read-write
[  211.045659][T10322] bcachefs (loop4): Fixed errors, running fsck a second time to verify fs is clean
[  211.050852][T10322] bcachefs (loop4): done starting filesystem
[  211.068247][ T6645] bcachefs (loop4): bucket incorrectly unset in freespace btree
[  211.068279][ T6645]   u64s 5 type deleted 0:28:0 len 0 ver 0, , continuing
[  211.087662][T10322] bcachefs (loop4): dirent to missing inode:
[  211.087698][T10322]   u64s 7 type dirent 4096:2695648408715017799:U32_MAX len 0 ver 0: file2 -> 536870913 type reg
[  211.087703][T10322]   emergency read only at seq 12
[  211.098800][ T5900] bcachefs (loop4): going read-only
[  211.101022][ T5900] bcachefs (loop4): finished waiting for writes to stop
[  211.131781][ T5900] bcachefs (loop4): flushing journal and stopping allocators, journal seq 12
[  211.141647][ T9981] bcachefs (loop4): shutting down
[  211.144495][ T5900] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 12
[  211.151351][ T5900] bcachefs (loop4): unclean shutdown complete, journal seq 12
[  211.176519][ T5900] bcachefs (loop4): done going read-only, filesystem not clean
[  211.206816][ T9981] bcachefs (loop4): shutdown complete
[  211.478199][T10359] netlink: 'syz.2.1785': attribute type 2 has an invalid length.
[  212.363016][T10363] C: renamed from team_slave_0 (while UP)
[  212.370161][T10363] netlink: 'syz.4.1781': attribute type 2 has an invalid length.
[  212.373553][T10363] netlink: 116 bytes leftover after parsing attributes in process `syz.4.1781'.
[  212.382409][T10363] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  212.428707][T10370] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1789'.
[  212.466341][T10372] Unsupported ieee802154 address type: 0
[  212.596970][ T5900] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  212.610725][T10380] overlayfs: conflicting options: nfs_export=on,metacopy=on
[  212.745390][ T5900] usb 4-1: Using ep0 maxpacket: 16
[  212.749877][ T5900] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  212.754105][ T5900] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  212.759854][ T5900] usb 4-1: New USB device found, idVendor=5543, idProduct=0005, bcdDevice= 0.00
[  212.762801][ T5900] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  212.774396][ T5900] usb 4-1: config 0 descriptor??
[  213.413118][T10384] loop4: detected capacity change from 0 to 32768
[  213.508658][T10384] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=xxhash,compression=gzip,str_hash=crc32c,norecovery,nojournal_transaction_names,noexcl,version_upgrade=none,no_data_io
[  213.508681][T10384]   allowing incompatible features above 0.0: (unknown version)
[  213.508689][T10384]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  213.526533][T10384] bcachefs (loop4): Using encoding defined by superblock: utf8-12.1.0
[  213.530004][T10384] bcachefs (loop4): invalid journal entry, version=1.7: mi_btree_bitmap type=dev_usage in superblock: bad pad, fixing
[  213.534786][T10384] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[  213.549178][T10384] bcachefs (loop4): btree node read error at btree dirents level 0/0
[  213.549239][T10384]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0
[  213.549249][T10384]   loop4 node offset 16/24: btree node data missing: expected 24 sectors, found 16
[  213.549256][T10384]   loop4 btree validate error
[  213.549262][T10384]   repair success (rewriting node)
[  213.569068][T10384] bcachefs (loop4): btree node read error: no device to read from
[  213.569078][T10384]  at freespace level 0/0
[  213.569083][T10384]   u64s 11 type 255 SPOS_MAX len 0 ver 65535: 
[  213.569088][T10384]   flagging btree freespace lost data
[  213.569092][T10384]   running recovery pass check_topology (2), currently at recovery_pass_empty (0)
[  213.569097][T10384]   running recovery pass check_allocations (8), currently at recovery_pass_empty (0)
[  213.569102][T10384]   running recovery pass check_lrus (14), currently at recovery_pass_empty (0)
[  213.569106][T10384]   running recovery pass check_backpointers_to_extents (16), currently at recovery_pass_empty (0)
[  213.569111][T10384]   running recovery pass check_alloc_info (13), currently at recovery_pass_empty (0)
[  213.598494][T10384] bcachefs (loop4): error reading btree root btree=freespace level=0: btree_node_read_error, fixing
[  213.606830][T10384] bcachefs (loop4): check_topology... done
[  213.609836][T10384] bcachefs (loop4): accounting_read... done
[  213.612476][T10384] bcachefs (loop4): alloc_read... done
[  213.614509][T10384] bcachefs (loop4): snapshots_read... done
[  213.617057][T10384] bcachefs (loop4): Fixed errors, running fsck a second time to verify fs is clean
[  213.620980][T10384] bcachefs (loop4): done starting filesystem
[  213.648476][ T5900] uclogic 0003:5543:0005.0007: unknown main item tag 0x0
[  213.651746][ T5900] uclogic 0003:5543:0005.0007: unknown main item tag 0x0
[  213.656331][ T5900] uclogic 0003:5543:0005.0007: unknown main item tag 0x0
[  213.659508][ T5900] uclogic 0003:5543:0005.0007: unknown main item tag 0x0
[  213.662703][ T5900] uclogic 0003:5543:0005.0007: unknown main item tag 0x0
[  213.668236][ T5900] uclogic 0003:5543:0005.0007: hidraw0: USB HID v0.00 Device [HID 5543:0005] on usb-dummy_hcd.3-1/input0
[  213.816078][ T9981] bcachefs (loop4): shutting down
[  213.828352][ T9981] bcachefs (loop4): shutdown complete
[  213.852281][ T5900] usb 4-1: USB disconnect, device number 10
[  214.402633][T10402] loop3: detected capacity change from 0 to 256
[  214.413497][T10402] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  214.465564][T10402] exFAT-fs (loop3): error, invalid access to FAT free cluster (entry 0x00000008)
[  215.080374][T10430] loop4: detected capacity change from 0 to 512
[  215.110479][T10430] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  215.114940][T10430] ext4 filesystem being mounted at /45/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  215.171032][ T9981] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.317183][T10447] loop3: detected capacity change from 0 to 4096
[  215.320249][T10447] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  215.530018][T10457] netlink: set zone limit has 4 unknown bytes
[  215.695227][  T971] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  215.855963][  T971] usb 5-1: Using ep0 maxpacket: 8
[  215.863498][  T971] usb 5-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  215.870382][  T971] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  215.874009][   T33] audit: type=1326 audit(1758861069.316:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10466 comm="syz.2.1829" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbefe78ec29 code=0x0
[  215.885485][  T971] usb 5-1: Product: syz
[  215.887278][  T971] usb 5-1: Manufacturer: syz
[  215.889137][  T971] usb 5-1: SerialNumber: syz
[  215.893247][  T971] usb 5-1: config 0 descriptor??
[  216.102902][  T971] usb 5-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  216.324868][T10474] sctp: [Deprecated]: syz.3.1832 (pid 10474) Use of struct sctp_assoc_value in delayed_ack socket option.
[  216.324868][T10474] Use struct sctp_sack_info instead
[  216.777515][T10486] loop3: detected capacity change from 0 to 128
[  216.797317][T10486] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  217.056754][  T971] dvb_usb_rtl28xxu 5-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -32
[  217.062335][  T971] usb 5-1: USB disconnect, device number 2
[  217.202487][T10495] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  217.205626][T10495] IPv6: NLM_F_CREATE should be set when creating new route
[  217.208314][T10495] IPv6: NLM_F_CREATE should be set when creating new route
[  217.210841][T10495] IPv6: NLM_F_CREATE should be set when creating new route
[  217.637834][   T33] audit: type=1800 audit(1758861071.086:41): pid=10520 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1852" name="file1" dev="tmpfs" ino=4122 res=0 errno=0
[  217.743362][T10523] netlink: 'syz.3.1853': attribute type 1 has an invalid length.
[  217.751069][T10523] netlink: 'syz.3.1853': attribute type 4 has an invalid length.
[  217.754604][T10523] netlink: 208 bytes leftover after parsing attributes in process `syz.3.1853'.
[  217.762788][T10523] NCSI netlink: No device for ifindex 3088861696
[  218.893219][T10540] loop3: detected capacity change from 0 to 32768
[  218.898261][T10540] bcachefs (/dev/loop3): error validating superblock: Invalid option btree_node_size: must be a power of two
[  218.902849][T10540] bcachefs: bch2_fs_get_tree() error: opt_parse_error
[  219.240039][T10577] exFAT-fs (nullb0): mounting with "discard" option, but the device does not support discard
[  219.244114][T10577] exFAT-fs (nullb0): invalid boot record signature
[  219.252826][T10577] exFAT-fs (nullb0): failed to read boot sector
[  219.255801][T10577] exFAT-fs (nullb0): failed to recognize exfat type
[  219.489696][T10594] random: crng reseeded on system resumption
[  219.834001][T10607] input: syz1 as /devices/virtual/input/input18
[  220.028117][T10612] loop3: detected capacity change from 0 to 32768
[  220.043871][T10612] (syz.3.1891,10612,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0xaff4b7b9. Applying ECC.
[  220.048922][T10612] (syz.3.1891,10612,0):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0xb3775c19, computed 0xdf810603
[  220.053697][T10612] (syz.3.1891,10612,0):ocfs2_validate_inode_block:1458 ERROR: Checksum failed for dinode 18
[  220.057509][T10612] (syz.3.1891,10612,0):ocfs2_read_locked_inode:597 ERROR: status = -5
[  220.061713][T10612] (syz.3.1891,10612,0):ocfs2_init_global_system_inodes:452 ERROR: status = -5
[  220.066470][T10612] (syz.3.1891,10612,0):ocfs2_init_global_system_inodes:476 ERROR: status = -5
[  220.070449][T10612] (syz.3.1891,10612,0):ocfs2_initialize_super:2198 ERROR: status = -5
[  220.074030][T10612] (syz.3.1891,10612,0):ocfs2_fill_super:1177 ERROR: status = -5
[  220.465344][ T5900] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  220.527992][T10636] loop3: detected capacity change from 0 to 256
[  220.534701][T10636] exFAT-fs (loop3): failed to load upcase table (idx : 0x000103df, chksum : 0xf3211d0a, utbl_chksum : 0xe619d30d)
[  220.618241][ T5900] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  220.622018][ T5900] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[  220.637861][ T5900] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[  220.641771][ T5900] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[  220.649974][ T5900] usb 5-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[  220.654434][ T5900] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  220.661928][ T5900] usb 5-1: config 0 descriptor??
[  220.811378][T10638] loop3: detected capacity change from 0 to 40427
[  220.824815][T10638] F2FS-fs (loop3): invalid crc value
[  220.871873][ T5900] hdpvr 5-1:0.0: firmware version 0x51 dated 
[  220.881990][T10638] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  220.884114][ T5900] hdpvr 5-1:0.0: untested firmware, the driver might not work.
[  220.892302][T10638] F2FS-fs (loop3): Start checkpoint disabled!
[  220.915237][T10638] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  220.949481][ T1096] kworker/u9:8: attempt to access beyond end of device
[  220.949481][ T1096] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  220.967154][ T1096] CPU: 0 UID: 0 PID: 1096 Comm: kworker/u9:8 Not tainted syzkaller #0 PREEMPT(full) 
[  220.967173][ T1096] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  220.967181][ T1096] Workqueue: writeback wb_workfn (flush-7:3)
[  220.967201][ T1096] Call Trace:
[  220.967206][ T1096]  <TASK>
[  220.967211][ T1096]  dump_stack_lvl+0x189/0x250
[  220.967229][ T1096]  ? __pfx_dump_stack_lvl+0x10/0x10
[  220.967243][ T1096]  ? __pfx_queue_work_on+0x10/0x10
[  220.967255][ T1096]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  220.967275][ T1096]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  220.967299][ T1096]  f2fs_handle_critical_error+0x37c/0x540
[  220.967322][ T1096]  f2fs_write_end_io+0x886/0xb60
[  220.967347][ T1096]  __submit_merged_bio+0x27a/0x6a0
[  220.967369][ T1096]  __submit_merged_write_cond+0x255/0x530
[  220.967391][ T1096]  f2fs_write_data_pages+0x261d/0x3000
[  220.967428][ T1096]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  220.967450][ T1096]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  220.967488][ T1096]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  220.967505][ T1096]  ? look_up_lock_class+0x74/0x170
[  220.967525][ T1096]  ? trace_f2fs_writepages+0x7f/0x200
[  220.967542][ T1096]  ? f2fs_write_node_pages+0x478/0x6e0
[  220.967590][ T1096]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  220.967626][ T1096]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  220.967639][ T1096]  do_writepages+0x32e/0x550
[  220.967660][ T1096]  ? reacquire_held_locks+0x127/0x1d0
[  220.967672][ T1096]  ? writeback_sb_inodes+0x384/0x1010
[  220.967693][ T1096]  __writeback_single_inode+0x145/0xff0
[  220.967709][ T1096]  ? do_raw_spin_unlock+0x4d/0x240
[  220.967727][ T1096]  writeback_sb_inodes+0x6c7/0x1010
[  220.967768][ T1096]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  220.967814][ T1096]  ? rcu_is_watching+0x15/0xb0
[  220.967834][ T1096]  wb_writeback+0x43b/0xaf0
[  220.967855][ T1096]  ? queue_io+0x381/0x590
[  220.967870][ T1096]  ? __pfx_wb_writeback+0x10/0x10
[  220.967892][ T1096]  ? _raw_spin_unlock_irq+0x23/0x50
[  220.967913][ T1096]  wb_workfn+0x409/0xef0
[  220.967944][ T1096]  ? __pfx_wb_workfn+0x10/0x10
[  220.967961][ T1096]  ? __lock_acquire+0xab9/0xd20
[  220.967986][ T1096]  ? process_scheduled_works+0x9ef/0x17b0
[  220.968003][ T1096]  ? _raw_spin_unlock_irq+0x23/0x50
[  220.968019][ T1096]  ? process_scheduled_works+0x9ef/0x17b0
[  220.968030][ T1096]  ? process_scheduled_works+0x9ef/0x17b0
[  220.968042][ T1096]  process_scheduled_works+0xae1/0x17b0
[  220.968076][ T1096]  ? __pfx_process_scheduled_works+0x10/0x10
[  220.968101][ T1096]  worker_thread+0x8a0/0xda0
[  220.968135][ T1096]  kthread+0x711/0x8a0
[  220.968152][ T1096]  ? __pfx_worker_thread+0x10/0x10
[  220.968164][ T1096]  ? __pfx_kthread+0x10/0x10
[  220.968180][ T1096]  ? _raw_spin_unlock_irq+0x23/0x50
[  220.968196][ T1096]  ? lockdep_hardirqs_on+0x9c/0x150
[  220.968206][ T1096]  ? __pfx_kthread+0x10/0x10
[  220.968221][ T1096]  ret_from_fork+0x439/0x7d0
[  220.968236][ T1096]  ? __pfx_ret_from_fork+0x10/0x10
[  220.968258][ T1096]  ? __switch_to_asm+0x39/0x70
[  220.968272][ T1096]  ? __switch_to_asm+0x33/0x70
[  220.968286][ T1096]  ? __pfx_kthread+0x10/0x10
[  220.968300][ T1096]  ret_from_fork_asm+0x1a/0x30
[  220.968327][ T1096]  </TASK>
[  220.968333][ T1096] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  221.105935][ T5900] hdpvr 5-1:0.0: device init failed
[  221.108212][ T5900] hdpvr 5-1:0.0: probe with driver hdpvr failed with error -12
[  221.114466][ T5900] usb 5-1: USB disconnect, device number 3
[  221.605243][   T24] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  221.777065][   T24] usb 4-1: Using ep0 maxpacket: 16
[  221.781086][   T24] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  221.785944][   T24] usb 4-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 22
[  221.793811][   T24] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  221.797877][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  221.801789][   T24] usb 4-1: SerialNumber: syz
[  221.809078][   T24] cdc_acm 4-1:1.0: skipping garbage
[  221.920007][T10668] loop4: detected capacity change from 0 to 32768
[  221.939931][T10668] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  222.031888][    T9] usb 4-1: USB disconnect, device number 11
[  222.587594][T10697] program syz.3.1931 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  222.781839][ T9981] ocfs2: Unmounting device (7,4) on (node local)
[  224.299726][T10762] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  225.565373][   T24] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  225.716410][   T24] usb 4-1: Using ep0 maxpacket: 8
[  225.723559][   T24] usb 4-1: unable to get BOS descriptor or descriptor too short
[  225.733347][   T24] usb 4-1: config 2 has an invalid interface number: 179 but max is 0
[  225.741391][   T24] usb 4-1: config 2 has no interface number 0
[  225.744106][   T24] usb 4-1: config 2 interface 179 has no altsetting 0
[  225.748692][T10814] netlink: 'syz.4.1983': attribute type 13 has an invalid length.
[  225.752219][   T24] usb 4-1: New USB device found, idVendor=0a2c, idProduct=0008, bcdDevice=b5.a8
[  225.758642][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  225.761980][   T24] usb 4-1: Product: syz
[  225.763782][   T24] usb 4-1: Manufacturer: syz
[  225.766323][   T24] usb 4-1: SerialNumber: syz
[  225.836789][T10818] loop4: detected capacity change from 0 to 512
[  225.840574][T10818] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  225.851113][T10818] EXT4-fs (loop4): 1 truncate cleaned up
[  225.854935][T10818] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  225.867119][T10818] EXT4-fs (loop4): Online resizing not supported with sparse_super2
[  225.890059][ T9981] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.985796][   T24] cypress_cy7c63 4-1:2.179: Cypress CY7C63xxx device now attached
[  225.991133][   T24] usb 4-1: USB disconnect, device number 12
[  225.994645][   T24] cypress_cy7c63 4-1:2.179: Cypress CY7C63xxx device now disconnected
[  226.325206][    T9] usb 5-1: new full-speed USB device number 4 using dummy_hcd
[  226.487054][    T9] usb 5-1: config 0 has an invalid interface number: 113 but max is 0
[  226.490130][    T9] usb 5-1: config 0 has no interface number 0
[  226.492326][    T9] usb 5-1: config 0 interface 113 has no altsetting 0
[  226.507669][    T9] usb 5-1: New USB device found, idVendor=054c, idProduct=02e1, bcdDevice=e2.c8
[  226.513396][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  226.520260][    T9] usb 5-1: Product: syz
[  226.523218][    T9] usb 5-1: Manufacturer: syz
[  226.526307][    T9] usb 5-1: SerialNumber: syz
[  226.529702][    T9] usb 5-1: config 0 descriptor??
[  226.765361][    C0] usb 5-1: NFC: Urb failure (status -71)
[  226.788751][    C0] usb 5-1: NFC: Urb failure (status -71)
[  226.806139][    T9] usb 5-1: NFC: Unable to get FW version
[  226.812690][    T9] pn533_usb 5-1:0.113: probe with driver pn533_usb failed with error -71
[  226.832421][    T9] usb 5-1: USB disconnect, device number 4
[  227.583450][T10846] loop4: detected capacity change from 0 to 256
[  228.032598][T10855] UHID_CREATE from different security context by process 209 (syz.4.2001), this is not allowed.
[  228.584615][T10877] netlink: 212408 bytes leftover after parsing attributes in process `syz.4.2011'.
[  229.000564][T10887] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2015'.
[  229.010071][ T5849] Bluetooth: hci0: unexpected event for opcode 0x2041
[  229.170988][T10893] 9pnet_fd: Insufficient options for proto=fd
[  229.737715][T10911] IPVS: fo: SCTP 172.20.20.187:0 - no destination available
[  229.812441][   T24] IPVS: starting estimator thread 0...
[  229.907912][T10912] IPVS: using max 52 ests per chain, 124800 per kthread
[  230.639867][T10924] loop3: detected capacity change from 0 to 32768
[  230.643808][T10924] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.2031 (10924)
[  230.653684][T10924] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  230.657107][T10924] BTRFS info (device loop3): using crc32c (crc32c-lib) checksum algorithm
[  230.693382][T10924] BTRFS info (device loop3): enabling ssd optimizations
[  230.696837][T10924] BTRFS info (device loop3): disabling tree log
[  230.699562][T10924] BTRFS info (device loop3): turning on async discard
[  230.702351][T10924] BTRFS info (device loop3): force clearing of disk cache
[  230.705811][T10924] BTRFS info (device loop3): doing ref verification
[  230.709683][T10924] BTRFS info (device loop3): force zlib compression, level 3
[  230.716326][T10924] BTRFS error (device loop3 state M): cannot disable free-space-tree
[  230.731871][ T8201] BTRFS info (device loop3 state M): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  230.755250][ T5900] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  230.968787][ T5900] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  230.973171][ T5900] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[  230.977590][ T5900] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  230.985213][ T5900] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  230.989096][ T5900] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  230.992464][ T5900] usb 5-1: Product: syz
[  230.994227][ T5900] usb 5-1: Manufacturer: syz
[  230.996975][ T5900] usb 5-1: SerialNumber: syz
[  231.002121][ T5900] cdc_ncm 5-1:1.0: CDC Union missing and no IAD found
[  231.004450][ T5900] cdc_ncm 5-1:1.0: bind() failure
[  231.293967][    T9] usb 5-1: USB disconnect, device number 5
[  231.368935][T10962] netlink: 'syz.3.2041': attribute type 15 has an invalid length.
[  231.510164][T10968] loop3: detected capacity change from 0 to 128
[  232.459226][  T791] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  232.675382][T11012] loop4: detected capacity change from 0 to 1
[  232.678254][T11012] syz.4.2063: attempt to access beyond end of device
[  232.678254][T11012] loop4: rw=2048, sector=0, nr_sectors = 8 limit=1
[  232.682354][T11012] SQUASHFS error: Failed to read block 0x0: -5
[  232.684452][T11012] unable to read squashfs_super_block
[  232.695195][  T791] usb 4-1: Using ep0 maxpacket: 16
[  232.698900][  T791] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  232.707877][  T791] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0
[  232.715170][  T791] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 132
[  232.729188][  T791] usb 4-1: New USB device found, idVendor=04d8, idProduct=0a30, bcdDevice=14.47
[  232.733565][  T791] usb 4-1: New USB device strings: Mfr=55, Product=172, SerialNumber=120
[  232.740726][  T791] usb 4-1: Product: syz
[  232.842790][  T791] usb 4-1: Manufacturer: syz
[  232.846158][  T791] usb 4-1: SerialNumber: syz
[  232.853928][  T791] usb 4-1: config 0 descriptor??
[  232.858329][T10982] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  232.870564][  T791] mcba_usb 4-1:0.0 can0: failed tx_urb -90
[  232.872550][  T791] mcba_usb 4-1:0.0 can0: Failed to send cmd (169)
[  232.875185][  T791] mcba_usb 4-1:0.0 can0: failed tx_urb -90
[  232.877171][  T791] mcba_usb 4-1:0.0 can0: Failed to send cmd (169)
[  232.879256][  T791] mcba_usb 4-1:0.0: Microchip CAN BUS Analyzer connected
[  233.206306][ T5900] usb 4-1: USB disconnect, device number 13
[  233.220123][ T5900] mcba_usb 4-1:0.0 can0: device disconnected
[  233.419227][T11028] overlayfs: failed to clone lowerpath
[  233.814018][T11055] loop3: detected capacity change from 0 to 256
[  233.817450][T11055] exfat: Deprecated parameter 'utf8'
[  233.824630][T11055] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  234.904958][ T5854] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  234.910728][ T5854] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  234.915025][ T5854] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  234.926925][ T5854] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  234.933703][ T5854] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  235.107609][T11069] chnl_net:caif_netlink_parms(): no params data found
[  235.201195][T11091] netlink: 'syz.4.2096': attribute type 4 has an invalid length.
[  235.201291][T11069] bridge0: port 1(bridge_slave_0) entered blocking state
[  235.207745][T11069] bridge0: port 1(bridge_slave_0) entered disabled state
[  235.210761][T11069] bridge_slave_0: entered allmulticast mode
[  235.216078][T11069] bridge_slave_0: entered promiscuous mode
[  235.231472][T11069] bridge0: port 2(bridge_slave_1) entered blocking state
[  235.234624][T11069] bridge0: port 2(bridge_slave_1) entered disabled state
[  235.236648][T11091] netlink: 'syz.4.2096': attribute type 4 has an invalid length.
[  235.238362][T11069] bridge_slave_1: entered allmulticast mode
[  235.244824][T11069] bridge_slave_1: entered promiscuous mode
[  235.273370][T11069] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  235.279641][T11069] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  235.323767][T11069] team0: Port device team_slave_0 added
[  235.344016][T11069] team0: Port device team_slave_1 added
[  235.380513][T11069] batman_adv: batadv0: Adding interface: batadv_slave_0
[  235.383458][T11069] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  235.395610][T11069] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  235.401938][T11069] batman_adv: batadv0: Adding interface: batadv_slave_1
[  235.404895][T11069] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  235.419048][T11069] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  235.512174][T11069] hsr_slave_0: entered promiscuous mode
[  235.520930][T11069] hsr_slave_1: entered promiscuous mode
[  235.524804][T11069] debugfs: 'hsr0' already exists in 'hsr'
[  235.529876][T11069] Cannot create hsr debugfs directory
[  235.706553][T11069] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  235.712418][T11069] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  235.719534][T11069] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  235.728822][T11069] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  235.762760][T11069] bridge0: port 2(bridge_slave_1) entered blocking state
[  235.765945][T11069] bridge0: port 2(bridge_slave_1) entered forwarding state
[  235.769093][T11069] bridge0: port 1(bridge_slave_0) entered blocking state
[  235.772109][T11069] bridge0: port 1(bridge_slave_0) entered forwarding state
[  235.832878][T11069] 8021q: adding VLAN 0 to HW filter on device bond0
[  235.844948][   T26] bridge0: port 1(bridge_slave_0) entered disabled state
[  235.850603][   T26] bridge0: port 2(bridge_slave_1) entered disabled state
[  235.864241][T11069] 8021q: adding VLAN 0 to HW filter on device team0
[  235.877669][ T2177] bridge0: port 1(bridge_slave_0) entered blocking state
[  235.880729][ T2177] bridge0: port 1(bridge_slave_0) entered forwarding state
[  235.889045][ T2177] bridge0: port 2(bridge_slave_1) entered blocking state
[  235.892105][ T2177] bridge0: port 2(bridge_slave_1) entered forwarding state
[  236.043569][T11069] 8021q: adding VLAN 0 to HW filter on device batadv0
[  236.260651][T11069] veth0_vlan: entered promiscuous mode
[  236.274207][T11069] veth1_vlan: entered promiscuous mode
[  236.304767][T11069] veth0_macvtap: entered promiscuous mode
[  236.313675][T11069] veth1_macvtap: entered promiscuous mode
[  236.333039][T11069] batman_adv: batadv0: Interface activated: batadv_slave_0
[  236.353114][T11069] batman_adv: batadv0: Interface activated: batadv_slave_1
[  236.366464][ T5913] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  236.370182][ T5913] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  236.373767][ T5913] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  236.383153][ T5913] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  236.478184][T11144] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  236.501360][   T26] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  236.504649][   T26] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  236.549381][ T1096] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  236.554059][ T1096] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  236.763463][T11161] netlink: 'syz.2.2121': attribute type 4 has an invalid length.
[  236.774982][T11163] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2122'.
[  236.784866][T11163] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2122'.
[  236.789679][T11163] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2122'.
[  236.860059][T11155] loop5: detected capacity change from 0 to 32768
[  237.020860][T11167] loop4: detected capacity change from 0 to 40427
[  237.026692][T11167] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  237.027105][ T5849] Bluetooth: hci2: command tx timeout
[  237.029555][T11167] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  237.032094][T11167] F2FS-fs (loop4): invalid crc value
[  237.038863][T11155] ocfs2: Slot 0 on device (7,5) was already allocated to this node!
[  237.077981][T11167] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  237.084187][T11155] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  237.087951][T11167] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  237.090835][T11167] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  237.125359][T11155] grow_buffers: requested out-of-range block 8241980290415722502 for device loop5
[  237.133579][T11155] (syz.5.2086,11155,1):ocfs2_read_blocks_sync:112 ERROR: status = -12
[  237.143078][T11155] (syz.5.2086,11155,1):ocfs2_group_add:503 ERROR: Can't read the group descriptor # 8241980290415722502 from the device.
[  237.204623][T11069] ocfs2: Unmounting device (7,5) on (node local)
[  237.583521][T11183] loop5: detected capacity change from 0 to 1024
[  237.614835][T11183] hfsplus: invalid extended attribute record
[  237.641788][ T2177] hfsplus: b-tree write err: -5, ino 8
[  237.778817][ T9981] syz-executor: attempt to access beyond end of device
[  237.778817][ T9981] loop4: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  237.787846][ T9981] CPU: 1 UID: 0 PID: 9981 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  237.787863][ T9981] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  237.787870][ T9981] Call Trace:
[  237.787875][ T9981]  <TASK>
[  237.787880][ T9981]  dump_stack_lvl+0x189/0x250
[  237.787902][ T9981]  ? __pfx_dump_stack_lvl+0x10/0x10
[  237.787916][ T9981]  ? __pfx_queue_work_on+0x10/0x10
[  237.787929][ T9981]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  237.787946][ T9981]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  237.787971][ T9981]  f2fs_handle_critical_error+0x37c/0x540
[  237.787994][ T9981]  f2fs_write_end_io+0x886/0xb60
[  237.788020][ T9981]  __submit_merged_bio+0x27a/0x6a0
[  237.788036][ T9981]  ? up_write+0x1c4/0x420
[  237.788052][ T9981]  __submit_merged_write_cond+0x44c/0x530
[  237.788075][ T9981]  f2fs_sync_node_pages+0x1479/0x15e0
[  237.788106][ T9981]  ? __pfx_f2fs_sync_node_pages+0x10/0x10
[  237.788144][ T9981]  ? f2fs_write_checkpoint+0xe43/0x1df0
[  237.788161][ T9981]  ? up_write+0x1c4/0x420
[  237.788172][ T9981]  ? do_raw_spin_unlock+0x4d/0x240
[  237.788187][ T9981]  f2fs_write_checkpoint+0xe6f/0x1df0
[  237.788219][ T9981]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  237.788269][ T9981]  ? kill_f2fs_super+0x298/0x6c0
[  237.788288][ T9981]  kill_f2fs_super+0x2c3/0x6c0
[  237.788305][ T9981]  ? __pfx_kill_f2fs_super+0x10/0x10
[  237.788314][ T9981]  ? radix_tree_delete_item+0x2b6/0x400
[  237.788334][ T9981]  ? shrinker_free+0x2ce/0x3e0
[  237.788349][ T9981]  deactivate_locked_super+0xbc/0x130
[  237.788366][ T9981]  cleanup_mnt+0x425/0x4c0
[  237.788378][ T9981]  ? lockdep_hardirqs_on+0x9c/0x150
[  237.788393][ T9981]  task_work_run+0x1d4/0x260
[  237.788410][ T9981]  ? __pfx_task_work_run+0x10/0x10
[  237.788424][ T9981]  ? __x64_sys_umount+0x122/0x160
[  237.788442][ T9981]  ? exit_to_user_mode_loop+0x40/0x110
[  237.788462][ T9981]  exit_to_user_mode_loop+0xec/0x110
[  237.788504][ T9981]  do_syscall_64+0x2bd/0x3b0
[  237.788515][ T9981]  ? lockdep_hardirqs_on+0x9c/0x150
[  237.788525][ T9981]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.788553][ T9981]  ? exc_page_fault+0x9f/0xf0
[  237.788569][ T9981]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.788578][ T9981] RIP: 0033:0x7fb380f8ff57
[  237.788591][ T9981] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  237.788601][ T9981] RSP: 002b:00007ffe85d79268 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  237.788612][ T9981] RAX: 0000000000000000 RBX: 00007fb381011c2d RCX: 00007fb380f8ff57
[  237.788619][ T9981] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe85d79320
[  237.788627][ T9981] RBP: 00007ffe85d79320 R08: 0000000000000000 R09: 0000000000000000
[  237.788634][ T9981] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe85d7a3b0
[  237.788640][ T9981] R13: 00007fb381011c2d R14: 0000000000039fde R15: 00007ffe85d7a3f0
[  237.788662][ T9981]  </TASK>
[  237.788668][ T9981] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  237.879675][T11197] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2135'.
[  238.691183][T11234] loop5: detected capacity change from 0 to 256
[  238.783818][T11223] ==================================================================
[  238.787181][T11223] BUG: KASAN: slab-use-after-free in __xfrm_state_lookup+0x6ad/0x8d0
[  238.790400][T11223] Read of size 2 at addr ffff888104a44a42 by task syz.2.2147/11223
[  238.794602][T11223] 
[  238.795632][T11223] CPU: 0 UID: 0 PID: 11223 Comm: syz.2.2147 Not tainted syzkaller #0 PREEMPT(full) 
[  238.795648][T11223] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  238.795657][T11223] Call Trace:
[  238.795663][T11223]  <TASK>
[  238.795669][T11223]  dump_stack_lvl+0x189/0x250
[  238.795687][T11223]  ? __kasan_check_byte+0x12/0x40
[  238.795706][T11223]  ? __pfx_dump_stack_lvl+0x10/0x10
[  238.795722][T11223]  ? lock_release+0x4b/0x3e0
[  238.795743][T11223]  ? __virt_addr_valid+0x4a5/0x5c0
[  238.795759][T11223]  print_report+0xca/0x240
[  238.795770][T11223]  ? __xfrm_state_lookup+0x6ad/0x8d0
[  238.795785][T11223]  kasan_report+0x118/0x150
[  238.795803][T11223]  ? __xfrm_state_lookup+0x6ad/0x8d0
[  238.795820][T11223]  __xfrm_state_lookup+0x6ad/0x8d0
[  238.795837][T11223]  ? __pfx___xfrm_state_lookup+0x10/0x10
[  238.795861][T11223]  xfrm_state_add+0x27d/0xc40
[  238.795879][T11223]  pfkey_add+0x1edd/0x2e00
[  238.795898][T11223]  ? __pfx_pfkey_add+0x10/0x10
[  238.795910][T11223]  ? kmem_cache_free+0x18f/0x400
[  238.795932][T11223]  pfkey_sendmsg+0xbfe/0x1090
[  238.795946][T11223]  ? trace_sched_exit_tp+0x36/0x110
[  238.795964][T11223]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  238.795981][T11223]  ? aa_sock_msg_perm+0xf1/0x1d0
[  238.795991][T11223]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  238.796004][T11223]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  238.796015][T11223]  __sock_sendmsg+0x21c/0x270
[  238.796035][T11223]  ____sys_sendmsg+0x505/0x830
[  238.796047][T11223]  ? __pfx_____sys_sendmsg+0x10/0x10
[  238.796061][T11223]  ? import_iovec+0x74/0xa0
[  238.796075][T11223]  ___sys_sendmsg+0x21f/0x2a0
[  238.796090][T11223]  ? __pfx____sys_sendmsg+0x10/0x10
[  238.796112][T11223]  ? __fget_files+0x2a/0x420
[  238.796121][T11223]  ? __fget_files+0x3a0/0x420
[  238.796132][T11223]  __x64_sys_sendmsg+0x19b/0x260
[  238.796147][T11223]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  238.796161][T11223]  ? rcu_is_watching+0x15/0xb0
[  238.796174][T11223]  ? do_syscall_64+0xbe/0x3b0
[  238.796188][T11223]  do_syscall_64+0xfa/0x3b0
[  238.796199][T11223]  ? lockdep_hardirqs_on+0x9c/0x150
[  238.796211][T11223]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.796223][T11223]  ? exc_page_fault+0x9f/0xf0
[  238.796233][T11223]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.796245][T11223] RIP: 0033:0x7fbefe78ec29
[  238.796258][T11223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  238.796269][T11223] RSP: 002b:00007fbeff64b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  238.796282][T11223] RAX: ffffffffffffffda RBX: 00007fbefe9d5fa0 RCX: 00007fbefe78ec29
[  238.796291][T11223] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[  238.796299][T11223] RBP: 00007fbefe811e41 R08: 0000000000000000 R09: 0000000000000000
[  238.796307][T11223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  238.796314][T11223] R13: 00007fbefe9d6038 R14: 00007fbefe9d5fa0 R15: 00007fff5ec02568
[  238.796325][T11223]  </TASK>
[  238.796329][T11223] 
[  238.919591][T11223] Allocated by task 10397:
[  238.921514][T11223]  kasan_save_track+0x3e/0x80
[  238.923535][T11223]  __kasan_slab_alloc+0x6c/0x80
[  238.925621][T11223]  kmem_cache_alloc_noprof+0x1c1/0x3c0
[  238.927928][T11223]  xfrm_state_alloc+0x24/0x2f0
[  238.929873][T11223]  __find_acq_core+0x8a7/0x1c00
[  238.931832][T11223]  xfrm_find_acq+0x78/0xa0
[  238.933722][T11223]  xfrm_alloc_userspi+0x6b3/0xc90
[  238.935895][T11223]  xfrm_user_rcv_msg+0x7a3/0xab0
[  238.937986][T11223]  netlink_rcv_skb+0x208/0x470
[  238.940013][T11223]  xfrm_netlink_rcv+0x79/0x90
[  238.942024][T11223]  netlink_unicast+0x82f/0x9e0
[  238.944065][T11223]  netlink_sendmsg+0x805/0xb30
[  238.946137][T11223]  __sock_sendmsg+0x21c/0x270
[  238.948101][T11223]  ____sys_sendmsg+0x505/0x830
[  238.950147][T11223]  ___sys_sendmsg+0x21f/0x2a0
[  238.952184][T11223]  __x64_sys_sendmsg+0x19b/0x260
[  238.954297][T11223]  do_syscall_64+0xfa/0x3b0
[  238.956229][T11223]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.958732][T11223] 
[  238.959688][T11223] Freed by task 24:
[  238.961274][T11223]  kasan_save_track+0x3e/0x80
[  238.963288][T11223]  kasan_save_free_info+0x46/0x50
[  238.965405][T11223]  __kasan_slab_free+0x5b/0x80
[  238.967601][T11223]  kmem_cache_free+0x18f/0x400
[  238.969667][T11223]  xfrm_state_gc_task+0x52d/0x6b0
[  238.971837][T11223]  process_scheduled_works+0xae1/0x17b0
[  238.974198][T11223]  worker_thread+0x8a0/0xda0
[  238.976189][T11223]  kthread+0x711/0x8a0
[  238.977932][T11223]  ret_from_fork+0x439/0x7d0
[  238.979928][T11223]  ret_from_fork_asm+0x1a/0x30
[  238.981969][T11223] 
[  238.983010][T11223] The buggy address belongs to the object at ffff888104a44900
[  238.983010][T11223]  which belongs to the cache xfrm_state of size 928
[  238.988708][T11223] The buggy address is located 322 bytes inside of
[  238.988708][T11223]  freed 928-byte region [ffff888104a44900, ffff888104a44ca0)
[  238.994424][T11223] 
[  238.995484][T11223] The buggy address belongs to the physical page:
[  238.998159][T11223] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888104a44900 pfn:0x104a44
[  239.002362][T11223] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  239.005937][T11223] flags: 0x57ff00000000040(head|node=1|zone=2|lastcpupid=0x7ff)
[  239.009273][T11223] page_type: f5(slab)
[  239.011008][T11223] raw: 057ff00000000040 ffff888104e493c0 dead000000000122 0000000000000000
[  239.014489][T11223] raw: ffff888104a44900 00000000800e000c 00000000f5000000 0000000000000000
[  239.017994][T11223] head: 057ff00000000040 ffff888104e493c0 dead000000000122 0000000000000000
[  239.021560][T11223] head: ffff888104a44900 00000000800e000c 00000000f5000000 0000000000000000
[  239.025197][T11223] head: 057ff00000000002 ffffea0004129101 00000000ffffffff 00000000ffffffff
[  239.028968][T11223] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  239.032635][T11223] page dumped because: kasan: bad access detected
[  239.035362][T11223] page_owner tracks the page as allocated
[  239.037740][T11223] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 6643, tgid 6632 (syz.0.297), ts 95948151048, free_ts 95811985272
[  239.045275][T11223]  post_alloc_hook+0x240/0x2a0
[  239.047284][T11223]  get_page_from_freelist+0x21e4/0x22c0
[  239.049582][T11223]  __alloc_frozen_pages_noprof+0x181/0x370
[  239.052069][T11223]  alloc_pages_mpol+0x232/0x4a0
[  239.054146][T11223]  allocate_slab+0x8a/0x370
[  239.056017][T11223]  ___slab_alloc+0xbeb/0x1420
[  239.057912][T11223]  kmem_cache_alloc_noprof+0x283/0x3c0
[  239.060185][T11223]  xfrm_state_alloc+0x24/0x2f0
[  239.062179][T11223]  xfrm_add_sa+0x17d1/0x4070
[  239.064081][T11223]  xfrm_user_rcv_msg+0x7a3/0xab0
[  239.066160][T11223]  netlink_rcv_skb+0x208/0x470
[  239.068081][T11223]  xfrm_netlink_rcv+0x79/0x90
[  239.069973][T11223]  netlink_unicast+0x82f/0x9e0
[  239.071985][T11223]  netlink_sendmsg+0x805/0xb30
[  239.074008][T11223]  __sock_sendmsg+0x21c/0x270
[  239.075936][T11223]  ____sys_sendmsg+0x505/0x830
[  239.077926][T11223] page last free pid 5782 tgid 5782 stack trace:
[  239.080435][T11223]  __free_frozen_pages+0xbc4/0xd30
[  239.082630][T11223]  __put_partials+0x156/0x1a0
[  239.084632][T11223]  put_cpu_partial+0x17c/0x250
[  239.086603][T11223]  __slab_free+0x2d5/0x3c0
[  239.088518][T11223]  qlist_free_all+0x97/0x140
[  239.090381][T11223]  kasan_quarantine_reduce+0x148/0x160
[  239.092610][T11223]  __kasan_slab_alloc+0x22/0x80
[  239.094671][T11223]  kmem_cache_alloc_node_noprof+0x1bb/0x3c0
[  239.097153][T11223]  __alloc_skb+0x112/0x2d0
[  239.099065][T11223]  tcp_stream_alloc_skb+0x3d/0x340
[  239.101229][T11223]  tcp_sendmsg_locked+0xf38/0x5620
[  239.103392][T11223]  tcp_sendmsg+0x2f/0x50
[  239.105194][T11223]  __sock_sendmsg+0x19c/0x270
[  239.107224][T11223]  sock_write_iter+0x258/0x330
[  239.109141][T11223]  vfs_write+0x5c9/0xb30
[  239.110941][T11223]  ksys_write+0x145/0x250
[  239.112741][T11223] 
[  239.113771][T11223] Memory state around the buggy address:
[  239.116140][T11223]  ffff888104a44900: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  239.119546][T11223]  ffff888104a44980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  239.122904][T11223] >ffff888104a44a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  239.126235][T11223]                                            ^
[  239.128870][T11223]  ffff888104a44a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  239.132234][T11223]  ffff888104a44b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  239.135516][T11223] ==================================================================
[  239.139031][T11223] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  239.142006][T11223] CPU: 0 UID: 0 PID: 11223 Comm: syz.2.2147 Not tainted syzkaller #0 PREEMPT(full) 
[  239.145703][T11223] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  239.149890][T11223] Call Trace:
[  239.151344][T11223]  <TASK>
[  239.152641][T11223]  dump_stack_lvl+0x99/0x250
[  239.154629][T11223]  ? __asan_memcpy+0x40/0x70
[  239.156530][T11223]  ? __pfx_dump_stack_lvl+0x10/0x10
[  239.158740][T11223]  ? __pfx__printk+0x10/0x10
[  239.160744][T11223]  vpanic+0x281/0x750
[  239.162589][T11223]  ? __pfx_vpanic+0x10/0x10
[  239.164567][T11223]  ? irqentry_exit+0x74/0x90
[  239.166571][T11223]  panic+0xb9/0xc0
[  239.168197][T11223]  ? __pfx_panic+0x10/0x10
[  239.170126][T11223]  ? _raw_spin_unlock_irqrestore+0xa8/0x110
[  239.172690][T11223]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  239.175226][T11223]  ? __xfrm_state_lookup+0x6ad/0x8d0
[  239.177512][T11223]  check_panic_on_warn+0x89/0xb0
[  239.179644][T11223]  ? __xfrm_state_lookup+0x6ad/0x8d0
[  239.181893][T11223]  end_report+0x78/0x160
[  239.183718][T11223]  kasan_report+0x129/0x150
[  239.185684][T11223]  ? __xfrm_state_lookup+0x6ad/0x8d0
[  239.188000][T11223]  __xfrm_state_lookup+0x6ad/0x8d0
[  239.190208][T11223]  ? __pfx___xfrm_state_lookup+0x10/0x10
[  239.192641][T11223]  xfrm_state_add+0x27d/0xc40
[  239.194674][T11223]  pfkey_add+0x1edd/0x2e00
[  239.196552][T11223]  ? __pfx_pfkey_add+0x10/0x10
[  239.198562][T11223]  ? kmem_cache_free+0x18f/0x400
[  239.200681][T11223]  pfkey_sendmsg+0xbfe/0x1090
[  239.202644][T11223]  ? trace_sched_exit_tp+0x36/0x110
[  239.204883][T11223]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  239.207101][T11223]  ? aa_sock_msg_perm+0xf1/0x1d0
[  239.209213][T11223]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  239.211511][T11223]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  239.213718][T11223]  __sock_sendmsg+0x21c/0x270
[  239.215720][T11223]  ____sys_sendmsg+0x505/0x830
[  239.217629][T11223]  ? __pfx_____sys_sendmsg+0x10/0x10
[  239.219715][T11223]  ? import_iovec+0x74/0xa0
[  239.221669][T11223]  ___sys_sendmsg+0x21f/0x2a0
[  239.223696][T11223]  ? __pfx____sys_sendmsg+0x10/0x10
[  239.225868][T11223]  ? __fget_files+0x2a/0x420
[  239.227865][T11223]  ? __fget_files+0x3a0/0x420
[  239.229880][T11223]  __x64_sys_sendmsg+0x19b/0x260
[  239.231984][T11223]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  239.234289][T11223]  ? rcu_is_watching+0x15/0xb0
[  239.236293][T11223]  ? do_syscall_64+0xbe/0x3b0
[  239.238231][T11223]  do_syscall_64+0xfa/0x3b0
[  239.240085][T11223]  ? lockdep_hardirqs_on+0x9c/0x150
[  239.242229][T11223]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.244772][T11223]  ? exc_page_fault+0x9f/0xf0
[  239.246830][T11223]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.249372][T11223] RIP: 0033:0x7fbefe78ec29
[  239.251286][T11223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  239.259298][T11223] RSP: 002b:00007fbeff64b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  239.262843][T11223] RAX: ffffffffffffffda RBX: 00007fbefe9d5fa0 RCX: 00007fbefe78ec29
[  239.266217][T11223] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[  239.269581][T11223] RBP: 00007fbefe811e41 R08: 0000000000000000 R09: 0000000000000000
[  239.272968][T11223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  239.276354][T11223] R13: 00007fbefe9d6038 R14: 00007fbefe9d5fa0 R15: 00007fff5ec02568
[  239.279742][T11223]  </TASK>
[  239.281893][T11223] Kernel Offset: disabled
[  239.283940][T11223] Rebooting in 86400 seconds..

VM DIAGNOSIS:
04:31:32  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000073 RBX=0000000000000073 RCX=0000000000000000 RDX=00000000000003f8
RSI=00000000000020c4 RDI=00000000000020c5 RBP=00000000000003f8 RSP=ffffc9000334ed90
R8 =ffff88801fef0237 R9 =1ffff11003fde046 R10=dffffc0000000000 R11=ffffffff854fada0
R12=dffffc0000000000 R13=ffffffff99b03908 R14=ffffffff99df8460 R15=0000000000000000
RIP=ffffffff854fae1c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fbeff64b6c0 ffffffff 00c00000
GS =0000 ffff8880b8612000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffc4fb12cf8 CR3=000000002fdd4000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 00000000000000ff XMM01=2525252525252525 2525252525252525
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 00000000000000ff XMM05=0000000000000000 00007f9949e12e7b
XMM06=0000000000000000 00007f9949e12e75 XMM07=0000000000000000 00007f9949e12e89
XMM08=0000000000000000 00007f9949e12f0f XMM09=0000000000000000 00007f9949e12fed
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000007 RBX=0000000000000005 RCX=0000000000000007 RDX=0000000000000003
RSI=0000000000000003 RDI=ffff88810bae9cc0 RBP=0000000000000000 RSP=ffffc90002aef218
R8 =0000000000000000 R9 =ffffffff822e631d R10=dffffc0000000000 R11=fffff9400085a439
R12=0000000000000003 R13=0000000000000001 R14=ffff88810baea8c8 R15=ffff88810baea898
RIP=ffffffff819d663c RFL=00000003 [------C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055555b553500 ffffffff 00c00000
GS =0000 ffff8881a3c12000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f994ab056c0 CR3=000000012071a000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=ffffffff816798bb ffffffff816798bb
XMM02=ffffffff823c96d4 ffffffff816798bb XMM03=ffffffff89584a65 ffffffff89584a08
XMM04=ffffffff89584b7f ffffffff89584a65 XMM05=ffffffff89584a08 ffffffff823c96d4
XMM06=ffffffff823c956d ffffffff823c8c0c XMM07=ffffffff823c8b84 ffffffff823c88c2
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007fb381012fed
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
